Bump vite from 5.2.8 to 5.4.6 in the npm_and_yarn group

dependabot[bot] commented 2 months ago

Bumps the npm_and_yarn group with 1 update: vite.

Updates vite from 5.2.8 to 5.4.6

Release notes

create-vite@5.4.0

Please refer to CHANGELOG.md for details.

create-vite@5.3.0

Please refer to CHANGELOG.md for details.

Changelog

Sourced from vite's changelog.

5.4.6 (2024-09-16)

fix: avoid DOM Clobbering gadget in getRelativeUrlFromDocument (#18115) (179b177), closes #18115

fix: fs raw query (#18112) (6820bb3), closes #18112

5.4.5 (2024-09-13)

fix(preload): backport #18098, throw error preloading module as well (#18099) (faa2405), closes #18098 #18099

5.4.4 (2024-09-11)

fix: backport #17997, ensure req.url matches moduleByEtag URL to avoid incorrect 304 (#18078) (74a79c5), closes #17997 #18078

fix: backport #18063, allow scanning exports from script module in svelte (#18077) (d90ba40), closes #18063 #18077

fix(preload): backport #18046, allow ignoring dep errors (#18076) (8760293), closes #18046 #18076

5.4.3 (2024-09-03)

fix: allow getting URL of JS files in publicDir (#17915) (943ece1), closes #17915

fix: cjs warning respect the logLevel flag (#17993) (dc3c14f), closes #17993

fix: improve CJS warning trace information (#17926) (5c5f82c), closes #17926

fix: only remove entry assets handled by Vite core (#17916) (ebfaa7e), closes #17916

fix: waitForRequestIdle locked (#17982) (ad13760), closes #17982

fix(css): fix directory index import in sass modern api (#17960) (9b001ba), closes #17960

fix(css): fix sass file:// reference (#17909) (561b940), closes #17909

fix(css): fix sass modern source map (#17938) (d428e7e), closes #17938

fix(deps): bump tsconfck (#17990) (8c661b2), closes #17990

fix(html): rewrite assets url in <template> (#17988) (413c86a), closes #17988

fix(preload): add crossorigin attribute in CSS link tags (#17930) (15871c7), closes #17930

chore: reduce diffs with v6 branch (#17942) (bf9065a), closes #17942

chore(deps): update all non-major dependencies (#17945) (cfb621e), closes #17945

chore(deps): update all non-major dependencies (#17991) (0ca53cf), closes #17991

5.4.2 (2024-08-20)

chore: remove stale TODOs (#17866) (e012f29), closes #17866

refactor: remove redundant prepend/strip base (#17887) (3b8f03d), closes #17887

fix: resolve relative URL generated by renderBuiltUrl passed to module preload (#16084) (fac3a8e), closes #16084

feat: support originalFilename (#17867) (7d8c0e2), closes #17867

5.4.1 (2024-08-15)

... (truncated)

Commits

f969176 release: v5.4.6
179b177 fix: avoid DOM Clobbering gadget in getRelativeUrlFromDocument (#18115)
6820bb3 fix: fs raw query (#18112)
37881e7 release: v5.4.5
faa2405 fix(preload): backport #18098, throw error preloading module as well (#18099)
54c55db release: v5.4.4
74a79c5 fix: backport #17997, ensure req.url matches moduleByEtag URL to avoid incorr...
d90ba40 fix: backport #18063, allow scanning exports from script module in svelte (...
8760293 fix(preload): backport #18046, allow ignoring dep errors (#18076)
ccbfc1a release: v5.4.3
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/rahulvijay81/portfolio/network/alerts).

vercel[bot] commented 2 months ago

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
portfolio	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Sep 18, 2024 0:06am

netlify[bot] commented 2 months ago

Deploy Preview for rahulvijay ready!

Name	Link
Latest commit	2ee77fb0d8f757e5fea4c61c9a311f7aa4335900
Latest deploy log	https://app.netlify.com/sites/rahulvijay/deploys/66ea199005a7bd0008737557
Deploy Preview	https://deploy-preview-15--rahulvijay.netlify.app
Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.
Lighthouse	1 paths audited Performance: 77 Accessibility: 81 Best Practices: 92 SEO: 69 PWA: - View the detailed breakdown and full score reports

To edit notification comments on pull requests, go to your Netlify site configuration.

rahulvijay81 / portfolio