chore(deps): bump json5, postcss-loader, react-styleguidist, remark-cli, rollup-plugin-postcss, sass-loader, url-loader and webpack

[dependabot]

Bumps json5 to 2.2.2 and updates ancestor dependencies json5, postcss-loader, react-styleguidist, remark-cli, rollup-plugin-postcss, sass-loader, url-loader and webpack. These dependencies need to be updated together.

Updates json5 from 2.1.1 to 2.2.2

Release notes

Sourced from json5's releases.

v2.2.2

• Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295).

v2.2.1

• Fix: Removed dependence on minimist to patch CVE-2021-44906. (#266)

v2.2.0

• New: Accurate and documented TypeScript declarations are now included. There is no need to install @types/json5. (#236, #244)

v2.1.3 [code, diff]

• Fix: An out of memory bug when parsing numbers has been fixed. (#228, #229)

v2.1.2

• Fix: Bump minimist to v1.2.5. (#222)

Changelog

Sourced from json5's changelog.

v2.2.2 [code, diff]

• Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295).

v2.2.1 [code, diff]

• Fix: Removed dependence on minimist to patch CVE-2021-44906. (#266)

v2.2.0 [code, diff]

• New: Accurate and documented TypeScript declarations are now included. There is no need to install @types/json5. (#236, #244)

v2.1.3 [code, diff]

• Fix: An out of memory bug when parsing numbers has been fixed. (#228, #229)

v2.1.2 [code, diff]

• Fix: Bump minimist to v1.2.5. (#222)

Commits

• 14f8cb1 2.2.2
• 10cc7ca docs: update CHANGELOG for v2.2.2
• 7774c10 fix: add proto to objects and arrays
• edde30a Readme: slight tweak to intro
• 97286f8 Improve example in readme
• d720b4f Improve readme (e.g. explain JSON5 better!) (#291)
• 910ce25 docs: fix spelling of Aseem
• 2aab4dd test: require tap as t in cli tests
• 6d42686 test: remove mocha syntax from tests
• 4798b9d docs: update installation and usage for modules
• Additional commits viewable in compare view

Updates postcss-loader from 3.0.0 to 7.0.2

Release notes

Sourced from postcss-loader's releases.

v7.0.2

7.0.2 (2022-11-29)

Bug Fixes

• support ESM version of postcss.config.js and postcss.config.mjs (#614) (955085f)

v7.0.1

7.0.1 (2022-07-11)

Bug Fixes

• unexpected failing on CSS syntax error (#593) (888d72e)

v7.0.0

7.0.0 (2022-05-18)

⚠ BREAKING CHANGES

• minimum supported Node.js version is 14.15.0

v6.2.1

6.2.1 (2021-11-26)

Bug Fixes

• watching configuration (#553) (7f165b4)

v6.2.0

6.2.0 (2021-10-13)

Features

• add link field in schema (#540) (1ae8212)

v6.1.1

6.1.1 (2021-07-01)

Bug Fixes

• do not swallow exception from postcss (2eec42b)

v6.1.0

6.1.0 (2021-06-10)

... (truncated)

Changelog

Sourced from postcss-loader's changelog.

7.0.2 (2022-11-29)

Bug Fixes

• support ESM version of postcss.config.js and postcss.config.mjs (#614) (955085f)

7.0.1 (2022-07-11)

Bug Fixes

• unexpected failing on CSS syntax error (#593) (888d72e)

7.0.0 (2022-05-18)

⚠ BREAKING CHANGES

• minimum supported Node.js version is 14.15.0

6.2.1 (2021-11-26)

Bug Fixes

• watching configuration (#553) (7f165b4)

6.2.0 (2021-10-13)

Features

• add link field in schema (#540) (1ae8212)

6.1.1 (2021-07-01)

Bug Fixes

• do not swallow exception from postcss (2eec42b)

6.1.0 (2021-06-10)

Features

• allow String value for the "implementation" option (0d342b1)

6.0.0 (2021-06-10)

... (truncated)

Commits

• 2129116 chore(release): 7.0.2
• 955085f fix: support ESM version of postcss.config.js and postcss.config.mjs (#614)
• b0f4749 chore: update styfle/cancel-workflow-action (#612)
• ab3ff44 chore: add cSpell to check spelling issues (#610)
• 3177135 chore: update dependencies to the latest version (#609)
• 08b19c7 docs: update cla link (#608)
• 49a0943 ci: add node v19 (#607)
• d274f90 ci: add dependency review action (#606)
• 64af37b chore: update dependencies to the latest version (#605)
• 548e8aa chore: update commitlint action (#604)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by evilebottnawi, a new releaser for postcss-loader since your current version.

Updates react-styleguidist from 8.0.6 to 13.0.0

Release notes

Sourced from react-styleguidist's releases.

v13.0.0

13.0.0 (2022-10-14)

• Upgrade to React 17 (#2037) (374acc5), closes #2037

BREAKING CHANGES

• React 16 no longer supported

v12.0.1

12.0.1 (2022-10-06)

Bug Fixes

• ensure devserver client options are configurable (#2034) (f1a0c21)

v12.0.0

12.0.0 (2022-09-05)

Features

• Upgrade to Webpack 5 (#1996) (a460fcc), closes #1932

BREAKING CHANGES

• Webpack 4 is no longer supported.

v12.0.0-alpha9.9

• fix: Move sucrase back to dependencies 05825f79

styleguidist/react-styleguidist@v12.0.0-alpha9.8...v12.0.0-alpha9.9

v12.0.0-alpha9.8

• Polyfill process for webpack 5 925b40de
• Avoid errors about imports without extension in webpack 5 70a06179
• Fix pagePerSection, improve types, simplify 13898771
• Fix isolation for the first (index = 0) example faf749c3
• Refactor inline Markdown 3dffa2e1

v12.0.0-alpha9.7

• Use // to instead of / for target index in the URL to avoid conflicts d563606e

styleguidist/react-styleguidist@v12.0.0-alpha9.6...v12.0.0-alpha9.7

... (truncated)

Commits

• 374acc5 Upgrade to React 17 (#2037)
• f1a0c21 fix: ensure devserver client options are configurable (#2034)
• 80b5e84 chore: Try to remove Netlify config to fix the site build
• cfd8458 chore: Update lock files
• 51db5e1 docs: Move ads to the top of the sidebar, fix refreshing on navigation 📢
• a460fcc feat: Upgrade to Webpack 5 (#1996)
• 4c55077 Build(deps): Bump ua-parser-js in /examples/webpack (#1928)
• e630725 Build(deps): Bump browserslist in /examples/webpack (#1927)
• 2c855fa Build(deps): Bump follow-redirects in /examples/react-native (#1924)
• 7f4d1fa Build(deps): Bump follow-redirects in /examples/preact (#1921)
• Additional commits viewable in compare view

Updates remark-cli from 6.0.1 to 11.0.0

Release notes

Sourced from remark-cli's releases.

remark-cli@11.0.0

• 145019c4 Update unified-args breaking: remove support for Node 12 tiny chance of breaking: this adheres properly to YAML 1.2 tiny chance of breaking: this matches modern node in how to resolve plugins by @​remcohaszing in remarkjs/remark#1008

Full Changelog: https://github.com/remarkjs/remark/compare/14.0.2...remark-cli@11.0.0

remark-cli@10.0.1

See remark@14.0.2

remark-cli@9.0.0

See remark@13.0.0

remark-cli@9.0.0-alpha.1

See [GH-536](https://github.com/remarkjs/remark/issues/536)

remark-cli@9.0.0-alpha.0

See [GH-536](https://github.com/remarkjs/remark/issues/536)

remark-cli@8.0.1

See remark@12.0.1

remark-cli@8.0.0

• 910cf69 Update remark (breaking, please see its release section)
• f9f84fc Update unified-args (breaking, please see its release section)

remark-cli@7.0.1

See remark@11.0.2

Project

• 8b2a3ff Add funding fields to packages
• 4e020e8 Fix dtslint

remark-cli@7.0.0

Breaking

• a9fcd79 Update remark (see remarkjs/remark@11.0.0)
• a5a895a Update unified-args (see unifiedjs/unified-args@7.0.0)

Commits

• 99179c6 remark-cli: 11.0.0
• f20f9d5 Add example of typing a plugin
• cba99d6 Update dev-dependencies
• 145019c Update unified-args
• 56eb9ed Remove support for Node.js 12 in CLI
• fba413a Add remark-github-beta-blockquote-admonitions to list of plugins
• acce1ab Update dev-dependencies
• c0e8586 Replace skypack w/ esm.sh
• 1a9e75c Update dev-dependencies
• 5730ad2 Add canary workflow
• Additional commits viewable in compare view

Updates rollup-plugin-postcss from 2.0.3 to 4.0.2

Release notes

Sourced from rollup-plugin-postcss's releases.

v4.0.2

4.0.2 (2021-11-22)

Bug Fixes

• prioritize dart-sass over node-sass (#402) (caf3429)

v4.0.1

4.0.1 (2021-08-12)

Bug Fixes

• update to cssnano 5 (#357) (118253e)

v4.0.0

4.0.0 (2020-12-07)

Features

• upgrade postcss to 8.x (ceee1bc)

BREAKING CHANGES

• upgrade postcss to 8.x

Co-authored-by: Edward Elric SASUKE688848@gmail.com Co-authored-by: Ward Peeters ward@coding-tech.com

v3.1.8

3.1.8 (2020-08-30)

Bug Fixes

• make sourceMaps relative to the CSS output file (#274) (3de028d)

v3.1.7

3.1.7 (2020-08-30)

Bug Fixes

• types: options is actually optional (#311) (a7299a4)

v3.1.6

3.1.6 (2020-08-24)

... (truncated)

Commits

• 71593d9 chore: update ci node version
• caf3429 fix: prioritize dart-sass over node-sass (#402)
• 118253e fix: update to cssnano 5 (#357)
• a03c7bf build(deps): bump ini from 1.3.5 to 1.3.7 (#344)
• ceee1bc feat: upgrade postcss to 8.x
• 375412c change postcss to 8.x (#343)
• 6480f02 chore: upgrade dependencies (#342)
• 700eb14 chore: update postcss version to 8 (#325)
• 661c9ca chore: Fix typo in comment (#318)
• 3de028d fix: make sourceMaps relative to the CSS output file (#274)
• Additional commits viewable in compare view

Updates sass-loader from 7.3.1 to 13.2.0

Release notes

Sourced from sass-loader's releases.

v13.2.0

13.2.0 (2022-11-09)

Features

• add support for node-sass v8 (#1100) (e5581b7)

v13.1.0

13.1.0 (2022-10-06)

Features

• allow to extend conditionNames (#1092) (6e02c64)

v13.0.2

13.0.2 (2022-06-27)

Bug Fixes

• hide error stacktrace on Sass errors (#1069) (5e6a61b)

v13.0.1

13.0.1 (2022-06-24)

Bug Fixes

• optimize debug message formatting, #1065 (#1066) (49a578a)

v13.0.0

13.0.0 (2022-05-18)

⚠ BREAKING CHANGES

• minimum supported Node.js version is 14.15.0 (#1048)
• emit @warn at-rules as webpack warnings by default, if you want to revert behavior please use the warnRuleAsWarning option (#1054) (58ffb68)

Bug Fixes

• do not crash on importers for modern API (#1052) (095814e)
• do not store original sass error in webpack error(#1053) (06d7533)

v12.6.0

12.6.0 (2022-02-15)

... (truncated)

Changelog

Sourced from sass-loader's changelog.

13.2.0 (2022-11-09)

Features

• add support for node-sass v8 (#1100) (e5581b7)

13.1.0 (2022-10-06)

Features

• allow to extend conditionNames (#1092) (6e02c64)

13.0.2 (2022-06-27)

Bug Fixes

• hide error stacktrace on Sass errors (#1069) (5e6a61b)

13.0.1 (2022-06-24)

Bug Fixes

• optimize debug message formatting, #1065 (#1066) (49a578a)

13.0.0 (2022-05-18)

⚠ BREAKING CHANGES

• minimum supported Node.js version is 14.15.0 (#1048)
• emit @warn at-rules as webpack warnings by default, if you want to revert behavior please use the warnRuleAsWarning option (#1054) (58ffb68)

Bug Fixes

• do not crash on importers for modern API (#1052) (095814e)
• do not store original sass error in webpack error(#1053) (06d7533)

12.6.0 (2022-02-15)

Features

• added support for automatic loading of sass-embedded (#1025) (c8dae87)

12.5.0 (2022-02-14)

... (truncated)

Commits

• e8fbc79 chore(release): 13.2.0
• e5581b7 feat: add support for node-sass v8 (#1100)
• acb3ce0 chore(deps): bump loader-utils from 2.0.2 to 2.0.3 (#1099)
• 1cdea4e chore: update dependencies to the latest version (#1098)
• 094a303 docs: update cla link (#1096)
• c32f63a ci: add dependency review action (#1094)
• b31751d chore(release): 13.1.0
• 6e02c64 feat: allow to extend conditionNames (#1092)
• edab08f chore: update dependencies to the latest version (#1093)
• 3a34fef chore: update commitlint action (#1091)
• Additional commits viewable in compare view

Updates url-loader from 1.1.2 to 4.1.1

Release notes

Sourced from url-loader's releases.

v4.1.1

4.1.1 (2020-10-09)

Chore

• update schema-utils

v4.1.0

4.1.0 (2020-04-08)

Features

• the mimetype option can be Boolean
• added the encoding option
• added the generator option

v4.0.0

4.0.0 (2020-03-17)

⚠ BREAKING CHANGES

• deps: migrate on mime-types package, some rare types may have other mimetype

v3.0.0

3.0.0 (2019-11-26)

BREAKING CHANGES

• minimum required nodejs version is 10.13.0
• rename the esModules option to esModule
• switch to ES modules by default (the option esModule is true by default)

v2.3.0

2.3.0 (2019-11-21)

Features

• new esModules option to output ES modules (0ee2b99)

v2.2.0

2.2.0 (2019-10-04)

Features

• limit allow using Infinity and Number (#192) (2bffcfd)

... (truncated)

Changelog

Sourced from url-loader's changelog.

4.1.1 (2020-10-09)

Chore

• update schema-utils

4.1.0 (2020-04-08)

Features

• the mimetype option can be Boolean
• added the encoding option
• added the generator option

4.0.0 (2020-03-17)

⚠ BREAKING CHANGES

• deps: migrate on mime-types package, some rare types may have other mimetype

Bug Fixes

• description on the esModule option (#204) (a2f127d)

• deps: migrate on mime-types package (#209) (fc8721f)

3.0.0 (2019-11-26)

BREAKING CHANGES

• minimum required nodejs version is 10.13.0
• rename the esModules option to esModule
• switch to ES modules by default (the option esModule is true by default)

2.3.0 (2019-11-21)

Features

• new esModules option to output ES modules (0ee2b99)

2.2.0 (2019-10-04)

Features

... (truncated)

Commits

• acf4eb1 chore(release): 4.1.1
• 20c744b chore(deps): update (#220)
• 1811901 chore: remove unnecessary deps
• 35eeed1 ci: migrate on github actions (#213)
• 06d270a chore(release): 4.1.0
• 488b6ec refactor: code (#212)
• 36f1354 feat: add encoding & generator options (#210)
• 8828d64 chore(release): 4.0.0
• fc8721f chore(deps): migrate on mime-types package (#209)
• f13757a chore(deps): update (#208)
• Additional commits viewable in compare view

Updates webpack from 4.41.2 to 5.75.0

Release notes

Sourced from webpack's releases.

v5.75.0

Bugfixes

• experiments.* normalize to false when opt-out
• avoid NaN%
• show the correct error when using a conflicting chunk name in code
• HMR code tests existance of window before trying to access it
• fix eval-nosources-* actually exclude sources
• fix race condition where no module is returned from processing module
• fix position of standalong semicolon in runtime code

Features

• add support for @import to extenal CSS when using experimental CSS in node
• add i64 support to the deprecated WASM implementation

Developer Experience

• expose EnableWasmLoadingPlugin
• add more typings
• generate getters instead of readonly properties in typings to allow overriding them

v5.74.0

Features

• add resolve.extensionAlias option which allows to alias extensions
  • This is useful when you are forced to add the .js extension to imports when the file really has a .ts extension (typescript + "type": "module")
• add support for ES2022 features like static blocks
• add Tree Shaking support for ProvidePlugin

Bugfixes

• fix persistent cache when some build dependencies are on a different windows drive
• make order of evaluation of side-effect-free modules deterministic between concatenated and non-concatenated modules
• remove left-over from debugging in TLA/async modules runtime code
• remove unneeded extra 1s timestamp offset during watching when files are actually untouched
  • This sometimes caused an additional second build which are not really needed
• fix shareScope option for ModuleFederationPlugin
• set "use-credentials" also for same origin scripts

Performance

• Improve memory usage and performance of aggregating needed files/directories for watching
  • This affects rebuild performance

Extensibility

• export HarmonyImportDependency for plugins

v5.73.0

... (truncated)

Commits

• 8241da7 5.75.0
• a91d923 Merge pull request #16458 from webpack/bugfix/semi
• 4608b11 Merge pull request #16457 from webpack/tooling/update
• dfdd0b0 Merge pull request #16122 from AnmolBansalDEV/bug/compilationCallback
• 23b9a1c Merge pull request #16167 from exposir/fixts
• 6f2c5e8 Merge pull request #16257 from alexzhang1030/calc_deterministic_verbose
• f7f36ad Merge pull request #16339 from Liamolucko/wasm-i64
• 761a542 fix semicolon position
• 2403a36 Merge pull request #16345 from ahabhgk/fix-eval-nosources
• c18203c update tooling
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.