Bump electron from 1.8.8 to 4.1.4

[dependabot-preview]

Bumps electron from 1.8.8 to 4.1.4.

Release notes

Sourced from electron's releases.

electron v4.1.4

Release Notes for v4.1.4

Fixes

• Backported fix for crashes in RenderFrameImpl::OnSelectPopupMenuItem(s). #17659
• Backported fix for https://bugs.chromium.org/p/chromium/issues/detail?id=888678. #17632
• Fixed process.getProcessMemoryInfo not being exposed to sandbox renderers. #17669
• Fixed re-entracy problem with InvalidateFrameSinkId(). #17658
• Fixed the --explicitly-allowed-ports switch. #17642

Documentation

• Documentation changes: #17662

electron v4.1.3

Release Notes for v4.1.3

Fixes

• Fixed IntersectionObserver.rootBounds for navigator zoom != 100%. #17583
• Fixed app freeze when using custom stream protocol. #17267

electron v4.1.2

Release Notes for v4.1.2

Fixes

• Added missing buffer size check in nativeImage.createFromBuffer / nativeImage.addRepresentation. Data URLs only parsed according to the MIME type as PNG or JPEG. #17567
• Added support for testing the new Japanese Era with a placeholder era name. Set an environment variable named ICU_ENABLE_TENTATIVE_ERA to true to enable the placeholder era. #17518
• Fixed an issue whereby foreground visibility of a window was not correctly taken into account for win.isVisible() on macOS. #17492
• Fixed an issue with netLog module properties not being returned correctly. #17544
• Fixed issue on KDE where tray icons would be displayed incorrectly as a 22x22 version of the provided tray image but cropped from the center. #17497
• Fixed issue where preload scripts would sometimes run twice in the same process in different contexts resulting in broken native node module loading. #17596
• Generated .framework files on macOS now have the correct permissions. This fixes an issue where a crash occurred if a user attempted to launch an Electron app that another user downloaded on macOS. #17582

Documentation

• Documentation changes: #17494

electron v4.1.1

Release Notes for v4.1.1

Fixes

• Added a check for invalid menu index to prevent out-of-range crashes on insertion. #17461
• Fixed an issue where Notification objects constructed in the main process would randomly not be shown to the user. #17483
• Fixed crash when nativeImage.createFromBuffer() is called with invalid buffer. #17373

electron v4.1.0

... (truncated)

Commits

• 042f24c Bump v4.1.4
• c362411 fix: Issue 907211: Heap-use-after-free in viz::HostFrameSinkManager::Invalida...
• 492397b fix: Issue 912211: Security: a use-after-free in RenderFrameImple can lead to...
• 3a0b72e fix: expose process.getProcessMemoryInfo to sandbox (#17669)
• 914939c build: optionally exclude some parts of patches from being applied (#17684)
• b887491 docs: clarify cookie domain normalization (#17662)
• dc95941 fix: Make --explicitly-allowed-ports work with NetworkService. (#17642)
• bcdc443 fix: Issue 888678: Heap-use-after-free in content::KeyboardLockServiceImpl::G...
• 303da32 Bump v4.1.3
• 8fd91cc fix: make StreamSubscriber ref counted (#17267)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

[dependabot-preview]

Superseded by #49.