deps: bump the vite group across 1 directory with 2 updates

[dependabot]

Bumps the vite group with 2 updates in the / directory: vite and vite-plugin-svgr.

Updates vite from 6.4.3 to 8.1.0

Release notes

Sourced from vite's releases.

create-vite@8.1.0

Please refer to CHANGELOG.md for details.

plugin-legacy@8.1.0

Please refer to CHANGELOG.md for details.

v8.1.0

Please refer to CHANGELOG.md for details.

plugin-legacy@8.1.0-beta.0

Please refer to CHANGELOG.md for details.

v8.1.0-beta.0

Please refer to CHANGELOG.md for details.

v8.0.16

Please refer to CHANGELOG.md for details.

v8.0.15

Please refer to CHANGELOG.md for details.

v8.0.14

Please refer to CHANGELOG.md for details.

v8.0.13

Please refer to CHANGELOG.md for details.

v8.0.12

Please refer to CHANGELOG.md for details.

v8.0.11

Please refer to CHANGELOG.md for details.

v8.0.10

Please refer to CHANGELOG.md for details.

v8.0.9

Please refer to CHANGELOG.md for details.

v8.0.8

Please refer to CHANGELOG.md for details.

v8.0.7

Please refer to CHANGELOG.md for details.

v8.0.6

Please refer to CHANGELOG.md for details.

v8.0.5

Please refer to CHANGELOG.md for details.

... (truncated)

Changelog

Sourced from vite's changelog.

8.1.0 (2026-06-23)

Features

• extend server.fs.deny list with common files (#22707) (61ba8fd)
• update rolldown to 1.1.2 (#22695) (4f008a6)
• use ~ for Rolldown (#22693) (9928722)

Bug Fixes

• bundled-dev: errors should be kept when incremental build fails (#22617) (9a0dd48)
• cache falsy values in perEnvironmentState (#22715) (0e91e79)
• glob: respect caseSensitive option in hmr matcher (#22711) (65f525e)
• html: omit nonce on import map when cspNonce is unset (#22713) (8340bb5)
• optimizer: skip null-valued exports in expandGlobIds glob resolution (#22611) (8b9f5cd)
• resolved build options should be kept as a getter (#22691) (3527191)
• server: handle malformed URI in memory files middleware (#22714) (df9e0a5)
• use literal envPrefix queries for Vite Task (#22706) (da72733)
• warn on deprecated envFile (#22555) (ed7b283)

Code Refactoring

• client: inline dev-id value in CSS selector (#22736) (57f59bc)
• remove unused removeRawQuery util (#22724) (403cc60)
• use rolldownOptions property for chunkImportMap (#22692) (8e8816c)

8.1.0-beta.0 (2026-06-15)

Features

• import.meta.glob support caseSensitive option (#21707) (2ad6737)
• add warning to discourage Vite with yarn pnp (#21906) (3fbb55a)
• build: chunk importmap (#21580) (e180312)
• css: support lightningcss plugin dependency (#21748) (0b7aaed)
• deps: bump @​vitejs/devtools peer dependency version (#22542) (d2c2bc0)
• html: add html.additionalAssetSources option (#21412) (a41404b)
• integrate with Vite Task for zero-config build caching (#22453) (f8d75f7)
• rename server.hmr options to server.ws options (#21357) (9ce3036)
• server: support multiple hosts in __VITE_ADDITIONAL_SERVER_ALLOWED_HOSTS (#21501) (735f9a1)
• track dependencies when loading config with native (#22602) (a7e2da8)
• types: add more precise typing for known query types to match known as types (#21863) (cc39e55)
• update rolldown to 1.1.1 (#22593) (8a13d63)
• wasm: direct .wasm imports (WASM ESM Integration) (#21779) (c23d85b)

Bug Fixes

• apply correct fs restrictions for pnpm gvs (#22415) (092320b)
• css: support external CSS with lightningcss (#18389) (d64a1a5)
• deps: update all non-major dependencies (#22637) (44bb9d9)
• deps: update all non-major dependencies (#22681) (f4f0633)
• html: insert import map before modulepreload that is not self-close tag (#21409) (e399c89)
• optimizer: preserve sourcemaps for transformed optimized deps with follow-up transforms (#22428) (1298951)

... (truncated)

Commits

• 5909efd fix: allow multiple bindCLIShortcuts calls with shortcut merging (#21103)
• 39a0a15 chore(deps): update rolldown-related dependencies (#21095)
• 6a34ac3 fix(deps): update all non-major dependencies (#21096)
• 02ceaec chore(deps): update dependency @​rollup/plugin-commonjs to v29 (#21099)
• 572aaca release: v7.2.2
• 728c8ee fix: revert "refactor: use fs.cpSync (#21019)" (#21081)
• a532e68 release: v7.2.1
• 82d2d6c fix(worker): some worker asset was missing (#21074)
• f83264f refactor(build): rename indexOfMatchInSlice to findPreloadMarker (#21054)
• 8293de0 release: v7.2.0
• Additional commits viewable in compare view

Updates vite-plugin-svgr from 4.5.0 to 5.2.0

Release notes

Sourced from vite-plugin-svgr's releases.

v5.2.0

No significant changes

    View changes on GitHub

v5.1.0

   🐞 Bug Fixes

• Correct OxcTransformOptions type to expose jsx options  -  by @​rivajunior in pd4d10/vite-plugin-svgr#144 (0ca4f)

   🏎 Performance

• Lazy load SVGR dependencies  -  by @​pd4d10 (8aadc)

    View changes on GitHub

v5.0.0

   🚨 Breaking Changes

• Drop vite 2 support and add vite compat tests  -  by @​pd4d10 (d19af)

    View changes on GitHub

Commits

• 8ff69f4 5.2.0
• dfbcb3b build: export cjs entry as callable default
• 127eea3 chore: upgrade toolchain dependencies
• 765a674 build: make TypeScript root dirs explicit
• 9c0bdca ci: add publint workflow
• 1b19812 build: switch to tsdown for dual-module output
• 0605cf7 5.1.0
• f598866 test: fix TypeScript typings
• 8aadc43 perf: lazy load SVGR dependencies
• 0ca4f6b fix: correct OxcTransformOptions type to expose jsx options (#144)
• Additional commits viewable in compare view

[NAME-ASHWANIYADAV]

@markmandel, I suggest we try rebasing this branch to see if it clears the issue. If the problem persists, we can explore alternative solutions

[markmandel]

@markmandel, I suggest we try rebasing this branch to see if it clears the issue. If the problem persists, we can explore alternative solutions

Looks like it's already up to date - not sure there is more to rebase against? 🤔

[NAME-ASHWANIYADAV]

I have go through this in detail and i think the CI is failing because package-lock.json is out of sync with package.json -
the lockfile has stale intermediate dependency versions (e.g., vite@7.3.6, esbuild@0.28.1) that don't match what's expected.
This happened because main has moved ahead significantly since this PR was first created (PRs #12, #25, and several Dependabot security bumps have merged), and the lockfile wasn't properly regenerated during the force-push rebases

@markmandel I suggest to run the command @dependabot recreate

[dependabot]

Sorry, only users with push access can use that command.

[dependabot]

Sorry, only users with push access can use that command.

[markmandel]

@dependabot rebase

[NAME-ASHWANIYADAV]

I do suggest we should close this pr because @kinvolk/headlamp-plugin@0.14.x has transitive dependencies
(vite-plugin-node-polyfills, @storybook/react-vite, @vitejs/plugin-react, etc.) that don't declare vite 8 in their peerDependencies. We need to wait for the headlamp plugin SDK to add vite 8 support before we can bump.