chore(deps-dev): Bump @tailwindcss/vite from 4.2.4 to 4.3.0 in /frontend

[dependabot]

Bumps @tailwindcss/vite from 4.2.4 to 4.3.0.

Release notes

Sourced from @​tailwindcss/vite's releases.

v4.3.0

Added

• Add @container-size utility (#18901)
• Add scrollbar-{auto,thin,none} utilities for scrollbar-width, and scrollbar-thumb-* / scrollbar-track-* color utilities for scrollbar-color (#19981, #20019)
• Add scrollbar-gutter-* utilities (#20018)
• Add zoom-* utilities (#20020)
• Add tab-* utilities (#20022)
• Allow using @variant with stacked variants (e.g. @variant hover:focus { … }) (#19996)
• Allow using @variant with compound variants (e.g. @variant hover, focus { … }) (#19996)
• Support --default(…) in --value(…) and --modifier(…) for functional @utility definitions (#19989)

Fixed

• Ensure @plugin resolves package JavaScript entries instead of browser CSS entries when using @tailwindcss/vite (#19949)
• Fix relative @import and @plugin paths resolving from the wrong directory when using @tailwindcss/vite (#19965)
• Ensure CSS files containing @variant are processed by @tailwindcss/vite (#19966)
• Resolve imports relative to base when result.opts.from is not provided when using @tailwindcss/postcss (#19980)
• Canonicalization: preserve significant _ whitespace in arbitrary values (#19986)
• Canonicalization: add parentheses when removing whitespace from arbitrary values would hurt readability (e.g. w-[calc(100%---spacing(60))] → w-[calc(100%-(--spacing(60)))]) (#19986)
• Canonicalization: preserve the original unit in arbitrary values instead of normalizing to base units (e.g. -mt-[20in] → mt-[-20in], not mt-[-1920px]) (#19988)
• Canonicalization: migrate arbitrary :has() variants from [&:has(…)] to has-[…] (#19991)
• Upgrade: don’t migrate inline style attributes (e.g. style="flex-grow: 1" → style="flex-grow: 1", not style="grow: 1") (#19918)
• Allow multiple @utility definitions with the same name but different value types (#19777)
• Export missing PluginWithConfig type from tailwindcss/plugin to fix errors when inferring plugin config types (#19707)
• Ensure start and end legacy utilities without values do not generate CSS (#20003)
• Ensure --value(…) is required in functional @utility definitions (#20005)
• Canonicalization: preserve required whitespace around operators in negated arbitrary values (e.g. -left-[(var(--a)+var(--b))]) (#20011)

Changelog

Sourced from @​tailwindcss/vite's changelog.

[4.3.0] - 2026-05-08

Added

• Add @container-size utility (#18901)
• Add scrollbar-{auto,thin,none} utilities for scrollbar-width, and scrollbar-thumb-* / scrollbar-track-* color utilities for scrollbar-color (#19981, #20019)
• Add scrollbar-gutter-* utilities (#20018)
• Add zoom-* utilities (#20020)
• Add tab-* utilities (#20022)
• Allow using @variant with stacked variants (e.g. @variant hover:focus { … }) (#19996)
• Allow using @variant with compound variants (e.g. @variant hover, focus { … }) (#19996)
• Support --default(…) in --value(…) and --modifier(…) for functional @utility definitions (#19989)

Fixed

• Ensure @plugin resolves package JavaScript entries instead of browser CSS entries when using @tailwindcss/vite (#19949)
• Fix relative @import and @plugin paths resolving from the wrong directory when using @tailwindcss/vite (#19965)
• Ensure CSS files containing @variant are processed by @tailwindcss/vite (#19966)
• Resolve imports relative to base when result.opts.from is not provided when using @tailwindcss/postcss (#19980)
• Canonicalization: preserve significant _ whitespace in arbitrary values (#19986)
• Canonicalization: add parentheses when removing whitespace from arbitrary values would hurt readability (e.g. w-[calc(100%---spacing(60))] → w-[calc(100%-(--spacing(60)))]) (#19986)
• Canonicalization: preserve the original unit in arbitrary values instead of normalizing to base units (e.g. -mt-[20in] → mt-[-20in], not mt-[-1920px]) (#19988)
• Canonicalization: migrate arbitrary :has() variants from [&:has(…)] to has-[…] (#19991)
• Upgrade: don’t migrate inline style attributes (e.g. style="flex-grow: 1" → style="flex-grow: 1", not style="grow: 1") (#19918)
• Allow multiple @utility definitions with the same name but different value types (#19777)
• Export missing PluginWithConfig type from tailwindcss/plugin to fix errors when inferring plugin config types (#19707)
• Ensure start and end legacy utilities without values do not generate CSS (#20003)
• Ensure --value(…) is required in functional @utility definitions (#20005)
• Canonicalization: preserve required whitespace around operators in negated arbitrary values (e.g. -left-[(var(--a)+var(--b))]) (#20011)

Commits

• 588bd73 4.3.0 (#20023)
• d194d4c docs: fix various typos in comments and documentation (#19878)
• db27049 fix(@​tailwindcss/vite): include @​variant in feature detection (#19966)
• 5a79990 Always resolve relative files, relative to the current .css file (#19965)
• f3fdda2 fix(vite): avoid resolving JS plugins to browser CSS entries (#19949)
• See full diff in compare view

[github-actions]

🛡️ Grype vulnerability scan

1 findings: 🟡 1 Medium

All 1 findings (sorted by severity)

Severity	CVSS	ID	Location	Description
🟡 Medium	5.3	CVE-2026-39882-OpenTelemetry	api/	A medium vulnerability in UnknownPackage package: OpenTelemetry, version 1.15.3 was found in image hwinther/clutterstock/api:0.25.1-PullRequ

Open Code Scanning alerts for branch dependabot/npm_and_yarn/frontend/main/tailwindcss/vite-4.3.0 (SARIF category grype-container-api; alerts can take a moment to appear after upload.)

[github-actions]

Node build status (frontend)

✅ Dependency installation succeeded

added 1692 packages, and audited 1693 packages in 48s

✅ Typecheck succeeded

✅ Build succeeded

✅ No lint issues 🎊

🧪 Test results

Total	Passed	Failed	Skipped	Todo
64	64	0	0	0

Status: All tests passed
Duration: 5.21s

📊 Code coverage report

Package	Line Rate	Branch Rate	Health
api	87%	86%	✔
components	67%	50%	➖
features.items	78%	80%	➖
features.locations	80%	62%	✔
lib	51%	45%	❌
welcome	100%	100%	✔
Summary	66% (212 / 320)	65% (155 / 239)	➖

✅ No changes in files after install and build were found

[github-actions]

🛡️ Grype vulnerability scan

✅ No vulnerabilities reported.

Open Code Scanning alerts for branch dependabot/npm_and_yarn/frontend/main/tailwindcss/vite-4.3.0 (SARIF category grype-container-migrator; alerts can take a moment to appear after upload.)

[github-actions]

🛡️ Grype vulnerability scan

✅ No vulnerabilities reported.

Open Code Scanning alerts for branch dependabot/npm_and_yarn/frontend/main/tailwindcss/vite-4.3.0 (SARIF category grype-container-frontend; alerts can take a moment to appear after upload.)

[github-actions]

🎭 Playwright E2E — ❌ 1 test(s) failed

Result	Count
✅ Passed	0
❌ Failed	1
⚠️ Flaky	0
⏭️ Skipped	11
Total	12

Duration: 0m 4s

Failed and flaky tests

• auth.setup.ts — authenticate [setup] (unexpected)

Full report and traces: download the playwright-report artifact.