v0.24.6

Security + dependency roll-up

Patch release bundling 10 Dependabot updates that landed on development since v0.24.5, plus two infra fixes.

Security fixes

• dompurify 3.3.3 → 3.4.0 (#46) — sanitizer behind the v-safer-html directive used throughout the renderer. Closes the open Dependabot alert.
• electron 41.2.0 → 41.2.1 (#58) — picks up upstream Chromium security patches for non-Nix builds. Nix builds track nixpkgs' electron.

Runtime deps

• shaka-player 5.0.10 → 5.1.0 (#57) — perf improvements and bug fixes. Verified no API changes affect the custom SABR manifest parser, MP4/WebM segment-index parsers, or EBML metadata parser.
• marked 18.0.0 → 18.0.2 (#54)
• @fortawesome/vue-fontawesome 3.1.3 → 3.2.0 (#52)

Dev tooling

• eslint 10.2.0 → 10.2.1 (#50)
• stylelint group, 3 packages (#51)
• webpack group, 2 packages (#53)
• lefthook 2.1.5 → 2.1.6 (#56)
• globals 17.4.0 → 17.5.0 (#55)

CI

• github/codeql-action 4.35.1 → 4.35.2 (#49)
• actions/cache 5.0.4 → 5.0.5 (#48)
• calibreapp/image-actions (#47)
• fix(ci): correct AppImage filename in build.yml — fork had inherited upstream FreeTube- naming; now matches productName FreeTube + Tabs in line with release.yml.

Infra

• fix: add --ozone-platform=wayland to the Electron wrapper — correct native rendering on Wayland sessions.

Notes

• Everything in v0.24.5 is included.
• flake.nix npmDepsHash updated for the new lockfile.
• Nix/NixOS users pulling freetubeplustabs from the Gitea flake get these changes via nix flake update; no binary download required.