Releases: rbonestell/vite-plugin-sri-gen
Releases · rbonestell/vite-plugin-sri-gen
v1.7.0
What's Changed
- Added support for Vite 8 (Rolldown), so the plugin works with Vite's new Rolldown-powered build pipeline (#40)
Full Changelog: v1.6.1...v1.7.0
v1.6.1
0d72e72
This commit was signed with the committer’s verified signature.
rbonestell
Bobby Bonestell
What's Changed
- Fixed the plugin overwriting hand-written
integrityattributes on static HTML tags, so any integrity values you set manually in your HTML are now preserved (#37) - Added a new documentation site with full usage guides and examples (#36)
Full Changelog: v1.6.0...v1.6.1
v1.6.0
What's Changed
- Added an import map integrity mode that applies native browser Subresource Integrity to ES module chunks, so module scripts are verified directly by the browser via the import map (#35)
- Fixed integrity resolution for dynamic imports so lazy-loaded chunks are resolved relative to the importing module's URL, ensuring nested and relative imports are verified correctly (#32) (#34)
Full Changelog: v1.5.1...v1.6.0
v1.5.1
What's Changed
- Fixed the dynamic-import SRI runtime not being included in consumer bundles, so integrity checks now correctly apply to lazy-loaded chunks in downstream projects (#30) (#31)
Full Changelog: v1.5.0...v1.5.1
v1.5.0
What's Changed
Full Changelog: v1.4.1...v1.5.0
v1.4.1
What's Changed
- Improve Socket.dev score and close test coverage gaps (#27)
Full Changelog: v1.4.0...v1.4.1
v1.4.0
What's Changed
- Inject SRI hashes into Vite manifest for SSR and server-rendered apps (#24)
Full Changelog: v1.3.2...v1.4.0
v1.3.2
f0571fb
This commit was signed with the committer’s verified signature.
rbonestell
Bobby Bonestell
What's Changed
- Fix: Integrity not added to main <script type="module"> when using absolute URL (#16 )
Full Changelog: v1.3.1...v1.3.2
v1.3.1
91483f0
This commit was signed with the committer’s verified signature.
rbonestell
Bobby Bonestell
What's Changed
- Fix: Resolved outstanding NPM dependency vulnerabilities for
vite,js-yaml, andglobpackages.
Full Changelog: v1.3.0...v1.3.1
v1.3.0
a9d4135
This commit was signed with the committer’s verified signature.
rbonestell
Bobby Bonestell
What's Changed
- Reduce logging noise with
verboseLoggingparameter- Defaults to
false
- Defaults to
- Fixed bug causing path collapse for absolute URLs
- Fixed hash mismatch for entry chunks after runtime injection by @Mike-Loffland
- Automated release version bumps in GitHub Actions pipeline
- Replaced NPM token authentication with GitHub Actions OIDC
New Contributors
- @Mike-Loffland made their first contribution in #12
Full Changelog: v1.2.2...v1.3.0
Contributors
Mike-Loffland