Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade url-loader from 0.5.9 to 3.0.0 #8

Open
wants to merge 1 commit into
base: develop
Choose a base branch
from
Open

[Snyk] Upgrade url-loader from 0.5.9 to 3.0.0 #8

wants to merge 1 commit into from

Conversation

snyk-bot
Copy link

@snyk-bot snyk-bot commented Mar 7, 2020

Snyk has created this PR to upgrade url-loader from 0.5.9 to 3.0.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

Warning: This is a major version upgrade, and may be a breaking change.

  • The recommended version is 15 versions ahead of your current version.
  • The recommended version was released 3 months ago, on 2019-11-26.

The recommended version fixes:

Severity Issue Exploit Maturity
Regular Expression Denial of Service (ReDoS)
npm:mime:20170907		 No Known Exploit
Release notes
Package name: url-loader
  • 3.0.0 - 2019-11-26

    3.0.0 (2019-11-26)

    BREAKING CHANGES

    • minimum required nodejs version is 10.13.0
    • rename the esModules option to esModule
    • switch to ES modules by default (the option esModule is true by default)
  • 2.3.0 - 2019-11-21

    2.3.0 (2019-11-21)

    Features

    • new esModules option to output ES modules (0ee2b99)
  • 2.2.0 - 2019-10-04

    2.2.0 (2019-10-04)

    Features

  • 2.1.0 - 2019-07-18

    2.1.0 (2019-07-18)

    Features

  • 2.0.1 - 2019-06-25

    2.0.1 (2019-06-25)

    Bug Fixes

    • allow using limit as string when you use loader with query string (#185) (4842f93)
  • 2.0.0 - 2019-06-05

    2.0.0 (2019-06-05)

    Bug Fixes

    • rm unnecessary bin field (#163) (b603665)
    • limit should always be a number and 0 value handles as number (#180) (d82e453)
    • fallback loader will be used than limit is equal or greater (#179) (3c24545)

    Features

    BREAKING CHANGES

    • minimum required nodejs version is 8.9.0
    • limit should always be a number and 0 value handles as number
    • fallback loader will be used than limit is equal or greater (before only when greater)
  • 1.1.2 - 2018-10-10

    2018-10-10

    Bug Fixes

    • fallback options behaviour (#145) (03e631f)
    • package: add support for webpack =< v3.0.0 (peerDependencies) (#150) (a6860fc)
    • package: relax node version range (engines) (#155) (d37b108)
    • utils/normalizeFallback: correctly pass all options to the default fallback (file-loader) (#139) (401be63)
  • 1.1.1 - 2018-08-17

    2018-08-17

    Bug Fixes

    • correctly pass all options to the fallback (#143) (03e631f)
  • 1.1.0 - 2018-08-14

    2018-08-13

    Features

    • support fallback loader in options.fallback (#123) (017adc7), closes #118
  • 1.0.1 - 2018-03-03

    2018-03-03

    Bug Fixes

    • index: revert to CJS exports (module.exports) (#116) (7b60cc2)
  • 1.0.0 - 2018-03-03
  • 1.0.0-beta.0 - 2017-12-17
  • 0.6.2 - 2017-10-04
  • 0.6.1 - 2017-10-04
  • 0.6.0 - 2017-10-03
  • 0.5.9 - 2017-06-12
from url-loader GitHub release notes
Commit messages
Package name: url-loader
  • 4301f87 chore(release): 3.0.0
  • 3f0bbc5 refactor: next (#198)
  • 2451157 chore(release): 2.3.0
  • 0ee2b99 feat: new `esModules` option to output ES modules
  • cbd1950 chore(release): 2.2.0
  • 196110e fix: yarn pnp support (#195)
  • 9431124 docs: improve documentation about `fallback` (#194)
  • a251a23 chore(deps): update (#193)
  • 2bffcfd fix: limit must allow infinity and max value (#192)
  • 1b9dbd1 chore(release): 2.1.0
  • f3d4dd2 feat: improved validation error messages (#187)
  • 37c6acc chore(release): 2.0.1
  • 4842f93 fix: allow using limit as string when you use loader with query string (#185)
  • c0341da chore(defaults): update (#184)
  • 78833ac chore(release): 2.0.0
  • 4386b3e chore(deps): update (#182)
  • 60d2cb3 feat: limit option can be boolean (#181)
  • d82e453 fix: `limit` should always be a number and 0 value handles as number (#180)
  • 3c24545 fix: fallback loader will be used than limit is equal or greater (#179)
  • a6705cc test: test svg scenario. #176 (#177)
  • c2d7b73 chore: update `defaults` (#169)
  • 16bc97c chore: drop support for `webpack` < 4 (#166)
  • b603665 fix(package): rm unnecessary `bin` field (#163)
  • 0bbe0b8 chore(release): 1.1.2

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[//]: # (snyk:metadata:{"dependencies":[{"name":"url-loader","from":"0.5.9","to":"3.0.0"}],"packageManager":"npm","type":"auto","projectUrl":"https://app.snyk.io/org/saiichihashimoto/project/7d6180cf-f521-4b7d-88a4-b0bc39afc19b?utm_source=github&utm_medium=upgrade-pr","projectPublicId":"7d6180cf-f521-4b7d-88a4-b0bc39afc19b","env":"prod","prType":"upgrade","vulns":["npm:mime:20170907"],"issuesToFix":[{"issueId":"npm:mime:20170907","severity":"low","title":"Regular Expression Denial of Service (ReDoS)","exploitMaturity":"no-known-exploit"}],"upgrade":["npm:mime:20170907"],"upgradeInfo":{"versionsDiff":15,"publishedDate":"2019-11-26T11:43:04.615Z"},"templateVariants":[],"hasFixes":true,"isMajorUpgrade":true,"isBreakingChange":true})

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

fallback loader options
1 participant
@snyk-bot