[Docs Site] Bump vitest from 2.1.9 to 3.0.7 in the npm_and_yarn group across 1 directory #37

dependabot · 2025-03-04T01:48:23Z

Bumps the npm_and_yarn group with 1 update in the / directory: vitest.

Updates vitest from 2.1.9 to 3.0.7

Release notes

v3.0.7

   🐞 Bug Fixes

browser: Support webdriverio 9 - by @sheremet-va in vitest-dev/vitest#7553 (b1949)

deps: Update all non-major dependencies - in vitest-dev/vitest#7543 (365ff)

expect: Correct generic MatchersObject this type in expect.extend - by @Workingstiff-s in vitest-dev/vitest#7526 (d5765)

mocker: Include more modules to prefix-only module list - by @btea in vitest-dev/vitest#7524 (a12ec)

spy: Clear/reset/restore mocks in stack order - by @hi-ogawa in vitest-dev/vitest#7499 (f7100)

   🏎 Performance

browser: Do wdio context switching only once per file - by @sheremet-va in vitest-dev/vitest#7549 (aaa58)

    View changes on GitHub

v3.0.6

   🐞 Bug Fixes

Fix getMockedSystemTime for useFakeTimer - by @hi-ogawa in vitest-dev/vitest#7405 (03912)

Compat for jest-image-snapshot - by @hi-ogawa in vitest-dev/vitest#7390 (9542b)

Ensure project names are readable in dark terminals - by @rgrove in vitest-dev/vitest#7371 (bb94c)

Exclude queueMicrotask from default fake timers to not break node fetch - by @hi-ogawa in vitest-dev/vitest#7505 (167a9)

browser:

Fix mocking modules out of root - by @hi-ogawa in vitest-dev/vitest#7415 (d3acb)

Fix toHaveClass typing - by @hi-ogawa in vitest-dev/vitest#7383 (7ef23)

Relax locator selectors methods - by @sheremet-va in vitest-dev/vitest#7422 (1b8c5)

Resolve thread count from maxWorkers - by @AriPerkkio in vitest-dev/vitest#7483 (adbb2)

Cleanup timeout on resolve and give more information in the error - by @sheremet-va in vitest-dev/vitest#7487 (5a45a)

coverage:

vite-node to pass correct execution wrapper offset - by @AriPerkkio in vitest-dev/vitest#7417 (1f2e5)

Preserve moduleExecutionInfo in non-isolated runs - by @AriPerkkio in vitest-dev/vitest#7486 (f31a0)

deps:

Update all non-major dependencies - by @hi-ogawa in vitest-dev/vitest#7363 (e348b)

Update all non-major dependencies - by @hi-ogawa in vitest-dev/vitest#7507 (6cc40)

init:

Invalid browser config - by @AriPerkkio in vitest-dev/vitest#7475 (8fe64)

reporters:

Render tasks in tree when in TTY - by @AriPerkkio in vitest-dev/vitest#7503 (027ce)

vite-node:

Remove fake first line mapping on Vite 6 - by @hi-ogawa in vitest-dev/vitest#7124 (b9973)

watch:

Properly remove cache after removing existing test files - by @soc221b in vitest-dev/vitest#7399 (01a59)

workspace:

Forward inspect related cli options - by @AriPerkkio in vitest-dev/vitest#7373 (ed15b)

    View changes on GitHub

v3.0.5

This release includes security patches for:

Remote Code Execution when accessing a malicious website while Vitest API server is listening | CVE-2025-24964

... (truncated)

Commits

358cccf chore: release v3.0.7
365ffe6 fix(deps): update all non-major dependencies (#7543)
aaa5855 perf(browser): do wdio context switching only once per file (#7549)
f71004f fix(spy): clear/reset/restore mocks in stack order (#7499)
9584be3 chore: release v3.0.6
027ce9b fix(reporters): render tasks in tree when in TTY (#7503)
b62ac22 chore: use tinyglobby instead of fast-glob in Vitest (#7504)
167a98d fix: exclude queueMicrotask from default fake timers to not break node fetc...
6cc408d fix(deps): update all non-major dependencies (#7507)
8f13825 docs: fix sequence.hooks: 'stack' as default (#7492)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps the npm_and_yarn group with 1 update in the / directory: [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest). Updates `vitest` from 2.1.9 to 3.0.7 - [Release notes](https://github.com/vitest-dev/vitest/releases) - [Commits](https://github.com/vitest-dev/vitest/commits/v3.0.7/packages/vitest) --- updated-dependencies: - dependency-name: vitest dependency-type: direct:development dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot · 2025-03-04T01:48:25Z

Dependabot tried to add @KianNH as a reviewer to this PR, but received the following error from GitHub:

POST https://api.github.com/repos/krishnprakash/cloudflare-docs/pulls/37/requested_reviewers: 422 - Reviews may only be requested from collaborators. One or more of the users or teams you specified is not a collaborator of the krishnprakash/cloudflare-docs repository. // See: https://docs.github.com/rest/pulls/review-requests#request-reviewers-for-a-pull-request

cloudflare-workers-and-pages · 2025-03-04T01:48:26Z

Deploying cloudflare-docs with Cloudflare Pages

Latest commit:	`fd6f143`
Status:	🚫 Build failed.

View logs

github-actions · 2025-03-04T01:48:38Z

Howdy and thanks for contributing to our repo. We review new, external PRs within 2 weeks. If it's been longer than then without any movement, tag the PR Assignees in a comment.

…39) * Potential fix for code scanning alert no. 1: Clear-text logging of sensitive information (#35) Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Potential fix for code scanning alert no. 3: Clear-text logging of sensitive information (#36) Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * [Docs Site] Bump @typescript-eslint/parser from 8.25.0 to 8.26.0 (#28) Dependabot couldn't find the original pull request head commit, a75b142. Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [Docs Site] Bump typescript-eslint from 8.25.0 to 8.26.0 (#29) Dependabot couldn't find the original pull request head commit, 2b80971. Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [Docs Site] Bump prettier from 3.5.2 to 3.5.3 (#30) Dependabot couldn't find the original pull request head commit, 4e69d6c. Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [Docs Site] Bump wrangler from 3.109.3 to 3.111.0 (#32) Dependabot couldn't find the original pull request head commit, 4202e58. Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump the npm_and_yarn group across 4 directories with 2 updates (#33) Bumps the npm_and_yarn group with 2 updates in the /.github/actions/assign-issue directory: [esbuild](https://github.com/evanw/esbuild) and [cross-spawn](https://github.com/moxystudio/node-cross-spawn). Bumps the npm_and_yarn group with 2 updates in the /.github/actions/assign-pr directory: [esbuild](https://github.com/evanw/esbuild) and [cross-spawn](https://github.com/moxystudio/node-cross-spawn). Bumps the npm_and_yarn group with 1 update in the /.github/actions/label-products directory: [esbuild](https://github.com/evanw/esbuild). Bumps the npm_and_yarn group with 1 update in the /.github/actions/label-size directory: [esbuild](https://github.com/evanw/esbuild). Updates `esbuild` from 0.14.39 to 0.25.0 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG-2022.md) - [Commits](evanw/esbuild@v0.14.39...v0.25.0) Updates `cross-spawn` from 7.0.3 to 7.0.6 - [Changelog](https://github.com/moxystudio/node-cross-spawn/blob/master/CHANGELOG.md) - [Commits](moxystudio/node-cross-spawn@v7.0.3...v7.0.6) Updates `esbuild` from 0.14.39 to 0.25.0 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG-2022.md) - [Commits](evanw/esbuild@v0.14.39...v0.25.0) Updates `cross-spawn` from 7.0.3 to 7.0.6 - [Changelog](https://github.com/moxystudio/node-cross-spawn/blob/master/CHANGELOG.md) - [Commits](moxystudio/node-cross-spawn@v7.0.3...v7.0.6) Updates `esbuild` from 0.14.39 to 0.25.0 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG-2022.md) - [Commits](evanw/esbuild@v0.14.39...v0.25.0) Updates `esbuild` from 0.14.39 to 0.25.0 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG-2022.md) - [Commits](evanw/esbuild@v0.14.39...v0.25.0) --- updated-dependencies: - dependency-name: esbuild dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: cross-spawn dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: esbuild dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: cross-spawn dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: esbuild dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: esbuild dependency-type: direct:development dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [Docs Site] Bump vitest from 2.1.6 to 2.1.9 in the npm_and_yarn group (#34) Bumps the npm_and_yarn group with 1 update: [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest). Updates `vitest` from 2.1.6 to 2.1.9 - [Release notes](https://github.com/vitest-dev/vitest/releases) - [Commits](https://github.com/vitest-dev/vitest/commits/v2.1.9/packages/vitest) --- updated-dependencies: - dependency-name: vitest dependency-type: direct:development dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [Docs Site] Bump vitest in the npm_and_yarn group across 1 directory (#37) Bumps the npm_and_yarn group with 1 update in the / directory: [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest). Updates `vitest` from 2.1.9 to 3.0.7 - [Release notes](https://github.com/vitest-dev/vitest/releases) - [Commits](https://github.com/vitest-dev/vitest/commits/v3.0.7/packages/vitest) --- updated-dependencies: - dependency-name: vitest dependency-type: direct:development dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump golang.org/x/net (#38) Bumps the go_modules group with 1 update in the /tools directory: [golang.org/x/net](https://github.com/golang/net). Updates `golang.org/x/net` from 0.23.0 to 0.33.0 - [Commits](golang/net@v0.23.0...v0.33.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-type: indirect dependency-group: go_modules ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [Docs Site] Bump @cloudflare/vitest-pool-workers from 0.7.4 to 0.7.5 Bumps [@cloudflare/vitest-pool-workers](https://github.com/cloudflare/workers-sdk/tree/HEAD/packages/vitest-pool-workers) from 0.7.4 to 0.7.5. - [Release notes](https://github.com/cloudflare/workers-sdk/releases) - [Changelog](https://github.com/cloudflare/workers-sdk/blob/main/packages/vitest-pool-workers/CHANGELOG.md) - [Commits](https://github.com/cloudflare/workers-sdk/commits/@cloudflare/[email protected]/packages/vitest-pool-workers) --- updated-dependencies: - dependency-name: "@cloudflare/vitest-pool-workers" dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: Phileco <[email protected]> Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Potential fix for code scanning alert no. 1: Clear-text logging of sensitive information (#35) Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Potential fix for code scanning alert no. 3: Clear-text logging of sensitive information (#36) Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * [Docs Site] Bump @typescript-eslint/parser from 8.25.0 to 8.26.0 (#28) Dependabot couldn't find the original pull request head commit, a75b142. Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [Docs Site] Bump typescript-eslint from 8.25.0 to 8.26.0 (#29) Dependabot couldn't find the original pull request head commit, 2b80971. Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [Docs Site] Bump prettier from 3.5.2 to 3.5.3 (#30) Dependabot couldn't find the original pull request head commit, 4e69d6c. Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [Docs Site] Bump wrangler from 3.109.3 to 3.111.0 (#32) Dependabot couldn't find the original pull request head commit, 4202e58. Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump the npm_and_yarn group across 4 directories with 2 updates (#33) Bumps the npm_and_yarn group with 2 updates in the /.github/actions/assign-issue directory: [esbuild](https://github.com/evanw/esbuild) and [cross-spawn](https://github.com/moxystudio/node-cross-spawn). Bumps the npm_and_yarn group with 2 updates in the /.github/actions/assign-pr directory: [esbuild](https://github.com/evanw/esbuild) and [cross-spawn](https://github.com/moxystudio/node-cross-spawn). Bumps the npm_and_yarn group with 1 update in the /.github/actions/label-products directory: [esbuild](https://github.com/evanw/esbuild). Bumps the npm_and_yarn group with 1 update in the /.github/actions/label-size directory: [esbuild](https://github.com/evanw/esbuild). Updates `esbuild` from 0.14.39 to 0.25.0 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG-2022.md) - [Commits](evanw/esbuild@v0.14.39...v0.25.0) Updates `cross-spawn` from 7.0.3 to 7.0.6 - [Changelog](https://github.com/moxystudio/node-cross-spawn/blob/master/CHANGELOG.md) - [Commits](moxystudio/node-cross-spawn@v7.0.3...v7.0.6) Updates `esbuild` from 0.14.39 to 0.25.0 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG-2022.md) - [Commits](evanw/esbuild@v0.14.39...v0.25.0) Updates `cross-spawn` from 7.0.3 to 7.0.6 - [Changelog](https://github.com/moxystudio/node-cross-spawn/blob/master/CHANGELOG.md) - [Commits](moxystudio/node-cross-spawn@v7.0.3...v7.0.6) Updates `esbuild` from 0.14.39 to 0.25.0 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG-2022.md) - [Commits](evanw/esbuild@v0.14.39...v0.25.0) Updates `esbuild` from 0.14.39 to 0.25.0 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG-2022.md) - [Commits](evanw/esbuild@v0.14.39...v0.25.0) --- updated-dependencies: - dependency-name: esbuild dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: cross-spawn dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: esbuild dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: cross-spawn dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: esbuild dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: esbuild dependency-type: direct:development dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [Docs Site] Bump vitest from 2.1.6 to 2.1.9 in the npm_and_yarn group (#34) Bumps the npm_and_yarn group with 1 update: [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest). Updates `vitest` from 2.1.6 to 2.1.9 - [Release notes](https://github.com/vitest-dev/vitest/releases) - [Commits](https://github.com/vitest-dev/vitest/commits/v2.1.9/packages/vitest) --- updated-dependencies: - dependency-name: vitest dependency-type: direct:development dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [Docs Site] Bump vitest in the npm_and_yarn group across 1 directory (#37) Bumps the npm_and_yarn group with 1 update in the / directory: [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest). Updates `vitest` from 2.1.9 to 3.0.7 - [Release notes](https://github.com/vitest-dev/vitest/releases) - [Commits](https://github.com/vitest-dev/vitest/commits/v3.0.7/packages/vitest) --- updated-dependencies: - dependency-name: vitest dependency-type: direct:development dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump golang.org/x/net (#38) Bumps the go_modules group with 1 update in the /tools directory: [golang.org/x/net](https://github.com/golang/net). Updates `golang.org/x/net` from 0.23.0 to 0.33.0 - [Commits](golang/net@v0.23.0...v0.33.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-type: indirect dependency-group: go_modules ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * [Docs Site] Bump typescript from 5.7.3 to 5.8.2 Bumps [typescript](https://github.com/microsoft/TypeScript) from 5.7.3 to 5.8.2. - [Release notes](https://github.com/microsoft/TypeScript/releases) - [Changelog](https://github.com/microsoft/TypeScript/blob/main/azure-pipelines.release.yml) - [Commits](microsoft/TypeScript@v5.7.3...v5.8.2) --- updated-dependencies: - dependency-name: typescript dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: Phileco <[email protected]> Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Mar 4, 2025

github-actions bot added the size/xl label Mar 4, 2025

krishnprakash merged commit 4cafc36 into production Mar 4, 2025
6 of 7 checks passed

krishnprakash deleted the dependabot/npm_and_yarn/npm_and_yarn-9102f68028 branch March 4, 2025 01:54

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

[Docs Site] Bump vitest from 2.1.9 to 3.0.7 in the npm_and_yarn group across 1 directory #37

[Docs Site] Bump vitest from 2.1.9 to 3.0.7 in the npm_and_yarn group across 1 directory #37

Uh oh!

dependabot bot commented on behalf of github Mar 4, 2025

Uh oh!

dependabot bot commented on behalf of github Mar 4, 2025

Uh oh!

cloudflare-workers-and-pages bot commented Mar 4, 2025 •

edited

Loading

Uh oh!

github-actions bot commented Mar 4, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

[Docs Site] Bump vitest from 2.1.9 to 3.0.7 in the npm_and_yarn group across 1 directory #37

[Docs Site] Bump vitest from 2.1.9 to 3.0.7 in the npm_and_yarn group across 1 directory #37

Uh oh!

Conversation

dependabot bot commented on behalf of github Mar 4, 2025

v3.0.7

🐞 Bug Fixes

🏎 Performance

View changes on GitHub

v3.0.6

🐞 Bug Fixes

View changes on GitHub

v3.0.5

Uh oh!

dependabot bot commented on behalf of github Mar 4, 2025

Uh oh!

cloudflare-workers-and-pages bot commented Mar 4, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Deploying cloudflare-docs with Cloudflare Pages

Uh oh!

github-actions bot commented Mar 4, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

cloudflare-workers-and-pages bot commented Mar 4, 2025 •

edited

Loading