[Snyk] Upgrade vue-i18n from 9.10.2 to 11.1.12

[nerdy-tech-com-gitub]

Snyk has created this PR to upgrade vue-i18n from 9.10.2 to 11.1.12.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 52 versions ahead of your current version.

• The recommended version was released a month ago.

⚠️ Warning: This PR contains major version upgrade(s), and may be a breaking change.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-CROSSSPAWN-8303230	140	Proof of Concept
	Prototype Pollution SNYK-JS-INTLIFYSHARED-8442251	140	Proof of Concept
	Incorrect Authorization SNYK-JS-VITE-9512410	140	Mature
	Incorrect Authorization SNYK-JS-VITE-9653016	140	Proof of Concept
	Prototype Pollution SNYK-JS-VUEI18N-8442254	140	Proof of Concept
	Prototype Pollution SNYK-JS-VUEI18N-9376708	140	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-BABELHELPERS-9397697	140	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-BABELRUNTIME-10044504	140	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-INTLIFYCOREBASE-10753753	140	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-INTLIFYCOREBASE-8442262	140	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-INTLIFYSHARED-10753754	140	Proof of Concept
	Improper Input Validation SNYK-JS-NANOID-8492085	140	No Known Exploit
	Cross-site Scripting (XSS) SNYK-JS-ROLLUP-8073097	140	Proof of Concept
	Origin Validation Error SNYK-JS-VITE-8648411	140	Proof of Concept
	Access Control Bypass SNYK-JS-VITE-9576207	140	Proof of Concept
	Information Exposure SNYK-JS-VITE-9685035	140	Proof of Concept
	Directory Traversal SNYK-JS-VITE-9919777	140	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-VUEI18N-8442260	140	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-BRACEEXPANSION-9789073	140	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-BRACEEXPANSION-9789073	140	Proof of Concept
	Predictable Value Range from Previous Values SNYK-JS-FORMDATA-10841150	140	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-VUEI18N-10771082	140	Proof of Concept
	Relative Path Traversal SNYK-JS-VITE-12558116	140	Proof of Concept

Release notes

Package name: vue-i18n

• 11.1.12 - 2025-09-05
  

  What's Changed

  ⚡ Improvement Features

  • fix: Emit INVALID_TOKEN_IN_PLACEHOLDER instead of UNTERMINATED_CLOSING_BRACE when invalid token is in placeholder and update docs by @ kazupon in #2255

  Full Changelog: v11.1.11...v11.1.12

• 11.1.11 - 2025-07-23
  

  What's Changed

  ⚡ Improvement Features

  • fix: change warning from error for mutiple useI18n local scope calling by @ kazupon in #2235

  Full Changelog: v11.1.10...v11.1.11

• 11.1.10 - 2025-07-16
  

  🔒 Security Fixes

  • fix: DOM-based XSS via tag attributes for escape parameter, about details see GHSA-x8qp-wqqm-57ph

  Full Changelog: v11.1.9...v11.1.10

• 11.1.9 - 2025-07-03
  

  Full Changelog: v11.1.8...v11.1.9

• 11.1.8 - 2025-07-02
  

  What's Changed

  ⚡ Improvement Features

  • fix: typo by @ kazupon in #2221

  Full Changelog: v11.1.7...v11.1.8

• 11.1.7 - 2025-06-22
  

  What's Changed

  🐛 Bug Fixes

  • fix: declaration order in Number formatting with options ResourceKeys by @ kazupon in #2208

  Full Changelog: v11.1.6...v11.1.7

• 11.1.6 - 2025-06-17
  

  What's Changed

  ⚡ Improvement Features

  • fix: error on duplicate useI18n calling on local scope by @ kazupon in #2203

  Full Changelog: v11.1.5...v11.1.6

• 11.1.5 - 2025-05-27
• 11.1.4 - 2025-05-24
• 11.1.3 - 2025-04-05
• 11.1.2 - 2025-03-07
• 11.1.1 - 2025-02-09
• 11.1.0 - 2025-01-31
• 11.0.1 - 2024-12-26
• 11.0.0 - 2024-12-24
• 11.0.0-rc.1 - 2024-12-19
• 11.0.0-beta.2 - 2024-11-28
• 11.0.0-beta.1 - 2024-11-17
• 11.0.0-beta.0 - 2024-11-14
• 10.0.8 - 2025-07-16
  

  What's Changed

  🔒 Security Fixes

  • fix: DOM-based XSS via tag attributes for escape parameter by @ kazupon in #2229

  Full Changelog: v10.0.7...v10.0.8

• 10.0.7 - 2025-04-05
• 10.0.6 - 2025-03-07
• 10.0.5 - 2024-11-28
• 10.0.4 - 2024-10-06
• 10.0.3 - 2024-09-22
• 10.0.2 - 2024-09-21
• 10.0.1 - 2024-09-12
• 10.0.0 - 2024-09-10
• 10.0.0-rc.1 - 2024-09-05
• 10.0.0-beta.6 - 2024-08-29
• 10.0.0-beta.5 - 2024-07-19
• 10.0.0-beta.4 - 2024-07-16
• 10.0.0-beta.3 - 2024-07-14
• 10.0.0-beta.2 - 2024-07-05
• 10.0.0-beta.1 - 2024-05-23
• 10.0.0-alpha.5 - 2024-05-15
• 10.0.0-alpha.4 - 2024-05-09
• 10.0.0-alpha.3 - 2024-04-27
• 10.0.0-alpha.2 - 2024-04-22
• 10.0.0-alpha.1 - 2024-04-21
• 9.14.5 - 2025-07-16
  

  What's Changed

  🔒 Security Fixes

  • fix: DOM-based XSS via tag attributes for escape parameter by @ kazupon in #2230

  Full Changelog: v9.14.4...v9.14.5

• 9.14.4 - 2025-04-06
• 9.14.3 - 2025-03-07
• 9.14.2 - 2024-11-28
• 9.14.1 - 2024-09-26
• 9.14.0 - 2024-08-16
• 9.13.1 - 2024-04-20
• 9.13.0 - 2024-04-17
• 9.12.1 - 2024-04-14
• 9.12.0 - 2024-04-12
• 9.11.1 - 2024-04-10
• 9.11.0 - 2024-04-04
• 9.10.2 - 2024-03-15

from vue-i18n GitHub release notes

---

Important

• Warning: This PR contains a major version upgrade, and may be a breaking change.
• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs