Bump loader-utils, nuxt and svg-sprite-loader

[dependabot]

Bumps loader-utils to 1.4.2 and updates ancestor dependencies loader-utils, nuxt and svg-sprite-loader. These dependencies need to be updated together.

Updates loader-utils from 1.4.0 to 1.4.2

Release notes

Sourced from loader-utils's releases.

v1.4.2

1.4.2 (2022-11-11)

Bug Fixes

• ReDoS problem (#226) (17cbf8f)

v1.4.1

1.4.1 (2022-11-07)

Bug Fixes

• security problem (#220) (4504e34)

Changelog

Sourced from loader-utils's changelog.

1.4.2 (2022-11-11)

Bug Fixes

• ReDoS problem (#226) (17cbf8f)

1.4.1 (2022-11-07)

Bug Fixes

• security problem (#220) (4504e34)

Commits

• 331ad50 chore(release): 1.4.2
• 17cbf8f fix: ReDoS problem (#226)
• 8f082b3 chore(release): 1.4.1
• 4504e34 fix: security problem (#220)
• See full diff in compare view

Updates nuxt from 2.8.1 to 2.15.8

Release notes

Sourced from nuxt's releases.

v2.15.8

🐛 Bug Fixes

• vue-app
  • #9460 Don't normalise route path if it's valid
• babel
  • #9631 Loose option for babel private-property-in-object

v2.15.7

🔰 Security advisory

Please upgrade to nuxt@^2.15.7 if using [email protected] or [email protected]

🐛 Bug Fixes

• vue-app
  • #9431 Check whether a route exists within the nuxt app before replacing

v2.15.6

🐛 Bug Fixes

• types
  • #9270 Pin to @types/[email protected] (resolves #9268)

v2.15.5

🐛 Bug Fixes

• babel
  • #9232 Loose option for babel class-properties and private-methods (resolves #9224)
• vue-app
  • #9201 Use route.replace instead of router.push to trigger navigation guards (resolves #9111)
• builder
  • #9153 Resolve aliases in build.watch paths (resolves #9045)
• cli
  • #9152 Add warning for css-loader < 4.2 (resolves #9117)

💖 Thanks to

• Thomas Beduneau (@​enwin)
• @​rlam3

v2.15.4

🐛 Bug Fixes

• vue-app
  • #8978 Reload page once after loading chunk error (resolves #3389)
  • #9008 Fallback to global nuxt instance of $root is not available (resolves #8995)

... (truncated)

Commits

• d4b9e4b v2.15.8
• af1d3e9 chore: skip audit due to outdated lockfile
• 1ccd151 fix(vue-app): don't normalise route path if it's valid (#9460)
• af49199 fix(babel): loose option for babel private-property-in-object (#9631)
• 4f370e2 v2.15.7
• 85615a5 fix(vue-app): check whether route exists within nuxt app before replacing (#9...
• 0eae970 chore(release): v2.15.6
• fc5fb58 hotfix: revert feat additions
• cd1fc62 chore(deps): update ufo to 0.7.4
• a80ddee chore(deps): update all non-major dependencies (#9281)
• Additional commits viewable in compare view

Updates svg-sprite-loader from 4.1.6 to 6.0.11

Release notes

Sourced from svg-sprite-loader's releases.

v6.0.0

Drop webpack-versions support which should help with the capability of webpack 5.

v5.2.1

No release notes provided.

v5.1.1

• Add support for webpack5
• Accessibility fix

v5.0.0

Bug Fixes

• pass proper context param to runtime generator (c084ec7), closes #186

BREAKING CHANGES

Possible breaks third-party runtime generators. Earlier context param was containing path to compilation root context, e.g. folder where webpack compilation occurs. This is wrong behaviour, because meaning of this param is a folder where svg image is located. So it was changed in this commit. If your custom runtime generator breaks after this update use loaderContext.rootContext option instead of context.

v4.3.0

Features

• outputPath: add possibility to define output path (2c7eceb)

v4.2.7

Bug Fixes

• move mask & clipPath elements outside symbol (ae70786), closes #325

v4.2.6

Bug Fixes

• drop webpack version detector (7131578), fixes #338, #309

v4.2.5

Bug Fixes

• refers to transpiled code in svg-baker-runtime (65ece05), closes #385

v4.2.4

Bug Fixes

• don't create additional chunk for sprite (80ebfa3), closes #364

v4.2.3

Bug Fixes

... (truncated)

Changelog

Sourced from svg-sprite-loader's changelog.

6.0.11 (2021-10-24)

6.0.10 (2021-10-18)

6.0.9 (2021-06-23)

Bug Fixes

• utils: force get-matched-rule-4 to use nearest webpack installation (#463) (dcaa65a)

6.0.8 (2021-06-21)

Bug Fixes

• utils: fix: some options had no effect with webpack5 (#460) (839f878), closes #446

6.0.7 (2021-05-28)

Bug Fixes

• utils: Account for rule property "generator" (#454) (9fc86f1), closes #428 vuejs/vue-loader#1753

6.0.6 (2021-04-23)

Bug Fixes

• utils: use webpack object version if package can't be required (f4b82c2)

... (truncated)

Commits

• See full diff in compare view

Maintainer changes

This version was pushed to npm by d3x42, a new releaser for svg-sprite-loader since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.