chore(deps): bump the app-production-dependencies group across 1 directory with 6 updates

[dependabot]

Bumps the app-production-dependencies group with 6 updates in the / directory:

Package	From	To
@types/discord-rpc	4.0.9	4.0.10
@reduxjs/toolkit	2.0.1	2.10.1
@tauri-apps/api	2.0.0-alpha.11	2.9.0
@tauri-apps/plugin-autostart	2.0.0-alpha.2	2.5.1
@tauri-apps/plugin-global-shortcut	2.0.0-alpha.2	2.3.1
@tauri-apps/plugin-shell	2.2.1	2.3.3

Updates @types/discord-rpc from 4.0.9 to 4.0.10

Commits

• See full diff in compare view

Updates @reduxjs/toolkit from 2.0.1 to 2.10.1

Release notes

Sourced from @​reduxjs/toolkit's releases.

v2.10.1

This bugfix release fixes an issue with window access breaking in SSR due to the byte-shaving work in 2.10.

What's Changed

• Fix window SSR breakage by @​markerikson in reduxjs/redux-toolkit#5132

Full Changelog: reduxjs/redux-toolkit@v2.10.0...v2.10.1

v2.10.0

This feature release updates our Immer dep to 10.2 to pick up its performance improvements, has additional byte-shaving and internal performance updates, and fixes a combineSlices type issue.

Changelog

Immer Performance Improvements

Redux Toolkit has been built around Immer since the very first prototype in 2018. Use of Immer as the default in createSlice directly eliminated accidental mutations as a class of errors in Redux apps, and drastically simplified writing immutable updates in reducers.

We've had various issues filed over the years asking to make Immer optional, or raising concerns about Immer's perf. Immer is indeed slower than writing immutable updates by hand, but our stance has always been that Immer's DX is absolutely worth whatever modest perf cost it might incur, and that reducers are usually not the bottleneck in Redux apps anyway - it's usually the cost of updating the UI that's more expensive.

However, a year ago an issue was filed with some specific complaints about Immer perf being very slow. We investigated, ran benchmarks, and filed an Immer issue confirming that it had gotten noticeably slower over time. Immer author Michel Weststrate agreed, and said there were some potential tweaks and architectural changes that could be made, but didn't have time to look into them himself.

A couple months ago, we started investigating possible Immer perf improvements ourselves, including profiling various scenarios and comparing implementations of other similar immutable update libraries. After extensive research and development, we were able to file several PRs to improve Immer's perf: a set of smaller tweaks around iteration and caching, a couple much larger architectural changes, and a potential change to copying objects.

Immer 10.2.0 contains the first set of smaller perf improvements, and this RTK release updates our dependency to 10.2 to pick up those changes.

One important behavior note here: Earlier versions of Immer (8, 9, 10.1) added more handling for edge cases like symbol keys in objects. These changes made sense for correctness, but also contributed to the slowdown. Immer 10.2 now includes a new setUseStrictIteration option to allow only copying string keys in objects (using Object.keys() instead of Reflect.ownKeys()), but keeps the option as strict: true for compatibility with its own users. That default will likely change in Immer 11.

For RTK 2.10.0, we specifically import and call setUseStrictIteration(false), under the assumption that standard Redux state usage only involves string keys in plain JS objects! This should provide a ~10% speedup for Immer update operations. Given that expectation, we believe this is a reasonable feature change and only needs a minor version bump.

If by some chance you are using symbol keys in your Redux state, or in other Immer-powered updates in your Redux app, you can easily revert to the previous behavior by calling setUseStrictIteration(true) in your own app code.

Based on discussions with Michel, Immer v11 should come out in the near future with additional architectural changes for better perf, including optional support for faster array methods that would be available as an Immer plugin adding ~2KB bundle size. We will likely not turn that plugin on by default, but recommend that users enable it if they do frequent array ops in reducers.

We're happy to have contributed these perf improvements to Immer, and that they will benefit not just RTK users but all Immer users everywhere!

You can follow the additional discussion and progress updates in the main Immer perf update tracking issue.

Additional RTK Perf Improvements

We've tweaked some places where we were doing repeated filter().map().map() calls to micro-optimize those loops.

RTKQ tag invalidation was always reading from proxy-wrapped arrays when rewriting provided tags. It now reads from the plain arrays instead, providing a modest speedup.

We previously found that ESBuild wasn't deduplicating imports from the same libraries in separate files bundled together (ie import { useEffect as useEffect2/3/4/ } from 'react'). We've restructured our internals to ensure all external imports are only pulled in once.

We've done some extensive byte-shaving in various places in the codebase. The byte-shaving and import deduplication saves about 0.6K min from the RTKQ core, and 0.2K min from the RTKQ React bundle.

Other Changes

... (truncated)

Commits

• 166bcc3 Release 2.10.1
• 5650933 Fix window SSR breakage (#5132)
• 0d2ffa3 Release 2.10.0
• e102997 fix(combineSlices): Infer PreloadedState properly from provided slice (#5125)
• 9aae695 Byte-shave various chunks of code (#5129)
• 952e7ed Deduplicate imports (#5128)
• df24e25 Update Immer dep to 10.2 and disable strict iteration for perf (#5127)
• 9392c4c Improve perf for internal map/filter ops (#5126)
• 78781fd Release @​rtk-query/graphql-request-base-query 2.3.2
• 32887d7 Release 2.9.2
• Additional commits viewable in compare view

Updates @tauri-apps/api from 2.0.0-alpha.11 to 2.9.0

Release notes

Sourced from @​tauri-apps/api's releases.

@​tauri-apps/api v2.9.0

No known vulnerabilities found

[2.9.0]

New Features

• f5851ee00 (#14089) Adds the scrollBarStyle option to the Webview and WebviewBuilder constructors.
• 3397fd9bf (#14133) Added app > onBackButtonPress for Android back button handling.

Enhancements

• 59089723f (#14091) Added a config to set a data_directory relative to the app-specific data dir in JavaScript and tauri.conf.json.

Bug Fixes

• 08bda64c2 (#14132) Fix core > addPluginListener failing on command permission check.

> @tauri-apps/[email protected] npm-publish /home/runner/work/tauri/tauri/packages/api
> pnpm build && cd ./dist && pnpm publish --access public --loglevel silly --no-git-checks
> @​tauri-apps/api@​2.9.0 build /home/runner/work/tauri/tauri/packages/api
> rollup -c --configPlugin typescript
�[36m
�[1m./src/app.ts, ./src/core.ts, ./src/dpi.ts, ./src/event.ts, ./src/image.ts, ./src/index.ts, ./src/menu.ts, ./src/mocks.ts, ./src/path.ts, ./src/tray.ts, ./src/webview.ts, ./src/webviewWindow.ts, ./src/window.ts�[22m → �[1m./dist, ./dist�[22m...�[39m
�[32mcreated �[1m./dist, ./dist�[22m in �[1m1.5s�[22m�[39m
�[36m
�[1msrc/index.ts�[22m → �[1m../../crates/tauri/scripts/bundle.global.js�[22m...�[39m
�[32mcreated �[1m../../crates/tauri/scripts/bundle.global.js�[22m in �[1m1.9s�[22m�[39m
npm verbose cli /opt/hostedtoolcache/node/20.19.5/x64/bin/node /opt/hostedtoolcache/node/20.19.5/x64/bin/npm
npm info using [email protected]
npm info using [email protected]
npm silly config load:file:/opt/hostedtoolcache/node/20.19.5/x64/lib/node_modules/npm/npmrc
npm silly config load:file:/tmp/770b5e21bc9a9b51797683f237994887/.npmrc
npm silly config load:file:/home/runner/work/_temp/.npmrc
npm silly config load:file:/opt/hostedtoolcache/node/20.19.5/x64/etc/npmrc
npm verbose title npm publish tauri-apps-api-2.9.0.tgz
</tr></table>

... (truncated)

Commits

• cb28f43 apply version updates (#14137)
• 6aa7f2d chore(deps): minor bump plugin, codegen and macros crates
• 06f26bb chore(deps): update tao to 0.34.5
• 68cb318 feat(core): add stop, restart, destroy and configuration changed Android hook...
• 3397fd9 feat(core): back button event on Android, closes #8142 (#14133)
• 3b4fac2 feat(android): add auto_increment_version_code option for Android builds (#1...
• 684791e fix(macos): Always try to create webview, even if webkit runtime isn't detect...
• 25e920e fix(cli): wait for dev command to exit with --no-watch, closes #14284 (#14298)
• a279485 chore(cli): update cargo-mobile2 to 0.21.1
• 7b0d4e7 fix(core): SHA256 hash for JS scripts CSP on Windows (#14265)
• Additional commits viewable in compare view

Updates @tauri-apps/plugin-autostart from 2.0.0-alpha.2 to 2.5.1

Release notes

Sourced from @​tauri-apps/plugin-autostart's releases.

opener-js v2.5.1

[2.5.1]

• 6c9b61fb (#3039 by @​FabianLars) On Android, updated compileSdk to 36.
• 67a7bf80 (#3018 by @​Legend-Master) Fix opener doesn't open same origin links in the browser

npm warn publish npm auto-corrected some errors in your package.json when publishing.  Please run "npm pkg fix" to address these errors.
npm warn publish errors corrected:
npm warn publish "repository" was changed from a string to an object
npm warn publish "repository.url" was normalized to "git+https://github.com/tauri-apps/plugins-workspace.git"
npm notice
npm notice 📦  @tauri-apps/[email protected]
npm notice Tarball Contents
npm notice 888B LICENSE.spdx
npm notice 4.2kB README.md
npm notice 3.1kB dist-js/index.cjs
npm notice 2.0kB dist-js/index.d.ts
npm notice 3.1kB dist-js/index.js
npm notice 11B dist-js/init.d.ts
npm notice 729B package.json
npm notice Tarball Details
npm notice name: @tauri-apps/plugin-opener
npm notice version: 2.5.1
npm notice filename: tauri-apps-plugin-opener-2.5.1.tgz
npm notice package size: 3.5 kB
npm notice unpacked size: 14.1 kB
npm notice shasum: aedf32d399e9d0f6dcaacca4e2461550ab8d3b79
npm notice integrity: sha512-nyT6oW4ibyXJN[...]7/Q46ZKuzeeBQ==
npm notice total files: 7
npm notice
npm notice Publishing to https://registry.npmjs.org/ with tag latest and public access
npm notice publish Signed provenance statement with source and build information from GitHub Actions
npm notice publish Provenance statement published to transparency log: https://search.sigstore.dev/?logIndex=642040262
+ @tauri-apps/[email protected]

opener v2.5.1

[2.5.1]

• 6c9b61fb (#3039 by @​FabianLars) On Android, updated compileSdk to 36.
• 67a7bf80 (#3018 by @​Legend-Master) Fix opener doesn't open same origin links in the browser

... (truncated)

Commits

• 5779099 publish new versions (#2780)
• 2aec8ff feat(opener): add inAppBrowser option for iOS and Android (#2803)
• 9799f0d fix(log): iOS simulator freezing due to early logging (#2802)
• 8cdaacd chore(examples): update API example mobile projects
• d46778e chore(deps): update dependency typescript-eslint to v8.35.0 (#2794)
• a028864 chore(deps): update dependency prettier to v3.6.0 (v2) (#2789)
• f6e1128 feat(cli): Pass optional args to get matches (#2787)
• 5642283 chore(deps): update dependency rollup to v4.44.0 (#2782)
• 37c2fb4 feat(cli): add support for global CLI arguments (#2772)
• 27c2193 chore(deps): update dependency @​rollup/plugin-typescript to v12.1.3 (#2778)
• Additional commits viewable in compare view

Updates @tauri-apps/plugin-global-shortcut from 2.0.0-alpha.2 to 2.3.1

Release notes

Sourced from @​tauri-apps/plugin-global-shortcut's releases.

notification-js v2.3.1

[2.3.1]

• 8abb31ee (#2905 by @​ChristianPavilonis) Fix notification scheduling on iOS.
• 2d03e2ea (#2678 by @​Keerthi421) Added sound support for desktop notifications which was previously only available on mobile platforms.

npm warn publish npm auto-corrected some errors in your package.json when publishing.  Please run "npm pkg fix" to address these errors.
npm warn publish errors corrected:
npm warn publish "repository" was changed from a string to an object
npm warn publish "repository.url" was normalized to "git+https://github.com/tauri-apps/plugins-workspace.git"
npm notice
npm notice 📦  @tauri-apps/[email protected]
npm notice Tarball Contents
npm notice 888B LICENSE.spdx
npm notice 4.2kB README.md
npm notice 9.1kB dist-js/index.cjs
npm notice 12.5kB dist-js/index.d.ts
npm notice 8.6kB dist-js/index.js
npm notice 11B dist-js/init.d.ts
npm notice 662B package.json
npm notice Tarball Details
npm notice name: @tauri-apps/plugin-notification
npm notice version: 2.3.1
npm notice filename: tauri-apps-plugin-notification-2.3.1.tgz
npm notice package size: 6.7 kB
npm notice unpacked size: 36.0 kB
npm notice shasum: c01bead36ff2ce24344077aab860e027ac6f6190
npm notice integrity: sha512-7gqgfANSREKhh[...]PLqIPTySggGgg==
npm notice total files: 7
npm notice
npm notice Publishing to https://registry.npmjs.org/ with tag latest and public access
npm notice publish Signed provenance statement with source and build information from GitHub Actions
npm notice publish Provenance statement published to transparency log: https://search.sigstore.dev/?logIndex=417180273
+ @tauri-apps/[email protected]

notification v2.3.1

[2.3.1]

• 8abb31ee (#2905 by @​ChristianPavilonis) Fix notification scheduling on iOS.
• 2d03e2ea (#2678 by @​Keerthi421) Added sound support for desktop notifications which was previously only available on mobile platforms.

... (truncated)

Commits

• 2371804 publish new versions (#2888)
• 90f9b93 chore: fix cli version in deep-link package.json
• 1c58f33 chore(deps): update dependency rollup to v4.46.4 (v2) (#2935)
• 75617a6 fix(mobile): deeplinks (#2870)
• 5a963a0 chore(deps): update dependency @​tauri-apps/cli to v2.8.1 (#2930)
• 76f4e7b chore(deps): update eslint monorepo to v9.33.0 (#2903)
• 670ac1d chore(deps): update dependency typescript-eslint to v8.40.0 (#2923)
• ed0deef chore(deps): update dependency @​tauri-apps/api to v2.8.0 (#2929)
• 50cebdb chore(deps): update to tauri 2.8.0 (#2925)
• dd2ea9c chore(deps): update dependency rollup to v4.46.3 (#2920)
• Additional commits viewable in compare view

Updates @tauri-apps/plugin-shell from 2.2.1 to 2.3.3

Release notes

Sourced from @​tauri-apps/plugin-shell's releases.

single-instance v2.3.3

[2.3.3]

Dependencies

• Upgraded to [email protected]

Updating crates.io index
   Packaging tauri-plugin-single-instance v2.3.3 (/home/runner/work/plugins-workspace/plugins-workspace/plugins/single-instance)
    Updating crates.io index
    Packaged 16 files, 208.9KiB (90.5KiB compressed)
   Uploading tauri-plugin-single-instance v2.3.3 (/home/runner/work/plugins-workspace/plugins-workspace/plugins/single-instance)
    Uploaded tauri-plugin-single-instance v2.3.3 to registry `crates-io`
note: waiting for tauri-plugin-single-instance v2.3.3 to be available at registry `crates-io`.
You may press ctrl-c to skip waiting; the crate should be available shortly.
   Published tauri-plugin-single-instance v2.3.3 at registry `crates-io`

persisted-scope v2.3.3

[2.3.3]

Dependencies

• Upgraded to [email protected]

Updating crates.io index
   Packaging tauri-plugin-persisted-scope v2.3.3 (/home/runner/work/plugins-workspace/plugins-workspace/plugins/persisted-scope)
    Updating crates.io index
    Packaged 12 files, 185.1KiB (83.8KiB compressed)
   Uploading tauri-plugin-persisted-scope v2.3.3 (/home/runner/work/plugins-workspace/plugins-workspace/plugins/persisted-scope)
    Uploaded tauri-plugin-persisted-scope v2.3.3 to registry `crates-io`
note: waiting for tauri-plugin-persisted-scope v2.3.3 to be available at registry `crates-io`.
You may press ctrl-c to skip waiting; the crate should be available shortly.
   Published tauri-plugin-persisted-scope v2.3.3 at registry `crates-io`

nfc-js v2.3.3

[2.3.3]

... (truncated)

Commits

• e7a68fa publish new versions (#3068)
• b5550a3 chore: temp delete updater changefile
• 93426f8 fix: fix docsrs builds
• 4ee61e0 Revert "chore: temp delete updater changefile"
• 06124af publish new versions (#2972)
• 060219e chore(deps): update dependency @​rollup/plugin-typescript to v12.3.0 (#3067)
• c7e9766 chore(deps): update tauri monorepo (v2) (#3058)
• d4a8ce9 chore(deps): update rust crate tokio-tungstenite to 0.28 (#3016)
• cdc7eec chore(deps): update dependency @​rollup/plugin-typescript to v12.2.0 (#3066)
• 6314b00 chore: temp delete updater changefile
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions