Title: Bump rollup from 4.9.4 to 4.22.4 by dependabot[bot] · Pull Request #41 · microsoft/FeatureManagement-JavaScript · GitHub
Open Graph Title: Bump rollup from 4.9.4 to 4.22.4 by dependabot[bot] · Pull Request #41 · microsoft/FeatureManagement-JavaScript
X Title: Bump rollup from 4.9.4 to 4.22.4 by dependabot[bot] · Pull Request #41 · microsoft/FeatureManagement-JavaScript
Description: Bumps rollup from 4.9.4 to 4.22.4.
Release notes
Sourced from rollup's releases.
v4.22.4
4.22.4
2024-09-21
Bug Fixes
Fix a vulnerability in generated code that affects IIFE, UMD and CJS bundles when run in a browser context (#5671)
Pull Requests
#5670: refactor: Use object.prototype to check for reserved properties (@YuHyeonWook)
#5671: Fix DOM Clobbering CVE (@lukastaegert)
v4.22.3
4.22.3
2024-09-21
Bug Fixes
Ensure that mutations in modules without side effects are observed while properly handling transitive dependencies (#5669)
Pull Requests
#5669: Ensure impure dependencies of pure modules are added (@lukastaegert)
v4.22.2
4.22.2
2024-09-20
Bug Fixes
Revert fix for side effect free modules until other issues are investigated (#5667)
Pull Requests
#5667: Partially revert #5658 and re-apply #5644 (@lukastaegert)
v4.22.1
4.22.1
2024-09-20
Bug Fixes
Revert #5644 "stable chunk hashes" while issues are being investigated
Pull Requests
... (truncated)
Changelog
Sourced from rollup's changelog.
4.22.4
2024-09-21
Bug Fixes
Fix a vulnerability in generated code that affects IIFE, UMD and CJS bundles when run in a browser context (#5671)
Pull Requests
#5670: refactor: Use object.prototype to check for reserved properties (@YuHyeonWook)
#5671: Fix DOM Clobbering CVE (@lukastaegert)
4.22.3
2024-09-21
Bug Fixes
Ensure that mutations in modules without side effects are observed while properly handling transitive dependencies (#5669)
Pull Requests
#5669: Ensure impure dependencies of pure modules are added (@lukastaegert)
4.22.2
2024-09-20
Bug Fixes
Revert fix for side effect free modules until other issues are investigated (#5667)
Pull Requests
#5667: Partially revert #5658 and re-apply #5644 (@lukastaegert)
4.22.1
2024-09-20
Bug Fixes
Revert #5644 "stable chunk hashes" while issues are being investigated
Pull Requests
#5663: chore(deps): update dependency inquirer to v11 (@renovate[bot], @lukastaegert)
#5664: chore(deps): lock file maintenance minor/patch updates (@renovate[bot])
#5665: fix: type in CI file (@YuHyeonWook)
... (truncated)
Commits
79c0aba 4.22.4
e2552c9 Fix DOM Clobbering CVE (#5671)
10ab90e refactor: Use object.prototype to check for reserved properties (#5670)
e1cba8e 4.22.3
59cec3e Ensure impure dependencies of pure modules are added (#5669)
b86ffd7 4.22.2
d5ff63d Partially revert #5658 and re-apply #5644 (#5667)
0a821d9 Create SECURITY.md
76e962d 4.22.1
68c23da Partially revert #5644
Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show
Open Graph Description: Bumps rollup from 4.9.4 to 4.22.4. Release notes Sourced from rollup's releases. v4.22.4 4.22.4 2024-09-21 Bug Fixes Fix a vulnerability in generated code that affects IIFE, UMD and CJS bund...
X Description: Bumps rollup from 4.9.4 to 4.22.4. Release notes Sourced from rollup's releases. v4.22.4 4.22.4 2024-09-21 Bug Fixes Fix a vulnerability in generated code that affects IIFE, UMD and CJS ...
Opengraph URL: https://github.com/microsoft/FeatureManagement-JavaScript/pull/41
X: @github
Domain: github.com
| route-pattern | /:user_id/:repository/pull/:id/files(.:format) |
| route-controller | pull_requests |
| route-action | files |
| fetch-nonce | v2:ed32641f-3982-842e-30c3-52957306c318 |
| current-catalog-service-hash | ae870bc5e265a340912cde392f23dad3671a0a881730ffdadd82f2f57d81641b |
| request-id | E4EC:26836F:1759461:1E2B4EF:69925AEB |
| html-safe-nonce | 2f2a50f559447c71fa35d47c591f2048e76d3877f30705b6499eae3972399d2e |
| visitor-payload | eyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJFNEVDOjI2ODM2RjoxNzU5NDYxOjFFMkI0RUY6Njk5MjVBRUIiLCJ2aXNpdG9yX2lkIjoiMzk0MDk3MjYzMTQ5MTIzODYzNSIsInJlZ2lvbl9lZGdlIjoiaWFkIiwicmVnaW9uX3JlbmRlciI6ImlhZCJ9 |
| visitor-hmac | 6b8b2abaea0975741ff94fa2b10117c91051d7d6e0adb71ed6762534c5ec592c |
| hovercard-subject-tag | pull_request:2088196000 |
| github-keyboard-shortcuts | repository,pull-request-list,pull-request-conversation,pull-request-files-changed,copilot |
| google-site-verification | Apib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I |
| octolytics-url | https://collector.github.com/github/collect |
| analytics-location | / |
| fb:app_id | 1401488693436528 |
| apple-itunes-app | app-id=1477376905, app-argument=https://github.com/microsoft/FeatureManagement-JavaScript/pull/41/files |
| twitter:image | https://avatars.githubusercontent.com/in/29110?s=400&v=4 |
| twitter:card | summary_large_image |
| og:image | https://avatars.githubusercontent.com/in/29110?s=400&v=4 |
| og:image:alt | Bumps rollup from 4.9.4 to 4.22.4. Release notes Sourced from rollup's releases. v4.22.4 4.22.4 2024-09-21 Bug Fixes Fix a vulnerability in generated code that affects IIFE, UMD and CJS bund... |
| og:site_name | GitHub |
| og:type | object |
| hostname | github.com |
| expected-hostname | github.com |
| None | 42c603b9d642c4a9065a51770f75e5e27132fef0e858607f5c9cb7e422831a7b |
| turbo-cache-control | no-preview |
| diff-view | unified |
| go-import | github.com/microsoft/FeatureManagement-JavaScript git https://github.com/microsoft/FeatureManagement-JavaScript.git |
| octolytics-dimension-user_id | 6154722 |
| octolytics-dimension-user_login | microsoft |
| octolytics-dimension-repository_id | 738639264 |
| octolytics-dimension-repository_nwo | microsoft/FeatureManagement-JavaScript |
| octolytics-dimension-repository_public | true |
| octolytics-dimension-repository_is_fork | false |
| octolytics-dimension-repository_network_root_id | 738639264 |
| octolytics-dimension-repository_network_root_nwo | microsoft/FeatureManagement-JavaScript |
| turbo-body-classes | logged-out env-production page-responsive |
| disable-turbo | true |
| browser-stats-url | https://api.github.com/_private/browser/stats |
| browser-errors-url | https://api.github.com/_private/browser/errors |
| release | 848bc6032dcc93a9a7301dcc3f379a72ba13b96e |
| ui-target | full |
| theme-color | #1e2327 |
| color-scheme | light dark |
Links:
Viewport: width=device-width