Skip to content

chore(deps): update devdependency @types/webpack-hot-middleware to v2.25.10 (3.x) #32608

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Aug 11, 2025
Merged

chore(deps): update devdependency @types/webpack-hot-middleware to v2.25.10 (3.x) #32608

merged 1 commit into from
Aug 11, 2025

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Jul 14, 2025
edited
Loading

This PR contains the following updates:

Package Change Age Confidence
@types/webpack-hot-middleware (source) 2.25.9 -> 2.25.10 age confidence

Configuration

📅 Schedule: Branch creation - "on Monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot requested a review from danielroe as a code owner July 14, 2025 07:25
@bolt-new-by-stackblitz Bolt.new (by StackBlitz)
Copy link

Review PR in StackBlitz Codeflow Run & review this pull request in StackBlitz Codeflow.

@socket-security Socket Security
Copy link

socket-security bot commented Jul 14, 2025
edited
Loading

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Added@​vitest/​coverage-v8@​3.2.4991007099100
Added@​vue/​devtools-api@​8.0.01001007096100
Added@​vue/​language-core@​3.0.5991007195100
Added@​unocss/​reset@​66.4.21001007397100
Addedinstalled-check@​9.3.0991009577100
Addedesbuild-loader@​4.3.010010010077100
Addedautoprefixer@​10.4.211001009178100
Addedeslint-plugin-no-only-tests@​3.3.01001009178100
Addedfork-ts-checker-webpack-plugin@​9.1.09810010078100
Addedexternality@​1.0.21001009479100
Addedcase-police@​2.0.0951007980100
Addedhtmlnano@​2.1.2991008180100
Addedimpound@​1.0.0991008580100
Addedcss-loader@​7.1.29910010080100
Addedcss-minimizer-webpack-plugin@​7.0.29910010082100
Added@​vue/​test-utils@​2.4.6991008782100
Addedfile-loader@​6.2.09910010083100
Updated@​types/​webpack-hot-middleware@​2.25.9 ⏵ 2.25.10100 +110084 +184 +8100
Addedchangelogen@​0.6.29810010085100
Addedhappy-dom@​18.0.1991008887100
Addedbeasties@​0.3.510010010087100
Addedeslint-typegen@​2.3.01001009787100
Addedeslint-plugin-perfectionist@​4.15.010010010088100
Added@​vitejs/​plugin-vue-jsx@​5.0.11001009490100
Addedeslint-plugin-import-x@​4.16.19910010090100
Added@​vitejs/​plugin-vue@​6.0.110010010093100
Addedhtml-validate@​9.7.19910010094100
Addedeslint@​9.33.09710010096100

View full report

@pkg-pr-new pkg.pr.new
Copy link

pkg-pr-new bot commented Jul 14, 2025
edited
Loading

Open in StackBlitz

@nuxt/kit

npm i https://pkg.pr.new/@nuxt/kit@32608

nuxt

npm i https://pkg.pr.new/nuxt@32608

@nuxt/rspack-builder

npm i https://pkg.pr.new/@nuxt/rspack-builder@32608

@nuxt/schema

npm i https://pkg.pr.new/@nuxt/schema@32608

@nuxt/vite-builder

npm i https://pkg.pr.new/@nuxt/vite-builder@32608

@nuxt/webpack-builder

npm i https://pkg.pr.new/@nuxt/webpack-builder@32608

commit: 53d5c91

@codspeed-hq CodSpeed HQ
Copy link

codspeed-hq bot commented Jul 14, 2025
edited
Loading

CodSpeed Performance Report

Merging #32608 will not alter performance

Comparing renovate/3.x-webpack (53d5c91) with 3.x (7b60683)1

Summary

✅ 10 untouched benchmarks

Footnotes

  1. No successful run was found on 3.x (6069a34) during the generation of this report, so 7b60683 was used instead as the comparison base. There might be some changes unrelated to this pull request in this report.

@renovate renovate bot force-pushed the renovate/3.x-webpack branch from 0c47bbd to 5a750db Compare July 15, 2025 14:39
@renovate renovate bot changed the title chore(deps): update dependency webpack to v5.100.1 (3.x) chore(deps): update dependency webpack to v5.100.2 (3.x) Jul 15, 2025
@renovate renovate bot force-pushed the renovate/3.x-webpack branch 3 times, most recently from 0a77fc2 to 20d6d1c Compare July 28, 2025 14:35
@renovate renovate bot changed the title chore(deps): update dependency webpack to v5.100.2 (3.x) chore(deps): update dependency webpack to v5.101.0 (3.x) Jul 28, 2025
@renovate renovate bot force-pushed the renovate/3.x-webpack branch from 20d6d1c to 152178f Compare July 28, 2025 18:08
@renovate renovate bot changed the title chore(deps): update dependency webpack to v5.101.0 (3.x) chore(deps): update dependency webpack to v5.101.0 (3.x) - autoclosed Aug 5, 2025
@renovate renovate bot closed this Aug 5, 2025
@renovate renovate bot deleted the renovate/3.x-webpack branch August 5, 2025 08:24
@renovate renovate bot changed the title chore(deps): update dependency webpack to v5.101.0 (3.x) - autoclosed chore(deps): update dependency webpack to v5.101.0 (3.x) Aug 11, 2025
@renovate renovate bot reopened this Aug 11, 2025
@renovate renovate bot force-pushed the renovate/3.x-webpack branch from 6ea08ac to 152178f Compare August 11, 2025 09:05
@renovate renovate bot changed the title chore(deps): update dependency webpack to v5.101.0 (3.x) chore(deps): update devdependency @types/webpack-hot-middleware to v2.25.10 (3.x) Aug 11, 2025
@renovate renovate bot force-pushed the renovate/3.x-webpack branch from 152178f to 53d5c91 Compare August 11, 2025 12:18
@socket-security Socket Security
Copy link

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action Severity Alert  (click "▶" to expand/collapse)
Warn Critical
form-data@4.0.2 has a Critical CVE.

CVE: GHSA-fjxv-7rqg-78g4 form-data uses unsafe random function in form-data for choosing boundary (CRITICAL)

Affected versions: < 2.5.4; >= 3.0.0 < 3.0.4; >= 4.0.0 < 4.0.4

Patched version: 4.0.4

From: pnpm-lock.yamlnpm/@codspeed/core@4.0.1npm/form-data@4.0.2

ℹ Read more on: This package | This alert | What is a critical CVE?

Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev.

Suggestion: Remove or replace dependencies that include known critical CVEs. Consumers can use dependency overrides or npm audit fix --force to remove vulnerable dependencies.

Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore npm/form-data@4.0.2. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

@danielroe danielroe merged commit 183fc8e into 3.x Aug 11, 2025
13 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@danielroe danielroe danielroe approved these changes

Assignees
No one assigned
Labels
3.x chore
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@danielroe