Skip to content

build(deps-dev): bump webpack from 5.108.1 to 5.108.4#7756

Merged
n-lark merged 2 commits into
mainfrom
dependabot/npm_and_yarn/webpack-5.108.4
Jul 16, 2026
Merged

build(deps-dev): bump webpack from 5.108.1 to 5.108.4#7756
n-lark merged 2 commits into
mainfrom
dependabot/npm_and_yarn/webpack-5.108.4

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 6, 2026

Copy link
Copy Markdown
Contributor

Bumps webpack from 5.108.1 to 5.108.4.

Release notes

Sourced from webpack's releases.

v5.108.4

Patch Changes

v5.108.3

Patch Changes

v5.108.2

Patch Changes

Changelog

Sourced from webpack's changelog.

5.108.4

Patch Changes

5.108.3

Patch Changes

5.108.2

Patch Changes

Commits
  • bb9ccfd chore(release): new release (#21319)
  • 7639066 fix: invalidate provided-exports cache with lazy barrel (#21326)
  • ae28c54 perf: reduce CPU and memory overhead of the HTML and CSS pipelines (#21332)
  • e6fb547 perf: re-encode the HTML AST as struct-of-arrays behind a path-based visitor ...
  • 5ce1c22 fix(html): resolve asset URLs against <base href> (#21329)
  • 0e43c4a test(html): cover generateError, ignored-source, and null-character parse pat...
  • cebd793 refactor: build export-presence guards from a lazy boolean formula (#21320)
  • c2628cf fix: don't resolve new URL() directory references as modules (#21312)
  • 00d8b2f perf: speed up non-CSS-Modules CSS parsing by skipping unused AST work (#21324)
  • f7a3f6d perf: reduce HTML parser memory and CPU with parser-level skip options (#21323)
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jul 6, 2026
Bumps [webpack](https://github.com/webpack/webpack) from 5.108.1 to 5.108.4.
- [Release notes](https://github.com/webpack/webpack/releases)
- [Changelog](https://github.com/webpack/webpack/blob/main/CHANGELOG.md)
- [Commits](webpack/webpack@v5.108.1...v5.108.4)

---
updated-dependencies:
- dependency-name: webpack
  dependency-version: 5.108.4
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
dependabot Bot force-pushed the dependabot/npm_and_yarn/webpack-5.108.4 branch from 02a35a6 to 8f7e691 Compare July 7, 2026 17:29
@n-lark n-lark self-assigned this Jul 16, 2026

@n-lark n-lark left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Dependabot triage ✅

  • Package: webpack 5.108.15.108.4 (patch)
  • Publish window: 5.108.4 published 2026-07-04, ≥12h elapsed ✅
  • Advisories: no open npm advisory or GitHub advisory against 5.108.4 ✅
  • Release notes: patch-only — parser perf, HMR crash fixes, externals/URL handling; output.globalObject default change does not affect our config — no breaking changes affecting our usage ✅
  • CI: green ✅
  • Decision: approving for merge — contained lockfile-only bump, integrity matches registry. Closing the superseded #<webpack-5.108.1 PR> as redundant.

@n-lark
n-lark enabled auto-merge (squash) July 16, 2026 18:23
@codecov

codecov Bot commented Jul 16, 2026

Copy link
Copy Markdown

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 75.13%. Comparing base (ebeec06) to head (b98dd43).

Additional details and impacted files
@@           Coverage Diff           @@
##             main    #7756   +/-   ##
=======================================
  Coverage   75.13%   75.13%           
=======================================
  Files         430      430           
  Lines       22863    22863           
  Branches     6063     6063           
=======================================
  Hits        17177    17177           
  Misses       5686     5686           
Flag Coverage Δ
backend 75.13% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@n-lark
n-lark merged commit 892eef2 into main Jul 16, 2026
29 checks passed
@n-lark
n-lark deleted the dependabot/npm_and_yarn/webpack-5.108.4 branch July 16, 2026 18:45
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant