Skip to content

Bump the all-dependencies group across 2 directories with 3 updates #1729

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Dec 1, 2025
Merged

Bump the all-dependencies group across 2 directories with 3 updates #1729

merged 1 commit into from
Dec 1, 2025
+115 −111

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 1, 2025

Bumps the all-dependencies group with 1 update in the /e2e directory: webpack.
Bumps the all-dependencies group with 2 updates in the /sites directory: @codemirror/view and rollup.

Updates webpack from 5.102.1 to 5.103.0

Release notes

Sourced from webpack's releases.

v5.103.0

Features

  • Added DotenvPlugin and top level dotenv option to enable this plugin
  • Added WebpackManifestPlugin
  • Added support the ignoreList option in devtool plugins
  • Allow to use custom javascript parse function
  • Added import.meta.env support for environment variables
  • Added support for import.meta.dirname and import.meta.filename
  • Added support import.defer() for statistical path
  • Handle import.meta.main
  • Added suport to setup named exports for JSON modules and disable usage named export for import file from "./file.json" with { type: "json" }
  • Added support __dirname/__filename/import.meta.dirname/import.meta.filename for universal target
  • [CSS] Added the exportType option with link (by default), "text" and css-style-sheet values
  • [CSS] Added support for composes properties

Fixes

  • The dependOn chunk must be loaded before the common chunk
  • Return to namespace import when the external request includes a specific export
  • No runtime extra runtime code for module libraries
  • Delay HMR accept dependencies to preserve import attributes
  • Properly handle external presets for universal target
  • Fixed incorrect identifier of import binding for module externals
  • Fixed when defer import and dynamic default export mixed
  • Reduce generated output when globalThis supported
  • Fixed loading async modules in defer import
  • Reexport module for default import when no used exports for systemjs library
  • Rename HarmonyExportDependencyParserPlugin exported id to CompatibilityPlugin tagged id
  • Handle __dirname and __filename for ES modules
  • Rename single nested __webpack_export__ and __webpack_require__ in already bundled code
  • [Types] webpack function type
  • [Types] NormalModule type
  • [Types] Multi compiler configuration type
  • [Types] Fixed regression in custom hashDigest type
  • [CSS] No extra runtime for initial chunk
  • [CSS] Fixed a lot of CSS modules bugs
Commits
  • e021948 chore(release): 5.103.0
  • 1dc6967 chore(deps): bump actions/checkout from 5.0.0 to 5.0.1 (#20130)
  • 077417f fix(css): many css modules bugs (#20129)
  • 7722518 chore: fix script (#20128)
  • 688a7f9 test: no runtime requirements for module library (#20127)
  • 04fe5a1 refactor: pkg.pr.new publish (#20093)
  • 27c05c7 fix: return to namespace import when the external request includes a specific...
  • 067cc60 refactor: no runtime requirements for module library (#20096)
  • d4208ba fix: delay HMR accept dependencies to preserve import attributes (#20124)
  • 102e1a4 feat(css): added css-style-sheet to exportType for CSSStyleSheet return (#20104)
  • Additional commits viewable in compare view

Updates @codemirror/view from 6.38.7 to 6.38.8

Changelog

Sourced from @​codemirror/view's changelog.

6.38.8 (2025-11-17)

Bug fixes

Improve handling of composition with multiple cursors on MacOS.

Fix an issue where computing a document position from screen coordinates would sometimes go wrong in right-to-left text.

Commits
  • 270a0df Mark version 6.38.8
  • 6e7f5fe Account for floating point errors in right-to-left test in domPosInText
  • 04e446b Adjust to Safari's selection trashing during dead-key composition
  • f9cbe74 Adjust multiple-cursor composition fix for MacOS
  • See full diff in compare view

Updates rollup from 4.53.2 to 4.53.3

Release notes

Sourced from rollup's releases.

v4.53.3

4.53.3

2025-11-19

Bug Fixes

  • Fix an error where too many modules where flagged for having an unused external import (#6182)
  • Fix an error where an assignment was wrongly tree-shaken when mutating it (#6183)

Pull Requests

Changelog

Sourced from rollup's changelog.

4.53.3

2025-11-19

Bug Fixes

  • Fix an error where too many modules where flagged for having an unused external import (#6182)
  • Fix an error where an assignment was wrongly tree-shaken when mutating it (#6183)

Pull Requests

Commits
  • 998b595 4.53.3
  • ef834c2 Tracing the importers chain for exported variables in external module (#6182)
  • fb21d56 Check if left side is included when checking if assigning to an assignment ha...
  • 4b4581d Add test-install CI job to test packaging, installation and importing of roll...
  • 18ee41b fix(deps): lock file maintenance minor/patch updates (#6180)
  • f0a80d1 Re-enable TypeScript test (#6174)
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the all-dependencies group across 2 directories with 3 updates
a5ab702 
Bumps the all-dependencies group with 1 update in the /e2e directory: [webpack](https://github.com/webpack/webpack).
Bumps the all-dependencies group with 2 updates in the /sites directory: [@codemirror/view](https://github.com/codemirror/view) and [rollup](https://github.com/rollup/rollup).


Updates `webpack` from 5.102.1 to 5.103.0
- [Release notes](https://github.com/webpack/webpack/releases)
- [Commits](webpack/webpack@v5.102.1...v5.103.0)

Updates `@codemirror/view` from 6.38.7 to 6.38.8
- [Changelog](https://github.com/codemirror/view/blob/main/CHANGELOG.md)
- [Commits](codemirror/view@6.38.7...6.38.8)

Updates `rollup` from 4.53.2 to 4.53.3
- [Release notes](https://github.com/rollup/rollup/releases)
- [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md)
- [Commits](rollup/rollup@v4.53.2...v4.53.3)

---
updated-dependencies:
- dependency-name: webpack
  dependency-version: 5.103.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: "@codemirror/view"
  dependency-version: 6.38.8
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: rollup
  dependency-version: 4.53.3
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Dec 1, 2025
@romainmenke romainmenke merged commit e7732f6 into main Dec 1, 2025
9 checks passed
@romainmenke romainmenke deleted the dependabot/npm_and_yarn/e2e/all-dependencies-132423e4bc branch December 1, 2025 07:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file e2e javascript Pull requests that update Javascript code sites/postcss-preset-env

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@romainmenke