Bump vite from 7.1.12 to 7.2.0 #1015

dependabot · 2025-11-05T09:17:24Z

Bumps vite from 7.1.12 to 7.2.0.

Release notes

plugin-legacy@7.2.0

Please refer to CHANGELOG.md for details.

v7.2.0

Please refer to CHANGELOG.md for details.

v7.2.0-beta.1

Please refer to CHANGELOG.md for details.

v7.2.0-beta.0

Please refer to CHANGELOG.md for details.

Changelog

Sourced from vite's changelog.

7.2.0 (2025-11-05)

Bug Fixes

css: fallback to sass when sass-embedded platform binary is missing (#21002) (b1fd616)

module-runner: make getBuiltins response JSON serializable (#21029) (ad5b3bf)

types: add undefined to optional properties for exactOptionalProperties type compatibility (#21040) (2833c55)

Miscellaneous Chores

deps: update rolldown-related dependencies (#21047) (e3a6a83)

7.2.0-beta.1 (2025-10-29)

Bug Fixes

increase stream reset rate limit for HTTP2 (#21024) (4f44f22)

optimizer: externalize virtual modules for html like files (#21001) (e5af352)

Documentation

clarify the values are escaped automatically (#21017) (246df13)

Code Refactoring

use fs.cpSync (#21019) (a2df778)

7.2.0-beta.0 (2025-10-28)

Features

add import.meta.resolve support for ESM config (bundle config loader) (#20962) (f86789a)

add perEnvironmentWatchChangeDuringDev (#20996) (a5e98e6)

add vite client connect events (#20978) (543d87c)

build: emit license (#18546) (b42c3fb)

dev: support HTTP2 even if proxy feature is used (#20869) (fc21af7)

lib: enable minification but keep pure annotations for es output with terser (#20522) (df997d0)

optimizer: add rush lockfile support (#20833) (718ca2d)

utils: support multiple certificates in resolveServerUrls (#20707) (24513e5)

Bug Fixes

build: ensure amd bundles request require to be injected (#20861) (bb85bd7)

build: replace names in the manifest with unmangled name for CSS assets (#20585) (4abf056)

deps: downgrade commonjs plugin to 28.0.6 to avoid rollup/plugins#1909 (#20988) (856e683)

deps: update all non-major dependencies (#21008) (185641e)

disable optional peer dep handling for nodeResolveWithVite (#20989) (ca18b23)

handle query parameters for /@vite/* modules (#20998) (6843a6a)

module-runner: resolve resolvedSources correctly (#20959) (c4f6039)

resolve: match resolved subpath import path's relative prefix with regex (fix #20972) (#20973) (ff2d83e)

update build log to include environment name (#20987) (77c25c1)

use esm entrypoint for css preprocessors and terser (#20918) (1460824)

... (truncated)

Commits

8293de0 release: v7.2.0
2833c55 fix(types): add undefined to optional properties for exactOptionalProperties ...
e3a6a83 chore(deps): update rolldown-related dependencies (#21047)
b1fd616 fix(css): fallback to sass when sass-embedded platform binary is missing (#21...
ad5b3bf fix(module-runner): make getBuiltins response JSON serializable (#21029)
793baa2 release: v7.2.0-beta.1
e5af352 fix(optimizer): externalize virtual modules for html like files (#21001)
4f44f22 fix: increase stream reset rate limit for HTTP2 (#21024)
a2df778 refactor: use fs.cpSync (#21019)
246df13 docs: clarify the values are escaped automatically (#21017)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) from 7.1.12 to 7.2.0. - [Release notes](https://github.com/vitejs/vite/releases) - [Changelog](https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md) - [Commits](https://github.com/vitejs/vite/commits/v7.2.0/packages/vite) --- updated-dependencies: - dependency-name: vite dependency-version: 7.2.0 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

changeset-bot · 2025-11-05T09:17:28Z

⚠️ No Changeset found

Latest commit: 861f819

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

bundlemon · 2025-11-05T09:18:02Z

BundleMon

Unchanged files (130)

