Release notes
*Sourced from [electron's releases](https://github.com/electron/electron/releases).*
> ## electron v4.0.4
> # Release Notes for v4.0.4
>
> ## Features
>
> * Added getProcessMemoryInfo API. [#16591](https://github-redirect.dependabot.com/electron/electron/issues/16591)
>
> ## Fixes
>
> * **[security]** Fixed vulnerability that allowed Node to be re-enabled in child Windows. [blog post.](https://electronjs.org/blog/window-open-fix)
> * Change the `NODE_MODULE_VERSION` to 69. [#16687](https://github-redirect.dependabot.com/electron/electron/issues/16687)
> * Restored support for AES-CFB cipher, which was lost when switching from OpenSSL to BoringSSL. [#16617](https://github-redirect.dependabot.com/electron/electron/issues/16617)
> * Restored support for RIPEMD160 digest, which was lost when switching from OpenSSL to BoringSSL. [#16574](https://github-redirect.dependabot.com/electron/electron/issues/16574)
>
> ## Documentation
>
> * Documentation changes: [#16548](https://github-redirect.dependabot.com/electron/electron/issues/16548), [#16674](https://github-redirect.dependabot.com/electron/electron/issues/16674)
>
>
> ## electron v4.0.3
> # Release Notes for v4.0.3
>
> ## Fixes
>
> * Fixed a memory leak in desktopCapturer.getSources('screen') on macOS. [#16555](https://github-redirect.dependabot.com/electron/electron/issues/16555)
> * Fixed an issue where data streamed from registerStreamProtocol could be truncated before completion. [#16540](https://github-redirect.dependabot.com/electron/electron/issues/16540)
> * Fixed extra closing parenthesis. [#16528](https://github-redirect.dependabot.com/electron/electron/issues/16528)
> * Fixed memory leak caused by webFrame.setSpellCheckProvider. [#16524](https://github-redirect.dependabot.com/electron/electron/issues/16524)
>
> ## Other Changes
>
> * Fixed speechSynthesis / text-to-speech. [#16437](https://github-redirect.dependabot.com/electron/electron/issues/16437)
>
> ## Documentation
>
> * Documentation changes: [#16487](https://github-redirect.dependabot.com/electron/electron/issues/16487)
Commits
- [`0710d69`](https://github.com/electron/electron/commit/0710d69acd635d13079ce51b4ff046d341735871) Bump v4.0.4
- [`8a25cfc`](https://github.com/electron/electron/commit/8a25cfcadcb8168a516665500cebc96ce3c01600) Revert "fix: show proper clerk notes in release notes script (backport: 4-0-x...
- [`6865206`](https://github.com/electron/electron/commit/6865206ea74ff1d9e3b047aaea31cb4321a1599d) Revert "Bump v4.0.4"
- [`abb1a09`](https://github.com/electron/electron/commit/abb1a09f16bd3fa98593f478469c6f71112ba8cb) fix: use a new Electron dedicated ABI number for Electron 4.0 ([#16687](https://github-redirect.dependabot.com/electron/electron/issues/16687))
- [`a184e37`](https://github.com/electron/electron/commit/a184e37f25348534ab8d867f7cc7730c9b4b1066) docs: fix referrer typedef in OnCompletedDetails ([#16674](https://github-redirect.dependabot.com/electron/electron/issues/16674))
- [`3f68d69`](https://github.com/electron/electron/commit/3f68d69c40c5480819ee4b97141ee22251c85c69) fix: show proper clerk notes in release notes script (backport: 4-0-x) ([#16678](https://github-redirect.dependabot.com/electron/electron/issues/16678))
- [`0dd8fd5`](https://github.com/electron/electron/commit/0dd8fd57def75a3570c2722a3a414d2bb3e93dd4) Undo ([#16690](https://github-redirect.dependabot.com/electron/electron/issues/16690))
- [`27ff318`](https://github.com/electron/electron/commit/27ff31899be6d8884f03578c2cef8bf1263f090f) Bump v4.0.4
- [`e61c854`](https://github.com/electron/electron/commit/e61c8543f1262d155b402edc7988c3cf9cbcdb8d) fix asset fail workaround ([#16680](https://github-redirect.dependabot.com/electron/electron/issues/16680))
- [`f774303`](https://github.com/electron/electron/commit/f774303923b753e54492ebcab26740ada104469d) Revert "Bump v4.0.4"
- Additional commits viewable in [compare view](https://github.com/electron/electron/compare/v4.0.2...v4.0.4)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
- `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme
Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com):
- Update frequency (including time of day and day of week)
- Automerge options (never/patch/minor, and dev/runtime dependencies)
- Pull request limits (per update run and/or open at any time)
- Out-of-range updates (receive only lockfile updates, if desired)
- Security updates (receive only security updates, if desired)
Finally, you can contact us by mentioning @dependabot.
Bumps electron from 4.0.2 to 4.0.4.
Release notes
*Sourced from [electron's releases](https://github.com/electron/electron/releases).* > ## electron v4.0.4 > # Release Notes for v4.0.4 > > ## Features > > * Added getProcessMemoryInfo API. [#16591](https://github-redirect.dependabot.com/electron/electron/issues/16591) > > ## Fixes > > * **[security]** Fixed vulnerability that allowed Node to be re-enabled in child Windows. [blog post.](https://electronjs.org/blog/window-open-fix) > * Change the `NODE_MODULE_VERSION` to 69. [#16687](https://github-redirect.dependabot.com/electron/electron/issues/16687) > * Restored support for AES-CFB cipher, which was lost when switching from OpenSSL to BoringSSL. [#16617](https://github-redirect.dependabot.com/electron/electron/issues/16617) > * Restored support for RIPEMD160 digest, which was lost when switching from OpenSSL to BoringSSL. [#16574](https://github-redirect.dependabot.com/electron/electron/issues/16574) > > ## Documentation > > * Documentation changes: [#16548](https://github-redirect.dependabot.com/electron/electron/issues/16548), [#16674](https://github-redirect.dependabot.com/electron/electron/issues/16674) > > > ## electron v4.0.3 > # Release Notes for v4.0.3 > > ## Fixes > > * Fixed a memory leak in desktopCapturer.getSources('screen') on macOS. [#16555](https://github-redirect.dependabot.com/electron/electron/issues/16555) > * Fixed an issue where data streamed from registerStreamProtocol could be truncated before completion. [#16540](https://github-redirect.dependabot.com/electron/electron/issues/16540) > * Fixed extra closing parenthesis. [#16528](https://github-redirect.dependabot.com/electron/electron/issues/16528) > * Fixed memory leak caused by webFrame.setSpellCheckProvider. [#16524](https://github-redirect.dependabot.com/electron/electron/issues/16524) > > ## Other Changes > > * Fixed speechSynthesis / text-to-speech. [#16437](https://github-redirect.dependabot.com/electron/electron/issues/16437) > > ## Documentation > > * Documentation changes: [#16487](https://github-redirect.dependabot.com/electron/electron/issues/16487)Commits
- [`0710d69`](https://github.com/electron/electron/commit/0710d69acd635d13079ce51b4ff046d341735871) Bump v4.0.4 - [`8a25cfc`](https://github.com/electron/electron/commit/8a25cfcadcb8168a516665500cebc96ce3c01600) Revert "fix: show proper clerk notes in release notes script (backport: 4-0-x... - [`6865206`](https://github.com/electron/electron/commit/6865206ea74ff1d9e3b047aaea31cb4321a1599d) Revert "Bump v4.0.4" - [`abb1a09`](https://github.com/electron/electron/commit/abb1a09f16bd3fa98593f478469c6f71112ba8cb) fix: use a new Electron dedicated ABI number for Electron 4.0 ([#16687](https://github-redirect.dependabot.com/electron/electron/issues/16687)) - [`a184e37`](https://github.com/electron/electron/commit/a184e37f25348534ab8d867f7cc7730c9b4b1066) docs: fix referrer typedef in OnCompletedDetails ([#16674](https://github-redirect.dependabot.com/electron/electron/issues/16674)) - [`3f68d69`](https://github.com/electron/electron/commit/3f68d69c40c5480819ee4b97141ee22251c85c69) fix: show proper clerk notes in release notes script (backport: 4-0-x) ([#16678](https://github-redirect.dependabot.com/electron/electron/issues/16678)) - [`0dd8fd5`](https://github.com/electron/electron/commit/0dd8fd57def75a3570c2722a3a414d2bb3e93dd4) Undo ([#16690](https://github-redirect.dependabot.com/electron/electron/issues/16690)) - [`27ff318`](https://github.com/electron/electron/commit/27ff31899be6d8884f03578c2cef8bf1263f090f) Bump v4.0.4 - [`e61c854`](https://github.com/electron/electron/commit/e61c8543f1262d155b402edc7988c3cf9cbcdb8d) fix asset fail workaround ([#16680](https://github-redirect.dependabot.com/electron/electron/issues/16680)) - [`f774303`](https://github.com/electron/electron/commit/f774303923b753e54492ebcab26740ada104469d) Revert "Bump v4.0.4" - Additional commits viewable in [compare view](https://github.com/electron/electron/compare/v4.0.2...v4.0.4)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Automerge options (never/patch/minor, and dev/runtime dependencies) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) Finally, you can contact us by mentioning @dependabot.