Closed dependabot[bot] closed 7 months ago
New and removed dependencies detected. Learn more about Socket for GitHub ↗︎
Package | New capabilities | Transitives | Size | Publisher |
---|---|---|---|---|
npm/vite@5.1.5 | environment, eval, filesystem, network, shell, unsafe | +75 |
276 MB | vitebot |
🚮 Removed packages: npm/vite@5.1.3
Superseded by #1548.
Bumps vite from 5.1.3 to 5.1.5.
Changelog
Sourced from vite's changelog.
Commits
2af1ae8
release: v5.1.5bd52283
fix: analysing build chunk without dependencies (#15469)ab823ab
fix: import with query with imports field (#16085)11cceea
revert: "fix: upgrade esbuild to 0.20.x" (#16072)899d9b1
fix: upgrade esbuild to 0.20.x (#16062)aac2ef7
refactor(runtime): use functions frompathe
(#16061)a9112eb
fix: output correct error for empty import specifier (#16055)1dccc37
fix: normalize literal-only entry pattern (#16010)7cfe80d
chore(deps): update all non-major dependencies (#16028)b20d542
refactor: share code with vite runtime (#15907)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show