Skip to content

[Snyk] Upgrade nuxt from 3.17.5 to 3.17.7 #308

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Upgrade nuxt from 3.17.5 to 3.17.7 #308

wants to merge 1 commit into from

Conversation

themodernpk
Copy link
Collaborator

snyk-top-banner

Snyk has created this PR to upgrade nuxt from 3.17.5 to 3.17.7.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 2 versions ahead of your current version.

  • The recommended version was released a month ago.

Release notes
Package name: nuxt
  • 3.17.7 - 2025-07-13

    3.17.7 is the last patch release before v3.18.

    ✅ Upgrading

    Our recommendation for upgrading is to run:

    npx nuxt upgrade --dedupe

    This will deduplicate your lockfile as well, and help ensure that you pull in updates from other dependencies that Nuxt relies on, particularly in the unjs ecosystem.

    👉 Changelog

    compare changes

    🩹 Fixes

    • nuxt: Safe-guard extraPageMetaExtractionKeys (#32510)
    • nuxt: Expose loadBuilder error cause (8f13ce3c2)
    • vite: Handle resolving string vite input (#32527)
    • nuxt: Wrap only server components with island generic (#32540)
    • vite: Ignore when client entry cannot be resolved (19a292f34)
    • nuxt: Normalize segment catchall pattern before checking for parent (#32413)
    • nuxt: Update warning message to warn against null values (c1b83eab5)
    • nuxt: Ensure semver.satisfies returns true for pre-release versions (#32574)
    • nuxt: Scroll to anchor if present when changing page without saved position (#32376)
    • nuxt: Handle execute being passed to watch` (#32591)

    📖 Documentation

    • Update fetch types (#32522)
    • Clarify that runtime env variables must start with NUXT_ (#32223)
    • Fix key change behavior in useAsyncData and useFetch migration (#32560)
    • Change return type of async data from undefined to null in v3 docs (#32562)
    • Add section on custom hooks for Nuxt modules (#32586)
    • Provide async keyword (#32587)
    • Move augmenting hook types in hooks page (#32595)
    • Add section about module loading order (#32597)

    ✅ Tests

    • Reenable skipped unit tests (8fc9b9ee9)
    • Update test snapshot for generateTypes (c0855439d)
    • Improve page scanning test stability (84b96f3de)
    • Pass timeZone in to <NuxtTime> test (#32558)
    • Add more useAsyncData + useFetch tests (#32585)
    • Avoid hard-coding async-data keys (bfca95118)

    ❤️ Contributors

  • 3.17.6 - 2025-07-01

    3.17.6 is a regularly scheduled patch release.

    ✅ Upgrading

    Our recommendation for upgrading is to run:

    npx nuxt upgrade --dedupe

    This will deduplicate your lockfile as well, and help ensure that you pull in updates from other dependencies that Nuxt relies on, particularly in the unjs ecosystem.

    👉 Changelog

    compare changes

    🔥 Performance

    • nuxt: Decrease if checks when prerendering (#32455)

    🩹 Fixes

    • nuxt: Generate correct types for async data defaults based on nuxt.config (#32324)
    • nuxt: Reload at base URL in nuxt:chunk-reload-immediate (#32382)
    • nuxt: Use rollup to calculate island component filenames (#32421)
    • nuxt: Append set-cookie headers in error handler (#32483)
    • nuxt: Ensure asyncData runs if changing key while fetcher is running (#32466)
    • nuxt: Handle pure hash link clicks with navigateTo (#32393)
    • nuxt: Skip external <NuxtLink>'s custom on click handler (#32499)
    • nuxt: Update component loader regexp for minified code (#32298)
    • nuxt: Allow camelCase for lazy hydration attributes (#32297)
    • nuxt: Respect inheritAttrs: false in createClientOnly fn (#32323)
    • kit: Do not double-urlify file urls when resolving schema (#32354)
    • nuxt: Align scroll behavior with page transition completion (#32239)
    • nuxt: Set output.generatedCode.symbols for nitro build (#32358)
    • nuxt: Lazily access runtimeConfig (#32428)

    💅 Refactors

    • vite: Migrate plugins internally to vite environments (#32461)

    📖 Documentation

    • Clarify where logging tag is displayed (#32440)
    • Remove kit playground auto-import note (#32415)
    • Remove webstorm warning (#32513)
    • Migrate to h3js (#32243)
    • Update the fetch clear function description (#32287)
    • defineNuxtPlugin function documentation (#32328)
    • Mention that <NuxtLink> encodes query params (#32361)
    • Enhance documentation for Nuxt composables (#32218)
    • Adjust wording to reduce confusion in lifecycle section (#32503)
    • Improve useCookie example (367b85405)
    • Capitalise title (#32426)
    • Mention bun.lock for lockfile (#32427)

    🏡 Chore

    • Update stackblitz reproduction link (6ab5bac66)
    • Update copilot instructions (220439055)
    • Rename deprecated vitest workspace to projects (#32388)
    • Remove space in URL in comment (#32394)
    • Allow setting TAG on commandline (d387e07a3)

    ✅ Tests

    • nuxt: Add case for key only changes with immediate: false (#32473)
    • Separate nuxt legacy runtime tests (#32481)

    🤖 CI

    • Set correct base branch label (#32325)

    ❤️ Contributors

  • 3.17.5 - 2025-06-03

    3.17.5 is a regularly scheduled patch release.

    ✅ Upgrading

    Our recommendation for upgrading is to run:

    npx nuxt upgrade --dedupe

    This will deduplicate your lockfile as well, and help ensure that you pull in updates from other dependencies that Nuxt relies on, particularly in the unjs ecosystem.

    👉 Changelog

    compare changes

    🔥 Performance

    • nuxt: Replace remaining instance of globby (#31688)

    🩹 Fixes

    • nuxt: Export useScriptRybbitAnalytics from script stubs (d275ae1a0)
    • nuxt: Remove unneeded pattern from regexp (2954c092c)
    • nuxt: Ensure appConfig sources are not duplicated (#32216)
    • nuxt: Wrap slot with h() in ClientOnly (#30664)
    • kit: Ensure template filename uses safe patterns (4372b24dd)
    • nuxt: Access asyncData state from nuxt app instance (#32232)
    • nuxt: Make patterns relative to srcDir in buildCache (#32260)
    • nuxt: Return non-existent route component in RouteProvider (#32266)
    • nuxt: Use single asyncData watcher (#32247)
    • vite: Use arrow functions in dynamic imports (#32285)
    • webpack: Use plugin for rollup-compatible dynamic imports (#32281)

    📖 Documentation

    • Update addRouteMiddleware path in example (#32171)
    • Narrow link to just middleware (#32203)
    • Use optional chaining in error example (#32214)
    • Give example of using --env-file (29f6392cd)
    • Recommend nuxt command consistently (#32237)
    • Fix typos (#30413)
    • Add props to special metadata (#29708)
    • Fix wrong alert with warning in /guide/pages (#32270)
    • Update upgrade guide + roadmap (0040ee5e7)

    📦 Build

    🏡 Chore

    ✅ Tests

    • Add regression test for useAsyncData + transition (29f7c8cb4)
    • Ensure builder tests run sequentially (defa32829)

    ❤️ Contributors

from nuxt GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

@snyk-bot
fix: upgrade nuxt from 3.17.5 to 3.17.7
3161292 
Snyk has created this PR to upgrade nuxt from 3.17.5 to 3.17.7.

See this package in npm:
nuxt

See this project in Snyk:
https://app.snyk.io/org/themodernpk/project/199f0fda-5c07-4a87-957b-bac2cb8e22df?utm_source=github&utm_medium=referral&page=upgrade-pr
@vercel Vercel
Copy link

vercel bot commented Aug 13, 2025
edited
Loading

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Project Deployment Preview Comments Updated (UTC)
vaah-docs Ready Preview Comment Aug 13, 2025 0:03am

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@themodernpk @snyk-bot