Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

⬆️ Bump esbuild from 0.18.11 to 0.18.16 #154

Closed
wants to merge 1 commit into from
Closed

⬆️ Bump esbuild from 0.18.11 to 0.18.16 #154

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jul 24, 2023

Bumps esbuild from 0.18.11 to 0.18.16.

Release notes

Sourced from esbuild's releases.

v0.18.16

  • Fix a regression with whitespace inside :is() (#3265)

    The change to parse the contents of :is() in version 0.18.14 introduced a regression that incorrectly flagged the contents as a syntax error if the contents started with a whitespace token (for example div:is( .foo ) {}). This regression has been fixed.

v0.18.15

  • Add the --serve-fallback= option (#2904)

    The web server built into esbuild serves the latest in-memory results of the configured build. If the requested path doesn't match any in-memory build result, esbuild also provides the --servedir= option to tell esbuild to serve the requested path from that directory instead. And if the requested path doesn't match either of those things, esbuild will either automatically generate a directory listing (for directories) or return a 404 error.

    Starting with this release, that last step can now be replaced with telling esbuild to serve a specific HTML file using the --serve-fallback= option. This can be used to provide a "not found" page for missing URLs. It can also be used to implement a single-page app that mutates the current URL and therefore requires the single app entry point to be served when the page is loaded regardless of whatever the current URL is.

  • Use the tsconfig field in package.json during extends resolution (#3247)

    This release adds a feature from TypeScript 3.2 where if a tsconfig.json file specifies a package name in the extends field and that package's package.json file has a tsconfig field, the contents of that field are used in the search for the base tsconfig.json file.

  • Implement CSS nesting without :is() when possible (#1945)

    Previously esbuild would always produce a warning when transforming nested CSS for a browser that doesn't support the :is() pseudo-class. This was because the nesting transform needs to generate an :is() in some complex cases which means the transformed CSS would then not work in that browser. However, the CSS nesting transform can often be done without generating an :is(). So with this release, esbuild will no longer warn when targeting browsers that don't support :is() in the cases where an :is() isn't needed to represent the nested CSS.

    In addition, esbuild's nested CSS transform has been updated to avoid generating an :is() in cases where an :is() is preferable but there's a longer alternative that is also equivalent. This update means esbuild can now generate a combinatorial explosion of CSS for complex CSS nesting syntax when targeting browsers that don't support :is(). This combinatorial explosion is necessary to accurately represent the original semantics. For example:

    /* Original code */
.first,
.second,
.third {
  & > & {
    color: red;
  }
}
/* Old output (with --target=chrome80) */
:is(.first, .second, .third) > :is(.first, .second, .third) {
color: red;
}
/* New output (with --target=chrome80) */
.first > .first,
.first > .second,
.first > .third,
.second > .first,
.second > .second,
.second > .third,
.third > .first,
.third > .second,
.third > .third {
color: red;
}

... (truncated)

Changelog

Sourced from esbuild's changelog.

0.18.16

  • Fix a regression with whitespace inside :is() (#3265)

    The change to parse the contents of :is() in version 0.18.14 introduced a regression that incorrectly flagged the contents as a syntax error if the contents started with a whitespace token (for example div:is( .foo ) {}). This regression has been fixed.

0.18.15

  • Add the --serve-fallback= option (#2904)

    The web server built into esbuild serves the latest in-memory results of the configured build. If the requested path doesn't match any in-memory build result, esbuild also provides the --servedir= option to tell esbuild to serve the requested path from that directory instead. And if the requested path doesn't match either of those things, esbuild will either automatically generate a directory listing (for directories) or return a 404 error.

    Starting with this release, that last step can now be replaced with telling esbuild to serve a specific HTML file using the --serve-fallback= option. This can be used to provide a "not found" page for missing URLs. It can also be used to implement a single-page app that mutates the current URL and therefore requires the single app entry point to be served when the page is loaded regardless of whatever the current URL is.

  • Use the tsconfig field in package.json during extends resolution (#3247)

    This release adds a feature from TypeScript 3.2 where if a tsconfig.json file specifies a package name in the extends field and that package's package.json file has a tsconfig field, the contents of that field are used in the search for the base tsconfig.json file.

  • Implement CSS nesting without :is() when possible (#1945)

    Previously esbuild would always produce a warning when transforming nested CSS for a browser that doesn't support the :is() pseudo-class. This was because the nesting transform needs to generate an :is() in some complex cases which means the transformed CSS would then not work in that browser. However, the CSS nesting transform can often be done without generating an :is(). So with this release, esbuild will no longer warn when targeting browsers that don't support :is() in the cases where an :is() isn't needed to represent the nested CSS.

    In addition, esbuild's nested CSS transform has been updated to avoid generating an :is() in cases where an :is() is preferable but there's a longer alternative that is also equivalent. This update means esbuild can now generate a combinatorial explosion of CSS for complex CSS nesting syntax when targeting browsers that don't support :is(). This combinatorial explosion is necessary to accurately represent the original semantics. For example:

    /* Original code */
.first,
.second,
.third {
  & > & {
    color: red;
  }
}
/* Old output (with --target=chrome80) */
:is(.first, .second, .third) > :is(.first, .second, .third) {
color: red;
}
/* New output (with --target=chrome80) */
.first > .first,
.first > .second,
.first > .third,
.second > .first,
.second > .second,
.second > .third,
.third > .first,
.third > .second,
.third > .third {
color: red;

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
⬆️ Bump esbuild from 0.18.11 to 0.18.16
eac00ba 
Bumps [esbuild](https://github.com/evanw/esbuild) from 0.18.11 to 0.18.16.
- [Release notes](https://github.com/evanw/esbuild/releases)
- [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md)
- [Commits](evanw/esbuild@v0.18.11...v0.18.16)

---
updated-dependencies:
- dependency-name: esbuild
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jul 24, 2023
@github-actions
Copy link

Qodana for JS

16 new problems were found

Inspection name Severity Problems
Check JavaScript and TypeScript source code coverage 🔶 Warning 4
Grammar ◽️ Notice 10
Identifier grammar ◽️ Notice 1
Result of method call returning a promise is ignored ◽️ Notice 1 
@@ Code coverage @@
+ 72% total lines covered
146 lines analyzed, 106 lines covered
# Calculated according to the filters of your coverage tool
View the detailed Qodana report

To be able to view the detailed Qodana report, you can either:

  1. Register at Qodana Cloud and configure the action
  2. Use GitHub Code Scanning with Qodana
  3. Host Qodana report at GitHub Pages
  4. Inspect and use qodana.sarif.json (see the Qodana SARIF format for details)

To get *.log files or any other Qodana artifacts, run the action with upload-result option set to true,
so that the action will upload the files as the job artifacts:

      - name: 'Qodana Scan'
        uses: JetBrains/qodana-action@v2023.2.1
        with:
          upload-result: true
Dependencies licenses

Third-party software list

This page lists the third-party software dependencies used in project

Dependency Version Licenses
@actions/artifact 1.1.1 MIT
@actions/cache 3.2.1 MIT
@actions/core 1.10.0 MIT
@actions/exec 1.1.1 MIT
@actions/github 5.1.1 MIT
@actions/glob 0.1.2 MIT
@actions/http-client 2.1.0 MIT
@actions/io 1.1.3 MIT
@actions/tool-cache 2.0.1 MIT
@azure/abort-controller 1.1.0 MIT
@azure/core-auth 1.4.0 MIT
@azure/core-http 3.0.2 MIT
@azure/core-lro 2.5.3 MIT
@azure/core-paging 1.5.0 MIT
@azure/core-tracing 1.0.0-preview.13 MIT
@azure/core-util 1.3.2 MIT
@azure/logger 1.0.4 MIT
@azure/ms-rest-js 2.6.6 MIT
@azure/storage-blob 12.14.0 MIT
@octokit/auth-token 2.5.0 MIT
@octokit/core 3.6.0 MIT
@octokit/core 4.2.1 MIT
@octokit/graphql 4.8.0 MIT
@octokit/openapi-types 18.0.0 MIT
@octokit/plugin-paginate-rest 2.21.3 MIT
@octokit/plugin-paginate-rest 6.1.2 MIT
@octokit/plugin-paginate-rest 7.1.2 MIT
@octokit/plugin-request-log 1.0.4 MIT
@octokit/plugin-rest-endpoint-methods 5.16.2 MIT
@octokit/plugin-rest-endpoint-methods 7.2.3 MIT
@octokit/request-error 2.1.0 MIT
@octokit/request-error 5.0.0 MIT
@octokit/request 5.6.3 MIT
@octokit/rest 19.0.13 MIT
@octokit/tsconfig 1.0.2 MIT
@octokit/tsconfig 2.0.0 MIT
@octokit/types 10.0.0 MIT
@octokit/types 11.1.0 MIT
@octokit/types 6.41.0 MIT
@octokit/types 9.3.2 MIT
@octokit/webhooks-methods 4.0.0 MIT
@octokit/webhooks-types 7.1.0 MIT
@octokit/webhooks 12.0.3 MIT
@qodana/action 1.0.0 Apache-2.0
@qodana/ci-common 1.0.0 Apache-2.0
@qodana/vsts 1.0.0 Apache-2.0
@types/concat-stream 1.6.1 MIT
@types/form-data 0.0.33 MIT
@types/node-fetch 2.6.4 MIT
@types/node 10.17.60 MIT
@types/node 16.18.36 MIT
@types/node 20.4.2 MIT
@types/node 8.10.66 MIT
@types/qs 6.9.7 MIT
@types/sarif 2.1.4 MIT
@types/tunnel 0.0.3 MIT
abort-controller 3.0.0 MIT
aggregate-error 3.1.0 MIT
argparse 1.0.10 MIT
asap 2.0.6 MIT
asynckit 0.4.0 MIT
azure-pipelines-task-lib 4.4.0 MIT
azure-pipelines-tasks-utility-common 3.219.1 MIT
azure-pipelines-tool-lib 2.0.4 MIT
balanced-match 1.0.2 MIT
before-after-hook 2.2.3 Apache-2.0
brace-expansion 1.1.11 MIT
buffer-from 1.1.2 MIT
caseless 0.12.0 Apache-2.0
clean-stack 2.2.0 MIT
combined-stream 1.0.8 MIT
concat-map 0.0.1 MIT
concat-stream 1.6.2 MIT
core-util-is 1.0.3 MIT
delayed-stream 1.0.0 MIT
deprecation 2.3.1 ISC
esprima 4.0.1 BSD-2-Clause
event-target-shim 5.0.1 MIT
events 3.3.0 MIT
form-data 2.5.1 MIT
form-data 3.0.1 MIT
form-data 4.0.0 MIT
fs.realpath 1.0.0 ISC
function-bind 1.1.1 MIT
get-port 3.2.0 MIT
glob 7.2.3 ISC
has 1.0.3 MIT
http-basic 8.1.3 MIT
http-response-object 3.0.2 MIT
indent-string 4.0.0 MIT
inflight 1.0.6 ISC
inherits 2.0.4 ISC
interpret 1.4.0 MIT
ip-regex 2.1.0 MIT
is-core-module 2.12.1 MIT
isarray 1.0.0 MIT
js-yaml 3.13.1 MIT
mime-db 1.52.0 MIT
mime-types 2.1.35 MIT
minimatch 3.0.5 ISC
minimatch 3.1.2 ISC
mockery 2.1.0 MIT
node-fetch 2.6.11 MIT
once 1.4.0 ISC
parse-cache-control 1.0.1 BSD-3-Clause
path-is-absolute 1.0.1 MIT
path-parse 1.0.7 MIT
process-nextick-args 2.0.1 MIT
process 0.11.10 MIT
promise 8.3.0 MIT
psl 1.9.0 MIT
punycode 2.3.0 MIT
q 1.5.1 MIT
qs 6.11.2 BSD-3-Clause
readable-stream 2.3.8 MIT
rechoir 0.6.2 MIT
resolve 1.22.2 MIT
safe-buffer 5.1.2 MIT
sax 1.2.4 ISC
semver 5.7.2 ISC
semver 6.3.1 ISC
shelljs 0.8.5 BSD-3-Clause
sprintf-js 1.0.3 BSD-3-Clause
string_decoder 1.1.1 MIT
supports-preserve-symlinks-flag 1.0.0 MIT
sync-request 6.1.0 MIT
sync-rpc 1.3.6 MIT
then-request 6.0.2 MIT
tmp-promise 3.0.3 MIT
tmp 0.2.1 MIT
tough-cookie 3.0.1 BSD-3-Clause
tr46 0.0.3 MIT
tslib 1.14.1 0BSD
tslib 2.5.3 0BSD
tunnel 0.0.6 MIT
typedarray 0.0.6 MIT
universal-user-agent 6.0.0 ISC
util-deprecate 1.0.2 MIT
uuid 3.4.0 MIT
uuid 8.3.2 MIT
webidl-conversions 3.0.1 BSD-2-Clause
whatwg-url 5.0.0 MIT
wrappy 1.0.2 ISC
xml2js 0.5.0 MIT
xmlbuilder 11.0.1 MIT
Contact Qodana team

Contact us at qodana-support@jetbrains.com

@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Jul 31, 2023

Superseded by #158.

@dependabot dependabot bot closed this Jul 31, 2023
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/esbuild-0.18.16 branch July 31, 2023 04:22
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
0 participants