Status	Path	Size	Limits
✅	@solana/kit production bundle _{kit/dist/index.production.min.js}	36.09KB	-
✅	rpc-graphql/dist/index.browser.mjs	18.82KB	-
✅	rpc-graphql/dist/index.native.mjs	18.81KB	-
✅	rpc-graphql/dist/index.node.mjs	18.81KB	-
✅	errors/dist/index.node.mjs	15.72KB	-
✅	errors/dist/index.browser.mjs	15.7KB	-
✅	errors/dist/index.native.mjs	15.7KB	-
✅	transaction-messages/dist/index.browser.mjs	7.29KB	-
✅	transaction-messages/dist/index.native.mjs	7.29KB	-
✅	transaction-messages/dist/index.node.mjs	7.29KB	-
✅	codecs-data-structures/dist/index.browser.mjs	4.69KB	-
✅	codecs-data-structures/dist/index.native.mjs	4.69KB	-
✅	codecs-data-structures/dist/index.node.mjs	4.69KB	-
✅	webcrypto-ed25519-polyfill/dist/index.node.mj s	3.6KB	-
✅	webcrypto-ed25519-polyfill/dist/index.browser .mjs	3.59KB	-
✅	webcrypto-ed25519-polyfill/dist/index.native. mjs	3.57KB	-
✅	instruction-plans/dist/index.browser.mjs	3.42KB	-
✅	instruction-plans/dist/index.native.mjs	3.42KB	-
✅	instruction-plans/dist/index.node.mjs	3.41KB	-
✅	codecs-core/dist/index.browser.mjs	3.41KB	-
✅	codecs-core/dist/index.native.mjs	3.41KB	-
✅	codecs-core/dist/index.node.mjs	3.41KB	-
✅	rpc-subscriptions/dist/index.browser.mjs	3.37KB	-
✅	rpc-subscriptions/dist/index.node.mjs	3.34KB	-
✅	rpc-subscriptions/dist/index.native.mjs	3.31KB	-
✅	addresses/dist/index.browser.mjs	2.93KB	-
✅	rpc-transformers/dist/index.browser.mjs	2.93KB	-
✅	rpc-transformers/dist/index.native.mjs	2.93KB	-
✅	addresses/dist/index.native.mjs	2.93KB	-
✅	addresses/dist/index.node.mjs	2.93KB	-
✅	rpc-transformers/dist/index.node.mjs	2.93KB	-
✅	transactions/dist/index.browser.mjs	2.9KB	-
✅	transactions/dist/index.native.mjs	2.9KB	-
✅	transactions/dist/index.node.mjs	2.9KB	-
✅	signers/dist/index.browser.mjs	2.63KB	-
✅	signers/dist/index.native.mjs	2.63KB	-
✅	signers/dist/index.node.mjs	2.62KB	-
✅	codecs-strings/dist/index.browser.mjs	2.53KB	-
✅	codecs-strings/dist/index.node.mjs	2.48KB	-
✅	codecs-strings/dist/index.native.mjs	2.45KB	-
✅	transaction-confirmation/dist/index.node.mjs	2.41KB	-
✅	transaction-confirmation/dist/index.native.mj s	2.36KB	-
✅	transaction-confirmation/dist/index.browser.m js	2.35KB	-
✅	sysvars/dist/index.browser.mjs	2.35KB	-
✅	sysvars/dist/index.native.mjs	2.34KB	-
✅	sysvars/dist/index.node.mjs	2.34KB	-
✅	react/dist/index.browser.mjs	2.31KB	-
✅	react/dist/index.native.mjs	2.31KB	-
✅	react/dist/index.node.mjs	2.31KB	-
✅	rpc-subscriptions-spec/dist/index.node.mjs	2.18KB	-
✅	rpc-subscriptions-spec/dist/index.native.mjs	2.13KB	-
✅	rpc-subscriptions-spec/dist/index.browser.mjs	2.13KB	-
✅	keys/dist/index.browser.mjs	2.08KB	-
✅	keys/dist/index.native.mjs	2.08KB	-
✅	keys/dist/index.node.mjs	2.08KB	-
✅	codecs-numbers/dist/index.native.mjs	2.01KB	-
✅	codecs-numbers/dist/index.browser.mjs	2.01KB	-
✅	codecs-numbers/dist/index.node.mjs	2.01KB	-
✅	rpc/dist/index.node.mjs	1.95KB	-
✅	rpc-transport-http/dist/index.browser.mjs	1.91KB	-
✅	rpc-transport-http/dist/index.native.mjs	1.9KB	-
✅	rpc/dist/index.native.mjs	1.81KB	-
