chore(deps): bump the npm group in /frontend with 5 updates

[dependabot]

Bumps the npm group in /frontend with 5 updates:

Package	From	To
quasar	2.15.2	2.15.3
vue	3.4.21	3.4.23
vue-router	4.3.0	4.3.2
vite	5.2.8	5.2.9
vue-tsc	2.0.12	2.0.13

Updates quasar from 2.15.2 to 2.15.3

Release notes

Sourced from quasar's releases.

quasar-v2.15.3

New

• feat(ui): expose IconSet as a regular Quasar plugin (import { IconSet } from 'quasar')
• feat(ui): expose Lang as a regular Quasar plugin (import { Lang } from 'quasar')
• feat(ui): tweak JSONs, add new props & enforce more validations on building them
• feat(ui/format): humanStorageSize -> new extra param (decimals) -> (value, decimals = 1)
• feat(LocalStorage/SessionStorage): add "hasItem", "removeItem", "setItem" aliases (matches web storage specs) #17109
• refactor(ui): folder structure for plugins & utils & composables

Fixes

• fix(ui): the UMD generated icon-set files in dist/icon-set
• fix(QDialog): focus() method should correctly handle the selector param (if received)
• fix(QBtn): the "click()" method should not trigger anything if QBtn is disabled
• fix(Platform): Safari version number detection #17111
• fix(ui): make capacitor/cordova config properties type optional (#17056)
• fix(ui): QTooltip & use-anchor JSON -> removed some erroneous "values" keys
• fix(QField/QFile/QInput/QSelect): JSON -> correctly define the "name" prop
• fix(QTabPanel): JSON > remove "dark" prop (not a valid prop)
• fix(QSelect/QVirtualScroll): add type "Component" to some JSON "ref"
• fix(lang): ukrainian translate "editor.outdent" (#17083)
• fix(LocalStorage/SessionStorage): JSON definition for getIndex()
• fix(SessionStorage/LocalStorage): better encoding/decoding for Date objects
• fix(QChip): JSON > add missing "update:model-value" event

Donations

Quasar Framework is an open-source MIT-licensed project made possible due to the generous contributions by sponsors and backers. If you are interested in supporting this project, please consider the following:

• Becoming a sponsor on Github
• One-off donation via PayPal

Commits

• 17c56b7 chore(ui): Bump version
• 3b897d5 chore(app-vite): Bump version
• 9778738 chore(app-webpack): Bump version
• f6350b0 feat+perf: update monorepo package.json testing scripts (deduplicate work)
• a124260 feat(ui/testing): update the ignored test files list
• 0dd1fc8 chore(ui/testing): update ignored test files config
• e797bf7 feat(ui/testing): astParser > handle default export with a CallExpression
• 3cef26f feat(ui/testing): defer to the "generic" generator when there's no associated...
• ec136ca feat(ui/testing): astParser > handle more default export obj props (array & o...
• 9ad65c3 perf(ui/testing): get generator & json only on demand
• Additional commits viewable in compare view

Updates vue from 3.4.21 to 3.4.23

Release notes

Sourced from vue's releases.

v3.4.23

Please refer to CHANGELOG.md for details.

v3.4.22

Please refer to CHANGELOG.md for details.

Changelog

Sourced from vue's changelog.

3.4.23 (2024-04-16)

Bug Fixes

• runtime-core: fix regression for $attrs tracking in slots (6930e60), closes #10710
• runtime-core: use same internal object mechanism for slots (6df53d8), closes #10709

3.4.22 (2024-04-15)

Bug Fixes

• compat: fix $options mutation + adjust private API initialization (d58d133), closes #10626 #10636
• compile-sfc: analyze v-bind shorthand usage in template (#10518) (e5919d4), closes #10515
• compiler-core: fix loc.source for end tags with whitespace before > (16174da), closes #10694 #10695
• compiler-core: fix v-bind shorthand for component :is (04af950), closes #10469 #10471
• compiler-sfc: :is() and :where() in compound selectors (#10522) (660cadc), closes #10511
• compiler-sfc: also search for .tsx when type import's extension is omitted (#10637) (34106bc), closes #10635
• compiler-sfc: fix defineModel coercion for boolean + string union types (#9603) (0cef65c), closes #9587 #10676
• compiler-sfc: fix universal selector scope (#10551) (54a6afa), closes #10548
• compiler-sfc: use options module name if options provide runtimeModuleName options (#10457) (e76d743), closes #10454
• custom-element: avoid setting attr to null if it is removed (#9012) (b49306a), closes #9006 #10324
• hydration: properly handle optimized mode during hydrate node (#10638) (2ec06fd), closes #10607
• reactivity: computed should not be detected as true by isProxy (#10401) (9da34d7)
• reactivity: fix hasOwnProperty key coercion edge cases (969c5fb)
• reactivity: fix tracking when hasOwnProperty is called with non-string value (c3c5dc9), closes #10455 #10464
• runtime-core: fix errorHandler causes an infinite loop during execution (#9575) (ab59bed)
• runtime-core: handle invalid values in callWithAsyncErrorHandling (53d15d3)
• runtime-core: show hydration mismatch details for non-rectified mismatches too when PROD_HYDRATION_MISMATCH_DETAILS is set (#10599) (0dea7f9)
• runtime-dom: v-model string/number coercion for multiselect options (#10576) (db374e5)
• runtime-dom: fix css v-bind for suspensed components (#8523) (67722ba), closes #8520
• runtime-dom: force update v-model number with leading 0 (#10506) (15ffe8f), closes #10503 #10615
• runtime-dom: sanitize wrongly passed string value as event handler (#8953) (7ccd453), closes #8818
• ssr: don't render v-if comments in TransitionGroup (#6732) (5a96267), closes #6715
• Transition: ensure the KeepAlive children unmount w/ out-in mode (#10632) (fc99e4d), closes #10620
• TransitionGroup: avoid set transition hooks for comment nodes and text nodes (#9421) (140a768), closes #4621 #4622 #5153 #5168 #7898 #9067
• types: avoid merging object union types when using withDefaults (#10596) (37ba93c), closes #10594

