Bump loader-utils and styled-jsx in /ui

[dependabot]

Bumps loader-utils to 2.0.4 and updates ancestor dependency styled-jsx. These dependencies need to be updated together.

Updates loader-utils from 1.2.3 to 2.0.4

Release notes

Sourced from loader-utils's releases.

v2.0.4

2.0.4 (2022-11-11)

Bug Fixes

• ReDoS problem (#225) (ac09944)

v2.0.3

2.0.3 (2022-10-20)

Bug Fixes

• security: prototype pollution exploit (#217) (a93cf6f)

v2.0.2

2.0.2 (2021-11-04)

Bug Fixes

• base64 generation and unicode characters (#197) (8c2d24e)

v2.0.1

2.0.1 (2021-10-29)

Bug Fixes

• md4 support on Node.js v17 (#193) (1069f61)

v2.0.0

2.0.0 (2020-03-17)

⚠ BREAKING CHANGES

• minimum required Node.js version is 8.9.0 (#166) (c937e8c)
• the getOptions method returns empty object on empty query (#167) (b595cfb)
• Use md4 by default

v1.4.2

1.4.2 (2022-11-11)

Bug Fixes

• ReDoS problem (#226) (17cbf8f)

... (truncated)

Changelog

Sourced from loader-utils's changelog.

2.0.4 (2022-11-11)

Bug Fixes

• ReDoS problem (#225) (ac09944)

2.0.3 (2022-10-20)

Bug Fixes

• security: prototype pollution exploit (#217) (a93cf6f)

2.0.2 (2021-11-04)

Bug Fixes

• base64 generation and unicode characters (#197) (8c2d24e)

2.0.1 (2021-10-29)

Bug Fixes

• md4 support on Node.js v17 (#193) (1069f61)

2.0.0 (2020-03-17)

⚠ BREAKING CHANGES

• minimum required Node.js version is 8.9.0 (#166) (c937e8c)
• the getOptions method returns empty object on empty query (#167) (b595cfb)
• Use md4 by default

1.4.0 (2020-02-19)

Features

• the resourceQuery is passed to the interpolateName method (#163) (cd0e428)

1.3.0 (2020-02-19)

... (truncated)

Commits

• 6688b50 chore(release): 2.0.4
• ac09944 fix: ReDoS problem (#225)
• 7162619 chore(release): 2.0.3
• a93cf6f fix(security): prototype polution exploit (#217)
• 90c7c4b chore(release): 2.0.2
• 8c2d24e fix: base64 generation and unicode characters (#197)
• 5fb5562 chore(release): 2.0.1
• 1069f61 fix: md4 support on Node.js v17 (#193)
• d9f4e23 chore(release): 2.0.0
• 865dc03 refactor: switch to md4 by default (#168)
• Additional commits viewable in compare view

Updates styled-jsx from 4.0.1 to 5.1.2

Release notes

Sourced from styled-jsx's releases.

v5.1.2

5.1.2 (2023-01-25)

Bug Fixes

• including global typing (#826) (5870e59)

v5.1.1

5.1.1 (2022-12-15)

Bug Fixes

• typo in macro typing (#822) (d0b2f75)

v5.1.0

5.1.0 (2022-10-17)

Features

• styled-jsx as client-only for rsc (#816) (ea0432b)

v5.0.7

5.0.7 (2022-09-09)

Bug Fixes

• add displayName for context (#813) (e824581)

v5.0.6

5.0.6 (2022-09-05)

Bug Fixes

• load babel macro dynamically (#812) (067fcd7)

v5.0.5

5.0.5 (2022-09-02)

Improvements

• use typeof window to detect browser (#810) (2a31e73)

Misc

... (truncated)

Changelog

Sourced from styled-jsx's changelog.

Changelog

[5.0.0]

Features

• Introduce contextual styles (#744)
• Opt-in react 18 insertion effect hook when available (#753)
• Fallback to module level registry in browser (#768)

Improvements

• Make JSXStyle return a noop if the registry context is not provided (#749)
• Fix typings of nonce property
• Pre-compile dependencies to reduce install size/time (#770)

BREAKING CHANGES

APIs

• styled-jsx/server import path is deprecated
• flush and flushToHTML from styled-jsx/server APIs are deprecated
• New component <StyledRegistry> is introduced
• New APIs useStyleRegistry and createStyleRegistry are introduced

Usage

If you're only using styled-jsx purely client side, nothing will effect you. If you're using styled-jsx inside Next.js without customization, Next.js will automatically handle the changes for you.

If you have your own customization with styled-jsx in Next.js, for example you have a custom _document: By default, doing this will let Next.js collect styles and pass them down.

class Document extends React.Component {
  static async getInitialProps(ctx) {
    return await ctx.defaultGetInitialProps(ctx)
  }
}

Or for instance you're passing nonce property in getInitialProps of _document, this will let you configure it:

class Document extends React.Component {
  static async getInitialProps(ctx) {
-    return await ctx.defaultGetInitialProps(ctx)
+    return await ctx.defaultGetInitialProps(ctx, { nonce })
  }
}
</tr></table> 

... (truncated)

Commits

• 5870e59 fix: including global typing (#826)
• d0b2f75 fix: typo in macro typing (#822)
• bb3cde8 chore: Update loader-utils to fix security vulnerability (#820)
• ea0432b feat: styled-jsx as client-only for rsc (#816)
• e824581 fix: add displayName for context (#813)
• 067fcd7 fix: load babel macro dynamically (#812)
• 2a31e73 perf: use typeof window to detect browser (#810)
• 66bd5f0 build: use bunchee for bundling (#802)
• 41443ab test: upgrade ava (#807)
• 3c2a77b chore: update codeowners (#808)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by vercel-release-bot, a new releaser for styled-jsx since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[dependabot]

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot rebase.

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.