[PR #678] [MERGED] fix(deps): bump core-js from 3.39.0 to 3.42.0 in /web #684

New issue

Closed

opened 2026-03-03 16:39:36 +03:00 by kerem · 0 comments

kerem commented

2026-03-03 16:39:36 +03:00

Owner

📋 Pull Request Information

Original PR: https://github.com/NdoleStudio/httpsms/pull/678
Author: @dependabot[bot]
Created: 6/1/2025
Status: ✅ Merged
Merged: 6/2/2025
Merged by: @AchoArnold

Base: main ← Head: dependabot/npm_and_yarn/web/core-js-3.42.0

📝 Commits (1)

ad53dfc fix(deps): bump core-js from 3.39.0 to 3.42.0 in /web

📊 Changes

2 files changed (+1023 additions, -882 deletions)

View changed files

📝 web/package.json (+1 -1)
📝 web/pnpm-lock.yaml (+1022 -881)

📄 Description

Bumps core-js from 3.39.0 to 3.42.0.

Changelog

Sourced from core-js's changelog.

3.42.0 - 2025.04.30

Changes v3.41.0...v3.42.0 (142 commits)

Map upsert proposal:

Moved to stage 2.7, April 2025 TC39 meeting

Validation order of WeakMap.prototype.getOrInsertComputed updated following tc39/proposal-upsert#79

Built-ins:

Map.prototype.getOrInsert

Map.prototype.getOrInsertComputed

WeakMap.prototype.getOrInsert

WeakMap.prototype.getOrInsertComputed

Don't call well-known Symbol methods for RegExp on primitive values following tc39/ecma262#3009:

For avoid performance regression, temporarily, only in own core-js implementations

Built-ins:

String.prototype.matchAll

String.prototype.match

String.prototype.replaceAll

String.prototype.replace

String.prototype.search

String.prototype.split

Added workaround for the Uint8Array.prototype.setFromBase64 bug in some of Linux builds of WebKit

Implemented early-error iterator closing following tc39/ecma262#3467, including fix of a WebKit bug, in the following methods:

Iterator.prototype.drop

Iterator.prototype.every

Iterator.prototype.filter

Iterator.prototype.find

Iterator.prototype.flatMap

Iterator.prototype.forEach

Iterator.prototype.map

Iterator.prototype.reduce

Iterator.prototype.some

Iterator.prototype.take

Fixed missing forced replacement of AsyncIterator helpers

Added closing of sync iterator when async wrapper yields a rejection following tc39/ecma262#2600. Affected methods:

Array.fromAsync (due to the lack of async feature detection capability - temporarily, only in own core-js implementation)

AsyncIterator.from

Iterator.prototype.toAsync

Added detection for throwing on undefined initial parameter in Iterator.prototype.reduce (see WebKit bug)

core-js-compat and core-js-builder API:

Added 'intersect' support for targets.esmodules (Babel 7 behavior)

Fixed handling of targets.esmodules: true (Babel 7 behavior)

Compat data improvements:

Explicit Resource Management features disabled (again) in V8 ~ Chromium 135 and re-added in 136

RegExp.escape marked as shipped from V8 ~ Chromium 136

Error.isError marked as shipped from FF138

Explicit Resource Management features re-enabled in Deno 2.2.10

Iterator helpers proposal features marked as supported from Deno 1.38.1 since it seems they were disabled in 1.38.0

Iterator.prototype.{ drop, reduce, take } methods marked as fixed in Bun 1.2.11

Added NodeJS 24.0 compat data mapping

Updated Electron 36 and added Electron 37 compat data mapping

Added Opera Android 88 and 89 compat data mapping

... (truncated)

Commits

ce8281c v3.42.0
74c5de7 drop some unneeded code
ad767b9 minor stylistic fix
d88bf17 simplify iterator helpers detection
6e3da21 revert some paths
e3dd291 revert the order of some imports
3b74f4a update a note
a58cd55 add some links
2801643 fix style of %IteratorPrototype%.reduce feature detection
dc0e812 Added detection for throwing on undefined initial parameter in `Iterator.pr...
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/NdoleStudio/httpsms/pull/678 **Author:** [@dependabot[bot]](https://github.com/apps/dependabot) **Created:** 6/1/2025 **Status:** ✅ Merged **Merged:** 6/2/2025 **Merged by:** [@AchoArnold](https://github.com/AchoArnold) **Base:** `main` ← **Head:** `dependabot/npm_and_yarn/web/core-js-3.42.0` --- ### 📝 Commits (1) - [`ad53dfc`](https://github.com/NdoleStudio/httpsms/commit/ad53dfc8b35fa7f046a254f3b25689eb1c5fdcdd) fix(deps): bump core-js from 3.39.0 to 3.42.0 in /web ### 📊 Changes **2 files changed** (+1023 additions, -882 deletions) <details> <summary>View changed files</summary> 📝 `web/package.json` (+1 -1) 📝 `web/pnpm-lock.yaml` (+1022 -881) </details> ### 📄 Description Bumps [core-js](https://github.com/zloirock/core-js/tree/HEAD/packages/core-js) from 3.39.0 to 3.42.0. <details> <summary>Changelog</summary> Sourced from <a href="https://github.com/zloirock/core-js/blob/master/CHANGELOG.md">core-js's changelog</a>. <blockquote> <h5><a href="https://github.com/zloirock/core-js/releases/tag/v3.42.0">3.42.0 - 2025.04.30</a></h5> <ul> <li>Changes <a href="https://github.com/zloirock/core-js/compare/v3.41.0...v3.42.0">v3.41.0...v3.42.0</a> (142 commits)</li> <li><a href="https://github.com/tc39/proposal-upsert"><code>Map</code> upsert proposal</a>: <ul> <li>Moved to stage 2.7, <a href="https://x.com/robpalmer2/status/1911882240109261148">April 2025 TC39 meeting</a></li> <li>Validation order of <code>WeakMap.prototype.getOrInsertComputed</code> updated following <a href="https://redirect.github.com/tc39/proposal-upsert/pull/79">tc39/proposal-upsert#79</a></li> <li>Built-ins: <ul> <li><code>Map.prototype.getOrInsert</code></li> <li><code>Map.prototype.getOrInsertComputed</code></li> <li><code>WeakMap.prototype.getOrInsert</code></li> <li><code>WeakMap.prototype.getOrInsertComputed</code></li> </ul> </li> </ul> </li> <li>Don't call well-known <code>Symbol</code> methods for <code>RegExp</code> on primitive values following <a href="https://redirect.github.com/tc39/ecma262/pull/3009">tc39/ecma262#3009</a>: <ul> <li>For avoid performance regression, temporarily, only in own <code>core-js</code> implementations</li> <li>Built-ins: <ul> <li><code>String.prototype.matchAll</code></li> <li><code>String.prototype.match</code></li> <li><code>String.prototype.replaceAll</code></li> <li><code>String.prototype.replace</code></li> <li><code>String.prototype.search</code></li> <li><code>String.prototype.split</code></li> </ul> </li> </ul> </li> <li>Added workaround for the <a href="https://github.com/tc39/proposal-arraybuffer-base64"><code>Uint8Array.prototype.setFromBase64</code></a> <a href="https://bugs.webkit.org/show_bug.cgi?id=290829">bug</a> in some of Linux builds of WebKit</li> <li>Implemented early-error iterator closing following <a href="https://redirect.github.com/tc39/ecma262/pull/3467">tc39/ecma262#3467</a>, including fix of <a href="https://bugs.webkit.org/show_bug.cgi?id=291195">a WebKit bug</a>, in the following methods: <ul> <li><code>Iterator.prototype.drop</code></li> <li><code>Iterator.prototype.every</code></li> <li><code>Iterator.prototype.filter</code></li> <li><code>Iterator.prototype.find</code></li> <li><code>Iterator.prototype.flatMap</code></li> <li><code>Iterator.prototype.forEach</code></li> <li><code>Iterator.prototype.map</code></li> <li><code>Iterator.prototype.reduce</code></li> <li><code>Iterator.prototype.some</code></li> <li><code>Iterator.prototype.take</code></li> </ul> </li> <li>Fixed missing forced replacement of <a href="https://github.com/tc39/proposal-async-iterator-helpers"><code>AsyncIterator</code> helpers</a></li> <li>Added closing of sync iterator when async wrapper yields a rejection following <a href="https://redirect.github.com/tc39/ecma262/pull/2600">tc39/ecma262#2600</a>. Affected methods: <ul> <li><a href="https://github.com/tc39/proposal-array-from-async"><code>Array.fromAsync</code></a> (due to the lack of async feature detection