Performance Improvements

• add __NO_SIDE_EFFECTS__ comments (#9053) (d46df6b)
• optimize component props/slots internal object checks (6af733d)
• ssr: avoid calling markRaw on component instance proxy (4bc9f39)
• ssr: optimize setup context creation for ssr in v8 (ca84316)

Commits

• 46c2b63 release: v3.4.23
• 6df53d8 fix(runtime-core): use same internal object mechanism for slots
• 6930e60 fix(runtime-core): fix regression for $attrs tracking in slots
• 97716ae chore: add security hall of fame [ci skip]
• b4b856b release: v3.4.22
• f26d566 chore: improve event value validation message
• 9da34d7 fix(reactivity): computed should not be detected as true by isProxy (#10401)
• 37ba93c fix(types): avoid merging object union types when using withDefaults (#10596)
• fc99e4d fix(Transition): ensure the KeepAlive children unmount w/ out-in mode (#10632)
• 53d15d3 fix(runtime-core): handle invalid values in callWithAsyncErrorHandling
• Additional commits viewable in compare view

Updates vue-router from 4.3.0 to 4.3.2

Release notes

Sourced from vue-router's releases.

v4.3.2

Please refer to CHANGELOG.md for details.

v4.3.1

Please refer to CHANGELOG.md for details.

Commits

• 960662d release: vue-router@4.3.2
• b78aa98 fix: Revert "fix: avoid normalizing the fullPath (#2189)"
• f85e5cb release: vue-router@4.3.1
• c54fc84 fix: avoid normalizing the fullPath (#2189)
• 8e5f04f docs: update aside
• 187e7d0 docs: up cert
• 7a7f8db docs: use UTF-8 box drawing characters (#2201)
• 7b6dcae docs: Update active-links.md (#2207)
• 0672d30 Update dynamic-matching.md (#2200)
• f776cbe docs: update certificate links
• Additional commits viewable in compare view

Updates vite from 5.2.8 to 5.2.9

Changelog

Sourced from vite's changelog.

5.2.9 (2024-04-15)

• fix: fsp.rm removing files does not take effect (#16032) (b05c405), closes #16032
• fix: fix accumulated stacks in error overlay (#16393) (102c2fd), closes #16393
• fix(deps): update all non-major dependencies (#16376) (58a2938), closes #16376
• chore: update region comment (#16380) (77562c3), closes #16380
• perf: reduce size of injected __vite__mapDeps code (#16184) (c0ec6be), closes #16184
• perf(css): only replace empty chunk if imported (#16349) (e2658ad), closes #16349

Commits

• a77707d release: v5.2.9
• 102c2fd fix: fix accumulated stacks in error overlay (#16393)
• 58a2938 fix(deps): update all non-major dependencies (#16376)
• 77562c3 chore: update region comment (#16380)
• b05c405 fix: fsp.rm removing files does not take effect (#16032)
• e2658ad perf(css): only replace empty chunk if imported (#16349)
• c0ec6be perf: reduce size of injected __vite__mapDeps code (#16184)
• See full diff in compare view

Updates vue-tsc from 2.0.12 to 2.0.13

Release notes

Sourced from vue-tsc's releases.

v2.0.13

Performance

• tsc: re-introduce global types removal check (#4245)

Other Changes

• Upgrade Volar from v2.2.0-alpha.7 to v2.2.0-alpha.8 for a vue-tsc performance issue fixes (#4238)

Please refer to CHANGELOG.md for details.

Insiders Program 🚀

This project is community-driven. If you would like to support this project, consider joining the Insiders Program to improve the sustainability of this project and unlock more features.

Sponsors

... (truncated)

Changelog

Sourced from vue-tsc's changelog.

2.0.13 (2024/4/12)

Performance

• tsc: re-introduce global types removal check (#4245)

Other Changes

• Upgrade Volar from v2.2.0-alpha.7 to v2.2.0-alpha.8 for a vue-tsc performance issue fixes (#4238)

2.1.0-insiders.4 (2024/4/10)

Download Pages: GitHub Releases, 爱发电电圈

Join the Insiders Program for more exclusive features and updates.

Other Changes

• Merged v2.0.12.

Commits

• 591d019 v2.0.13
• cc9b9d0 perf(tsc): re-introduce global types removal check (#4245)
• 5216e74 chore: bump volar
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions