Skip to content

Bump parcel from 2.0.0-beta.3.1 to 2.3.0 #251

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

Bump parcel from 2.0.0-beta.3.1 to 2.3.0 #251

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 10, 2022
edited
Loading

Bumps parcel from 2.0.0-beta.3.1 to 2.3.0.

Release notes

Sourced from parcel's releases.

v2.3.0

This release reduces the number of npm dependencies needed by Parcel by over 60%. This builds upon previous work in 2.2.0, so combined Parcel now installs over 70% fewer dependencies! This is accomplished by:

  • Pre-bundling some dependencies with Parcel itself rather than loading them from npm. This is done for packages that are small and internal to Parcel (i.e. you don't interact with them directly in your project). This reduces maintenance burden for users of Parcel.
  • Auto installing node builtin polyfills on demand (e.g. buffer, stream, etc.). These are rarely used but account for a large number of installed dependencies. Now, when you use one of these, or a dependency in your project does, it'll be installed into your project on demand.
  • Removing built-in Babel and PostCSS modules dependencies, and installing them into projects on demand, only when actually used.

We will continue reducing Parcel's footprint in future releases by further reducing our use of dependency-heavy ecosystems such as PostCSS as we replace them with Rust-based equivalents.

Other changes

  • Support React 18 prereleases and experimental versions with automatic JSX runtime - Details
  • Fix @swc/helpers in non-module scripts - Details
  • Fix auto installing dependencies in PNPM monorepos - Details

v2.2.1

Fixed

  • Fix background image data urls missing quotes - Details
  • Fix development builds not downleveling nested selectors with @parcel/css. Now Parcel has default modern browser targets. - Details
  • Upgrades htmlnano to v2 to remove uncss which had a dependency on a vulnerable old version of PostCSS - Details
  • Upgrades postcss-modules and removes css-module-loader-core with old PostCSS dependencies - Details
  • Upgrade Vue compiler - Details
  • Upgrade SVGR to v6 - Details
  • Upgade JSON5 to v2 - Details
  • Don't discard invalidations when transformer throws an error - Details

v2.2.0

Added

Fixed

  • Updated node-forge to 1.0.0 to fix security vulnerability

v2.1.1

Changelog

v2.1.0

Changelog

New Contributors

... (truncated)

Changelog

Sourced from parcel's changelog.

[2.3.0] - 2022-02-09

Added

  • Reduce the number of npm dependencies needed by parcel Details
  • Support React 18 prereleases and experimental versions with automatic JSX runtime - Details

Fixed

  • Fix @swc/helpers in non-module scripts - Details
  • Fix auto installing dependencies in PNPM monorepos - Details

[2.2.1] - 2022-01-17

Fixed

  • Fix background image data urls missing quotes - Details
  • Fix development builds not downleveling nested selectors with @parcel/css. Now Parcel has default modern browser targets. - Details
  • Upgrades htmlnano to v2 to remove uncss which had a dependency on a vulnerable old version of PostCSS - Details
  • Upgrades postcss-modules and removes css-module-loader-core with old PostCSS dependencies - Details
  • Upgrade Vue compiler - Details
  • Upgrade SVGR to v6 - Details
  • Upgade JSON5 to v2 - Details
  • Don't discard invalidations when transformer throws an error - Details

[2.2.0] - 2022-01-12

Added

Fixed

  • Updated node-forge to 1.0.0 to fix security vulnerability

[2.1.1] - 2022-01-06

Fixed

  • Do not transpile @​swc/helpers. Fixes infinite recursion in typeof helper. - Details
  • Include invalidation hash in asset content keys - Details
  • Fix loading index.html in dev server when packager/optimizer changes bundle type - Details

[2.1.0] - 2022-01-05

Added

  • Enable transpiling node_modules by default - Details
  • Rewrite core graph data structure to be backed by SharedArrayBuffer - Details
  • Statically analyze symbols and enable deferred compilation of re-exported modules in development - Details

... (truncated)

Commits
  • 65ffb58 v2.3.0
  • 4845242 Changelog for 2.3.0
  • 90050e4 Support React 18 prereleases and experimental versions with automatic JSX run...
  • 5b38bdf Remove postcss-modules dependency by default
  • c3a28ca Adjust versions before building
  • cc9e352 Fix self build
  • 4cbda87 Reduce the number of npm dependencies needed by parcel (#7576)
  • 0de7372 Update pnpm to allow installing dependencies in a monorepo (#7566)
  • a930ba5 Fix: not import @swc/helpers in script tag without type="module" (#7599)
  • 74fcc3f v2.2.1
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Feb 10, 2022
@dependabot dependabot bot mentioned this pull request Feb 10, 2022
Closed
@dependabot
Bump parcel from 2.0.0-beta.3.1 to 2.3.0
c74cff5 
Bumps [parcel](https://github.com/parcel-bundler/parcel) from 2.0.0-beta.3.1 to 2.3.0.
- [Release notes](https://github.com/parcel-bundler/parcel/releases)
- [Changelog](https://github.com/parcel-bundler/parcel/blob/v2/CHANGELOG.md)
- [Commits](parcel-bundler/parcel@v2.0.0-beta.3.1...v2.3.0)

---
updated-dependencies:
- dependency-name: parcel
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/parcel-2.3.0 branch from 16c1bd0 to c74cff5 Compare February 10, 2022 13:19
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Feb 11, 2022

Superseded by #252.

@dependabot dependabot bot closed this Feb 11, 2022
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/parcel-2.3.0 branch February 11, 2022 09:31
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants