ElasticsearchFulltextExample icon indicating copy to clipboard operation
ElasticsearchFulltextExample copied to clipboard
verified publisher icon bytefish

Bump webpack-dev-server and @angular-devkit/build-angular in /archive/Angular/search-app

Open dependabot[bot] opened this issue 7 months ago • 0 comments

Bumps webpack-dev-server to 5.2.1 and updates ancestor dependency @angular-devkit/build-angular. These dependencies need to be updated together.

Updates webpack-dev-server from 3.9.0 to 5.2.1

Release notes

Sourced from webpack-dev-server's releases.

v5.2.1

5.2.1 (2025-03-26)

Security

  • cross-origin requests are not allowed unless allowed by Access-Control-Allow-Origin header
  • requests with an IP addresses in the Origin header are not allowed to connect to WebSocket server unless configured by allowedHosts or it different from the Host header

The above changes may make the dev server not work if you relied on such behavior, but unfortunately they carry security risks, so they were considered as fixes.

Bug Fixes

  • prevent overlay for errors caught by React error boundaries (#5431) (8c1abc9)
  • take the first network found instead of the last one, this restores the same behavior as 5.0.4 (#5411) (ffd0b86)

v5.2.0

5.2.0 (2024-12-11)

Features

  • added getClientEntry and getClientHotEntry methods to get clients entries (dc642a8)

Bug Fixes

  • speed up initial client bundling (145b5d0)

v5.1.0

5.1.0 (2024-09-03)

Features

  • add visual progress indicators (a8f40b7)
  • added the app option to be Function (by default only with connect compatibility frameworks) (3096148)
  • allow the server option to be Function (#5275) (02a1c6d)
  • http2 support for connect and connect compatibility frameworks which support HTTP2 (#5267) (6509a3f)

Bug Fixes

v5.0.4

5.0.4 (2024-03-19)

... (truncated)

Changelog

Sourced from webpack-dev-server's changelog.

5.2.1 (2025-03-26)

Security

  • cross-origin requests are not allowed unless allowed by Access-Control-Allow-Origin header
  • requests with an IP addresses in the Origin header are not allowed to connect to WebSocket server unless configured by allowedHosts or it different from the Host header

The above changes may make the dev server not work if you relied on such behavior, but unfortunately they carry security risks, so they were considered as fixes.

Bug Fixes

  • prevent overlay for errors caught by React error boundaries (#5431) (8c1abc9)
  • take the first network found instead of the last one, this restores the same behavior as 5.0.4 (#5411) (ffd0b86)

5.2.0 (2024-12-11)

Features

  • added getClientEntry and getClientHotEntry methods to get clients entries (dc642a8)

Bug Fixes

  • speed up initial client bundling (145b5d0)

5.1.0 (2024-09-03)

Features

  • add visual progress indicators (a8f40b7)
  • added the app option to be Function (by default only with connect compatibility frameworks) (3096148)
  • allow the server option to be Function (#5275) (02a1c6d)
  • http2 support for connect and connect compatibility frameworks which support HTTP2 (#5267) (6509a3f)

Bug Fixes

5.0.4 (2024-03-19)

Bug Fixes

... (truncated)

Commits
  • 0d22a08 chore(release): 5.2.1
  • 6045b1e chore(deps): update (#5444)
  • ffd0b86 fix: take the first network found instead of the last one, this restores the ...
  • 9ea7b08 ci: update dependency-review-action (#5442)
  • 5c9378b Merge commit from fork
  • d2575ad Merge commit from fork
  • 8c1abc9 fix: prevent overlay for errors caught by React error boundaries (#5431)
  • 5a39c70 ci: update codecov/codecov-action to v5 (#5406)
  • 55220a8 chore(deps-dev): bump the dependencies group across 1 directory with 4 update...
  • 09f6f8e chore(deps): bump the dependencies group across 1 directory with 2 updates (#...
  • Additional commits viewable in compare view

Updates @angular-devkit/build-angular from 0.900.7 to 20.0.5

Release notes

Sourced from @​angular-devkit/build-angular's releases.

20.0.5

@​angular-devkit/build-angular

Commit Description
fix - 1ebd53df7 remove unused @vitejs/plugin-basic-ssl dependency

@​angular/build

Commit Description
fix - 05cebdbcd proxy karma request from / to /base

20.0.4

@​schematics/angular

Commit Description
fix - 2316fe29d add missing prettier config

@​angular/ssr

Commit Description
fix - 309742289 avoid preloading unnecessary dynamic bundles
fix - 82691b98f ensure correct referer header handling in web request conversion

20.0.3

@​schematics/angular

Commit Description
fix - e90a808c0 include main.server.ts in tsconfig.files when present
fix - 5c48b8e0a reset module typeSeparator when generating applications

@​angular/build

Commit Description
fix - 56f426e25 include custom bundle name scripts with karma
fix - dfe3a8b73 increase worker idle timeout
fix - e6d27bd5e set scripts option output as classic script for karma

20.0.2

@​schematics/angular

Commit Description
fix - bf64a0f2d add less as a devDependency when selected as the style preprocessor
fix - cb258a3e1 correctly detect modules using new file extension format

@​angular/build

Commit Description
fix - 424f1cbbf do not consider internal Angular files as external imports

20.0.1

@​schematics/angular

Commit Description
fix - 525ddcbd2 only overwrite JSON file if actually changed

... (truncated)

Changelog

Sourced from @​angular-devkit/build-angular's changelog.

20.0.5 (2025-07-01)

@​angular-devkit/build-angular

Commit Type Description
1ebd53df7 fix remove unused @vitejs/plugin-basic-ssl dependency

@​angular/build

Commit Type Description
05cebdbcd fix proxy karma request from / to /base

20.1.0-next.3 (2025-06-25)

@​angular/cli

Commit Type Description
dc45c186e feat add initial MCP server implementation

@​schematics/angular

Commit Type Description
4221a33cc fix add missing prettier config

@​angular-devkit/build-angular

Commit Type Description
49a09737d feat provide partial custom postcss configuration support

@​angular/build

Commit Type Description
adfeee0a4 fix adjust coverage includes/excludes for unit-test vitest runner
e0de8680d fix inject zone.js/testing before karma builder execution

@​angular/ssr

Commit Type Description
861a61a3b fix avoid preloading unnecessary dynamic bundles

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by google-wombot, a new releaser for @​angular-devkit/build-angular since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the Security Alerts page.

dependabot[bot] avatar Jul 05 '25 03:07 dependabot[bot]