Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

deps(dev): bump electron from 28.2.3 to 29.0.0 #1340

Merged
merged 1 commit into from
Feb 21, 2024
Merged

deps(dev): bump electron from 28.2.3 to 29.0.0 #1340

merged 1 commit into from
Feb 21, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 21, 2024
edited
Loading

Bumps electron from 28.2.3 to 29.0.0.

Release notes

Sourced from electron's releases.

electron v29.0.0

Release Notes for v29.0.0

Stack Upgrades

Breaking Changes

  • Functions called over the contextBridge are now called with the expected receiver (this). #39978 (Also in 27, 28)
  • The gpu-process-crashed event on app has been deprecated. #40169 (Also in 28)
  • The deprecated gpu-process-crashed event on app has been removed. #40255
  • The deprecated renderer-process-crashed event on app and crashed event on WebContents and <webview> have been removed. #40115

Features

Additions

  • Added WebContentsView and BaseWindow, replacing the now-deprecated BrowserView APIs. #40759
  • Added keyboardLock to ses.setPermissionRequestHandler(handler). #40369 (Also in 26, 27, 28)
  • Added an option in protocol.registerSchemesAsPrivileged to allow V8 code cache in custom schemes. #40544 (Also in 27, 28)
  • Added net module to utility process. #40890 (Also in 27, 28)
  • Added new Electron Fuse that opts the file:// protocol into more secure and restrictive behaviour that matches Chromium. #40372
  • Added new webUtils.getPathForFile method to replace File.path augmentation. #38776
  • Added support for configuring use_remote_checksums via .npmrc. #40253
  • Migrated app.{set|get}LoginItemSettings(settings) to use Apple's new recommended underlying framework on macOS. #37244
  • This PR adds several properties to the display object including detected, maximumCursorSize, and nativeOrigin. #40497 (Also in 28)

Removed/Deprecated

  • Removed extraneous dlls from Windows zip files. #41129 (Also in 28)

Fixes

  • Added support for ThumbnailCapturerMac and ScreenCaptureKitStreamPickerSonoma chromium feature flags to bypass deprecated API warning on macOS 14.4. #41329
  • Fixed Electron 29.0.0-beta.3 regression that could pop up context menus in the wrong location. #41296
  • Fixed an issue where import.meta.url did not work in the renderer process with contextIsolation enabled. #41265
  • Fixed an issue where original-fs methods were not properly corrected for patched imports. #41238
  • Fixed an issue where draggable regions didn't work across platforms. #41112
  • Fixed an issue where some dependencies using CommonJS would cause ESM apps to fail to open. #41371
  • Fixed crash in MessagePort::close. #41237
  • Fixed the GrantFileProtocolExtraPrivileges not correctly preventing fetch() calls to file:// URLs. #40864
  • Fixed various bugs which could prevent forwarding requests intercepted with protocol.handle(). #41359

Also in earlier versions...

  • Apply module search paths restriction on worker and child process. #41138 (Also in 27, 28)
  • Backported fix for AVX related crashes on certain linux machines. #40536 (Also in 26, 27, 28)
  • CSS style -webkit-app-region: drag; has no effect in full screen mode. #41332 (Also in 27, 28)
  • Fixed "will-navigate" not being emitted when pressing links in chrome: pages. #40390 (Also in 27, 28)
  • Fixed session.fromPartition() key lookup bug. #41084 (Also in 28)
  • Fixed a crash resultant from trying to listen to power-related events before the ready event was emitted on Linux. #40925 (Also in 26, 27, 28)
  • Fixed a crash that started occurring sporadically with some types of macOS window close. #41299 (Also in 28)

... (truncated)

Commits
  • 69d371f fix: revert to legacyMainResolve in JavaScript for asar compatibility (#41371)
  • b6db80c fix: properly stream uploadData in protocol.handle() (#41359)
  • b87cf56 ci: fix helperPath calls in ci configs (#41365)
  • bc40a1a chore: bump chromium to 122.0.6261.39 (29-x-y) (#41349)
  • d8606ef fix: Ignore -webkit-app-region: drag; when window is in full screen mode. (...
  • 523e0d4 refactor: inline simple getters, pt . 2 (#41254) (#41341)
  • 3b23911 chore: bump chromium to 122.0.6261.29 (29-x-y) (#41279)
  • 516cbfa fix: skip the first two invalid updates when SCK is enabled (#41344)
  • 5c71377 fix: add capability to use ScreenCaptureKit for thumbnail generation (#41329)
  • 85db555 build: allow custom refs for patch import & export (#41316)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Feb 21, 2024
@dependabot dependabot bot requested review from bajtos and juliangruber February 21, 2024 02:29
@github-actions github-actions bot enabled auto-merge (squash) February 21, 2024 02:29
@socket-security Socket Security
Copy link

socket-security bot commented Feb 21, 2024
edited
Loading

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package New capabilities Transitives Size Publisher
npm/electron@29.0.0 Transitive: environment, filesystem, network, shell +31 5.93 MB electron-nightly, electronhq

🚮 Removed packages: npm/electron@28.2.3

View full report↗︎

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/electron-29.0.0 branch 2 times, most recently from 7e77b83 to 904049e Compare February 21, 2024 09:58
@dependabot
deps(dev): bump electron from 28.2.3 to 29.0.0
39f8b75 
Bumps [electron](https://github.com/electron/electron) from 28.2.3 to 29.0.0.
- [Release notes](https://github.com/electron/electron/releases)
- [Changelog](https://github.com/electron/electron/blob/main/docs/breaking-changes.md)
- [Commits](electron/electron@v28.2.3...v29.0.0)

---
updated-dependencies:
- dependency-name: electron
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/electron-29.0.0 branch from 904049e to 39f8b75 Compare February 21, 2024 10:31
@github-actions github-actions bot merged commit 6f9597d into main Feb 21, 2024
32 checks passed
@github-actions github-actions bot deleted the dependabot/npm_and_yarn/electron-29.0.0 branch February 21, 2024 11:07
@bajtos
Copy link
Member

bajtos commented Feb 21, 2024

Woohoo! I think this is the first time that the upgrade to the next Electron major version was so smooth, isn't it?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@juliangruber juliangruber juliangruber approved these changes

@bajtos bajtos Awaiting requested review from bajtos

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@bajtos @juliangruber