Bump @sveltejs/vite-plugin-svelte from 2.4.6 to 2.5.3 in /frontend

[dependabot]

Bumps @sveltejs/vite-plugin-svelte from 2.4.6 to 2.5.3.

Release notes

Sourced from @​sveltejs/vite-plugin-svelte's releases.

@​sveltejs/vite-plugin-svelte@​2.5.3

Patch Changes

• fix: handle closing tags in attributes when detecting script language (#796)

@​sveltejs/vite-plugin-svelte@​2.5.2

Patch Changes

• fix compileModule call for optimizing libraries (#788)

@​sveltejs/vite-plugin-svelte@​2.5.1

Patch Changes

• feat: support Svelte 5 compiler API (#785)

@​sveltejs/vite-plugin-svelte@​2.5.0

Minor Changes

• feat: add experimental support for Svelte 5 (#782)

Changelog

Sourced from @​sveltejs/vite-plugin-svelte's changelog.

@​sveltejs/vite-plugin-svelte

5.0.2

Patch Changes

• adapt internal handling of warning and error code property to changes in svelte5 (#1044)

5.0.1

Patch Changes

• Fix peer dependencies warning (#1038)

5.0.0

Major Changes

• Handle Vite 6 breaking change and remove Vite 5 handling (#1020)

• Support Vite 6 (#1026)

Minor Changes

• Add esm-env to ssr.noExternal by default to resolve its conditions with Vite (#1020)

• Support ?inline query on Svelte style virtual modules (#1024)

Patch Changes

• remove vite6 beta from peer range (#1035)

• Allow script tags to span multiple lines (0db95a9)

• Updated dependencies [4fefbc2, e262266]:

  • @​sveltejs/vite-plugin-svelte-inspector@​4.0.0

5.0.0-next.0

Major Changes

• Handle Vite 6 breaking change and remove Vite 5 handling (#1020)

... (truncated)

Commits

• 3c37482 Version Packages (#810)
• 4b8918d fix: handle closing tags in attributes (#796)
• 84d9fa9 Version Packages (#789)
• 89aa462 fix: compile (#788)
• ec4c530 Version Packages (#786)
• 9509066 generate: 'client' | 'server' (#785)
• cda2e30 Version Packages (#784)
• 61ae116 Update ci.yml (#783)
• 31ce52c Chore/v2 cleanup (#782)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
capy-life	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Dec 16, 2024 5:40pm

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/@sveltejs/vite-plugin-svelte@2.5.3	Transitive: environment	+9	834 kB	svelte-admin
pypi/mako@1.2.4	environment, eval, filesystem, network	0	2.26 MB	CaselIT, bourke
pypi/markdown-it-py@3.0.0	eval, filesystem, shell	0	264 kB	cjsewell, ebp-bot
pypi/markupsafe@2.1.3	environment, unsafe	0	142 kB
pypi/mdurl@0.1.2	None	0	25.7 kB	hukkin
pypi/motor-types@1.0.0b4	None	0	77.5 kB	Lord-Zero
pypi/motor@3.5.1	environment, filesystem, network	0	1.1 MB	10gen, emptysquare
pypi/motor@3.6.0	None	0	0 B
pypi/msgspec@0.16.0	environment, filesystem, shell, unsafe	0	893 kB	jcrist
pypi/multidict@6.0.4	environment, filesystem, unsafe	0	621 kB	Andrew.Svetlov, webknjaz
pypi/mypy-extensions@1.0.0	None	0	11.5 kB	guido, hauntsaninja, ilevkivskyi, ...2 more
pypi/mypy@1.10.1	environment, eval, filesystem, network, shell, unsafe	0	45.2 MB	ambv, guido, hauntsaninja, ...8 more
pypi/mypy@1.13.0	environment, eval, filesystem, network, shell, unsafe	0	46.2 MB	ambv, guido, hauntsaninja, ...8 more
pypi/names@0.3.0	filesystem	0	3.32 MB	treyhunner
pypi/nanoid@2.0.0	filesystem	0	14.5 kB	puyuan
pypi/opentelemetry-api@1.18.0	environment, eval, unsafe	0	309 kB	LeightonC, opentelemetry
pypi/opentelemetry-instrumentation-asgi@0.41b0	environment, eval, network	0	91.9 kB	LeightonC, codeboten, opentelemetry
pypi/opentelemetry-instrumentation@0.41b0	environment, filesystem, network, shell	0	102 kB	LeightonC, codeboten, opentelemetry
pypi/opentelemetry-semantic-conventions@0.41b0	environment	0	80 kB	LeightonC, opentelemetry
pypi/opentelemetry-util-http@0.41b0	environment, eval, network	0	31.5 kB	LeightonC, opentelemetry
pypi/packaging@23.1	environment, eval, filesystem, shell	0	2.34 MB	brettcannon, dstufft, pf_moore, ...1 more
pypi/pathspec@0.11.1	filesystem	0	186 kB	cpburnz
pypi/picologging@0.9.2	filesystem, network, unsafe	0	548 kB	anthonypjshaw, microsoft

🚮 Removed packages: npm/@sveltejs/vite-plugin-svelte@2.4.6

View full report↗︎

[socket-security]

Report is too large to display inline.
View full report↗︎

Next steps

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/foo@1.0.0 or ignore all packages with @SocketSecurity ignore-all

• @SocketSecurity ignore pypi/markupsafe@2.1.3
• @SocketSecurity ignore pypi/multidict@6.0.4
• @SocketSecurity ignore pypi/mypy-extensions@1.0.0
• @SocketSecurity ignore pypi/mako@1.2.4
• @SocketSecurity ignore pypi/packaging@23.1
• @SocketSecurity ignore pypi/markdown-it-py@3.0.0
• @SocketSecurity ignore pypi/opentelemetry-instrumentation@0.41b0
• @SocketSecurity ignore pypi/opentelemetry-instrumentation-asgi@0.41b0
• @SocketSecurity ignore pypi/opentelemetry-util-http@0.41b0
• @SocketSecurity ignore pypi/nanoid@2.0.0
• @SocketSecurity ignore pypi/msgspec@0.16.0
• @SocketSecurity ignore pypi/mypy@1.10.1
• @SocketSecurity ignore pypi/picologging@0.9.2
• @SocketSecurity ignore pypi/motor@3.5.1
• @SocketSecurity ignore pypi/mypy@1.13.0