chore(depends): bump vite from 2.9.13 to 3.1.3 in /Mod Manager

[dependabot]

Bumps vite from 2.9.13 to 3.1.3.

Release notes

Sourced from vite's releases.

create-vite@3.1.0

Please refer to CHANGELOG.md for details.

create-vite@3.0.2

Please refer to CHANGELOG.md for details.

create-vite@3.0.1

Please refer to CHANGELOG.md for details.

create-vite@3.0.0

Please refer to CHANGELOG.md for details.

Changelog

Sourced from vite's changelog.

3.1.3 (2022-09-19)

• fix: esbuildOutputFromId for symlinked root (#10154) (fc5310f), closes #10154
• fix(hmr): dedupe virtual modules in module graph (#10144) (71f08e7), closes #10144
• fix(lib): respect rollupOptions.input in lib mode (#10116) (c948e7d), closes #10116

3.1.2 (2022-09-17)

• fix: use isOptimizable to ensure version query (#10141) (23a51c6), closes #10141

3.1.1 (2022-09-15)

• fix: ensure version query for relative node_modules imports (#10016) (1b822d0), closes #10016
• fix: no quote on attrs (#10117) (f541239), closes #10117
• fix: prevent error overlay style being overridden (fixes #9969) (#9971) (a7706d0), closes #9969 #9971
• fix: proxy to secured websocket server (#10045) (9de9bc4), closes #10045
• fix: replace white with reset (#10104) (5d56e42), closes #10104
• fix(deps): update all non-major dependencies (#10077) (caf00c8), closes #10077
• fix(deps): update all non-major dependencies (#9985) (855f2f0), closes #9985
• fix(preview): send configured headers (#9976) (0d20eae), closes #9976
• chore: cleanup old changelogs (#10056) (9e65a41), closes #10056
• chore: update 3.1 changelog (#9994) (44dbcbe), closes #9994
• chore(deps): update @​rollup/plugin-node-resolve to v14 (#10078) (3390c87), closes #10078
• refactor: config hook helper function (#9982) (9c1be10), closes #9982
• refactor: optimize async and await in code (#9854) (31f5ff3), closes #9854

3.1.0 (2022-09-05)

Main Changes

• Vite now uses parse5, which parses HTML in the same way as the latest browser versions. This migration gives us a more robust HTML story moving forward (#9678).
• Vite now supports using objects as hooks to change execution order (#9634). Check out the RFC and the implementation upstream at rollup/rollup#4600 for details and rationale.

    import { resolve } from 'node:path';
    import { readdir } from 'node:fs/promises';
  export default function getFilesOnDisk() {
  return {
  name: 'getFilesOnDisk',
  writeBundle: {
  // run this hook sequentially even if the hook is parallel
  sequential: true,
  // push this hook to the 'post' stage, after all normal hooks
  order: 'post',

... (truncated)

Commits

• dfa22ca release: v3.1.3
• 71f08e7 fix(hmr): dedupe virtual modules in module graph (#10144)
• c948e7d fix(lib): respect rollupOptions.input in lib mode (#10116)
• fc5310f fix: esbuildOutputFromId for symlinked root (#10154)
• cda361c release: v3.1.2
• 23a51c6 fix: use isOptimizable to ensure version query (#10141)
• d324181 release: v3.1.1
• f541239 fix: no quote on attrs (#10117)
• 5d56e42 fix: replace white with reset (#10104)
• caf00c8 fix(deps): update all non-major dependencies (#10077)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[socket-security]

Socket Security Report

Dependency issues detected. If you merge this pull request, you will not be alerted to the instances of these issues again.

🧐 Did you mean another package?

A package that was added in the pull request has a name similar to other popular packages.

Use care when consuming similarly named packages and ensure that you did not intend to consume a different package. Malicious packages often publish using similar names as existing popular packages.

Installed package	📎 Did you mean...?	Found in
eslint-plugin-svelte@2.4.1 (added)	eslint-plugin-jesvelte (2.1 thousand times more downloads)	Mod Manager/package.json

📜 New install scripts detected

A dependency change in this PR is introducing new install scripts to your install step.

Package	Script field	Location
esbuild@0.14.54 (upgraded)	postinstall	Mod Manager/package.json via @sveltejs/kit@1.0.0-next.330, vite@2.9.15
esbuild@0.15.8 (upgraded)	postinstall	Mod Manager/package.json via vite@3.1.3

Socket.dev scan summary

Issue	Status
Did you mean?	⚠️ 1 new possible package typos detected
Install scripts	⚠️ 2 new install scripts detected
Telemetry	✅ no new telemetry
Troll package	✅ no new troll packages
Malware	✅ no new malware
Native code	✅ no new native modules

Bot Commands

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of package-name@version specifiers.

• @SocketSecurity ignore eslint-plugin-svelte@2.4.1
• @SocketSecurity ignore esbuild@0.14.54
• @SocketSecurity ignore esbuild@0.15.8

Please accept the latest app permissions to ensure bot commands work properly. Accept the new permissions here.

Powered by socket.dev

[github-actions]

Download the artifacts for this pull request:

• Output.zip

[dependabot]

Superseded by #408.