Skip to content

chore(deps-dev): bump electron from 28.2.3 to 35.7.5 in /packages/connect-examples/electron-example #563

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: onekey
Choose a base branch
from
Open

chore(deps-dev): bump electron from 28.2.3 to 35.7.5 in /packages/connect-examples/electron-example #563

wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 4, 2025
edited
Loading

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

Bumps electron from 28.2.3 to 35.7.5.

Release notes

Sourced from electron's releases.

electron v35.7.5

Release Notes for v35.7.5

[!WARNING] Electron 35.x.y has reached end-of-support as per the project's support policy. Developers and applications are encouraged to upgrade to a newer version of Electron.

Fixes

  • Fixed an issue where shell.openPath was not non-blocking as expected. #48079 (Also in 36, 37, 38)

electron v35.7.4

Release Notes for v35.7.4

  • Fix ffmpeg generation on Windows non-x64

electron v35.7.2

Release Notes for v35.7.2

Fixes

  • Fixed an issue where printing PDFs with webContents.print({ silent: true }) would fail. #47645 (Also in 36, 37)

electron v35.7.0

Release Notes for v35.7.0

Other Changes

  • Updated Node.js to v22.16.0. #47213

electron v35.6.0

Release Notes for v35.6.0

Features

  • Added support for --no-experimental-global-navigator flag. #47416 (Also in 36, 37)
  • Added support for customizing system accent color and highlighting of active window border. #47539 (Also in 36, 37)

Fixes

  • Fixed a potential crash using session.clearData in some circumstances. #47410 (Also in 36, 37)
  • Fixed an error when importing electron for the first time from an ESM module loaded by a CJS module in a packaged app. #47344 (Also in 36, 37)
  • Fixed an issue where calling Fetch.continueResponse via debugger with WebContentsView could cause a crash. #47443 (Also in 36, 37)
  • Fixed an issue where utility processes could leak file handles. #47542 (Also in 36, 37)
  • Partially fixes an issue with printing a PDF via webContents.print() where the callback would not be called. #47399 (Also in 36, 37)

Other Changes

  • Backported fix for 420637585. #47369

electron v35.5.1

Release Notes for v35.5.1

... (truncated)

Changelog

Sourced from electron's changelog.

Breaking Changes

Breaking changes will be documented here, and deprecation warnings added to JS code where possible, at least one major version before the change is made.

Types of Breaking Changes

This document uses the following convention to categorize breaking changes:

  • API Changed: An API was changed in such a way that code that has not been updated is guaranteed to throw an exception.
  • Behavior Changed: The behavior of Electron has changed, but not in such a way that an exception will necessarily be thrown.
  • Default Changed: Code depending on the old default may break, not necessarily throwing an exception. The old behavior can be restored by explicitly specifying the value.
  • Deprecated: An API was marked as deprecated. The API will continue to function, but will emit a deprecation warning, and will be removed in a future release.
  • Removed: An API or feature was removed, and is no longer supported by Electron.

Planned Breaking API Changes (39.0)

Deprecated: --host-rules command line switch

Chromium is deprecating the --host-rules switch.

You should use --host-resolver-rules instead.

Behavior Changed: window.open popups are always resizable

Per current WHATWG spec, the window.open API will now always create a resizable popup window.

To restore previous behavior:

webContents.setWindowOpenHandler((details) => {
  return {
    action: 'allow',
    overrideBrowserWindowOptions: {
      resizable: details.features.includes('resizable=yes')
    }
  }
})

Behavior Changed: shared texture OSR paint event data structure

When using shared texture offscreen rendering feature, the paint event now emits a more structured object. It moves the sharedTextureHandle, planes, modifier into a unified handle property. See here for more details.

Planned Breaking API Changes (38.0)

Removed: ELECTRON_OZONE_PLATFORM_HINT environment variable

The default value of the --ozone-plaftform flag changed to auto.

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Sep 4, 2025
@coderabbitai
Copy link
Contributor

coderabbitai bot commented Sep 4, 2025
edited
Loading

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Comment @coderabbitai help to get the list of available commands and usage tips.

@revan-zhang
Copy link
Contributor

revan-zhang commented Sep 4, 2025
edited
Loading

🎉 Snyk checks have passed. No issues have been found so far.

security/snyk check is complete. No issues have been found. (View Details)

license/snyk check is complete. No issues have been found. (View Details)

@socket-security
Copy link

socket-security bot commented Sep 4, 2025
edited
Loading

All alerts resolved. Learn more about Socket for GitHub.

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

View full report

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/packages/connect-examples/electron-example/electron-35.7.5 branch 4 times, most recently from e0a9cc7 to 6d2a574 Compare September 12, 2025 08:21
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/packages/connect-examples/electron-example/electron-35.7.5 branch from 6d2a574 to 834e960 Compare September 12, 2025 09:11
@dependabot
chore(deps-dev): bump electron
96a4807 
Bumps [electron](https://github.com/electron/electron) from 28.2.3 to 35.7.5.
- [Release notes](https://github.com/electron/electron/releases)
- [Changelog](https://github.com/electron/electron/blob/main/docs/breaking-changes.md)
- [Commits](electron/electron@v28.2.3...v35.7.5)

---
updated-dependencies:
- dependency-name: electron
  dependency-version: 35.7.5
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/packages/connect-examples/electron-example/electron-35.7.5 branch from 834e960 to 96a4807 Compare September 17, 2025 07:33
@socket-security
Copy link

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Added@​nicolo-ribaudo/​eslint-scope-5-internals@​5.1.1-v11001004977100
Addedasynciterator.prototype@​1.0.0671007452100
Addedarray-buffer-byte-length@​1.0.0671007552100
Addedarray.prototype.tosorted@​1.1.2671009152100
Addedaggregate-error@​3.1.0671008652100
Addedavailable-typed-arrays@​1.0.5671008152100
Addedarraybuffer.prototype.slice@​1.0.2661008852100
Addedarray.prototype.flat@​1.3.2671009252100
Addedarray.prototype.findlastindex@​1.2.3671009352100
Added@​lerna/​output@​4.0.01001005780100
Added@​lerna/​timer@​4.0.01001005780100
Added@​lerna/​validation-error@​4.0.01001005880100
Added@​types/​parse-json@​4.0.01001005878100
Added@​jest/​globals@​28.1.31001005996100
Added@​lerna/​get-npm-exec-opts@​4.0.01001005980100
Added@​lerna/​prerelease-id-from-version@​4.0.01001006080100
Added@​npmcli/​node-gyp@​1.0.31001006184100
Added@​lerna/​npm-run-script@​4.0.01001006180100
Added@​babel/​plugin-transform-react-jsx-development@​7.22.51001006291100
Added@​types/​graceful-fs@​4.1.51001006278100
Added@​lerna/​write-log-file@​4.0.01001006280100
Added@​lerna/​has-npm-version@​4.0.01001006380100
Added@​babel/​plugin-syntax-async-generators@​7.8.41001006382100
Added@​babel/​plugin-syntax-bigint@​7.8.31001006382100
Added@​babel/​plugin-syntax-import-meta@​7.10.41001006382100
Added@​babel/​plugin-syntax-json-strings@​7.8.31001006382100
Added@​babel/​plugin-syntax-logical-assignment-operators@​7.10.41001006382100
Added@​babel/​plugin-syntax-nullish-coalescing-operator@​7.8.31001006382100
Added@​babel/​plugin-syntax-numeric-separator@​7.10.41001006382100
Added@​babel/​plugin-syntax-object-rest-spread@​7.8.31001006382100
Added@​babel/​plugin-syntax-optional-catch-binding@​7.8.31001006382100
Added@​babel/​plugin-syntax-optional-chaining@​7.8.31001006382100
Added@​babel/​plugin-syntax-class-properties@​7.12.131001006382100
See 300 more rows in the dashboard

View full report

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@revan-zhang