Skip to content

[Snyk] Upgrade @tauri-apps/plugin-dialog from 2.4.2 to 2.6.0#3

Open
danielbodnar wants to merge 1 commit intomainfrom
snyk-upgrade-7cb2dc1bd66dad715e0b5cd1230b7127
Open

[Snyk] Upgrade @tauri-apps/plugin-dialog from 2.4.2 to 2.6.0#3
danielbodnar wants to merge 1 commit intomainfrom
snyk-upgrade-7cb2dc1bd66dad715e0b5cd1230b7127

Conversation

@danielbodnar
Copy link
Copy Markdown
Owner

@danielbodnar danielbodnar commented Feb 9, 2026

snyk-top-banner

Snyk has created this PR to upgrade @tauri-apps/plugin-dialog from 2.4.2 to 2.6.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 2 versions ahead of your current version.

  • The recommended version was released a month ago.

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

@snyk-bot
fix: upgrade @tauri-apps/plugin-dialog from 2.4.2 to 2.6.0
01a0d82 
Snyk has created this PR to upgrade @tauri-apps/plugin-dialog from 2.4.2 to 2.6.0.

See this package in pnpm:
@tauri-apps/plugin-dialog

See this project in Snyk:
https://app.snyk.io/org/danielbodnar/project/fb1fae36-5dba-4f23-a29b-04b364e68a4f?utm_source=github&utm_medium=referral&page=upgrade-pr
Copilot AI review requested due to automatic review settings February 9, 2026 09:34
Copilot AI reviewed Feb 9, 2026
View reviewed changes
Copy link
Copy Markdown

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Upgrades the Tauri dialog plugin dependency in the desktop app (pnpm workspace) as part of routine dependency maintenance/security hygiene.

Changes:

  • Bump @tauri-apps/plugin-dialog from 2.4.2 to 2.6.0 in keyless-desktop/package.json.
  • Update keyless-desktop/pnpm-lock.yaml to reflect the new resolved version and integrity.

Reviewed changes

Copilot reviewed 1 out of 2 changed files in this pull request and generated 1 comment.

File Description
keyless-desktop/package.json Updates the declared dependency range for @tauri-apps/plugin-dialog to ^2.6.0.
keyless-desktop/pnpm-lock.yaml Updates pnpm lock entries to resolve @tauri-apps/plugin-dialog@2.6.0.
Files not reviewed (1)
  • keyless-desktop/pnpm-lock.yaml: Language not supported

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

keyless-desktop/package.json
"@tauri-apps/api": "^2",
"@tauri-apps/plugin-autostart": "^2",
"@tauri-apps/plugin-dialog": "^2",
"@tauri-apps/plugin-dialog": "^2.6.0",
Copy link

Copilot AI Feb 9, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This upgrades the JS package to @tauri-apps/plugin-dialog@2.6.0, but the Rust side is still locked to tauri-plugin-dialog 2.4.2 in the repo’s Cargo.lock. That version skew can cause runtime/plugin IPC incompatibilities and makes the upgrade incomplete. Please also update the Rust dependency lock (e.g., run a targeted cargo update for tauri-plugin-dialog and commit the updated Cargo.lock) so the Rust crate matches the JS plugin version you’re now depending on.

Suggested change
"@tauri-apps/plugin-dialog": "^2.6.0",
"@tauri-apps/plugin-dialog": "^2.4.2",

Copilot uses AI. Check for mistakes.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@danielbodnar @snyk-bot