✅	rpc/dist/index.browser.mjs	1.8KB	-
✅	subscribable/dist/index.node.mjs	1.8KB	-
✅	subscribable/dist/index.native.mjs	1.75KB	-
✅	subscribable/dist/index.browser.mjs	1.74KB	-
✅	rpc-transport-http/dist/index.node.mjs	1.72KB	-
✅	kit/dist/index.browser.mjs	1.68KB	-
✅	kit/dist/index.native.mjs	1.68KB	-
✅	kit/dist/index.node.mjs	1.67KB	-
✅	rpc-types/dist/index.browser.mjs	1.53KB	-
✅	rpc-types/dist/index.native.mjs	1.53KB	-
✅	rpc-types/dist/index.node.mjs	1.53KB	-
✅	rpc-subscriptions-channel-websocket/dist/inde x.node.mjs	1.33KB	-
✅	rpc-subscriptions-channel-websocket/dist/inde x.native.mjs	1.27KB	-
✅	rpc-subscriptions-channel-websocket/dist/inde x.browser.mjs	1.26KB	-
✅	options/dist/index.browser.mjs	1.18KB	-
✅	options/dist/index.native.mjs	1.18KB	-
✅	options/dist/index.node.mjs	1.17KB	-
✅	accounts/dist/index.browser.mjs	1.13KB	-
✅	accounts/dist/index.native.mjs	1.12KB	-
✅	accounts/dist/index.node.mjs	1.12KB	-
✅	rpc-api/dist/index.browser.mjs	976B	-
✅	rpc-api/dist/index.native.mjs	975B	-
✅	rpc-api/dist/index.node.mjs	973B	-
✅	compat/dist/index.browser.mjs	969B	-
✅	compat/dist/index.native.mjs	968B	-
✅	compat/dist/index.node.mjs	966B	-
✅	rpc-spec-types/dist/index.browser.mjs	962B	-
✅	rpc-spec-types/dist/index.native.mjs	961B	-
✅	rpc-spec-types/dist/index.node.mjs	959B	-
✅	rpc-subscriptions-api/dist/index.native.mjs	870B	-
✅	rpc-subscriptions-api/dist/index.node.mjs	869B	-
✅	rpc-subscriptions-api/dist/index.browser.mjs	868B	-
✅	rpc-spec/dist/index.browser.mjs	852B	-
✅	rpc-spec/dist/index.native.mjs	851B	-
✅	rpc-spec/dist/index.node.mjs	850B	-
✅	promises/dist/index.browser.mjs	799B	-
✅	promises/dist/index.native.mjs	798B	-
✅	promises/dist/index.node.mjs	797B	-
✅	assertions/dist/index.browser.mjs	783B	-
✅	instructions/dist/index.browser.mjs	769B	-
✅	instructions/dist/index.native.mjs	768B	-
✅	instructions/dist/index.node.mjs	767B	-
✅	fast-stable-stringify/dist/index.browser.mjs	726B	-
✅	fast-stable-stringify/dist/index.native.mjs	725B	-
✅	assertions/dist/index.native.mjs	724B	-
✅	fast-stable-stringify/dist/index.node.mjs	724B	-
✅	assertions/dist/index.node.mjs	723B	-
✅	programs/dist/index.browser.mjs	329B	-
✅	programs/dist/index.native.mjs	327B	-
✅	programs/dist/index.node.mjs	325B	-
✅	event-target-impl/dist/index.node.mjs	230B	-
✅	functional/dist/index.browser.mjs	154B	-
✅	functional/dist/index.native.mjs	152B	-
✅	text-encoding-impl/dist/index.native.mjs	152B	-
✅	functional/dist/index.node.mjs	151B	-
✅	codecs/dist/index.browser.mjs	137B	-
✅	codecs/dist/index.native.mjs	136B	-
✅	codecs/dist/index.node.mjs	134B	-
✅	event-target-impl/dist/index.browser.mjs	133B	-
✅	ws-impl/dist/index.node.mjs	131B	-
✅	text-encoding-impl/dist/index.browser.mjs	122B	-
✅	text-encoding-impl/dist/index.node.mjs	119B	-
✅	ws-impl/dist/index.browser.mjs	113B	-
✅	crypto-impl/dist/index.node.mjs	111B	-
✅	crypto-impl/dist/index.browser.mjs	109B	-
✅	rpc-parsed-types/dist/index.browser.mjs	66B	-
✅	rpc-parsed-types/dist/index.native.mjs	65B	-
✅	rpc-parsed-types/dist/index.node.mjs	63B	-

No change in files bundle size

Final result: ✅

View report in BundleMon website ➡️

Current branch size history | Target branch size history

socket-security · 2025-11-05T09:18:18Z

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Package	Supply Chain Security	Quality	Maintenance
eslint-config-next@15.3.5
@inkeep/cxkit-react@0.5.96
fumadocs-twoslash@3.1.1
fumadocs-docgen@2.0.0
fumadocs-mdx@11.6.1
@types/mdx@2.0.13
@types/react-dom@19.2.2 ⏵ 19.0.4
fumadocs-core@15.2.10
fumadocs-ui@15.2.10
@solana-program/memo@0.9.0 ⏵ 0.7.0	⁺¹²	⁺¹	^-1
@types/react@19.2.2 ⏵ 19.0.12	⁺¹	⁺¹	⁺¹
@types/node@24.10.0 ⏵ 22.13.8			⁺¹
@tailwindcss/postcss@4.1.4
@solana/react@3.0.0-canary-20250811123225
postcss@8.5.3
next@15.3.5
@solana-program/compute-budget@0.8.0
@solana-program/address-lookup-table@0.9.0 ⏵ 0.7.0	⁺⁸	⁺¹	^-1
@solana-program/system@0.9.0 ⏵ 0.7.0		⁺¹	^-2
@solana/webcrypto-ed25519-polyfill@3.0.0-canary-20250811123225
react@19.0.0
@solana-program/token@0.5.1
@solana/compat@3.0.0-canary-20250811123225
@solana/web3.js@1.98.4 ⏵ 1.98.2			⁺¹
react-dom@19.0.0
lucide-react@0.484.0
@solana/kit@3.0.0-canary-20250811123225
eslint@9.38.0 ⏵ 8.57.1

View full report

socket-security · 2025-11-05T09:18:20Z

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action	Severity	Alert (click "▶" to expand/collapse)
Warn		Obfuscated code: npm `safer-buffer` is 94.0% likely obfuscated Confidence: 0.94 Location: Package overview From: docs/pnpm-lock.yaml → `npm/safer-buffer@2.1.2` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/safer-buffer@2.1.2`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

steveluscher · 2025-11-13T19:32:52Z

Merge activity

Nov 13, 7:32 PM UTC: @steveluscher merged this pull request with Graphite.

mergify · 2025-11-13T19:33:22Z

Automerge label removed due to a CI failure

github-actions · 2025-11-13T19:46:03Z

🔎💬 Inkeep AI search and chat service is syncing content for source 'Solana Kit Docs'

dependabot bot added the automerge Merge this Pull Request automatically once CI passes label Nov 5, 2025

steveluscher approved these changes Nov 13, 2025

View reviewed changes

mergify bot added a commit that referenced this pull request Nov 13, 2025

Merge of #1015

002e386

steveluscher merged commit e0ce131 into main Nov 13, 2025
13 of 14 checks passed

mergify bot mentioned this pull request Nov 13, 2025

merge queue: embarking main (ca75e7f) and #1015 together #1020

Closed

4 tasks

steveluscher deleted the dependabot/npm_and_yarn/vite-7.2.0 branch November 13, 2025 19:32

mergify bot removed the automerge Merge this Pull Request automatically once CI passes label Nov 13, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump vite from 7.1.12 to 7.2.0 #1015

Bump vite from 7.1.12 to 7.2.0 #1015

Uh oh!

dependabot bot commented on behalf of github Nov 5, 2025 •

edited

Loading

Uh oh!

changeset-bot bot commented Nov 5, 2025

Uh oh!

bundlemon bot commented Nov 5, 2025

Uh oh!

socket-security bot commented Nov 5, 2025

Uh oh!

socket-security bot commented Nov 5, 2025

Uh oh!

Uh oh!

steveluscher commented Nov 13, 2025

Uh oh!

mergify bot commented Nov 13, 2025

Uh oh!

github-actions bot commented Nov 13, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Bump vite from 7.1.12 to 7.2.0 #1015

Bump vite from 7.1.12 to 7.2.0 #1015

Uh oh!

Conversation

dependabot bot commented on behalf of github Nov 5, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

plugin-legacy@7.2.0

v7.2.0

v7.2.0-beta.1

v7.2.0-beta.0

7.2.0 (2025-11-05)

Bug Fixes

Miscellaneous Chores

7.2.0-beta.1 (2025-10-29)

Bug Fixes

Documentation

Code Refactoring

7.2.0-beta.0 (2025-10-28)

Features

Bug Fixes

Uh oh!

changeset-bot bot commented Nov 5, 2025

⚠️ No Changeset found

Uh oh!

bundlemon bot commented Nov 5, 2025

BundleMon

Uh oh!

socket-security bot commented Nov 5, 2025

Uh oh!

socket-security bot commented Nov 5, 2025

Uh oh!

Uh oh!

steveluscher commented Nov 13, 2025

Merge activity

Uh oh!

mergify bot commented Nov 13, 2025

Uh oh!

github-actions bot commented Nov 13, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

dependabot bot commented on behalf of github Nov 5, 2025 •

edited

Loading