chore(deps): bump the production-dependencies group across 1 directory with 5 updates

[dependabot]

Bumps the production-dependencies group with 5 updates in the / directory:

Package	From	To
@kenjiuno/msgreader	1.27.0	1.28.0
@tauri-apps/api	2.9.1	2.10.1
@tauri-apps/plugin-dialog	2.4.2	2.6.0
@tauri-apps/plugin-updater	2.9.0	2.10.0
iconv-lite	0.7.1	0.7.2

Updates @kenjiuno/msgreader from 1.27.0 to 1.28.0

Commits

• See full diff in compare view

Updates @tauri-apps/api from 2.9.1 to 2.10.1

Release notes

Sourced from @​tauri-apps/api's releases.

@​tauri-apps/api v2.10.1

No known vulnerabilities found

[2.10.1]

Bug Fixes

• Re-release of 2.10.0 with working assets.

> @tauri-apps/api@2.10.1 npm-publish /home/runner/work/tauri/tauri/packages/api
> pnpm build && cd ./dist && pnpm publish --access public --loglevel silly --no-git-checks
> @​tauri-apps/api@​2.10.1 build /home/runner/work/tauri/tauri/packages/api
> rollup -c --configPlugin typescript
�[36m
�[1m./src/app.ts, ./src/core.ts, ./src/dpi.ts, ./src/event.ts, ./src/image.ts, ./src/index.ts, ./src/menu.ts, ./src/mocks.ts, ./src/path.ts, ./src/tray.ts, ./src/webview.ts, ./src/webviewWindow.ts, ./src/window.ts�[22m → �[1m./dist, ./dist�[22m...�[39m
�[32mcreated �[1m./dist, ./dist�[22m in �[1m1.2s�[22m�[39m
�[36m
�[1msrc/index.ts�[22m → �[1m../../crates/tauri/scripts/bundle.global.js�[22m...�[39m
�[32mcreated �[1m../../crates/tauri/scripts/bundle.global.js�[22m in �[1m1.4s�[22m�[39m
npm verbose cli /opt/hostedtoolcache/node/24.13.0/x64/bin/node /opt/hostedtoolcache/node/24.13.0/x64/bin/npm
npm info using npm@11.6.2
npm info using node@v24.13.0
npm silly config load:file:/opt/hostedtoolcache/node/24.13.0/x64/lib/node_modules/npm/npmrc
npm warn Unknown cli config "--git-checks". This will stop working in the next major version of npm.
npm warn Unknown env config "verify-deps-before-run". This will stop working in the next major version of npm.
npm warn Unknown env config "_jsr-registry". This will stop working in the next major version of npm.
npm silly config load:file:/tmp/adc7feab38a65aed96fd8b952564b859/.npmrc
npm silly config load:file:/home/runner/.npmrc
npm silly config load:file:/opt/hostedtoolcache/node/24.13.0/x64/etc/npmrc
npm verbose title npm publish tauri-apps-api-2.10.1.tgz
npm verbose argv "publish" "--ignore-scripts" "tauri-apps-api-2.10.1.tgz" "--access" "public" "--loglevel" "silly" "--no-git-checks"
npm verbose logfile logs-max:10 dir:/home/runner/.npm/_logs/2026-02-03T00_17_22_204Z-
npm verbose logfile /home/runner/.npm/_logs/2026-02-03T00_17_22_204Z-debug-0.log
npm silly logfile done cleaning log files
npm verbose publish [ 'tauri-apps-api-2.10.1.tgz' ]
npm http cache file:/tmp/adc7feab38a65aed96fd8b952564b859/tauri-apps-api-2.10.1.tgz 0ms (cache hit)
</tr></table>

... (truncated)

Commits

• 540c5b4 chore(deps): update wrangler for undici update
• 5dbb37b chore(api.js): Re-release 2.10.0 as 2.10.1 to fix npm package
• 19ded69 apply version updates
• 08558b8 chore(bundler): update gtk3 docs links in code comments (#14872)
• ce8fddb chore(deps): unlock webkit2gtk patch version (#14873)
• 517b81e chore(api): release 2.10 (#14876)
• cd68b03 feat(ci): use trusted publishers for NPM publishing (#14874)
• 8d67af3 apply version updates (#14639)
• 9f0306f refactor: rewrite some &String to &str (#14857)
• f7c083c chore(deps): update dependency rollup to v4.57.0 (#14820)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​tauri-apps/api since your current version.

Updates @tauri-apps/plugin-dialog from 2.4.2 to 2.6.0

Release notes

Sourced from @​tauri-apps/plugin-dialog's releases.

dialog-js v2.6.0

[2.6.0]

• d7a0bb32 (#3136 by @​onehumandev) Add fileAccessMode option to file picker.

npm warn Unknown user config "always-auth". This will stop working in the next major version of npm.
npm warn publish npm auto-corrected some errors in your package.json when publishing.  Please run "npm pkg fix" to address these errors.
npm warn publish errors corrected:
npm warn publish "repository" was changed from a string to an object
npm warn publish "repository.url" was normalized to "git+https://github.com/tauri-apps/plugins-workspace.git"
npm notice
npm notice 📦  @tauri-apps/plugin-dialog@2.6.0
npm notice Tarball Contents
npm notice 888B LICENSE.spdx
npm notice 3.5kB README.md
npm notice 6.4kB dist-js/index.cjs
npm notice 14.4kB dist-js/index.d.ts
npm notice 6.3kB dist-js/index.js
npm notice 11B dist-js/init.d.ts
npm notice 656B package.json
npm notice Tarball Details
npm notice name: @tauri-apps/plugin-dialog
npm notice version: 2.6.0
npm notice filename: tauri-apps-plugin-dialog-2.6.0.tgz
npm notice package size: 6.5 kB
npm notice unpacked size: 32.2 kB
npm notice shasum: e09bb26ab7008bfc4a1a044a5fb29ac0575f8898
npm notice integrity: sha512-q4Uq3eY87TdcY[...]9XZm7v28+Micg==
npm notice total files: 7
npm notice
npm notice Security Notice: Classic tokens have been revoked. Granular tokens are now limited to 90 days and require 2FA by default. Update your CI/CD workflows to avoid disruption. Learn more https://gh.io/all-npm-classic-tokens-revoked
npm notice Publishing to https://registry.npmjs.org/ with tag latest and public access
npm notice publish Signed provenance statement with source and build information from GitHub Actions
npm notice publish Provenance statement published to transparency log: https://search.sigstore.dev/?logIndex=822963036
+ @tauri-apps/plugin-dialog@2.6.0

dialog v2.6.0

[2.6.0]

• d7a0bb32 (#3136 by @​onehumandev) Add fileAccessMode option to file picker.

... (truncated)

Commits

• adc23d6 publish new versions (#2808)
• fc573b3 chore(deps): update rust crate tokio-tungstenite to 0.27 (#2768)
• 901ddfb ci: enable create-pull-request sign commits (#2809)
• f209b2f chore(deps): update tauri monorepo to v2.6.0 (v2) (#2804)
• 19ed1bd chore(deps): update dependency prettier to v3.6.1 (#2806)
• 5779099 publish new versions (#2780)
• 2aec8ff feat(opener): add inAppBrowser option for iOS and Android (#2803)
• 9799f0d fix(log): iOS simulator freezing due to early logging (#2802)
• 8cdaacd chore(examples): update API example mobile projects
• d46778e chore(deps): update dependency typescript-eslint to v8.35.0 (#2794)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​tauri-apps/plugin-dialog since your current version.

Updates @tauri-apps/plugin-updater from 2.9.0 to 2.10.0

Release notes

Sourced from @​tauri-apps/plugin-updater's releases.

updater-js v2.10.0

[2.10.0]

• 4375c98b (#3073) Add no_proxy config to disable system proxy for updater plugin.
• f122ee98 Allow configuring the updater client to accept invalid TLS certificates and hostnames for internal/self-signed update servers. These options are available via the plugin config (dangerousAcceptInvalidCerts, dangerousAcceptInvalidHostnames) and via the UpdaterBuilder (dangerous_accept_invalid_certs, dangerous_accept_invalid_hostnames).
• f122ee98 Updater plugin now supports all bundle types: Deb, Rpm and AppImage for Linux; NSiS, MSI for Windows. This was added in tauri-apps/plugins-workspace#2624
• 05c5da07 (#3213) Updated reqwest to 0.13, make sure to update your reqwest dependency if you're using UpdaterBuilder::configure_client

npm warn Unknown user config "always-auth". This will stop working in the next major version of npm.
npm warn publish npm auto-corrected some errors in your package.json when publishing.  Please run "npm pkg fix" to address these errors.
npm warn publish errors corrected:
npm warn publish "repository" was changed from a string to an object
npm warn publish "repository.url" was normalized to "git+https://github.com/tauri-apps/plugins-workspace.git"
npm notice
npm notice 📦  @tauri-apps/plugin-updater@2.10.0
npm notice Tarball Contents
npm notice 888B LICENSE.spdx
npm notice 3.1kB README.md
npm notice 2.6kB dist-js/index.cjs
npm notice 2.3kB dist-js/index.d.ts
npm notice 2.6kB dist-js/index.js
npm notice 659B package.json
npm notice Tarball Details
npm notice name: @tauri-apps/plugin-updater
npm notice version: 2.10.0
npm notice filename: tauri-apps-plugin-updater-2.10.0.tgz
npm notice package size: 3.7 kB
npm notice unpacked size: 12.1 kB
npm notice shasum: 57172dbe9fd06f790bcf3144bc69f3e40048ccd3
npm notice integrity: sha512-ljN8jPlnT0aSn[...]CC6Rr472JWfkQ==
npm notice total files: 6
npm notice
npm notice Security Notice: Classic tokens have been revoked. Granular tokens are now limited to 90 days and require 2FA by default. Update your CI/CD workflows to avoid disruption. Learn more https://gh.io/all-npm-classic-tokens-revoked
npm notice Publishing to https://registry.npmjs.org/ with tag latest and public access
npm notice publish Signed provenance statement with source and build information from GitHub Actions
npm notice publish Provenance statement published to transparency log: https://search.sigstore.dev/?logIndex=908172212
+ @tauri-apps/plugin-updater@2.10.0

updater v2.10.0

[2.10.0]

• 4375c98b (#3073) Add no_proxy config to disable system proxy for updater plugin.
• f122ee98 Allow configuring the updater client to accept invalid TLS certificates and hostnames for internal/self-signed update servers. These options are available via the plugin config (dangerousAcceptInvalidCerts, dangerousAcceptInvalidHostnames) and via the UpdaterBuilder (dangerous_accept_invalid_certs, dangerous_accept_invalid_hostnames).

... (truncated)

Commits

• 50b159f Publish New Versions (v2) (#3211)
• 305c4f6 ci: add workflow_dipatch trigger to integration tests
• 89f3e17 chore: bump tauri to 2.10 (#3246)
• d4613ff fix(shell): Make sidecars work in tests (fix #13767) (#3234)
• 69a9d57 chore(updater): use keep from tempfile 3.20 (#3229)
• 61e9b0a fix(http): ensure body resources are released on stream cancellation (#3228)
• 25ad21b chore(deps): bump diff from 5.2.0 to 5.2.2 (#3226)
• 2dc3f3f fix(sql): uuid columns returning null in postgres query results (#2039) (#3144)
• c27af91 fix(barcode-scanner): check if iOS platform supports scanning (#3222)
• b60dd88 fix(barcode-scanner): start capture session on a separate thread (#3223)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​tauri-apps/plugin-updater since your current version.

Updates iconv-lite from 0.7.1 to 0.7.2

Release notes

Sourced from iconv-lite's releases.

v0.7.2

🐞 Bug fixes

• Correction of CommonJS exports in TypeScript definitions - by @​plbstl in #366

  Fixed the TypeScript definitions to correctly represent the CommonJS exports of the library. This resolves issues where consumers using TypeScript would encounter errors due to incorrect type definitions that did not align with the actual module exports.

Other changes

• Bump actions/setup-node from 4 to 6 by @​dependabot[bot] in pillarjs/iconv-lite#373
• Bump actions/checkout from 4 to 6 by @​dependabot[bot] in pillarjs/iconv-lite#374
• chore: use files field in package.json instead of .npmignore by @​bjohansebas in pillarjs/iconv-lite#372
• Bump github/codeql-action from 4.31.2 to 4.31.9 by @​dependabot[bot] in pillarjs/iconv-lite#375
• Bump actions/upload-artifact from 4 to 6 by @​dependabot[bot] in pillarjs/iconv-lite#377
• Bump actions/download-artifact from 6 to 7 by @​dependabot[bot] in pillarjs/iconv-lite#376

Full Changelog: pillarjs/iconv-lite@v0.7.1...v0.7.2

Changelog

Sourced from iconv-lite's changelog.

0.7.2

🐞 Bug fixes

• Correction of CommonJS exports in TypeScript definitions - by @​plbstl in #366

  Fixed the TypeScript definitions to correctly represent the CommonJS exports of the library. This resolves issues where consumers using TypeScript would encounter errors due to incorrect type definitions that did not align with the actual module exports.

Commits

• 6cf4f08 release: 0.7.2 (#379)
• 7dff5ce fix: correction of CommonJS exports in TypeScript definitions (#366)
• 61dd902 Bump actions/download-artifact from 6 to 7 (#376)
• eda7530 Bump actions/upload-artifact from 4 to 6 (#377)
• 4b4e4b6 Bump github/codeql-action from 4.31.2 to 4.31.9 (#375)
• 25c8d11 chore: use files field in package.json instead of .npmignore (#372)
• 89a5c45 Bump actions/checkout from 4 to 6 (#374)
• 72503ee Bump actions/setup-node from 4 to 6 (#373)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions