[PR #167] [CLOSED] Bump webpack from 4.26.0 to 4.28.2 #261

New issue

Closed

opened 2026-02-26 05:34:13 +03:00 by kerem · 0 comments

kerem commented 2026-02-26 05:34:13 +03:00

Owner

Copy link

📋 Pull Request Information

Original PR: https://github.com/nextcloud/twofactor_gateway/pull/167
Author: @dependabot-preview[bot]
Created: 12/24/2018
Status: ❌ Closed

Base: master ← Head: dependabot/npm_and_yarn/webpack-4.28.2

---

📝 Commits (1)

• e68a1de Bump webpack from 4.26.0 to 4.28.2

📊 Changes

2 files changed (+61 additions, -44 deletions)

View changed files

📝 package-lock.json (+60 -43)
📝 package.json (+1 -1)

📄 Description

Bumps webpack from 4.26.0 to 4.28.2.

Release notes

Sourced from webpack's releases.

v4.28.2

Bugfixes

• fixes a crash when multiple IgnorePlugins are used

v4.28.1

Bugfixes

• fix error in IgnorePlugin when no contextRegExp is passed

v4.28.0

Features

• IgnorePlugin: checkResource has an additional context argument

Bugfixes

• Injection of node.js globals has been disabled for .mjs files as it's crashing

v4.27.1

Bugfixes

• v4.27.0 accidentially introduced a breaking change. This reverts the change and restores the original behavior for splitChunks enforce.

v4.27.0

Features

• When using functions as plugins they are now also called with the compiler as parameter
  • This make it possible to use arrow functions as plugins
• splitChunks.maxSize now emits a warning when minSize > maxSize
• Loaders have now access to a getResolve method to create their own resolver function with custom options

Bugfixes

• splitChunks.cacheGroups.xxx.enforce now behaves as documented and enforce chunk creation
• splitChunks.cacheGroups.xxx.enforce now no longer deletes minSize for maxSize
• fixes a bug where splitChunks cause cacheGroups to be incorrectly merged when using the same name
  • now conditions are considered per cacheGroup
  • the correct cache group comment is displayed in stats
• fixes a bug which causes providedExports not to be updated on rebuilds when using export * from

v4.26.1

Bugfixes

• fix a bug where splitChunks.maxSize causes a hanging build
• fix a bug where splitChunks.maxSize crashes when minSize > maxSize
• fix a edgecase where splitChunks.maxSize can cause chunks bigger than minSize
• remove unnecessary code from global builtin

Commits

• fe514dd 4.28.2
• 899eeff Merge pull request #8542 from webpack/bugfix/ignore-externals
• bc368c7 fixes #8538
• 7a6a71f 4.28.1
• 068fe24 Merge pull request #8530 from webpack/bugfix/ignore-plugin
• 6c22ca2 fix issue when contextRegExp is undefined
• e871eeb 4.28.0
• f6d67b6 update examples
• 573d2da Merge pull request #8511 from isiahmeadows/fix-erroneous-injection
• 6b54a46 Fix failing test.
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will not automatically merge this PR because it includes a minor update to a development dependency.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge
• @dependabot reopen will reopen this PR if it is closed
• @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

---

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/nextcloud/twofactor_gateway/pull/167 **Author:** [@dependabot-preview[bot]](https://github.com/apps/dependabot-preview) **Created:** 12/24/2018 **Status:** ❌ Closed **Base:** `master` ← **Head:** `dependabot/npm_and_yarn/webpack-4.28.2` --- ### 📝 Commits (1) - [`e68a1de`](https://github.com/nextcloud/twofactor_gateway/commit/e68a1de7d018b585bb533b3af9f07387703c4096) Bump webpack from 4.26.0 to 4.28.2 ### 📊 Changes **2 files changed** (+61 additions, -44 deletions) <details> <summary>View changed files</summary> 📝 `package-lock.json` (+60 -43) 📝 `package.json` (+1 -1) </details> ### 📄 Description Bumps [webpack](https://github.com/webpack/webpack) from 4.26.0 to 4.28.2. <details> <summary>Release notes</summary> *Sourced from [webpack's releases](https://github.com/webpack/webpack/releases).* > ## v4.28.2 > # Bugfixes > > * fixes a crash when multiple IgnorePlugins are used > > ## v4.28.1 > # Bugfixes > > * fix error in IgnorePlugin when no contextRegExp is passed > > ## v4.28.0 > # Features > > * IgnorePlugin: `checkResource` has an additional `context` argument > > # Bugfixes > > * Injection of node.js globals has been disabled for `.mjs` files as it's crashing > > ## v4.27.1 > # Bugfixes > > * v4.27.0 accidentially introduced a breaking change. This reverts the change and restores the original behavior for `splitChunks` `enforce`. > > ## v4.27.0 > # Features > > * When using functions as plugins they are now also called with the compiler as parameter > * This make it possible to use arrow functions as plugins > * splitChunks.maxSize now emits a warning when minSize > maxSize > * Loaders have now access to a `getResolve` method to create their own resolver function with custom options > > # Bugfixes > > * splitChunks.cacheGroups.xxx.enforce now behaves as documented and enforce chunk creation > * splitChunks.cacheGroups.xxx.enforce now no longer deletes minSize for maxSize > * fixes a bug where splitChunks cause cacheGroups to be incorrectly merged when using the same name > * now conditions are considered per cacheGroup > * the correct cache group comment is displayed in stats > * fixes a bug which causes providedExports not to be updated on rebuilds when using `export * from` > > ## v4.26.1 > # Bugfixes > > * fix a bug where splitChunks.maxSize causes a hanging build > * fix a bug where splitChunks.maxSize crashes when minSize > maxSize > * fix a edgecase where splitChunks.maxSize can cause chunks bigger than minSize > * remove unnecessary code from global builtin </details> <details> <summary>Commits</summary> - [`fe514dd`](https://github.com/webpack/webpack/commit/fe514dd975f1d2dd1546906a6f4c0a6b2a0e3761) 4.28.2 - [`899eeff`](https://github.com/webpack/webpack/commit/899eeffa11ae82190e8a90a2534bbe22f990cade) Merge pull request [#8542](https://github-redirect.dependabot.com/webpack/webpack/issues/8542) from webpack/bugfix/ignore-externals - [`bc368c7`](https://github.com/webpack/webpack/commit/bc368c76119d75981b7d9153cd1c3c52c17dc564) fixes [#8538](https://github-redirect.dependabot.com/webpack/webpack/issues/8538) - [`7a6a71f`](https://github.com/webpack/webpack/commit/7a6a71f1e9349f86833de12a673805621f0fc6f6) 4.28.1 - [`068fe24`](https://github.com/webpack/webpack/commit/068fe24a4531a17e06d87a1c0f97c3ef37f2238f) Merge pull request [#8530](https://github-redirect.dependabot.com/webpack/webpack/issues/8530) from webpack/bugfix/ignore-plugin - [`6c22ca2`](https://github.com/webpack/webpack/commit/6c22ca2b9629dbb95b762dd1447ee0779d18b6f9) fix issue when contextRegExp is undefined - [`e871eeb`](https://github.com/webpack/webpack/commit/e871eeb121a69efd6cbfa56f977d5843bf030202) 4.28.0 - [`f6d67b6`](https://github.com/webpack/webpack/commit/f6d67b66058e0c0f1fa36d94d31aed4a2830d3d8) update examples - [`573d2da`](https://github.com/webpack/webpack/commit/573d2da1d946b59ef6990cea0edf31958d13c0d6) Merge pull request [#8511](https://github-redirect.dependabot.com/webpack/webpack/issues/8511) from isiahmeadows/fix-erroneous-injection - [`6b54a46`](https://github.com/webpack/webpack/commit/6b54a46842a21694787cbec33699955d11a799fc) Fix failing test. - Additional commits viewable in [compare view](https://github.com/webpack/webpack/compare/v4.26.0...v4.28.2) </details> <br /> [](https://dependabot.com/compatibility-score.html?dependency-name=webpack&package-manager=npm_and_yarn&previous-version=4.26.0&new-version=4.28.2) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) Dependabot will **not** automatically merge this PR because it includes a minor update to a development dependency. [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Automerge options (never/patch/minor, and dev/runtime dependencies) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) Finally, you can contact us by mentioning @dependabot. </details> --- _{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

kerem 2026-02-26 05:34:13 +03:00

• closed this issue
• added the
  pull-request
  label

kerem referenced this issue 2026-02-26 05:34:39 +03:00

[PR #261] [MERGED] Bump webpack from 4.37.0 to 4.38.0 #340

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

stable32

stable33

dependabot/npm_and_yarn/vue/test-utils-2.4.8

dependabot/npm_and_yarn/vue-3.5.33

dependabot/npm_and_yarn/vitest-4.1.5

dependabot/npm_and_yarn/nextcloud/axios-2.6.0

dependabot/npm_and_yarn/dompurify-3.4.1

feat/whatsapp-business-driver

stable31

v3.2.0

v2.4.0

v3.1.0

v2.3.0

v2.2.2

v3.0.2

v3.0.1

v2.2.1

v1.2.1

v3.0.0

v1.2.0

v2.2.0

v1.0.0

v2.0.0

v0.20.0

v0.19.0

v0.17.0

v0.16.0

v0.15.1

v0.15.0

v0.14.1

v0.14.0

v0.13.0

v0.13

v0.12.0

v0.11.0

v0.11.0-beta1

v0.10.1

v0.10.1-beta1

v0.10.0

v0.10.0-beta1

v0.9.0

v0.9.0-beta1

v0.8.0

v0.8.0-beta1

v0.7.0

v0.7.0-beta2

v0.7.0-beta1

v0.6.1

v0.6.0

v0.5.0

v0.2.0

v0.2

Labels

Clear labels   

0. to triage

  

1. to develop

  

3. to review

  

blocked

  

bug

  

discussion

  

duplicate

  

enhancement

  

enhancement

  

gateway:signal

  

gateway:signal

  

gateway:signal

  

gateway:sms

  

gateway:telegram

  

hacktoberfest

  

help wanted

  

invalid

  

needs info

  

php

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

technical debt

No labels

0. to triage

1. to develop

3. to review

blocked

bug

discussion

duplicate

enhancement

enhancement

gateway:signal

gateway:signal

gateway:signal

gateway:sms

gateway:telegram

hacktoberfest

help wanted

invalid

needs info

php

pull-request

question

technical debt

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/twofactor_gateway-nextcloud#261

No description provided.