[PR #364] [CLOSED] Bump webpack from 4.43.0 to 4.44.0 #419

New issue

Closed

opened 2026-02-26 06:30:42 +03:00 by kerem · 0 comments

kerem commented 2026-02-26 06:30:42 +03:00

Owner

Copy link

📋 Pull Request Information

Original PR: https://github.com/nextcloud/twofactor_gateway/pull/364
Author: @dependabot-preview[bot]
Created: 7/25/2020
Status: ❌ Closed

Base: master ← Head: dependabot/npm_and_yarn/webpack-4.44.0

---

📝 Commits (1)

• bfe06f5 Bump webpack from 4.43.0 to 4.44.0

📊 Changes

2 files changed (+425 additions, -689 deletions)

View changed files

📝 package-lock.json (+424 -688)
📝 package.json (+1 -1)

📄 Description

Bumps webpack from 4.43.0 to 4.44.0.

Release notes

Sourced from webpack's releases.

v4.44.0

Features

• Improve sideEffects flag behavior when dynamic modules are part of the tree
  • Fixes a bug which causes empty modules (or type-only modules) to "break" Tree Shaking
• add splitChunks.enforceSizeThreshold to allow enfore splitting larger chunks unrelated from other limiations
  • Not set by default to avoid breaking change
  • It will be set by default to 50k in webpack 5
  • It's recommended to set it in webpack 4 too
• add support for resolve.roots and default resolve.roots: [context]
  • This allows to resolve server-relative urls (e.g. /src/abc) to the project root (or other locations when configured)
  • This allows to use loaders that rely on that behavior

Bugfixes

• fix bug where splitChunks produced non-optimal results when minSize is set to 0
  • This lead to NaNs in some places which breaks ordering
• Fix bug which lead to HMR not working for splitChunks in entrypoints
• force update watchpack and chokidar for chokidar bugfix which causes files to stop being watched

Commits

• d4603c6 4.44.0
• ea06f03 Merge pull request #11225 from webpack/deps/watchpack
• eae1ba0 update watchpack
• 42dc038 Merge pull request #11210 from webpack/ci/timeout-4
• 21e3c11 Merge pull request #11207 from webpack/backport/add-roots
• ce3ca7b watch test cases: close correctly, increase timeout
• 5c9c601 Improve description in config schema
• a925e6a add roots option
• 1879a81 Merge pull request #10776 from jeffin143/fix-10775
• 0d8ff5f keep old code style
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

---

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/nextcloud/twofactor_gateway/pull/364 **Author:** [@dependabot-preview[bot]](https://github.com/apps/dependabot-preview) **Created:** 7/25/2020 **Status:** ❌ Closed **Base:** `master` ← **Head:** `dependabot/npm_and_yarn/webpack-4.44.0` --- ### 📝 Commits (1) - [`bfe06f5`](https://github.com/nextcloud/twofactor_gateway/commit/bfe06f569211499823630df29bb89fdc5498cfb6) Bump webpack from 4.43.0 to 4.44.0 ### 📊 Changes **2 files changed** (+425 additions, -689 deletions) <details> <summary>View changed files</summary> 📝 `package-lock.json` (+424 -688) 📝 `package.json` (+1 -1) </details> ### 📄 Description Bumps [webpack](https://github.com/webpack/webpack) from 4.43.0 to 4.44.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/webpack/webpack/releases">webpack's releases</a>.</em></p> <blockquote> <h2>v4.44.0</h2> <h1>Features</h1> <ul> <li>Improve <code>sideEffects</code> flag behavior when dynamic modules are part of the tree <ul> <li>Fixes a bug which causes empty modules (or type-only modules) to &quot;break&quot; Tree Shaking</li> </ul> </li> <li>add <code>splitChunks.enforceSizeThreshold</code> to allow enfore splitting larger chunks unrelated from other limiations <ul> <li>Not set by default to avoid breaking change</li> <li>It will be set by default to 50k in webpack 5</li> <li>It's recommended to set it in webpack 4 too</li> </ul> </li> <li>add support for <code>resolve.roots</code> and default <code>resolve.roots: [context]</code> <ul> <li>This allows to resolve server-relative urls (e.g. <code>/src/abc</code>) to the project root (or other locations when configured)</li> <li>This allows to use loaders that rely on that behavior</li> </ul> </li> </ul> <h1>Bugfixes</h1> <ul> <li>fix bug where splitChunks produced non-optimal results when <code>minSize</code> is set to <code>0</code> <ul> <li>This lead to <code>NaN</code>s in some places which breaks ordering</li> </ul> </li> <li>Fix bug which lead to HMR not working for splitChunks in entrypoints</li> <li>force update watchpack and chokidar for chokidar bugfix which causes files to stop being watched</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/webpack/webpack/commit/d4603c6d7ef4acfbe956ef49d8476c7368526989"><code>d4603c6</code></a> 4.44.0</li> <li><a href="https://github.com/webpack/webpack/commit/ea06f033756fe21bc73698e8449a7cbf1fedeb13"><code>ea06f03</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/11225">#11225</a> from webpack/deps/watchpack</li> <li><a href="https://github.com/webpack/webpack/commit/eae1ba05bb116d0b6db2968e078e6a8d67a2e5c6"><code>eae1ba0</code></a> update watchpack</li> <li><a href="https://github.com/webpack/webpack/commit/42dc03852b4dfddaf33aa3b000ee8c255ba4ffd1"><code>42dc038</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/11210">#11210</a> from webpack/ci/timeout-4</li> <li><a href="https://github.com/webpack/webpack/commit/21e3c11a26e405395bb7777024a1fc7fb9a99484"><code>21e3c11</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/11207">#11207</a> from webpack/backport/add-roots</li> <li><a href="https://github.com/webpack/webpack/commit/ce3ca7b4882de428db924b45c29e4b2ba1dad0a9"><code>ce3ca7b</code></a> watch test cases: close correctly, increase timeout</li> <li><a href="https://github.com/webpack/webpack/commit/5c9c6019d54375905e449b865c0a399e2e37719b"><code>5c9c601</code></a> Improve description in config schema</li> <li><a href="https://github.com/webpack/webpack/commit/a925e6ae09092126d4d1a7ee4188cac49a674f4c"><code>a925e6a</code></a> add roots option</li> <li><a href="https://github.com/webpack/webpack/commit/1879a8140df512a17eff21356f7985f73106d01e"><code>1879a81</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/10776">#10776</a> from jeffin143/fix-10775</li> <li><a href="https://github.com/webpack/webpack/commit/0d8ff5f8fb4b3b5d98223042a7400a470e357a53"><code>0d8ff5f</code></a> keep old code style</li> <li>Additional commits viewable in <a href="https://github.com/webpack/webpack/compare/v4.43.0...v4.44.0">compare view</a></li> </ul> </details> <br /> [](https://dependabot.com/compatibility-score/?dependency-name=webpack&package-manager=npm_and_yarn&previous-version=4.43.0&new-version=4.44.0) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) If all status checks pass Dependabot will automatically merge this pull request. [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Automerge options (never/patch/minor, and dev/runtime dependencies) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) </details> --- _{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

kerem 2026-02-26 06:30:42 +03:00

• closed this issue
• added the
  pull-request
  label

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

stable32

stable33

dependabot/npm_and_yarn/vue/test-utils-2.4.8

dependabot/npm_and_yarn/vue-3.5.33

dependabot/npm_and_yarn/vitest-4.1.5

dependabot/npm_and_yarn/nextcloud/axios-2.6.0

dependabot/npm_and_yarn/dompurify-3.4.1

feat/whatsapp-business-driver

stable31

v3.2.0

v2.4.0

v3.1.0

v2.3.0

v2.2.2

v3.0.2

v3.0.1

v2.2.1

v1.2.1

v3.0.0

v1.2.0

v2.2.0

v1.0.0

v2.0.0

v0.20.0

v0.19.0

v0.17.0

v0.16.0

v0.15.1

v0.15.0

v0.14.1

v0.14.0

v0.13.0

v0.13

v0.12.0

v0.11.0

v0.11.0-beta1

v0.10.1

v0.10.1-beta1

v0.10.0

v0.10.0-beta1

v0.9.0

v0.9.0-beta1

v0.8.0

v0.8.0-beta1

v0.7.0

v0.7.0-beta2

v0.7.0-beta1

v0.6.1

v0.6.0

v0.5.0

v0.2.0

v0.2

Labels

Clear labels   

0. to triage

  

1. to develop

  

3. to review

  

blocked

  

bug

  

discussion

  

duplicate

  

enhancement

  

enhancement

  

gateway:signal

  

gateway:signal

  

gateway:signal

  

gateway:sms

  

gateway:telegram

  

hacktoberfest

  

help wanted

  

invalid

  

needs info

  

php

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

technical debt

No labels

0. to triage

1. to develop

3. to review

blocked

bug

discussion

duplicate

enhancement

enhancement

gateway:signal

gateway:signal

gateway:signal

gateway:sms

gateway:telegram

hacktoberfest

help wanted

invalid

needs info

php

pull-request

question

technical debt

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/twofactor_gateway-nextcloud#419

No description provided.