Skip to content

Bump esbuild, vite, @vitest/coverage-v8 and vitest#691

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/multi-bb388f797f
Open

Bump esbuild, vite, @vitest/coverage-v8 and vitest#691
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/multi-bb388f797f

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Mar 18, 2026

Bumps esbuild to 0.27.3 and updates ancestor dependencies esbuild, vite, @vitest/coverage-v8 and vitest. These dependencies need to be updated together.

Updates esbuild from 0.21.5 to 0.27.3

Release notes

Sourced from esbuild's releases.

v0.27.3

  • Preserve URL fragments in data URLs (#4370)

    Consider the following HTML, CSS, and SVG:

    • index.html:

      <!DOCTYPE html>
<html>
  <head><link rel="stylesheet" href="icons.css"></head>
  <body><div class="triangle"></div></body>
</html>

    • icons.css:

      .triangle {
  width: 10px;
  height: 10px;
  background: currentColor;
  clip-path: url(./triangle.svg#x);
}

    • triangle.svg:

      <svg xmlns="http://www.w3.org/2000/svg">
  <defs>
    <clipPath id="x">
      <path d="M0 0H10V10Z"/>
    </clipPath>
  </defs>
</svg>

    The CSS uses a URL fragment (the #x) to reference the clipPath element in the SVG file. Previously esbuild's CSS bundler didn't preserve the URL fragment when bundling the SVG using the dataurl loader, which broke the bundled CSS. With this release, esbuild will now preserve the URL fragment in the bundled CSS:

    /* icons.css */
.triangle {
  width: 10px;
  height: 10px;
  background: currentColor;
  clip-path: url('data:image/svg+xml,<svg xmlns="http://www.w3.org/2000/svg"><defs><clipPath id="x"><path d="M0 0H10V10Z"/></clipPath></defs></svg>#x');
}

... (truncated)

Changelog

Sourced from esbuild's changelog.

Changelog: 2024

This changelog documents all esbuild versions published in the year 2024 (versions 0.19.12 through 0.24.2).

0.24.2

  • Fix regression with --define and import.meta (#4010, #4012, #4013)

    The previous change in version 0.24.1 to use a more expression-like parser for define values to allow quoted property names introduced a regression that removed the ability to use --define:import.meta=.... Even though import is normally a keyword that can't be used as an identifier, ES modules special-case the import.meta expression to behave like an identifier anyway. This change fixes the regression.

    This fix was contributed by @​sapphi-red.

0.24.1

  • Allow es2024 as a target in tsconfig.json (#4004)

    TypeScript recently added es2024 as a compilation target, so esbuild now supports this in the target field of tsconfig.json files, such as in the following configuration file:

    {
  "compilerOptions": {
    "target": "ES2024"
  }
}

    As a reminder, the only thing that esbuild uses this field for is determining whether or not to use legacy TypeScript behavior for class fields. You can read more in the documentation.

    This fix was contributed by @​billyjanitsch.

  • Allow automatic semicolon insertion after get/set

    This change fixes a grammar bug in the parser that incorrectly treated the following code as a syntax error:

    class Foo {
  get
  *x() {}
  set
  *y() {}
}

    The above code will be considered valid starting with this release. This change to esbuild follows a similar change to TypeScript which will allow this syntax starting with TypeScript 5.7.

  • Allow quoted property names in --define and --pure (#4008)

    The define and pure API options now accept identifier expressions containing quoted property names. Previously all identifiers in the identifier expression had to be bare identifiers. This change now makes --define and --pure consistent with --global-name, which already supported quoted property names. For example, the following is now possible:

    

    • 






... (truncated)





Commits

    

  • 9129e00 publish 0.27.3 to npm
    • 

  • e20e411 small fix to release notes
    • 

  • 0dc0f2d fix #4322: parse and print CSS @scope rules
    • 

  • 55fe391 update firefox css gradient support
    • 

  • 2c35297 update gradient lowering transform
    • 

  • 9209e44 Update Go to 1.25.7 (#4388)
    • 

  • e8d861b close #4374: compat table for the using feature
    • 

  • 19b8887 no longer need williamkapke/node-compat-table
    • 

  • 7e44218 the kangax/compat-table repo moved to a new url
    • 

  • 23b9338 run make update-compat-table
    • 

  • Additional commits viewable in compare view
    • 






Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for esbuild since your current version.






