chore(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
@swc/core (source)	^1.4.0 -> ^1.4.2
@sxzz/eslint-config	^3.7.6 -> ^3.8.0
@types/node (source)	^20.11.16 -> ^20.11.19
@vitejs/plugin-vue (source)	5.0.3 -> 5.0.4
@vitest/ui (source)	1.2.2 -> 1.3.0
esbuild	0.20.0 -> 0.20.1
esbuild	^0.20.0 -> ^0.20.1
pnpm (source)	8.15.1 -> 8.15.3
rollup (source)	^4.9.6 -> ^4.12.0
sass	^1.70.0 -> ^1.71.0
tsup (source)	^8.0.1 -> ^8.0.2
vite (source)	^5.0.12 -> ^5.1.3
vitest (source)	1.2.2 -> 1.3.0
vue (source)	^3.4.15 -> ^3.4.19
webpack	^5.90.1 -> ^5.90.3

---

Release Notes

swc-project/swc (@​swc/core)

v1.4.2

Compare Source

Bug Fixes

• (es/helpers) Add addInitializer to field decorators (#​8619) (cd38ef3)

• (es/minifier) Abort property hoister on this usage (#​8647) (9715320)

• (es/react) Validate pragma before parsing (#​8637) (5f1cf01)

• (es/typescript) Handle exported JSX members (#​8642) (22c8e2e)

Features

• (es/minifier) Remove unused parameters of arrow functions (#​8636) (8cd4813)

• (swc_core) Expose ES linter (#​8635) (762959c)

Testing

• (es/parser) Add a test for << (#​8634) (2c63b31)

• (es/transforms) Add a test for reserved_words pass (#​8638) (a0b77e0)

v1.4.1

Compare Source

Bug Fixes

• (binding/types) Update typings for options.envs to match implementation (#​8620) (2a115cf)

• (es/compat) Visit AssignExpr right branch in FnEnvHoister (#​8633) (e5d6de0)

• (es/decorators) Do not insert duplicate constructors (#​8631) (21a447f)

• (es/parser) Set class property to abstract or override even in error states (#​8610) (5a77306)

• (es/parser) Fix parsing of dynamic source phase imports (#​8611) (7d724d8)

• (es/parser) Rescan << as < when parsing type args (#​8607) (9e6dad9)

• (es/parser) Fix detection of use strict directive (#​8617) (95236e9)

• (es/plugin) Fix schema version issue (#​8621) (132be95)

• (es/quote) Allow variables typed AssignTarget (#​8602) (6a48be4)

• (es/quote) Support AssignTarget, really (#​8603) (ef91661)

• (es/quote) Fix code generation of AssignTarget (#​8604) (16e9d4c)

Features

• (es/minifier) Implement correct hoist_props (#​8593) (3122e94)

Miscellaneous Tasks

• (config) Remove an empty file in swc_config (#​8609) (d87fef0)

• (preset-env) Update browserslist-rs (#​8614) (e5585e9)

Refactor

• (bindings) Remove bindings for experimental packages (#​8600) (6c50ff1)

Testing

• (es) Update tsc conformance test suite (#​8615) (c0beba7)

• Update @swc/plguin-jest used for plugin e2e testing (#​8601) (95fe3db)

Build

• (cargo) Update rustc to nightly-2024-02-06 (#​8618) (6726b63)

• (plugin) Update wasmer to v4.2.5 (#​8624) (4e0d240)

sxzz/eslint-config (@​sxzz/eslint-config)

v3.8.0

Compare Source

   🚨 Breaking Changes

• Upgrade typescript-eslint v7  -  by @​sxzz (c6af2)
• Drop node 16  -  by @​sxzz (38b56)
• Move the optional sort-keys plugin to perfectionist  -  by @​sxzz (c1955)

   🚀 Features

• Add jsdoc  -  by @​sxzz (01ac4)
• Sort peerDependenciesMeta  -  by @​sxzz (df92f)
• Sort overrides  -  by @​sxzz (40238)
• Detect more editors  -  by @​sxzz (5c996)
• Enable method-signature-style  -  by @​sxzz (1b463)
• Add eslint-plugin-n  -  by @​sxzz (a2ec4)

