mCaptcha/pow_sha256-polyfill
2
0
Fork 0
Code Issues 1 Pull requests 10 Projects Releases Packages Wiki Activity

chore(deps): update dependency webpack to v5.104.1 #119

Open
renovate-bot wants to merge 1 commit from renovate/webpack-5.x-lockfile into master
pull from: renovate/webpack-5.x-lockfile
merge into: mCaptcha:master
Conversation 1 Commits 1 Files changed 1 +1 -1
renovate-bot commented 2025-10-13 05:22:25 +05:30
Member
Copy link

This PR contains the following updates:

Package Change Age Confidence
webpack 5.102.0 -> 5.104.1 age confidence

Release Notes

webpack/webpack (webpack)

v5.104.1

Compare Source

Patch Changes
  • 2efd21b: Reexports runtime calculation should not accessing WEBPACK_IMPORT_KEY decl with var.
  • c510070: Fixed a user information bypass vulnerability in the HttpUriPlugin plugin.

v5.104.0

Compare Source

Minor Changes
  • d3dd841: Use method shorthand to render module content in __webpack_modules__ object.
  • d3dd841: Enhance import.meta.env to support object access.
  • 4baab4e: Optimize dependency sorting in updateParent: sort each module only once by deferring to finishUpdateParent(), and reduce traversal count in sortWithSourceOrder by caching WeakMap values upfront.
  • 04cd530: Handle more at-rules for CSS modules.
  • cafae23: Added options to control the renaming of at-rules and various identifiers in CSS modules.
  • d3dd841: Added base64url, base62, base58, base52, base49, base36, base32 and base25 digests.
  • 5983843: Provide a stable runtime function variable __webpack_global__.
  • d3dd841: Improved localIdentName hashing for CSS.
Patch Changes
  • 22c48fb: Added module existence check for informative error message in development mode.
  • 50689e1: Use the fully qualified class name (or export name) for [fullhash] placeholder in CSS modules.
  • d3dd841: Support universal lazy compilation.
  • d3dd841: Fixed module library export definitions when multiple runtimes.
  • d3dd841: Fixed CSS nesting and CSS custom properties parsing.
  • d3dd841: Don't write fragment from URL to filename and apply fragment to module URL.
  • aab1da9: Fixed bugs for css/global type.
  • d3dd841: Compatibility import.meta.filename and import.meta.dirname with eval devtools.
  • d3dd841: Handle nested __webpack_require__.
  • 728ddb7: The speed of identifier parsing has been improved.
  • 0f8b31b: Improve types.
  • d3dd841: Don't corrupt debugId injection when hidden-source-map is used.
  • 2179fdb: Re-validate HttpUriPlugin redirects against allowedUris, restrict to http(s) and add a conservative redirect limit to prevent SSRF and untrusted content inclusion. Redirects failing policy are rejected before caching/lockfile writes.
  • d3dd841: Serialize HookWebpackError.
  • d3dd841: Added ability to use built-in properties in dotenv and define plugin.
  • 3c4319f: Optimizing the regular expression character class by specifying ranges for runtime code.
  • d3dd841: Reduce collision for local indent name in CSS.
  • d3dd841: Remove CSS link tags when CSS imports are removed.

v5.103.0

Compare Source

Features
  • Added DotenvPlugin and top level dotenv option to enable this plugin
  • Added WebpackManifestPlugin
  • Added support the ignoreList option in devtool plugins
  • Allow to use custom javascript parse function
  • Added import.meta.env support for environment variables
  • Added support for import.meta.dirname and import.meta.filename
  • Added support import.defer() for statistical path
  • Handle import.meta.main
  • Added suport to setup named exports for JSON modules and disable usage named export for import file from "./file.json" with { type: "json" }
  • Added support __dirname/__filename/import.meta.dirname/import.meta.filename for universal target
  • [CSS] Added the exportType option with link (by default), "text" and css-style-sheet values
  • [CSS] Added support for composes properties
Fixes
  • The dependOn chunk must be loaded before the common chunk
  • Return to namespace import when the external request includes a specific export
  • No runtime extra runtime code for module libraries
  • Delay HMR accept dependencies to preserve import attributes
  • Properly handle external presets for universal target
  • Fixed incorrect identifier of import binding for module externals
  • Fixed when defer import and dynamic default export mixed
  • Reduce generated output when globalThis supported
  • Fixed loading async modules in defer import
  • Reexport module for default import when no used exports for systemjs library
  • Rename HarmonyExportDependencyParserPlugin exported id to CompatibilityPlugin tagged id
  • Handle __dirname and __filename for ES modules
  • Rename single nested __webpack_export__ and __webpack_require__ in already bundled code
  • [Types] webpack function type
  • [Types] NormalModule type
  • [Types] Multi compiler configuration type
  • [Types] Fixed regression in custom hashDigest type
  • [CSS] No extra runtime for initial chunk
  • [CSS] Fixed a lot of CSS modules bugs

v5.102.1

Compare Source

Fixes
  • Supported extends with env for browserslist
  • Supported JSONP fragment format for web workers.
  • Fixed dynamic import support in workers using browserslist.
  • Fixed default defer import mangling.
  • Fixed default import of commonjs externals for SystemJS format.
  • Fixed context modules to the same file with different import attributes.
  • Fixed typescript types.
  • Improved import.meta warning messages to be more clear when used directly.
  • [CSS] Fixed CC_UPPER_U parsing (E -> U) in tokenizer.

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

This PR contains the following updates: | Package | Change | [Age](https://docs.renovatebot.com/merge-confidence/) | [Confidence](https://docs.renovatebot.com/merge-confidence/) | |---|---|---|---| | [webpack](https://github.com/webpack/webpack) | [`5.102.0` -> `5.104.1`](https://renovatebot.com/diffs/npm/webpack/5.102.0/5.104.1) | ![age](https://developer.mend.io/api/mc/badges/age/npm/webpack/5.104.1?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/webpack/5.102.0/5.104.1?slim=true) | --- ### Release Notes <details> <summary>webpack/webpack (webpack)</summary> ### [`v5.104.1`](https://github.com/webpack/webpack/blob/HEAD/CHANGELOG.md#51041) [Compare Source](https://github.com/webpack/webpack/compare/v5.104.0...v5.104.1) ##### Patch Changes - [`2efd21b`](https://github.com/webpack/webpack/commit/2efd21b): Reexports runtime calculation should not accessing **WEBPACK\_IMPORT\_KEY** decl with var. - [`c510070`](https://github.com/webpack/webpack/commit/c510070): Fixed a user information bypass vulnerability in the HttpUriPlugin plugin. ### [`v5.104.0`](https://github.com/webpack/webpack/blob/HEAD/CHANGELOG.md#51040) [Compare Source](https://github.com/webpack/webpack/compare/v5.103.0...v5.104.0) ##### Minor Changes - [`d3dd841`](https://github.com/webpack/webpack/commit/d3dd841): Use method shorthand to render module content in `__webpack_modules__` object. - [`d3dd841`](https://github.com/webpack/webpack/commit/d3dd841): Enhance `import.meta.env` to support object access. - [`4baab4e`](https://github.com/webpack/webpack/commit/4baab4e): Optimize dependency sorting in updateParent: sort each module only once by deferring to finishUpdateParent(), and reduce traversal count in sortWithSourceOrder by caching WeakMap values upfront. - [`04cd530`](https://github.com/webpack/webpack/commit/04cd530): Handle more at-rules for CSS modules. - [`cafae23`](https://github.com/webpack/webpack/commit/cafae23): Added options to control the renaming of at-rules and various identifiers in CSS modules. - [`d3dd841`](https://github.com/webpack/webpack/commit/d3dd841): Added `base64url`, `base62`, `base58`, `base52`, `base49`, `base36`, `base32` and `base25` digests. - [`5983843`](https://github.com/webpack/webpack/commit/5983843): Provide a stable runtime function variable `__webpack_global__`. - [`d3dd841`](https://github.com/webpack/webpack/commit/d3dd841): Improved `localIdentName` hashing for CSS. ##### Patch Changes - [`22c48fb`](https://github.com/webpack/webpack/commit/22c48fb): Added module existence check for informative error message in development mode. - [`50689e1`](https://github.com/webpack/webpack/commit/50689e1): Use the fully qualified class name (or export name) for `[fullhash]` placeholder in CSS modules. - [`d3dd841`](https://github.com/webpack/webpack/commit/d3dd841): Support universal lazy compilation. - [`d3dd841`](https://github.com/webpack/webpack/commit/d3dd841): Fixed module library export definitions when multiple runtimes. - [`d3dd841`](https://github.com/webpack/webpack/commit/d3dd841): Fixed CSS nesting and CSS custom properties parsing. - [`d3dd841`](https://github.com/webpack/webpack/commit/d3dd841): Don't write fragment from URL to filename and apply fragment to module URL. - [`aab1da9`](https://github.com/webpack/webpack/commit/aab1da9): Fixed bugs for `css/global` type. - [`d3dd841`](https://github.com/webpack/webpack/commit/d3dd841): Compatibility `import.meta.filename` and `import.meta.dirname` with `eval` devtools. - [`d3dd841`](https://github.com/webpack/webpack/commit/d3dd841): Handle nested `__webpack_require__`. - [`728ddb7`](https://github.com/webpack/webpack/commit/728ddb7): The speed of identifier parsing has been improved. - [`0f8b31b`](https://github.com/webpack/webpack/commit/0f8b31b): Improve types. - [`d3dd841`](https://github.com/webpack/webpack/commit/d3dd841): Don't corrupt `debugId` injection when `hidden-source-map` is used. - [`2179fdb`](https://github.com/webpack/webpack/commit/2179fdb): Re-validate HttpUriPlugin redirects against allowedUris, restrict to http(s) and add a conservative redirect limit to prevent SSRF and untrusted content inclusion. Redirects failing policy are rejected before caching/lockfile writes. - [`d3dd841`](https://github.com/webpack/webpack/commit/d3dd841): Serialize `HookWebpackError`. - [`d3dd841`](https://github.com/webpack/webpack/commit/d3dd841): Added ability to use built-in properties in dotenv and define plugin. - [`3c4319f`](https://github.com/webpack/webpack/commit/3c4319f): Optimizing the regular expression character class by specifying ranges for runtime code. - [`d3dd841`](https://github.com/webpack/webpack/commit/d3dd841): Reduce collision for local indent name in CSS. - [`d3dd841`](https://github.com/webpack/webpack/commit/d3dd841): Remove CSS link tags when CSS imports are removed. ### [`v5.103.0`](https://github.com/webpack/webpack/releases/tag/v5.103.0) [Compare Source](https://github.com/webpack/webpack/compare/v5.102.1...v5.103.0) ##### Features - Added `DotenvPlugin` and top level `dotenv` option to enable this plugin - Added `WebpackManifestPlugin` - Added support the `ignoreList` option in devtool plugins - Allow to use custom javascript parse function - Added `import.meta.env` support for environment variables - Added support for `import.meta.dirname` and `import.meta.filename` - Added support `import.defer()` for statistical path - Handle import.meta.main - Added suport to setup named exports for JSON modules and disable usage named export for `import file from "./file.json" with { type: "json" }` - Added support `__dirname`/`__filename`/`import.meta.dirname`/`import.meta.filename` for universal target - \[CSS] Added the `exportType` option with `link` (by default), "text" and `css-style-sheet` values - \[CSS] Added support for `composes` properties ##### Fixes - The `dependOn` chunk must be loaded before the common chunk - Return to namespace import when the external request includes a specific export - No runtime extra runtime code for module libraries - Delay HMR accept dependencies to preserve import attributes - Properly handle external presets for universal target - Fixed incorrect identifier of import binding for module externals - Fixed when defer import and dynamic default export mixed - Reduce generated output when `globalThis` supported - Fixed loading async modules in defer import - Reexport module for default import when no used exports for systemjs library - Rename HarmonyExportDependencyParserPlugin exported id to CompatibilityPlugin tagged id - Handle `__dirname` and `__filename` for ES modules - Rename single nested `__webpack_export__` and `__webpack_require__` in already bundled code - \[Types] webpack function type - \[Types] NormalModule type - \[Types] Multi compiler configuration type - \[Types] Fixed regression in custom `hashDigest` type - \[CSS] No extra runtime for initial chunk - \[CSS] Fixed a lot of CSS modules bugs ### [`v5.102.1`](https://github.com/webpack/webpack/releases/tag/v5.102.1) [Compare Source](https://github.com/webpack/webpack/compare/v5.102.0...v5.102.1) ##### Fixes - Supported `extends` with `env` for `browserslist` - Supported `JSONP` fragment format for web workers. - Fixed dynamic import support in workers using `browserslist`. - Fixed default defer import mangling. - Fixed default import of `commonjs` externals for `SystemJS` format. - Fixed context modules to the same file with different import attributes. - Fixed typescript types. - Improved `import.meta` warning messages to be more clear when used directly. - \[CSS] Fixed CC\_UPPER\_U parsing (E -> U) in tokenizer. </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xNDYuMCIsInVwZGF0ZWRJblZlciI6IjQyLjUyLjgiLCJ0YXJnZXRCcmFuY2giOiJtYXN0ZXIiLCJsYWJlbHMiOlsicmVub3ZhdGUtYm90Il19-->
renovate-bot commented 2025-10-13 05:22:25 +05:30
Author
Member
Copy link

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

  • any of the package files in this branch needs updating, or
  • the branch becomes conflicted, or
  • you click the rebase/retry checkbox if found above, or
  • you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: yarn.lock
Unknown Syntax Error: Unsupported option name ("--ignore-platform").

$ yarn install [--json] [--immutable] [--immutable-cache] [--refresh-lockfile] [--check-cache] [--check-resolutions] [--inline-builds] [--mode #0]
### ⚠️ Artifact update problem Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is. ♻ Renovate will retry this branch, including artifacts, only when one of the following happens: - any of the package files in this branch needs updating, or - the branch becomes conflicted, or - you click the rebase/retry checkbox if found above, or - you rename this PR's title to start with "rebase!" to trigger it manually The artifact failure details are included below: ##### File name: yarn.lock ``` Unknown Syntax Error: Unsupported option name ("--ignore-platform"). $ yarn install [--json] [--immutable] [--immutable-cache] [--refresh-lockfile] [--check-cache] [--check-resolutions] [--inline-builds] [--mode #0] ```
renovate-bot force-pushed renovate/webpack-5.x-lockfile from 799af2eec6
Some checks failed
renovate/artifacts Artifact file update failure
to baa1c0bccb
Some checks failed
renovate/artifacts Artifact file update failure
ci/woodpecker/push/woodpecker Pipeline is pending
Details
ci/woodpecker/pr/woodpecker Pipeline is pending
Details
ci/woodpecker/pull_request_metadata/woodpecker Pipeline is pending
Details
2025-11-24 05:23:27 +05:30 Compare
renovate-bot changed title from chore(deps): update dependency webpack to v5.102.1 to chore(deps): update dependency webpack to v5.103.0 2025-11-24 05:23:33 +05:30
renovate-bot force-pushed renovate/webpack-5.x-lockfile from baa1c0bccb
Some checks failed
renovate/artifacts Artifact file update failure
ci/woodpecker/push/woodpecker Pipeline is pending
Details
ci/woodpecker/pr/woodpecker Pipeline is pending
Details
ci/woodpecker/pull_request_metadata/woodpecker Pipeline is pending
Details
to cc4233e3f2
Some checks failed
renovate/artifacts Artifact file update failure
ci/woodpecker/push/woodpecker Pipeline is pending
Details
ci/woodpecker/pr/woodpecker Pipeline is pending
Details
ci/woodpecker/pull_request_metadata/woodpecker Pipeline is pending
Details
2025-12-22 05:17:50 +05:30 Compare
renovate-bot changed title from chore(deps): update dependency webpack to v5.103.0 to chore(deps): update dependency webpack to v5.104.1 2025-12-22 05:17:58 +05:30
Some checks failed
renovate/artifacts Artifact file update failure
ci/woodpecker/push/woodpecker Pipeline is pending
Details
ci/woodpecker/pr/woodpecker Pipeline is pending
Details
ci/woodpecker/pull_request_metadata/woodpecker Pipeline is pending
Details
This pull request can be merged automatically.
You are not authorized to merge this pull request.
View command line instructions

Checkout

From your project repository, check out a new branch and test the changes.
git fetch -u origin renovate/webpack-5.x-lockfile:renovate/webpack-5.x-lockfile
git switch renovate/webpack-5.x-lockfile

Merge

Merge the changes and update on Forgejo.

Warning: The "Autodetect manual merge" setting is not enabled for this repository, you will have to mark this pull request as manually merged afterwards.

git switch master
git merge --no-ff renovate/webpack-5.x-lockfile
git switch renovate/webpack-5.x-lockfile
git rebase master
git switch master
git merge --ff-only renovate/webpack-5.x-lockfile
git switch renovate/webpack-5.x-lockfile
git rebase master
git switch master
git merge --no-ff renovate/webpack-5.x-lockfile
git switch master
git merge --squash renovate/webpack-5.x-lockfile
git switch master
git merge --ff-only renovate/webpack-5.x-lockfile
git switch master
git merge renovate/webpack-5.x-lockfile
git push origin master
Sign in to join this conversation.
Reviewers
No reviewers
Labels
Clear labels
  
bug

Something is not working

  
duplicate

This issue or pull request already exists

  
enhancement

New feature

  
help wanted

Need some help

  
invalid

Something is wrong

  
question

More information is needed

  
renovate-bot

   
renovate-security

   
security

   
wontfix

This won't be fixed

No labels
bug
duplicate
enhancement
help wanted
invalid
question
renovate-bot
renovate-security
security
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
mCaptcha/pow_sha256-polyfill!119
No description provided.