npm - create-nuxt-base - Versions diffs - 2.6.3 → 2.6.5 - Mend

create-nuxt-base 2.6.3 → 2.6.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/CHANGELOG.md +9 -0
package/nuxt-base-template/CLAUDE.md +1 -0
package/nuxt-base-template/package.json +8 -8
package/nuxt-base-template/pnpm-lock.yaml +407 -339
package/nuxt-base-template/scripts/check-server-start.sh +50 -20
package/package.json +1 -1

package/CHANGELOG.md CHANGED Viewed

@@ -2,6 +2,15 @@
 All notable changes to this project will be documented in this file. See [standard-version](https://github.com/conventional-changelog/standard-version) for commit guidelines.
+### [2.6.5](https://github.com/lenneTech/nuxt-base-starter/compare/v2.6.4...v2.6.5) (2026-04-28)
+### Bug Fixes
+* **scripts:** pick random free port for check-server-start and guard against ANSI-wrapped output ([d9c3432](https://github.com/lenneTech/nuxt-base-starter/commit/d9c3432fe664ea2ccbecff33b2b2dd7bd2a08de4))
+### [2.6.4](https://github.com/lenneTech/nuxt-base-starter/compare/v2.6.3...v2.6.4) (2026-04-23)
 ### [2.6.3](https://github.com/lenneTech/nuxt-base-starter/compare/v2.6.2...v2.6.3) (2026-04-18)
 ### [2.6.2](https://github.com/lenneTech/nuxt-base-starter/compare/v2.6.1...v2.6.2) (2026-04-17)

package/nuxt-base-template/CLAUDE.md CHANGED Viewed

@@ -146,6 +146,7 @@ All override targets use fixed versions (not ranges) to prevent silent major-ver
 | `defu@<=6.1.4`                   | GHSA-mchp-fgcf-hmfj                                                                                                          | Prototype pollution                                                                                          |
 | `devalue@<=5.6.3`                | GHSA-77p6-w3v8-rqwf                                                                                                          | XSS via crafted input                                                                                        |
 | `effect@<3.20.0`                 | GHSA-j44v-mmf2-xvm9                                                                                                          | Denial of service                                                                                            |
+| `fast-xml-parser@<5.7.0`         | GHSA-gh4j-gqv2-49f6                                                                                                          | XMLBuilder: XML comment and CDATA injection via unescaped delimiters; transitive via @nuxtjs/seo>sitemap     |
 | `h3@<1.15.9`                     | GHSA-wr4h-v87w-p3r7                                                                                                          | Path traversal                                                                                               |
 | `h3@>=2.0.0-0 <2.0.1-rc.18`      | GHSA-q5pr-72pq-83v3                                                                                                          | Cookie DoS + SSE injection                                                                                   |
 | `h3-next`                        | (alias fix)                                                                                                                  | `@nuxt/test-utils` pins h3-next to vulnerable RC; remove when h3 v2 stable releases                          |

package/nuxt-base-template/package.json CHANGED Viewed

@@ -48,20 +48,20 @@
     "fix": "pnpm run lint:fix && pnpm run format"
   },
   "dependencies": {
-    "@better-auth/passkey": "1.6.5",
+    "@better-auth/passkey": "1.6.7",
     "@lenne.tech/bug.lt": "latest",
     "@lenne.tech/nuxt-extensions": "1.5.4",
     "@nuxt/image": "2.0.0",
     "@nuxt/ui": "4.6.1",
     "@pinia/nuxt": "0.11.3",
     "@vueuse/nuxt": "14.2.1",
-    "better-auth": "1.6.5",
+    "better-auth": "1.6.7",
     "qrcode": "1.5.4",
     "tus-js-client": "4.3.1",
     "valibot": "1.3.1"
   },
   "devDependencies": {
-    "@hey-api/openapi-ts": "0.96.0",
+    "@hey-api/openapi-ts": "0.96.1",
     "@iconify-json/lucide": "1.2.102",
     "@nuxt/devtools": "3.2.4",
     "@nuxt/test-utils": "4.0.2",
@@ -69,24 +69,23 @@
     "@nuxtjs/seo": "5.1.3",
     "@playwright/test": "1.59.1",
     "@tailwindcss/typography": "0.5.19",
-    "@tailwindcss/vite": "4.2.2",
+    "@tailwindcss/vite": "4.2.4",
     "@types/node": "25.6.0",
     "@types/qrcode": "1.5.6",
     "@vitejs/plugin-vue": "6.0.6",
     "@vue/test-utils": "2.4.6",
     "dayjs-nuxt": "2.1.11",
     "happy-dom": "20.9.0",
-    "jsdom": "29.0.2",
     "lint-staged": "16.4.0",
-    "mongodb": "7.1.1",
+    "mongodb": "7.2.0",
     "nuxt": "4.4.2",
     "oxfmt": "latest",
     "oxlint": "latest",
     "rimraf": "6.1.3",
     "simple-git-hooks": "2.13.1",
-    "tailwindcss": "4.2.2",
+    "tailwindcss": "4.2.4",
     "typescript": "6.0.3",
-    "vitest": "4.1.4"
+    "vitest": "4.1.5"
   },
   "simple-git-hooks": {
     "pre-commit": "npx lint-staged",
@@ -154,6 +153,7 @@
       "defu@<=6.1.4": "6.1.7",
       "devalue@<=5.6.3": "5.7.1",
       "effect@<3.20.0": "3.21.0",
+      "fast-xml-parser@<5.7.0": "5.7.1",
       "h3@<1.15.9": "1.15.11",
       "h3@>=2.0.0-0 <2.0.1-rc.18": "2.0.1-rc.20",
       "h3-next": "npm:h3@2.0.1-rc.20",