Merge Develop to Master: 6.4.0 #1537

srod · 2022-08-01T13:32:34Z

Security fix for @node-minify/terser (Security fix for @node-minify/terser #1526) (df1c40d)
Bump dependencies

Bumps [babel-jest](https://github.com/facebook/jest/tree/HEAD/packages/babel-jest) from 27.0.6 to 27.1.0. - [Release notes](https://github.com/facebook/jest/releases) - [Changelog](https://github.com/facebook/jest/blob/master/CHANGELOG.md) - [Commits](https://github.com/facebook/jest/commits/v27.1.0/packages/babel-jest) --- updated-dependencies: - dependency-name: babel-jest dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

…-27.1.0 chore(deps-dev): bump babel-jest from 27.0.6 to 27.1.0

Bumps [@babel/cli](https://github.com/babel/babel/tree/HEAD/packages/babel-cli) from 7.14.5 to 7.14.8. - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.14.8/packages/babel-cli) --- updated-dependencies: - dependency-name: "@babel/cli" dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

…7.14.8 chore(deps-dev): bump @babel/cli from 7.14.5 to 7.14.8

Bumps [terser](https://github.com/terser/terser) from 5.7.1 to 5.7.2. - [Release notes](https://github.com/terser/terser/releases) - [Changelog](https://github.com/terser/terser/blob/master/CHANGELOG.md) - [Commits](terser/terser@v5.7.1...v5.7.2) --- updated-dependencies: - dependency-name: terser dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

chore(deps): bump terser from 5.7.1 to 5.7.2

Bumps [postcss](https://github.com/postcss/postcss) from 8.3.5 to 8.3.6. - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](postcss/postcss@8.3.5...8.3.6) --- updated-dependencies: - dependency-name: postcss dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

chore(deps): bump postcss from 8.3.5 to 8.3.6

Bumps [@babel/preset-env](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env) from 7.14.7 to 7.15.0. - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.15.0/packages/babel-preset-env) --- updated-dependencies: - dependency-name: "@babel/preset-env" dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

…et-env-7.15.0 chore(deps-dev): bump @babel/preset-env from 7.14.7 to 7.15.0

Bumps [jest](https://github.com/facebook/jest) from 27.0.6 to 27.1.0. - [Release notes](https://github.com/facebook/jest/releases) - [Changelog](https://github.com/facebook/jest/blob/master/CHANGELOG.md) - [Commits](jestjs/jest@v27.0.6...v27.1.0) --- updated-dependencies: - dependency-name: jest dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

chore(deps-dev): bump jest from 27.0.6 to 27.1.0

Bumps [commander](https://github.com/tj/commander.js) from 8.0.0 to 8.1.0. - [Release notes](https://github.com/tj/commander.js/releases) - [Changelog](https://github.com/tj/commander.js/blob/master/CHANGELOG.md) - [Commits](tj/commander.js@v8.0.0...v8.1.0) --- updated-dependencies: - dependency-name: commander dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

…8.1.0 chore(deps): bump commander from 8.0.0 to 8.1.0

Bumps [husky](https://github.com/typicode/husky) from 7.0.0 to 7.0.2. - [Release notes](https://github.com/typicode/husky/releases) - [Commits](typicode/husky@v7.0.0...v7.0.2) --- updated-dependencies: - dependency-name: husky dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

chore(deps-dev): bump husky from 7.0.0 to 7.0.2

Bumps [prettier](https://github.com/prettier/prettier) from 2.3.2 to 2.5.0. - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](prettier/prettier@2.3.2...2.5.0) --- updated-dependencies: - dependency-name: prettier dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

….5.0 chore(deps-dev): bump prettier from 2.3.2 to 2.5.0

Bumps [tmpl](https://github.com/daaku/nodejs-tmpl) from 1.0.4 to 1.0.5. - [Release notes](https://github.com/daaku/nodejs-tmpl/releases) - [Commits](https://github.com/daaku/nodejs-tmpl/commits/v1.0.5) --- updated-dependencies: - dependency-name: tmpl dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>

chore(deps): bump tmpl from 1.0.4 to 1.0.5

Bumps [nth-check](https://github.com/fb55/nth-check) from 2.0.0 to 2.0.1. - [Release notes](https://github.com/fb55/nth-check/releases) - [Commits](fb55/nth-check@v2.0.0...v2.0.1) --- updated-dependencies: - dependency-name: nth-check dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>

…2.0.1 chore(deps): bump nth-check from 2.0.0 to 2.0.1

Bumps [cssnano](https://github.com/cssnano/cssnano) from 5.0.8 to 5.0.14. - [Release notes](https://github.com/cssnano/cssnano/releases) - [Commits](https://github.com/cssnano/cssnano/compare/cssnano@5.0.8...cssnano@5.0.14) --- updated-dependencies: - dependency-name: cssnano dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

…0.14 chore(deps): bump cssnano from 5.0.8 to 5.0.14

Bumps [uglify-js](https://github.com/mishoo/UglifyJS) from 3.14.1 to 3.14.5. - [Release notes](https://github.com/mishoo/UglifyJS/releases) - [Commits](mishoo/UglifyJS@v3.14.1...v3.14.5) --- updated-dependencies: - dependency-name: uglify-js dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

…3.14.5 chore(deps): bump uglify-js from 3.14.1 to 3.14.5

Bumps [@babel/core](https://github.com/babel/babel/tree/HEAD/packages/babel-core) from 7.15.0 to 7.16.5. - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.16.5/packages/babel-core) --- updated-dependencies: - dependency-name: "@babel/core" dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

…-7.16.5 chore(deps-dev): bump @babel/core from 7.15.0 to 7.16.5

…7.16.8 chore(deps-dev): bump @babel/cli from 7.16.0 to 7.16.8

Bumps [shelljs](https://github.com/shelljs/shelljs) from 0.8.4 to 0.8.5. - [Release notes](https://github.com/shelljs/shelljs/releases) - [Changelog](https://github.com/shelljs/shelljs/blob/master/CHANGELOG.md) - [Commits](shelljs/shelljs@v0.8.4...v0.8.5) --- updated-dependencies: - dependency-name: shelljs dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>

chore(deps): bump shelljs from 0.8.4 to 0.8.5

chore(deps): bump terser to 5.14.2 fix #1526

Bumps [nanoid](https://github.com/ai/nanoid) from 3.1.30 to 3.3.4. - [Release notes](https://github.com/ai/nanoid/releases) - [Changelog](https://github.com/ai/nanoid/blob/main/CHANGELOG.md) - [Commits](ai/nanoid@3.1.30...3.3.4) --- updated-dependencies: - dependency-name: nanoid dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>

chore(deps): bump nanoid from 3.1.30 to 3.3.4

Bumps [minimist](https://github.com/substack/minimist) from 1.2.5 to 1.2.6. - [Release notes](https://github.com/substack/minimist/releases) - [Commits](https://github.com/substack/minimist/compare/1.2.5...1.2.6) --- updated-dependencies: - dependency-name: minimist dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>

….2.6 chore(deps): bump minimist from 1.2.5 to 1.2.6

Bumps [babel-jest](https://github.com/facebook/jest/tree/HEAD/packages/babel-jest) from 27.4.5 to 28.1.3. - [Release notes](https://github.com/facebook/jest/releases) - [Changelog](https://github.com/facebook/jest/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/jest/commits/v28.1.3/packages/babel-jest) --- updated-dependencies: - dependency-name: babel-jest dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>

…-28.1.3 chore(deps-dev): bump babel-jest from 27.4.5 to 28.1.3

Bumps [trim-off-newlines](https://github.com/stevemao/trim-off-newlines) from 1.0.1 to 1.0.3. - [Release notes](https://github.com/stevemao/trim-off-newlines/releases) - [Commits](stevemao/trim-off-newlines@v1.0.1...v1.0.3) --- updated-dependencies: - dependency-name: trim-off-newlines dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>

…ewlines-1.0.3 chore(deps): bump trim-off-newlines from 1.0.1 to 1.0.3

Bumps [@babel/preset-env](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env) from 7.16.7 to 7.18.9. - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.18.9/packages/babel-preset-env) --- updated-dependencies: - dependency-name: "@babel/preset-env" dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

…et-env-7.18.9 chore(deps-dev): bump @babel/preset-env from 7.16.7 to 7.18.9

Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 2.6.1 to 2.6.7. - [Release notes](https://github.com/node-fetch/node-fetch/releases) - [Commits](node-fetch/node-fetch@v2.6.1...v2.6.7) --- updated-dependencies: - dependency-name: node-fetch dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>

…-2.6.7 chore(deps): bump node-fetch from 2.6.1 to 2.6.7

Bumps [clean-css](https://github.com/clean-css/clean-css) from 5.2.2 to 5.3.1. - [Release notes](https://github.com/clean-css/clean-css/releases) - [Changelog](https://github.com/clean-css/clean-css/blob/master/History.md) - [Commits](clean-css/clean-css@v5.2.2...v5.3.1) --- updated-dependencies: - dependency-name: clean-css dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

…5.3.1 chore(deps): bump clean-css from 5.2.2 to 5.3.1

Bumps [@babel/core](https://github.com/babel/babel/tree/HEAD/packages/babel-core) from 7.16.7 to 7.18.9. - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.18.9/packages/babel-core) --- updated-dependencies: - dependency-name: "@babel/core" dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

…-7.18.9 chore(deps-dev): bump @babel/core from 7.16.7 to 7.18.9

Bumps [uglify-js](https://github.com/mishoo/UglifyJS) from 3.14.5 to 3.16.3. - [Release notes](https://github.com/mishoo/UglifyJS/releases) - [Commits](mishoo/UglifyJS@v3.14.5...v3.16.3) --- updated-dependencies: - dependency-name: uglify-js dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

…3.16.3 chore(deps): bump uglify-js from 3.14.5 to 3.16.3

Bumps [eslint](https://github.com/eslint/eslint) from 8.6.0 to 8.21.0. - [Release notes](https://github.com/eslint/eslint/releases) - [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md) - [Commits](eslint/eslint@v8.6.0...v8.21.0) --- updated-dependencies: - dependency-name: eslint dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

chore(deps-dev): bump eslint from 8.6.0 to 8.21.0

codecov · 2022-08-01T13:43:21Z

Codecov Report

Merging #1537 (06ecc43) into master (69f7619) will not change coverage.
The diff coverage is 100.00%.

@@           Coverage Diff           @@
##           master    #1537   +/-   ##
=======================================
  Coverage   84.71%   84.71%           
=======================================
  Files          25       25           
  Lines         726      726           
  Branches      177      177           
=======================================
  Hits          615      615           
  Misses         68       68           
  Partials       43       43

Flag	Coverage Δ
unittests	`84.71% <100.00%> (ø)`

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files	Coverage Δ
packages/babel-minify/src/babel-minify.js	`93.75% <ø> (ø)`
packages/clean-css/src/clean-css.js	`100.00% <ø> (ø)`
packages/cli/src/cli.js	`80.64% <ø> (ø)`
packages/cli/src/compress.js	`77.77% <ø> (ø)`
packages/cli/src/spinner.js	`100.00% <ø> (ø)`
packages/crass/src/crass.js	`100.00% <ø> (ø)`
packages/cssnano/src/cssnano.js	`90.00% <ø> (ø)`
packages/csso/src/csso.js	`100.00% <ø> (ø)`
packages/html-minifier/src/html-minifier.js	`100.00% <ø> (ø)`
packages/jsonminify/src/jsonminify.js	`100.00% <ø> (ø)`
... and 13 more

📣 Codecov can now indicate which changes are the most critical in Pull Requests. Learn more

dependabot bot and others added 30 commits September 1, 2021 04:09

Merge pull request #1431 from srod/dependabot/npm_and_yarn/babel-jest…

7137988

…-27.1.0 chore(deps-dev): bump babel-jest from 27.0.6 to 27.1.0

Merge pull request #1433 from srod/dependabot/npm_and_yarn/babel/cli-…

99d609d

…7.14.8 chore(deps-dev): bump @babel/cli from 7.14.5 to 7.14.8

Merge pull request #1425 from srod/dependabot/npm_and_yarn/terser-5.7.2

bedaa2b

chore(deps): bump terser from 5.7.1 to 5.7.2

Merge pull request #1430 from srod/dependabot/npm_and_yarn/postcss-8.3.6

3061f96

chore(deps): bump postcss from 8.3.5 to 8.3.6

Merge pull request #1428 from srod/dependabot/npm_and_yarn/babel/pres…

70a1df0

…et-env-7.15.0 chore(deps-dev): bump @babel/preset-env from 7.14.7 to 7.15.0

Merge pull request #1427 from srod/dependabot/npm_and_yarn/jest-27.1.0

0322166

chore(deps-dev): bump jest from 27.0.6 to 27.1.0

Merge pull request #1426 from srod/dependabot/npm_and_yarn/commander-…

f4e54c9

…8.1.0 chore(deps): bump commander from 8.0.0 to 8.1.0

Merge pull request #1424 from srod/dependabot/npm_and_yarn/husky-7.0.2

cbadc4b

chore(deps-dev): bump husky from 7.0.0 to 7.0.2

Merge pull request #1453 from srod/dependabot/npm_and_yarn/prettier-2…

7032364

….5.0 chore(deps-dev): bump prettier from 2.3.2 to 2.5.0

Merge pull request #1434 from srod/dependabot/npm_and_yarn/tmpl-1.0.5

7558205

chore(deps): bump tmpl from 1.0.4 to 1.0.5

Merge pull request #1435 from srod/dependabot/npm_and_yarn/nth-check-…

8130eb5

…2.0.1 chore(deps): bump nth-check from 2.0.0 to 2.0.1

chore(dependencies): update caniuse db

6dbfe4a

fixup! chore(dependencies): update caniuse db

520cd03

Merge pull request #1459 from srod/dependabot/npm_and_yarn/cssnano-5.…

c007af0

…0.14 chore(deps): bump cssnano from 5.0.8 to 5.0.14

Merge pull request #1454 from srod/dependabot/npm_and_yarn/uglify-js-…

d186665

…3.14.5 chore(deps): bump uglify-js from 3.14.1 to 3.14.5

Merge pull request #1458 from srod/dependabot/npm_and_yarn/babel/core…

872569e

…-7.16.5 chore(deps-dev): bump @babel/core from 7.15.0 to 7.16.5

srod and others added 25 commits January 14, 2022 15:26

Merge pull request #1471 from srod/dependabot/npm_and_yarn/babel/cli-…

658698c

…7.16.8 chore(deps-dev): bump @babel/cli from 7.16.0 to 7.16.8

Merge pull request #1473 from srod/dependabot/npm_and_yarn/shelljs-0.8.5

d0d342b

chore(deps): bump shelljs from 0.8.4 to 0.8.5

chore(deps): bump terser to 5.14.2 fix #1526

df1c40d

Merge pull request #1535 from srod/bump/terser

9e3ee37

chore(deps): bump terser to 5.14.2 fix #1526

Merge pull request #1506 from srod/dependabot/npm_and_yarn/nanoid-3.3.4

0752edd

chore(deps): bump nanoid from 3.1.30 to 3.3.4

Merge pull request #1497 from srod/dependabot/npm_and_yarn/minimist-1…

910e865

….2.6 chore(deps): bump minimist from 1.2.5 to 1.2.6

Merge pull request #1531 from srod/dependabot/npm_and_yarn/babel-jest…

67e890f

…-28.1.3 chore(deps-dev): bump babel-jest from 27.4.5 to 28.1.3

Merge pull request #1507 from srod/dependabot/npm_and_yarn/trim-off-n…

e103c6c

…ewlines-1.0.3 chore(deps): bump trim-off-newlines from 1.0.1 to 1.0.3

Merge pull request #1528 from srod/dependabot/npm_and_yarn/babel/pres…

23ada83

…et-env-7.18.9 chore(deps-dev): bump @babel/preset-env from 7.16.7 to 7.18.9

Merge pull request #1508 from srod/dependabot/npm_and_yarn/node-fetch…

4b7f62e

…-2.6.7 chore(deps): bump node-fetch from 2.6.1 to 2.6.7

Merge pull request #1530 from srod/dependabot/npm_and_yarn/clean-css-…

f84c10a

…5.3.1 chore(deps): bump clean-css from 5.2.2 to 5.3.1

Merge pull request #1527 from srod/dependabot/npm_and_yarn/babel/core…

c083abb

…-7.18.9 chore(deps-dev): bump @babel/core from 7.16.7 to 7.18.9

Merge pull request #1534 from srod/dependabot/npm_and_yarn/uglify-js-…

6f5936b

…3.16.3 chore(deps): bump uglify-js from 3.14.5 to 3.16.3

Merge pull request #1536 from srod/dependabot/npm_and_yarn/eslint-8.21.0

c689f44

chore(deps-dev): bump eslint from 8.6.0 to 8.21.0

srod self-assigned this Aug 1, 2022

srod and others added 2 commits August 1, 2022 15:37

chore(dependencies): update caniuse db

1d7c90a

Merge branch 'master' into develop

06ecc43

srod merged commit 30daa48 into master Aug 1, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Merge Develop to Master: 6.4.0 #1537

Merge Develop to Master: 6.4.0 #1537

srod commented Aug 1, 2022

codecov bot commented Aug 1, 2022 •

edited

Merge Develop to Master: 6.4.0 #1537

Merge Develop to Master: 6.4.0 #1537

Conversation

srod commented Aug 1, 2022

codecov bot commented Aug 1, 2022 • edited

Codecov Report

codecov bot commented Aug 1, 2022 •

edited