PR 155: build(deps-dev): bump electron from 31.2.0 to 35.1.3

[dependabot]

Bumps electron from 31.2.0 to 35.1.3.

Release notes

Sourced from electron's releases.

electron v35.1.3

Release Notes for v35.1.3

Fixes

• Fixed a crash that could occur when dragging and dropping files into the browser. #46311 (Also in 36)
• Fixed an issue where context-menu event weren't emitted as expected on Windows in draggable regions. #46334 (Also in 34, 36)
• Fixed an issue where calling UtilityProcess.fork prior to the app ready event would cause a crash. #46403 (Also in 34, 36)
• Fixed flickering and ghosting artifacts in transparent windows on macOS. #46392 (Also in 36)
• Fixed memory leak in AutofillPopupView. #46413 (Also in 34, 36)
• Fixed the issue where rounded corners disappear momentarily when closing on Windows 11. #46408 (Also in 36)
• When a menu item on macOS is disabled (enabled = false), it is now greyed out. #46341 (Also in 34, 36)

Other Changes

• Updated Chromium to 134.0.6998.179. #46313

electron v35.1.2

Release Notes for v35.1.2

Fixes

• Fixed an issue where navigationHistory.restore() failed to restore the userAgent if it was overridden. #46300 (Also in 34, 36)

Other Changes

• Security: backported fix for CVE-2025-2783. #46303
• Updated Chromium to 134.0.6998.178. #46287

electron v35.1.1

Release Notes for v35.1.1

Fixes

• Fixed build failure when building with printing disabled. #46285 (Also in 34, 36)

electron v35.1.0

Release Notes for v35.1.0

Features

• Added ffmpeg.dll to delay load configuration. #46172 (Also in 34, 36)

Fixes

• Fixed NODE_OPTIONS parsing for child processes on macOS. #46244 (Also in 34, 36)
• Fixed a crash seen on Linux when calling webContents.print(). #46147 (Also in 36)
• Fixed an issue where system-context-menu incorrectly fired for all regions in frameless windows. #46178 (Also in 33, 34, 36)
• Fixed an issue where webContents.printToPDF() didn't work as expected with cross-process subframes. #46257 (Also in 34, 36)
• Fixed an issue where the resizing border didn't work as expected on Wayland windows. #46224 (Also in 33, 34, 36)
• Fixed an issue with token formatting for tokens received after calling pushNotifications.registerForAPNSNotifications(). #46148 (Also in 34, 36)
• Fixed crash on Linux when PipeWire screenshare source selection is cancelled. #46234 (Also in 36)
• Fixed crash with out-of-bounds string read when parsing NODE_OPTIONS. #46248 (Also in 34, 36)

... (truncated)

Changelog

Sourced from electron's changelog.

Breaking Changes

Breaking changes will be documented here, and deprecation warnings added to JS code where possible, at least one major version before the change is made.

Types of Breaking Changes

This document uses the following convention to categorize breaking changes:

• API Changed: An API was changed in such a way that code that has not been updated is guaranteed to throw an exception.
• Behavior Changed: The behavior of Electron has changed, but not in such a way that an exception will necessarily be thrown.
• Default Changed: Code depending on the old default may break, not necessarily throwing an exception. The old behavior can be restored by explicitly specifying the value.
• Deprecated: An API was marked as deprecated. The API will continue to function, but will emit a deprecation warning, and will be removed in a future release.
• Removed: An API or feature was removed, and is no longer supported by Electron.

Planned Breaking API Changes (37.0)

Removed: null value for session property in ProtocolResponse

This deprecated feature has been removed.

Previously, setting the ProtocolResponse.session property to null would create a random independent session. This is no longer supported.

Using single-purpose sessions here is discouraged due to overhead costs; however, old code that needs to preserve this behavior can emulate it by creating a random session with session.fromPartition(some_random_string) and then using it in ProtocolResponse.session.

Behavior Changed: BrowserWindow.IsVisibleOnAllWorkspaces() on Linux

BrowserWindow.IsVisibleOnAllWorkspaces() will now return false on Linux if the window is not currently visible.

Behavior Changes: app.commandLine

app.commandLine will convert upper-cases switches and arguments to lowercase.

app.commandLine was only meant to handle chromium switches (which aren't case-sensitive) and switches passed via app.commandLine will not be passed down to any of the child processes.

If you were using app.commandLine to control the behavior of the main process, you should do this via process.argv.

Planned Breaking API Changes (36.0)

Utility Process unhandled rejection behavior change

Utility Processes will now warn with an error message when an unhandled rejection occurs instead of crashing the process.

To restore the previous behavior, you can use:

... (truncated)

Commits

• 71150ff perf: have ErrorThrower lazily lookup the current isolate (#46417)
• 8bca8d2 build: make it clearer when cookie auth runs (#46423)
• f3d7a90 perf: cache the return value of IsX11() (#46425)
• cf559d7 fix: leaked gfx::Canvas in AutofillPopupView::OnPaint() (#46413)
• d025ab4 perf: avoid redundant map lookup in UsbChooserContext::OnDeviceRemoved() (#46...
• a644c70 fix: rounded corners disappear momentarily on window close (#46408)
• 13488d3 fix: UtilityProcess.fork crash before app ready (#46403)
• d0658cc perf: avoid unnecessary vector copy in GetMimeTypeToExtensionIdMap() (#46395)
• c953230 fix: flicker and ghosting in transparent windows on macOS (#46392)
• ff0156e refactor: use v8::String::Empty() when creating empty strings (#46372)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[BinaryServ]

Automatic Self-Check - #155

The details of our automated scan for your pull request are listed below. If our scan detected errors, they must be corrected before this pull request will be advanced to the review stage:

---

About

This pull request includes the following information:

Category	Value
Title	build(deps-dev): bump electron from 31.2.0 to 35.1.3
Created	04.02.2025 11:44 PM UTC
ID	#155
Author	dependabot[bot]
Repo	obsidian-gistr
Branch	dependabot/npm_and_yarn/electron-35.1.3 ⇁ main
Added Files	0
Modified Files	2
Renamed Files	0
Copied Files	0
Deleted Files	0

---

❌ Skipped Files

Tip

The following file(s) have been skipped:

• package-lock.json
• package.json

---

^{This check was done automatically. Do NOT open a new PR for re-validation. Instead, to trigger this check again, make a change to your PR and wait a few minutes, or close and re-open it.}

[dependabot]

Superseded by #157.