capability - temporarily, only in own <code>core-js</code> implementation)</li> <li><a href="https://github.com/tc39/proposal-async-iterator-helpers"><code>AsyncIterator.from</code></a></li> <li><a href="https://github.com/tc39/proposal-async-iterator-helpers"><code>Iterator.prototype.toAsync</code></a></li> </ul> </li> <li>Added detection for throwing on <code>undefined</code> initial parameter in <code>Iterator.prototype.reduce</code> (see <a href="https://bugs.webkit.org/show_bug.cgi?id=291651">WebKit bug</a>)</li> <li><code>core-js-compat</code> and <code>core-js-builder</code> API: <ul> <li>Added <code>'intersect'</code> support for <code>targets.esmodules</code> (Babel 7 behavior)</li> <li>Fixed handling of <code>targets.esmodules: true</code> (Babel 7 behavior)</li> </ul> </li> <li>Compat data improvements: <ul> <li><a href="https://github.com/tc39/proposal-explicit-resource-management">Explicit Resource Management</a> features disabled (again) in V8 ~ Chromium 135 and re-added in 136</li> <li><a href="https://github.com/tc39/proposal-regex-escaping"><code>RegExp.escape</code></a> marked as <a href="https://issues.chromium.org/issues/353856236#comment17">shipped from V8 ~ Chromium 136</a></li> <li><a href="https://github.com/tc39/proposal-is-error"><code>Error.isError</code></a> marked as <a href="https://bugzilla.mozilla.org/show_bug.cgi?id=1952249">shipped from FF138</a></li> <li><a href="https://github.com/tc39/proposal-explicit-resource-management">Explicit Resource Management</a> features re-enabled in <a href="https://github.com/denoland/deno/releases/tag/v2.2.10">Deno 2.2.10</a></li> <li><a href="https://github.com/tc39/proposal-iterator-helpers"><code>Iterator</code> helpers proposal</a> features marked as supported from Deno 1.38.1 since it seems they were disabled in 1.38.0</li> <li><code>Iterator.prototype.{ drop, reduce, take }</code> methods marked as fixed in Bun 1.2.11</li> <li>Added <a href="https://redirect.github.com/nodejs/node/pull/57609">NodeJS 24.0</a> compat data mapping</li> <li>Updated Electron 36 and added Electron 37 compat data mapping</li> <li>Added Opera Android <a href="https://forums.opera.com/topic/83800/opera-for-android-88">88</a> and <a href="https://forums.opera.com/topic/84437/opera-for-android-89">89</a> compat data mapping</li> </ul> </li> </ul>  </blockquote> ... (truncated) </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/zloirock/core-js/commit/ce8281cbca924f1f3cf16cb5f7098b2d9e428af2"><code>ce8281c</code></a> v3.42.0</li> <li><a href="https://github.com/zloirock/core-js/commit/74c5de7c43ee6ecf9254b9327e7b033da3366199"><code>74c5de7</code></a> drop some unneeded code</li> <li><a href="https://github.com/zloirock/core-js/commit/ad767b90ab28e335d1a357e584424f5c8e7c84a4"><code>ad767b9</code></a> minor stylistic fix</li> <li><a href="https://github.com/zloirock/core-js/commit/d88bf1713e9667318277c187cf0e4625971b1089"><code>d88bf17</code></a> simplify iterator helpers detection</li> <li><a href="https://github.com/zloirock/core-js/commit/6e3da216a3e53d6939d7fae746878ad0c230db7d"><code>6e3da21</code></a> revert some paths</li> <li><a href="https://github.com/zloirock/core-js/commit/e3dd291b25a201aca41c9e36ace49b3da8e8670a"><code>e3dd291</code></a> revert the order of some imports</li> <li><a href="https://github.com/zloirock/core-js/commit/3b74f4af6a8a6c889f2fa6a35ab58682e6ea7c4c"><code>3b74f4a</code></a> update a note</li> <li><a href="https://github.com/zloirock/core-js/commit/a58cd55bc9442f6315fc0e19349099adf9799f57"><code>a58cd55</code></a> add some links</li> <li><a href="https://github.com/zloirock/core-js/commit/28016437268d751065f3d05d2618590c6d2689a6"><code>2801643</code></a> fix style of <code>%IteratorPrototype%.reduce</code> feature detection</li> <li><a href="https://github.com/zloirock/core-js/commit/dc0e812f3a7a0fac0202d2ef5af7949fd86c32e5"><code>dc0e812</code></a> Added detection for throwing on <code>undefined</code> initial parameter in `Iterator.pr...</li> <li>Additional commits viewable in <a href="https://github.com/zloirock/core-js/commits/v3.42.0/packages/core-js">compare view</a></li> </ul> </details> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=core-js&package-manager=npm_and_yarn&previous-version=3.39.0&new-version=3.42.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --- 🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.