chore(deps-dev): Bump vite from 5.1.6 to 5.2.8

[dependabot]

Bumps vite from 5.1.6 to 5.2.8.

Release notes

Sourced from vite's releases.

create-vite@5.2.3

Please refer to CHANGELOG.md for details.

create-vite@5.2.2

Please refer to CHANGELOG.md for details.

create-vite@5.2.1

Please refer to CHANGELOG.md for details.

create-vite@5.2.0

Please refer to CHANGELOG.md for details.

Changelog

Sourced from vite's changelog.

5.2.8 (2024-04-03)

• fix: csp nonce injection when no closing tag (#16281) (#16282) (3c85c6b), closes #16281 #16282
• fix: do not access document in /@vite/client when not defined (#16318) (646319c), closes #16318
• fix: fix sourcemap when using object as define value (#15805) (445c4f2), closes #15805
• fix(css): unknown file error happened with lightningcss (#16306) (01af308), closes #16306
• fix(hmr): multiple updates happened when invalidate is called while multiple tabs open (#16307) (21cc10b), closes #16307
• fix(scanner): duplicate modules for same id if glob is used in html-like types (#16305) (eca68fa), closes #16305
• chore(deps): update all non-major dependencies (#16325) (a78e265), closes #16325
• refactor: use types from sass instead of @​types/sass (#16340) (4581e83), closes #16340

5.2.7 (2024-03-29)

• chore: deprecate splitVendorChunkPlugin (#16274) (45a06da), closes #16274
• fix: skip injecting __vite__mapDeps when it's not used (#16271) (890538a), closes #16271
• fix(deps): update all non-major dependencies (#16258) (7caef42), closes #16258
• fix(hmr): don't mutate module graph when collecting modules (#16302) (dfffea1), closes #16302
• fix(hmr): trigger hmr for missing file import errored module after file creation (#16303) (ffedc06), closes #16303
• fix(sourcemap): don't warn even if the sourcesContent is an empty string (#16273) (24e376a), closes #16273
• feat(hmr): reload when HTML file is created/deleted (#16288) (1f53796), closes #16288

5.2.6 (2024-03-24)

• fix: fs.deny with globs with directories (#16250) (ba5269c), closes #16250

5.2.5 (2024-03-24)

• fix: avoid SSR requests in waitForRequestIdle (#16246) (7093f77), closes #16246
• docs: clarify enforce vs hook.order (#16226) (3a73e48), closes #16226

5.2.4 (2024-03-23)

• fix: dont resolve imports with malformed URI (#16244) (fbf69d5), closes #16244

5.2.3 (2024-03-22)

• fix: handle warmup request error correctly (#16223) (d7c5256), closes #16223
• fix: skip encode if is data uri (#16233) (8617e76), closes #16233
• fix(optimizer): fix optimizeDeps.include glob syntax for ./* exports (#16230) (f184c80), closes #16230
• fix(runtime): fix sourcemap with prepareStackTrace (#16220) (dad7f4f), closes #16220

... (truncated)

Commits

• 8b8d402 release: v5.2.8
• 646319c fix: do not access document in /@vite/client when not defined (#16318)
• 445c4f2 fix: fix sourcemap when using object as define value (#15805)
• a78e265 chore(deps): update all non-major dependencies (#16325)
• 4581e83 refactor: use types from sass instead of @​types/sass (#16340)
• 3c85c6b fix: csp nonce injection when no closing tag (#16281) (#16282)
• 21cc10b fix(hmr): multiple updates happened when invalidate is called while multiple ...
• 01af308 fix(css): unknown file error happened with lightningcss (#16306)
• eca68fa fix(scanner): duplicate modules for same id if glob is used in html-like type...
• ad246da release: v5.2.7
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/jest-junit@16.0.0	environment, filesystem	+5	210 kB	jsonp
npm/node-fetch@3.3.2	network	+5	9.24 MB	node-fetch-bot
npm/react-dom@18.2.0	environment	+3	4.62 MB	gnoff
npm/react-test-renderer@18.2.0	environment	+6	1.77 MB	gnoff
npm/react@18.2.0	environment	+2	337 kB	gnoff
npm/serve@14.2.1	Transitive: environment, eval, filesystem, network, shell, unsafe	+66	3.68 MB	vercel-release-bot
npm/typescript@5.4.2	None	0	32.4 MB	typescript-bot

🚮 Removed packages: npm/@mdx-js/react@3.0.1, npm/@mdx-js/rollup@3.0.1, npm/@radix-ui/react-slot@1.0.2, npm/@remix-run/cloudflare-pages@2.8.1, npm/@remix-run/cloudflare@2.8.1, npm/@remix-run/dev@2.8.1, npm/@remix-run/react@2.8.1, npm/@storybook/addon-essentials@8.0.0, npm/@storybook/addon-interactions@8.0.0, npm/@storybook/addon-links@8.0.0, npm/@storybook/addon-onboarding@8.0.0, npm/@storybook/blocks@8.0.0, npm/@storybook/react-vite@8.0.0, npm/@storybook/react@8.0.0, npm/@storybook/test@8.0.0, npm/@types/mdx@2.0.11, npm/@types/node@20.11.28, npm/@types/react-dom@18.2.22, npm/@types/react@18.2.66, npm/@types/service-worker-mock@2.0.4, npm/@typescript-eslint/eslint-plugin@7.2.0, npm/@typescript-eslint/parser@7.2.0, npm/@vitejs/plugin-react@4.2.1, npm/autoprefixer@10.4.18, npm/chromatic@11.0.8, npm/class-variance-authority@0.7.0, npm/commitlint@19.2.0, npm/drizzle-kit@0.20.14, npm/drizzle-orm@0.30.2, npm/eslint-import-resolver-typescript@3.6.1, npm/eslint-plugin-import@2.29.1, npm/eslint-plugin-jsx-a11y@6.8.0, npm/eslint-plugin-react-hooks@4.6.0, npm/eslint-plugin-react@7.34.1, npm/eslint-plugin-storybook@0.8.0, npm/eslint@8.57.0, npm/husky@9.0.11

View full report↗︎

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code

See analysis details on SonarCloud

[dependabot]

Superseded by #112.