chore(deps-dev): bump electron from 28.3.3 to 39.0.0

[dependabot]

Bumps electron from 28.3.3 to 39.0.0.

Release notes

Sourced from electron's releases.

electron v39.0.0

Release Notes for v39.0.0

Fixes

• Fixed a potential crash in dialog.showOpenDialog on Windows with an empty extension filter array. #48658 (Also in 37, 38)
• Fixed an error when checking environmental variables when using remote checksums when installing Electron via npm. #48673 (Also in 37, 38)

Other Changes

• Updated Chromium to 142.0.7444.52. #48641

electron v39.0.0-beta.5

Note: This is a beta release. Please file new issues for any bugs you find in it.

This release is published to npm under the beta tag and can be installed via npm install electron@beta, or npm install [email protected].

Release Notes for v39.0.0-beta.5

Features

• Added methods to enable more granular accessibility support management. #48625
• Added the ability to retrieve the system accent color on Linux using systemPreferences.getAccentColor. #48628

electron v39.0.0-beta.4

Note: This is a beta release. Please file new issues for any bugs you find in it.

This release is published to npm under the beta tag and can be installed via npm install electron@beta, or npm install [email protected].

Release Notes for v39.0.0-beta.4

Features

• Added RGBAF16 output format with scRGB HDR color space support to Offscreen Rendering. #48504
• Support dynamic ESM imports in non-context isolated preloads. #48488 (Also in 37, 38)

Fixes

• Fixed an issue where systemPreferences.getAccentColor inverted the color. #48624
• Fixed an issue where trafficLightPosition would not be correctly applied when using titleBarStyle: 'customButtonsOnHover' on macOS 26. #48621 (Also in 38)
• Fixed an issue where button background on mouse hover with titleBarOverlay wasn't always calculated to provide appropriate minimum contrast. #48597 (Also in 37)
• Fixed an issue where calling webContents.openDevTools({ mode: 'detach' }) would cause a crash on Wayland. #48623
• Fixed an issue where icons didn't show up as expected on Windows Toast notifications. #48629 (Also in 38)
• Fixed shader-f16 to work on Windows. #48557 (Also in 37, 38)
• Fixed white flash on call to BrowserWindow.show. #48559 (Also in 37, 38)
• Titlebar buttons now appear on the correct side of windows on Wayland in Ubuntu. #48603 (Also in 38)

Other Changes

• Updated Chromium to 142.0.7444.34. #48571

electron v39.0.0-beta.3

Note: This is a beta release. Please file new issues for any bugs you find in it.

... (truncated)

Changelog

Sourced from electron's changelog.

Breaking Changes

Breaking changes will be documented here, and deprecation warnings added to JS code where possible, at least one major version before the change is made.

Types of Breaking Changes

This document uses the following convention to categorize breaking changes:

• API Changed: An API was changed in such a way that code that has not been updated is guaranteed to throw an exception.
• Behavior Changed: The behavior of Electron has changed, but not in such a way that an exception will necessarily be thrown.
• Default Changed: Code depending on the old default may break, not necessarily throwing an exception. The old behavior can be restored by explicitly specifying the value.
• Deprecated: An API was marked as deprecated. The API will continue to function, but will emit a deprecation warning, and will be removed in a future release.
• Removed: An API or feature was removed, and is no longer supported by Electron.

Planned Breaking API Changes (39.0)

Deprecated: --host-rules command line switch

Chromium is deprecating the --host-rules switch.

You should use --host-resolver-rules instead.

Behavior Changed: window.open popups are always resizable

Per current WHATWG spec, the window.open API will now always create a resizable popup window.

To restore previous behavior:

webContents.setWindowOpenHandler((details) => {
  return {
    action: 'allow',
    overrideBrowserWindowOptions: {
      resizable: details.features.includes('resizable=yes')
    }
  }
})

Behavior Changed: shared texture OSR paint event data structure

When using shared texture offscreen rendering feature, the paint event now emits a more structured object. It moves the sharedTextureHandle, planes, modifier into a unified handle property. See here for more details.

Planned Breaking API Changes (38.0)

Removed: ELECTRON_OZONE_PLATFORM_HINT environment variable

The default value of the --ozone-platform flag changed to auto.

... (truncated)

Commits

• 0abda74 docs: modify the thickFrame doc (#48677)
• 4e8a552 fix: logical bug in install.js env var handling (#48673)
• d83383b docs: fix Ubuntu version used to build Electron (#48643)
• 496db94 chore: bump chromium to 142.0.7444.52 (39-x-y) (#48641)
• 00627c6 fix: crash on empty dialog extensions array on Windows (#48658)
• 7319e5c docs: security.md mark 'Enable process sandboxing' as active by defau… (#48647)
• 1056280 feat: enable more granular a11y feature management (#48625)
• 4fda94b feat: Add getAccentColor on Linux (#48628)
• e3715b0 fix: systemPreferences.getAccentColor inverted color (#48624)
• 90674e0 fix: icon in Windows toast notification (#48629)
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	electron@​28.3.3 ⏵ 39.0.0	+1	+8	+1

View full report