Update dependency react-scripts to v5

[appcues-wss]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
react-scripts	4.0.1 -> 5.0.0

By merging this PR, the below vulnerabilities will be automatically resolved:

Severity	CVSS Score	CVE
Critical	9.8	CVE-2021-3757
Critical	9.8	CVE-2021-42740
Critical	9.8	CVE-2021-44906
Critical	9.8	CVE-2022-37601
Critical	9.1	CVE-2024-48949
High	7.5	CVE-2021-23424
High	7.5	CVE-2021-3777
High	7.5	CVE-2021-3807
High	7.5	CVE-2022-24999
High	7.5	CVE-2022-37599
High	7.5	CVE-2022-37603
High	7.5	CVE-2022-38900
High	7.1	CVE-2022-46175
Medium	6.5	CVE-2023-46234
Medium	5.6	CVE-2021-23436
Medium	5.3	CVE-2021-23343
Medium	5.3	CVE-2021-23364
Medium	5.3	CVE-2023-26115

By merging this PR, the below vulnerabilities will be automatically resolved:

Severity	CVSS Score	CVE
Critical	9.8	CVE-2021-3918
Critical	9.8	CVE-2022-0691
Critical	9.8	CVE-2022-29078
Critical	9.8	CVE-2022-37601
Critical	9.8	CVE-2022-37601
Critical	9.8	CVE-2023-42282
Critical	9.8	WS-2021-0153
Critical	9.1	CVE-2022-0686
High	8.2	CVE-2021-32803
High	8.2	CVE-2021-32804
High	8.2	CVE-2021-37701
High	8.2	CVE-2021-37712
High	8.2	CVE-2021-37713
High	8.1	CVE-2022-1650
High	7.8	CVE-2021-43138
High	7.7	CVE-2021-23386
High	7.5	CVE-2021-3807
High	7.5	CVE-2022-24771
High	7.5	CVE-2022-24772
High	7.5	CVE-2022-24999
High	7.5	CVE-2022-37603
High	7.5	CVE-2022-37603
High	7.5	CVE-2024-37890
High	7.5	CVE-2024-37890
High	7.4	CVE-2024-29180
High	7.3	CVE-2023-26159
High	7.1	CVE-2022-46175
Medium	6.6	WS-2022-0008
Medium	6.5	CVE-2022-0155
Medium	6.5	CVE-2023-26136
Medium	6.5	CVE-2023-26136
Medium	6.1	CVE-2022-0122
Medium	6.1	CVE-2024-47068
Medium	5.3	CVE-2020-28469
Medium	5.3	CVE-2021-23364
Medium	5.3	CVE-2021-23368
Medium	5.3	CVE-2021-23368
Medium	5.3	CVE-2021-23382
Medium	5.3	CVE-2021-23382
Medium	5.3	CVE-2021-23382
Medium	5.3	CVE-2021-32640
Medium	5.3	CVE-2021-32640
Medium	5.3	CVE-2021-3664
Medium	5.3	CVE-2022-0512
Medium	5.3	CVE-2022-0639
Medium	5.3	CVE-2022-24773
Medium	5.3	CVE-2022-25858
Medium	5.3	CVE-2022-25858
Medium	4.0	CVE-2021-23566
Low	2.6	CVE-2022-0536
Low	0.0	CVE-2024-27088

---

Release Notes

facebook/create-react-app (react-scripts)

v5.0.0

Compare Source

Inside any created project that has not been ejected, run:

npm install --save --save-exact [email protected]

or

yarn add --exact [email protected]

🐛 Bug Fix

• react-scripts
  • #​12245 fix: webpack noise printed only if error or warning (@​Andrew47)
• create-react-app
  • #​11915 Warn when not using the latest version of create-react-app but do not exit (@​iansu)
• react-dev-utils
  • #​11640 Ensure posix compliant joins for urls in middleware (@​psiservices-justin-sullard)

💅 Enhancement

• cra-template-typescript, cra-template, react-scripts
  • #​12220 Update templates to use React 18 createRoot (@​kyletsang)
• cra-template-typescript, cra-template
  • #​12223 chore: upgrade rtl version to support react 18 (@​MatanBobi)
• eslint-config-react-app
  • #​11622 updated deprecated rules (@​wisammechano)

📝 Documentation

• #​11594 Fix a typo in deployment.md (@​fishmandev)
• #​11805 docs: Changelog 5.0.0 (@​jafin)
• #​11757 prevent both npm and yarn commands from being copied (@​mubarakn)

🏠 Internal

• #​11985 Ignore docs when publishing (@​iansu)

Committers: 11

• Andrew Burnie (@​Andrew47)
• Clément Vannicatte (@​shortcuts)
• Dmitriy Fishman (@​fishmandev)
• Dmitry Vinnik (@​dmitryvinn)
• Ian Sutherland (@​iansu)
• Jason Finch (@​jafin)
• Kyle Tsang (@​kyletsang)
• Matan Borenkraout (@​MatanBobi)
• Wisam Naji (@​wisammechano)
• @​mubarakn
• @​psiservices-justin-sullard

5.0.0 (2021-12-14)

Create React App 5.0 is a major release with several new features and the latest version of all major dependencies.

Thanks to all the maintainers and contributors who worked so hard on this release! 🙌

v4.0.3

Compare Source

4.0.3 (2021-02-22)

v4.0.3 is a maintenance release that includes minor bug fixes and dependency updates.

🐛 Bug Fix

• react-scripts
  • #​10590 Upgrade eslint-webpack-plugin to fix opt-out flag (@​mrmckeb)

🏠 Internal

• react-dev-utils
  • #​10412 update immer to 8.0.1 to address vulnerability (@​wclem4)
• create-react-app
  • #​10384 tests: update test case to match the description (@​jamesgeorge007)

Committers: 4

• Brody McKee (@​mrmckeb)
• Dion Woolley (@​Awarua-)
• James George (@​jamesgeorge007)
• Walker Clem (@​wclem4)

Migrating from 4.0.2 to 4.0.3

Inside any created project that has not been ejected, run:

npm install --save --save-exact [email protected]

or

yarn add --exact [email protected]

v4.0.2

Compare Source

4.0.2 (2021-02-03)

v4.0.2 is a maintenance release that includes minor bug fixes and documentation updates.

🚀 New Feature

• react-scripts
  • #​8986 Add support for new BUILD_PATH advanced configuration variable (@​ajhyndman)

🐛 Bug Fix

• react-scripts
  • #​10170 Add opt-out for eslint-webpack-plugin (@​mrmckeb)
  • #​9872 fix(react-scripts): add missing peer dependency react and update react-refresh-webpack-plugin (@​merceyz)
  • #​9964 Add TypeScript 4.x as peerDependency to react-scripts (@​sheepsteak)

💅 Enhancement

• react-scripts
  • #​9977 Move ESLint cache file into node_modules (@​ehsankhfr)
  • #​9569 Improve vendor chunk names in development (@​jrr)

📝 Documentation

• #​9473 docs: add missing override options for Jest config (@​tobiasbueschel)
• #​10314 Update using-the-public-folder.md (@​Avivhdr)
• #​10214 Remove references to Node 8 (@​ianschmitz)

🏠 Internal

• react-scripts
  • #​10027 appTsConfig immutability handling by immer (@​josezone)
• create-react-app
  • #​10217 Fix CI tests (@​ianschmitz)
• react-dev-utils, react-error-overlay, react-scripts
  • #​10091 Recovered some integration tests (@​maxsbelt)

🔨 Underlying Tools

• react-scripts
  • #​10216 Revert "Update postcss packages" (@​ianschmitz)
  • #​9988 Upgrade sass-loader (@​ehsankhfr)
  • #​10003 Update postcss packages (@​raix)
  • #​10213 Upgrade @​svgr/webpack to fix build error (@​jabranr)
• react-dev-utils
  • #​10198 remove chalk from formatWebpackMessages (@​jasonwilliams)
• cra-template-typescript
  • #​10141 chore: bump typescript version (@​trainto)
• cra-template-typescript, cra-template
  • #​10143 chore: bump web-vital dependency version (@​sahilpurav)

