v4.5.6
#vite
4.5.6 (2025-01-20)
● fix!: check host header to prevent DNS rebinding attacks and introduce
● fix!: default
● fix: verify token for HMR WebSocket connection (c065a77)
4.5.5 (2024-09-16)
4.5.4 (2024-09-16)
● fix: avoid DOM Clobbering gadget in
● fix: backport #18112, fs raw query (b901438), closes #18112
4.5.3 (2024-03-24)
● fix:
source
#vite
4.5.6 (2025-01-20)
● fix!: check host header to prevent DNS rebinding attacks and introduce
server.allowedHosts (ef1049d)● fix!: default
server.cors: false to disallow fetching from untrusted origins (07b36d5)● fix: verify token for HMR WebSocket connection (c065a77)
4.5.5 (2024-09-16)
4.5.4 (2024-09-16)
● fix: avoid DOM Clobbering gadget in
getRelativeUrlFromDocument (#18115) (e812716), closes #18115● fix: backport #18112, fs raw query (b901438), closes #18112
4.5.3 (2024-03-24)
● fix:
fs.deny with globs with directories (#16250) (96a7f3a), closes #16250source
v4.5.7
#vite
4.5.7 (2025-01-20)
● fix:
4.5.6 (2025-01-20)
● fix!: check host header to prevent DNS rebinding attacks and introduce
● fix!: default
● fix: verify token for HMR WebSocket connection (c065a77)
4.5.5 (2024-09-16)
4.5.4 (2024-09-16)
● fix: avoid DOM Clobbering gadget in
● fix: backport #18112, fs raw query (b901438), closes #18112
source
#vite
4.5.7 (2025-01-20)
● fix:
crypto.getRandomValues is not available in old Node versions (#19237) (f4d3c46), closes #192374.5.6 (2025-01-20)
● fix!: check host header to prevent DNS rebinding attacks and introduce
server.allowedHosts (ef1049d)● fix!: default
server.cors: false to disallow fetching from untrusted origins (07b36d5)● fix: verify token for HMR WebSocket connection (c065a77)
4.5.5 (2024-09-16)
4.5.4 (2024-09-16)
● fix: avoid DOM Clobbering gadget in
getRelativeUrlFromDocument (#18115) (e812716), closes #18115● fix: backport #18112, fs raw query (b901438), closes #18112
source
v5.4.13
#vite
5.4.13 (2025-01-20)
● fix: try parse
5.4.12 (2025-01-20)
● fix!: check host header to prevent DNS rebinding attacks and introduce
● fix!: default
● fix: verify token for HMR WebSocket connection (b71a5c8)
● chore: add deps update changelog (ecd2375)
5.4.11 (2024-11-11)
● fix(deps): update dependencies of postcss-modules (ceb15db), closes #18617
5.4.10 (2024-10-23)
● fix: backport #18367,augment hash for CSS files to prevent chromium erroring by loading previous fil (7d1a3bc), closes #18367 #18412
source
#vite
5.4.13 (2025-01-20)
● fix: try parse
server.origin URL (#19241) (5946215), closes #192415.4.12 (2025-01-20)
● fix!: check host header to prevent DNS rebinding attacks and introduce
server.allowedHosts (9da4abc)● fix!: default
server.cors: false to disallow fetching from untrusted origins (dfea38f)● fix: verify token for HMR WebSocket connection (b71a5c8)
● chore: add deps update changelog (ecd2375)
5.4.11 (2024-11-11)
● fix(deps): update dependencies of postcss-modules (ceb15db), closes #18617
5.4.10 (2024-10-23)
● fix: backport #18367,augment hash for CSS files to prevent chromium erroring by loading previous fil (7d1a3bc), closes #18367 #18412
source
v4.5.8
#vite
4.5.8 (2025-01-20)
● fix: try parse
4.5.7 (2025-01-20)
● fix:
4.5.6 (2025-01-20)
● fix!: check host header to prevent DNS rebinding attacks and introduce
● fix!: default
● fix: verify token for HMR WebSocket connection (c065a77)
4.5.5 (2024-09-16)
4.5.4 (2024-09-16)
● fix: avoid DOM Clobbering gadget in
● fix: backport #18112, fs raw query (b901438), closes #18112
4.5.3 (2024-03-24)
● fix:
source
#vite
4.5.8 (2025-01-20)
● fix: try parse
server.origin URL (#19241) (3680bad), closes #192414.5.7 (2025-01-20)
● fix:
crypto.getRandomValues is not available in old Node versions (#19237) (f4d3c46), closes #192374.5.6 (2025-01-20)
● fix!: check host header to prevent DNS rebinding attacks and introduce
server.allowedHosts (ef1049d)● fix!: default
server.cors: false to disallow fetching from untrusted origins (07b36d5)● fix: verify token for HMR WebSocket connection (c065a77)
4.5.5 (2024-09-16)
4.5.4 (2024-09-16)
● fix: avoid DOM Clobbering gadget in
getRelativeUrlFromDocument (#18115) (e812716), closes #18115● fix: backport #18112, fs raw query (b901438), closes #18112
4.5.3 (2024-03-24)
● fix:
fs.deny with globs with directories (#16250) (96a7f3a), closes #16250source
v4.5.9
#vite
4.5.9 (2025-01-21)
● fix:
● fix: allow CORS from loopback addresses by default (#19249) (8f63cd6), closes #19249
4.5.8 (2025-01-20)
● fix: try parse
4.5.7 (2025-01-20)
● fix:
source
#vite
4.5.9 (2025-01-21)
● fix:
preview.allowedHosts with specific values was not respected (#19246) (0bc52e0), closes #19246● fix: allow CORS from loopback addresses by default (#19249) (8f63cd6), closes #19249
4.5.8 (2025-01-20)
● fix: try parse
server.origin URL (#19241) (3680bad), closes #192414.5.7 (2025-01-20)
● fix:
crypto.getRandomValues is not available in old Node versions (#19237) (f4d3c46), closes #19237source
v5.4.14
#vite
5.4.14 (2025-01-21)
● fix:
● fix: allow CORS from loopback addresses by default (#19249) (7d1699c), closes #19249
5.4.13 (2025-01-20)
● fix: try parse
source
#vite
5.4.14 (2025-01-21)
● fix:
preview.allowedHosts with specific values was not respected (#19246) (9df6e6b), closes #19246● fix: allow CORS from loopback addresses by default (#19249) (7d1699c), closes #19249
5.4.13 (2025-01-20)
● fix: try parse
server.origin URL (#19241) (5946215), closes #19241source
@quasar-extras-v1.16.16
#quasar
Changes
● feat(extras): feat(extras): update fontawesome => v6.7.2
● feat(extras): updated roboto fonts => CDN v47
Fix
● n/a
Donations
Quasar Framework is an open-source MIT-licensed project made possible due to the generous contributions by sponsors and backers. If you are interested in supporting this project, please consider the following:
● Becoming a sponsor on Github
● One-off donation via PayPal
source
#quasar
Changes
● feat(extras): feat(extras): update fontawesome => v6.7.2
● feat(extras): updated roboto fonts => CDN v47
Fix
● n/a
Donations
Quasar Framework is an open-source MIT-licensed project made possible due to the generous contributions by sponsors and backers. If you are interested in supporting this project, please consider the following:
● Becoming a sponsor on Github
● One-off donation via PayPal
source
v3.15.4
#nuxt
✅ Upgrading
As usual, our recommendation for upgrading is to run:
This will refresh your lockfile as well, and ensures that you pull in updates from other dependencies that Nuxt relies on, particularly in the unjs ecosystem.
👉 Changelog
compare changes
🩹 Fixes
● nuxt: Improve error logging when parsing with
● nuxt: Clear island uid before saving into the payload (#30767)
● kit: Load
● nuxt: Allow restarting nuxt on paths outside
● nuxt: Don't warn about calling
● webpack: Disallow cross-site requests in no-cors mode (#30757)
● vite: Restore
💅 Refactors
● vite: Use new rollup
❤️ Contributors
● Daniel Roe (@danielroe)
● Peter Radko (@Gwynerva)
● Lansi (@lansi951)
● Julien Huang (@huang-julien)
● Norbiros (@Norbiros)
source
#nuxt
3.15.4 is the next patch release.
✅ Upgrading
As usual, our recommendation for upgrading is to run:
npx nuxi@latest upgrade --force
This will refresh your lockfile as well, and ensures that you pull in updates from other dependencies that Nuxt relies on, particularly in the unjs ecosystem.
👉 Changelog
compare changes
🩹 Fixes
● nuxt: Improve error logging when parsing with
acorn (#30754)● nuxt: Clear island uid before saving into the payload (#30767)
● kit: Load
@nuxt/schema from nuxt package dir (#30774)● nuxt: Allow restarting nuxt on paths outside
srcDir (#30771)● nuxt: Don't warn about calling
useRoute in SFC setup (#30788)● webpack: Disallow cross-site requests in no-cors mode (#30757)
● vite: Restore
externality for dev server externals (#30802)💅 Refactors
● vite: Use new rollup
chunk.names for asset names (#30780)❤️ Contributors
● Daniel Roe (@danielroe)
● Peter Radko (@Gwynerva)
● Lansi (@lansi951)
● Julien Huang (@huang-julien)
● Norbiros (@Norbiros)
source
v11.1.0
#vue_i18n #i18n #vue_i18n_next
What's Changed
🌟 Features
● feat: configurable
📝️ Documentations
● fix: vue-i18n v8 EOL by @kazupon in #2060
Full Changelog: v11.0.1...v11.1.0
source
#vue_i18n #i18n #vue_i18n_next
What's Changed
🌟 Features
● feat: configurable
ComponentCustomProperties['$i18n'] type by @BobbieGoede in #2094📝️ Documentations
● fix: vue-i18n v8 EOL by @kazupon in #2060
Full Changelog: v11.0.1...v11.1.0
source
v3.7.10
#vuetify
🔧 Bug Fixes
● locale: add missing danish and finnish translations (#20925) (1df619d)
● locale: add missing german translations (#20921) (02a3f48)
● VDatePicker: prevent maxDate disabling the wrong month on last day (ce4b227), closes #20943
● VExpandTransition: work around calling hooks out of order (d6fdc1b)
● VSelect/VAutocomplete/VCombobox: respect click outside (#20004) (e85225d), closes #20003
● VTabs: add generic slot types (3e9147e), closes #20720
🧪 Labs
● VTreeview: Add subtitle & divider slots support (#20938) (e63b322), closes #20781
Other Commmits
● chore(release): publish v3.7.10 (d362314)
● docs(VStepperVertical): fix "click:prev" event name (#20923) (ffca846)
● chore: deploy all allowed docs branches (936f26c)
source
#vuetify
🔧 Bug Fixes
● locale: add missing danish and finnish translations (#20925) (1df619d)
● locale: add missing german translations (#20921) (02a3f48)
● VDatePicker: prevent maxDate disabling the wrong month on last day (ce4b227), closes #20943
● VExpandTransition: work around calling hooks out of order (d6fdc1b)
● VSelect/VAutocomplete/VCombobox: respect click outside (#20004) (e85225d), closes #20003
● VTabs: add generic slot types (3e9147e), closes #20720
🧪 Labs
● VTreeview: Add subtitle & divider slots support (#20938) (e63b322), closes #20781
Other Commmits
● chore(release): publish v3.7.10 (d362314)
● docs(VStepperVertical): fix "click:prev" event name (#20923) (ffca846)
● chore: deploy all allowed docs branches (936f26c)
source