Bump electron and tape-run

[dependabot]

Bumps electron to 26.3.0 and updates ancestor dependency tape-run. These dependencies need to be updated together.

Updates electron from 7.3.2 to 26.3.0

Release notes

Sourced from electron's releases.

electron v26.3.0

Release Notes for v26.3.0

Features

• Added support for chrome.scripting extension APIs. #39676 (Also in 25, 27)

Fixes

• Fixed BrowserView.setBounds calls not painting view in new bounds in some cases. #40036 (Also in 25, 27)
• Fixed an issue where webContents.print could fail when options is a frozen object. #40029 (Also in 25, 27)
• Fixed an issue where vibrant windows incorrectly have square corners when they're modals on macOS. #39998 (Also in 25, 27)

Other Changes

• Updated Chromium to 116.0.5845.228. #40043

electron v26.2.4

Release Notes for v26.2.4

Features

• Detect system dark theme preference via xdg settings portal on Linux. #40011 (Also in 25, 27)

Other Changes

• Fixed build failure when PDF viewer is disabled. #39999 (Also in 25, 27)
• Security: backported fix for CVE-2023-5217. #40023

electron v26.2.3

Release Notes for v26.2.3

Fixes

• Fixed app.runningUnderARM64Translation() always returning true on ARM64. #39932 (Also in 25, 27)

Other Changes

• Fixed crash on shutdown in tls sockets with Node.js HTTP/2 connections. #39946 (Also in 25, 27)
• The app.runningUnderRosettaTranslation property has been deprecated. #39983 (Also in 25, 27)

Documentation

• Documentation changes: #39967

electron v26.2.2

Release Notes for v26.2.2

Fixes

• Fixed an issue where BrowserViews that had their bounds set prior to being added to a BrowserWindow could have unexpected incorrect offsets. #39850 (Also in 25, 27)

Other Changes

• Security: backported fix for 1477588. #39918
• Updated Chromium to 116.0.5845.190. #39887

... (truncated)

Changelog

Sourced from electron's changelog.

Breaking Changes

Breaking changes will be documented here, and deprecation warnings added to JS code where possible, at least one major version before the change is made.

Types of Breaking Changes

This document uses the following convention to categorize breaking changes:

• API Changed: An API was changed in such a way that code that has not been updated is guaranteed to throw an exception.
• Behavior Changed: The behavior of Electron has changed, but not in such a way that an exception will necessarily be thrown.
• Default Changed: Code depending on the old default may break, not necessarily throwing an exception. The old behavior can be restored by explicitly specifying the value.
• Deprecated: An API was marked as deprecated. The API will continue to function, but will emit a deprecation warning, and will be removed in a future release.
• Removed: An API or feature was removed, and is no longer supported by Electron.

Planned Breaking API Changes (28.0)

Behavior Changed: WebContents.backgroundThrottling set to false affects all WebContents in the host BrowserWindow

WebContents.backgroundThrottling set to false will disable frames throttling in the BrowserWindow for all WebContents displayed by it.

Removed: BrowserWindow.setTrafficLightPosition(position)

BrowserWindow.setTrafficLightPosition(position) has been removed, the BrowserWindow.setWindowButtonPosition(position) API should be used instead which accepts null instead of { x: 0, y: 0 } to reset the position to system default.

// Removed in Electron 28
win.setTrafficLightPosition({ x: 10, y: 10 })
win.setTrafficLightPosition({ x: 0, y: 0 })
// Replace with
win.setWindowButtonPosition({ x: 10, y: 10 })
win.setWindowButtonPosition(null)

Removed: BrowserWindow.getTrafficLightPosition()

BrowserWindow.getTrafficLightPosition() has been removed, the BrowserWindow.getWindowButtonPosition() API should be used instead which returns null instead of { x: 0, y: 0 } when there is no custom position.

// Removed in Electron 28
const pos = win.getTrafficLightPosition()
if (pos.x === 0 && pos.y === 0) {
  // No custom position.
</tr></table> 

... (truncated)

Commits

• d5020a4 chore: bump chromium to 116.0.5845.228 (26-x-y) (#40043)
• a55c4c6 fix: BroadcastChannel initialization location (#40066)
• 7f53717 fix: propagate layout call to all children of `InspectableWebContentsViewView...
• 1091ba2 fix: rounded corners on vibrant macOS modals (#39998)
• 59271e6 fix: failure on immutable webContents.print(options) (#40029)
• d7da2b9 feat: support chrome.scripting extension APIs (#39676)
• f24346a chore: cherry-pick 3fbd1dca6a4d from libvpx (#40023)
• 13bdefa feat: enable dark mode on GTK UIs (#40011)
• 74f50e8 docs: document type-specific module aliases (#40004)
• 9c2984f build: fix with enable_pdf_viewer = false (#39999)
• Additional commits viewable in compare view

Updates tape-run from 8.0.0 to 11.0.0

Release notes

Sourced from tape-run's releases.

v11.0.0

• pkg: add engines.node 26d520a
• fix ci (#88) 2730fcb
• upgrade through 01f5097
• docs: security 41c594a

tape-testing/tape-run@v10.0.0...v11.0.0

v10.0.0

• docs e5579fb
• replace deprecated optimist with yargs (#85) fb87809

tape-testing/tape-run@v9.0.0...v10.0.0

v9.0.0

• Bump browser-run to support sandbox option. Closes #82 57adc5f
• Include more detailed Headless Testing section (#81) ccad1ea

tape-testing/tape-run@v8.0.0...v9.0.0

Commits

• dfc05e7 11.0.0
• 26d520a pkg: add engines.node
• 2730fcb fix ci (#88)
• 01f5097 upgrade through
• 41c594a docs: security
• 8d0e790 10.0.0
• e5579fb docs
• fb87809 replace deprecated optimist with yargs (#85)
• ee4654e 9.0.0
• 57adc5f Bump browser-run to support sandbox option. Closes #82
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.