Committers: 15

• Andrew Hyndman (@​ajhyndman)
• Aviv Hadar (@​Avivhdr)
• Brody McKee (@​mrmckeb)
• Chris Shepherd (@​sheepsteak)
• EhsanKhaki (@​ehsankhfr)
• Hakjoon Sim (@​trainto)
• Ian Schmitz (@​ianschmitz)
• Jabran Rafique⚡️ (@​jabranr)
• Jason Williams (@​jasonwilliams)
• John Ruble (@​jrr)
• Kristoffer K. (@​merceyz)
• Morten N.O. Nørgaard Henriksen (@​raix)
• Sahil Purav (@​sahilpurav)
• Sergey Makarov (@​maxsbelt)
• Tobias Büschel (@​tobiasbueschel)
• mad-jose (@​josezone)

---

• If you want to rebase/retry this PR, check this box

[appcues-wss]

⚠ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: package-lock.json

npm error code ERESOLVE
npm error ERESOLVE could not resolve
npm error
npm error While resolving: @reach/[email protected]
npm error Found: [email protected]
npm error node_modules/react
npm error   react@"^17.0.1" from the root project
npm error   peer react@">=16.3.0" from @emotion/[email protected]
npm error   node_modules/@emotion/core
npm error     peer @emotion/core@"^10.0.27" from @emotion/[email protected]
npm error     node_modules/@emotion/styled
npm error       @emotion/styled@"^10.0.27" from @storybook/[email protected]
npm error       node_modules/@storybook/theming
npm error         @storybook/theming@"6.2.8" from @storybook/[email protected]
npm error         node_modules/@storybook/addon-actions
npm error         10 more (@storybook/addon-backgrounds, ...)
npm error     peer @emotion/core@"^10.0.28" from @emotion/[email protected]
npm error     node_modules/@emotion/styled-base
npm error       @emotion/styled-base@"^10.0.27" from @emotion/[email protected]
npm error       node_modules/@emotion/styled
npm error         @emotion/styled@"^10.0.27" from @storybook/[email protected]
npm error         node_modules/@storybook/theming
npm error     3 more (@storybook/theming, @storybook/ui, emotion-theming)
npm error   47 more (@emotion/styled, @emotion/styled-base, ...)
npm error
npm error Could not resolve dependency:
npm error peer react@"15.x || 16.x || 16.4.0-alpha.0911da3" from @reach/[email protected]
npm error node_modules/@reach/router
npm error   @reach/router@"^1.3.4" from the root project
npm error   @reach/router@"^1.3.4" from @storybook/[email protected]
npm error   node_modules/@storybook/api
npm error     @storybook/api@"6.2.8" from @storybook/[email protected]
npm error     node_modules/@storybook/addon-actions
npm error       dev @storybook/addon-actions@"^6.1.11" from the root project
npm error       1 more (@storybook/addon-essentials)
npm error     9 more (@storybook/addon-backgrounds, ...)
npm error   1 more (@storybook/router)
npm error
npm error Conflicting peer dependency: [email protected]
npm error node_modules/react
npm error   peer react@"15.x || 16.x || 16.4.0-alpha.0911da3" from @reach/[email protected]
npm error   node_modules/@reach/router
npm error     @reach/router@"^1.3.4" from the root project
npm error     @reach/router@"^1.3.4" from @storybook/[email protected]
npm error     node_modules/@storybook/api
npm error       @storybook/api@"6.2.8" from @storybook/[email protected]
npm error       node_modules/@storybook/addon-actions
npm error         dev @storybook/addon-actions@"^6.1.11" from the root project
npm error         1 more (@storybook/addon-essentials)
npm error       9 more (@storybook/addon-backgrounds, ...)
npm error     1 more (@storybook/router)
npm error
npm error Fix the upstream dependency conflict, or retry
npm error this command with --force or --legacy-peer-deps
npm error to accept an incorrect (and potentially broken) dependency resolution.
npm error
npm error
npm error For a full report see:
npm error /tmp/renovate/cache/others/npm/_logs/2024-08-04T17_46_58_426Z-eresolve-report.txt
npm error A complete log of this run can be found in: /tmp/renovate/cache/others/npm/_logs/2024-08-04T17_46_58_426Z-debug-0.log