chore(deps): update dependency rollup to v4.22.4

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
rollup (source)	4.21.3 -> 4.22.4

---

Release Notes

rollup/rollup (rollup)

v4.22.4

Compare Source

2024-09-21

Bug Fixes

• Fix a vulnerability in generated code that affects IIFE, UMD and CJS bundles when run in a browser context (#​5671)

Pull Requests

• #​5670: refactor: Use object.prototype to check for reserved properties (@​YuHyeonWook)
• #​5671: Fix DOM Clobbering CVE (@​lukastaegert)

v4.22.3

Compare Source

2024-09-21

Bug Fixes

• Ensure that mutations in modules without side effects are observed while properly handling transitive dependencies (#​5669)

Pull Requests

• #​5669: Ensure impure dependencies of pure modules are added (@​lukastaegert)

v4.22.2

Compare Source

2024-09-20

Bug Fixes

• Revert fix for side effect free modules until other issues are investigated (#​5667)

Pull Requests

• #​5667: Partially revert #​5658 and re-apply #​5644 (@​lukastaegert)

v4.22.1

Compare Source

2024-09-20

Bug Fixes

• Revert #​5644 "stable chunk hashes" while issues are being investigated

Pull Requests

• #​5663: chore(deps): update dependency inquirer to v11 (@​renovate[bot], @​lukastaegert)
• #​5664: chore(deps): lock file maintenance minor/patch updates (@​renovate[bot])
• #​5665: fix: type in CI file (@​YuHyeonWook)
• #​5666: chore(deps): lock file maintenance minor/patch updates (@​renovate[bot])

v4.22.0

Compare Source

2024-09-19

Features

• Add additional known global values to avoid access side effects (#​5651)

Bug Fixes

• Ensure deterministic chunk hash generation despite async renderChunk hook (#​5644)
• Improve side effect detection when using "smallest" treeshaking preset when imports are optimized away (#​5658)

Pull Requests

• #​5644: fix: apply final hashes deterministically with stable placeholders set (@​mattkubej, @​lukastaegert)
• #​5646: chore(deps): update dependency @​mermaid-js/mermaid-cli to v11 (@​renovate[bot])
• #​5647: chore(deps): update dependency concurrently to v9 (@​renovate[bot])
• #​5648: chore(deps): lock file maintenance minor/patch updates (@​renovate[bot])
• #​5651: feat: add AggregateError, FinalizationRegistry, WeakRef to knownGlobals (@​re-taro)
• #​5653: Fix example selection in REPL (@​lukastaegert)
• #​5657: chore(deps): update dependency vite to v5.4.6 [security] (@​renovate[bot])
• #​5658: Detect variable reassignments in modules without side effects (@​lukastaegert)

---

Configuration

📅 Schedule: Branch creation - "before 4am on Monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/rollup@4.22.4	None	+1	2.3 MB	eventualbuddha, lukastaegert, rich_harris, ...2 more

🚮 Removed packages: npm/rollup@4.21.3

View full report↗︎

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud