Skip to content

chore(deps): update dependency @sveltejs/kit to v2

Renovate Bot requested to merge renovate/sveltejs-kit-2.x into main

This MR contains the following updates:

Package Type Update Change
@sveltejs/kit (source) devDependencies major ^1.5.0 -> ^2.0.0

Release Notes

sveltejs/kit (@​sveltejs/kit)

v2.5.7

Compare Source

Patch Changes
  • chore(deps): update devalue to v5 ignore non-enumerable symbols during serialization (#​12141)

v2.5.6

Compare Source

Patch Changes
  • fix: avoid incorrectly un- and re-escaping cookies collected during a server-side fetch (#​11904)

v2.5.5

Compare Source

Patch Changes
  • fix: only hydrate when page is server-rendered (#​12050)

v2.5.4

Compare Source

Patch Changes
  • fix: prevent navigation when data-sveltekit-preload-data fails to fetch due to network error (#​11944)

v2.5.3

Compare Source

Patch Changes

  • fix: revert tsconfig change that includes svelte.config.js (#​11908)

  • fix: exclude server worker from tsconfig again (#​11727)

v2.5.2

Compare Source

Patch Changes
  • fix: tsconfig includes should cover svelte.config.js (#​11886)

v2.5.1

Compare Source

Patch Changes

  • fix: prevent stale values after invalidation (#​11870)

  • fix: prevent false positive history.pushState and history.replaceState warnings (#​11858)

  • fix: relax status code types (#​11781)

  • fix: popstate navigations take pushState navigations into account (#​11765)

v2.5.0

Compare Source

Minor Changes
  • feat: dev/preview/prerender platform emulation (#​11730)
Patch Changes
  • fix: strip /@​fs prefix correctly on Windows when invoking read() in dev mode (#​11728)

v2.4.3

Compare Source

Patch Changes
  • fix: only disallow body with GET/HEAD (#​11710)

v2.4.2

Compare Source

Patch Changes
  • fix: ignore bodies sent with non-PUT/PATCH/POST requests (#​11708)

v2.4.1

Compare Source

Patch Changes

  • fix: use Vite's default value for build.target and respect override supplied by user (#​11688)

  • fix: properly decode base64 strings inside read (#​11682)

  • fix: default route config to {} for feature checking (#​11685)

  • fix: handle onNavigate callbacks correctly (#​11678)

v2.4.0

Compare Source

Minor Changes
  • feat: add $app/server module with read function for reading assets from filesystem (#​11649)

v2.3.5

Compare Source

Patch Changes
  • fix: log a warning if fallback page overwrites prerendered page (#​11661)

v2.3.4

Compare Source

Patch Changes
  • fix: don't stash away original history methods so other libs can monkeypatch it (#​11657)

v2.3.3

Compare Source

Patch Changes
  • fix: remove internal __sveltekit/ module declarations from types (#​11620)

v2.3.2

Compare Source

Patch Changes

  • fix: return plaintext 404 for anything under appDir (#​11597)

  • fix: populate dynamic public env without using top-level await, which fails in Safari (#​11601)

v2.3.1

Compare Source

Patch Changes

  • fix: amend onNavigate type (#​11599)

  • fix: better error message when peer dependency cannot be found (#​11598)

v2.3.0

Compare Source

Minor Changes

v2.2.2

Compare Source

Patch Changes
  • fix: only add nonce to style-src CSP directive when unsafe-inline is not present (#​11575)

v2.2.1

Compare Source

Patch Changes

  • feat: add CSP support for style-src-elem (#​11562)

  • fix: address CSP conflicts with sha/nonce during dev (#​11562)

v2.2.0

Compare Source

Minor Changes
  • feat: expose $env/static/public in service workers (#​10994)
Patch Changes
  • fix: reload page on startup if document.URL contains credentials (#​11179)

v2.1.2

Compare Source

Patch Changes
  • fix: restore invalid route error message during build process (#​11559)

v2.1.1

Compare Source

Patch Changes

  • fix: respect the trailing slash option when navigating from the basepath root page (#​11388)

  • chore: shrink error messages shipped to client (#​11551)

v2.1.0

Compare Source

Minor Changes
  • feat: make client router treeshakeable (#​11340)
Patch Changes
  • chore: reduce client bundle size (#​11547)

v2.0.8

Compare Source

Patch Changes

  • fix: always scroll to top when clicking a # or #top link (099608c428a49504785eab3afe3b2e76a9317bdf)

  • fix: add nonce or hash to "script-src-elem", "style-src-attr" and "style-src-elem" if defined in CSP config (#​11485)

  • fix: decode server data with stream: true during client-side navigation (#​11409)

  • fix: capture scroll position when using pushState (#​11540)

  • chore: use peer dependencies when linked (#​11433)

v2.0.7

Compare Source

Patch Changes
  • chore: removed deprecated config.package type (#​11462)

v2.0.6

Compare Source

Patch Changes
  • fix: allow dynamic env access when building but not prerendering (#​11436)

v2.0.5

Compare Source

Patch Changes

  • fix: render SPA shell when SSR is turned off and there is no server data (#​11405)

  • fix: upgrade sirv and mrmime to modernize javascript mime type (#​11419)

v2.0.4

Compare Source

Patch Changes

v2.0.3

Compare Source

Patch Changes
  • fix: reinstantiate state parameter for goto (#​11342)

v2.0.2

Compare Source

Patch Changes
  • fix: prevent endless SPA 404 loop (#​11354)

v2.0.1

Compare Source

Patch Changes
  • fix: correctly handle trailing slash redirect when navigating from the root page (#​11357)

v2.0.0

Compare Source

Major Changes

  • breaking: remove top-level promise awaiting (#​11176)

  • breaking: prevent use of dynamic env vars during prerendering, serve env vars dynamically (#​11277)

  • breaking: remove deprecated use:enhance callback values (#​11282)

  • breaking: turn error and redirect into commands (#​11165)

  • breaking: the type for depends now requires a : as part of the string (#​11201)

  • breaking: remove baseUrl fallback from generated tsconfig (#​11294)

  • breaking: fail if route with +page and +server is marked prerenderable (#​11256)

  • breaking: remove resolvePath in favour of resolveRoute from $app/paths (#​11265)

  • breaking: drop support for Svelte 3 (#​11168)

  • breaking: require Vite 5.0.3+ (#​11122)

  • breaking: generate __data.json files as sibling to .html files (#​11269)

  • breaking: fail if +page and +server have mismatched config (#​11256)

  • breaking: error if form without multipart/form-data enctype contains a file input (#​11282)

  • breaking: require paths pass to preloadCode to be prefixed with basepath (#​11259)

  • breaking: @sveltejs/vite-plugin-svelte is now a peer dependency and will need to be installed in each project using SvelteKit (#​11184)

  • breaking: stop re-exporting vitePreprocess (#​11297)

  • breaking: require path option when setting/deleting/serializing cookies (#​11240)

  • breaking: tighten up error handling (#​11289)

  • breaking: remove state option from goto in favor of shallow routing (#​11307)

  • breaking: disallow external navigation with goto (#​11207)

  • breaking: upgrade to TypeScript 5. Default moduleResolution to bundler in user projects to be permissive in consuming and NodeNext when running package to be strict in distributing (#​11160)

  • breaking: undefined is no longer a valid value for paths.relative (#​11185)

  • breaking: require Node 18.13 or newer (#​11172)

  • breaking: fix path resolution (#​11276)

  • breaking: remove dangerZone.trackServerFetches (#​11235)

Minor Changes

  • feat: add untrack to load (#​11311)

  • feat: implement shallow routing (#​11307)

  • feat: provide SvelteKit html typings (#​11222)

  • feat: redact internal stack trace when reporting config errors (#​11292)

  • feat: allow for fine grained invalidation of search params (#​11258)

Patch Changes

  • fix: prerender optional parameters as empty when entries contains '*' (#​11178)

  • fix: resolve route config correctly (#​11256)

  • fix: import Svelte types from svelte/compiler (#​11188)

  • fix: reset invalid resources after a successful invalidation (#​11268)

  • fix: Adjust fail method and ActionFailure type (#​11260)

  • chore(deps): upgrade cookies dependency (#​11189)

v1.30.4

Compare Source

Patch Changes
  • chore(deps): upgrade and unpin undici (#​11860)

v1.30.3

Compare Source

Patch Changes
  • fix: correct documentation for beforeNavigate (#​11300)

v1.30.2

Compare Source

Patch Changes
  • fix: revert recent 'correctly return 415' and 'correctly return 404' changes (#​11295)

v1.30.1

Compare Source

Patch Changes

  • fix: prerendered root page with paths.base config uses correct trailing slash option (#​10763)

  • fix: correctly return 404 when a form action is not found (#​11278)

v1.30.0

Compare Source

Minor Changes
  • feat: inline response.arrayBuffer() during ssr (#​10535)
Patch Changes

  • fix: allow "false" value for preload link options (#​10555)

  • fix: call worker unref instead of terminate (#​10120)

  • fix: correctly analyse exported server API methods during build (#​11019)

  • fix: avoid error when back navigating before page is initialized (#​10636)

  • fix: allow service-worker.js to import assets (#​9285)

  • fix: distinguish better between not-found and internal-error (#​11131)

v1.29.1

Compare Source

Patch Changes

  • fix: correctly return 415 when unexpected content types are submitted to actions (#​11255)

  • chore: deprecate preloadCode calls with multiple arguments (#​11266)

v1.29.0

Compare Source

Minor Changes
  • feat: add resolveRoute to $app/paths, deprecate resolvePath (#​11261)

v1.28.0

Compare Source

Minor Changes
  • chore: deprecate top level promise await behaviour (#​11175)
Patch Changes

  • fix: resolve relative cookie paths before storing (#​11253)

  • chore: deprecate cookies.set/delete without path option (#​11237)

  • fix: make sure promises from fetch handle errors (#​11228)

v1.27.7

Compare Source

Patch Changes

  • fix: set runes option in generated root (#​11111)

  • fix: retain URL query string for trailing slash redirects to prerendered pages (#​11142)

v1.27.6

Compare Source

Patch Changes

  • fix: use runes in generated root when detecting Svelte 5 (#​11028)

  • fix: correctly prerender pages that use browser globals and have SSR turned off (#​11032)

  • fix: correctly show 404 for prerendered dynamic routes when navigating client-side without a root layout server load (#​11025)

v1.27.5

Compare Source

Patch Changes

  • fix: add vite.config.js to included files in generated tsconfig (#​10788)

  • fix: cache location.origin on startup (#​11004)

v1.27.4

Compare Source

Patch Changes

  • fix: generate __data.json for prerendered pages when SSR is turned off (#​10988)

  • chore: add experimental compatibility for Svelte 5 (#​11002)

v1.27.3

Compare Source

Patch Changes
  • fix: use correct environment file for rendering spa fallback page (#​10963)

v1.27.2

Compare Source

Patch Changes
  • fix: missing File Node polyfill for Node version 18.11.0+ (#​10948)

v1.27.1

Compare Source

Patch Changes
  • fix: only apply some polyfills below node 18.11 (#​10920)

v1.27.0

Compare Source

Minor Changes
  • feat: add invalidateAll boolean option to enhance callback (#​9889)

v1.26.0

Compare Source

Minor Changes
  • feat: infer route parameter type from matcher's guard check if applicable (#​10755)
Patch Changes

  • fix: basic mime type handling for prerendered pages in preview (#​10851)

  • chore: use just a single library (mrmime) for mime type handling (#​10851)

