Skip to content

build(deps): bump postcss, @ckeditor/ckeditor5-dev-utils and postcss-loader in /wysiwiki/src/main/javascript#153

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/wysiwiki/src/main/javascript/multi-e3a0828c37
Open

build(deps): bump postcss, @ckeditor/ckeditor5-dev-utils and postcss-loader in /wysiwiki/src/main/javascript#153
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/wysiwiki/src/main/javascript/multi-e3a0828c37

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 4, 2026

Copy link
Copy Markdown
Contributor

Bumps postcss to 8.5.13 and updates ancestor dependencies postcss, @ckeditor/ckeditor5-dev-utils and postcss-loader. These dependencies need to be updated together.

Updates postcss from 7.0.39 to 8.5.13

Release notes

Sourced from postcss's releases.

8.5.13

  • Fixed postcss-scss commend regression.

8.5.12

  • Fixed reading any file via user-generated CSS.
  • Added opts.unsafeMap to disable checks.

8.5.11

  • Fixed nested brackets parsing performance (by @​offset).

8.5.10

  • Fixed XSS via unescaped </style> in non-bundler cases (by @​TharVid).

8.5.9

  • Speed up source map encoding paring in case of the error.

8.5.8

  • Fixed Processor#version.

8.5.7

  • Improved source map annotation cleaning performance (by CodeAnt AI).

8.5.6

  • Fixed ContainerWithChildren type discriminating (by @​Goodwine).

8.5.5

  • Fixed package.jsonexports compatibility with some tools (by @​JounQin).

8.5.4

8.5.3

8.5.2

8.5.1

8.5 “Duke Alloces”

PostCSS 8.5 brought API to work better with non-CSS sources like HTML, Vue.js/Svelte sources or CSS-in-JS.

@​romainmenke during his work on Stylelint added Input#document in additional to Input#css.

</tr></table>

... (truncated)

Changelog

Sourced from postcss's changelog.

8.5.13

  • Fixed postcss-scss commend regression.

8.5.12

  • Fixed reading any file via user-generated CSS.
  • Added opts.unsafeMap to disable checks.

8.5.11

  • Fixed nested brackets parsing performance (by @​offset).

8.5.10

  • Fixed XSS via unescaped </style> in non-bundler cases (by @​TharVid).

8.5.9

  • Speed up source map encoding paring in case of the error.

8.5.8

  • Fixed Processor#version.

8.5.7

  • Improved source map annotation cleaning performance (by CodeAnt AI).

8.5.6

  • Fixed ContainerWithChildren type discriminating (by @​Goodwine).

8.5.5

  • Fixed package.jsonexports compatibility with some tools (by @​JounQin).

8.5.4

8.5.3

8.5.2

... (truncated)

Commits

Updates @ckeditor/ckeditor5-dev-utils from 25.4.4 to 55.5.0

Release notes

Sourced from @​ckeditor/ckeditor5-dev-utils's releases.

v55.5.0

Features

  • changelog: Added a generated --help screen to ckeditor5-dev-changelog-create-entry and switched its option parsing to cac so the CLI help stays in sync with the supported options.

Bug fixes

  • translations: Detect valid direct Locale#t calls such as editor.locale.t(), editor.t(), locale.t(), and this.t() during translation validation and synchronization. Closes ckeditor/ckeditor5#19267.

Other changes

  • docs, typedoc-plugins: Replaced the typeDocExperimentalTagFixer() plugin (introduced in v55.4.0) with TypeDoc's built-in cascadedModifierTags option to prevent the @experimental modifier tag from cascading to class members that do not explicitly declare it. Closes ckeditor/ckeditor5#20039.

    Previously, a custom plugin was used to remove the cascaded @experimental modifier after TypeDoc's conversion. TypeDoc's cascadedModifierTags option natively controls which modifier tags are cascaded, so removing @experimental from that list is a simpler and more reliable solution.

Released packages

Check out the Versioning policy guide for more information.

Releases containing new features:

Other releases:

v55.4.0

Features

  • tests: The manual test server now automatically finds a free port at startup. When the preferred port (default 8125) is already in use, the server tries subsequent ports until an available one is found. The --port option can be used to set the starting port.

  • typedoc-plugins: Added the typeDocExperimentalTagFixer TypeDoc plugin that prevents the @experimental modifier tag from being cascaded to class members that do not explicitly document experimental behavior.

    Previously, when a class had @experimental, TypeDoc propagated the modifier to all its children (constructors, methods, properties, and synthetic observable events), causing them to appear experimental in the output even when they were not. The new plugin removes the @experimental modifier from any member that lacks an explicit @xperimental annotation in its JSDoc summary.

... (truncated)

Changelog

Sourced from @​ckeditor/ckeditor5-dev-utils's changelog.

55.5.0 (April 9, 2026)

Features

  • changelog: Added a generated --help screen to ckeditor5-dev-changelog-create-entry and switched its option parsing to cac so the CLI help stays in sync with the supported options.

Bug fixes

  • translations: Detect valid direct Locale#t calls such as editor.locale.t(), editor.t(), locale.t(), and this.t() during translation validation and synchronization. Closes ckeditor/ckeditor5#19267.

Other changes

  • docs, typedoc-plugins: Replaced the typeDocExperimentalTagFixer() plugin (introduced in v55.4.0) with TypeDoc's built-in cascadedModifierTags option to prevent the @experimental modifier tag from cascading to class members that do not explicitly declare it. Closes ckeditor/ckeditor5#20039.

    Previously, a custom plugin was used to remove the cascaded @experimental modifier after TypeDoc's conversion. TypeDoc's cascadedModifierTags option natively controls which modifier tags are cascaded, so removing @experimental from that list is a simpler and more reliable solution.

Released packages

Check out the Versioning policy guide for more information.

Releases containing new features:

Other releases:

55.4.0 (April 3, 2026)

Features

  • tests: The manual test server now automatically finds a free port at startup. When the preferred port (default 8125) is already in use, the server tries subsequent ports until an available one is found. The --port option can be used to set the starting port.

... (truncated)

Commits
  • bbf3cde Release: v55.5.0. [skip ci]
  • a5fe716 Release: v55.4.0. [skip ci]
  • 4ba3f53 Release: v55.3.1. [skip ci]
  • e562ba6 Release: v55.3.0. [skip ci]
  • 55e7db3 Release: v55.2.0. [skip ci]
  • 735dccc Release: v55.1.1. [skip ci]
  • 374df07 Release: v55.1.0. [skip ci]
  • 3edb150 Release: v55.0.0. [skip ci]
  • 5efaa92 Ensure @import-ed CSS is processed by Lightning CSS in dev-utils.
  • dafe99b lightningCssOptions should not override hardcoded properties.
  • Additional commits viewable in compare view

Updates postcss-loader from 3.0.0 to 8.2.1

Release notes

Sourced from postcss-loader's releases.

v8.2.1

8.2.1 (2026-02-15)

Bug Fixes

  • update peer dependency for @​rspack/core v2 (#717) (a3ed7e2)

v8.2.0

8.2.0 (2025-09-01)

Features

  • update jiti from v1 to v2 (9c74974)

v8.1.1

8.1.1 (2024-02-28)

Bug Fixes

  • respect default when loading postcss esm configs (52d8050)

v8.1.0

8.1.0 (2024-01-30)

Features

  • add @rspack/core as an optional peer dependency (#679) (512e4c3)

v8.0.0

8.0.0 (2024-01-16)

⚠ BREAKING CHANGES

  • minimum supported Node.js version is 18.12.0 (#677) (8dd0315)

v7.3.4

7.3.4 (2023-12-27)

Bug Fixes

  • do not crash if pkg.(d|devD)ependencies unset (#667) (8ef0c7e)

v7.3.3

7.3.3 (2023-06-10)

... (truncated)

Changelog

Sourced from postcss-loader's changelog.

8.2.1 (2026-02-15)

Bug Fixes

  • update peer dependency for @​rspack/core v2 (#717) (a3ed7e2)

8.2.0 (2025-09-01)

Features

  • update jiti from v1 to v2 (9c74974)

8.1.1 (2024-02-28)

Bug Fixes

  • respect default when loading postcss esm configs (52d8050)

8.1.0 (2024-01-30)

Features

  • add @rspack/core as an optional peer dependency (#679) (512e4c3)

8.0.0 (2024-01-16)

⚠ BREAKING CHANGES

  • minimum supported Node.js version is 18.12.0 (#677) (8dd0315)

7.3.4 (2023-12-27)

Bug Fixes

  • do not crash if pkg.(d|devD)ependencies unset (#667) (8ef0c7e)

7.3.3 (2023-06-10)

Bug Fixes

  • perf: avoid using klona for postcss options (#658) (e754c3f)
  • bug with loading configurations after updating cosmiconfig to version 8.2 (684d265)

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by evilebottnawi, a new releaser for postcss-loader since your current version.

Install script changes

This version adds prepare script that runs during installation. Review the package contents before updating.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
build(deps): bump postcss, @ckeditor/ckeditor5-dev-utils and postcss-…
3983d4b 
…loader

Bumps [postcss](https://github.com/postcss/postcss) to 8.5.13 and updates ancestor dependencies [postcss](https://github.com/postcss/postcss), [@ckeditor/ckeditor5-dev-utils](https://github.com/ckeditor/ckeditor5-dev/tree/HEAD/packages/ckeditor5-dev-utils) and [postcss-loader](https://github.com/webpack/postcss-loader). These dependencies need to be updated together.


Updates `postcss` from 7.0.39 to 8.5.13
- [Release notes](https://github.com/postcss/postcss/releases)
- [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md)
- [Commits](postcss/postcss@7.0.39...8.5.13)

Updates `@ckeditor/ckeditor5-dev-utils` from 25.4.4 to 55.5.0
- [Release notes](https://github.com/ckeditor/ckeditor5-dev/releases)
- [Changelog](https://github.com/ckeditor/ckeditor5-dev/blob/master/CHANGELOG.md)
- [Commits](https://github.com/ckeditor/ckeditor5-dev/commits/v55.5.0/packages/ckeditor5-dev-utils)

Updates `postcss-loader` from 3.0.0 to 8.2.1
- [Release notes](https://github.com/webpack/postcss-loader/releases)
- [Changelog](https://github.com/webpack/postcss-loader/blob/main/CHANGELOG.md)
- [Commits](webpack/postcss-loader@v3.0.0...v8.2.1)

---
updated-dependencies:
- dependency-name: postcss
  dependency-version: 8.5.13
  dependency-type: indirect
- dependency-name: "@ckeditor/ckeditor5-dev-utils"
  dependency-version: 55.5.0
  dependency-type: direct:production
- dependency-name: postcss-loader
  dependency-version: 8.2.1
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels May 4, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants