Bump the js-dependencies group with 3 updates

[dependabot]

Bumps the js-dependencies group with 3 updates: vite, postcss and sass.

Updates vite from 5.4.2 to 5.4.3

Changelog

Sourced from vite's changelog.

5.4.3 (2024-09-03)

• fix: allow getting URL of JS files in publicDir (#17915) (943ece1), closes #17915
• fix: cjs warning respect the logLevel flag (#17993) (dc3c14f), closes #17993
• fix: improve CJS warning trace information (#17926) (5c5f82c), closes #17926
• fix: only remove entry assets handled by Vite core (#17916) (ebfaa7e), closes #17916
• fix: waitForRequestIdle locked (#17982) (ad13760), closes #17982
• fix(css): fix directory index import in sass modern api (#17960) (9b001ba), closes #17960
• fix(css): fix sass file:// reference (#17909) (561b940), closes #17909
• fix(css): fix sass modern source map (#17938) (d428e7e), closes #17938
• fix(deps): bump tsconfck (#17990) (8c661b2), closes #17990
• fix(html): rewrite assets url in <template> (#17988) (413c86a), closes #17988
• fix(preload): add crossorigin attribute in CSS link tags (#17930) (15871c7), closes #17930
• chore: reduce diffs with v6 branch (#17942) (bf9065a), closes #17942
• chore(deps): update all non-major dependencies (#17945) (cfb621e), closes #17945
• chore(deps): update all non-major dependencies (#17991) (0ca53cf), closes #17991

Commits

• ccbfc1a release: v5.4.3
• 9b001ba fix(css): fix directory index import in sass modern api (#17960)
• 5c5f82c fix: improve CJS warning trace information (#17926)
• 15871c7 fix(preload): add crossorigin attribute in CSS link tags (#17930)
• 413c86a fix(html): rewrite assets url in <template> (#17988)
• dc3c14f fix: cjs warning respect the logLevel flag (#17993)
• 0ca53cf chore(deps): update all non-major dependencies (#17991)
• ebfaa7e fix: only remove entry assets handled by Vite core (#17916)
• d428e7e fix(css): fix sass modern source map (#17938)
• ad13760 fix: waitForRequestIdle locked (#17982)
• Additional commits viewable in compare view

Updates postcss from 8.4.41 to 8.4.44

Release notes

Sourced from postcss's releases.

8.4.44

• Another way to fix markClean is not a function error.

8.4.43

• Fixed markClean is not a function error.

8.4.42

• Fixed CSS syntax error on long minified files (by @​varpstar).

Changelog

Sourced from postcss's changelog.

8.4.44

• Another way to fix markClean is not a function error.

8.4.43

• Fixed markClean is not a function error.

8.4.42

• Fixed CSS syntax error on long minified files (by @​varpstar).

Commits

• d442dc7 Release 8.4.44 version
• 3c7cda0 Another way to fix markClean() is undefined issue
• b985ed1 Release 8.4.43 version
• 3025b74 Update dependencies
• 79ff980 Update AST if it is not made by PostCSS >= 8.4.41
• 0fda48a Release 8.4.42 version
• cd5b08c Add ESLint to CI
• 0975cc2 Sort source code and fix ESLint
• 36950b4 Try to fix old Node.js tests
• fbb6d60 Update dependencies
• Additional commits viewable in compare view

Updates sass from 1.77.8 to 1.78.0

Release notes

Sourced from sass's releases.

Dart Sass 1.78.0

To install Sass 1.78.0, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

Changes

• The meta.feature-exists function is now deprecated. This deprecation is named feature-exists.

• Fix a crash when using @at-root without any queries or children in the indented syntax.

JS API

• Backport the deprecation options (fatalDeprecations, futureDeprecations, and silenceDeprecations) to the legacy JS API. The legacy JS API is itself deprecated, and you should move off of it if possible, but this will allow users of bundlers and other tools that are still using the legacy API to still control deprecation warnings.

• Fix a bug where accessing SourceSpan.url would crash when a relative URL was passed to the Sass API.

Embedded Sass

• Explicitly expose a sass executable from the sass-embedded npm package. This was intended to be included in 1.63.0, but due to the way platform-specific dependency executables are installed it did not work as intended. Now users can run npx sass for local installs or just sass when sass-embedded is installed globally.

• Add linux-riscv64, linux-musl-riscv64, and android-riscv64 support for the sass-embedded npm package.

• Fix an edge case where the Dart VM could hang when shutting down when requests were in flight.

• Fix a race condition where the embedded host could fail to shut down if it was closed around the same time a new compilation was started.

• Fix a bug where parse-time deprecation warnings could not be controlled by the deprecation options in some circumstances.

See the full changelog for changes in earlier releases.

Changelog

Sourced from sass's changelog.

1.78.0

• The meta.feature-exists function is now deprecated. This deprecation is named feature-exists.

• Fix a crash when using @at-root without any queries or children in the indented syntax.

JS API

• Backport the deprecation options (fatalDeprecations, futureDeprecations, and silenceDeprecations) to the legacy JS API. The legacy JS API is itself deprecated, and you should move off of it if possible, but this will allow users of bundlers and other tools that are still using the legacy API to still control deprecation warnings.

• Fix a bug where accessing SourceSpan.url would crash when a relative URL was passed to the Sass API.

Embedded Sass

• Explicitly expose a sass executable from the sass-embedded npm package. This was intended to be included in 1.63.0, but due to the way platform-specific dependency executables are installed it did not work as intended. Now users can run npx sass for local installs or just sass when sass-embedded is installed globally.

• Add linux-riscv64, linux-musl-riscv64, and android-riscv64 support for the sass-embedded npm package.

• Fix an edge case where the Dart VM could hang when shutting down when requests were in flight.

• Fix a race condition where the embedded host could fail to shut down if it was closed around the same time a new compilation was started.

• Fix a bug where parse-time deprecation warnings could not be controlled by the deprecation options in some circumstances.

Commits

• 90a70ef Fix failing double check test for sass-parser (#2330)
• b1d5f98 Backport deprecation API to legacy JS API (#2293)
• 56a4237 Delete unreachable default clause. (#2323)
• a7f623d Bump bufbuild/buf-setup-action in /.github/util/initialize (#2319)
• 9f82850 Ignore new unreachable_switch_default warning. (#2318)
• 798cd7c Update pubspec.yaml (#2321)
• 2bf3ae0 Fix a comment (#2316)
• eb6c19e Initial implementation of a PostCSS-compatible parser JS API (#2304)
• c3cccef Bump dartdoc from 8.0.7 to 8.0.8 (#2300)
• f0a0182 docs: Fix link to custom importer (#2315)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions