build(deps): bump vite and @quasar/app-vite

[dependabot]

Bumps vite to 6.0.6 and updates ancestor dependency @quasar/app-vite. These dependencies need to be updated together.

Updates vite from 2.9.18 to 6.0.6

Release notes

Sourced from vite's releases.

v6.0.6

Please refer to CHANGELOG.md for details.

v6.0.5

Please refer to CHANGELOG.md for details.

v6.0.4

Please refer to CHANGELOG.md for details.

v6.0.3

Please refer to CHANGELOG.md for details.

v6.0.2

Please refer to CHANGELOG.md for details.

create-vite@6.0.1

Please refer to CHANGELOG.md for details.

v6.0.1

Please refer to CHANGELOG.md for details.

create-vite@6.0.0

Please refer to CHANGELOG.md for details.

plugin-legacy@6.0.0

Please refer to CHANGELOG.md for details.

v6.0.0

Please refer to CHANGELOG.md for details.

v6.0.0-beta.10

Please refer to CHANGELOG.md for details.

v6.0.0-beta.9

Please refer to CHANGELOG.md for details.

v6.0.0-beta.8

Please refer to CHANGELOG.md for details.

v6.0.0-beta.7

Please refer to CHANGELOG.md for details.

v6.0.0-beta.6

Please refer to CHANGELOG.md for details.

v6.0.0-beta.5

Please refer to CHANGELOG.md for details.

v6.0.0-beta.4

Please refer to CHANGELOG.md for details.

... (truncated)

Changelog

Sourced from vite's changelog.

6.0.6 (2024-12-26)

• fix: replace runner-side path normalization with fetchModule-side resolve (#18361) (9f10261), closes #18361
• fix(css): resolve style tags in HTML files correctly for lightningcss (#19001) (afff05c), closes #19001
• fix(css): show correct error when unknown placeholder is used for CSS modules pattern in lightningcs (9290d85), closes #19070
• fix(resolve): handle package.json with UTF-8 BOM (#19000) (902567a), closes #19000
• fix(ssrTransform): preserve line offset when transforming imports (#19004) (1aa434e), closes #19004
• chore: fix typo in comment (#19067) (eb06ec3), closes #19067
• chore: update comment about build.target (#19047) (0e9e81f), closes #19047
• revert: unpin esbuild version (#19043) (8bfe247), closes #19043
• test(ssr): test virtual module with query (#19044) (a1f4b46), closes #19044

6.0.5 (2024-12-20)

• fix: esbuild regression (pin to 0.24.0) (#19027) (4359e0d), closes #19027

6.0.4 (2024-12-19)

• fix: this.resolve skipSelf should not skip for different id or import (#18903) (4727320), closes #18903
• fix: fallback terser to main thread when function options are used (#18987) (12b612d), closes #18987
• fix: merge client and ssr values for pluginContainer.getModuleInfo (#18895) (258cdd6), closes #18895
• fix(css): escape double quotes in url() when lightningcss is used (#18997) (3734f80), closes #18997
• fix(css): root relative import in sass modern API on Windows (#18945) (c4b532c), closes #18945
• fix(css): skip non css in custom sass importer (#18970) (21680bd), closes #18970
• fix(deps): update all non-major dependencies (#18967) (d88d000), closes #18967
• fix(deps): update all non-major dependencies (#18996) (2b4f115), closes #18996
• fix(optimizer): keep NODE_ENV as-is when keepProcessEnv is true (#18899) (8a6bb4e), closes #18899
• fix(ssr): recreate ssrCompatModuleRunner on restart (#18973) (7d6dd5d), closes #18973
• chore: better validation error message for dts build (#18948) (63b82f1), closes #18948
• chore(deps): update all non-major dependencies (#18916) (ef7a6a3), closes #18916
• chore(deps): update dependency @​rollup/plugin-node-resolve to v16 (#18968) (62fad6d), closes #18968
• refactor: make internal invoke event to use the same interface with handleInvoke (#18902) (27f691b), closes #18902
• refactor: simplify manifest plugin code (#18890) (1bfe21b), closes #18890
• test: test ModuleRunnerTransport invoke API (#18865) (e5f5301), closes #18865
• test: test output hash changes (#18898) (bfbb130), closes #18898

6.0.3 (2024-12-05)

• fix: handle postcss load unhandled rejections (#18886) (d5fb653), closes #18886
• fix: make handleInvoke interface compatible with invoke (#18876) (a1dd396), closes #18876
• fix: make result interfaces for ModuleRunnerTransport#invoke more explicit (#18851) (a75fc31), closes #18851
• fix: merge environments.ssr.resolve with root ssr config (#18857) (3104331), closes #18857
• fix: no permission to create vite config file (#18844) (ff47778), closes #18844
• fix: remove CSS import in CJS correctly in some cases (#18885) (690a36f), closes #18885

... (truncated)

Commits

• 5c2b4a0 release: v6.0.6
• 9290d85 fix(css): show correct error when unknown placeholder is used for CSS modules...
• afff05c fix(css): resolve style tags in HTML files correctly for lightningcss (#19001)
• eb06ec3 chore: fix typo in comment (#19067)
• 1aa434e fix(ssrTransform): preserve line offset when transforming imports (#19004)
• 902567a fix(resolve): handle package.json with UTF-8 BOM (#19000)
• 9f10261 fix: replace runner-side path normalization with fetchModule-side resolve (...
• 8bfe247 revert: unpin esbuild version (#19043)
• 0e9e81f chore: update comment about build.target (#19047)
• a1f4b46 test(ssr): test virtual module with query (#19044)
• Additional commits viewable in compare view

Updates @quasar/app-vite from 1.11.0 to 2.0.4

Release notes

Sourced from @​quasar/app-vite's releases.

@​quasar/app-vite-v2.0.4

Changes

• fix(app-vite): pin down esbuild to 0.24.0 due to compile error

Donations

Quasar Framework is an open-source MIT-licensed project made possible due to the generous contributions by sponsors and backers. If you are interested in supporting this project, please consider the following:

• Becoming a sponsor on Github
• One-off donation via PayPal

@​quasar/app-vite-v2.0.3

New

• feat(app-vite): quasar.config > build > envFilter

Donations

Quasar Framework is an open-source MIT-licensed project made possible due to the generous contributions by sponsors and backers. If you are interested in supporting this project, please consider the following:

• Becoming a sponsor on Github
• One-off donation via PayPal

@​quasar/app-vite-v2.0.2

Changes

• fix(app-vite): vue flags (external issue) -> use temporary fix until it gets fixed upstream

Donations

Quasar Framework is an open-source MIT-licensed project made possible due to the generous contributions by sponsors and backers. If you are interested in supporting this project, please consider the following:

• Becoming a sponsor on Github
• One-off donation via PayPal

@​quasar/app-vite-v2.0.1

Changes

• feat(app-vite): quasar new cmd -> js projects: create script setup files
• refactor(app-vite): "quasar new" cmd -> generate script setup when possible; simplify algorithm
• fix(app-vite): quasar build --mode bex -T [chrome|firefox] build product does not contain www directory #17683

Donations

Quasar Framework is an open-source MIT-licensed project made possible due to the generous contributions by sponsors and backers. If you are interested in supporting this project, please consider the following:

• Becoming a sponsor on Github
• One-off donation via PayPal

@​quasar/app-vite-v2.0.0

Here we go. Time to upgrade and to celebrate! 🥳 🎉🎉🎉

For all the new features & improvements & breaking changes, head to the Upgrade Guide. Make sure that the docs PWA gets updated (force it if you have to).

We recommend going through the upgrade guide even if upgrading from the betas or rc versions, to ensure nothing is missed out.

We've also updated the docs with our recommendations on the ESLint v9 configuration.

... (truncated)

Commits

• 119e5eb chore: update lock file
• 4002b65 fix(app-vite/app-webpack): pin down esbuild to 0.24.0 due to compile error
• cd8a527 chore(app-webpack): Bump version
• 74eb425 chore(app-vite): Bump version
• 73147e3 fix(template) add a missing comma to templates (#17715)
• 7a10b92 feat(docs): update the q/app upgrade guide to include new feature in x.0.3
• f33b896 feat(app-webpack): quasar.config > build > envFilter
• 83eeea6 feat(app-vite): quasar.config > build > envFilter
• c6d755e chore(ui): Bump version
• 0c06962 fix+perf(QCarousel/QStepper/QTabPanels): active panel renders twice initially...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/@quasar/app-vite@2.0.4	Transitive: environment, eval, filesystem, network, shell, unsafe	+442	1.11 GB	rstoenescu

🚮 Removed packages: npm/@quasar/app-vite@1.11.0

View full report↗︎