chore(deps): bump the dependencies group across 1 directory with 8 updates by dependabot[bot] · Pull Request #170 · ubmit/ubmit.dev

dependabot · 2026-04-28T02:22:29Z

Bumps the dependencies group with 7 updates in the / directory:

Package	From	To
@astrojs/mdx	`5.0.2`	`5.0.4`
@astrojs/rss	`4.0.17`	`4.0.18`
@astrojs/sitemap	`3.7.1`	`3.7.2`
astro	`6.0.6`	`6.1.9`
@astrojs/upgrade	`0.7.1`	`0.7.2`
@tailwindcss/vite	`4.2.2`	`4.2.4`
tailwindcss	`4.2.2`	`4.2.4`

Updates @astrojs/mdx from 5.0.2 to 5.0.4

Release notes

Sourced from @astrojs/mdx's releases.

@astrojs/mdx@5.0.4

Patch Changes

Updated dependencies [f3485c3]:

@astrojs/markdown-remark@7.1.1

@astrojs/mdx@5.0.3

Patch Changes

Updated dependencies [10a1a5a]:

@astrojs/markdown-remark@7.1.0

Changelog

Sourced from @astrojs/mdx's changelog.

5.0.4

Patch Changes

Updated dependencies [f3485c3]:

@astrojs/markdown-remark@7.1.1

5.0.3

Patch Changes

Updated dependencies [10a1a5a]:

@astrojs/markdown-remark@7.1.0

Commits

21ca872 [ci] release (#16399)
99464ed Bump vite, picomatch, and unstorage to latest patch versions (#16448)
f7566b8 refactor: unify test setup (#16445)
8e13469 refactor(mdx): add SpyIntegrationLogger for test (#16384)
50f0dce refactor(mdx): migrate tests to typescript (#16359)
7454854 fix(astro): Fix isHTMLString check failing in multi-realm environments (#16...
ade6f51 refactor(mdx): more unit tests, less integrations (#16158)
88fcc98 fix integrations links across docs (#16098)
4a6ff2a [ci] release (#16020)
a2c15bb fix(deps): update astro dependencies (#15913)
See full diff in compare view

Updates @astrojs/rss from 4.0.17 to 4.0.18

Release notes

Sourced from @astrojs/rss's releases.

@astrojs/rss@4.0.18

Patch Changes

#16037 fdd2c5a Thanks @blimmer! - Unpin fast-xml-parser to ^5.5.7 to resolve entity expansion CVEs

Changelog

Sourced from @astrojs/rss's changelog.

4.0.18

Patch Changes

#16037 fdd2c5a Thanks @blimmer! - Unpin fast-xml-parser to ^5.5.7 to resolve entity expansion CVEs

Commits

4a6ff2a [ci] release (#16020)
fdd2c5a fix(rss): unpin fast-xml-parser to resolve entity expansion CVEs (#16037)
See full diff in compare view

Updates @astrojs/sitemap from 3.7.1 to 3.7.2

Release notes

Sourced from @astrojs/sitemap's releases.

@astrojs/sitemap@3.7.2

Patch Changes

#15455 babf57f Thanks @AhmadYasser1! - Fixes i18n fallback pages missing from the generated sitemap when using fallbackType: 'rewrite'.

Changelog

Sourced from @astrojs/sitemap's changelog.

3.7.2

Patch Changes

#15455 babf57f Thanks @AhmadYasser1! - Fixes i18n fallback pages missing from the generated sitemap when using fallbackType: 'rewrite'.

Commits

4a6ff2a [ci] release (#16020)
28079e9 [ci] format
babf57f feat(astro): Add fallbackRoutes to astro:routes:resolved's return type and ...
See full diff in compare view

Updates astro from 6.0.6 to 6.1.9

Release notes

Sourced from astro's releases.

astro@6.1.9

Patch Changes

#16448 99464ed Thanks @matthewp! - Updates vite, picomatch, and unstorage to latest patch versions

#16422 a3951d7 Thanks @matthewp! - Hardens astro-island export resolution and hydration error handling for malformed component metadata

#16420 e21de1d Thanks @matthewp! - Hardens Astro's error overlay and server logging paths to avoid unsafe HTML insertion and format-string interpolation

#16419 f3485c3 Thanks @matthewp! - Hardens nested object and package metadata lookups to ignore prototype keys in content handling and project scaffolding

#16022 a002540 Thanks @mathieumaf! - Fixes an issue where i18n domains would return 404 when trailingSlash is set to never.

Updated dependencies [99464ed, f3485c3]:

@astrojs/internal-helpers@0.9.0

@astrojs/markdown-remark@7.1.1

astro@6.1.8

Patch Changes

#16367 a6866a7 Thanks @ematipico! - Fixes an issue where build output files could contain special characters (!, ~, {, }) in their names, causing deploy failures on platforms like Netlify.

#16381 217c5b3 Thanks @ematipico! - Slightly improved the performance of the dev server by caching the internal crawling of the dependencies of a project.

#16348 7d26cd7 Thanks @ocavue! - Fixes a bug where emitted assets during a client build would contain always fresh, new hashes in their name. Now the build should be more stable.

#16317 d012bfe Thanks @das-peter! - Fixes a bug where allowedDomains weren't correctly propagated when using the development server.

#16379 5a84551 Thanks @martrapp! - Improves Vue scoped style handling in DEV mode during client router navigation.

#16317 d012bfe Thanks @das-peter! - Adds tests to verify settings are properly propagated when using the development server.

#16282 5b0fdaa Thanks @jmurty! - Fixes build errors on platforms with skew protection enabled (e.g. Vercel, Netlify) for inter-chunk Javascript using dynamic imports

Updated dependencies [e0b240e]:

@astrojs/telemetry@3.3.1

astro@6.1.7

Patch Changes

#16027 c62516b Thanks @fkatsuhiro! - Fixes a bug where remote image dimensions were not validated during static builds on Netlify.

#16311 94048f2 Thanks @Arecsu! - Fixes --port flag being ignored after a Vite-triggered server restart (e.g. when a .env file changes)

#16316 0fcd04c Thanks @ematipico! - Fixes the /_image endpoint accepting an arbitrary f=svg query parameter and serving non-SVG content as image/svg+xml. The endpoint now validates that the source is actually SVG before honoring f=svg, matching the same guard already enforced on the <Image> component path.

astro@6.1.6

Patch Changes

#16202 b5c2fba Thanks @matthewp! - Fixes Actions failing with ActionsWithoutServerOutputError when using output: 'static' with an adapter

... (truncated)

Changelog

Sourced from astro's changelog.

6.1.9

Patch Changes

#16448 99464ed Thanks @matthewp! - Updates vite, picomatch, and unstorage to latest patch versions

#16422 a3951d7 Thanks @matthewp! - Hardens astro-island export resolution and hydration error handling for malformed component metadata

#16420 e21de1d Thanks @matthewp! - Hardens Astro's error overlay and server logging paths to avoid unsafe HTML insertion and format-string interpolation

#16419 f3485c3 Thanks @matthewp! - Hardens nested object and package metadata lookups to ignore prototype keys in content handling and project scaffolding

#16022 a002540 Thanks @mathieumaf! - Fixes an issue where i18n domains would return 404 when trailingSlash is set to never.

Updated dependencies [99464ed, f3485c3]:

@astrojs/internal-helpers@0.9.0

@astrojs/markdown-remark@7.1.1

6.1.8

Patch Changes

#16367 a6866a7 Thanks @ematipico! - Fixes an issue where build output files could contain special characters (!, ~, {, }) in their names, causing deploy failures on platforms like Netlify.

#16381 217c5b3 Thanks @ematipico! - Slightly improved the performance of the dev server by caching the internal crawling of the dependencies of a project.

#16348 7d26cd7 Thanks @ocavue! - Fixes a bug where emitted assets during a client build would contain always fresh, new hashes in their name. Now the build should be more stable.

#16317 d012bfe Thanks @das-peter! - Fixes a bug where allowedDomains weren't correctly propagated when using the development server.

#16379 5a84551 Thanks @martrapp! - Improves Vue scoped style handling in DEV mode during client router navigation.

#16317 d012bfe Thanks @das-peter! - Adds tests to verify settings are properly propagated when using the development server.

#16282 5b0fdaa Thanks @jmurty! - Fixes build errors on platforms with skew protection enabled (e.g. Vercel, Netlify) for inter-chunk Javascript using dynamic imports

Updated dependencies [e0b240e]:

@astrojs/telemetry@3.3.1

6.1.7

Patch Changes

#16027 c62516b Thanks @fkatsuhiro! - Fixes a bug where remote image dimensions were not validated during static builds on Netlify.

#16311 94048f2 Thanks @Arecsu! - Fixes --port flag being ignored after a Vite-triggered server restart (e.g. when a .env file changes)

#16316 0fcd04c Thanks @ematipico! - Fixes the /_image endpoint accepting an arbitrary f=svg query parameter and serving non-SVG content as image/svg+xml. The endpoint now validates that the source is actually SVG before honoring f=svg, matching the same guard already enforced on the <Image> component path.

6.1.6

... (truncated)

Commits

21ca872 [ci] release (#16399)
f3485c3 Harden nested object path lookups (#16419)
99464ed Bump vite, picomatch, and unstorage to latest patch versions (#16448)
471a4d6 refactor(astro): migrate all remaining tests to typescript (#16444)
e21de1d fix(astro): harden error overlay and log formatting (#16420)
a3951d7 fix(astro): harden astro-island export resolution (#16422)
8a13969 refactor(astro): migrate 4 tests to typescript (#16427)
3bdc4ac refactor(astro): migrate core-image tests to typescript (#16413)
72e9faa refactor(astro): migrate 19 tests to typescript (#16414)
1c477aa refactor(astro): migrate 10 tests to typescript (#16411)
Additional commits viewable in compare view

Updates @astrojs/upgrade from 0.7.1 to 0.7.2

Release notes

Sourced from @astrojs/upgrade's releases.

@astrojs/upgrade@0.7.2

Patch Changes

#16424 3fcdaf1 Thanks @matthewp! - Improves how @astrojs/upgrade spawns package manager commands so it uses the same Windows command resolution as create-astro

Changelog

Sourced from @astrojs/upgrade's changelog.

0.7.2

Patch Changes

#16424 3fcdaf1 Thanks @matthewp! - Improves how @astrojs/upgrade spawns package manager commands so it uses the same Windows command resolution as create-astro

Commits

21ca872 [ci] release (#16399)
3fcdaf1 fix(upgrade): align command spawning with create-astro (#16424)
f7566b8 refactor: unify test setup (#16445)
46633f5 refactor(create-astro): migrate tests to typescript (#16400)
21cc4dd refactor(upgrade): migrate tests to typescript (#16372)
See full diff in compare view

Updates @tailwindcss/vite from 4.2.2 to 4.2.4

Release notes

Sourced from @tailwindcss/vite's releases.

v4.2.4

Fixed

Ensure imports in @import and @plugin still resolve correctly when using Vite aliases in @tailwindcss/vite (#19947)

v4.2.3

Fixed

Canonicalization: improve canonicalizations for tracking-* utilities by preferring non-negative utilities (e.g. -tracking-tighter → tracking-wider) (#19827)

Fix crash due to invalid characters in candidate (exceeding valid unicode code point range) (#19829)

Ensure query params in imports are considered unique resources when using @tailwindcss/webpack (#19723)

Canonicalization: collapse arbitrary values into shorthand utilities (e.g. px-[1.2rem] py-[1.2rem] → p-[1.2rem]) (#19837)

Canonicalization: collapse border-{t,b}-* into border-y-*, border-{l,r}-* into border-x-*, and border-{t,r,b,l}-* into border-* (#19842)

Canonicalization: collapse scroll-m{t,b}-* into scroll-my-*, scroll-m{l,r}-* into scroll-mx-*, and scroll-m{t,r,b,l}-* into scroll-m-* (#19842)

Canonicalization: collapse scroll-p{t,b}-* into scroll-py-*, scroll-p{l,r}-* into scroll-px-*, and scroll-p{t,r,b,l}-* into scroll-p-* (#19842)

Canonicalization: collapse overflow-{x,y}-* into overflow-* (#19842)

Canonicalization: collapse overscroll-{x,y}-* into overscroll-* (#19842)

Read from --placeholder-color instead of --background-color for placeholder-* utilities (#19843)

Upgrade: ensure files are not emptied out when killing the upgrade process while it's running (#19846)

Upgrade: use config.content when migrating from Tailwind CSS v3 to Tailwind CSS v4 (#19846)

Upgrade: never migrate files that are ignored by git (#19846)

Add .env and .env.* to default ignored content files (#19846)

Canonicalization: migrate overflow-ellipsis into text-ellipsis (#19849)

Canonicalization: migrate start-full → inset-s-full, start-auto → inset-s-auto, start-px → inset-s-px, and start-<number> → inset-s-<number> as well as negative versions (#19849)

Canonicalization: migrate end-full → inset-e-full, end-auto → inset-e-auto, end-px → inset-e-px, and end-<number> → inset-e-<number> as well as negative versions (#19849)

Canonicalization: move the - sign inside the arbitrary value -left-[9rem] → left-[-9rem] (#19858)

Canonicalization: move the - sign outside the arbitrary value ml-[calc(-1*var(--width))] → -ml-(--width) (#19858)

Improve performance when scanning JSONL / NDJSON files (#19862)

Support NODE_PATH environment variable in standalone CLI (#19617)

Changelog

Sourced from @tailwindcss/vite's changelog.

[4.2.4] - 2026-04-21

Fixed

Ensure imports in @import and @plugin still resolve correctly when using Vite aliases in @tailwindcss/vite (#19947)

[4.2.3] - 2026-04-20

Fixed

Canonicalization: improve canonicalizations for tracking-* utilities by preferring non-negative utilities (e.g. -tracking-tighter → tracking-wider) (#19827)

Fix crash due to invalid characters in candidate (exceeding valid unicode code point range) (#19829)

Ensure query params in imports are considered unique resources when using @tailwindcss/webpack (#19723)

Canonicalization: collapse arbitrary values into shorthand utilities (e.g. px-[1.2rem] py-[1.2rem] → p-[1.2rem]) (#19837)

Canonicalization: collapse border-{t,b}-* into border-y-*, border-{l,r}-* into border-x-*, and border-{t,r,b,l}-* into border-* (#19842)

Canonicalization: collapse scroll-m{t,b}-* into scroll-my-*, scroll-m{l,r}-* into scroll-mx-*, and scroll-m{t,r,b,l}-* into scroll-m-* (#19842)

Canonicalization: collapse scroll-p{t,b}-* into scroll-py-*, scroll-p{l,r}-* into scroll-px-*, and scroll-p{t,r,b,l}-* into scroll-p-* (#19842)

Canonicalization: collapse overflow-{x,y}-* into overflow-* (#19842)

Canonicalization: collapse overscroll-{x,y}-* into overscroll-* (#19842)

Read from --placeholder-color instead of --background-color for placeholder-* utilities (#19843)

Upgrade: ensure files are not emptied out when killing the upgrade process while it's running (#19846)

Upgrade: use config.content when migrating from Tailwind CSS v3 to Tailwind CSS v4 (#19846)

Upgrade: never migrate files that are ignored by git (#19846)

Add .env and .env.* to default ignored content files (#19846)

Canonicalization: migrate overflow-ellipsis into text-ellipsis (#19849)

Canonicalization: migrate start-full → inset-s-full, start-auto → inset-s-auto, start-px → inset-s-px, and start-<number> → inset-s-<number> as well as negative versions (#19849)

Canonicalization: migrate end-full → inset-e-full, end-auto → inset-e-auto, end-px → inset-e-px, and end-<number> → inset-e-<number> as well as negative versions (#19849)

Canonicalization: move the - sign inside the arbitrary value -left-[9rem] → left-[-9rem] (#19858)

Canonicalization: move the - sign outside the arbitrary value ml-[calc(-1*var(--width))] → -ml-(--width) (#19858)

Improve performance when scanning JSONL / NDJSON files (#19862)

Support NODE_PATH environment variable in standalone CLI (#19617)

Commits

69ad7cc 4.2.4 (#19948)
685c19e Fix issue around resolving paths in @tailwindcss/vite (#19947)
2e3fa49 4.2.3 (#19944)
5cb1efd fix(vite): resolve tsconfig paths in CSS and JS resolvers (#19803)
See full diff in compare view

Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for @tailwindcss/vite since your current version.

Updates tailwindcss from 4.2.2 to 4.2.4

Release notes

Sourced from tailwindcss's releases.

v4.2.4

Fixed

Ensure imports in @import and @plugin still resolve correctly when using Vite aliases in @tailwindcss/vite (#19947)

v4.2.3

Fixed

Canonicalization: improve canonicalizations for tracking-* utilities by preferring non-negative utilities (e.g. -tracking-tighter → tracking-wider) (#19827)

Fix crash due to invalid characters in candidate (exceeding valid unicode code point range) (#19829)

Ensure query params in imports are considered unique resources when using @tailwindcss/webpack (#19723)

Canonicalization: collapse arbitrary values into shorthand utilities (e.g. px-[1.2rem] py-[1.2rem] → p-[1.2rem]) (#19837)

Canonicalization: collapse border-{t,b}-* into border-y-*, border-{l,r}-* into border-x-*, and border-{t,r,b,l}-* into border-* (#19842)

Canonicalization: collapse scroll-m{t,b}-* into scroll-my-*, scroll-m{l,r}-* into scroll-mx-*, and scroll-m{t,r,b,l}-* into scroll-m-* (#19842)

Canonicalization: collapse scroll-p{t,b}-* into scroll-py-*, scroll-p{l,r}-* into scroll-px-*, and scroll-p{t,r,b,l}-* into scroll-p-* (#19842)

Canonicalization: collapse overflow-{x,y}-* into overflow-* (#19842)

Canonicalization: collapse overscroll-{x,y}-* into overscroll-* (#19842)

Read from --placeholder-color instead of --background-color for placeholder-* utilities (#19843)

Upgrade: ensure files are not emptied out when killing the upgrade process while it's running (#19846)

Upgrade: use config.content when migrating from Tailwind CSS v3 to Tailwind CSS v4 (#19846)

Upgrade: never migrate files that are ignored by git (#19846)

Add .env and .env.* to default ignored content files (#19846)

Canonicalization: migrate overflow-ellipsis into text-ellipsis (#19849)

Canonicalization: migrate start-full → inset-s-full, start-auto → inset-s-auto, start-px → inset-s-px, and start-<number> → inset-s-<number> as well as negative versions (#19849)

Canonicalization: migrate end-full → inset-e-full, end-auto → inset-e-auto, end-px → inset-e-px, and end-<number> → inset-e-<number> as well as negative versions (#19849)

Canonicalization: move the - sign inside the arbitrary value -left-[9rem] → left-[-9rem] (#19858)

Canonicalization: move the - sign outside the arbitrary value ml-[calc(-1*var(--width))] → -ml-(--width) (#19858)

Improve performance when scanning JSONL / NDJSON files (#19862)

Support NODE_PATH environment variable in standalone CLI (#19617)

Changelog

Sourced from tailwindcss's changelog.

[4.2.4] - 2026-04-21

Fixed

Ensure imports in @import and @plugin still resolve correctly when using Vite aliases in @tailwindcss/vite (#19947)

[4.2.3] - 2026-04-20

Fixed

Canonicalization: improve canonicalizations for tracking-* utilities by preferring non-negative utilities (e.g. -tracking-tighter → tracking-wider) (#19827)

Fix crash due to invalid characters in candidate (exceeding valid unicode code point range) (#19829)

Ensure query params in imports are considered unique resources when using @tailwindcss/webpack (#19723)

Canonicalization: collapse arbitrary values into shorthand utilities (e.g. px-[1.2rem] py-[1.2rem] → p-[1.2rem]) (#19837)

Canonicalization: collapse border-{t,b}-* into border-y-*, border-{l,r}-* into border-x-*, and border-{t,r,b,l}-* into border-* (#19842)

Canonicalization: collapse scroll-m{t,b}-* into scroll-my-*, scroll-m{l,r}-* into scroll-mx-*, and scroll-m{t,r,b,l}-* into scroll-m-* (#19842)

Canonicalization: collapse scroll-p{t,b}-* into scroll-py-*, scroll-p{l,r}-* into scroll-px-*, and scroll-p{t,r,b,l}-* into scroll-p-* (#19842)

Canonicalization: collapse overflow-{x,y}-* into overflow-* (#19842)

Canonicalization: collapse overscroll-{x,y}-* into overscroll-* (#19842)

Read from --placeholder-color instead of --background-color for placeholder-* utilities (#19843)

Upgrade: ensure files are not emptied out when killing the upgrade process while it's running (#19846)

Upgrade: use config.content when migrating from Tailwind CSS v3 to Tailwind CSS v4 (#19846)

Upgrade: never migrate files that are ignored by git (#19846)

Add .env and .env.* to default ignored content files (#19846)

Canonicalization: migrate overflow-ellipsis into text-ellipsis (#19849)

Canonicalization: migrate start-full → inset-s-full, start-auto → inset-s-auto, start-px → inset-s-px, and start-<number> → inset-s-<number> as well as negative versions (#19849)

Canonicalization: migrate end-full → inset-e-full, end-auto → inset-e-auto, end-px → inset-e-px, and end-<number> → inset-e-<number> as well as negative versions (#19849)

Canonicalization: move the - sign inside the arbitrary value -left-[9rem] → left-[-9rem] (#19858)

Canonicalization: move the - sign outside the arbitrary value ml-[calc(-1*var(--width))] → -ml-(--width) (#19858)

Improve performance when scanning JSONL / NDJSON files (#19862)

Support NODE_PATH environment variable in standalone CLI (#19617)

Commits

69ad7cc 4.2.4 (#19948)
2e3fa49 4.2.3 (#19944)
df6209a Canonicalize negative arbitrary values (#19858)
52fd421 Small refactor of canonicalization tests (#19851)
c385fd3 use test.each instead of manual loop
0d6e038 fix index in test name
88a2d22 Add more canonicalization rules for deprecated utilities (#19849)
2c1ef9e Use --placeholder-color instead of --background-color for placeholder-*...
28d5268 Collapse more utilities by expanding their declarations (#19842)
b55d960 fix(canonicalize): collapse arbitrary values into shorthand utilities (#19837)
Additional commits viewable in compare view

Updates vite-plus from 0.1.12 to 0.1.19

Release notes

Sourced from vite-plus's releases.

vite-plus v0.1.19 — Windows polish, vp rebuild, and lazy plugin loading

A reliability-focused release: terminal handling and file-handle leaks on Windows are fixed, a top-level vp rebuild alias lands, and lazyPlugins() defers plugin initialization until first use.

Highlights

Windows Ctrl+C — terminal state is now restored after Ctrl+C in interactive commands, and .cmd shims are routed through PowerShell to stop Windows corrupting the terminal (#1407, #1414)

Workspace file-handle leak on Windows — vp run dev no longer keeps an open handle on pnpm-workspace.yaml for the life of the session, so pnpm in a second terminal can rewrite the file without EPERM (#1400, vite-task#335)

CLI extra args leaking into dependent tasks — fixed a bug where args after a task name (e.g. vp run test some-filter) were forwarded to tasks pulled in via dependsOn, breaking their execution (vite-task#332)

Top-level vp rebuild alias — rebuild your monorepo with a single command, no run -- wrapping needed (#1383)

Conditional plugin loading — new lazyPlugins() helper defers plugin initialization until first use (#1215)

Features

Add top-level vp rebuild alias (#1383) — @Han5991

Add lazyPlugins() helper for conditional plugin loading (#1215) — @fengmk2

Add TypeScript shim for Vue and Astro component files in vp migrate/vp create (#1411) — @naokihaba

Allow --stdin-filepath for the oxfmt bin (#1429) — @leaysgur

Upgrade upstream dependencies: rolldown v1.0.0-rc.16, oxc 0.126.0, tsdown 0.21.9, oxlint-tsgolint 0.21.1, @vitejs/devtools 0.1.14 (#1395, #1406, #1415) — @Brooooooklyn

Fixes & Enhancements

Restore terminal state after Ctrl+C in interactive commands (#1407) — @Claude

Route Windows .cmd shims through PowerShell to fix Ctrl+C terminal corruption (#1414) — @fengmk2

Respect oxlint exit code so denyWarnings fails vp check (#1425) — @fengmk2

Avoid SetGlobalDefaultError panic when rolldown devtools is enabled (#1364) — @fengmk2

Stop forwarding -- to npx-invoked remote templates in vp create (#1421) — @jong-kyung

Embed node version requirement at compile time (#1412) — @liangmiQwQ

Upgrade oxc catalog entries proactively in the upgrade-deps workflow (#1409) — @fengmk2

Workspace no longer holds file handles across a session (vite-task#335) — @fengmk2

Fix CLI extra args leaking from the requested task into dependsOn tasks — args after a task name (e.g. vp run test some-filter) are now forwarded only to that task (vite-task#332) — @branchseer

Windows file access tracking no longer panics on malformed paths (vite-task#330) — @SegaraRai

[Breaking cache format] Migrate from bincode (unmaintained) to wincode; cache format bumps from v10 → v11, so expect a one-time cache miss on upgrade (vite-task#334) — @branchseer

musl builds skip allocating the unused 4 GiB IPC shared-memory region and lock file (vite-task#328) — @branchseer

Refactor

Show key hints for multichoice prompts (#1392) — @rChaoz

Docs

Point the Windows installer at setup.viteplus.dev (#1390) — @fengmk2

Chore

Generate diff-accurate upgrade-deps PR descriptions via Claude (#1402) — @fengmk2

Upgrade @oxc-node/core to catalog version (0.0.35) (#1000) — @Arthie

Bump vite-task for workspace file-handle fix (

…dates Bumps the dependencies group with 7 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@astrojs/mdx](https://github.com/withastro/astro/tree/HEAD/packages/integrations/mdx) | `5.0.2` | `5.0.4` | | [@astrojs/rss](https://github.com/withastro/astro/tree/HEAD/packages/astro-rss) | `4.0.17` | `4.0.18` | | [@astrojs/sitemap](https://github.com/withastro/astro/tree/HEAD/packages/integrations/sitemap) | `3.7.1` | `3.7.2` | | [astro](https://github.com/withastro/astro/tree/HEAD/packages/astro) | `6.0.6` | `6.1.9` | | [@astrojs/upgrade](https://github.com/withastro/astro/tree/HEAD/packages/upgrade) | `0.7.1` | `0.7.2` | | [@tailwindcss/vite](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/@tailwindcss-vite) | `4.2.2` | `4.2.4` | | [tailwindcss](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss) | `4.2.2` | `4.2.4` | Updates `@astrojs/mdx` from 5.0.2 to 5.0.4 - [Release notes](https://github.com/withastro/astro/releases) - [Changelog](https://github.com/withastro/astro/blob/main/packages/integrations/mdx/CHANGELOG.md) - [Commits](https://github.com/withastro/astro/commits/@astrojs/mdx@5.0.4/packages/integrations/mdx) Updates `@astrojs/rss` from 4.0.17 to 4.0.18 - [Release notes](https://github.com/withastro/astro/releases) - [Changelog](https://github.com/withastro/astro/blob/main/packages/astro-rss/CHANGELOG.md) - [Commits](https://github.com/withastro/astro/commits/@astrojs/rss@4.0.18/packages/astro-rss) Updates `@astrojs/sitemap` from 3.7.1 to 3.7.2 - [Release notes](https://github.com/withastro/astro/releases) - [Changelog](https://github.com/withastro/astro/blob/main/packages/integrations/sitemap/CHANGELOG.md) - [Commits](https://github.com/withastro/astro/commits/@astrojs/sitemap@3.7.2/packages/integrations/sitemap) Updates `astro` from 6.0.6 to 6.1.9 - [Release notes](https://github.com/withastro/astro/releases) - [Changelog](https://github.com/withastro/astro/blob/main/packages/astro/CHANGELOG.md) - [Commits](https://github.com/withastro/astro/commits/astro@6.1.9/packages/astro) Updates `@astrojs/upgrade` from 0.7.1 to 0.7.2 - [Release notes](https://github.com/withastro/astro/releases) - [Changelog](https://github.com/withastro/astro/blob/main/packages/upgrade/CHANGELOG.md) - [Commits](https://github.com/withastro/astro/commits/@astrojs/upgrade@0.7.2/packages/upgrade) Updates `@tailwindcss/vite` from 4.2.2 to 4.2.4 - [Release notes](https://github.com/tailwindlabs/tailwindcss/releases) - [Changelog](https://github.com/tailwindlabs/tailwindcss/blob/main/CHANGELOG.md) - [Commits](https://github.com/tailwindlabs/tailwindcss/commits/v4.2.4/packages/@tailwindcss-vite) Updates `tailwindcss` from 4.2.2 to 4.2.4 - [Release notes](https://github.com/tailwindlabs/tailwindcss/releases) - [Changelog](https://github.com/tailwindlabs/tailwindcss/blob/main/CHANGELOG.md) - [Commits](https://github.com/tailwindlabs/tailwindcss/commits/v4.2.4/packages/tailwindcss) Updates `vite-plus` from 0.1.12 to 0.1.19 - [Release notes](https://github.com/voidzero-dev/vite-plus/releases) - [Commits](https://github.com/voidzero-dev/vite-plus/commits/v0.1.19/packages/cli) --- updated-dependencies: - dependency-name: "@astrojs/mdx" dependency-version: 5.0.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: "@astrojs/rss" dependency-version: 4.0.18 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: "@astrojs/sitemap" dependency-version: 3.7.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: astro dependency-version: 6.1.9 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: "@astrojs/upgrade" dependency-version: 0.7.2 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: "@tailwindcss/vite" dependency-version: 4.2.4 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: tailwindcss dependency-version: 4.2.4 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: vite-plus dependency-version: 0.1.19 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

cloudflare-workers-and-pages · 2026-04-28T02:22:32Z

Deploying ubmit-dev with Cloudflare Pages

Latest commit:	`12d6ec0`
Status:	✅ Deploy successful!
Preview URL:	https://bfd951f8.ubmit-dev.pages.dev
Branch Preview URL:	https://dependabot-npm-and-yarn-depe-tuc3.ubmit-dev.pages.dev

View logs

dependabot · 2026-05-05T02:47:53Z

Looks like these dependencies are updatable in another way, so this is no longer needed.

dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Apr 28, 2026

dependabot Bot closed this May 5, 2026

dependabot Bot deleted the dependabot/npm_and_yarn/dependencies-14e21e5e93 branch May 5, 2026 02:47

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the dependencies group across 1 directory with 8 updates#170

chore(deps): bump the dependencies group across 1 directory with 8 updates#170
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/dependencies-14e21e5e93

dependabot Bot commented on behalf of github Apr 28, 2026 •

edited

Loading

Uh oh!

cloudflare-workers-and-pages Bot commented Apr 28, 2026 •

edited

Loading

Uh oh!

dependabot Bot commented on behalf of github May 5, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github Apr 28, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

@​astrojs/mdx@​5.0.4

Patch Changes

@​astrojs/mdx@​5.0.3

Patch Changes

5.0.4

Patch Changes

5.0.3

Patch Changes

@​astrojs/rss@​4.0.18

Patch Changes

4.0.18

Patch Changes

@​astrojs/sitemap@​3.7.2

Patch Changes

3.7.2

Patch Changes

astro@6.1.9

Patch Changes

astro@6.1.8

Patch Changes

astro@6.1.7

Patch Changes

astro@6.1.6

Patch Changes

6.1.9

Patch Changes

6.1.8

Patch Changes

6.1.7

Patch Changes

6.1.6

@​astrojs/upgrade@​0.7.2

Patch Changes

0.7.2

Patch Changes

v4.2.4

Fixed

v4.2.3

Fixed

[4.2.4] - 2026-04-21

Fixed

[4.2.3] - 2026-04-20

Fixed

v4.2.4

Fixed

v4.2.3

Fixed

[4.2.4] - 2026-04-21

Fixed

[4.2.3] - 2026-04-20

Fixed

vite-plus v0.1.19 — Windows polish, vp rebuild, and lazy plugin loading

Highlights

Features

Fixes & Enhancements

Refactor

Docs

Chore

Uh oh!

cloudflare-workers-and-pages Bot commented Apr 28, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Deploying ubmit-dev with Cloudflare Pages

Uh oh!

dependabot Bot commented on behalf of github May 5, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

dependabot Bot commented on behalf of github Apr 28, 2026 •

edited

Loading

`@astrojs/mdx@5`.0.4

`@astrojs/mdx@5`.0.3

`@astrojs/rss@4`.0.18

`@astrojs/sitemap@3`.7.2

`@astrojs/upgrade@0`.7.2

cloudflare-workers-and-pages Bot commented Apr 28, 2026 •

edited

Loading