postcss-loader versions 4.0.2 and 4.0.1 represent incremental updates to a crucial tool for webpack users aiming to integrate PostCSS into their build processes. Both versions share the same core dependencies like cosmiconfig, klona, loader-utils, schema-utils, and semver, ensuring configuration and utility functions remain consistent. However, notable differences appear in the devDependencies and peerDependencies sections, indicating shifts in the development environment and supported PostCSS versions.
The key distinction lies in the postcss dependency, where version 4.0.1 relies on postcss:^7.0.32 and version 4.0.2 upgrades support by declaring postcss":"^8.0.1" as peer dependencies, allowing users to leverage version 8. Also a PostCSS plugin, postcss-dark-theme-class, was added in version 4.0.2. These changes suggest a broadened compatibility and the adoption of newer PostCSS features.
Developers should be aware of these peer dependency adjustments. If your project has already migrated to PostCSS 8, version 4.0.2 ensures seamless integration while version 4.0.1 will not work. If your project depends on PostCSS 7, then version 4.0.1 is suggested to be used. The move might unlock access to performance improvements and new functionalities offered by the updated PostCSS ecosystem. The updated peer dependencies and added plugin offer opportunities to optimize and modernize CSS workflows within webpack projects.
The are not vulnerabilities for the version 4.0.2 of the package postcss-loader
