build(deps-dev): bump babel-loader from 8.2.5 to 10.1.1 in /ui#8458
build(deps-dev): bump babel-loader from 8.2.5 to 10.1.1 in /ui#8458dependabot[bot] wants to merge 1 commit into
Conversation
Bumps [babel-loader](https://github.com/babel/babel-loader) from 8.2.5 to 10.1.1. - [Release notes](https://github.com/babel/babel-loader/releases) - [Changelog](https://github.com/babel/babel-loader/blob/main/CHANGELOG.md) - [Commits](babel/babel-loader@v8.2.5...v10.1.1) --- updated-dependencies: - dependency-name: babel-loader dependency-version: 10.1.1 dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
taskcluster-bot
left a comment
There was a problem hiding this comment.
Babel Loader Major Version Bump Review
This PR updates babel-loader from version 8.2.5 to 10.1.1, representing a major version bump with significant changes.
Breaking Changes Identified
- Node.js version requirement: Now requires
^18.20.0 || ^20.10.0 || >=22.0.0(was previously more permissive) - Webpack version requirement: Now requires
>= 5.61.0(was previously>=2) - Cache hashing changes: The loader now uses
output.hashFunctionas the cache hasher instead of the previous default - Dependency simplification: Removed several internal dependencies (
loader-utils,find-cache-dir,make-dir,schema-utils) which could affect custom configurations - Peer dependency changes: Webpack is now marked as an optional peer dependency
New Features
- Added babel-loader logger support
- Enhanced cache support with external dependencies
- Support for Babel 8 (in addition to Babel 7)
- Better cache stability for filenames
Codebase Impact Analysis
The codebase uses babel-loader in ui/webpack.config.js in a standard configuration:
loader: "babel-loader",While the basic usage pattern remains unchanged, this major version bump introduces several breaking changes that could affect the build process:
- Runtime requirements: Need to verify Node.js and Webpack versions meet new minimums
- Cache behavior: The change to use
output.hashFunctionfor caching could affect build performance and cache invalidation - Internal dependencies: Removal of
loader-utilsand other dependencies might affect any custom babel-loader configurations
CI Failure Analysis
The CI is currently failing (69/75 tests passed), and given the major version bump with breaking changes, these failures are likely related to this dependency update. The failures span multiple areas (browser tests, deployment, rules) which suggests a fundamental build or configuration issue.
Recommendation
This requires human review because:
- It's a major version bump with multiple breaking changes
- CI is currently failing, likely due to these changes
- Need to verify Node.js and Webpack version compatibility
- Cache behavior changes could affect build performance
- The scope of changes warrants manual verification
Before merging, ensure:
- Node.js version meets the new requirements
- Webpack version is >= 5.61.0
- Test the build process thoroughly
- Verify cache behavior is acceptable
This is an automated review generated by AI dependency analysis.
CI is failing (6 check(s): ui-browser-test, Redirect rules - taskcluster-web, Dependabot auto-merge, Header rules - taskcluster-web, Pages changed - taskcluster-web, netlify/taskcluster-web/deploy-preview). Assessment did not identify code changes needed — failures may be pre-existing. This review is submitted as a comment, not an approval.

Bumps babel-loader from 8.2.5 to 10.1.1.
Release notes
Sourced from babel-loader's releases.
... (truncated)
Commits
da6021010.1.1a0a2617Revert #1055 ("usemodule.findPackageJSONAPI") (#1066)de09ee110.1.0e34c360Pin Node.js on CI (#1064)3c1e180Bump minimatch from 3.1.2 to 3.1.5 (#1063)e0d4addBump glob from 10.4.5 to 10.5.0 (#1060)77e2a66Bump webpack from 5.101.0 to 5.104.1 (#1062)faa5dbbfix: mark webpack as optional peer dependency (#1061)146dad2Bump js-yaml from 4.1.0 to 4.1.1 (#1059)2479ed2Enable type checking and support Babel 8 (#1056)You can trigger a rebase of this PR by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)