chore(deps): update devdependency @nuxt/devtools to v2 [security] by renovate[bot] · Pull Request #29 · Barbapapazes/the-green-chronicle

renovate · 2025-11-07T20:03:38Z

This PR contains the following updates:

Package	Change	Age	Confidence
@nuxt/devtools (source)	`^1.3.9` → `^2.0.0`

GitHub Vulnerability Alerts

CVE-2025-52662

A vulnerability in Nuxt DevTools has been fixed in version 2.6.4*. This issue may have allowed Nuxt auth token extraction via XSS under certain configurations. All users are encouraged to upgrade.

Release Notes

nuxt/devtools (@nuxt/devtools)

`v2.6.4`

Compare Source

Bug Fixes

using textContent instead of innerHtml for auth pagechore: update lock (7cadbbe)

`v2.6.3`

Compare Source

`v2.6.2`

Compare Source

Bug Fixes

panel dragging issue, close #874, close #871, close #873 (619de37)

`v2.6.1`

Compare Source

Bug Fixes

deps: do not depend on @nuxt/schema (#872) (62443ec)

`v2.6.0`

Compare Source

Bug Fixes

timing labels wrapping (#866) (fd01e60)

Features

update deps (eef2c09)

`v2.5.0`

Compare Source

`v2.4.1`

Compare Source

Bug Fixes

devtools-kit: explicitly type return type of useDevtoolsHostClient (#861) (161e847)
StateEditor: add isPrimitive helper and support bigint type (#744) (#854) (f8eed63)
ui-kit: use object syntax for NButton slots (#857) (09002d2)

Features

improve modules view (807405f)
show docs link for components (9ab0ec8)

`v2.4.0`

Compare Source

Bug Fixes

devtools-kit: fix useDevtoolsClient return type (#845) (5ce9b47)
module setup times are multiplied by 1000 (#838) (d16aa96)
ui-kit: add [@unocss-include](https://redirect.github.com/unocss-include) magic string in NButton (#852) (f18de78)
watch() typeof check on array is always false (#850) (a873199)

2.3.2 (2025-03-26)

Bug Fixes

prioritize vue-devtools plugin registation, fix #823, fix #822 (259853b)
update vite-plugin-vue-tracer (0c1740c)

2.3.1 (2025-03-20)

Bug Fixes

downgrade execa to be compatible with Node v18, fix #821 (f15c7dc)

`v2.3.2`

Compare Source

Bug Fixes

prioritize vue-devtools plugin registation, fix #823, fix #822 (259853b)
update vite-plugin-vue-tracer (0c1740c)

`v2.3.1`

Compare Source

Bug Fixes

downgrade execa to be compatible with Node v18, fix #821 (f15c7dc)

`v2.3.0`

Compare Source

Features

debug page of module mutation (#770) (f7e9ab5)

2.2.1 (2025-03-05)

Bug Fixes

inspector: do not register instapector events if there is already any (db01e1b)

`v2.2.1`

Compare Source

Bug Fixes

inspector: do not register instapector events if there is already any (db01e1b)

`v2.2.0`

Compare Source

Features

component graph node name toogle (#797) (2eb2a37)
migrate to vite-plugin-vue-tracer (#803) (faa08d3)

2.1.3 (2025-03-03)

2.1.2 (2025-03-03)

2.1.1 (2025-02-28)

Bug Fixes

use shiki js engine instead of precompiled (d018045)

Features

update deps (15dbe6d)

`v2.1.3`

Compare Source

`v2.1.1`

Compare Source

Bug Fixes

use shiki js engine instead of precompiled (d018045)

Features

update deps (15dbe6d)

`v2.1.0`

Compare Source

Bug Fixes

hide inspector button when not available (684897f)

Features

allow override component inspector with __NUXT_INSPECTOR__ (9f3c8bf)
filter out installed modules in search result, closes #780 (#786) (fc8ced3)
option to disable vueDevTools (3e5251c)

`v2.0.0`

Compare Source

Features

add directives page (#740) (c20c724)

`v1.7.0`

Compare Source

Features

improves vscode integration, support multiple backends (#763) (463f6ad)

1.6.4 (2024-12-12)

Bug Fixes

upgrade @vue/devtools (8485fcb)

1.6.3 (2024-12-03)

Bug Fixes

revert #757, pin vite-plugin-inspect version (a399082)

1.6.2 (2024-12-03)

Bug Fixes

add v4 compatibility version handeling for pages tab (#758) (bd8651c)

Features

support vite-plugin-inspect for both Vite 5 and 6 (#757) (cfcbc24)

1.6.1 (2024-11-20)

Bug Fixes

missing pinia store modules (#751) (be243e4)

Features

apply lint, use explict import (2c6d2d3)

`v1.6.4`

Compare Source

Bug Fixes

upgrade @vue/devtools (8485fcb)

`v1.6.3`

Compare Source

Bug Fixes

revert #757, pin vite-plugin-inspect version (a399082)

`v1.6.2`

Compare Source

Bug Fixes

add v4 compatibility version handeling for pages tab (#758) (bd8651c)

Features

support vite-plugin-inspect for both Vite 5 and 6 (#757) (cfcbc24)

`v1.6.1`

Compare Source

Bug Fixes

missing pinia store modules (#751) (be243e4)

Features

apply lint, use explict import (2c6d2d3)

`v1.6.0`

Compare Source

Bug Fixes

devtools: remove cjs entrypoint (#746) (9e4a22e)

1.5.2 (2024-10-02)

Bug Fixes

try downgrade vite-plugin-vue-inspector (572a0d6)

1.5.1 (2024-09-23)

Bug Fixes

welcome page condition (#736) (d23ce09)

`v1.5.2`

Compare Source

Bug Fixes

try downgrade vite-plugin-vue-inspector (572a0d6)

`v1.5.1`

Compare Source

Bug Fixes

welcome page condition (#736) (d23ce09)

`v1.5.0`

Compare Source

Bug Fixes

avoid using top-level await, fix #723 (29b0e39)
disable quicktype schema generation temporary (c1554a3)
handle null in deepSync (#729) (8c0efdb)

1.4.2 (2024-09-10)

Bug Fixes

use explicit imports of types (#715) (4c54247)

1.4.1 (2024-08-26)

Bug Fixes

devtools-kit re-export (d16cafc)
state-editor: update deepSync function (#713) (a7b9efb)

`v1.4.2`

Compare Source

Bug Fixes

use explicit imports of types (#715) (4c54247)

`v1.4.1`

Compare Source

Bug Fixes

devtools-kit re-export (d16cafc)
state-editor: update deepSync function (#713) (a7b9efb)

`v1.4.0`

Compare Source

Features

kit: introduce host-client utility (167373c)

1.3.14 (2024-08-20)

1.3.13 (2024-08-20)

1.3.12 (2024-08-20)

1.3.11 (2024-08-20)

1.3.10 (2024-08-20)

Bug Fixes

color mode (19ac073)

Features

add search functionality to components graph (#696) (1a0f81a)

1.3.9 (2024-07-02)

Bug Fixes

capture for circular reference in state editor (841fd76)
introduce client.revision to trigger state editor update (418a22e)
modules: update compatibility check for Nuxt 3 and 4 (#689) (2354da7)
use ofetch for fast-npm-meta (4188f8d)

1.3.8 (2024-07-02)

Performance Improvements

avoid deps on npm-registry-fetch, save install size (3d74691)

1.3.7 (2024-06-27)

Bug Fixes

OpenGraph layout (#685) (760f149)
scrollable sidebar (#682) (df459f9)
server-routes: unable to clear all params (#684) (d88b003)

Features

use nuxt search api for showing docs (#681) (52b6468)

Performance Improvements

use npm-registry-fetch instead of pacote to deduce the package size (a049c52)

1.3.6 (2024-06-21)

Features

migrate vue-devtools to v7.3 (#675) (79e6d35)

1.3.5 (2024-06-21)

Bug Fixes

downgrade module-builder (de79dc4)

1.3.4 (2024-06-21)

Bug Fixes

color mode (#679) (d276b31)
navigate to pages with param (#678) (316bcd9)

1.3.3 (2024-06-04)

Bug Fixes

pin @vue/devtools-* (4c79fac)
sort items in fuse (#670) (8d052be)

1.3.2 (2024-05-27)

Bug Fixes

floating-vue style (7b7dc32)
sidebar scroll (946f930)
timeline: reduce warning (#661) (33fe685)

1.3.1 (2024-05-10)

Bug Fixes

module builder chunk path patch (87199a1)

`v1.3.14`

Compare Source

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

renovate bot added chore dependencies labels Nov 7, 2025

renovate bot force-pushed the renovate/npm-nuxt-devtools-vulnerability branch from 36ea841 to c532d67 Compare November 11, 2025 01:48

renovate bot force-pushed the renovate/npm-nuxt-devtools-vulnerability branch from c532d67 to 4b9a0ee Compare November 19, 2025 00:05

renovate bot force-pushed the renovate/npm-nuxt-devtools-vulnerability branch from 4b9a0ee to 509ccae Compare December 3, 2025 19:07

renovate bot force-pushed the renovate/npm-nuxt-devtools-vulnerability branch from 509ccae to 37e6931 Compare December 31, 2025 15:30

renovate bot force-pushed the renovate/npm-nuxt-devtools-vulnerability branch from 37e6931 to e3917a0 Compare January 8, 2026 18:34

renovate bot force-pushed the renovate/npm-nuxt-devtools-vulnerability branch 2 times, most recently from 85efe8e to 4c2e54c Compare January 23, 2026 19:15

renovate bot force-pushed the renovate/npm-nuxt-devtools-vulnerability branch from 4c2e54c to a326ae8 Compare February 2, 2026 17:55

renovate bot force-pushed the renovate/npm-nuxt-devtools-vulnerability branch 2 times, most recently from ccb9126 to 2d50633 Compare February 17, 2026 18:56

renovate bot force-pushed the renovate/npm-nuxt-devtools-vulnerability branch from 2d50633 to 5b99947 Compare March 5, 2026 18:06

renovate bot force-pushed the renovate/npm-nuxt-devtools-vulnerability branch from 5b99947 to 7f6516d Compare March 14, 2026 14:56

renovate bot changed the title ~~chore(deps): update devdependency @nuxt/devtools to v2 [security]~~ chore(deps): update devdependency @nuxt/devtools to v2 [security] - autoclosed Mar 27, 2026

renovate bot closed this Mar 27, 2026

renovate bot deleted the renovate/npm-nuxt-devtools-vulnerability branch March 27, 2026 00:39

renovate bot changed the title ~~chore(deps): update devdependency @nuxt/devtools to v2 [security] - autoclosed~~ chore(deps): update devdependency @nuxt/devtools to v2 [security] Mar 30, 2026

renovate bot reopened this Mar 30, 2026

renovate bot force-pushed the renovate/npm-nuxt-devtools-vulnerability branch 2 times, most recently from 7f6516d to 89ffb4a Compare March 30, 2026 17:35

chore(deps): update devdependency @nuxt/devtools to v2 [security]

0f447ec

renovate bot force-pushed the renovate/npm-nuxt-devtools-vulnerability branch from 89ffb4a to 0f447ec Compare April 1, 2026 18:41

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore(deps): update devdependency @nuxt/devtools to v2 [security]#29

chore(deps): update devdependency @nuxt/devtools to v2 [security]#29
renovate[bot] wants to merge 1 commit intomainfrom
renovate/npm-nuxt-devtools-vulnerability

renovate bot commented Nov 7, 2025 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Uh oh!

Conversation

renovate bot commented Nov 7, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

GitHub Vulnerability Alerts

Release Notes

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Features

Bug Fixes

Features

Bug Fixes

2.3.2 (2025-03-26)

Bug Fixes

2.3.1 (2025-03-20)

Bug Fixes

Bug Fixes

Bug Fixes

Features

2.2.1 (2025-03-05)

Bug Fixes

Bug Fixes

Features

2.1.3 (2025-03-03)

2.1.2 (2025-03-03)

2.1.1 (2025-02-28)

Bug Fixes

Features

Bug Fixes

Features

Bug Fixes

Features

Features

Features

1.6.4 (2024-12-12)

Bug Fixes

1.6.3 (2024-12-03)

Bug Fixes

1.6.2 (2024-12-03)

Bug Fixes

Features

1.6.1 (2024-11-20)

Bug Fixes

Features

Bug Fixes

Bug Fixes

Bug Fixes

Features

Bug Fixes

Features

Bug Fixes

1.5.2 (2024-10-02)

Bug Fixes

1.5.1 (2024-09-23)

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

1.4.2 (2024-09-10)

Bug Fixes

1.4.1 (2024-08-26)

Bug Fixes

Bug Fixes

Bug Fixes

Features

1.3.14 (2024-08-20)

1.3.13 (2024-08-20)

1.3.12 (2024-08-20)

1.3.11 (2024-08-20)

1.3.10 (2024-08-20)

Bug Fixes

Features

1.3.9 (2024-07-02)

Bug Fixes

1.3.8 (2024-07-02)

Performance Improvements

1.3.7 (2024-06-27)

Bug Fixes

renovate bot commented Nov 7, 2025 •

edited

Loading