Bump webpack and webpack-cli

[dependabot-preview]

Bumps webpack and webpack-cli. These dependencies needed to be updated together.
Updates webpack from 4.46.0 to 5.38.1

Release notes

Sourced from webpack's releases.

v5.38.1

Performance

• fix missing increment in sorting optimization from last release

v5.38.0

Features

• new URL("data:...", import.meta.url) is now supported
• add module.rules[].scheme as condition to match the request scheme (like data, http, etc.)

Bugfixes

• fix tracking of changes and removals during watching in some edge cases
• fix incorrect renaming of class fields in concatenatenated modules
• fix crash in HMR when removing runtimes from the compilation

Performance

• lazy import some internal modules only when used
• allow unsafe caching of the entrypoint
• improve performance of sorting exports info map
• update to latest webpack-sources for improved source map performance

v5.37.1

Bugfixes

• When using multiple configurations in watch mode and calling Watching.invalidate, dependencies and parallelism of the config array is now respected correctly
• Fix a crash when accessing the stats after the next compilation has started
• fix collecting changes when using Watching.suspend
• fix schema of RuleCondition.not and allow passing a condition directly instead of only an array

Developer Experience

• typings accept a ReadonlyArray of configurations now

Contributing

• fix coverage reporting for child processes
• remove outdated loader from readme

v5.37.0

Features

• add output.trustedTypes

Bugfixes

• fix inclusion of too many chunk in the filename function when using dependOn
• allow errors to be null in fs callbacks

... (truncated)

Commits

• 487665c 5.38.1
• e5c1beb Merge pull request #13464 from webpack/bugfix/increment-in-sort
• 55dacb4 increment index in sorting
• daa0f1e 5.38.0
• a402ea1 Merge pull request #13455 from webpack/perf/webpack-soures
• 1131afe Merge pull request #13450 from webpack/test/hmr-move-between-runtime
• 8da0542 Merge pull request #13449 from webpack/bugfix/hmr-new-runtime
• c802ad0 update to latest webpack-source version for better performance
• 47e0777 Merge pull request #13448 from webpack/perf/little-things
• cf0c816 add test case for moving modules and chunks between runtimes
• Additional commits viewable in compare view

Updates webpack-cli from 3.3.12 to 4.7.2

Release notes

Sourced from webpack-cli's releases.

v4.7.2

4.7.2 (2021-06-07)

Note: Version bump only for package webpack-cli

v4.7.1

4.7.1 (2021-06-07)

Bug Fixes

• not found module after ask installation (#2761) (557ad05)
• prettier config (#2719) (181295f)

v4.7.0

4.7.0 (2021-05-06)

Bug Fixes

• parsing of empty --env flags (#2643) (bc12f1a)
• update usage info (#2594) (9d07d67)

Features

• add create and new alias for init (#2616) (5a9789d)
• add server alias for serve command (#2631) (c9ee947)
• add flag to force start finish log (#2566) (281aad3)
• added --no-devtool to webpack v4(#2603) (7c6f390)
• added support arguments description (#2659) (4dfd166)

v4.6.0

4.6.0 (2021-03-27)

Bug Fixes

• negative options (#2555) (f26ebc1)
• improve error message for help (#2482) (99ae2a3)
• show --node-env in minimum help output (#2411) (f5fc302)

Features

• added WEBPACK_PACKAGE env var to use custom webpack package (#2556) (3d1e485)
• added WEBPACK_CLI_SKIP_IMPORT_LOCAL env var to skip local import (#2546) (e130822)
• allow string value for the --hot option (#2444) (8656e78)
• display used config path when logging level=log (#2431) (f8406e1)

v4.5.0

4.5.0 (2021-02-02)

Notes

... (truncated)

Changelog

Sourced from webpack-cli's changelog.

4.7.2 (2021-06-07)

Note: Version bump only for package webpack-cli (due @webpack-cli/serve)

4.7.1 (2021-06-07)

Bug Fixes

• not found module after ask installation (#2761) (557ad05)
• prettier config (#2719) (181295f)

4.7.0 (2021-05-06)

Bug Fixes

• parsing of empty --env flags (#2643) (bc12f1a)
• update usage info (#2594) (9d07d67)

Features

• add create and new alias for init (#2616) (5a9789d)
• add server alias for serve command (#2631) (c9ee947)
• add flag to force start finish log (#2566) (281aad3)
• added --no-devtool to webpack v4(#2603) (7c6f390)
• added support arguments description (#2659) (4dfd166)

4.6.0 (2021-03-27)

Bug Fixes

• negative options (#2555) (f26ebc1)
• improve error message for help (#2482) (99ae2a3)
• show --node-env in minimum help output (#2411) (f5fc302)

Features

• added WEBPACK_PACKAGE env var to use custom webpack package (#2556) (3d1e485)
• added WEBPACK_CLI_SKIP_IMPORT_LOCAL env var to skip local import (#2546) (e130822)
• allow string value for the --hot option (#2444) (8656e78)
• display used config path when logging level=log (#2431) (f8406e1)

4.5.0 (2021-02-02)

Notes

• now you can use webpack.config.mjs and webpack.config.js with { "type": "module" } in package.json
• you can avoid using the cross-env package:

Before:

... (truncated)

Commits

• 68ef056 chore(release): publish new version
• 2d7ab35 fix: broken serve with new CLI API (#2770)
• 060268b docs: update CHANGELOG
• 2be9b92 chore(release): publish new version
• 598008a chore(deps-dev): bump ts-jest from 27.0.2 to 27.0.3 (#2764)
• 625b4fd chore(deps-dev): bump prettier from 2.3.0 to 2.3.1 (#2765)
• bb7c9d3 feat: new CLI options API for serve (#2754)
• 557ad05 fix: not found module after ask installation (#2761)
• c8fef37 chore(deps-dev): bump @​typescript-eslint/parser
• 368778d fix: add node 16 to CI (#2760)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)