Skip to content

chore(deps-dev): bump webpack from 5.108.3 to 5.108.4 in the dependencies group#252

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/dependencies-5dfca7d1e0
Open

chore(deps-dev): bump webpack from 5.108.3 to 5.108.4 in the dependencies group#252
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/dependencies-5dfca7d1e0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 8, 2026

Copy link
Copy Markdown
Contributor

Bumps the dependencies group with 1 update: webpack.

Updates webpack from 5.108.3 to 5.108.4

Release notes

Sourced from webpack's releases.

v5.108.4

Patch Changes

Changelog

Sourced from webpack's changelog.

5.108.4

Patch Changes

Commits
  • bb9ccfd chore(release): new release (#21319)
  • 7639066 fix: invalidate provided-exports cache with lazy barrel (#21326)
  • ae28c54 perf: reduce CPU and memory overhead of the HTML and CSS pipelines (#21332)
  • e6fb547 perf: re-encode the HTML AST as struct-of-arrays behind a path-based visitor ...
  • 5ce1c22 fix(html): resolve asset URLs against <base href> (#21329)
  • 0e43c4a test(html): cover generateError, ignored-source, and null-character parse pat...
  • cebd793 refactor: build export-presence guards from a lazy boolean formula (#21320)
  • c2628cf fix: don't resolve new URL() directory references as modules (#21312)
  • 00d8b2f perf: speed up non-CSS-Modules CSS parsing by skipping unused AST work (#21324)
  • f7a3f6d perf: reduce HTML parser memory and CPU with parser-level skip options (#21323)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the dependencies group with 1 update: [webpack](https://github.com/webpack/webpack).


Updates `webpack` from 5.108.3 to 5.108.4
- [Release notes](https://github.com/webpack/webpack/releases)
- [Changelog](https://github.com/webpack/webpack/blob/main/CHANGELOG.md)
- [Commits](webpack/webpack@v5.108.3...v5.108.4)

---
updated-dependencies:
- dependency-name: webpack
  dependency-version: 5.108.4
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Jul 8, 2026
@changeset-bot

changeset-bot Bot commented Jul 8, 2026

Copy link
Copy Markdown

⚠️ No Changeset found

Latest commit: 0c16429

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@webpack webpack Bot enabled auto-merge (squash) July 8, 2026 10:42
@codspeed-hq

codspeed-hq Bot commented Jul 8, 2026

Copy link
Copy Markdown

Merging this PR will degrade performance by 21.38%

⚠️ Different runtime environments detected

Some benchmarks with significant performance changes were compared across different runtime environments,
which may affect the accuracy of the results.

Open the report in CodSpeed to investigate

⚡ 7 improved benchmarks
❌ 28 regressed benchmarks
✅ 177 untouched benchmarks

Warning

Please fix the performance issues or acknowledge them on CodSpeed.

Performance Changes

Mode Benchmark BASE HEAD Efficiency
Memory raw-source memory: new RawSource(string) 1 KB 14 KB -92.72%
Memory replace-source memory: construct + 100 insertions 2.8 KB 34.5 KB -91.8%
Memory compat-source memory: CompatSource.from() short-circuits on Source 392 B 808 B -51.49%
Memory cached-source memory: construct from cachedData (no warm-up) 264 B 520 B -49.23%
Simulation cached-source: source() (cold) 207.1 µs 280.6 µs -26.22%
Memory cached-source memory: cold sourceAndMap() populates all caches 147.3 KB 199 KB -25.97%
Memory raw-source memory: new RawSource(buffer) 784 B 1,040 B -24.62%
Memory concat-source memory: source() concatenates children 196.1 KB 260 KB -24.57%
Memory prefix-source memory: source() allocates rewritten string 1.2 KB 1.5 KB -21.28%
Simulation size-only-source: new SizeOnlySource() 160.6 µs 195.8 µs -17.99%
Memory source-map-source memory: sourceAndMap({ columns: true }) (combined inner) 2.2 MB 2.7 MB -17.02%
Memory clear-cache memory: shared modules (visited set — single allocation) 648 B 776 B -16.49%
Simulation source-map-source: new (buffer map) 206.6 µs 245.5 µs -15.84%
Simulation source-map-source: new (string map) 206.8 µs 245.6 µs -15.81%
Memory clear-cache memory: unique tasks (clearCache default) 4 MB 4.7 MB -15.79%
Simulation source-map-source: new (buffer value) 207.4 µs 246.1 µs -15.73%
Simulation source-map-source: new (object map) 207.1 µs 245.8 µs -15.72%
Simulation source-map-source: buffers() (from buffer) 222.3 µs 262.1 µs -15.19%
Simulation replace-source: new ReplaceSource() 178.1 µs 209.9 µs -15.15%
Simulation size-only-source: size() 200.3 µs 235.7 µs -15.02%
... ... ... ... ... ...

ℹ️ Only the first 20 benchmarks are displayed. Go to the app to view all benchmarks.

Tip

Investigate this regression by commenting @codspeedbot fix this regression on this PR, or directly use the CodSpeed MCP with your agent.


Comparing dependabot/npm_and_yarn/dependencies-5dfca7d1e0 (0c16429) with main (210e0a4)

Open in CodSpeed

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants