chore(deps): bump the cargo-dependencies group in /src-tauri with 2 updates by dependabot[bot] · Pull Request #152 · jeremymcs/patchdeck

dependabot · 2026-06-20T02:33:04Z

Bumps the cargo-dependencies group in /src-tauri with 2 updates: tauri and tauri-build.

Updates tauri from 2.11.2 to 2.11.3

Release notes

tauri-cli v2.11.3

Fetching advisory database from `https://github.com/RustSec/advisory-db.git` Loaded 1133 security advisories (from /home/runner/.cargo/advisory-db) Updating crates.io index Scanning Cargo.lock for vulnerabilities (1085 crate dependencies) Crate: atk Version: 0.18.2 Warning: unmaintained Title: gtk-rs GTK3 bindings - no longer maintained Date: 2024-03-04 ID: RUSTSEC-2024-0413 URL: https://rustsec.org/advisories/RUSTSEC-2024-0413 Crate: atk-sys Version: 0.18.2 Warning: unmaintained Title: gtk-rs GTK3 bindings - no longer maintained Date: 2024-03-04 ID: RUSTSEC-2024-0416 URL: https://rustsec.org/advisories/RUSTSEC-2024-0416 Crate: fxhash Version: 0.2.1 Warning: unmaintained Title: fxhash - no longer maintained Date: 2025-09-05 ID: RUSTSEC-2025-0057 URL: https://rustsec.org/advisories/RUSTSEC-2025-0057 Crate: gdk Version: 0.18.2 Warning: unmaintained Title: gtk-rs GTK3 bindings - no longer maintained Date: 2024-03-04 ID: RUSTSEC-2024-0412 URL: https://rustsec.org/advisories/RUSTSEC-2024-0412 Crate: gdk-sys Version: 0.18.2 Warning: unmaintained Title: gtk-rs GTK3 bindings - no longer maintained Date: 2024-03-04 ID: RUSTSEC-2024-0418 URL: https://rustsec.org/advisories/RUSTSEC-2024-0418

Crate: gdkwayland-sys </tr></table>

... (truncated)

Commits

6f6ab12 apply version updates (#15409)
728c8d4 fix(cli): skip building bundles when using tauri android run (#15473)
e25f45c refactor: remove impl clone on inner menus (#15553)
fbcf1b0 chore(deps): update dependency eslint-plugin-security to v4.0.1 (#15545)
828f710 fix(cli): respect src/bin required-features (fix: #15325) (#15427)
ed8fd41 chore(cli): lesser verbose ureq_proto log (#15552)
50b0237 fix(android): escape special characters in strings.xml (#15549)
800223d docs: fix some missing and wrong docs (#15548)
5075c81 fix: check is_maximizable in internal_toggle_maximize (#15550)
532c22a chore(deps-dev): bump vite from 8.0.5 to 8.0.16 (#15547)
Additional commits viewable in compare view

Updates tauri-build from 2.6.2 to 2.6.3

Release notes

Sourced from tauri-build's releases.

tauri-build v2.6.3

Fetching advisory database from `https://github.com/RustSec/advisory-db.git` Loaded 1133 security advisories (from /home/runner/.cargo/advisory-db) Updating crates.io index Scanning Cargo.lock for vulnerabilities (1085 crate dependencies) Crate: atk Version: 0.18.2 Warning: unmaintained Title: gtk-rs GTK3 bindings - no longer maintained Date: 2024-03-04 ID: RUSTSEC-2024-0413 URL: https://rustsec.org/advisories/RUSTSEC-2024-0413 Crate: atk-sys Version: 0.18.2 Warning: unmaintained Title: gtk-rs GTK3 bindings - no longer maintained Date: 2024-03-04 ID: RUSTSEC-2024-0416 URL: https://rustsec.org/advisories/RUSTSEC-2024-0416 Crate: fxhash Version: 0.2.1 Warning: unmaintained Title: fxhash - no longer maintained Date: 2025-09-05 ID: RUSTSEC-2025-0057 URL: https://rustsec.org/advisories/RUSTSEC-2025-0057 Crate: gdk Version: 0.18.2 Warning: unmaintained Title: gtk-rs GTK3 bindings - no longer maintained Date: 2024-03-04 ID: RUSTSEC-2024-0412 URL: https://rustsec.org/advisories/RUSTSEC-2024-0412 Crate: gdk-sys Version: 0.18.2 Warning: unmaintained Title: gtk-rs GTK3 bindings - no longer maintained Date: 2024-03-04 ID: RUSTSEC-2024-0418 URL: https://rustsec.org/advisories/RUSTSEC-2024-0418

Crate: gdkwayland-sys </tr></table>

... (truncated)

Commits

6f6ab12 apply version updates (#15409)
728c8d4 fix(cli): skip building bundles when using tauri android run (#15473)
e25f45c refactor: remove impl clone on inner menus (#15553)
fbcf1b0 chore(deps): update dependency eslint-plugin-security to v4.0.1 (#15545)
828f710 fix(cli): respect src/bin required-features (fix: #15325) (#15427)
ed8fd41 chore(cli): lesser verbose ureq_proto log (#15552)
50b0237 fix(android): escape special characters in strings.xml (#15549)
800223d docs: fix some missing and wrong docs (#15548)
5075c81 fix: check is_maximizable in internal_toggle_maximize (#15550)
532c22a chore(deps-dev): bump vite from 8.0.5 to 8.0.16 (#15547)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the cargo-dependencies group in /src-tauri with 2 updates: [tauri](https://github.com/tauri-apps/tauri) and [tauri-build](https://github.com/tauri-apps/tauri). Updates `tauri` from 2.11.2 to 2.11.3 - [Release notes](https://github.com/tauri-apps/tauri/releases) - [Commits](tauri-apps/tauri@tauri-v2.11.2...tauri-v2.11.3) Updates `tauri-build` from 2.6.2 to 2.6.3 - [Release notes](https://github.com/tauri-apps/tauri/releases) - [Commits](tauri-apps/tauri@tauri-build-v2.6.2...tauri-build-v2.6.3) --- updated-dependencies: - dependency-name: tauri dependency-version: 2.11.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: cargo-dependencies - dependency-name: tauri-build dependency-version: 2.6.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: cargo-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

socket-security · 2026-06-20T02:33:42Z

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	cargo/tauri@2.11.2 ⏵ 2.11.3
	cargo/tauri-build@2.6.2 ⏵ 2.6.3

View full report

dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Jun 20, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the cargo-dependencies group in /src-tauri with 2 updates#152

chore(deps): bump the cargo-dependencies group in /src-tauri with 2 updates#152
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/src-tauri/cargo-dependencies-e86d6718e7

dependabot Bot commented on behalf of github Jun 20, 2026

Uh oh!

socket-security Bot commented Jun 20, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github Jun 20, 2026

tauri-cli v2.11.3

tauri-build v2.6.3

Uh oh!

socket-security Bot commented Jun 20, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants