[Snyk] Upgrade rollup from 3.29.5 to 4.22.5#991
Open
leonardoadame wants to merge 1 commit intomasterfrom
Open
Conversation
Snyk has created this PR to upgrade rollup from 3.29.5 to 4.22.5. See this package in npm: rollup See this project in Snyk: https://app.snyk.io/org/leonardoadame/project/30c4d01a-dbce-4ff8-a4a3-78e49c26e2d5?utm_source=github&utm_medium=referral&page=upgrade-pr
|
|
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to upgrade rollup from 3.29.5 to 4.22.5.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 90 versions ahead of your current version.
The recommended version was released on 25 days ago.
Release notes
Package name: rollup
-
4.22.5 - 2024-09-27
- Allow parsing of certain unicode characters again (#5674)
- #5674: Fix panic with unicode characters (@ sapphi-red, @ lukastaegert)
- #5675: chore(deps): update dependency rollup to v4.22.4 [security] (@ renovate[bot])
- #5680: chore(deps): update dependency @ rollup/plugin-commonjs to v28 (@ renovate[bot], @ lukastaegert)
- #5681: chore(deps): update dependency @ rollup/plugin-replace to v6 (@ renovate[bot])
- #5682: chore(deps): update dependency @ rollup/plugin-typescript to v12 (@ renovate[bot])
- #5684: chore(deps): lock file maintenance minor/patch updates (@ renovate[bot])
-
4.22.4 - 2024-09-21
- Fix a vulnerability in generated code that affects IIFE, UMD and CJS bundles when run in a browser context (#5671)
- #5670: refactor: Use object.prototype to check for reserved properties (@ YuHyeonWook)
- #5671: Fix DOM Clobbering CVE (@ lukastaegert)
-
4.22.3 - 2024-09-21
- Ensure that mutations in modules without side effects are observed while properly handling transitive dependencies (#5669)
- #5669: Ensure impure dependencies of pure modules are added (@ lukastaegert)
-
4.22.3-0 - 2024-09-20
-
4.22.2 - 2024-09-20
- Revert fix for side effect free modules until other issues are investigated (#5667)
- #5667: Partially revert #5658 and re-apply #5644 (@ lukastaegert)
-
4.22.1 - 2024-09-20
- Revert #5644 "stable chunk hashes" while issues are being investigated
- #5663: chore(deps): update dependency inquirer to v11 (@ renovate[bot], @ lukastaegert)
- #5664: chore(deps): lock file maintenance minor/patch updates (@ renovate[bot])
- #5665: fix: type in CI file (@ YuHyeonWook)
- #5666: chore(deps): lock file maintenance minor/patch updates (@ renovate[bot])
-
4.22.0 - 2024-09-19
- Add additional known global values to avoid access side effects (#5651)
- Ensure deterministic chunk hash generation despite async renderChunk hook (#5644)
- Improve side effect detection when using "smallest" treeshaking preset when imports are optimized away (#5658)
- #5644: fix: apply final hashes deterministically with stable placeholders set (@ mattkubej, @ lukastaegert)
- #5646: chore(deps): update dependency @ mermaid-js/mermaid-cli to v11 (@ renovate[bot])
- #5647: chore(deps): update dependency concurrently to v9 (@ renovate[bot])
- #5648: chore(deps): lock file maintenance minor/patch updates (@ renovate[bot])
- #5651: feat: add
- #5653: Fix example selection in REPL (@ lukastaegert)
- #5657: chore(deps): update dependency vite to v5.4.6 [security] (@ renovate[bot])
- #5658: Detect variable reassignments in modules without side effects (@ lukastaegert)
-
4.21.3 - 2024-09-12
- Always respect side effects in left-hand side of optional chain (#5642)
- Update stack trace for augmented errors to not hide relevant information (#5640)
- #5636: chore(deps): lock file maintenance minor/patch updates (@ renovate[bot])
- #5637: chore(deps): lock file maintenance (@ renovate[bot])
- #5640: fix: keep the message of stack up-to-date (@ TrickyPi)
- #5642: fix: include left-side effect of optional chaining in the end of hasEffectsAsChainElement (@ TrickyPi)
-
4.21.2 - 2024-08-30
-
4.21.1 - 2024-08-26
-
4.21.0 - 2024-08-18
-
4.20.0 - 2024-08-03
-
4.19.2 - 2024-08-01
-
4.19.1 - 2024-07-27
-
4.19.0 - 2024-07-20
-
4.18.1 - 2024-07-08
-
4.18.0 - 2024-05-22
-
4.17.2 - 2024-04-30
-
4.17.1 - 2024-04-29
-
4.17.0 - 2024-04-27
-
4.16.4 - 2024-04-23
-
4.16.3 - 2024-04-23
-
4.16.2 - 2024-04-22
-
4.16.1 - 2024-04-21
-
4.16.0 - 2024-04-21
-
4.15.0 - 2024-04-20
-
4.14.3 - 2024-04-15
-
4.14.2 - 2024-04-12
-
4.14.1 - 2024-04-07
-
4.14.0 - 2024-04-03
-
4.13.2 - 2024-03-28
-
4.13.1 - 2024-03-27
-
4.13.1-1 - 2024-03-24
-
4.13.0 - 2024-03-12
-
4.12.1 - 2024-03-06
-
4.12.0 - 2024-02-16
-
4.11.0 - 2024-02-15
-
4.10.0 - 2024-02-10
-
4.9.6 - 2024-01-21
-
4.9.5 - 2024-01-12
-
4.9.4 - 2024-01-06
-
4.9.3 - 2024-01-05
-
4.9.2 - 2023-12-30
-
4.9.1 - 2023-12-17
-
4.9.0 - 2023-12-13
-
4.8.0 - 2023-12-11
-
4.7.0 - 2023-12-08
-
4.6.1 - 2023-11-30
-
4.6.0 - 2023-11-26
-
4.5.2 - 2023-11-24
-
4.5.1 - 2023-11-21
-
4.5.0 - 2023-11-18
-
4.4.1 - 2023-11-14
-
4.4.0 - 2023-11-12
-
4.3.1 - 2023-11-11
-
4.3.0 - 2023-11-03
-
4.2.0 - 2023-10-31
-
4.1.6 - 2023-10-31
-
4.1.5 - 2023-10-28
-
4.1.4 - 2023-10-16
-
4.1.3 - 2023-10-15
-
4.1.1 - 2023-10-15
-
4.1.0 - 2023-10-14
-
4.0.2 - 2023-10-06
-
4.0.1 - 2023-10-06
-
4.0.0 - 2023-10-05
-
4.0.0-25 - 2023-10-05
-
4.0.0-24 - 2023-10-03
-
4.0.0-23 - 2023-09-26
-
4.0.0-22 - 2023-09-26
-
4.0.0-21 - 2023-09-24
-
4.0.0-20 - 2023-09-24
-
4.0.0-19 - 2023-09-15
-
4.0.0-18 - 2023-09-15
-
4.0.0-17 - 2023-09-15
-
4.0.0-16 - 2023-09-15
-
4.0.0-15 - 2023-09-15
-
4.0.0-14 - 2023-09-15
-
4.0.0-13 - 2023-08-24
-
4.0.0-12 - 2023-08-23
-
4.0.0-10 - 2023-08-21
-
4.0.0-9 - 2023-08-20
-
4.0.0-8 - 2023-08-20
-
4.0.0-7 - 2023-08-20
-
4.0.0-6 - 2023-08-20
-
4.0.0-5 - 2023-08-20
-
4.0.0-4 - 2023-08-04
-
4.0.0-3 - 2023-08-04
-
4.0.0-2 - 2023-08-01
-
4.0.0-1 - 2023-08-01
-
3.29.5 - 2024-09-21
from rollup GitHub release notes4.22.5
2024-09-27
Bug Fixes
Pull Requests
4.22.4
2024-09-21
Bug Fixes
Pull Requests
4.22.3
2024-09-21
Bug Fixes
Pull Requests
4.22.3-0
4.22.2
2024-09-20
Bug Fixes
Pull Requests
4.22.1
2024-09-20
Bug Fixes
Pull Requests
4.22.0
2024-09-19
Features
Bug Fixes
Pull Requests
AggregateError,FinalizationRegistry,WeakRefto knownGlobals (@ re-taro)4.21.3
2024-09-12
Bug Fixes
Pull Requests
3.29.5
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information: