Bump terser from 5.3.8 to 5.4.0 #119

Merged
dependabot[bot] merged 1 commit from dependabot/npm_and_yarn/develop/terser-5.4.0 into develop 2020-11-17 05:36:48 +01:00
dependabot[bot] commented 2020-11-17 05:34:20 +01:00 (Migrated from github.com)

Bumps terser from 5.3.8 to 5.4.0.

Changelog

Sourced from terser's changelog.

v5.4.0

  • Logical assignment
  • Change let x = undefined to just let x
  • Removed some optimizations for template strings, placing them behind unsafe options. Reason: adding strings is not equivalent to template strings, due to valueOf differences.
  • The AST_Token class was slimmed down in order to use less memory.
Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will merge this PR once CI passes on it, as requested by @Serraniel.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Bumps [terser](https://github.com/terser/terser) from 5.3.8 to 5.4.0. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/terser/terser/blob/master/CHANGELOG.md">terser's changelog</a>.</em></p> <blockquote> <h2>v5.4.0</h2> <ul> <li>Logical assignment</li> <li>Change <code>let x = undefined</code> to just <code>let x</code></li> <li>Removed some optimizations for template strings, placing them behind <code>unsafe</code> options. Reason: adding strings is not equivalent to template strings, due to valueOf differences.</li> <li>The AST_Token class was slimmed down in order to use less memory.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/terser/terser/commit/5c6681cc3aef9aa5631593f402f0e303663a7331"><code>5c6681c</code></a> 5.4.0</li> <li><a href="https://github.com/terser/terser/commit/37e432e20c0cb4942d4f31d40e30571d6b01cf86"><code>37e432e</code></a> update changelog</li> <li><a href="https://github.com/terser/terser/commit/83c027e728e289a0ae1b87dc52bf3ea594387d8f"><code>83c027e</code></a> improve memory usage by slimming down AST_Token class</li> <li><a href="https://github.com/terser/terser/commit/a5983c321c09ad43a086ed045f047cc076f1005c"><code>a5983c3</code></a> add jsdelivr example to README</li> <li><a href="https://github.com/terser/terser/commit/a05601e04f698021df1323bcbd39ae6f2750c8cd"><code>a05601e</code></a> add markers for generating website</li> <li><a href="https://github.com/terser/terser/commit/4faa53799babaa333d4d308991f66f41e78483c1"><code>4faa537</code></a> gate some template string transforms behind 'unsafe' option. Closes <a href="https://github-redirect.dependabot.com/terser/terser/issues/863">#863</a></li> <li><a href="https://github.com/terser/terser/commit/36349ecb32ed2ace6ab8985ffb278c02465f738c"><code>36349ec</code></a> remove undefined initialization. Closes <a href="https://github-redirect.dependabot.com/terser/terser/issues/869">#869</a></li> <li><a href="https://github.com/terser/terser/commit/73e6536139add1bddf68368e48aedccdfc78f528"><code>73e6536</code></a> build before testing</li> <li><a href="https://github.com/terser/terser/commit/5907df8941dcfa4b52dfd588331483923795cd1f"><code>5907df8</code></a> implement logical assignment</li> <li>See full diff in <a href="https://github.com/terser/terser/compare/v5.3.8...v5.4.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=terser&package-manager=npm_and_yarn&previous-version=5.3.8&new-version=5.4.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/configuring-github-dependabot-security-updates) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) Dependabot will merge this PR once CI passes on it, as requested by @Serraniel. [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>
Serraniel (Migrated from github.com) approved these changes 2020-11-17 05:35:00 +01:00
Serraniel (Migrated from github.com) left a comment

@dependabot merge

@dependabot merge
Sign in to join this conversation.
No reviewers
No milestone
No project
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: Serraniel/AniwatchPlus#119
No description provided.