Closed dependabot[bot] closed 2 years ago
Latest commit: 3c891196411f38e27727cd75f078fd8c62556d42
Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.
Click here to learn what changesets are, and how to add one.
Click here if you're a maintainer who wants to add a changeset to this PR
Superseded by #329.
Bumps vite from 2.2.4 to 2.9.14.
Release notes
Sourced from vite's releases.
Changelog
Sourced from vite's changelog.
... (truncated)
Commits
0d13630
release: v2.9.14adb61c5
fix: backport #8979, re-encode url to prevent fs.allow bypass (fixes #8498) (...84ec02a
fix(css): backport #8936 (#8977)d4d89b9
fix(css): backport #7746da77dee
fix: reverts #8471d93ac8e
release: v2.9.13e109d64
fix: backport #8804, /@fs/ dir traversal with escaped chars (fixes #8498) (#8...1afc1c2
fix(wasm): support decoding data URL in Node < v16 (#8668)86a55d3
release: v2.9.12c0d6c60
fix: backport outdated optimized dep removed from module graph (#8534)Maintainer changes
This version was pushed to npm by vitebot, a new releaser for vite since your current version.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)