Update dependency rollup to v4

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
rollup (source)	^3.26.3 -> ^4.0.0

---

⚠ Dependency Lookup Warnings ⚠

Warnings were logged while processing this repo. Please check the Dependency Dashboard for more information.

---

Release Notes

rollup/rollup (rollup)

v4.0.2

Compare Source

2023-10-06

Bug Fixes

• Fix annotation detection logic to not fail when a non-ASCII character precedes a double underscore (#​5178)

Pull Requests

• #​5178: Handle special characters before double underscores (@​lukastaegert)

v4.0.1

Compare Source

2023-10-06

Bug Fixes

• Do not panic on trailing semicolons after class methods (#​5173)
• Add artifact for arm64 linux musl target (#​5176)

Pull Requests

• #​5172: chore(deps): lock file maintenance minor/patch updates (@​renovate[bot])
• #​5173: fix: ignores empty statements in class body that is returned by SWC parser (@​TrickyPi)
• #​5176: Fix linux arm musl build (@​lukastaegert)

v4.0.0

Compare Source

2023-10-05

BREAKING CHANGES

General Changes

• The minimal required Node version is now 18.0.0 (#​5142)
• The browser build now relies on a WASM artifact that needs to be provided as well (#​5073)
• The NodeJS build now relies on an optional native binary; for unsupported platforms, users can use the @rollup/wasm-node package that has the same interface as Rollup but relies on WASM artifacts (#​5073)
• The "with" syntax for import attributes is not yet supported, awaiting support in SWC (#​5073)
• The INVALID_IMPORT_ASSERTION error code has been replaced with INVALID_IMPORT_ATTRIBUTE (#​5073)
• Rollup will now warn for @__PURE__ and @__NO_SIDE_EFFECTS__ annotations in invalid locations (#​5165)
• If an entry module starts with a shebang comment #!..., this comment will be prepended to the output for es and cjs formats (#​5163)
• File hashes will now use url-safe base64 encoded hashes (#​5155)
• The maximum hash length has been reduced to 22 characters (#​5155)
• The RollupWarning type has been removed in favor of the RollupLog type (#​5147)

Changes to Rollup Options

• Acorn plugins are no longer supported, the acornInjectPlugins option has been removed (#​5073)
• The acorn option has been removed (#​5073)
• output.externalImportAssertions has been deprecated in favor of output.externalImportAttributes (#​5073)
• inlineDynamicImports, manualChunks and preserveModules have been removed on input option level: Please use the corresponding output options of the same names (#​5143)
• Removed output options (#​5143):
  • output.experimentalDeepDynamicChunkOptimization: This option is no longer needed as Rollup now always runs the full chunking algorithm
  • output.dynamicImportFunction: Use the renderDynamicImport plugin hook instead
  • output.namespaceToStringTag: Use output.generatedCode.symbols instead
  • output.preferConst: Use output.generatedCode.constBindings instead

Plugin API Changes

• For this.resolve, the default of the skipSelf option is now true (#​5142)
• this.parse now only supports the allowReturnOutsideFunction option for now (#​5073)
• Import assertions now use the new import attribute AST structure (#​5073)
• "assertions" have been replaced with "attributes" in various places of the plugin interface (#​5073)
• If the import of a module id is handled by the load hook of a plugin, rollup.watch no longer watches the actual file if the module id corresponds to a real path; if this is intended, then the plugin is responsible for calling this.addWatchFile for any dependency files (#​5150)
• The normalized input options provided by buildStart and other hooks no longer contain an onwarn handler; plugins should use onLog instead (#​5147)
• this.moduleIds has been removed from the plugin context: Use this.getModuleIds() instead (#​5143)
• The hasModuleSideEffects flag has been removed from the ModuleInfo returned by thi s.getModuleInfo(): Use moduleSideEffects on the ModuleInfo instead (#​5143)

Features

• Improve parsing speed by switching to a native SWC-based parser (#​5073)
• Rollup will now warn for @__PURE__ and @__NO_SIDE_EFFECTS__ annotations in invalid locations (#​5165)
• The parser is now exposed as a separate export parseAst (#​5169)

Bug Fixes

• Rollup no longer tries to watch virtual files if their name corresponds to an actual file name; instead, plugins handle watching via this.addWatchFile() (#​5150)

Pull Requests

• #​5073: [v4.0] Switch parser to SWC and introduce native/WASM code (@​lukastaegert)
• #​5142: [v4.0] Set the default of skipSelf to true (@​TrickyPi)
• #​5143: [v4.0] Remove deprecated features (@​lukastaegert)
• #​5144: [v4.0] Imporve the performance of generating ast and rollup ast nodes (@​TrickyPi)
• #​5147: [v4.0] Remove onwarn from normalized input options (@​lukastaegert)
• #​5150: [v4.0] feat: Do not watch files anymore if their content is returned by the load hook (@​TrickyPi)
• #​5154: [v4.0] Add parse option to allow return outside function (@​lukastaegert)
• #​5155: [v4.0] feat: implement hashing content in Rust (@​TrickyPi)
• #​5157: [v4.0] Handle empty exports (@​lukastaegert)
• #​5160: chore(deps): lock file maintenance minor/patch updates (@​renovate[bot])
• #​5163: [v4.0] feat: preserve shebang in entry module for CJS and ESM outputs (@​TrickyPi)
• #​5164: [v4.0] fix: also strip BOM from code strings in JS (@​TrickyPi)
• #​5165: [v4.0] warn for invalid annotations (@​lukastaegert)
• #​5168: [v4.0] Ensure we support new import attribute "with" syntax (@​lukastaegert)
• #​5169: [v4.0] Expose parser (@​lukastaegert)

v3.29.4

Compare Source

2023-09-28

Bug Fixes

• Fix static analysis when an exported function uses callbacks (#​5158)

Pull Requests

• #​5158: Deoptimize all parameters when losing track of a function (@​lukastaegert)

v3.29.3

Compare Source

2023-09-24

Bug Fixes

• Fix a bug where code was wrongly tree-shaken after mutating function parameters (#​5153)

Pull Requests

• #​5145: docs: improve the docs repl appearance in the light mode (@​TrickyPi)
• #​5148: chore(deps): update dependency @​vue/eslint-config-typescript to v12 (@​renovate[bot])
• #​5149: chore(deps): lock file maintenance minor/patch updates (@​renovate[bot])
• #​5153: Fully deoptimize first level path when deoptimizing nested parameter paths (@​lukastaegert)

v3.29.2

Compare Source

2023-09-15

Bug Fixes

• Export TreeshakingPreset type (#​5131)

Pull Requests

• #​5131: fix: exports TreeshakingPreset (@​moltar)
• #​5134: docs: steps to enable symlinks on windows (@​thebanjomatic)
• #​5137: chore(deps): lock file maintenance minor/patch updates (@​renovate[bot])

v3.29.1

Compare Source

2023-09-10

Bug Fixes

• Fix time measurement of plugin hooks in watch mode (#​5114)
• Ensure accessing document.currentScript in import.meta.url returns correct results (#​5118)

Pull Requests

• #​5114: fix(perf): avoid superfluous timer wrappings in watch mode (@​ZhengLiu2825)
• #​5118: fix: access document.currentScript at the top level (@​TrickyPi)
• #​5125: chore(deps): update actions/checkout action to v4 (@​renovate[bot])
• #​5126: chore(deps): lock file maintenance minor/patch updates (@​renovate[bot])
• #​5129: re-enbale repl-artefacts workflow for rollup-swc branch (@​TrickyPi)

---

Configuration

📅 Schedule: Branch creation - "before 4am" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[renovate]

⚠ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: cpg-language-typescript/src/main/nodejs/package-lock.json

npm ERR! code ERESOLVE
npm ERR! ERESOLVE could not resolve
npm ERR! 
npm ERR! While resolving: @rollup/[email protected]
npm ERR! Found: [email protected]
npm ERR! node_modules/rollup
npm ERR!   dev rollup@"^4.0.0" from the root project
npm ERR! 
npm ERR! Could not resolve dependency:
npm ERR! peerOptional rollup@"^2.68.0||^3.0.0" from @rollup/[email protected]
npm ERR! node_modules/@rollup/plugin-commonjs
npm ERR!   dev @rollup/plugin-commonjs@"^25.0.3" from the root project
npm ERR! 
npm ERR! Conflicting peer dependency: [email protected]
npm ERR! node_modules/rollup
npm ERR!   peerOptional rollup@"^2.68.0||^3.0.0" from @rollup/[email protected]
npm ERR!   node_modules/@rollup/plugin-commonjs
npm ERR!     dev @rollup/plugin-commonjs@"^25.0.3" from the root project
npm ERR! 
npm ERR! Fix the upstream dependency conflict, or retry
npm ERR! this command with --force or --legacy-peer-deps
npm ERR! to accept an incorrect (and potentially broken) dependency resolution.
npm ERR! 
npm ERR! 
npm ERR! For a full report see:
npm ERR! /tmp/worker/220910/8ad302/cache/others/npm/_logs/2023-10-06T00_30_47_029Z-eresolve-report.txt

npm ERR! A complete log of this run can be found in: /tmp/worker/220910/8ad302/cache/others/npm/_logs/2023-10-06T00_30_47_029Z-debug-0.log

[CLAassistant]

All committers have signed the CLA.

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠ Warning: custom changes will be lost.

[sonarqubecloud]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
No Duplication information