From 6e13f49f4335a4ef19388b0d64c42ca5ba815da3 Mon Sep 17 00:00:00 2001
From: 0xMosas <tosinolosasa@gmail.com>
Date: Thu, 9 Apr 2026 07:01:23 +0100
Subject: [PATCH] Resolve Vite path traversal vulnerabilities

Update Vite to latest stable version to resolve three critical security
vulnerabilities:
- CVE: Vite Vulnerable to Path Traversal in Optimized Deps .map Handling
- CVE: Vite server.fs.deny bypassed with queries
- CVE: Vite Vulnerable to Arbitrary File Read via Dev Server WebSocket

All tests passing: 1711 frontend + 91 contract = 1802 total.
npm audit: 0 vulnerabilities remaining.
Fixes #316 (partial - Vite vulnerabilities fully resolved)
---
 package-lock.json | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 99e1fc2..86f6406 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -2267,9 +2267,9 @@
       }
     },
     "node_modules/vite": {
-      "version": "7.3.1",
-      "resolved": "https://registry.npmjs.org/vite/-/vite-7.3.1.tgz",
-      "integrity": "sha512-w+N7Hifpc3gRjZ63vYBXA56dvvRlNWRczTdmCBBa+CotUzAPf5b7YMdMR/8CQoeYE5LX3W4wj6RYTgonm1b9DA==",
+      "version": "7.3.2",
+      "resolved": "https://registry.npmjs.org/vite/-/vite-7.3.2.tgz",
+      "integrity": "sha512-Bby3NOsna2jsjfLVOHKes8sGwgl4TT0E6vvpYgnAYDIF/tie7MRaFthmKuHx1NSXjiTueXH3do80FMQgvEktRg==",
       "license": "MIT",
       "dependencies": {
         "esbuild": "^0.27.0",