fix(deps): address CVE-2026-39363 in vite

[taymoor89]

Summary

Fixes CVE-2026-39363 (GHSA-p9ff-h696-f583): Vite Vulnerable to Arbitrary File Read via Vite Dev Server WebSocket (Dependabot alert #201).

Changes Made

• Updated vite from 7.3.1 to 7.3.2 across all 15 packages and apps

Related Issues

• https://github.com/cloudoperators/juno/security/dependabot/201

Testing Instructions

1. pnpm install
2. pnpm run build
3. pnpm run test
4. Verify in ArgoCD preview

Checklist

• I have performed a self-review of my code.
• I have commented my code, particularly in hard-to-understand areas.
• I have added tests that prove my fix is effective or that my feature works.
• New and existing unit tests pass locally with my changes.
• I have made corresponding changes to the documentation (if applicable).
• My changes generate no new warnings or errors.
• I have created a changeset for my changes.

PR Manifesto

Review the PR Manifesto for best practises.

[changeset-bot]

🦋 Changeset detected

Latest commit: 98d07d5

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 15 packages

Name	Type
@cloudoperators/juno-communicator	Patch
@cloudoperators/greenhouse-auth-provider	Patch
@cloudoperators/juno-k8s-client	Patch
@cloudoperators/juno-messages-provider	Patch
@cloudoperators/juno-oauth	Patch
@cloudoperators/juno-package-template	Patch
@cloudoperators/juno-ui-components	Patch
@cloudoperators/juno-url-state-provider	Patch
@cloudoperators/juno-app-greenhouse	Patch
@cloudoperators/juno-app-heureka	Patch
@cloudoperators/juno-app-doop	Patch
@cloudoperators/juno-app-example	Patch
@cloudoperators/juno-app-supernova	Patch
@cloudoperators/juno-app-carbon	Patch
@cloudoperators/juno-app-template	Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

[github-actions]

PR Preview Action v1.8.1
Preview removed because the pull request was closed.
2026-04-07 08:29 UTC