[PR #309] [MERGED] Bump webpack from 4.41.2 to 4.41.4 #378

New issue

Closed

opened 2026-02-26 06:30:29 +03:00 by kerem · 0 comments

kerem commented

2026-02-26 06:30:29 +03:00

Owner

📋 Pull Request Information

Original PR: https://github.com/nextcloud/twofactor_gateway/pull/309
Author: @dependabot-preview[bot]
Created: 12/22/2019
Status: ✅ Merged
Merged: 12/22/2019
Merged by: @dependabot-preview[bot]

Base: master ← Head: dependabot/npm_and_yarn/webpack-4.41.4

📝 Commits (1)

8d721f4 Bump webpack from 4.41.2 to 4.41.4

📊 Changes

2 files changed (+89 additions, -89 deletions)

View changed files

📝 package-lock.json (+88 -88)
📝 package.json (+1 -1)

📄 Description

Bumps webpack from 4.41.2 to 4.41.4.

Release notes

Sourced from webpack's releases.

v4.41.4

Bugfixes

fix case where __webpack_require__.e is not a function when using module concatenation

fix incorrect imported module when using sideEffects in a certain constellation of export names

Performance

lazy-require Webassembly related modules for improved startup performance

v4.41.3

Security

force upgrade terser-webpack-plugin dependency for security fix (not affecting webpack)

Funding

add npm funding field to package.json

Commits

dcc45dd 4.41.4
ab4fa8d Merge pull request #10146 from liximomo/fix-sideEffects
1452d19 test: add test case
156a087 fix: prevent incorrectly redirect
5b8fbca Merge pull request #10132 from jeffin143/patch-9859
e62512d Merge pull request #10133 from webpack/bugfix/issue-10104
77971bf backporting to webpack-4
c81963b fixes #10104
df9f3eb 4.41.3
fe71d68 Merge pull request #10010 from webpack/funding
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
@dependabot use these labels will set the current labels as the default for future PRs for this repo and language
@dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
@dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
@dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
@dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

Update frequency (including time of day and day of week)
Pull request limits (per update run and/or open at any time)
Automerge options (never/patch/minor, and dev/runtime dependencies)
Out-of-range updates (receive only lockfile updates, if desired)
Security updates (receive only security updates, if desired)

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/nextcloud/twofactor_gateway/pull/309 **Author:** [@dependabot-preview[bot]](https://github.com/apps/dependabot-preview) **Created:** 12/22/2019 **Status:** ✅ Merged **Merged:** 12/22/2019 **Merged by:** [@dependabot-preview[bot]](https://github.com/apps/dependabot-preview) **Base:** `master` ← **Head:** `dependabot/npm_and_yarn/webpack-4.41.4` --- ### 📝 Commits (1) - [`8d721f4`](https://github.com/nextcloud/twofactor_gateway/commit/8d721f47549544b92c4563c766fdb7c3dad6afaa) Bump webpack from 4.41.2 to 4.41.4 ### 📊 Changes **2 files changed** (+89 additions, -89 deletions) <details> <summary>View changed files</summary> 📝 `package-lock.json` (+88 -88) 📝 `package.json` (+1 -1) </details> ### 📄 Description Bumps [webpack](https://github.com/webpack/webpack) from 4.41.2 to 4.41.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/webpack/webpack/releases">webpack's releases</a>.</em></p> <blockquote> <h2>v4.41.4</h2> <h1>Bugfixes</h1> <ul> <li>fix case where <code>__webpack_require__.e</code> is not a function when using module concatenation</li> <li>fix incorrect imported module when using sideEffects in a certain constellation of export names</li> </ul> <h1>Performance</h1> <ul> <li>lazy-require Webassembly related modules for improved startup performance</li> </ul> <h2>v4.41.3</h2> <h1>Security</h1> <ul> <li>force upgrade terser-webpack-plugin dependency for security fix (not affecting webpack)</li> </ul> <h1>Funding</h1> <ul> <li>add npm funding field to package.json</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/webpack/webpack/commit/dcc45dd977356f08061b2e9451792c6218910891"><code>dcc45dd</code></a> 4.41.4</li> <li><a href="https://github.com/webpack/webpack/commit/ab4fa8ddb3f433d286653cd6af7e3aad51168649"><code>ab4fa8d</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/10146">#10146</a> from liximomo/fix-sideEffects</li> <li><a href="https://github.com/webpack/webpack/commit/1452d1967341b6f297426a77a55ac04764735248"><code>1452d19</code></a> test: add test case</li> <li><a href="https://github.com/webpack/webpack/commit/156a0874a98e5b4a0a8ce074a4ec28fd6b09a1d3"><code>156a087</code></a> fix: prevent incorrectly redirect</li> <li><a href="https://github.com/webpack/webpack/commit/5b8fbca378c04c4936731b3bfd16b69d10625c1b"><code>5b8fbca</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/10132">#10132</a> from jeffin143/patch-9859</li> <li><a href="https://github.com/webpack/webpack/commit/e62512dc8685313e5906a08c1b491e02f060e2fc"><code>e62512d</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/10133">#10133</a> from webpack/bugfix/issue-10104</li> <li><a href="https://github.com/webpack/webpack/commit/77971bf8c088a4902f20aeb27ecf73df1d16c5b3"><code>77971bf</code></a> backporting to webpack-4</li> <li><a href="https://github.com/webpack/webpack/commit/c81963bf6b570bda15b22bde99b96a251efa2f7e"><code>c81963b</code></a> fixes <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/10104">#10104</a></li> <li><a href="https://github.com/webpack/webpack/commit/df9f3eb7d9e4e60e53bfd1595d857bc7f912bc21"><code>df9f3eb</code></a> 4.41.3</li> <li><a href="https://github.com/webpack/webpack/commit/fe71d68c5be75c5f003f5daad9e716b52cbd4a5a"><code>fe71d68</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/10010">#10010</a> from webpack/funding</li> <li>Additional commits viewable in <a href="https://github.com/webpack/webpack/compare/v4.41.2...v4.41.4">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://api.dependabot.com/badges/compatibility_score?dependency-name=webpack&package-manager=npm_and_yarn&previous-version=4.41.2&new-version=4.41.4)](https://dependabot.com/compatibility-score.html?dependency-name=webpack&package-manager=npm_and_yarn&previous-version=4.41.2&new-version=4.41.4) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) If all status checks pass Dependabot will automatically merge this pull request. [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Automerge options (never/patch/minor, and dev/runtime dependencies) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details> --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>