Skip to content
GitLab

Bump terser from 5.1.0 to 5.3.2

Closed Administrator requested to merge dependabot/npm_and_yarn/terser-5.3.2 into main

Created by: dependabot[bot]

Bumps terser from 5.1.0 to 5.3.2.

Changelog

Sourced from terser's changelog.

v5.3.2

  • Prevented spread operations from being expanded when the expanded array/object contains getters, setters, or array holes.
  • Fixed very slow self-recursion in some cases of removing extraneous parentheses from + operations.

v5.3.1

  • An issue with destructuring declarations when pure_getters is enabled has been fixed
  • Fixed a crash when chain expressions need to be shallowly compared
  • Made inlining functions more conservative to make sure a function that contains a reference to itself isn't moved into a place that can create multiple instances of itself.

v5.3.0

  • Fixed a crash when compressing object spreads in some cases
  • Fixed compiletime evaluation of optional chains (caused typeof a?.b to always return "object")
  • domprops has been updated to contain every single possible prop

v5.2.1

  • The parse step now doesn't accept an ecma option, so that all ES code is accepted.
  • Optional dotted chains now accept keywords, just like dotted expressions (foo?.default)

v5.2.0

  • Optional chaining syntax is now supported.
  • Consecutive await expressions don't have unnecessary parens
  • Taking the variable name's length (after mangling) into consideration when deciding to inline
Commits
  • c7ddcbf 5.3.2
  • f50fe21 update changelog
  • 3284d82 avoid spreading out expansions when weird stuff is found in them. Closes #787...
  • e90b4d2 prevent self-recursion when SQUEEZED flag is not set. Closes #821
  • fe4a974 5.3.1
  • 1dbf169 update changelog
  • 290f26a be a little more conservative when inlining a function into another function....
  • f69e2e6 fix shallow_cmp for chain expressions. Closes #816
  • dda86f5 skip pure getters for destructuring with rest (#778)
  • c70f4b1 5.3.0
  • Additional commits viewable in compare view

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)