Bump vite from 6.1.1 to 6.2.0

[dependabot]

Bumps vite from 6.1.1 to 6.2.0.

Release notes

Sourced from vite's releases.

create-vite@6.2.0

Please refer to CHANGELOG.md for details.

v6.2.0

Please refer to CHANGELOG.md for details.

v6.2.0-beta.1

Please refer to CHANGELOG.md for details.

v6.2.0-beta.0

Please refer to CHANGELOG.md for details.

Changelog

Sourced from vite's changelog.

6.2.0 (2025-02-25)

• fix(deps): update all non-major dependencies (#19501) (c94c9e0), closes #19501
• fix(worker): string interpolation in dynamic worker options (#19476) (07091a1), closes #19476
• chore: use unicode cross icon instead of x (#19497) (5c70296), closes #19497

6.2.0-beta.1 (2025-02-21)

• fix(css): temporary add ?. after this.getModuleInfo in vite:css-post (#19478) (12b0b8a), closes #19478

6.2.0-beta.0 (2025-02-21)

• feat: show mode on server start and add env debugger (#18808) (c575b82), closes #18808
• feat: use host url to open browser (#19414) (f6926ca), closes #19414
• feat(css): allow scoping css to importers exports (#19418) (3ebd838), closes #19418
• chore: bump esbuild to 0.25.0 (#19389) (73987f2), closes #19389

Commits

• fa7c211 chore: update 6.1.0 changelog (#19363)
• 051370a release: v6.1.0
• 6e0e3c0 refactor: deprecate vite optimize command (#19348)
• 7c2a794 feat: use native runtime to import the config (#19178)
• fcd5785 fix(build): fix stale build manifest on watch rebuild (#19361)
• a5e306f feat: show hosts in cert in CLI (#19317)
• 4d88f6c feat: support for env var for defining allowed hosts (#19325)
• fdb36e0 fix: avoid builtStart during vite optimize (#19356)
• 5ce7443 release: v6.1.0-beta.2
• e7b4ba3 fix(html): fix css disorder when building multiple entry html (#19143)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[bolt-new-by-stackblitz]

Run & review this pull request in StackBlitz Codeflow.

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
npm/vite	6.2.0	🟢 5.6	Details Check Score Reason Code-Review 🟢 6 Found 19/28 approved changesets -- score normalized to 6 Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions License 🟢 10 license file detected Binary-Artifacts 🟢 7 binaries present in source code Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy 🟢 10 security policy file detected Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected
npm/vite	^6.2.0	🟢 5.6	Details Check Score Reason Code-Review 🟢 6 Found 19/28 approved changesets -- score normalized to 6 Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions License 🟢 10 license file detected Binary-Artifacts 🟢 7 binaries present in source code Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy 🟢 10 security policy file detected Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected

Scanned Files

• package-lock.json
• package.json