chore(deps): bump @vitest/coverage-v8 from 2.1.9 to 4.1.7

[dependabot]

Bumps @vitest/coverage-v8 from 2.1.9 to 4.1.7.

Release notes

Sourced from @​vitest/coverage-v8's releases.

v4.1.7

   🐞 Bug Fixes

• runner: Limit concurrency per task branch in addition to per leaf callbacks (backport)  -  by @​hi-ogawa in vitest-dev/vitest#10384 (4f0f2)

    View changes on GitHub

v4.1.6

   🐞 Bug Fixes

• browser: Provide project reference in ToMatchScreenshotResolvePath  -  by @​macarie and @​sheremet-va in vitest-dev/vitest#10138 (31882)
• Global sequence.concurrent: true with top-level test(..., { concurrent: false }) + depreacte sequential test API and options  -  by @​hi-ogawa, Codex and @​sheremet-va in vitest-dev/vitest#10196 (2847d)
• browser: Simplify orchestrator otel carrier  -  by @​hi-ogawa in vitest-dev/vitest#10285 (18af9)

   🏎 Performance

• Stringify diff objects only once  -  by @​sheremet-va in vitest-dev/vitest#10276 (9f7b1)

    View changes on GitHub

v4.1.5

   🚀 Experimental Features

• coverage: Istanbul to support instrumenter option  -  by @​BartWaardenburg and @​AriPerkkio in vitest-dev/vitest#10119 (0e0ff)

   🐞 Bug Fixes

• --project negation excludes browser instances  -  by @​felamaslen in vitest-dev/vitest#10131 (9423d)
• Project color label on html reporter  -  by @​hi-ogawa in vitest-dev/vitest#10142 (596f7)
• Fix vi.defineHelper called as object method  -  by @​hi-ogawa in vitest-dev/vitest#10163 (122c2)
• Alias agent reporter to minimal  -  by @​sheremet-va in vitest-dev/vitest#10157 (663b9)
• Respect diff config options in soft assertions  -  by @​Copilot, sheremet-va and @​sheremet-va in vitest-dev/vitest#8696 (9787d)
• Respect diff config options in soft assertions "  -  by @​sheremet-va in vitest-dev/vitest#8696 (7dc6d)
• ast-collect: Recognize _vi_import prefix in static test discovery  -  by @​Yejneshwar in vitest-dev/vitest#10129 (32546)
• coverage: Descriptive error message when reports directory is removed during test run  -  by @​DaveT1991 and @​AriPerkkio in vitest-dev/vitest#10117 (14133)
• snapshot: Increase default snapshot max output length  -  by @​hi-ogawa and Codex in vitest-dev/vitest#10150 (21e66)
• ui: Fix jsx/tsx syntax highlight  -  by @​hi-ogawa in vitest-dev/vitest#10152 (f1b1f)
• web-worker: Support MessagePort objects referenced inside postMessage data  -  by @​whitphx and Claude Opus 4.6 (1M context) in vitest-dev/vitest#9927 and vitest-dev/vitest#10124 (7ad7d)
• api: Make test-specification options writable  -  by @​sheremet-va in vitest-dev/vitest#10154 (6abd5)

    View changes on GitHub

v4.1.4

   🚀 Experimental Features

• coverage:
  • Default to text reporter skipFull if agent detected  -  by @​hi-ogawa in vitest-dev/vitest#10018 (53757)
• experimental:
  • Expose assertion as a public field  -  by @​sheremet-va in vitest-dev/vitest#10095 (a120e)
  • Support aria snapshot  -  by @​hi-ogawa, Claude Opus 4.6 (1M context), @​AriPerkkio, Codex and @​sheremet-va in vitest-dev/vitest#9668 (d4fbb)

... (truncated)

Commits

• a09d472 chore: release v4.1.7
• a8fd24c chore: release v4.1.6
• e399846 chore: release v4.1.5
• ac04bac chore: release v4.1.4
• 2dc0d62 chore: release v4.1.3
• fc6f482 chore: release v4.1.2
• 1f2d318 chore: release v4.1.1
• aaf9f18 fix(coverage): simplify provider types (#9931)
• 4150b91 chore: release v4.1.0
• 0c2c013 chore: release v4.1.0-beta.6
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for @​vitest/coverage-v8 since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Labels

The following labels could not be found: dependencies. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[github-actions]

Dependency Changes Detected

This PR modifies dependency files. Please review whether these changes are intentional.

Changed files:

• package.json

Maintainer checklist:

• Confirm dependency changes are intentional
• Review package delta if lockfile changed

[lml2468]

🟡 [COMMENT — self-review] Needs coordination before merge.

@vitest/coverage-v8 2.1.9 → 4.1.7:

✅ Correct direction — v4.1.7 requires vitest: 4.1.7 as peer dependency.

🟡 Peer dependency chain: @vitest/coverage-v8@4.1.7 requires vitest@4.1.7 exactly. The repo is currently on vitest@2.1.9. This PR alone will produce an unmet peer dependency warning/error at runtime.

Required merge order:

1. Upgrade vitest to 4.1.7 (not yet in any open PR)
2. Upgrade vite to 8.x (PR #41) — vitest 4 supports vite ^6||^7||^8
3. Merge #42 together with the above

🔵 Also note: vitest 4 + coverage-v8 4 requires Node ≥ 20 (already met — CI runs Node 18 and 20; consider dropping Node 18 if it becomes a constraint).

Do not merge standalone. Part of the same coordinated batch as PR #41.

[Jerry-Xin]

This PR is in scope, but it breaks clean installs by upgrading only the Vitest coverage provider to v4 while leaving the test runner on v2.

🔴 Blocking

🔴 Critical — @vitest/coverage-v8@4.1.7 requires vitest@4.1.7, but the project still depends on vitest@^2.1.9. This makes npm ci fail with ERESOLVE could not resolve, so fresh installs and CI will be blocked before tests can run. See package.json and package.json. The lockfile also records the incompatible peer requirement at package-lock.json while keeping vitest at 2.1.9 at package-lock.json.

💬 Non-blocking

None.

✅ Highlights

The PR only touches dev dependency metadata and is relevant to the repository’s existing test:coverage workflow.

Verification: npm ci fails with a peer dependency conflict between @vitest/coverage-v8@4.1.7 and vitest@2.1.9.

[lml2468]

[CHANGES_REQUESTED] Independent cross-review. Same pattern as PR #44.

🔴 Blocking: CI red — peer dependency mismatch

While resolving: @vitest/coverage-v8@4.1.7
Found: vitest@2.1.9
Could not resolve dependency:
peer vitest@"4.1.7" from @vitest/coverage-v8@4.1.7

@vitest/coverage-v8 bumped from 2.x to 4.x, but vitest itself is still at ^2.1.9. Coverage-v8 has a strict peer dependency on the exact matching vitest version (peer vitest@"4.1.7").

Required fix: Either:

1. Bump vitest to 4.x alongside @vitest/coverage-v8, OR
2. Close and configure Dependabot grouping:

   groups:
     vitest:
       patterns:
         - "vitest"
         - "@vitest/*"

Same Dependabot partial-group problem as PR #44 (react). These packages must move together.