chore(deps): update dependency @vitejs/plugin-react to v3

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
@vitejs/plugin-react (source)	^1.3.2 -> ^3.0.0

---

Release Notes

vitejs/vite-plugin-react

v3.0.1

Compare Source

• fix: don't invalidate when code is invalid (#​67) (9231a86), closes #​67
• fix(deps): update all non-major dependencies (#​69) (0a8e099), closes #​69

v3.0.0

Compare Source

• chore: update vite to ^4.0.0 (#​57) (941b20d), closes #​57
• chore(deps): update rollup (#​56) (af25ec7), closes #​56
• chore!: drop ast check for refresh boundary (#​43) (e43bd76), closes #​43

v2.2.0

Compare Source

• fix(deps): update all non-major dependencies (#​10610) (bb95467), closes #​10610
• fix(plugin-react): update package.json (#​10479) (7f45eb5), closes #​10479
• chore(deps): update all non-major dependencies (#​10393) (f519423), closes #​10393

v2.1.0

Compare Source

• fix(plugin-react): duplicate __self prop and __source prop (#​9387) (c89de3a), closes #​9387

v2.0.1

Compare Source

• fix: don't count class declarations as react fast refresh boundry (fixes #​3675) (#​8887) (5a18284), closes #​3675 #​8887
• fix: mention that Node.js 13/15 support is dropped (fixes #​9113) (#​9116) (2826303), closes #​9113 #​9116
• fix(deps): update all non-major dependencies (#​9176) (31d3b70), closes #​9176
• fix(deps): update all non-major dependencies (#​9575) (8071325), closes #​9575
• fix(plugin-react): wrong substitution causes React is not defined (#​9386) (8a5b575), closes #​9386
• docs: fix server options link (#​9242) (29db3ea), closes #​9242

v2.0.0

Compare Source

• chore: 3.0 release notes and bump peer deps (#​9072) (427ba26), closes #​9072
• fix(react): sourcemap incorrect warning and classic runtime sourcemap (#​9006) (bdae7fa), closes #​9006

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[socket-security]

Socket Security Pull Request Report

Dependency issues detected. If you merge this pull request, you will not be alerted to the instances of these issues again.

📜 Install scripts

Install scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.

Packages should not be running non-essential scripts during install and there are often solutions to problems people solve with install scripts that can be run at publish time instead.

Package	Script field	Source
esbuild@0.16.17 (added)	postinstall	package.json via @vitejs/plugin-react@3.0.1

Pull request report summary

Issue	Status
Install scripts	⚠️ 1 issue
Native code	✅ 0 issues
Bin script confusion	✅ 0 issues
Bin script shell injection	✅ 0 issues
Unresolved require	✅ 0 issues
Invalid package.json	✅ 0 issues
HTTP dependency	✅ 0 issues
Git dependency	✅ 0 issues
Potential typo squat	✅ 0 issues
Known Malware	✅ 0 issues
Telemetry	✅ 0 issues
Protestware/Troll package	✅ 0 issues

Bot Commands

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of package-name@version specifiers. e.g. @SocketSecurity ignore foo@1.0.0 bar@2.4.2

• @SocketSecurity ignore esbuild@0.16.17

⚠️ Please accept the latest app permissions to ensure bot commands work properly. Accept the new permissions here.

Powered by socket.dev