Skip to content

Bump vite, @vitejs/plugin-react, unplugin-fonts and vite-plugin-singlefile#28

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/multi-64ea46e661
Open

Bump vite, @vitejs/plugin-react, unplugin-fonts and vite-plugin-singlefile#28
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/multi-64ea46e661

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 22, 2026

Bumps vite, @vitejs/plugin-react, unplugin-fonts and vite-plugin-singlefile. These dependencies needed to be updated together.
Updates vite from 5.1.7 to 8.0.9

Release notes

Sourced from vite's releases.

v8.0.9

Please refer to CHANGELOG.md for details.

v8.0.8

Please refer to CHANGELOG.md for details.

v8.0.7

Please refer to CHANGELOG.md for details.

v8.0.6

Please refer to CHANGELOG.md for details.

v8.0.5

Please refer to CHANGELOG.md for details.

v8.0.4

Please refer to CHANGELOG.md for details.

create-vite@8.0.3

Please refer to CHANGELOG.md for details.

v8.0.3

Please refer to CHANGELOG.md for details.

create-vite@8.0.2

Please refer to CHANGELOG.md for details.

v8.0.2

Please refer to CHANGELOG.md for details.

create-vite@8.0.1

Please refer to CHANGELOG.md for details.

v8.0.1

Please refer to CHANGELOG.md for details.

plugin-legacy@8.0.1

Please refer to CHANGELOG.md for details.

create-vite@8.0.0

Please refer to CHANGELOG.md for details.

plugin-legacy@8.0.0

Please refer to CHANGELOG.md for details.

v8.0.0

Please refer to CHANGELOG.md for details.

v8.0.0-beta.18

Please refer to CHANGELOG.md for details.

... (truncated)

Changelog

Sourced from vite's changelog.

8.0.9 (2026-04-20)

Features

Bug Fixes

  • allow binding when strictPort is set but wildcard port is in use (#22150) (dfc8aa5)
  • build: emptyOutDir should happen for watch rebuilds (#22207) (ee52267)
  • bundled-dev: reject requests to HMR patch files in non potentially trustworthy origins (#22269) (868f141)
  • css: use unique key for cssEntriesMap to prevent same-basename collision (#22039) (374bb5d)
  • deps: update all non-major dependencies (#22219) (4cd0d67)
  • deps: update all non-major dependencies (#22268) (c28e9c1)
  • detect Deno workspace root (fix #22237) (#22238) (1b793c0)
  • dev: handle errors in watchChange hook (#22188) (fc08bda)
  • optimizer: handle more chars that will be sanitized (#22208) (3f24533)
  • skip fallback sourcemap generation for ?raw imports (#22148) (3ec9cda)

Documentation

Miscellaneous Chores

  • deps: update dependency dotenv-expand to v13 (#22271) (0a3887d)

8.0.8 (2026-04-09)

Features

Bug Fixes

  • avoid dns.getDefaultResultOrder temporary (#22202) (15f1c15)
  • ssr: class property keys hoisting matching imports (#22199) (e137601)

8.0.7 (2026-04-07)

Bug Fixes

  • use sync dns.getDefaultResultOrder instead of dns.promises (#22185) (5c05b04)

8.0.6 (2026-04-07)

Features

Bug Fixes

... (truncated)

Commits
  • ce729f5 release: v8.0.9
  • 605bb97 docs: update build CLI defaults (#22261)
  • c28e9c1 fix(deps): update all non-major dependencies (#22268)
  • 0a3887d chore(deps): update dependency dotenv-expand to v13 (#22271)
  • 868f141 fix(bundled-dev): reject requests to HMR patch files in non potentially trust...
  • 3ec9cda fix: skip fallback sourcemap generation for ?raw imports (#22148)
  • 3f24533 fix(optimizer): handle more chars that will be sanitized (#22208)
  • 1b793c0 fix: detect Deno workspace root (fix #22237) (#22238)
  • fc08bda fix(dev): handle errors in watchChange hook (#22188)
  • 374bb5d fix(css): use unique key for cssEntriesMap to prevent same-basename collision...
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for vite since your current version.


Updates @vitejs/plugin-react from 4.2.1 to 4.7.0

Release notes

Sourced from @​vitejs/plugin-react's releases.

plugin-react@4.7.0

Add HMR support for compound components (#518)

HMR now works for compound components like this:

const Root = () => <div>Accordion Root</div>
const Item = () => <div>Accordion Item</div>
export const Accordion = { Root, Item }

Return Plugin[] instead of PluginOption[] (#537)

The return type has changed from react(): PluginOption[] to more specialized type react(): Plugin[]. This allows for type-safe manipulation of plugins, for example:

// previously this causes type errors
react({ babel: { plugins: ['babel-plugin-react-compiler'] } })
  .map(p => ({ ...p, applyToEnvironment: e => e.name === 'client' }))

plugin-react@4.6.0

Add raw Rolldown support

This plugin only worked with Vite. But now it can also be used with raw Rolldown. The main purpose for using this plugin with Rolldown is to use react compiler.

plugin-react@4.5.2

Suggest @vitejs/plugin-react-oxc if rolldown-vite is detected #491

Emit a log which recommends @vitejs/plugin-react-oxc when rolldown-vite is detected to improve performance and use Oxc under the hood. The warning can be disabled by setting disableOxcRecommendation: false in the plugin options.

Use optimizeDeps.rollupOptions instead of optimizeDeps.esbuildOptions for rolldown-vite #489

This suppresses the warning about optimizeDeps.esbuildOptions being deprecated in rolldown-vite.

Add Vite 7-beta to peerDependencies range #497

React plugins are compatible with Vite 7, this removes the warning when testing the beta.

plugin-react@4.5.1

Add explicit semicolon in preambleCode #485

This fixes an edge case when using HTML minifiers that strips line breaks aggressively.

plugin-react@4.5.0

Add filter for rolldown-vite #470

Added filter so that it is more performant when running this plugin with rolldown-powered version of Vite.

... (truncated)

Changelog

Sourced from @​vitejs/plugin-react's changelog.

4.7.0 (2025-07-18)

Add HMR support for compound components (#518)

HMR now works for compound components like this:

const Root = () => <div>Accordion Root</div>
const Item = () => <div>Accordion Item</div>
export const Accordion = { Root, Item }

Return Plugin[] instead of PluginOption[] (#537)

The return type has changed from react(): PluginOption[] to more specialized type react(): Plugin[]. This allows for type-safe manipulation of plugins, for example:

// previously this causes type errors
react({ babel: { plugins: ['babel-plugin-react-compiler'] } })
  .map(p => ({ ...p, applyToEnvironment: e => e.name === 'client' }))

4.6.0 (2025-06-23)

Add raw Rolldown support

This plugin only worked with Vite. But now it can also be used with raw Rolldown. The main purpose for using this plugin with Rolldown is to use react compiler.

4.5.2 (2025-06-10)

Suggest @vitejs/plugin-react-oxc if rolldown-vite is detected #491

Emit a log which recommends @vitejs/plugin-react-oxc when rolldown-vite is detected to improve performance and use Oxc under the hood. The warning can be disabled by setting disableOxcRecommendation: true in the plugin options.

Use optimizeDeps.rollupOptions instead of optimizeDeps.esbuildOptions for rolldown-vite #489

This suppresses the warning about optimizeDeps.esbuildOptions being deprecated in rolldown-vite.

Add Vite 7-beta to peerDependencies range #497

React plugins are compatible with Vite 7, this removes the warning when testing the beta.

4.5.1 (2025-06-03)

Add explicit semicolon in preambleCode #485

This fixes an edge case when using HTML minifiers that strips line breaks aggressively.

4.5.0 (2025-05-23)

... (truncated)

Commits
  • 8041706 release: plugin-react@4.7.0
  • bbfd1b7 chore: update changelog for #537
  • fdc9d9a feat: add hmr support for compound components (#518)
  • d14f31d fix(deps): update all non-major dependencies (#568)
  • 22be17f build: use tsdown for plugin-react / plugin-react-oxc (#554)
  • 840f0b1 chore(deps): update prettier (#556)
  • cfe2912 fix(deps): update all non-major dependencies (#540)
  • 11f56d6 fix: return Plugin[] instead of PluginOption[] (#537)
  • 9da5e19 fix(deps): update all non-major dependencies (#519)
  • 1583c5d chore: remove Vite 7 beta from supported range (#517)
  • Additional commits viewable in compare view

Updates unplugin-fonts from 1.1.1 to 1.4.0

Release notes

Sourced from unplugin-fonts's releases.

v1.4.0

Features

Bug Fixes

  • improve vite 7 plugin typing (2b8f001)
  • loading custom font in nuxt module (d562a89)

v1.3.1

Full Changelog: cssninjaStudio/unplugin-fonts@v1.3.0...v1.3.1

v1.3.0

What's Changed

New Contributors

Full Changelog: cssninjaStudio/unplugin-fonts@v1.2.0...v1.3.0

v1.2.0

Features

New Contributors

Full Changelog: cssninjaStudio/unplugin-fonts@v1.1.1...v1.2.0

Changelog

Sourced from unplugin-fonts's changelog.

1.4.0 (2025-07-22)

Features

Bug Fixes

  • improve vite 7 plugin typing (2b8f001)
  • loading custom font in nuxt module (d562a89)

1.3.1 (2024-12-01)

Bug Fixes

1.3.0 (2024-12-01)

Features

Bug Fixes

1.2.0 (2024-12-01)

Features

  • add fontBaseUrl and preconnectUrl on google font provider (12684bc), closes #78
  • add fontBaseUrl on typekit font provider (724026b)
  • support vite 6.0 (#77) (38332ba)
Commits

Updates vite-plugin-singlefile from 2.0.1 to 2.3.3

Release notes

Sourced from vite-plugin-singlefile's releases.

v2.3.0

See CHANGELOG.MD

v2.2.1

See CHANGELOG.MD

v2.1.0

See CHANGELOG.MD. Vite 6.

v2.0.3

See CHANGELOG

Changelog

Sourced from vite-plugin-singlefile's changelog.

Change Log

Date Version Notes
2021-01-09 0.1.0 First post!
2021-01-14 0.2.0 Fix for newest Vite beta, including CSS support
2021-01-14 0.3.0 Borked npm update
2021-01-14 0.4.0 Work around regex accidental replacement variables issue.
2021-01-21 0.5.0 Add TypeScript declaration file (originally 0.1.1 with the wrong base, forgot to push 0.2-0.4)
2021-03-21 0.6.1 Minor tweak to allow node 12.x support
2021-12-12 0.6.2 Update deps. Fix relative asset paths (thanks @​prog-rajkamal!). Improved docs.
2021-12-31 0.6.3 Update deps. Fix parent relative asset paths (#17).
2022-03-01 0.7.0 Update deps. Warn for assets not inlined rather than adding comments (#21, thanks @​taybart!)
2022-03-02 0.7.1 Downgrade chalk, fixes #22
2022-04-03 0.7.2 Update deps. Remove unneeded code (#24).
2022-04-19 0.8.0 Option to remove unnecessary Vite loader (#26). Switch to ESM, update/remove deps (#25).
BREAKING CHANGE NOTE: requires that your package.json use type:module.
2022-04-23 0.9.0 Auto-config by default (#27).
Remove manualChunks (incompatible with inlineDynamicImports=true in vite 2.9.5
2022-06-14 0.10.0-beta Dual ESM/CJS exports (#30 and others)
Switched from transformIndexHtml to generateBundle to fix issue with UnoCSS (#32)
BREAKING: Removes inlined chunks before they are written to the file system.
Add new optional inlinePattern glob pattern to limit inlining (implements #31)
Removed Chalk -- it's pretty, but not worth the ESM-only hassle
More permissive script tag parsing (solves #37)
Added some basic tests (Jest)
Added eslint, removed unnecessary escapes for "." in regex patterns
2022-06-16 0.10.0-beta.2 Add support for .mjs and .cjs file extensions (#38)
2022-07-01 0.10.0 Fix where some bundles are undefined (#41)
Remove filename comment from injected scripts (#39)
Remove unneeded Vite Preload marker (#34)
Make jest a dev dependency only (#40)
2022-07-23 0.11.0 Widen version range for Vite peer dependency to support Vite 3.0 (#46, #47, thanks @​valtism!)
2022-08-06 0.11.1 Check for null code due to worker URLs (#49, thanks @​daniel-kun!)
2022-09-21 0.12.0 Set config base to undefined in recommended options (#56)
Remove optional type attribute from style tags (#53, thanks @​kidonng!)
Remove all VITE_PRELOAD markers (#55)
Point package.json to types file (#54, thanks @​kidonng!)
Update various dependencies
Add README note about SVG (#52)
2022-09-21 0.12.1 Rebase... doh!
2022-10-01 0.12.2 Resolve preload script issue (#58)
2022-10-15 0.12.3 Update various dependencies (including Rollup 3.x), ran tests, no other changes
2022-11-07 0.13.0 Add deleteInlinedFiles option (#62, thanks @​jaerod95!). Update dependencies.
2022-11-10 0.13.1 Add node v14 support for non-Vue projects (#64, thanks @​aloisklink! See also #60, #61)
Add CI testing via GitHub action (#65, thanks @​aloisklink!)
2022-12-10 0.13.2 Confirmed compatibility with Rollup v3 and Vite v4, loosened package.json versions required
2023-02-11 0.13.3 Bump build dependencies, update README
2023-04-01 0.13.5 Allow reporting of compressed bundle size (#70, #71, thanks @​mojoaxel!)
Fix where polfill not removed when minify disabled (#72)

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump vite, @vitejs/plugin-react, unplugin-fonts and vite-plugin-singl…
1f25d5b 
…efile

Bumps [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite), [@vitejs/plugin-react](https://github.com/vitejs/vite-plugin-react/tree/HEAD/packages/plugin-react), [unplugin-fonts](https://github.com/cssninjaStudio/unplugin-fonts) and [vite-plugin-singlefile](https://github.com/richardtallent/vite-plugin-singlefile). These dependencies needed to be updated together.

Updates `vite` from 5.1.7 to 8.0.9
- [Release notes](https://github.com/vitejs/vite/releases)
- [Changelog](https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md)
- [Commits](https://github.com/vitejs/vite/commits/v8.0.9/packages/vite)

Updates `@vitejs/plugin-react` from 4.2.1 to 4.7.0
- [Release notes](https://github.com/vitejs/vite-plugin-react/releases)
- [Changelog](https://github.com/vitejs/vite-plugin-react/blob/main/packages/plugin-react/CHANGELOG.md)
- [Commits](https://github.com/vitejs/vite-plugin-react/commits/plugin-react@4.7.0/packages/plugin-react)

Updates `unplugin-fonts` from 1.1.1 to 1.4.0
- [Release notes](https://github.com/cssninjaStudio/unplugin-fonts/releases)
- [Changelog](https://github.com/cssninjaStudio/unplugin-fonts/blob/main/CHANGELOG.md)
- [Commits](cssninjaStudio/unplugin-fonts@v1.1.1...v1.4.0)

Updates `vite-plugin-singlefile` from 2.0.1 to 2.3.3
- [Release notes](https://github.com/richardtallent/vite-plugin-singlefile/releases)
- [Changelog](https://github.com/richardtallent/vite-plugin-singlefile/blob/main/CHANGELOG.md)
- [Commits](https://github.com/richardtallent/vite-plugin-singlefile/commits)

---
updated-dependencies:
- dependency-name: vite
  dependency-version: 8.0.9
  dependency-type: direct:development
- dependency-name: "@vitejs/plugin-react"
  dependency-version: 4.7.0
  dependency-type: direct:development
- dependency-name: unplugin-fonts
  dependency-version: 1.4.0
  dependency-type: direct:development
- dependency-name: vite-plugin-singlefile
  dependency-version: 2.3.3
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Apr 22, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants