Skip to content

build(deps): bump vue from 3.5.26 to 3.5.27 #4602

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dependabot wants to merge 1 commit into
base: master
Choose a base branch
from
Open

build(deps): bump vue from 3.5.26 to 3.5.27 #4602

dependabot wants to merge 1 commit into from
+1 −1

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 19, 2026
edited
Loading

Bumps vue from 3.5.26 to 3.5.27.

Release notes

Sourced from vue's releases.

v3.5.27

For stable releases, please refer to CHANGELOG.md for details. For pre-releases, please refer to CHANGELOG.md of the minor branch.

Changelog

Sourced from vue's changelog.

3.5.27 (2026-01-19)

Bug Fixes

  • compile-sfc: correctly handle variable shadowing in for loop for defineProps destructuring. (#14296) (6a1bb50), closes #14294
  • compiler-sfc: handle indexed access types in declare global blocks (#14260) (e4091fe), closes #14236
  • compiler-sfc: use correct scope when resolving indexed access types from external files (#14297) (f0f0a21), closes #14292
  • reactivity: collection iteration should inherit iterator instance methods (#12644) (3c8b2fc), closes #12615
  • runtime-core: skip patching reserved props for custom elements (#14275) (19cc7e2), closes #14274
  • server-renderer: use ssrRenderClass helper for className attribute (#14327) (a4708f3)
  • ssr: handle v-bind modifiers during render attrs (#14263) (c2f5964), closes #14262
Commits
  • aa9af1d release: v3.5.27
  • 35c3608 Revert "fix(runtime-core): resolve kebab-case slot names from in-DOM template...
  • 7e554bf fix(runtime-core): resolve kebab-case slot names from in-DOM templates (#14302)
  • 0596a5f types(jsx): improve autocomplete type (#14237)
  • 19cc7e2 fix(runtime-core): skip patching reserved props for custom elements (#14275)
  • c2f5964 fix(ssr): handle v-bind modifiers during render attrs (#14263)
  • 3c8b2fc fix(reactivity): collection iteration should inherit iterator instance method...
  • e4091fe fix(compiler-sfc): handle indexed access types in declare global blocks (#14260)
  • 6a1bb50 fix(compile-sfc): correctly handle variable shadowing in for loop for `define...
  • f0f0a21 fix(compiler-sfc): use correct scope when resolving indexed access types from...
  • Additional commits viewable in compare view

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jan 19, 2026
@codecov
Copy link

codecov bot commented Jan 19, 2026
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 15.43%. Comparing base (3a12f96) to head (5a5fb09).
✅ All tests successful. No failed tests found.

Additional details and impacted files 
@@            Coverage Diff             @@
##           master    #4602      +/-   ##
==========================================
- Coverage   15.50%   15.43%   -0.07%     
==========================================
  Files          94       94              
  Lines       19089    19089              
  Branches     8801     8801              
==========================================
- Hits         2960     2947      -13     
- Misses      14346    14474     +128     
+ Partials     1783     1668     -115
Flag Coverage Δ
Archlinux 11.50% <ø> (ø)
FreeBSD-14.3-aarch64 ?
FreeBSD-14.3-amd64 13.74% <ø> (-0.02%) ⬇️
Homebrew-ubuntu-22.04 13.81% <ø> (ø)
Linux-AppImage 11.82% <ø> (ø)
Windows-AMD64 13.44% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.
see 15 files with indirect coverage changes

@codecov
Copy link

codecov bot commented Jan 19, 2026
edited
Loading

Bundle Report

Changes will decrease total bundle size by 7 bytes (-0.0%) ⬇️. This is within the configured threshold ✅

Detailed changes
Bundle name Size Change
sunshine-esm 968.58kB -7 bytes (-0.0%) ⬇️

Affected Assets, Files, and Routes:

view changes for bundle: sunshine-esm

Assets Changed:

Asset Name Size Change Total Size Change (%)
assets/_plugin-*.js -7 bytes 344.81kB -0.0%

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/vue-3.5.27 branch 2 times, most recently from 886afbf to 10d6a79 Compare January 22, 2026 08:52
@dependabot
build(deps): bump vue from 3.5.26 to 3.5.27
5a5fb09 
Bumps [vue](https://github.com/vuejs/core) from 3.5.26 to 3.5.27.
- [Release notes](https://github.com/vuejs/core/releases)
- [Changelog](https://github.com/vuejs/core/blob/main/CHANGELOG.md)
- [Commits](vuejs/core@v3.5.26...v3.5.27)

---
updated-dependencies:
- dependency-name: vue
  dependency-version: 3.5.27
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/vue-3.5.27 branch from 10d6a79 to 5a5fb09 Compare January 23, 2026 08:32
@sonarqubecloud
Copy link

sonarqubecloud bot commented Jan 23, 2026

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/vue-3.5.27 branch from 10d6a79 to 5a5fb09 Compare January 23, 2026 08:42
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant