Skip to content

v0.4.6 — Security: Vite dev server patch

Choose a tag to compare

@PaulAtkins88 PaulAtkins88 released this 07 Apr 23:06
b9a0959

What's Changed

Security

  • Bumped vite (dev dependency) from 7.3.0 to 7.3.2 — patches three server.fs path traversal vulnerabilities in the Vite dev server:

Note: These vulnerabilities only affect the Vite development server (pnpm dev). Production builds are not affected.

Upgrading

No database migrations required. Drop-in upgrade from v0.4.5.


Full Changelog: v0.4.5...v0.4.6