feat(deps): bump webpack-dev-server from 5.2.3 to 5.2.4

[tjiang-box]

Summary by CodeRabbit

• Chores
  • Bumped webpack-dev-server dependency from ^5.2.3 to ^5.2.4 to pick up minor fixes and improvements to the local development server experience; this should not affect runtime behavior.
  • Reordered development and peer dependency entries in package metadata for consistency and readability; no version changes or public API/runtime alterations.

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: af4b50d3-f9d4-41b3-ab62-2fbef844cc38

📥 Commits

Reviewing files that changed from the base of the PR and between 886ea35 and 5d1b492.

⛔ Files ignored due to path filters (1)

• yarn.lock is excluded by !**/yarn.lock, !**/*.lock

📒 Files selected for processing (1)

• package.json

🚧 Files skipped from review as they are similar to previous changes (1)

• package.json

---

Walkthrough

Reorders two Box package dependency entries in both devDependencies and peerDependencies and updates devDependencies' webpack-dev-server from ^5.2.3 to ^5.2.4.

Changes

Dependency Management

Layer / File(s)	Summary
Dependency ordering alignment package.json	@box/content-field and @box/copy-input are reordered alphabetically in both devDependencies (lines 136–137) and peerDependencies (lines 304–305) with no version changes.
webpack-dev-server upgrade package.json	webpack-dev-server devDependencies version is bumped from ^5.2.3 to ^5.2.4 (line 292).

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~10 minutes

Possibly related PRs

• box/box-ui-elements#4114: Related edits to webpack-dev-server version in package.json.
• box/box-ui-elements#4558: Overlapping changes touching @box/copy-input dependency metadata.

Suggested labels

ready-to-merge

Suggested reviewers

• tjuanitas
• jpan-box
• greg-in-a-box

Poem

🐰 I hopped through deps with nimble feet,
I nudged two names to make them neat,
A tiny bump for webpack’s tune,
A patch step taken—soft as moon,
Celebrate order, small and sweet.

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Description check	⚠️ Warning	The pull request description contains only the template's boilerplate guidance about the merge process and labels, with no actual context about the changes, motivation, or impact of the dependency bump.	Add a brief description explaining the purpose of the webpack-dev-server bump, any bug fixes or features included, and any testing performed to validate the update.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title accurately describes the main change: bumping webpack-dev-server from version 5.2.3 to 5.2.4, which is the primary modification in the package.json file.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	npm/​webpack-dev-server@​5.2.3 ⏵ 5.2.4	+1	+2

View full report

[mergify]

Merge Queue Status

• ✅ Entered queue — 2026-05-18 17:23 UTC · Rule: Automatic strict merge
• ✅ Checks passed · in-place
• ✅ Merged — 2026-05-18 17:33 UTC · at 5d1b49204f1364ecdcbdd04b55e388c330c215e9 · squash

This pull request spent 10 minutes 7 seconds in the queue, including 9 minutes 38 seconds running CI.

Required conditions to merge

• #approved-reviews-by >= 1 [🛡 GitHub branch protection]
  • feat(deps): bump webpack-dev-server from 5.2.3 to 5.2.4 #4565
• #changes-requested-reviews-by = 0 [🛡 GitHub branch protection]
  • feat(deps): bump webpack-dev-server from 5.2.3 to 5.2.4 #4565
• #review-threads-unresolved = 0 [🛡 GitHub branch protection]
  • feat(deps): bump webpack-dev-server from 5.2.3 to 5.2.4 #4565
• github-review-decision = APPROVED [🛡 GitHub branch protection]
  • feat(deps): bump webpack-dev-server from 5.2.3 to 5.2.4 #4565
• any of [🛡 GitHub branch protection]:
  • check-success = Summary
  • check-neutral = Summary
  • check-skipped = Summary
• any of [🛡 GitHub branch protection]:
  • check-success = lint_test_build
  • check-neutral = lint_test_build
  • check-skipped = lint_test_build
• any of [🛡 GitHub branch protection]:
  • check-success = license/cla
  • check-neutral = license/cla
  • check-skipped = license/cla
• any of [🛡 GitHub branch protection]:
  • check-success = lint_pull_request
  • check-neutral = lint_pull_request
  • check-skipped = lint_pull_request