Skip to content

chore(deps): update vite#6263

Open
renovate[bot] wants to merge 1 commit intov4from
renovate/vite
Open

chore(deps): update vite#6263
renovate[bot] wants to merge 1 commit intov4from
renovate/vite

Conversation

@renovate
Copy link
Copy Markdown
Contributor

@renovate renovate Bot commented Mar 30, 2026
edited
Loading

This PR contains the following updates:

Package Change Age Confidence
@vitejs/plugin-vue (source) ^6.0.5^6.0.6 age confidence
vite (source) ^7.3.1^7.3.3 age confidence
vue (source) ^3.5.30^3.5.34 age confidence
vue-router (source) ^5.0.4^5.0.6 age confidence

Release Notes

vitejs/vite (vite)

v7.3.3

Compare Source

Please refer to CHANGELOG.md for details.

v7.3.2

Compare Source

Please refer to CHANGELOG.md for details.

vuejs/core (vue)

v3.5.34

Compare Source

Bug Fixes
vuejs/router (vue-router)

v5.0.6

Compare Source

   🐞 Bug Fixes
    View changes on GitHub

v5.0.5

Compare Source

   🚀 Features
   🐞 Bug Fixes
  • Track definePage imports per-file to fix named view race condition  -  by @​posva (11191)
  • Avoid double decoding hash on string location  -  by @​posva (1578c)
    View changes on GitHub

Configuration

📅 Schedule: (in timezone Europe/Paris)

  • Branch creation
    • Between 06:00 AM and 09:59 AM, only on Monday (* 6-9 * * 1)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate Bot requested a review from benjamincanac as a code owner March 30, 2026 06:13
@github-actions github-actions Bot added the v4 #4488 label Mar 30, 2026
@pkg-pr-new
Copy link
Copy Markdown

pkg-pr-new Bot commented Mar 30, 2026
edited
Loading 

npm i https://pkg.pr.new/@nuxt/ui@6263

commit: 24e7d37

@renovate renovate Bot force-pushed the renovate/vite branch 2 times, most recently from d556298 to e93d321 Compare March 30, 2026 16:56
@renovate renovate Bot force-pushed the renovate/vite branch from e93d321 to e0c7264 Compare March 30, 2026 17:24
@renovate renovate Bot force-pushed the renovate/vite branch from e0c7264 to 937f4b0 Compare March 30, 2026 20:02
@renovate renovate Bot force-pushed the renovate/vite branch from 937f4b0 to 27618ad Compare April 1, 2026 15:48
@renovate renovate Bot force-pushed the renovate/vite branch from 27618ad to 67f9289 Compare April 2, 2026 13:13
@renovate renovate Bot force-pushed the renovate/vite branch from 67f9289 to a80843c Compare April 3, 2026 06:42
@renovate renovate Bot changed the title chore(deps): update dependency vue to ^3.5.31 chore(deps): update dependency vue to ^3.5.32 Apr 3, 2026
@renovate renovate Bot force-pushed the renovate/vite branch from a80843c to 43de7a6 Compare April 6, 2026 11:37
@renovate renovate Bot force-pushed the renovate/vite branch from 43de7a6 to f9d14f3 Compare April 6, 2026 14:43
@renovate renovate Bot changed the title chore(deps): update dependency vue to ^3.5.32 chore(deps): update vite Apr 6, 2026
@renovate renovate Bot force-pushed the renovate/vite branch from f9d14f3 to 8ccdd8a Compare April 7, 2026 12:13
@renovate renovate Bot force-pushed the renovate/vite branch from 8ccdd8a to c9075d0 Compare April 7, 2026 13:52
@renovate renovate Bot force-pushed the renovate/vite branch from c9075d0 to 4a42763 Compare April 8, 2026 15:37
@renovate renovate Bot force-pushed the renovate/vite branch from 4a42763 to c1c3ef7 Compare April 9, 2026 13:16
@renovate renovate Bot force-pushed the renovate/vite branch from 50d04de to 63d5a21 Compare April 22, 2026 10:31
@renovate renovate Bot force-pushed the renovate/vite branch from 63d5a21 to 2432f07 Compare April 22, 2026 13:29
@renovate renovate Bot force-pushed the renovate/vite branch from 2432f07 to a0afe51 Compare April 22, 2026 13:49
@renovate renovate Bot force-pushed the renovate/vite branch from a0afe51 to 585f46e Compare April 22, 2026 14:46
@renovate renovate Bot force-pushed the renovate/vite branch from 585f46e to 8094319 Compare April 27, 2026 08:05
@renovate renovate Bot force-pushed the renovate/vite branch from 8094319 to 78dddbf Compare April 29, 2026 17:45
@renovate renovate Bot force-pushed the renovate/vite branch from 78dddbf to 9935cfd Compare April 30, 2026 15:31
@renovate renovate Bot force-pushed the renovate/vite branch from 9935cfd to d742e7d Compare May 4, 2026 09:58
@socket-security
Copy link
Copy Markdown

socket-security Bot commented May 4, 2026
edited
Loading

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action Severity Alert  (click "▶" to expand/collapse)
Warn Critical
Critical CVE: Handlebars.js has JavaScript Injection via AST Type Confusion

CVE: GHSA-2w6w-674q-4c4q Handlebars.js has JavaScript Injection via AST Type Confusion (CRITICAL)

Affected versions: >= 4.0.0 < 4.7.9

Patched version: 4.7.9

From: pnpm-lock.yamlnpm/@release-it/conventional-changelog@10.0.6npm/handlebars@4.7.8

ℹ Read more on: This package | This alert | What is a critical CVE?

Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev.

Suggestion: Remove or replace dependencies that include known critical CVEs. Consumers can use dependency overrides or npm audit fix --force to remove vulnerable dependencies.

Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore npm/handlebars@4.7.8. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

@renovate renovate Bot force-pushed the renovate/vite branch from d742e7d to 8d06bc0 Compare May 10, 2026 18:40
@renovate renovate Bot force-pushed the renovate/vite branch from 8d06bc0 to 2471f8e Compare May 11, 2026 07:51
@renovate renovate Bot force-pushed the renovate/vite branch from 2471f8e to ae93c4c Compare May 11, 2026 08:44
@renovate renovate Bot force-pushed the renovate/vite branch from ae93c4c to 61e4d76 Compare May 11, 2026 09:37
@renovate renovate Bot force-pushed the renovate/vite branch from 61e4d76 to 24e7d37 Compare May 11, 2026 10:55
@socket-security
Copy link
Copy Markdown

socket-security Bot commented May 11, 2026

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Addedhappy-dom@​20.9.0751008894100
Addedcitty@​0.2.21001001008480
Addedembla-carousel-fade@​8.6.010010010084100
Addedembla-carousel-auto-scroll@​8.6.010010010084100
Addedembla-carousel-vue@​8.6.010010010084100
Addedembla-carousel-auto-height@​8.6.01001009984100
Addedembla-carousel-class-names@​8.6.010010010084100
Addedembla-carousel-autoplay@​8.6.010010010084100
Addedembla-carousel@​8.6.010010010084100
Addedembla-carousel-wheel-gestures@​8.1.010010010085100
Addeddefu@​6.1.710010010086100
Addedcolortranslator@​5.0.010010010086100
Addedcapture-website@​5.1.08710010089100
Addedeslint@​10.3.08910010095100
Addedbetter-sqlite3@​12.9.010010010090100
Addedfuse.js@​7.3.09810010091100

View full report

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@benjamincanac benjamincanac Awaiting requested review from benjamincanac benjamincanac is a code owner

Assignees

No one assigned

Labels

v4 #4488

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants