Conversation

dependabot[bot]

Bumps terser to 5.14.2 and updates ancestor dependency @angular-devkit/build-angular. These dependencies need to be updated together.

Updates terser from 5.13.1 to 5.14.2

Changelog

Sourced from terser's changelog.

v5.14.2

  • Security fix for RegExps that should not be evaluated (regexp DDOS)
  • Source maps improvements (#1211)
  • Performance improvements in long property access evaluation (#1213)

v5.14.1

  • keep_numbers option added to TypeScript defs (#1208)
  • Fixed parsing of nested template strings (#1204)

v5.14.0

  • Switched to @​jridgewell/source-map for sourcemap generation (#1190, #1181)
  • Fixed source maps with non-terminated segments (#1106)
  • Enabled typescript types to be imported from the package (#1194)
  • Extra DOM props have been added (#1191)
  • Delete the AST while generating code, as a means to save RAM
Commits

Updates @angular-devkit/build-angular from 14.0.0 to 14.2.3

Release notes

Sourced from @​angular-devkit/build-angular's releases.

v14.2.3

14.2.3 (2022-09-15)

@​angular-devkit/build-angular

CommitDescription
fix - e7e0cb78fcorrectly display error messages that contain "at" text.
fix - 4756d7e06watch symbolic links

@​ngtools/webpack

CommitDescription
perf - 1e3ecbdb1avoid bootstrap conversion AST traversal where possible

Special Thanks

Alan Agius, Charles Lyding, Jason Bedard and Joey Perrott

v14.2.2

14.2.2 (2022-09-08)

@​schematics/angular

CommitDescription
fix - 6bfd6a7fbupdate minimum Angular version to 14.2

@​angular/cli

CommitDescription
fix - 5405a9b3bfavor non deprecated packages during update

@​angular-devkit/build-angular

CommitDescription
fix - 2b00bca61allow esbuild-based builder to use SVG Angular templates
fix - 45c95e1bfchange service worker errors to compilation errors
fix - ecc014d66handle service-worker serving with localize in dev-server
fix - 39ea128c1handling of @media queries inside css layers
fix - 17b7e1bdfissue warning when using deprecated tilde imports
fix - 3afd784f1watch index file when running build in watch mode

Special Thanks

Alan Agius, Charles Lyding, Jason Bedard and Joey Perrott

v14.2.1

14.2.1 (2022-08-26)

@​schematics/angular

CommitDescription
fix - e4ca46866update ng-packagr version to ^14.2.0

Special Thanks

Alan Agius

v14.2.0

... (truncated)

Changelog

Sourced from @​angular-devkit/build-angular's changelog.

14.2.3 (2022-09-15)

@​angular-devkit/build-angular

CommitTypeDescription
e7e0cb78ffixcorrectly display error messages that contain "at" text.
4756d7e06fixwatch symbolic links

@​ngtools/webpack

CommitTypeDescription
1e3ecbdb1perfavoid bootstrap conversion AST traversal where possible

Special Thanks

Alan Agius, Charles Lyding, Jason Bedard and Joey Perrott

15.0.0-next.0 (2022-09-08)

Breaking Changes

@​angular/cli

  • The 'path' option in schematics schema no longer has a special meaning. Use 'workingDirectory' smart default provider should be used instead.

@​schematics/angular

  • Removed unusedappDir option from Universal and App-Shell schematic. This option can safely be removed if present since it no longer has effect.

@​schematics/angular

CommitTypeDescription
57d93fb7dfixmark project as required option
69b221498refactorremove deprecated appDir option

@​angular/cli

CommitTypeDescription
774d349b7refactorremove deprecated path handler

@​angular-devkit/build-angular

... (truncated)

Commits
  • 7f25cb7 release: cut the v14.2.3 release
  • 7141dbc build: update saucelabs connect version
  • 9c29dd7 test(@​angular-devkit/build-angular): rewrite app-shell unit test into e2e
  • dcbc5ac test: unit test multiple node versions in separate jobs
  • 4756d7e fix(@​angular-devkit/build-angular): watch symbolic links
  • 82485d8 build: remove unneeded BUILD file licenses rule comments
  • 16b7ced refactor: remove unused file
  • 9dff404 test: don't run git clean on test failure
  • c854b8b build: update Bazel to 5.3 and rules_pkg to 0.7.1
  • 1e3ecbd perf(@​ngtools/webpack): avoid bootstrap conversion AST traversal where possible
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabotdependabot bot added the dependenciesPull requests that update a dependency filelabel Sep 21, 2022
@dependabot
Bump terser and @angular-devkit/build-angular
3912ed7
Bumps [terser](https://.com/terser/terser) to 5.14.2 and updates ancestor dependency [@angular-devkit/build-angular](https://.com/angular/angular-cli). These dependencies need to be updated together.


Updates `terser` from 5.13.1 to 5.14.2
- [Release notes](https://.com/terser/terser/releases)
- [Changelog](https://.com/terser/terser/blob/master/CHANGELOG.md)
- [Commits](terser/terser@v5.13.1...v5.14.2)

Updates `@angular-devkit/build-angular` from 14.0.0 to 14.2.3
- [Release notes](https://.com/angular/angular-cli/releases)
- [Changelog](https://.com/angular/angular-cli/blob/main/CHANGELOG.md)
- [Commits](angular/angular-cli@14.0.0...14.2.3)

---
updated-dependencies:
- dependency-name: terser
  dependency-type: indirect
- dependency-name: "@angular-devkit/build-angular"
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabotdependabot bot force-pushed the dependabot/npm_and_yarn/terser-and-angular-devkit/build-angular-5.14.2 branch from baea683 to 3912ed7 Compare October 1, 2022 15:51
Sign up for free to join this conversation on . Already have an account? Sign in to comment
No reviews
No one assigned
dependenciesPull requests that update a dependency file
None yet
No milestone

Successfully merging this pull request may close these issues.