Skip to content

build(deps): bump vite from 5.4.21 to 6.4.3#4290

Merged
MarshallOfSound merged 1 commit into
mainfrom
dependabot/npm_and_yarn/vite-7.3.5
Jun 28, 2026
Merged

build(deps): bump vite from 5.4.21 to 6.4.3#4290
MarshallOfSound merged 1 commit into
mainfrom
dependabot/npm_and_yarn/vite-7.3.5

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 17, 2026

Copy link
Copy Markdown
Contributor

Bumps vite from 5.4.21 to 6.4.3.

Release notes

Sourced from vite's releases.

v6.4.3

Please refer to CHANGELOG.md for details.

v6.4.2

Please refer to CHANGELOG.md for details.

v6.4.1

Please refer to CHANGELOG.md for details.

v6.4.0

Please refer to CHANGELOG.md for details.

v6.3.7

Please refer to CHANGELOG.md for details.

v6.3.6

Please refer to CHANGELOG.md for details.

Changelog

Sourced from vite's changelog.

6.4.3 (2026-06-01)

6.4.2 (2026-04-06)

6.4.1 (2025-10-20)

6.4.0 (2025-10-15)

  • feat: allow passing down resolved config to vite's createServer (#20932) (ca6455e), closes #20932

6.3.7 (2025-10-14)

  • fix(esbuild): inject esbuild helpers correctly for esbuild 0.25.9+ (#20940) (c59a222), closes #20940

6.3.6 (2025-09-08)

6.3.5 (2025-05-05)

6.3.4 (2025-04-30)

  • fix: check static serve file inside sirv (#19965) (c22c43d), closes #19965
  • fix(optimizer): return plain object when using require to import externals in optimized dependenci (efc5eab), closes #19940

... (truncated)

Commits

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jun 17, 2026
@dependabot dependabot Bot requested a review from a team as a code owner June 17, 2026 02:45
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jun 17, 2026
@socket-security

socket-security Bot commented Jun 17, 2026

Copy link
Copy Markdown

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security
Vulnerability Quality Maintenance License
Updatedvite@​7.3.3 ⏵ 8.0.1499 +1838298100
Updatedvite@​7.3.3 ⏵ 6.4.394 -4100 +1883 +198100

View full report

Bumps [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) from 5.4.21 to 6.4.3.
- [Release notes](https://github.com/vitejs/vite/releases)
- [Changelog](https://github.com/vitejs/vite/blob/v6.4.3/packages/vite/CHANGELOG.md)
- [Commits](https://github.com/vitejs/vite/commits/v6.4.3/packages/vite)

---
updated-dependencies:
- dependency-name: vite
  dependency-version: 7.3.5
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title build(deps): bump vite from 7.3.3 to 7.3.5 build(deps): bump vite from 5.4.21 to 6.4.3 Jun 28, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/vite-7.3.5 branch from 4ff0665 to c6c1d8f Compare June 28, 2026 16:44
@MarshallOfSound MarshallOfSound added this pull request to the merge queue Jun 28, 2026
Merged via the queue into main with commit 7867db6 Jun 28, 2026
15 checks passed
@MarshallOfSound MarshallOfSound deleted the dependabot/npm_and_yarn/vite-7.3.5 branch June 28, 2026 17:32
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant