arnaud-ritti / clickup-timer

A tool for tracking time on ClickUp tasks
0 stars 0 forks source link

build(deps-dev): bump electron from 25.1.1 to 25.8.1 #21

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps electron from 25.1.1 to 25.8.1.

Release notes

Sourced from electron's releases.

electron v25.8.1

Release Notes for v25.8.1

Fixes

  • Fixed an error where listening to certain chrome.tabs events would throw incorrectly. #39770 (Also in 26, 27)
  • Fixed an issue where BrowserWindows could crash on macOS with frame: false and roundedCorners: false when going fullscreen. #39794 (Also in 26, 27)
  • Fixed devtools to allow restoring saved dock state on Windows. #39766 (Also in 26, 27)
  • Fixed issue where titlebar would be transparent for transparent windows that are fullscreen. #39779 (Also in 26, 27)
  • Fixed problem with promise resolved to early when browser initiated in-page navigation. #39678 (Also in 26, 27)

Other Changes

  • Security: backported fix for CVE-2023-4763.
    • Security: backported fix for CVE-2023-4762.
    • Security: backported fix for CVE-2023-4761. #39756
  • Security: backported fix for CVE-2023-4863. #39825

electron v25.8.0

Release Notes for v25.8.0

Features

  • Added the ability to send HTTP headers with webContents.downloadURL(). #39561 (Also in 26, 27)

Fixes

  • Fixed an issue where child windows opened when the parent window is already fullscreen did not respect the child windows' fullscreenability and resizability settings. #39642 (Also in 24, 26, 27)
  • Fixed an issue where the Node.js assert module did not work in the renderer process. #39622 (Also in 24, 26, 27)
  • Support Region Capture API with tab MediaStream. #39617 (Also in 26, 27)

Other Changes

  • Security: backported fix for CVE-2023-4427.
    • Security: backported fix for CVE-2023-4428.
    • Security: backported fix for CVE-2023-4429.
    • Security: backported fix for CVE-2023-4430. #39646
  • Security: backported fix for CVE-2023-4572. #39687

electron v25.7.0

Release Notes for v25.7.0

Features

  • Added support for --dns-result-order Node.js cli flag. #39500 (Also in 26)

Fixes

  • Fixed an issue where certain properties of chrome.tabs Tab objects were not properly considered privileged. #39609 (Also in 26, 27)
  • Fixed decorations for tiled windows on Wayland. #39569 (Also in 22, 24, 26, 27)
  • Fixed to regenerate thumbnail toolbar buttons when explorer is restarted. #39586 (Also in 24, 26)

Other Changes

  • Security: backported fix for CVE-2023-4071.

... (truncated)

Commits
  • dc3ce65 chore: cherry-pick b2eab7500a18 from chromium (#39825)
  • 9faee48 fix: ensure app load is limited to real asar files when appropriate (#39809)
  • 69b8ebc chore: cherry-pick 3 changes from Release-3-M116 (#39756)
  • 2e8177c fix: fullscreen crashing with no roundedCorners and no frame (#39794)
  • 7a3d7b5 fix: devtools allow restoring saved dock state on Windows (#39766)
  • 84b863d fix: make titlebar opaque while fullscreen (#39779)
  • 149f314 fix: prevent errors when extensions listen for chrome.tabs events (#39770)
  • 0c450f8 test: fix flaky content tracing test (#39769)
  • 3a99edb build: fix depot_tools patch application (#39748)
  • 4d371b0 fix: promise resolved to early when browser initiated in-page navigation v2 (...
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/arnaud-ritti/clickup-timer/network/alerts).
dependabot[bot] commented 1 year ago

Superseded by #22.