Updates vite from 5.4.21 to 8.0.0



Release notes

Sourced from vite's releases.




create-vite@8.0.0


Please refer to CHANGELOG.md for details.


plugin-legacy@8.0.0


Please refer to CHANGELOG.md for details.


v8.0.0


Please refer to CHANGELOG.md for details.


v8.0.0-beta.18


Please refer to CHANGELOG.md for details.


v8.0.0-beta.17


Please refer to CHANGELOG.md for details.


v8.0.0-beta.16


Please refer to CHANGELOG.md for details.


v8.0.0-beta.15


Please refer to CHANGELOG.md for details.


v8.0.0-beta.14


Please refer to CHANGELOG.md for details.


v8.0.0-beta.13


Please refer to CHANGELOG.md for details.


v8.0.0-beta.12


Please refer to CHANGELOG.md for details.


v8.0.0-beta.11


Please refer to CHANGELOG.md for details.


v8.0.0-beta.10


Please refer to CHANGELOG.md for details.


v8.0.0-beta.9


Please refer to CHANGELOG.md for details.


v8.0.0-beta.8


Please refer to CHANGELOG.md for details.


v8.0.0-beta.7


Please refer to CHANGELOG.md for details.


v8.0.0-beta.6


Please refer to CHANGELOG.md for details.


v8.0.0-beta.5


Please refer to CHANGELOG.md for details.





... (truncated)





Changelog

Sourced from vite's changelog.




8.0.0 (2026-03-12)


Vite 8 is here!


Today, we're thrilled to announce the release of the next Vite major:



⚠ BREAKING CHANGES


    

  • remove import.meta.hot.accept resolution fallback (#21382)
    • 

  • update default browser target (#21193)
    • 

  • the epic rolldown-vite merge (#21189)
    • 



Features






... (truncated)





Commits

    

  • ea68a88 chore(deps): update rolldown-related dependencies (#20810)
    • 

  • 693d255 release: v7.1.7
    • 

  • 98a3484 fix(hmr): wait for import.meta.hot.prune callbacks to complete before runni...
    • 

  • 9f32b1d fix(hmr): trigger prune event when import is removed from non hmr module (#20...
    • 

  • 9f2247c fix(deps): update all non-major dependencies (#20811)
    • 

  • 105abe8 fix(glob): handle glob imports from folders starting with dot (#20800)
    • 

  • 4c4583c fix(build): fix ssr environment emitAssets: true when `sharedConfigBuild: t...
    • 

  • 9bc9d12 fix(client): use CSP nonce when rendering error overlay (#20791)
    • 

  • 54377f7 release: v7.1.6
    • 

  • 88af2ae fix(deps): update all non-major dependencies (#20773)
    • 

  • Additional commits viewable in compare view
    • 







Updates @vitest/coverage-v8 from 1.6.1 to 4.1.0



Release notes

Sourced from @​vitest/coverage-v8's releases.




v4.1.0


Vitest 4.1 is out!


This release page lists all changes made to the project during the 4.1 beta. To get a review of all the new features, read our blog post.


   🚀 Features






... (truncated)





Commits

    

  • 4150b91 chore: release v4.1.0
    • 

  • 0c2c013 chore: release v4.1.0-beta.6
    • 

  • 689a22a fix(browser): types of getCDPSession and cdp() (#9716)
    • 

  • 94eb73b chore(deps): update eslint packages (#9615)
    • 

  • 8c96bb0 refator: update links to npmx (#9783)
    • 

  • aaf7758 chore: standardize packages README (#9776)
    • 

  • 57cbe39 chore(deps): update ast-v8-to-istanbul to v1 (#9755)
    • 

  • 79672d7 chore: release v4.1.0-beta.5
    • 

  • 1d9e3b3 chore: release v4.1.0-beta.4
    • 

  • 4ff8c6f chore(build): raise build target to the minimum supported, don't bundle utils...
    • 

  • Additional commits viewable in compare view
    • 






Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​vitest/coverage-v8 since your current version.






Updates vitest from 1.6.1 to 4.1.0



Release notes

Sourced from vitest's releases.




v4.1.0


Vitest 4.1 is out!


This release page lists all changes made to the project during the 4.1 beta. To get a review of all the new features, read our blog post.


   🚀 Features






... (truncated)





Commits

    

  • 4150b91 chore: release v4.1.0
    • 

  • 1de0aa2 fix: correctly identify concurrent test during static analysis (#9846)
    • 

  • c3cac1c fix: use isAgent check, not just TTY, for watch mode (#9841)
    • 

  • eab68ba chore(deps): update all non-major dependencies (#9824)
    • 

  • 031f02a fix: allow catch/finally for async assertion (#9827)
    • 

  • 3e9e096 feat(reporters): add agent reporter to reduce ai agent token usage (#9779)
    • 

  • 0c2c013 chore: release v4.1.0-beta.6
    • 

  • 8181e06 fix: hideSkippedTests should not hide test.todo (fix #9562) (#9781)
    • 

  • a8216b0 fix: manual and redirect mock shouldn't load or transform original module...
    • 

  • 689a22a fix(browser): types of getCDPSession and cdp() (#9716)
    • 

  • Additional commits viewable in compare view
    • 






Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for vitest since your current version.






Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.





Dependabot commands and options



You can trigger Dependabot actions by commenting on this PR:


    

  • @dependabot rebase will rebase this PR
    • 

  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • 

  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
    • 

  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • 

  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • 

  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    
You can disable automated security fix PRs for this repo from the Security Alerts page.
    • 




    

  
  



      


          

          
  
  

    
  
    
    

  

  

  



                    

          
        





  





    



      

  
        

  

      

  
  

  
          

  

    

      


  

      
        @dependabot
  




      

        
          Bump esbuild, vite, @vitest/coverage-v8 and vitest
        

          
                        
      


      

        

    
    
    

  

    


      


      

        

          

    
    
    

  

  

    
  



        

      


      

        
          e47f5b2
        
      

    

  

    

      
Bumps [esbuild](https://github.com/evanw/esbuild) to 0.27.3 and updates ancestor dependencies [esbuild](https://github.com/evanw/esbuild), [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite), [@vitest/coverage-v8](https://github.com/vitest-dev/vitest/tree/HEAD/packages/coverage-v8) and [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest). These dependencies need to be updated together.


Updates `esbuild` from 0.21.5 to 0.27.3
- [Release notes](https://github.com/evanw/esbuild/releases)
- [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG-2024.md)
- [Commits](evanw/esbuild@v0.21.5...v0.27.3)

Updates `vite` from 5.4.21 to 8.0.0
- [Release notes](https://github.com/vitejs/vite/releases)
- [Changelog](https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md)
- [Commits](https://github.com/vitejs/vite/commits/create-vite@8.0.0/packages/vite)

Updates `@vitest/coverage-v8` from 1.6.1 to 4.1.0
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Commits](https://github.com/vitest-dev/vitest/commits/v4.1.0/packages/coverage-v8)

Updates `vitest` from 1.6.1 to 4.1.0
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Commits](https://github.com/vitest-dev/vitest/commits/v4.1.0/packages/vitest)

---
updated-dependencies:
- dependency-name: esbuild
  dependency-version: 0.27.3
  dependency-type: indirect
- dependency-name: vite
  dependency-version: 8.0.0
  dependency-type: direct:development
- dependency-name: "@vitest/coverage-v8"
  dependency-version: 4.1.0
  dependency-type: direct:development
- dependency-name: vitest
  dependency-version: 4.1.0
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>

    







  








      

  
            

    

      
    

    


      


          @dependabot
dependabot
bot



            added
      

  dependencies

  Pull requests that update a dependency file

      

  javascript

  Pull requests that update javascript code

  labels


      Mar 18, 2026

    

  








      

  
      



  

  @cloudflare-workers-and-pages






  



    

      

  

    

      

          
    
    

  


        
            
  
      
              Copy link

  

              
  
      
                Copy Markdown

  

        
      

    


    

        



        

    

  


  

    

      
          
      

      
            cloudflare-workers-and-pages
  bot

      

      

      commented


        Mar 18, 2026


      
  

  

    
      

        
          edited
          
        
        
      

    
    
      
  
        
      Loading


  
    
  



    


  





      


        



  
    

      
          
Deploying talishar-fe-temp with  Cloudflare Pages  Cloudflare Pages


Latest commit: 
e47f5b2



Status:🚫  Build failed.




View logs


      		
    

  





        


            

            
            

              
            

        

      


      

            
  
  

    
  
    
    

  

  

  


    
















  
  

    

      

  










  








  
      

  
    Sign up for free
    to join this conversation on GitHub.
    Already have an account?
    Sign in to comment


  










      

  

    
    

    

  

    Reviewers
  


    

    No reviews






    
    
    

    

  


      
  

    Assignees
  



        


    No one assigned







      


  


  

    Labels
  



    

      

    dependencies

  Pull requests that update a dependency file
  

    javascript

  Pull requests that update javascript code








      

  

    

        

    Projects
  


        




    None yet




  



      


  

    
  

    Milestone
  


      No milestone





    
      
          


  

    

      
        

          
  

    Development
  



            


Successfully merging this pull request may close these issues.





  
  



      
    

  




      

    

  
        

  

    

      0 participants