chore(deps-dev): bump vite from 5.4.0 to 5.4.1

[dependabot[bot]]

Bumps vite from 5.4.0 to 5.4.1.

Changelog

Sourced from vite's changelog.

5.4.1 (2024-08-15)

• fix: build.modulePreload.resolveDependencies is optimizable (#16083) (e961b31), closes #16083
• fix: align CorsOptions.origin type with @​types/cors (#17836) (1bda847), closes #17836
• fix: typings for vite:preloadError (#17868) (6700594), closes #17868
• fix(build): avoid re-define __vite_import_meta_env__ (#17876) (e686d74), closes #17876
• fix(deps): update all non-major dependencies (#17869) (d11711c), closes #17869
• fix(lightningcss): search for assets with correct base path (#17856) (4e5ce3c), closes #17856
• fix(worker): handle self reference url worker in dependency for build (#17846) (391bb49), closes #17846
• chore: fix picocolors import for local dev (#17884) (9018255), closes #17884
• refactor: remove handleHotUpdate from watch-package-data plugin (#17865) (e16bf1f), closes #17865

Commits

• b44c20c release: v5.4.1
• 391bb49 fix(worker): handle self reference url worker in dependency for build (#17846)
• e686d74 fix(build): avoid re-define __vite_import_meta_env__ (#17876)
• 9018255 chore: fix picocolors import for local dev (#17884)
• 1bda847 fix: align CorsOptions.origin type with @​types/cors (#17836)
• e16bf1f refactor: remove handleHotUpdate from watch-package-data plugin (#17865)
• 6700594 fix: typings for vite:preloadError (#17868)
• d11711c fix(deps): update all non-major dependencies (#17869)
• 4e5ce3c fix(lightningcss): search for assets with correct base path (#17856)
• e961b31 fix: build.modulePreload.resolveDependencies is optimizable (#16083)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will merge this PR once CI passes on it, as requested by @AlbertHernandez.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions[bot]]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
npm/vite	5.4.1	:green_circle: 5.6	Details Check Score Reason Maintained :green_circle: 10 30 commit(s) and 15 issue activity found in the last 90 days -- score normalized to 10 Code-Review :green_circle: 7 Found 20/28 approved changesets -- score normalized to 7 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases :warning: -1 no releases found Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Packaging :warning: -1 packaging workflow not detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 7 binaries present in source code Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy :green_circle: 10 security policy file detected Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 7 3 existing vulnerabilities detected
npm/vite	^5.4.1	:green_circle: 5.6	Details Check Score Reason Maintained :green_circle: 10 30 commit(s) and 15 issue activity found in the last 90 days -- score normalized to 10 Code-Review :green_circle: 7 Found 20/28 approved changesets -- score normalized to 7 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases :warning: -1 no releases found Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Packaging :warning: -1 packaging workflow not detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 7 binaries present in source code Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy :green_circle: 10 security policy file detected Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 7 3 existing vulnerabilities detected

Scanned Manifest Files

package-lock.json

• vite@5.4.1
• vite@5.4.0

package.json

• vite@^5.4.1
• vite@^5.4.0