build(deps): bump loader-utils, babel-loader, css-loader, file-loader, html-loader, markdown-loader, style-loader, url-loader and webpack

[dependabot]

Bumps loader-utils to 2.0.3 and updates ancestor dependencies loader-utils, babel-loader, css-loader, file-loader, html-loader, markdown-loader, style-loader, url-loader and webpack. These dependencies need to be updated together.

Updates loader-utils from 0.2.12 to 2.0.3

Release notes

Sourced from loader-utils's releases.

v2.0.3

2.0.3 (2022-10-20)

Bug Fixes

• security: prototype pollution exploit (#217) (a93cf6f)

v2.0.2

2.0.2 (2021-11-04)

Bug Fixes

• base64 generation and unicode characters (#197) (8c2d24e)

v2.0.1

2.0.1 (2021-10-29)

Bug Fixes

• md4 support on Node.js v17 (#193) (1069f61)

v2.0.0

2.0.0 (2020-03-17)

⚠ BREAKING CHANGES

• minimum required Node.js version is 8.9.0 (#166) (c937e8c)
• the getOptions method returns empty object on empty query (#167) (b595cfb)
• Use md4 by default

v1.4.1

1.4.1 (2022-11-07)

Bug Fixes

• security problem (#220) (4504e34)

v1.4.0

1.4.0 (2020-02-19)

Features

• the resourceQuery is passed to the interpolateName method (#163) (cd0e428)

... (truncated)

Changelog

Sourced from loader-utils's changelog.

2.0.3 (2022-10-20)

Bug Fixes

• security: prototype pollution exploit (#217) (a93cf6f)

2.0.2 (2021-11-04)

Bug Fixes

• base64 generation and unicode characters (#197) (8c2d24e)

2.0.1 (2021-10-29)

Bug Fixes

• md4 support on Node.js v17 (#193) (1069f61)

2.0.0 (2020-03-17)

⚠ BREAKING CHANGES

• minimum required Node.js version is 8.9.0 (#166) (c937e8c)
• the getOptions method returns empty object on empty query (#167) (b595cfb)
• Use md4 by default

1.4.0 (2020-02-19)

Features

• the resourceQuery is passed to the interpolateName method (#163) (cd0e428)

1.3.0 (2020-02-19)

Features

• support the [query] template for the interpolatedName method (#162) (469eeba)

... (truncated)

Commits

• 7162619 chore(release): 2.0.3
• a93cf6f fix(security): prototype polution exploit (#217)
• 90c7c4b chore(release): 2.0.2
• 8c2d24e fix: base64 generation and unicode characters (#197)
• 5fb5562 chore(release): 2.0.1
• 1069f61 fix: md4 support on Node.js v17 (#193)
• d9f4e23 chore(release): 2.0.0
• 865dc03 refactor: switch to md4 by default (#168)
• b595cfb refactor: the getOptions method returns empty object on empty query (#167)
• c937e8c chore: minimum required Node.js version is 8.9.0 (#166)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by evilebottnawi, a new releaser for loader-utils since your current version.

Updates babel-loader from 6.2.2 to 9.1.0

Release notes

Sourced from babel-loader's releases.

v9.1.0

New features

• Pass external dependencies from Babel to Webpack by @​nicolo-ribaudo in babel/babel-loader#971

Full Changelog: babel/babel-loader@v9.0.1...v9.1.0

v9.0.1

Bug Fixes

• remove "node:" builtin prefix by @​JLHwung in babel/babel-loader#970

Full Changelog: babel/babel-loader@v9.0.0...v9.0.1

v9.0.0

What's Changed

• update hash method mechanism so it doesn't fail on a fips enabled machine by @​darmbrust in babel/babel-loader#939
• Require babel ^7.12.0 and Node.js >= 14.15.0 versions by @​JLHwung in babel/babel-loader#956
• Remove dependency on loader-utils and drop webpack 4 support by @​nied in babel/babel-loader#942

New Contributors

• @​darmbrust made their first contribution in babel/babel-loader#939
• @​nied made their first contribution in babel/babel-loader#942

Full Changelog: babel/babel-loader@v8.2.5...v9.0.0

v8.3.0

New features

• Pass external dependencies from Babel to Webpack by @​nicolo-ribaudo in babel/babel-loader#971

Full Changelog: babel/babel-loader@v8.2.5...v8.3.0

v8.2.5

What's Changed

• fix: respect inputSourceMap loader option by @​alan-agius4 in babel/babel-loader#896

New Contributors

• @​alan-agius4 made their first contribution in babel/babel-loader#896

Full Changelog: babel/babel-loader@v8.2.4...v8.2.5

v8.2.4

What's Changed

• doc(README.md): fix a broken markdown link by @​loveDstyle in babel/babel-loader#919
• Bump loader-utils to 2.x by @​stianjensen in babel/babel-loader#931
• Use md5 hashing for OpenSSL 3 by @​pathmapper in babel/babel-loader#924

Thanks @​loveDstyle, @​stianjensen and @​pathmapper for your first PRs!

8.2.3

... (truncated)

Changelog

Sourced from babel-loader's changelog.

Changelog

For changes in version v7.0.0 and up please go to release

Old Changelog

v6.4.1

🐛 Bug Fix

• Fixed reset of BABEL_ENV when options.forceEnv is used (#420) @​nikopavlica

v6.4.0

🚀 New Feature

• added metadata passing from babel to webpack, which is currently used by react-intl (#398) @​Ognian

v6.3.2

😢 Regression

• forceEnv was interfering with regular environment handling

v6.3.1

🐛 Bug Fix

• The new forceEnv options wasn't working as expected (#379) @​chrisvasz

v6.3.0

🚀 New Feature

• Add new config option forceEnv (#368) @​moimael

Allow to override BABEL_ENV/NODE_ENV at loader-level. Useful for isomorphic applications which have separate babel config for client and server.

🐛 Bug Fix

• Update loader-utils dependency to ^0.2.16 to fix compatibility with webpack 2 (#371) @​leonaves

💅 Polish

• Improve FS caching to do less sync calls which improves performance slightly (#375) @​akx

v6.2.10

Support for webpack 2.2-rc has been added in this release

... (truncated)

Commits

• 15fbacf 9.1.0
• 6348e1c Pass external dependencies from Babel to Webpack (#971)
• 457b9ad Update webpack
• f42ac9b 9.0.1
• 4f9c0bf remove "node:" builtin prefix (#970)
• 9ff288f 9.0.0
• 006a3dc Update README.md
• daed88a Update README.md
• 0ed5fd6 Bump ini from 1.3.5 to 1.3.8 (#968)
• b1749e3 Bump y18n from 4.0.0 to 4.0.3 (#967)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by nicolo-ribaudo, a new releaser for babel-loader since your current version.

Updates css-loader from 0.23.1 to 6.7.1

Release notes

Sourced from css-loader's releases.

v6.7.1

6.7.1 (2022-03-08)

Bug Fixes

• defaultGetLocalIdent export (#1427) (74dac1e)

v6.7.0

6.7.0 (2022-03-04)

Features

• re-export defaultGetLocalIdent (#1423) (207cf36)

v6.6.0

6.6.0 (2022-02-02)

Features

• added the hashStrategy option (ca4abce)

v6.5.1

6.5.1 (2021-11-03)

Bug Fixes

• regression with unicode characters in locals (b7a8441)
• runtime path generation (#1393) (feafea8)

v6.5.0

6.5.0 (2021-10-26)

Features

• support absolute URL in url() when experiments.buildHttp enabled (#1389) (8946be4)

Bug Fixes

• respect nosources in the devtool option (c60eff2)

v6.4.0

6.4.0 (2021-10-09)

... (truncated)

Changelog

Sourced from css-loader's changelog.

6.7.1 (2022-03-08)

Bug Fixes

• defaultGetLocalIdent export (#1427) (74dac1e)

6.7.0 (2022-03-04)

Features

• re-export defaultGetLocalIdent (#1423) (207cf36)

6.6.0 (2022-02-02)

Features

• added the hashStrategy option (ca4abce)

6.5.1 (2021-11-03)

Bug Fixes

• regression with unicode characters in locals (b7a8441)
• runtime path generation (#1393) (feafea8)

6.5.0 (2021-10-26)

Features

• support absolute URL in url() when experiments.buildHttp enabled (#1389) (8946be4)

Bug Fixes

• respect nosources in the devtool option (c60eff2)

6.4.0 (2021-10-09)

Features

• generate more collision resistant for locals (c7db752)

... (truncated)

Commits

• 830fe2c chore(release): 6.7.1
• 74dac1e fix: defaultGetLocalIdent export (#1427)
• 84b552a chore(release): 6.7.0
• 207cf36 feat: re-export defaultGetLocalIdent (#1423)
• f0e20e6 chore: upgrade dependencies to the latest version (#1425)
• 4dede55 docs(readme): added types (#1418)
• e16ba4d chore(deps): bump nanoid from 3.1.30 to 3.2.0 (#1412)
• 76ad29f docs: add yarn and pnpm installation commands (#1417)
• 67bb937 chore: upgrade dependencies to the latest version (#1416)
• 5d6be09 chore(release): v6.6.0
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by evilebottnawi, a new releaser for css-loader since your current version.

Updates file-loader from 0.8.5 to 6.2.0

Release notes

Sourced from file-loader's releases.

v6.2.0

6.2.0 (2020-10-27)

Features

• added the sourceFilename property to asset info with original filename (#393) (654e0d6)

Bug Fixes

• immutable flag when the name option have hash in query string (#392) (381d8bd)

v6.1.1

6.1.1 (2020-10-09)

Chore

• update schema-utils

v6.1.0

6.1.0 (2020-08-31)

Features

• pass immutable flag to asset info (#383) (40fcde8)

v6.0.0

6.0.0 (2020-03-17)

⚠ BREAKING CHANGES

• use md4 by default for hashing (#369) (ad39022)

v5.1.0

5.1.0 (2020-02-19)

Features

• support the query template for the name option (#366) (cd8698b)

v5.0.2

5.0.2 (2019-11-25)

Chore

... (truncated)

Changelog

Sourced from file-loader's changelog.

6.2.0 (2020-10-27)

Features

• added the sourceFilename property to asset info with original filename (#393) (654e0d6)

Bug Fixes

• immutable flag when the name option have hash in query string (#392) (381d8bd)

6.1.1 (2020-10-09)

Chore

• update schema-utils

6.1.0 (2020-08-31)

Features

• pass immutable flag to asset info (#383) (40fcde8)

6.0.0 (2020-03-17)

⚠ BREAKING CHANGES

• use md4 by default for hashing (#369) (ad39022)

5.1.0 (2020-02-19)

Features

• support the query template for the name option (#366) (cd8698b)

5.0.2 (2019-11-25)

Chore

• add the funding field in package.json

5.0.1 (2019-11-25)

... (truncated)

Commits

• c423008 chore(release): 6.2.0
• 654e0d6 feat: added the sourceFilename property to asset info with original filenam...
• 381d8bd fix: immutable flag when the name option have hash in query string (#392)
• 14ed4c9 ci: updated webpack versions (#389)
• 6fadfbe chore(release): 6.1.1
• 60508cf chore(deps): update
• 25e2668 chore(release): 6.1.0
• 6e22f6e test: fix
• 40fcde8 feat: pass immutable flag to asset info (#383)
• 718aef5 chore(deps): update (#375)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by evilebottnawi, a new releaser for file-loader since your current version.

Updates html-loader from 0.4.0 to 0.4.5

Release notes

Sourced from html-loader's releases.

v0.4.5

2017-02-24

Bug Fixes

• package: fix loader util deprecation warning (#114) (5e12be4)

v0.4.3

No release notes provided.

v0.4.2

No release notes provided.

v0.4.1

No release notes provided.

Changelog

Sourced from html-loader's changelog.

0.4.5 (2017-07-26)

Bug Fixes

• es6 default export (fae0309)
• Handle es6 default export (e04e969)
• getOptions: deprecation warn in loaderUtils (#114) (3d47e98)

Features

• Adds exportAsDefault (37d40d8)

Commits

• 90c7b60 chore(release): html-loader v0.4.5
• 5e12be4 fix(getOptions): deprecation warn in loaderUtils (#114)
• 7c28052 Merge pull request #110 from AvraamMavridis/patch-1
• 48df894 Merge pull request #111 from michael-ciniawsky/license
• 7967578 docs(LICENSE): relicense to JSF
• 3e09605 update to webpack 2 syntax
• c600df4 chore: update readme, html -> html-loader
• f337b3e Merge pull request #109 from montogeek/patch-1
• 318e70e Fix Maintainer section look
• 557e127 Merge pull request #103 from kevinzwhuang/master
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by d3viant0ne, a new releaser for html-loader since your current version.

Updates markdown-loader from 0.1.7 to 8.0.0

Release notes

Sourced from markdown-loader's releases.

v8.0.0

8.0.0 (2022-01-27)

• Introduce semantic-release (65e2368)

BREAKING CHANGES

• Every call to marked is isolated now. This makes sure that options from the first call won't influence options from the second call. If you've configured the markdown-loader with two different options, you might observe different behavior now. We also removed Node v8 and Node v10 support and support for older webpack versions. Webpack 5 is required now.

v6.0.0

Remove Node v6 support

v5.2.0

• Update dependencies
• Note: This version is deprecated since it already removed official Node v6 support which should have been published as breaking change

v5.1.0

• Update dependencies 3ba52af
• Merge pull request #51 from jkinkead/fix_npm_audit b6b35eb
• Update dependencies to fix audit breakage. be6e2c2

peerigon/markdown-loader@v5.0.0...v5.1.0

Changelog

Sourced from markdown-loader's changelog.

8.0.0 (2022-01-27)

• Introduce semantic-release (65e2368)

BREAKING CHANGES

• Every call to marked is isolated now. This makes sure that options from the first call won't influence options from the second call. If you've configured the markdown-loader with two different options, you might observe different behavior now. We also removed Node v8 and Node v10 support and support for older webpack versions. Webpack 5 is required now.

Changelog

7.0.0

• Breaking: Update marked@4.0.12 to fix security issues (#82)

6.0.0

• Remove Node v6 support

5.2.0

• Update dependencies
• Note: This version is deprecated since it already removed official Node v6 support which should have been published as breaking change

5.1.0

• Update dependencies

5.0.0

• Update dependencies
  • Breaking marked@0.6.0 @​tmorehouse Changelog
• switch to snapshot tests @​meaku
• reduce shipped files via npm @​styfle
• fix URL to marked repo @​styfle

4.0.0

• Update dependencies
  • Breaking marked@0.5.0 @​robcresswell Changelog

3.0.0

• Update dependencies
  • Breaking marked@4.0.0 (@​hpohlmeyer) Changelog
  • use webpack 4.x for tests
  • update example to use npm version of markdown-loader

2.0.2

... (truncated)

Commits

• See full diff in compare view

Maintainer changes

This version was pushed to npm by peeri, a new releaser for markdown-loader since your current version.

Updates style-loader from 0.13.0 to 0.13.2

Release notes

Sourced from style-loader's releases.

v0.13.2

2017-02-24

Bug Fixes

• package: fix loader util deprecation warning (#174) (da2bc5a)

Commits

• 11c54f2 chore(release): style-loader v0.13.2
• 13aa381 Merge pull request #174 from ryani33/fix-deprecated-warning
• da2bc5a fix deprecated warning
• 8ab1c5f Merge pull request #172 from joeshub/patch-1
• fc9ef25 Fixed link to local scope
• d99f992 Merge pull request #169 from simon04/master
• 79b2846 Remove license link
• cb3c0b6 Merge pull request #162 from d3viant0ne/d3viant0ne-UpdateDocsForFinal
• 700dd55 chore(readme): Update to webpack standard format
• 5a1a0f8 Merge pull request #160 from blainekasten/UpdateReadme
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by d3viant0ne, a new releaser for style-loader since your current version.

Updates url-loader from 0.5.7 to 0.5.9

Release notes

Sourced from url-loader's releases.

v0.5.9

2017-06-12

Bug Fixes

• String not being base64 encoded (#67) (e9496b9)
• don't default to 0 (options.limit) (#74) (020c2a8)

v0.5.8

2017-02-24

Bug Fixes

• package: fix loader util deprecation warning (#62) (841c6c8)

Changelog

Sourced from url-loader's changelog.

0.5.9 (2017-06-12)

Bug Fixes

• String not being base64 encoded (#67) (e9496b9)
• don't default to 0 (options.limit) (#74) (020c2a8)

Change Log

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

Commits

• 5574ed3 chore(release): 0.5.9
• 71b2250 chore: Add changelog
• 88a5f5a chore(pacakge): Add release tooling
• 99b935f docs(README): standardize (#77)
• e9496b9 fix: String not being base64 encoded (#67)
• 020c2a8 fix: don't default to 0 (options.limit) (#74)
• 9356a81 docs(README): fix typesetting, add links (#75)
• de61cbd docs(README): link to webpack 2 docs (#72)
• fae96d7 chore(release): url-loader v0.5.8
• 2452768 Merge pull request #62 from ryani33/fix-deprecated-warning
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by d3viant0ne, a new releaser for url-loader since your current version.

Updates webpack from 1.12.13 to 5.74.0

Release notes

Sourced from webpack's releases.

v5.74.0

Features

• add resolve.extensionAlias option which allows to alias extensions
  • This is useful when you are forced to add the .js extension to imports when the file really has a .ts extension (typescript + "type": "module")
• add support for ES2022 features like static blocks
• add Tree Shaking support for ProvidePlugin

Bugfixes

• fix persistent cache when some build dependencies are on a different windows drive
• make order of evaluation of side-effect-free modules deterministic between concatenated and non-concatenated modules
• remove left-over from debugging in TLA/async modules runtime code
• remove unneeded extra 1s timestamp offset during watching when files are actually untouched
  • This sometimes caused an additional second build which are not really needed
• fix shareScope option for ModuleFederationPlugin
• set "use-credentials" also for same origin scripts

Performance

• Improve memory usage and performance of aggregating needed files/directories for watching
  • This affects rebuild performance

Extensibility

• export HarmonyImportDependency for plugins

v5.73.0

Features

• add options for default dynamicImportMode and prefetch and preload
• add support for import { createRequire } from "module" in source code

Bugfixes

• fix code generation of e. g. return"field"in Module
• fix performance of large JSON modules
• fix performance of async modules evaluation

Developer Experience

• export PathData in typings
• improve error messages with more details

v5.72.1

Bugfixes

• fix __webpack_nonce__ with HMR
• fix in operator in some cases

... (truncated)

Commits

• 8f87b50 5.74.0
• 3e1f244 Merge pull request #16071 from devinan/patch-1
• c7e14e2 Merge pull request #15910 from ludofischer/fix-message
• 7b63346 Merge pull request #15627 from webpack/feat/issue-12441
• 402d152 Merge pull request #15642 from webpack/set-use-credentials-without-origin-check
• fcb0e35 Merge pull request #15996 from webdiscus/main
• 6dc6a19 Merge pull request #16031 from evantd/main
• 52351a6 Merge pull request #16033 from varunsh-coder/token-perms
• 555915b Merge pull request #16065 from webpack/fix/issue-16054
• d4cab5b Merge pull request #16077 from webpack/fix-scheme
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.