Bump electron from 4.0.7 to 4.1.4

[dependabot-preview[bot]]

Bumps electron from 4.0.7 to 4.1.4.

Release notes

*Sourced from [electron's releases](https://github.com/electron/electron/releases).* > ## electron v4.1.4 > # Release Notes for v4.1.4 > > ## Fixes > > * Backported fix for crashes in RenderFrameImpl::OnSelectPopupMenuItem(s). [#17659](https://github-redirect.dependabot.com/electron/electron/issues/17659) > * Backported fix for https://bugs.chromium.org/p/chromium/issues/detail?id=888678. [#17632](https://github-redirect.dependabot.com/electron/electron/issues/17632) > * Fixed `process.getProcessMemoryInfo` not being exposed to sandbox renderers. [#17669](https://github-redirect.dependabot.com/electron/electron/issues/17669) > * Fixed re-entracy problem with InvalidateFrameSinkId(). [#17658](https://github-redirect.dependabot.com/electron/electron/issues/17658) > * Fixed the --explicitly-allowed-ports switch. [#17642](https://github-redirect.dependabot.com/electron/electron/issues/17642) > > ## Documentation > > * Documentation changes: [#17662](https://github-redirect.dependabot.com/electron/electron/issues/17662) > > ## electron v4.1.3 > # Release Notes for v4.1.3 > > ## Fixes > > * Fixed IntersectionObserver.rootBounds for navigator zoom != 100%. [#17583](https://github-redirect.dependabot.com/electron/electron/issues/17583) > * Fixed app freeze when using custom stream protocol. [#17267](https://github-redirect.dependabot.com/electron/electron/issues/17267) > > ## electron v4.1.2 > # Release Notes for v4.1.2 > > ## Fixes > > * Added missing buffer size check in `nativeImage.createFromBuffer` / `nativeImage.addRepresentation`. Data URLs only parsed according to the MIME type as PNG or JPEG. [#17567](https://github-redirect.dependabot.com/electron/electron/issues/17567) > * Added support for testing the new Japanese Era with a placeholder era name. Set an environment variable named `ICU_ENABLE_TENTATIVE_ERA` to true to enable the placeholder era. [#17518](https://github-redirect.dependabot.com/electron/electron/issues/17518) > * Fixed an issue whereby foreground visibility of a window was not correctly taken into account for `win.isVisible()` on macOS. [#17492](https://github-redirect.dependabot.com/electron/electron/issues/17492) > * Fixed an issue with netLog module properties not being returned correctly. [#17544](https://github-redirect.dependabot.com/electron/electron/issues/17544) > * Fixed issue on KDE where tray icons would be displayed incorrectly as a 22x22 version of the provided tray image but cropped from the center. [#17497](https://github-redirect.dependabot.com/electron/electron/issues/17497) > * Fixed issue where preload scripts would sometimes run twice in the same process in different contexts resulting in broken native node module loading. [#17596](https://github-redirect.dependabot.com/electron/electron/issues/17596) > * Generated `.framework` files on macOS now have the correct permissions. This fixes an issue where a crash occurred if a user attempted to launch an Electron app that another user downloaded on macOS. [#17582](https://github-redirect.dependabot.com/electron/electron/issues/17582) > > ## Documentation > > * Documentation changes: [#17494](https://github-redirect.dependabot.com/electron/electron/issues/17494) > > ## electron v4.1.1 > # Release Notes for v4.1.1 > > ## Fixes > > * Added a check for invalid menu index to prevent out-of-range crashes on insertion. [#17461](https://github-redirect.dependabot.com/electron/electron/issues/17461) > * Fixed an issue where `Notification` objects constructed in the main process would randomly not be shown to the user. [#17483](https://github-redirect.dependabot.com/electron/electron/issues/17483) > * Fixed crash when `nativeImage.createFromBuffer()` is called with invalid `buffer`. [#17373](https://github-redirect.dependabot.com/electron/electron/issues/17373) > > ## electron v4.1.0 > ... (truncated)

Commits

- [`042f24c`](https://github.com/electron/electron/commit/042f24c5b619f209c040ef34c2b5ca1366c41fdd) Bump v4.1.4 - [`c362411`](https://github.com/electron/electron/commit/c3624116ae780850bd41703cc046c6a41f4546db) fix: Issue 907211: Heap-use-after-free in viz::HostFrameSinkManager::Invalida... - [`492397b`](https://github.com/electron/electron/commit/492397b8159d993a207a91096c3b1f30d83e393a) fix: Issue 912211: Security: a use-after-free in RenderFrameImple can lead to... - [`3a0b72e`](https://github.com/electron/electron/commit/3a0b72e5dca9760567358cf37236c6408f24d4a5) fix: expose process.getProcessMemoryInfo to sandbox ([#17669](https://github-redirect.dependabot.com/electron/electron/issues/17669)) - [`914939c`](https://github.com/electron/electron/commit/914939c7931b46f44afd52be3577376ccd808b46) build: optionally exclude some parts of patches from being applied ([#17684](https://github-redirect.dependabot.com/electron/electron/issues/17684)) - [`b887491`](https://github.com/electron/electron/commit/b8874913f2432f990484483855a55cadebebe715) docs: clarify cookie domain normalization ([#17662](https://github-redirect.dependabot.com/electron/electron/issues/17662)) - [`dc95941`](https://github.com/electron/electron/commit/dc959414a39fd8356451c041b1bf1febc731e7ce) fix: Make --explicitly-allowed-ports work with NetworkService. ([#17642](https://github-redirect.dependabot.com/electron/electron/issues/17642)) - [`bcdc443`](https://github.com/electron/electron/commit/bcdc4435b425a3733387686725c454d212f75853) fix: Issue 888678: Heap-use-after-free in content::KeyboardLockServiceImpl::G... - [`303da32`](https://github.com/electron/electron/commit/303da32dd37b4a36e1906a30b48fe456b454746f) Bump v4.1.3 - [`8fd91cc`](https://github.com/electron/electron/commit/8fd91cc35b2340d7ff695680576319b4de0a837c) fix: make StreamSubscriber ref counted ([#17267](https://github-redirect.dependabot.com/electron/electron/issues/17267)) - Additional commits viewable in [compare view](https://github.com/electron/electron/compare/v4.0.7...v4.1.4)

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Automerge options (never/patch/minor, and dev/runtime dependencies) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) Finally, you can contact us by mentioning @dependabot.