   🐞 Bug Fixes

• Dts error  -  by @​sxzz (9b25d)
• Allow const enum in dts file  -  by @​sxzz (be3ef)
• deps:
  • Update dependency eslint-plugin-unicorn to v50  -  by @​renovate[bot] inhttps://github.com/sxzz/eslint-config/issues/577 (aedbd)
  • Update all non-major dependencies  -  by @​renovate[bot] inhttps://github.com/sxzz/eslint-config/issues/566 (8ff53)
  • Update dependency globals to v14  -  by @​renovate[bot] inhttps://github.com/sxzz/eslint-config/issues/666 (8d6e5)
  • Update dependency eslint-plugin-unicorn to v51  -  by @​renovate[bot] inhttps://github.com/sxzz/eslint-config/issues/655 (b7084)
  • Update typescript-eslint monorepo to v7 (major)  -  by @​renovate[bot] inhttps://github.com/sxzz/eslint-config/issues/677 (aae62)

    View changes on GitHub

vitejs/vite-plugin-vue (@​vitejs/plugin-vue)

v5.0.4

• chore(deps-dev): bump vite from 5.0.10 to 5.0.12 (#​354) (0294b9d), closes #​354
• chore(deps): update dependency prettier to v3.2.4 (#​347) (e957179), closes #​347
• chore(deps): update dependency prettier to v3.2.5 (#​352) (a9f5b11), closes #​352
• chore(deps): update upstream (#​333) (573420d), closes #​333
• types: omit overridden options (0c7432b)
• fix(deps): update all non-major dependencies (#​332) (70e5df9), closes #​332
• fix(plugin-vue): allow disabling transformAssetUrls (#​326) (0ff6fb7), closes #​326

vitest-dev/vitest (@​vitest/ui)

v1.3.0

Compare Source

🚀 Features

• Deprecate watchExclude - by @​patak-dev in https://github.com/vitest-dev/vitest/issues/5171 (82885)
• browser:
  • Run test files in isolated iframes - by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/5036 (4f401)
• config:
  • Add snapshotSerializers option - by @​fenghan34 in https://github.com/vitest-dev/vitest/issues/5092 (5b102)
• reporters:
  • Support custom options - by @​AriPerkkio in https://github.com/vitest-dev/vitest/issues/5111 (fec9c)
• runner:
  • Support automatic fixtures - by @​fenghan34 and @​sheremet-va in https://github.com/vitest-dev/vitest/issues/5102 (0441f)
• ui:
  • Save splitpanes size to local storage - by @​posva in https://github.com/vitest-dev/vitest/issues/5166 (c28b4)
• vitest:
  • Add onTestFinished hook - by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/5128 (6f5b4)
  • Add github actions reporter - by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/5093 (40afb)
  • Expose jsdom global if jsdom environment is enabled - by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/5155 (567d2)
  • Add new CLI options - by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/5163 (4e179)
  • "test" accepts options object as the second parameter - by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/5142 (7d9b1)
• vm:
  • Support wasm module - by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/5131 (5ed53)

🐞 Bug Fixes

• Fix sourcemap in vm pools - by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/5063 (81105)
• Don't optimize react/jsx-runtime by default when running in Node - by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/5079 (0d2bf)
• Rpc timeout error messages to include caller - by @​AriPerkkio in https://github.com/vitest-dev/vitest/issues/5103 (a6e04)
• Requires fixed version across the monorepo - by @​antfu in https://github.com/vitest-dev/vitest/issues/5208 (68f51)
• Prevent merging of poolOptions - by @​penalosa in https://github.com/vitest-dev/vitest/issues/5221 (bc5b2)
• browser:
  • Don't exclude node builtins from optimization - by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/5082 (714c9)
  • Support coverage.reportsDirectory with multiple directories - by @​AriPerkkio in https://github.com/vitest-dev/vitest/issues/5056 (ae73f)
• cli:
  • Parse --browser=<name> correctly - by @​AriPerkkio in https://github.com/vitest-dev/vitest/issues/5179 (656e2)
• coverage:
  • .tmp directory conflicts with --shard option - by @​AriPerkkio in https://github.com/vitest-dev/vitest/issues/5184 (5749d)
• deps:
  • Update dependency strip-literal to v2 - by @​renovate[bot] inhttps://github.com/vitest-dev/vitest/issues/51366 (ef557)
• reporters:
  • Testsuite name should include project root in Junit output - by @​fenghan34 in https://github.com/vitest-dev/vitest/issues/5116 (2494f)
• typecheck:
  • Fix suite collection while-loop - by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/5065 (35675)
• ui:
  • Fix tests duration time - by @​vovsemenv in https://github.com/vitest-dev/vitest/issues/5219 (58103)
• utils:
  • Fix asymmetric matcher diff inside array - by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/5189 (3ffcd)
• vitest:
  • Correctly report failed test files as failures in json reporter, export json reporter types - by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/5081 (0417b)
  • Don't run typecheck tests in browser if both are enabled - by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/5080 (1045b)
  • Handle function config inside defineWorkspace - by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/5089 (0bf52)
  • Remove excessive listeners when running without isolation, don't reset the state - by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/5132 (b607f)
  • Auto-enable "github-actions" only where users didn't configure reporters - by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/5158 (ef044)
  • Support more array cli options - by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/5162 (3afe6)
  • Add types for the new global jsdom variable - by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/5164 (0f898)
  • Expose onTestFinished globally - by @​sheremet-va (1304f)
  • Disable optimizer by default until it's stable - by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/5156 (e1bd8)
  • Delegate snapshot options to workspace from root config - by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/5199 (86297)
  • Fix optimizeDeps.disabled warnings on Vite 5.1 - by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/5215 (1aecd)
• vm:
  • Handle disableConsoleIntercept config - by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/5074 (a55ad)
  • Improve error when module is not found - by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/5053 (79a50)

View changes on GitHub

evanw/esbuild (esbuild)

v0.20.1

Compare Source

• Fix a bug with the CSS nesting transform (#​3648)

  This release fixes a bug with the CSS nesting transform for older browsers where the generated CSS could be incorrect if a selector list contained a pseudo element followed by another selector. The bug was caused by incorrectly mutating the parent rule's selector list when filtering out pseudo elements for the child rules:

  /* Original code */
  .foo {
    &:after,
    & .bar {
      color: red;
    }
  }
  
  /* Old output (with --supported:nesting=false) */
  .foo .bar,
  .foo .bar {
    color: red;
  }
  
  /* New output (with --supported:nesting=false) */
  .foo:after,
  .foo .bar {
    color: red;
  }

• Constant folding for JavaScript inequality operators (#​3645)

  This release introduces constant folding for the < > <= >= operators. The minifier will now replace these operators with true or false when both sides are compile-time numeric or string constants:

  // Original code
  console.log(1 < 2, '🍕' > '🧀')
  
  // Old output (with --minify)
  console.log(1<2,"🍕">"🧀");
  
  // New output (with --minify)
  console.log(!0,!1);

• Better handling of __proto__ edge cases (#​3651)

  JavaScript object literal syntax contains a special case where a non-computed property with a key of __proto__ sets the prototype of the object. This does not apply to computed properties or to properties that use the shorthand property syntax introduced in ES6. Previously esbuild didn't correctly preserve the "sets the prototype" status of properties inside an object literal, meaning a property that sets the prototype could accidentally be transformed into one that doesn't and vice versa. This has now been fixed:

  // Original code
  function foo(__proto__) {
    return { __proto__: __proto__ } // Note: sets the prototype
  }
  function bar(__proto__, proto) {
    {
      let __proto__ = proto
      return { __proto__ } // Note: doesn't set the prototype
    }
  }
  
  // Old output
  function foo(__proto__) {
    return { __proto__ }; // Note: no longer sets the prototype (WRONG)
  }
  function bar(__proto__, proto) {
    {
      let __proto__2 = proto;
      return { __proto__: __proto__2 }; // Note: now sets the prototype (WRONG)
    }
  }
  
  // New output
  function foo(__proto__) {
    return { __proto__: __proto__ }; // Note: sets the prototype (correct)
  }
  function bar(__proto__, proto) {
    {
      let __proto__2 = proto;
      return { ["__proto__"]: __proto__2 }; // Note: doesn't set the prototype (correct)
    }
  }

• Fix cross-platform non-determinism with CSS color space transformations (#​3650)

  The Go compiler takes advantage of "fused multiply and add" (FMA) instructions on certain processors which do the operation x*y + z without intermediate rounding. This causes esbuild's CSS color space math to differ on different processors (currently ppc64le and s390x), which breaks esbuild's guarantee of deterministic output. To avoid this, esbuild's color space math now inserts a float64() cast around every single math operation. This tells the Go compiler not to use the FMA optimization.

• Fix a crash when resolving a path from a directory that doesn't exist (#​3634)

  This release fixes a regression where esbuild could crash when resolving an absolute path if the source directory for the path resolution operation doesn't exist. While this situation doesn't normally come up, it could come up when running esbuild concurrently with another operation that mutates the file system as esbuild is doing a build (such as using git to switch branches). The underlying problem was a regression that was introduced in version 0.18.0.

pnpm/pnpm (pnpm)

v8.15.3

Compare Source

Patch Changes

• Remove vulnerable "ip" package from the dependencies #​7652.

Platinum Sponsors

Gold Sponsors

Our Silver Sponsors

v8.15.2

Compare Source

Patch Changes

• When purging multiple node_modules directories, pnpm will no longer print multiple prompts simultaneously.
• Don't print an unnecessary warning when adding new dependencies to a project that uses hoisted node_modules.
• Linking globally the command of a package that has no name in package.json #​4761.
• Installation should work with lockfile created by pnpm v9.0.0-alpha.4

Platinum Sponsors

Gold Sponsors

Our Silver Sponsors

rollup/rollup (rollup)

v4.12.0

Compare Source

2024-02-16

Features

• Improve raw bundling performance by 10-15% when not using the cache or plugins that return an AST (#​5391)

Pull Requests

• #​5391: Improve performance by directly constructing AST from buffer (@​lukastaegert)
• #​5393: chore(deps): update dependency eslint-plugin-unicorn to v51 (@​renovate[bot])
• #​5394: chore(deps): update typescript-eslint monorepo to v7 (major) (@​renovate[bot])
• #​5395: chore(deps): lock file maintenance minor/patch updates (@​renovate[bot])

v4.11.0

Compare Source

2024-02-15

Features

• Add output.reexportProtoFromExternal option to disable special code for handling __proto__ reexports (#​5380)

Bug Fixes

• Ensure namespace reexport code can be parsed by cjs-module-lexer (#​5380)
• Throw when trying to reassing const variables (#​5388)

Pull Requests

• #​5380: fix: separately export __proto__ for compatibility with CJS Transpiler Re-exports (@​TrickyPi)
• #​5388: Add const reassign rule (@​TrickyPi)

v4.10.0

Compare Source

2024-02-10

Features

• Support base-36 and base-16 hashes again via new output.hashCharacters option (#​5371)

Bug Fixes

• Do not crash process for panics in native code but throw them as JavaScript errors (#​5383)

Pull Requests

• #​5359: chore(deps): update actions/cache action to v4 (@​renovate[bot])
• #​5360: chore(deps): update dependency pretty-ms to v9 (@​renovate[bot])
• #​5366: chore(deps): update dependency husky to v9 (@​renovate[bot])
• #​5367: chore(deps): update peter-evans/create-or-update-comment action to v4 (@​renovate[bot])
• #​5368: chore(deps): update peter-evans/find-comment action to v3 (@​renovate[bot])
• #​5369: chore(deps): lock file maintenance minor/patch updates (@​renovate[bot])
• #​5370: Fix dependency range for Node types (@​lukastaegert)
• #​5371: Implement "output.hashCharacters" option to define character set for file hashes (@​lukastaegert)
• #​5372: Roll back vitepress as 1.0.0-rc.40 breaks the development build (@​lukastaegert)
• #​5382: Update documentation (@​TrickyPi)
• #​5383: Catch Rust panics and then throw them in JS (@​TrickyPi)
• #​5384: chore(deps): update codecov/codecov-action action to v4 (@​renovate[bot])
• [#​5385](https:

---

Configuration

📅 Schedule: Branch creation - "before 4am on Monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[stackblitz]

Run & review this pull request in StackBlitz Codeflow.

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/@swc/[email protected]	environment, filesystem, shell	+2	398 kB	kdy1
npm/@sxzz/[email protected]	Transitive: environment, eval, filesystem, shell, unsafe	+270	76.8 MB	sxzz
npm/@types/[email protected]	None	+1	4.07 MB	types
npm/@vitejs/[email protected]	environment Transitive: eval, filesystem, network, shell, unsafe	+32	57.6 MB	vitebot
npm/@vitest/[email protected]	Transitive: environment, filesystem, network, shell, unsafe	+88	17.8 MB	vitestbot
npm/[email protected]	environment, filesystem, network, shell	0	134 kB	evanw
npm/[email protected]	environment, filesystem	+1	2.28 MB	lukastaegert
npm/[email protected]	filesystem Transitive: environment	+16	6.35 MB	sassbot
npm/[email protected]	environment, eval, filesystem Transitive: network, shell, unsafe	+109	42.1 MB	egoist
npm/[email protected]	Transitive: environment, filesystem, network, shell	+9	10.4 MB	antfu, patak, soda, ...2 more
npm/[email protected]	Transitive: environment, filesystem, network, shell, unsafe	+88	17.8 MB	antfu, oreanno, patak, ...1 more
npm/[email protected]	environment, eval Transitive: filesystem, unsafe	+24	47.2 MB	yyx990803
npm/[email protected]	Transitive: environment, eval, filesystem, network, shell, unsafe	+406	47.5 MB	evilebottnawi, jhnns, sokra, ...1 more

🚮 Removed packages: npm/@swc/[email protected], npm/@sxzz/[email protected], npm/@vitejs/[email protected], npm/@vitest/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected]

View full report↗︎