Skip to content

chore(deps-dev): bump vitest from 3.2.4 to 4.1.0#4164

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/vitest-4.1.0
Open

chore(deps-dev): bump vitest from 3.2.4 to 4.1.0#4164
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/vitest-4.1.0

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Jun 3, 2026
edited by cursor Bot
Loading

Bumps vitest from 3.2.4 to 4.1.0.

Release notes

Sourced from vitest's releases.

v4.1.0

Vitest 4.1 is out!

This release page lists all changes made to the project during the 4.1 beta. To get a review of all the new features, read our blog post.

   🚀 Features

... (truncated)

Commits
  • 4150b91 chore: release v4.1.0
  • 1de0aa2 fix: correctly identify concurrent test during static analysis (#9846)
  • c3cac1c fix: use isAgent check, not just TTY, for watch mode (#9841)
  • eab68ba chore(deps): update all non-major dependencies (#9824)
  • 031f02a fix: allow catch/finally for async assertion (#9827)
  • 3e9e096 feat(reporters): add agent reporter to reduce ai agent token usage (#9779)
  • 0c2c013 chore: release v4.1.0-beta.6
  • 8181e06 fix: hideSkippedTests should not hide test.todo (fix #9562) (#9781)
  • a8216b0 fix: manual and redirect mock shouldn't load or transform original module...
  • 689a22a fix(browser): types of getCDPSession and cdp() (#9716)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for vitest since your current version.


Note

Medium Risk
Major devDependency upgrade with large lockfile churn; CI must pass on supported Node versions, especially where Node 18 types are still declared.

Overview
Upgrades Vitest from 3.2.4 to ^4.1.0 in @crowd/packages-worker and @crowd/data-access-layer devDependencies; pnpm-lock.yaml is refreshed for the new Vitest stack (e.g. chai 6, updated rollup/postcss, removal of vite-node / tinypool from the resolved tree).

No test files or Vitest config are edited—existing vitest run scripts and standard describe / expect imports stay as-is. Verify pnpm test (or CI) in both packages after merge; Vitest 4’s documented Node requirement (^20 || ^22 || >=24) may matter for data-access-layer if anything still runs tests on Node 18.

Reviewed by Cursor Bugbot for commit 6be954c. Bugbot is set up for automated code reviews on this repo. Configure here.

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 3, 2026
@github-actions
Copy link
Copy Markdown
Contributor

github-actions Bot commented Jun 3, 2026

⚠️ Jira Issue Key Missing

Your PR title doesn't contain a Jira issue key. Consider adding it for better traceability.

Example:

  • feat: add user authentication (CM-123)
  • feat: add user authentication (IN-123)

Projects:

  • CM: Community Data Platform
  • IN: Insights

Please add a Jira issue key to your PR title.

@CLAassistant
Copy link
Copy Markdown

CLAassistant commented Jun 3, 2026

CLA assistant check
Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
You have signed the CLA already but the status is still pending? Let us recheck it.

cursor[bot]
cursor Bot reviewed Jun 3, 2026
View reviewed changes
Copy link
Copy Markdown

@cursor cursor Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Cursor Bugbot has reviewed your changes and found 1 potential issue.

Fix All in Cursor

❌ Bugbot Autofix is OFF. To automatically fix reported issues with cloud agents, have a team admin enable autofix in the Cursor dashboard.

Reviewed by Cursor Bugbot for commit ff424d8. Configure here.

Comment thread services/libs/data-access-layer/package.json
"sequelize": "6.37.8",
"typescript": "^5.6.3",
"vitest": "^3.2.4"
"vitest": "^4.1.0"
Copy link
Copy Markdown

@cursor cursor Bot Jun 3, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Vitest four needs Node twenty

Medium Severity

vitest is bumped to ^4.1.0, which declares Node ^20.0.0 || ^22.0.0 || >=24.0.0, while this package still pins @types/node to ^18.16.3 and has no engines guard. Running pnpm test under Node 18 (still implied by those types) can fail even though CI uses Node 20.

Fix in Cursor Fix in Web

Reviewed by Cursor Bugbot for commit ff424d8. Configure here.

@dependabot
chore(deps-dev): bump vitest from 3.2.4 to 4.1.0
6be954c 
Bumps [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest) from 3.2.4 to 4.1.0.
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Changelog](https://github.com/vitest-dev/vitest/blob/main/docs/releases.md)
- [Commits](https://github.com/vitest-dev/vitest/commits/v4.1.0/packages/vitest)

---
updated-dependencies:
- dependency-name: vitest
  dependency-version: 4.1.0
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/vitest-4.1.0 branch from ff424d8 to 6be954c Compare June 4, 2026 10:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cursor cursor[bot] cursor[bot] left review comments

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@CLAassistant