chore(deps-dev):(deps-dev): bump @vitest/coverage-v8 from 4.0.16 to 4.0.17 in /frontend

[dependabot]

Bumps @vitest/coverage-v8 from 4.0.16 to 4.0.17.

Release notes

Sourced from @​vitest/coverage-v8's releases.

v4.0.17

   🚀 Experimental Features

• Support openTelemetry for browser mode  -  by @​hi-ogawa in vitest-dev/vitest#9180 (1ec3a)
• Support TRACEPARENT and TRACESTATE environment variables for OpenTelemetry context propagation  -  by @​Copilot, hi-ogawa and @​hi-ogawa in vitest-dev/vitest#9295 (876cb)

   🐞 Bug Fixes

• Improve asymmetric matcher diff readability by unwrapping container matchers  -  by @​Copilot, sheremet-va, hi-ogawa and @​hi-ogawa in vitest-dev/vitest#9330 (b2ec7)
• Improve runner error when importing outside of test context  -  by @​sheremet-va in vitest-dev/vitest#9335 (2dd3d)
• Replace crypto.randomUUID to allow insecure environments (fix #9…  -  by @​plusgut in vitest-dev/vitest#9339 and vitest-dev/vitest#9 (e6a3f)
• Handle null options in addEventHandler #9371  -  by @​ThibautMarechal in vitest-dev/vitest#9372 and vitest-dev/vitest#9371 (40841)
• Typo in browser.provider error  -  by @​deammer in vitest-dev/vitest#9394 (4b67f)
• browser:
  • Fix process.env and import.meta.env defines in inline project  -  by @​hi-ogawa in vitest-dev/vitest#9239 (b70c9)
  • Fix upload File instance  -  by @​hi-ogawa in vitest-dev/vitest#9294 (b6778)
  • Fix invalid project token for artifacts assets  -  by @​hi-ogawa in vitest-dev/vitest#9321 (caa7d)
  • Log ErrorEvent.message when unhandled ErrorEvent.error is null  -  by @​hi-ogawa in vitest-dev/vitest#9322 (5d84e)
  • Support fileParallelism on an instance  -  by @​sheremet-va in vitest-dev/vitest#9328 (15006)
• coverage:
  • Remove unnecessary istanbul-lib-source-maps usage  -  by @​AriPerkkio in vitest-dev/vitest#9344 (b0940)
  • Apply patch from istanbuljs/istanbuljs#837  -  by @​AriPerkkio and sapphi-red in vitest-dev/vitest#9413 and vitest-dev/vitest#837 (e05ce)
• fsModuleCache:
  • Don't store importers in cache  -  by @​sheremet-va in vitest-dev/vitest#9422 (75136)
  • Add importers alongside importedModules  -  by @​sheremet-va in vitest-dev/vitest#9423 (59f92)
• mocker:
  • Fix mock transform with class  -  by @​hi-ogawa in vitest-dev/vitest#9421 (d390e)
• pool:
  • Validate environment options when reusing the worker  -  by @​sheremet-va in vitest-dev/vitest#9349 (a8a88)
  • Handle worker start failures gracefully  -  by @​AriPerkkio in vitest-dev/vitest#9337 (200da)
• reporter:
  • Report test module if it failed to run  -  by @​sheremet-va in vitest-dev/vitest#9272 (c7888)
• runner:
  • Respect nested test.only within describe.only  -  by @​Ujjwaljain16 in vitest-dev/vitest#9021 and vitest-dev/vitest#9213 (55d5d)
• typecheck:
  • Improve error message when tsc outputs help text  -  by @​Ujjwaljain16 in vitest-dev/vitest#9214 (7b10a)
• ui:
  • Detect gzip by magic numbers instead of Content-Type header in html reporter  -  by @​Copilot, hi-ogawa and @​hi-ogawa in vitest-dev/vitest#9278 (dd033)
• webdriverio:
  • Fall back to WebDriver Classic #9244  -  by @​JustasMonkev in vitest-dev/vitest#9373 and vitest-dev/vitest#9244 (c23dd)

    View changes on GitHub

Commits

• dd54e94 chore: release v4.0.17
• 29ee7f5 chore(deps): update ast-v8-to-istanbul (#9418)
• b094053 fix(coverage): remove unnecessary istanbul-lib-source-maps usage (#9344)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Greptile Summary

Automated patch update for @vitest/coverage-v8 from 4.0.16 to 4.0.17 with bug fixes and dependency improvements.

• Removes unnecessary istanbul-lib-source-maps dependency (improvement per fix(coverage): remove unnecessary istanbul-lib-source-maps usage vitest-dev/vitest#9344)
• Updates ast-v8-to-istanbul to 0.3.10 with patch from fix: istanbul-lib-source-maps to map functions without closing brace mapping istanbuljs/istanbuljs#837
• Includes transitive updates to all @vitest/* packages (utils, spy, expect, mocker, runner, snapshot, pretty-format, ui)
• Bug fixes include: improved asymmetric matcher diff readability, better error messages for imports outside test context, fixes for browser mode file parallelism, and mock transform improvements with classes
• No breaking changes or configuration updates required
• Existing vitest.config.js remains compatible (uses v8 coverage provider)

Confidence Score: 5/5

• Safe to merge - routine automated patch update with bug fixes and no breaking changes
• This is a standard Dependabot-generated patch version bump (4.0.16 → 4.0.17) for a development dependency. The update includes only bug fixes and improvements with no breaking changes, no configuration changes required, and the existing vitest.config.js remains fully compatible. The removal of istanbul-lib-source-maps is an intentional improvement. All changes are in lockfile metadata with proper integrity hashes.
• No files require special attention

Important Files Changed

Filename	Overview
frontend/package.json	Bumped @vitest/coverage-v8 from 4.0.16 to 4.0.17
frontend/package-lock.json	Updated lockfile with transitive vitest dependencies, removed istanbul-lib-source-maps, updated ast-v8-to-istanbul to 0.3.10

Sequence Diagram

sequenceDiagram
    participant D as Dependabot
    participant PR as Pull Request #176
    participant NPM as NPM Registry
    participant PJ as package.json
    participant PL as package-lock.json
    participant CI as CI/CD Pipeline
    
    D->>NPM: Check for @vitest/coverage-v8 updates
    NPM-->>D: Version 4.0.17 available
    D->>PJ: Update @vitest/coverage-v8: 4.0.16 → 4.0.17
    D->>NPM: Resolve transitive dependencies
    NPM-->>D: Return dependency tree
    Note over NPM,D: @vitest/utils, @vitest/spy,<br/>@vitest/expect, @vitest/mocker,<br/>@vitest/runner, @vitest/snapshot,<br/>@vitest/pretty-format, @vitest/ui
    D->>PL: Update all @vitest/* packages to 4.0.17
    D->>PL: Remove istanbul-lib-source-maps
    D->>PL: Update ast-v8-to-istanbul: 0.3.8 → 0.3.10
    D->>PR: Create PR with changes
    PR->>CI: Trigger automated tests
    CI-->>PR: Validation results

Loading