Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: webpack/sass-loader
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: v16.0.7
Choose a base ref
...
head repository: webpack/sass-loader
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: v16.0.8
Choose a head ref
  • 14 commits
  • 15 files changed
  • 3 contributors

Commits on Feb 14, 2026

  1. chore(deps): bump qs and express (#1295)

    Bumps [qs](https://github.com/ljharb/qs) and [express](https://github.com/expressjs/express). These dependencies needed to be updated together.
    
    Updates `qs` from 6.13.0 to 6.14.2
    - [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md)
    - [Commits](ljharb/qs@v6.13.0...v6.14.2)
    
    Updates `express` from 4.21.2 to 4.22.1
    - [Release notes](https://github.com/expressjs/express/releases)
    - [Changelog](https://github.com/expressjs/express/blob/v4.22.1/History.md)
    - [Commits](expressjs/express@4.21.2...v4.22.1)
    
    ---
    updated-dependencies:
    - dependency-name: qs
      dependency-version: 6.14.2
      dependency-type: indirect
    - dependency-name: express
      dependency-version: 4.22.1
      dependency-type: indirect
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Feb 14, 2026
    Configuration menu
    Copy the full SHA
    f2e898e View commit details
    Browse the repository at this point in the history
  2. chore(deps-dev): bump webpack from 5.101.0 to 5.105.0 (#1292)

    Bumps [webpack](https://github.com/webpack/webpack) from 5.101.0 to 5.105.0.
    - [Release notes](https://github.com/webpack/webpack/releases)
    - [Changelog](https://github.com/webpack/webpack/blob/main/CHANGELOG.md)
    - [Commits](webpack/webpack@v5.101.0...v5.105.0)
    
    ---
    updated-dependencies:
    - dependency-name: webpack
      dependency-version: 5.105.0
      dependency-type: direct:development
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Feb 14, 2026
    Configuration menu
    Copy the full SHA
    c003a37 View commit details
    Browse the repository at this point in the history
  3. chore(deps-dev): bump node-forge from 1.3.1 to 1.3.3 (#1293)

    Bumps [node-forge](https://github.com/digitalbazaar/forge) from 1.3.1 to 1.3.3.
    - [Changelog](https://github.com/digitalbazaar/forge/blob/main/CHANGELOG.md)
    - [Commits](digitalbazaar/forge@v1.3.1...v1.3.3)
    
    ---
    updated-dependencies:
    - dependency-name: node-forge
      dependency-version: 1.3.3
      dependency-type: indirect
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Feb 14, 2026
    Configuration menu
    Copy the full SHA
    342954a View commit details
    Browse the repository at this point in the history
  4. chore(deps): bump lodash from 4.17.21 to 4.17.23 (#1290)

    Bumps [lodash](https://github.com/lodash/lodash) from 4.17.21 to 4.17.23.
    - [Release notes](https://github.com/lodash/lodash/releases)
    - [Commits](lodash/lodash@4.17.21...4.17.23)
    
    ---
    updated-dependencies:
    - dependency-name: lodash
      dependency-version: 4.17.23
      dependency-type: indirect
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Feb 14, 2026
    Configuration menu
    Copy the full SHA
    8236bc8 View commit details
    Browse the repository at this point in the history
  5. chore(deps-dev): bump js-yaml from 3.14.1 to 3.14.2 (#1297)

    Bumps [js-yaml](https://github.com/nodeca/js-yaml) from 3.14.1 to 3.14.2.
    - [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md)
    - [Commits](nodeca/js-yaml@3.14.1...3.14.2)
    
    ---
    updated-dependencies:
    - dependency-name: js-yaml
      dependency-version: 3.14.2
      dependency-type: indirect
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Feb 14, 2026
    Configuration menu
    Copy the full SHA
    fe6fe07 View commit details
    Browse the repository at this point in the history

Commits on Mar 5, 2026

  1. chore(deps): bump immutable from 5.0.3 to 5.1.5 (#1298)

    Bumps [immutable](https://github.com/immutable-js/immutable-js) from 5.0.3 to 5.1.5.
    - [Release notes](https://github.com/immutable-js/immutable-js/releases)
    - [Changelog](https://github.com/immutable-js/immutable-js/blob/main/CHANGELOG.md)
    - [Commits](immutable-js/immutable-js@v5.0.3...v5.1.5)
    
    ---
    updated-dependencies:
    - dependency-name: immutable
      dependency-version: 5.1.5
      dependency-type: indirect
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Mar 5, 2026
    Configuration menu
    Copy the full SHA
    a488645 View commit details
    Browse the repository at this point in the history

Commits on Mar 26, 2026

  1. chore(deps): bump picomatch (#1300)

    Bumps  and [picomatch](https://github.com/micromatch/picomatch). These dependencies needed to be updated together.
    
    Updates `picomatch` from 2.3.1 to 2.3.2
    - [Release notes](https://github.com/micromatch/picomatch/releases)
    - [Changelog](https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md)
    - [Commits](micromatch/picomatch@2.3.1...2.3.2)
    
    Updates `picomatch` from 4.0.3 to 4.0.4
    - [Release notes](https://github.com/micromatch/picomatch/releases)
    - [Changelog](https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md)
    - [Commits](micromatch/picomatch@2.3.1...2.3.2)
    
    ---
    updated-dependencies:
    - dependency-name: picomatch
      dependency-version: 2.3.2
      dependency-type: indirect
    - dependency-name: picomatch
      dependency-version: 4.0.4
      dependency-type: indirect
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Mar 26, 2026
    Configuration menu
    Copy the full SHA
    9e6a5e5 View commit details
    Browse the repository at this point in the history
  2. chore(deps-dev): bump flatted from 3.3.2 to 3.4.2 (#1301)

    Bumps [flatted](https://github.com/WebReflection/flatted) from 3.3.2 to 3.4.2.
    - [Commits](WebReflection/flatted@v3.3.2...v3.4.2)
    
    ---
    updated-dependencies:
    - dependency-name: flatted
      dependency-version: 3.4.2
      dependency-type: indirect
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Mar 26, 2026
    Configuration menu
    Copy the full SHA
    7dd2827 View commit details
    Browse the repository at this point in the history
  3. chore(deps): bump serialize-javascript and terser-webpack-plugin (#1299)

    Removes [serialize-javascript](https://github.com/yahoo/serialize-javascript). It's no longer used after updating ancestor dependency [terser-webpack-plugin](https://github.com/webpack/terser-webpack-plugin). These dependencies need to be updated together.
    
    
    Removes `serialize-javascript`
    
    Updates `terser-webpack-plugin` from 5.3.16 to 5.3.17
    - [Release notes](https://github.com/webpack/terser-webpack-plugin/releases)
    - [Changelog](https://github.com/webpack/terser-webpack-plugin/blob/main/CHANGELOG.md)
    - [Commits](webpack/minimizer-webpack-plugin@v5.3.16...v5.3.17)
    
    ---
    updated-dependencies:
    - dependency-name: serialize-javascript
      dependency-version: 
      dependency-type: indirect
    - dependency-name: terser-webpack-plugin
      dependency-version: 5.3.17
      dependency-type: indirect
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Mar 26, 2026
    Configuration menu
    Copy the full SHA
    ff8005b View commit details
    Browse the repository at this point in the history

Commits on Mar 30, 2026

  1. chore(deps-dev): bump node-forge from 1.3.3 to 1.4.0 (#1304)

    Bumps [node-forge](https://github.com/digitalbazaar/forge) from 1.3.3 to 1.4.0.
    - [Changelog](https://github.com/digitalbazaar/forge/blob/main/CHANGELOG.md)
    - [Commits](digitalbazaar/forge@v1.3.3...v1.4.0)
    
    ---
    updated-dependencies:
    - dependency-name: node-forge
      dependency-version: 1.4.0
      dependency-type: indirect
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Mar 30, 2026
    Configuration menu
    Copy the full SHA
    e3df97d View commit details
    Browse the repository at this point in the history

Commits on Apr 10, 2026

  1. chore(deps): bump lodash from 4.17.23 to 4.18.1 (#1305)

    Bumps [lodash](https://github.com/lodash/lodash) from 4.17.23 to 4.18.1.
    - [Release notes](https://github.com/lodash/lodash/releases)
    - [Commits](lodash/lodash@4.17.23...4.18.1)
    
    ---
    updated-dependencies:
    - dependency-name: lodash
      dependency-version: 4.18.1
      dependency-type: indirect
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Apr 10, 2026
    Configuration menu
    Copy the full SHA
    128abc0 View commit details
    Browse the repository at this point in the history

Commits on Apr 15, 2026

  1. chore(deps-dev): bump follow-redirects from 1.15.9 to 1.16.0 (#1306)

    Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.15.9 to 1.16.0.
    - [Release notes](https://github.com/follow-redirects/follow-redirects/releases)
    - [Commits](follow-redirects/follow-redirects@v1.15.9...v1.16.0)
    
    ---
    updated-dependencies:
    - dependency-name: follow-redirects
      dependency-version: 1.16.0
      dependency-type: indirect
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    dependabot[bot] authored Apr 15, 2026
    Configuration menu
    Copy the full SHA
    cda2078 View commit details
    Browse the repository at this point in the history

Commits on May 8, 2026

  1. Configuration menu
    Copy the full SHA
    90e349d View commit details
    Browse the repository at this point in the history
  2. Configuration menu
    Copy the full SHA
    4f00ed5 View commit details
    Browse the repository at this point in the history
Loading