Bump react-hot-loader from 4.3.1 to 4.8.0

[dependabot-preview]

Bumps react-hot-loader from 4.3.1 to 4.8.0.

Release notes

Sourced from react-hot-loader's releases.

Hook the hooks

Bug Fixes

• complain if hot patches not present, fixes #1173 (efc3d6b)
• deactivate RHL in dev mode if eval not allowed (f995b0d)
• disable ErrorBoundaries for a first run, fixes #1172 (2a834c2)
• Support Context.Provider reload and React.memo, fixes #1169 (09e48eb)

Features

• activate pureRender by default (4e971b5) (this is a big deal)
• implement flexible hot injections (b7e8f5e)
• make errors retryable to mitigate hooks update (9967fde) ("a retry button")

hot-fix

Bug Fixes

• babel plugin produces a broken code #1168 (6f8573f)

Tidy up!

Bug Fixes

• do not shadow component name (use the real component names, not "ProxyComponent") (4b02767)
• do not supress HMR errors, related to #1153) (be79d2f)
• fix wrong react-dom name resolution installation (6f829a0)
• opt-out for module safety net, fixes #1102, #1159 (93d0b1f)
• remove platform checks from production bundle, fixes #1162 (24d0448)
• update fiber cached type, fixes #1139 (35984ff)

The fixes for hot fixes

Bug Fixes

• context information is not always properly emulated in hot-render, fixes #1094 (100fc9c)
• RHL could update non-relative components (5d4f226)
• update memo updater and comparator. fix #1135 (826a57c)
• allow multiple 'hot' in one file, registering only the first one (68c2a0a)
• error overlay initialization prior body, fixes #1127 (9177aba)

Quick fixes

Bug Fixes

• display hmr errors as hmr errors, #1131 (615790f)
• error overlay is not server side friendly, #1126 (40e3ff2)
• hmr error detection is flaky (9d3a2c0)
• secure wrapped/uwrapped comparison (a62bacd)
• webpack plugin outputs es2015 code #1130 (8a66401)

Know your Errors

... (truncated)

Changelog

Sourced from react-hot-loader's changelog.

4.8.0 (2019-03-07)

Features

• support 16.8.4 (38b63cd)

4.7.2 (2019-03-04)

Bug Fixes

• safer reads from context consumer (7942d26)
• suppress error message on a server side, fixes #1188 (b12b430)

4.7.1 (2019-02-20)

Bug Fixes

• destructed Context.Provider breaking registrations. fixes #1184 (8240111)
• do not poison memoized props (9f6ab6e)
• rethrow an error is hot comparison is not open (8befa5a)

4.7.0 (2019-02-18)

Bug Fixes

• complain if hot patches not present, fixes #1173 (efc3d6b)
• deactivate RHL in dev mode if eval not allowed (f995b0d)
• disable ErrorBoundaries for a first run, fixes #1172 (2a834c2)
• Support Context.Provider reload and React.memo, fixes #1169 (09e48eb)

Features

• activate pureRender by default (4e971b5)
• implement flexible hot injections (b7e8f5e)
• make errors retryable to mitigate hooks update (9967fde)

... (truncated)

Commits

• a058148 chore(release): 4.8.0
• 38b63cd feat: support 16.8.4
• 94d1379 chore(release): 4.7.2
• b12b430 fix: suppress error message on a server side, fixes #1188
• e28c750 Merge pull request #1195 from kontrollanten/update-lodash
• 781557a chore(deps): update lodash
• 03829b1 Merge pull request #1190 from gaearon/fix-context-consumer
• 608c5da Merge pull request #1193 from eps1lon/chore/package/hnrs3
• e3399dc chore(package): Bump hoist-non-react-statics major
• 7942d26 fix: safer reads from context consumer
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

[dependabot-preview]

Superseded by #413.