Skip to content

build(deps): bump vue from 3.5.17 to 3.5.18 #4105

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Jul 24, 2025
Merged

build(deps): bump vue from 3.5.17 to 3.5.18 #4105

merged 1 commit into from
Jul 24, 2025

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jul 23, 2025

Bumps vue from 3.5.17 to 3.5.18.

Release notes

Sourced from vue's releases.

v3.5.18

For stable releases, please refer to CHANGELOG.md for details. For pre-releases, please refer to CHANGELOG.md of the minor branch.

Changelog

Sourced from vue's changelog.

3.5.18 (2025-07-23)

Bug Fixes

  • compiler-core: avoid cached text vnodes retaining detached DOM nodes (#13662) (00695a5), closes #13661
  • compiler-core: avoid self updates of v-pre (#12556) (21b685a)
  • compiler-core: identifiers in function parameters should not be inferred as references (#13548) (9b02923)
  • compiler-core: recognize empty string as non-identifier (#12553) (ce93339)
  • compiler-core: transform empty v-bind dynamic argument content correctly (#12554) (d3af67e)
  • compiler-sfc: transform empty srcset w/ includeAbsolute: true (#13639) (d8e40ef), closes vitejs/vite-plugin-vue#631
  • css-vars: nullish v-bind in style should not lead to unexpected inheritance (#12461) (c85f1b5), closes #12434 #12439 #7474 #7475
  • custom-element: ensure exposed methods are accessible from custom elements by making them enumerable (#13634) (90573b0), closes #13632
  • hydration: prevent lazy hydration for updated components (#13511) (a9269c6), closes #13510
  • runtime-core: ensure correct anchor el for unresolved async components (#13560) (7f29943), closes #13559
  • slots: refine internal key checking to support slot names starting with an underscore (#13612) (c5f7db1), closes #13611
  • ssr: ensure empty slots render as a comment node in Transition (#13396) (8cfc10a), closes #13394
Commits
  • c486536 release: v3.5.18
  • 7343f7c dx(runtime-core): fix warning message for useSlots, useAttrs invocation with ...
  • 8cfc10a fix(ssr): ensure empty slots render as a comment node in Transition (#13396)
  • 7f29943 fix(runtime-core): ensure correct anchor el for unresolved async components (...
  • 9b02923 fix(compiler-core): identifiers in function parameters should not be inferred...
  • d8e40ef fix(compiler-sfc): transform empty srcset w/ includeAbsolute: true (#13639)
  • 90573b0 fix(custom-element): ensure exposed methods are accessible from custom elemen...
  • c5f7db1 fix(slots): refine internal key checking to support slot names starting with ...
  • a9269c6 fix(hydration): prevent lazy hydration for updated components (#13511)
  • 00695a5 fix(compiler-core): avoid cached text vnodes retaining detached DOM nodes (#1...
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
build(deps): bump vue from 3.5.17 to 3.5.18
dce1660 
Bumps [vue](https://github.com/vuejs/core) from 3.5.17 to 3.5.18.
- [Release notes](https://github.com/vuejs/core/releases)
- [Changelog](https://github.com/vuejs/core/blob/main/CHANGELOG.md)
- [Commits](vuejs/core@v3.5.17...v3.5.18)

---
updated-dependencies:
- dependency-name: vue
  dependency-version: 3.5.18
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jul 23, 2025
@codecov Codecov
Copy link

codecov bot commented Jul 23, 2025

Bundle Report

Changes will increase total bundle size by 393 bytes (0.02%) ⬆️. This is within the configured threshold ✅

Detailed changes
Bundle name Size Change
sunshine-esm 1.75MB 393 bytes (0.02%) ⬆️

Affected Assets, Files, and Routes:

view changes for bundle: sunshine-esm

Assets Changed:

Asset Name Size Change Total Size Change (%)
assets/_plugin-*.js 390 bytes 341.98kB 0.11%
assets/config-*.js 3 bytes 57.33kB 0.01%

@codecov Codecov
Copy link

codecov bot commented Jul 23, 2025
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 11.32%. Comparing base (bce4b1b) to head (dce1660).
Report is 2 commits behind head on master.

Additional details and impacted files 
@@           Coverage Diff           @@
##           master    #4105   +/-   ##
=======================================
  Coverage   11.32%   11.32%           
=======================================
  Files          92       92           
  Lines       17570    17570           
  Branches     8238     8238           
=======================================
  Hits         1989     1989           
  Misses      14900    14900           
  Partials      681      681
Flag Coverage Δ
Linux-AppImage 11.02% <ø> (ø)
Windows-AMD64 12.45% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

@sonarqubecloud SonarQubeCloud
Copy link

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@ReenigneArcher ReenigneArcher merged commit f2e4f55 into master Jul 24, 2025
50 checks passed
@ReenigneArcher ReenigneArcher deleted the dependabot/npm_and_yarn/vue-3.5.18 branch July 24, 2025 14:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@ReenigneArcher