Bump the npm_and_yarn group with 2 updates #274

dependabot · 2024-04-03T21:42:28Z

Bumps the npm_and_yarn group with 2 updates: jsdom and vite.

Updates jsdom from 22.1.0 to 23.0.0

Release notes

Version 23.0.0

Node.js v18 is now the minimum supported version.

Updated various dependencies, including whatwg-url which integrates various additions to the URL and URLSearchParams objects.

Changelog

Sourced from jsdom's changelog.

23.0.0

Node.js v18 is now the minimum supported version.

Updated various dependencies, including whatwg-url which integrates various additions to the URL and URLSearchParams objects.

Commits

b968889 23.0.0
59ebd7e Use modern pathToFileURL in tests
1ee4d61 Update dependencies and dev dependencies
6626781 Remove the domexception package dependency
6d9ff2c Remove abab dependency
7027a3d Move from yarn to npm
9b354af Raise minimum Node.js version to v18
032df9c Reflect the move from master to main
a39e0ec Disable another newly-flaky XHR test
See full diff in compare view

Updates vite from 4.4.11 to 4.5.3

Changelog

Sourced from vite's changelog.

4.5.3 (2024-03-24)

fix: fs.deny with globs with directories (#16250) (96a7f3a), closes #16250

4.5.2 (2024-01-19)

fix: fs deny for case insensitive systems (#15653) (eeec23b), closes #15653

4.5.1 (2023-12-04)

fix: backport #15223, proxy html path should be encoded (#15226) (41bb354), closes #15223 #15226

4.5.0 (2023-10-18)

feat: backport mdx as known js source (#14560) (#14670) (45595ef), closes #14560 #14670

feat: scan .marko files (#14669) (ed7bdc5), closes #14669

feat(ssr): backport ssr.resolve.conditions and ssr.resolve.externalConditions (#14498) (#14668) (520139c), closes #14498 #14668

Commits

aac695e release: v4.5.3
96a7f3a fix: fs.deny with globs with directories (#16250)
d0360c1 release: v4.5.2
eeec23b fix: fs deny for case insensitive systems (#15653)
c075115 release: v4.5.1
41bb354 fix: backport #15223, proxy html path should be encoded (#15226)
055d2b8 release: v4.5.0
ed7bdc5 feat: scan .marko files (#14669)
45595ef feat: backport mdx as known js source (#14560) (#14670)
520139c feat(ssr): backport ssr.resolve.conditions and ssr.resolve.externalConditions...
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps the npm_and_yarn group with 2 updates: [jsdom](https://github.com/jsdom/jsdom) and [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite). Updates `jsdom` from 22.1.0 to 23.0.0 - [Release notes](https://github.com/jsdom/jsdom/releases) - [Changelog](https://github.com/jsdom/jsdom/blob/main/Changelog.md) - [Commits](jsdom/jsdom@22.1.0...23.0.0) Updates `vite` from 4.4.11 to 4.5.3 - [Release notes](https://github.com/vitejs/vite/releases) - [Changelog](https://github.com/vitejs/vite/blob/v4.5.3/packages/vite/CHANGELOG.md) - [Commits](https://github.com/vitejs/vite/commits/v4.5.3/packages/vite) --- updated-dependencies: - dependency-name: jsdom dependency-type: direct:development dependency-group: npm_and_yarn-security-group - dependency-name: vite dependency-type: direct:development dependency-group: npm_and_yarn-security-group ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added the dependencies Pull requests that update a dependency file label Apr 3, 2024

dependabot bot mentioned this pull request Apr 3, 2024

Bump vite from 4.4.11 to 4.5.2 #260

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the npm_and_yarn group with 2 updates #274

Bump the npm_and_yarn group with 2 updates #274

dependabot bot commented on behalf of github Apr 3, 2024

Bump the npm_and_yarn group with 2 updates #274

Are you sure you want to change the base?

Bump the npm_and_yarn group with 2 updates #274

Conversation

dependabot bot commented on behalf of github Apr 3, 2024

Version 23.0.0

23.0.0

4.5.3 (2024-03-24)

4.5.2 (2024-01-19)

4.5.1 (2023-12-04)

4.5.0 (2023-10-18)