fix(vite): enable fs strict mode

[pi0]

🔗 Linked issue

❓ Type of change

• 📖 Documentation (updates to the documentation or readme)
• 🐞 Bug fix (a non-breaking change that fixes an issue)
• 👌 Enhancement (improving an existing functionality like performance)
• ✨ New feature (a non-breaking change that adds functionality)
• ⚠️ Breaking change (fix or feature that would cause existing functionality to change)

📚 Description

Enable vite fs restriction by default. This ensures avoiding access to fs using /_nuxt/@fs/ url.

Read more: https://vitejs.dev/config/server-options.html#server-fs-strict).

This PR might introduce issues with modules trying to access outside of rootDir, srcDir, buildDir, workspaceDir or either of modulesDir (modules are automatically added). In this case, can be manually added using nuxt.options.vite.server.fs.allow[]

export default defineNuxtConfig({
  vite: {
    server: {
      fs: {
        allow: [
          '/xyz'
        ]
      }
    }
  }
})

Credits to @OhB00 for discovering this.

📝 Checklist

• I have linked an issue or discussion.
• I have updated the documentation accordingly.

[codesandbox]

  Open in CodeSandbox Web Editor | VS Code | VS Code Insiders

[netlify]

✅ Deploy Preview for nuxt3-docs canceled.

Name	Link
🔨 Latest commit	bf0013e
🔍 Latest deploy log	https://app.netlify.com/sites/nuxt3-docs/deploys/6364382b6c5da00009cff70c

[manniL]

This only has impact in dev mode, right?

[OhB00]

This only has impact in dev mode, right?

Correct, you can read the full report on huntr when it is published.