fix(front): npm audit fix

Fix the following security issue: vite <=4.5.5 || 5.0.0 - 5.4.11 Severity: moderate Websites were able to send any requests to the development server and read the response in vite - GHSA-vg6x-rcgg-rjx6
rackslab · Jan 30, 2025 · edaaba7 · edaaba7
1 parent 9370ec9
commit edaaba7
Show file tree

Hide file tree

Showing 3 changed files with 12 additions and 11 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -43,7 +43,8 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
     separate _vendor_ chunk (#414→#441).
   - Remove workaround for Firefox to avoid blurry lines in racks canvas, fixed
     in Firefox ESR >= 128 and Firefox >= 133 (#443).
-  - Update dependencies to fix CVE-2024-55565 (nanoid).
+  - Update dependencies to fix CVE-2024-55565 (nanoid) and CVE-2025-24010
+    (vite).
 
 ## [4.0.0] - 2024-11-28
 

diff --git a/frontend/package-lock.json b/frontend/package-lock.json
diff --git a/frontend/package.json b/frontend/package.json
@@ -47,7 +47,7 @@
     "prettier-plugin-tailwindcss": "^0.5.11",
     "tailwindcss": "^3.3.3",
     "typescript": "^5.5.4",
-    "vite": "^4.5.4",
+    "vite": "^4.5.9",
     "vitest": "^1.4.0",
     "vue-router-mock": "^1.1.0",
     "vue-tsc": "^2.0.29"