Bump the cargo group in /src-tauri with 3 updates

[dependabot]

Bumps the cargo group in /src-tauri with 3 updates: tauri-plugin-shell, crossbeam-channel and tokio.

Updates tauri-plugin-shell from 2.0.2 to 2.2.1

Release notes

Sourced from tauri-plugin-shell's releases.

websocket-js v2.2.1

[2.2.1]

• 05cca602 (#2210 by @​renovate) Breaking change: Updated tokio_tungstenite to 0.26. This may be a breaking change if you use the tls_connector Builder method in Rust. Breaking change: Removed the accidental ConnectionConfig struct re-export (in rust). This should not affect anyone since the Config was not used in any public API.

npm warn publish npm auto-corrected some errors in your package.json when publishing.  Please run "npm pkg fix" to address these errors.
npm warn publish errors corrected:
npm warn publish "repository" was changed from a string to an object
npm warn publish "repository.url" was normalized to "git+https://github.com/tauri-apps/plugins-workspace.git"
npm notice
npm notice 📦  @tauri-apps/plugin-websocket@2.2.1
npm notice Tarball Contents
npm notice 888B LICENSE.spdx
npm notice 3.1kB README.md
npm notice 1.8kB dist-js/index.cjs
npm notice 2.9kB dist-js/index.d.ts
npm notice 1.8kB dist-js/index.js
npm notice 659B package.json
npm notice Tarball Details
npm notice name: @tauri-apps/plugin-websocket
npm notice version: 2.2.1
npm notice filename: tauri-apps-plugin-websocket-2.2.1.tgz
npm notice package size: 3.8 kB
npm notice unpacked size: 11.1 kB
npm notice shasum: 21802d8ff6cbed7dacc6817dfe36569167cb6b01
npm notice integrity: sha512-RKGTcMUm7nHLE[...]uzamTRL+Fr+XA==
npm notice total files: 6
npm notice
npm notice Publishing to https://registry.npmjs.org/ with tag latest and public access
npm notice publish Signed provenance statement with source and build information from GitHub Actions
npm notice publish Provenance statement published to transparency log: https://search.sigstore.dev/?logIndex=160133254
+ @tauri-apps/plugin-websocket@2.2.1

websocket v2.2.1

[2.2.1]

• 05cca602 (#2210 by @​renovate) Breaking change: Updated tokio_tungstenite to 0.26. This may be a breaking change if you use the tls_connector Builder method in Rust. Breaking change: Removed the accidental ConnectionConfig struct re-export (in rust). This should not affect anyone since the Config was not used in any public API.

... (truncated)

Commits

• 8b39aef publish new versions (#2545)
• beab018 fix: remove packageManager field from package.json
• 9cf0390 Merge commit from fork
• 4dd5c51 chore(deps): update tauri monorepo to v2.4.1 (v2) (#2589)
• d2aef2f chore(process): use request_restart (#2581)
• 02e886b chore(deps): update dependency vite to v6.2.4 [security] (#2585)
• d78930c chore(deps): update dependency typescript-eslint to v8.29.0 (#2586)
• a35fea5 fix(window-state): window size jump on multi monitor setup (#2583)
• a77b135 refactor(window-state): simply some code (#2578)
• 6fa388d chore(deps): update dependency rollup to v4.38.0 (#2577)
• Additional commits viewable in compare view

Updates crossbeam-channel from 0.5.13 to 0.5.15

Release notes

Sourced from crossbeam-channel's releases.

crossbeam-channel 0.5.15

• Fix regression introduced in 0.5.12 that can lead to a double free when dropping unbounded channel. (#1187)

crossbeam-channel 0.5.14

• Fix stack overflow when sending large value to unbounded channel. (#1146, #1147)
• Add Select::new_biased function. (#1150)
• Remove inefficient spinning. (#1154)
• Suppress buggy clippy::zero_repeat_side_effects lint in macro generated code. (#1123)

Commits

• d35ffde Prepare for the next release
• 6ec74ec crossbeam-channel: prevent double free on Drop (#1187)
• ccd83ac Prepare for the next release
• 54988eb Calculate layout in const context
• 761d0b6 Port #1146 & #1147 to deque::Injector and queue::SegQueue
• 8144fbb Remove optimistic spinning from Context::wait_until
• a92f6c4 Bump peter-evans/create-pull-request from 5 to 7 (#1153)
• 66d41a9 channel: Add new_biased constructor for biased channel selection (#1150)
• d0d0a80 CachePadded: Use 128-byte alignment on arm64ec
• f757eef Add comment about fixed rustc bug
• Additional commits viewable in compare view

Updates tokio from 1.41.1 to 1.42.1

Release notes

Sourced from tokio's releases.

Tokio v1.42.1

This release fixes a soundness issue in the broadcast channel. The channel accepts values that are Send but !Sync. Previously, the channel called clone() on these values without synchronizing. This release fixes the channel by synchronizing calls to .clone() (Thanks Austin Bonander for finding and reporting the issue).

Fixed

• sync: synchronize clone() call in broadcast channel (#7232)

#7232: tokio-rs/tokio#7232

Tokio v1.42.0

1.42.0 (Dec 3rd, 2024)

Added

• io: add AsyncFd::{try_io, try_io_mut} (#6967)

Fixed

• io: avoid ptr->ref->ptr roundtrip in RegistrationSet (#6929)
• runtime: do not defer yield_now inside block_in_place (#6999)

Changes

• io: simplify io readiness logic (#6966)

Documented

• net: fix docs for tokio::net::unix::{pid_t, gid_t, uid_t} (#6791)
• time: fix a typo in Instant docs (#6982)

#6791: tokio-rs/tokio#6791 #6929: tokio-rs/tokio#6929 #6966: tokio-rs/tokio#6966 #6967: tokio-rs/tokio#6967 #6982: tokio-rs/tokio#6982 #6999: tokio-rs/tokio#6999

Commits

• f7fb0bd chore: prepare Tokio v1.42.1
• 9faea74 Merge 'tokio-1.38.x' into 'tokio.1.42.x'
• aa303bc chore: prepare Tokio v1.38.2 release
• 7b6ccb5 chore: backport CI fixes
• 4b174ce sync: fix cloning value when receiving from broadcast channel
• bb9d570 chore: prepare Tokio v1.42.0 (#7005)
• af9c683 tests: fix typo in build test instructions (#7004)
• 4bc5a1a ci: allow Unicode-3.0 license for unicode-ident (#7006)
• f8948ea runtime: do not defer yield_now inside block_in_place (#6999)
• bce9780 time: use array::from_fn instead of manually creating array (#7000)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.