Skip to content

chore(deps-dev): bump the dependencies group across 1 directory with 2 updates#254

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/dependencies-8213a7222c
Open

chore(deps-dev): bump the dependencies group across 1 directory with 2 updates#254
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/dependencies-8213a7222c

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 15, 2026

Copy link
Copy Markdown
Contributor

Bumps the dependencies group with 2 updates in the / directory: prettier and webpack.

Updates prettier from 3.9.4 to 3.9.5

Release notes

Sourced from prettier's releases.

3.9.5

🔗 Changelog

Changelog

Sourced from prettier's changelog.

3.9.5

diff

Markdown: Cap ordered list mark at 999,999,999 (#19351 by @​tats-u)

CommonMark parsers only support ordered list item numbers up to 999,999,999.

With this change, Prettier now caps the ordered list item number at 999,999,999 to ensure that the output is correctly parsed as an ordered list by CommonMark parsers. Numbers larger than 999,999,999 are not parsed as list item numbers and are left unchanged in the output:

<!-- Input -->
999999998. text
999999998. text
999999998. text
999999998. text
1234567890123456789012) text
<!-- Prettier 3.9.4 -->
999999998. text
999999999. text
1000000000. text
1000000001. text
1234567890123456789012) text
<!-- Prettier 3.9.5 -->
999999998. text
999999999. text
999999999. text
999999999. text
1234567890123456789012) text

Markdown: Avoid corrupting empty link with title (#19487 by @​andersk)

Do not remove <> from an inline link or image with an empty URL and a title, as this removal would change its interpretation.

<!-- Input -->
[link](https://github.com/prettier/prettier/blob/main/<> "title")
<!-- Prettier 3.9.4 -->
[link](https://github.com/prettier/prettier/blob/main/ "title")
<!-- Prettier 3.9.5 -->
</tr></table>

... (truncated)

Commits

Updates webpack from 5.108.3 to 5.108.4

Release notes

Sourced from webpack's releases.

v5.108.4

Patch Changes

Changelog

Sourced from webpack's changelog.

5.108.4

Patch Changes

Commits
  • bb9ccfd chore(release): new release (#21319)
  • 7639066 fix: invalidate provided-exports cache with lazy barrel (#21326)
  • ae28c54 perf: reduce CPU and memory overhead of the HTML and CSS pipelines (#21332)
  • e6fb547 perf: re-encode the HTML AST as struct-of-arrays behind a path-based visitor ...
  • 5ce1c22 fix(html): resolve asset URLs against <base href> (#21329)
  • 0e43c4a test(html): cover generateError, ignored-source, and null-character parse pat...
  • cebd793 refactor: build export-presence guards from a lazy boolean formula (#21320)
  • c2628cf fix: don't resolve new URL() directory references as modules (#21312)
  • 00d8b2f perf: speed up non-CSS-Modules CSS parsing by skipping unused AST work (#21324)
  • f7a3f6d perf: reduce HTML parser memory and CPU with parser-level skip options (#21323)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…2 updates

Bumps the dependencies group with 2 updates in the / directory: [prettier](https://github.com/prettier/prettier) and [webpack](https://github.com/webpack/webpack).


Updates `prettier` from 3.9.4 to 3.9.5
- [Release notes](https://github.com/prettier/prettier/releases)
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md)
- [Commits](prettier/prettier@3.9.4...3.9.5)

Updates `webpack` from 5.108.3 to 5.108.4
- [Release notes](https://github.com/webpack/webpack/releases)
- [Changelog](https://github.com/webpack/webpack/blob/main/CHANGELOG.md)
- [Commits](webpack/webpack@v5.108.3...v5.108.4)

---
updated-dependencies:
- dependency-name: prettier
  dependency-version: 3.9.5
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: webpack
  dependency-version: 5.108.4
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Jul 15, 2026
@changeset-bot

changeset-bot Bot commented Jul 15, 2026

Copy link
Copy Markdown

⚠️ No Changeset found

Latest commit: 64494a6

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@webpack
webpack Bot enabled auto-merge (squash) July 15, 2026 10:42
@codspeed-hq

codspeed-hq Bot commented Jul 15, 2026

Copy link
Copy Markdown

Merging this PR will degrade performance by 14.87%

⚠️ Different runtime environments detected

Some benchmarks with significant performance changes were compared across different runtime environments,
which may affect the accuracy of the results.

Open the report in CodSpeed to investigate

⚡ 10 improved benchmarks
❌ 10 regressed benchmarks
✅ 192 untouched benchmarks

Warning

Please fix the performance issues or acknowledge them on CodSpeed.

Performance Changes

Mode Benchmark BASE HEAD Efficiency
Memory replace-source memory: source() concatenates result 3.7 KB 45.4 KB -91.85%
Memory size-only-source memory: new SizeOnlySource() 90.8 KB 514.9 KB -82.37%
Memory compat-source memory: delegated source() + map() through wrapper 9.4 KB 30.4 KB -69.21%
Memory source-map-source memory: new SourceMapSource(simple) 784 B 1,128 B -30.5%
Memory source-map-source memory: sourceAndMap({ columns: true }) (combined inner) 2 MB 2.7 MB -25.4%
Memory clear-cache memory: unique tasks (clearCache default) 3.8 MB 5 MB -24.52%
Memory compat-source memory: new CompatSource(sourceLike) 784 B 976 B -19.67%
Simulation size-only-source: new SizeOnlySource() 160.5 µs 189.4 µs -15.26%
Memory source-map-source memory: map({ columns: true }) 784 B 912 B -14.04%
Memory original-source memory: new OriginalSource() 1.2 KB 1.4 KB -13.33%
Memory replace-source memory: construct + 100 insertions 9.9 KB 2.4 KB ×4.2
Memory compat-source memory: CompatSource.from() short-circuits on Source 648 B 392 B +65.31%
Memory clear-cache memory: shared modules (visited set — single allocation) 776 B 520 B +49.23%
Memory raw-source memory: new RawSource(string) 1,104 B 784 B +40.82%
Memory concat-source memory: source() concatenates children 252 KB 196 KB +28.56%
Memory cached-source memory: construct from cachedData (no warm-up) 648 B 520 B +24.62%
Memory prefix-source memory: source() allocates rewritten string 1.4 KB 1.2 KB +24.32%
Memory raw-source memory: new RawSource(buffer) 1,104 B 912 B +21.05%
Memory source-map-source memory: new SourceMapSource(with inner map) 912 B 784 B +16.33%
Memory original-source memory: map({ columns: false }) line-only mappings 117.2 KB 104.5 KB +12.13%

Tip

Investigate this regression by commenting @codspeedbot fix this regression on this PR, or directly use the CodSpeed MCP with your agent.


Comparing dependabot/npm_and_yarn/dependencies-8213a7222c (64494a6) with main (1aa76ca)

Open in CodSpeed

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants