search

JonasKruckenberg / rollup-plugin-sri

Add subresource integrity tags to all your html files 🔒
MIT License
24 stars 4 forks source link

chore(deps-dev): bump vite from 2.2.4 to 2.5.4 #195

Closed dependabot[bot] closed 3 years ago

dependabot[bot] commented 3 years ago

Bumps vite from 2.2.4 to 2.5.4.

Changelog

Sourced from vite's changelog.

2.5.4 (2021-09-07)

Bug Fixes

  • check for Blob before creating worker URL, close #4462 (#4674) (311026f)
  • css: loadPreprocessor tolerate require.resolve.paths not exists (#4853) (c588b8f)
  • handle error in numberToPos and formatError (#4782) (c87763c)
  • overlay: handle missing customElements (#4856) (e5b472d)
  • sometimes THIS_IS_UNDEFINED warnings were still shown (#4844) (8d956f6)

2.5.3 (2021-09-01)

Bug Fixes

  • apply SSR externalization heuristic to devDependencies (#4699) (0f1d6be)
  • resolve: normalize optimized resolved path (#4813) (fa6475f)

2.5.2 (2021-08-31)

Bug Fixes

  • decode url for middleware (#4728) (824d042)
  • don't transform new URL(url, import.meta.url) in comments (#4732) (bf0b631)
  • prevent pre-bundling @​vite/client and @​vite/env (#4716) (e8c1906)
  • special handling for ssr.noExternal in mergeConfig (#4766) (689a2c8)
  • ssr: resolve .cjs file extensions (#4772) (96712ad)
  • unexpected file request with custom publicDir, fix #4629 (#4631) (7be6c0c)

Features

2.5.1 (2021-08-24)

Bug Fixes

... (truncated)

Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
changeset-bot[bot] commented 3 years ago

⚠️ No Changeset found

Latest commit: 8f21a2c590c593f4df51e446cdee54ebdac175b2

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

dependabot[bot] commented 3 years ago

Superseded by #197.