Fork `razzle-dev-utils` into `@plone/razzle-dev-utils` by wesleybl · Pull Request #7973 · plone/volto

wesleybl · 2026-03-07T16:17:11Z

razzle-dev-utils has dependencies with vulnerabilities. Therefore, we can update those dependencies.

📚 Documentation preview 📚: https://volto--7973.org.readthedocs.build/

docs/source/upgrade-guide/index.md

packages/volto-razzle-dev-utils/README.md

packages/volto-razzle-dev-utils/formatWebpackMessages.js

packages/volto-razzle-dev-utils/news/.gitkeep

davisagli · 2026-03-10T04:35:31Z

pnpm-lock.yaml

      - supports-color
      - utf-8-validate

+  webpack-dev-server@4.11.1(webpack@5.90.1):


Hmm, why did it add this version of webpack-dev-server again when it is already there above?

I don't think I understood what you meant. But I recreated the pnpm-lock.yaml file, which should remove any duplication.

Perhaps it's because it's a peer dependency of @plone/razzle-dev-utils and a dependency of @plone/volto?

There are 3 entries for webpack-dev-server@4.11.1 in pnpm-lock.yaml:

webpack-dev-server@4.11.1(debug@4.3.4)(webpack@5.105.4(esbuild@0.25.12)):

webpack-dev-server@4.11.1(webpack@5.105.4(esbuild@0.25.12)):

webpack-dev-server@4.11.1(webpack@5.105.4):

I think it has something to do with peer dependencies but I don't really understand it. We can come back to this.

davisagli · 2026-03-11T05:33:28Z

FYI, I had to add type: "commonjs" to package.json to avoid an error when webpack tried to read these scripts as ESM modules. 2f3f30a

wesleybl added 5 commits March 7, 2026 12:15

Fork razzle-dev-utils into @plone/razzle-dev-utils

3e40f85

Fix prettier and eslint

ac98bd9

Add release-it with towncrier

3c98af3

Fix links in README.md

295dd08

Add upgrade note

5438e5f

wesleybl requested review from davisagli, sneridagh and stevepiercy March 7, 2026 16:19

Add changes

29802dc

davisagli reviewed Mar 10, 2026

View reviewed changes

wesleybl added 3 commits March 10, 2026 14:59

Merge branch 'main' into razzle-dev-utils

0691ac8

Recreate pnpm-lock.yaml

132c6e6

Code review

f44e265

wesleybl requested a review from davisagli March 11, 2026 00:29

davisagli approved these changes Mar 11, 2026

View reviewed changes

davisagli merged commit eaf3eb4 into main Mar 11, 2026
78 checks passed

davisagli deleted the razzle-dev-utils branch March 11, 2026 00:36

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Fork `razzle-dev-utils` into `@plone/razzle-dev-utils`#7973

Fork `razzle-dev-utils` into `@plone/razzle-dev-utils`#7973
davisagli merged 9 commits intomainfrom
razzle-dev-utils

wesleybl commented Mar 7, 2026 •

edited by github-actions bot

Loading

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

davisagli Mar 10, 2026

Uh oh!

wesleybl Mar 11, 2026

Uh oh!

davisagli Mar 11, 2026

Uh oh!

Uh oh!

davisagli commented Mar 11, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Uh oh!

Conversation

wesleybl commented Mar 7, 2026 • edited by github-actions bot Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

davisagli Mar 10, 2026

Choose a reason for hiding this comment

Uh oh!

wesleybl Mar 11, 2026

Choose a reason for hiding this comment

Uh oh!

davisagli Mar 11, 2026

Choose a reason for hiding this comment

Uh oh!

Uh oh!

davisagli commented Mar 11, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

wesleybl commented Mar 7, 2026 •

edited by github-actions bot

Loading