Fix vulnerabilities (#149)

- Upgrade axios and @itwin/core-react to resolve high/critical
vulnerabilities
- Upgrade vite and other dev dependencies for moderate/low audit results
- Remove postcss config. This was causing issues with tests in vite v6,
and as of #43, it's not even
renaming css classes anymore. Updated build script to just copy the css
files to /lib without any extra logic

Author: sarah-pontier

.changeset/easy-cameras-show.md

@@ -0,0 +1,6 @@
+---
+"@itwin/saved-views-client": patch
+"@itwin/saved-views-react": patch
+---
+
+Updated `axios` dependency version to `^1.12.0`

.changeset/weak-toys-tell.md

@@ -0,0 +1,5 @@
+---
+"@itwin/saved-views-react": patch
+---
+
+Updated `@itwin/core-react` dependency version to `^5.2.0`

package.json

@@ -43,8 +43,9 @@
     "typescript": "^5.5.4"
   },
   "resolutions": {
+    "@babel/runtime": "^7.26.10",
     "@eslint/plugin-kit": "^0.3.3",
-    "axios": "^1.8.2",
+    "axios": "^1.12.0",
     "brace-expansion": "^2.0.2",
     "form-data": ">=4.0.4"
   }

packages/saved-views-client/package.json

@@ -31,10 +31,10 @@
     "typecheck": "tsc --noEmit"
   },
   "devDependencies": {
-    "@vitest/coverage-v8": "^3.0.6",
+    "@vitest/coverage-v8": "^3.2.4",
     "happy-dom": "^15.11.4",
     "typescript": "^5.5.4",
-    "vite": "^5.4.18",
-    "vitest": "^3.0.6"
+    "vite": "^6.0.0",
+    "vitest": "^3.2.4"
   }
 }

packages/saved-views-react/package.json

@@ -33,7 +33,7 @@
     "build:transpile": "run-s build:transpile:*",
     "build:transpile:client": "cd ../saved-views-client && npm run build",
     "build:transpile:react": "tsc --project ./tsconfig.build.json",
-    "build:css": "postcss src/**/*.css --base ./src --dir ./lib",
+    "build:css": "cpx \"./src/**/*.css\" ./lib",
     "test": "vitest run --passWithNoTests",
     "test:cover": "vitest run --coverage --passWithNoTests",
     "test:watch": "vitest watch",
@@ -52,18 +52,16 @@
     "@types/react": "^18.0.0",
     "@types/recursive-readdir": "^2.2.2",
     "@vitejs/plugin-react-swc": "^3.5.0",
-    "@vitest/coverage-v8": "^3.0.6",
+    "@vitest/coverage-v8": "^3.2.4",
     "cpx2": "^5.0.0",
     "happy-dom": "^15.11.4",
     "npm-run-all": "^4.1.5",
-    "postcss-cli": "^10.1.0",
-    "postcss-modules": "^6.0.0",
     "react": "^18.0.0",
     "react-dom": "^18.0.0",
     "recursive-readdir": "^2.2.3",
     "typescript": "^5.5.4",
-    "vite": "^5.4.18",
-    "vitest": "^3.0.6"
+    "vite": "^6.0.0",
+    "vitest": "^3.2.4"
   },
   "peerDependencies": {
     "@itwin/core-common": "^5.0.0-dev.111",

packages/saved-views-react/postcss.config.mts

@@ -21,7 +21,7 @@
     "@itwin/core-frontend": "^5.0.0-dev.111",
     "@itwin/core-geometry": "^5.0.0-dev.111",
     "@itwin/core-i18n": "^5.0.0-dev.111",
-    "@itwin/core-react": "^5.1.0",
+    "@itwin/core-react": "^5.2.0",
     "@itwin/imodel-components-react": "^5.2.0",
     "@itwin/imodels-access-frontend": "^5.2.3",
     "@itwin/imodels-client-management": "^5.9.0",
@@ -48,8 +48,8 @@
     "redux": "^4.1.0",
     "sass": "^1.64.1",
     "typescript": "^5.5.4",
-    "vite": "^5.4.18",
-    "vite-plugin-static-copy": "^1.0.0",
+    "vite": "^6.0.0",
+    "vite-plugin-static-copy": "^2.3.2",
     "vite-tsconfig-paths": "^4.3.1"
   }
 }