chore(deps-dev): bump vite from 7.3.2 to 8.0.10#844
Conversation
Bumps [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) from 7.3.2 to 8.0.10. - [Release notes](https://github.com/vitejs/vite/releases) - [Changelog](https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md) - [Commits](https://github.com/vitejs/vite/commits/v8.0.10/packages/vite) --- updated-dependencies: - dependency-name: vite dependency-version: 8.0.10 dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
Bot
added
dependencies
![cursor[bot]](https://avatars.githubusercontent.com/in/1210556?s=60&v=4){kind=small}
There was a problem hiding this comment.
Cursor Bugbot has reviewed your changes and found 1 potential issue.
❌ Bugbot Autofix is OFF. To automatically fix reported issues with cloud agents, have a team admin enable autofix in the Cursor dashboard.
Reviewed by Cursor Bugbot for commit de40c9f. Configure here.
| "type-fest": "^5.6.0", | ||
| "typescript": "^6.0.3", | ||
| "vite": "^7.3.2", | ||
| "vite": "^8.0.10", |
There was a problem hiding this comment.
Lockfile not updated for major vite version bump
High Severity
The package.json now requires "vite": "^8.0.10" (minimum 8.0.10), but the bun.lock file still pins vite@7.3.2, which does not satisfy this constraint. This mismatch means CI pipelines using --frozen-lockfile will fail, and regular installs will silently resolve to an untested dependency tree. The lockfile needs to be regenerated to resolve vite 8.x and its transitive dependencies (which switch from rollup to rolldown).
Reviewed by Cursor Bugbot for commit de40c9f. Configure here.
Bumps vite from 7.3.2 to 8.0.10.
Release notes
Sourced from vite's releases.
... (truncated)
Changelog
Sourced from vite's changelog.
... (truncated)
Commits
32c2978release: v8.0.10a4d06d9feat: update rolldown to 1.0.0-rc.17 (#22299)a4d828ffix:hmrClient.logger.debugandhmrClient.logger.errorlooked different f...83f0a78fix(css): show filename in CSS minification warnings for.css?inline(#22292)b8a21ccfix: remove format sniffing module resolution from JS resolver (#22297)40a0847refactor: typecheck client directory (#22284)5c7cec6fix(optimizer): allow user transform.target to override default in optimizeDe...9437518refactor: enable some typecheck rules (#22278)ce729f5release: v8.0.9605bb97docs: update build CLI defaults (#22261)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)Note
Medium Risk
Upgrades a core build/dev tool (
vite) to a new major version, which can impact dev server, build output, and plugin behavior even though the code changes are minimal.Overview
Updates the
vitedevDependency inpackage.jsonfrom^7.3.2to^8.0.10, moving the project onto Vite v8 for local dev and builds.Reviewed by Cursor Bugbot for commit de40c9f. Bugbot is set up for automated code reviews on this repo. Configure here.