Skip to content

chore(deps): bump @rolldown/pluginutils from 1.0.0-rc.4 to 1.0.0-rc.5 in the build-tooling group#47

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/build-tooling-9c151670d4
Open

chore(deps): bump @rolldown/pluginutils from 1.0.0-rc.4 to 1.0.0-rc.5 in the build-tooling group#47
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/build-tooling-9c151670d4

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 23, 2026
edited
Loading

Bumps the build-tooling group with 1 update: @rolldown/pluginutils.

Updates @rolldown/pluginutils from 1.0.0-rc.4 to 1.0.0-rc.5

Release notes

Sourced from @​rolldown/pluginutils's releases.

v1.0.0-rc.5

[1.0.0-rc.5] - 2026-02-18

💡 Smarter entriesAware for Code Splitting

New entriesAware and entriesAwareMergeThreshold options for codeSplitting.groups[] enable entry-reachability-based chunk splitting with automatic small chunk merging.

  • entriesAware: true splits matched modules by entry reachability — modules reached by the same set of entries are grouped together, providing the most precise loading behavior with less over-fetching
  • Chunks now get more readable names reflecting their entry associations (e.g. vendor-entry-a-entry-b.js) instead of opaque hashes
  • entriesAwareMergeThreshold sets a byte-size threshold to merge tiny subgroups into the closest sibling with the fewest extra entries, reducing micro-chunk fragmentation while preserving precision
  • Recommended to use together with maxSize: merge tiny chunks first to reduce request overhead, then cap large chunks to control payload size
codeSplitting: {
  groups: [{
    name: 'vendor',
    test: /node_modules/,
    entriesAware: true,
    entriesAwareMergeThreshold: 28000, // bytes
  }]
}

🚀 Features

🐛 Bug Fixes

  • improve circular dependency detection in chunk optimizer (#8371) by @​IWANABETHATGUY
  • align minify.compress: true and minify.mangle: true with minify: true (#8367) by @​sapphi-red
  • rolldown_plugin_esm_external_require: apply conversion to UMD and IIFE outputs (#8359) by @​sapphi-red
  • cjs: bailout treeshaking on cjs modules that have multiple re-exports (#8348) by @​hyf0
  • handle member expression and this expression in JSX element name rewriting (#8323) by @​IWANABETHATGUY
  • pad encode_hash_with_base output to fixed length to prevent slice panics (#8320) by @​shulaoda
  • xxhash_with_base skips hashing when input is exactly 16 bytes (#8319) by @​shulaoda
  • complete ImportKind::try_from with missing variants and correct url-import to url-token (#8310) by @​shulaoda

... (truncated)

Changelog

Sourced from @​rolldown/pluginutils's changelog.

[1.0.0-rc.5] - 2026-02-18

🚀 Features

🐛 Bug Fixes

  • improve circular dependency detection in chunk optimizer (#8371) by @​IWANABETHATGUY
  • align minify.compress: true and minify.mangle: true with minify: true (#8367) by @​sapphi-red
  • rolldown_plugin_esm_external_require: apply conversion to UMD and IIFE outputs (#8359) by @​sapphi-red
  • cjs: bailout treeshaking on cjs modules that have multiple re-exports (#8348) by @​hyf0
  • handle member expression and this expression in JSX element name rewriting (#8323) by @​IWANABETHATGUY
  • pad encode_hash_with_base output to fixed length to prevent slice panics (#8320) by @​shulaoda
  • xxhash_with_base skips hashing when input is exactly 16 bytes (#8319) by @​shulaoda
  • complete ImportKind::try_from with missing variants and correct url-import to url-token (#8310) by @​shulaoda
  • mark Node.js builtin modules as side-effect-free when resolved via external config (#8304) by @​IWANABETHATGUY
  • mcs: maxSize should split chunks correctly based on sizes (#8289) by @​hyf0

🚜 Refactor

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Pull requests that update a dependency pnpm pnpm package updates labels Feb 23, 2026
@cloudflare-workers-and-pages
Copy link

cloudflare-workers-and-pages bot commented Feb 23, 2026
edited
Loading

Deploying my-website-dev with  Cloudflare Pages  Cloudflare Pages

Latest commit: ea749c5
Status: ✅  Deploy successful!
Preview URL: https://a54a1b5d.my-website-du5.pages.dev
Branch Preview URL: https://dependabot-npm-and-yarn-buil-lq45.my-website-du5.pages.dev

View logs

@cloudflare-workers-and-pages
Copy link

cloudflare-workers-and-pages bot commented Feb 23, 2026
edited
Loading

Deploying my-website with  Cloudflare Pages  Cloudflare Pages

Latest commit: ea749c5
Status: ✅  Deploy successful!
Preview URL: https://40e00ab3.personal-website-f0d.pages.dev
Branch Preview URL: https://dependabot-npm-and-yarn-buil-jcp3.personal-website-f0d.pages.dev

View logs

@System-End System-End enabled auto-merge (rebase) March 1, 2026 17:14
@System-End
Copy link
Owner

System-End commented Mar 1, 2026

@dependabot rebase

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/build-tooling-9c151670d4 branch from 15c165c to d512177 Compare March 1, 2026 17:15
auto-merge was automatically disabled March 1, 2026 17:16

Base branch requires signed commits

@dependabot
chore(deps): bump @rolldown/pluginutils in the build-tooling group
ea749c5 
Bumps the build-tooling group with 1 update: [@rolldown/pluginutils](https://github.com/rolldown/rolldown/tree/HEAD/packages/pluginutils).


Updates `@rolldown/pluginutils` from 1.0.0-rc.4 to 1.0.0-rc.5
- [Release notes](https://github.com/rolldown/rolldown/releases)
- [Changelog](https://github.com/rolldown/rolldown/blob/main/CHANGELOG.md)
- [Commits](https://github.com/rolldown/rolldown/commits/v1.0.0-rc.5/packages/pluginutils)

---
updated-dependencies:
- dependency-name: "@rolldown/pluginutils"
  dependency-version: 1.0.0-rc.5
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: build-tooling
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/build-tooling-9c151670d4 branch from d512177 to ea749c5 Compare March 1, 2026 17:22
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency pnpm pnpm package updates

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@System-End