Skip to content
GitLab

Bump terser from 5.1.0 to 5.3.0

Closed Administrator requested to merge dependabot/npm_and_yarn/terser-5.3.0 into main

Created by: dependabot[bot]

Bumps terser from 5.1.0 to 5.3.0.

Changelog

Sourced from terser's changelog.

v5.3.0

  • Fixed a crash when compressing object spreads in some cases
  • Fixed compiletime evaluation of optional chains (caused typeof a?.b to always return "object")
  • domprops has been updated to contain every single possible prop

v5.2.1

  • The parse step now doesn't accept an ecma option, so that all ES code is accepted.
  • Optional dotted chains now accept keywords, just like dotted expressions (foo?.default)

v5.2.0

  • Optional chaining syntax is now supported.
  • Consecutive await expressions don't have unnecessary parens
  • Taking the variable name's length (after mangling) into consideration when deciding to inline
Commits
  • c70f4b1 5.3.0
  • f306199 update changelog
  • 501afef fix failure case when evaluating an optional chain. Closes #806
  • 6b6cb9f add note about node version to CONTRIBUTING.md
  • fc1ea2d Added note about no sync (#793)
  • a7c1673 update domprops from FF 82.0a1, Chrome 84.0.4147.89 (#811)
  • ac292b8 do not inline function declarations into default exports, as they cannot be t...
  • 587bb71 fix prop.computed_key crash. Closes #805
  • 9940e1f Update LICENSE
  • 4e3ca5d 5.2.1
  • Additional commits viewable in compare view

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)