  • chore: bump undici to address security issue (#​10885)

  • fix: follow whatwg fetch spec for handling redirect loops (#​10857)

  • fix: use window.fetch in load functions to allow libraries to patch it (#​10009)

  • chore(deps): update dependency undici to ~5.26.0 (#​10860)

v1.25.2

Compare Source

Patch Changes

  • fix: correctly update $page.url.hash when navigating history (#​10843)

  • fix: strip virtual module prefix from error messages (#​10776)

  • fix: cancel ongoing navigation when the browser back button is hit to prevent an incorrect page from being rendered (#​10727)

  • fix: only remove Vite manifest when copying files (#​10782)

v1.25.1

Compare Source

Patch Changes

  • fix: correct line numbers in stack trace (#​10769)

  • fix: correctly return 404 when navigating to a missing page and the root layout fetches a prerendered endpoint (#​10565)

  • fix: allow optional param in middle of route (#​10736)

  • chore: update undici (#​10641)

v1.25.0

Compare Source

Minor Changes
  • feat: add server endpoint catch-all method handler fallback (#​9755)
Patch Changes
  • fix: allow calling fetch for any scheme (#​10699)

v1.24.1

Compare Source

Patch Changes
  • fix: mark aborted/cancelled navigation as handled (#​10666)

v1.24.0

Compare Source

Minor Changes
  • feat: onNavigate lifecycle function (#​9605)
Patch Changes
  • fix: Use Proxy to track usage of client side load event.route (#​10576)

v1.23.1

Compare Source

Patch Changes
  • fix: process globs in pkg.workspaces (#​10625)

v1.23.0

Compare Source

Minor Changes

  • feat: add warning for mistyped route filenames (#​10558)

  • feat: accept URL in redirect (#​10570)

Patch Changes

  • fix: adjust the type of Navigation["type"] (#​10599)

  • fix: allow logging $page.url during prerendering (#​10567)

v1.22.6

Compare Source

Patch Changes

  • fix: correctly restore trailing slash in url pathname for data requests (#​10475)

  • fix: load trailing slash option from server even when there's no load function (#​10475)

v1.22.5

Compare Source

Patch Changes

  • fix: make server assets available during vite preview (#​10511)

  • chore: upgrade undici to 5.23.0 (#​10240)

v1.22.4

Compare Source

Patch Changes

  • fix: prevent duplicate module preload (#​10442)

  • docs: Elaborate on credentialed fetch behaviour (#​10421)

v1.22.3

Compare Source

Patch Changes
  • fix: gracefully handle server endpoints that return Responses with immutable Headers (#​10367)

v1.22.2

Compare Source

Patch Changes

  • fix: wait a tick before announcing new page title (#​10363)

  • feat: more helpful error for preview if build output doesn't exist (#​10337)

v1.22.1

Compare Source

Patch Changes
  • perf: only have Vite generate relative paths when required (#​10287)

v1.22.0

Compare Source

Minor Changes

  • feat: add HEAD server method (#​9753)

  • feat: support caching of responses with Vary header (except for Vary: *) (#​9993)

Patch Changes

  • fix: avoid running load function on invalid requests (#​9752)

  • fix: update page store when URL hash is changed from the address bar (#​10202)

  • fix: include Vary: Accept header to fix browser caching of adjacent pages and endpoints (#​9993)

v1.21.0

Compare Source

Minor Changes

  • feat: add event.isSubRequest boolean indicating whether this is a call to one of the app's own APIs during SSR (or prerendering) (#​10170)

  • feat: add privatePrefix to config.kit.env (#​9996)

  • feat: export VERSION from @sveltejs/kit (#​9969)

Patch Changes

  • docs: update inline NavigationType documentation (#​10269)

  • perf: cache dynamic imports of nodes (#​10080)

v1.20.5

Compare Source

Patch Changes

  • fix: batch synchronous invalidate invocations (#​10145)

  • fix: allow rest params to be empty in resolvePath (#​10146)

  • fix: correctly close dialogs when form is enhanced (#​10093)

  • fix: precompress filter (#​10185)

v1.20.4

Compare Source

Patch Changes
  • fix: remove reference to tiny-glob from postinstall script (#​10174)

v1.20.3

Compare Source

Patch Changes

  • chore: remove tiny-glob as a dependency (#​10166)

  • fix: don't import types from svelte/internal (#​10172)

  • fix: don't skip rest parameter's matcher when there is a non-matching optional parameter (#​10020)

  • fix: ensure fetch respects headers from provided Request (#​10136)

v1.20.2

Compare Source

Patch Changes

  • fix: ensure optional routes with matchers and catch-all match correctly (#​9987)

  • fix: disallow actions export from a +layout.server file (#​10046)

  • fix: remove scrollbars from default error page (#​10059)

v1.20.1

Compare Source

Patch Changes
  • fix: don't copy public folder in service worker build (#​10082)

v1.20.0

Compare Source

Minor Changes

v1.19.0

Compare Source

Minor Changes

  • feat: allow link options to be set to "true" and "false" (#​10039)

  • feat: add resolvePath export for building relative paths from route IDs and parameters (#​9949)

Patch Changes

  • fix: prevent history change when clicking same hash link (#​10032)

  • fix: gracefully handle server endpoints that return Responses with immutable Headers when prerendering (#​10030)

  • fix: do not add content-security-policy meta element if content is empty (#​10026)

  • docs: correct ResolveOptions['preload'] inline documentation (#​10037)

  • fix: avoid creating update check timer on the server (#​10015)

v1.18.0

Compare Source

Minor Changes
  • security: Stop implicitly tracking URLs as dependencies in server-side loads (#​9945)

v1.17.1

Compare Source

Patch Changes

  • fix: ensure styles are loaded in dev mode for routes containing special characters (#​9894)

  • feat: warn users when enhancing forms with files but no enctype="multipart/form-data" (#​9888)

v1.17.0

Compare Source

Minor Changes

  • feat: unshadow data and form in enhance and warn about future deprecation when used in dev mode (#​9902)

  • feat: crawl URLs in <meta> tags (#​9900)

Patch Changes

  • fix: avoid trying to inline raw or url css imports (#​9925)

  • feat: prerender in worker rather than subprocess to support Deno (#​9919)

  • perf: add <script> to prerendered redirects for faster redirects (#​9911)

  • fix: add typing for vitePlugin to Config (#​9946)

  • fix: stop setting Kit cookie defaults on cookies parsed from headers (#​9908)

  • fix: only skip hydration with vite overlay if current page is an error (#​9892)

v1.16.3

Compare Source

Patch Changes

  • fix: entry generation with mixed segments (#​9879)

  • fix: use focusVisible: false to prevent unwanted focus ring on navigation (#​9861)

v1.16.2

Compare Source

Patch Changes

  • fix: support Node 20 (6e2efcf62)

  • fix: reset focus synchronously on navigation (#​9837)

v1.16.1

Compare Source

Patch Changes

  • fix: realign state.branch on the client on first load (#​9754)

  • fix: update $page.data correctly after invalidate (#​9798)

  • fix: file not found in manifest (#​9846)

v1.16.0

Compare Source

Minor Changes
  • feat: route-level entry generators via export const entries (#​9571)

v1.15.11

Compare Source

Patch Changes

  • chore: more compact representation for invalidated search param (#​9708)

  • chore: fix import path to app script on windows (#​9743)

  • fix: make $app/navigation more resilient to bundler reordering (#​9808)

  • fix: page load fetch() now accepts the same input types for the body as the native fetch function (#​9801)

  • fix: handle preload and filterSerializedResponseHeaders in sequence function (#​9741)

v1.15.10

Compare Source

Patch Changes
  • fix: log whole error object in default handleError (#​9791)

v1.15.9

Compare Source

Patch Changes

  • fix: correctly replace state when data-sveltekit-replacestate is used with a hash link (#​9751)

  • fix: compute trailing slash on page server / data request (#​9738)

  • fix: update vite-plugin-svelte to fix windows resolution issue (#​9769)

v1.15.8

Compare Source

Patch Changes

  • chore: revert undici pin and upgrade version (#​9740)

  • chore: upgrade vite-plugin-svelte for resolve improvements and warnings (#​9742)

v1.15.7

Compare Source

Patch Changes

  • fix: provide better error when prerendered routes conflict with each other (#​9692)

  • fix: prevent false positive warnings for fetch in Firefox and Safari (#​9680)

  • fix: allow embedding two pages generated into the same page in "embedded" mode (#​9610)

  • fix: don't include prerendered routes in default generateManifest (#​9471)

  • fix: better error messages for handleable prerender failures (#​9621)

v1.15.6

Compare Source

Patch Changes

  • fix: use correct relative paths when rendering base path (#​9343)

  • fix: handle redirect thrown in handle hook in response to form action (#​9658)

  • fix: do not call beforeNavigate for download links (#​9660)

v1.15.5

Compare Source

Patch Changes

  • fix: correct allow header methods list for 405s (#​9655)

  • fix: prevent routes/layouts from having conflicting files through resets or different extensions (#​9590)

  • fix: prevent unhandled exceptions for invalid header values (#​9638)

v1.15.4

Compare Source

Patch Changes

  • fix: gracefully handle failure to load hooks.server.js (#​9641)

  • feat: set sourcemapIgnoreList to filter out non-source directories (#​9619)

v1.15.3

Compare Source

Patch Changes
  • fix: prevent building duplicate CSS files (#​9382)

v1.15.2

Compare Source

Patch Changes
  • fix: address security advisory CVE-2023-29008 by doing a case-insensitive comparison when checking header value (ba436c66)

v1.15.1

Compare Source

Patch Changes

  • chore: more compact representation for invalidated search param (#​9708)

  • chore: fix import path to app script on windows (#​9743)

  • fix: make $app/navigation more resilient to bundler reordering (#​9808)

  • fix: page load fetch() now accepts the same input types for the body as the native fetch function (#​9801)

  • fix: handle preload and filterSerializedResponseHeaders in sequence function (#​9741)

v1.15.0

Compare Source

Minor Changes
  • feat: expose stronger typed SubmitFunction through ./$types (#​9201)
Patch Changes

  • fix: throw error when file can't be found in Vite manifest (#​9558)

  • fix: make error.message enumerable when sending ssrLoadModule error to client (#​9440)

  • fix: pass publicDir Vite config in SSR (#​9565)

  • fix: balance parentheses in error about wrong content type for action (#​9513)

v1.14.0

Compare Source

Minor Changes
  • feat: add HMR to fallback error pages during dev (#​9497)
Patch Changes
  • fix: add submitter type to SumbitFunction (#​9484)

v1.13.0

Compare Source

Minor Changes
  • feat: add dark mode styles to default error page (#​9460)
Patch Changes
  • fix: recover from errors during dev by reloading (#​9441)

v1.12.0

Compare Source

Minor Changes

  • feat: expose submitter in use:enhance SubmitFunction (#​9425)

  • feat: add data-sveltekit-keepfocus and data-sveltekit-replacestate options to links (requires Svelte version 3.56 for type-checking with svelte-check) (#​9019)

Patch Changes

  • fix: don't start debugger on 404s (#​9424)

  • fix: handle srcset attributes with newline after comma (#​9388)

  • fix: allow tsconfig to extend multiple other tsconfigs (#​9413)

  • chore: update Undici to 5.21.0 (#​9417)

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this MR and you won't be reminded about this update again.

  • If you want to rebase/retry this MR, check this box

This MR has been generated by Renovate Bot.

Edited by Renovate Bot

Merge request reports