Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump rollup-plugin-sass from 1.2.2 to 1.12.17 #880

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 5, 2022

Bumps rollup-plugin-sass from 1.2.2 to 1.12.17.

Release notes

Sourced from rollup-plugin-sass's releases.

1.12.15

Hi all,

In this release we provide one bug fix (to a recently unnoticed duplicate css bug), and a test suite where we test out, and show, how to extract sass variables to resulting *.js modules.

What's Changed

Full Changelog: elycruz/rollup-plugin-sass@1.12.14...1.12.15

Thank you, and Happy Coding!

  • rollup-plugin-sass admins

Dependency Updates and Watch Feature

In this Release

  • dev-deps - Upgraded packages reported to having vulnerabilities to their safe versions.
  • dev-deps - Updated 'ava' version to allow builds on certain versions (there was a "moderate" vulnerability in ava that was blocking our package from being built on *nix systems see #97 ).
  • dev-deps - Updated typescript version and added 'downlevel-dts' version of the project's '*.d.ts' files (the whole typescript backward compatibility setup is now in place).
  • plugin - Updated our plugin's custom 'sass file' importer to enforce file load order in the defined 'async' importer - the async importer can sometimes load files out of order, which could result in sass content being compiled in incorrect order (when using the plugin's output (as a function) feature) - This enforces the load order by chaining each legacy importer done call to a promise (which chained, and awaited for, on subsequent importer calls).
  • plugin - Merged in changes related to #96 "Add sass files to rollup watch list" - forces files to be added to rollup's watch list, when rollup is running in 'watch' mode.

Merged PRs

Thank you to our Contributers!

New Contributors

Full Changelog: elycruz/rollup-plugin-sass@1.2.12...1.12.13

Typescript Downgrade and Node 16 (CI/CD) Race Condition Fix

In this release:

Fixes:

  • #89 - (CI/CD) Race condition, in Node 16, fixed. Code in plugin implementation (surrounding sass module custom importer) now enforces sync calls to resolve module ensuring the same behavior across current versions of node.

Improvements:

... (truncated)

Commits
  • 067c850 Updated package version.
  • d9ee5ba Merge branch 'master' of github.com:elycruz/rollup-plugin-sass into dev
  • 2f4fd7a Added .nvmrc file.
  • e750e7a Merge pull request #107 from elycruz/dependabot/npm_and_yarn/minimatch-3.1.2
  • 4c4420f Bump minimatch from 3.0.4 to 3.1.2
  • f4b2e64 issue-#72 - Updated package version.
  • 7e708df issue-#72 - Regenerated package-lock.json.
  • d3044c6 issue-#72 - Updated package version.
  • 195176c Merge pull request #105 from elycruz/dev
  • e49b37a Merge pull request #104elycruz/issue-#72
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by elycruz, a new releaser for rollup-plugin-sass since your current version.


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [rollup-plugin-sass](https://github.com/differui/rollup-plugin-sass) from 1.2.2 to 1.12.17.
- [Release notes](https://github.com/differui/rollup-plugin-sass/releases)
- [Changelog](https://github.com/elycruz/rollup-plugin-sass/blob/master/CHANGELOG.md)
- [Commits](elycruz/rollup-plugin-sass@1.2.2...1.12.17)

---
updated-dependencies:
- dependency-name: rollup-plugin-sass
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Development

Successfully merging this pull request may close these issues.

0 participants