Sourced from rollup's changelog.
rollup changelog
4.22.5
2024-09-27
Bug Fixes
- Allow parsing of certain unicode characters again (#5674)
Pull Requests
- #5674: Fix panic with unicode characters (
@sapphi-red
,@lukastaegert
)- #5675: chore(deps): update dependency rollup to v4.22.4 [security] (
@renovate
[bot])- #5680: chore(deps): update dependency
@rollup/plugin-commonjs
to v28 (@renovate
[bot],@lukastaegert
)- #5681: chore(deps): update dependency
@rollup/plugin-replace
to v6 (@renovate
[bot])- #5682: chore(deps): update dependency
@rollup/plugin-typescript
to v12 (@renovate
[bot])- #5684: chore(deps): lock file maintenance minor/patch updates (
@renovate
[bot])4.22.4
2024-09-21
Bug Fixes
- Fix a vulnerability in generated code that affects IIFE, UMD and CJS bundles when run in a browser context (#5671)
Pull Requests
- #5670: refactor: Use object.prototype to check for reserved properties (
@YuHyeonWook
)- #5671: Fix DOM Clobbering CVE (
@lukastaegert
)4.22.3
2024-09-21
Bug Fixes
- Ensure that mutations in modules without side effects are observed while properly handling transitive dependencies (#5669)
Pull Requests
- #5669: Ensure impure dependencies of pure modules are added (
@lukastaegert
)4.22.2
2024-09-20
Bug Fixes
... (truncated)
c9bd03d
2.79.248aef33
fix: resolve DOM Clobbering CVE-2024-43788 (backport to v2) (#5677)69ff418
2.79.104dce1b
Update changelog159137e
fix: typo docs and contributors link in CONTRIBUTING.md (#4639)e1392b3
Update type definition of resolveId (#4641)7836357
Improve performance of chunk naming collision check (#4643)71d20c9
Reduce permissions for repl-artefacts.yml workflow (#4630)8193ea5
Adapt workflow to use Node 14 sub-version to work with branch
protection8477f8f
2.79.0