build(deps): bump @tauri-apps/plugin-http from 2.5.4 to 2.5.6

[dependabot]

Bumps @tauri-apps/plugin-http from 2.5.4 to 2.5.6.

Release notes

Sourced from @​tauri-apps/plugin-http's releases.

http-js v2.5.6

[2.5.6]

• b1dbee2c (#3210 by @​FabianLars) Fixed an issue that caused the Origin header to always be null on macOS, iOS and Linux.

npm warn Unknown user config "always-auth". This will stop working in the next major version of npm.
npm warn publish npm auto-corrected some errors in your package.json when publishing.  Please run "npm pkg fix" to address these errors.
npm warn publish errors corrected:
npm warn publish "repository" was changed from a string to an object
npm warn publish "repository.url" was normalized to "git+https://github.com/tauri-apps/plugins-workspace.git"
npm notice
npm notice 📦  @tauri-apps/plugin-http@2.5.6
npm notice Tarball Contents
npm notice 888B LICENSE.spdx
npm notice 2.6kB README.md
npm notice 6.2kB dist-js/index.cjs
npm notice 2.4kB dist-js/index.d.ts
npm notice 6.1kB dist-js/index.js
npm notice 654B package.json
npm notice Tarball Details
npm notice name: @tauri-apps/plugin-http
npm notice version: 2.5.6
npm notice filename: tauri-apps-plugin-http-2.5.6.tgz
npm notice package size: 4.8 kB
npm notice unpacked size: 18.8 kB
npm notice shasum: d6413a3a3e0688689d50a699eedf4eec710255c5
npm notice integrity: sha512-KhCK3TDNDF4vd[...]AB8QtRxW6jKRA==
npm notice total files: 6
npm notice
npm notice Security Notice: Classic tokens have been revoked. Granular tokens are now limited to 90 days and require 2FA by default. Update your CI/CD workflows to avoid disruption. Learn more https://gh.io/all-npm-classic-tokens-revoked
npm notice Publishing to https://registry.npmjs.org/ with tag latest and public access
npm notice publish Signed provenance statement with source and build information from GitHub Actions
npm notice publish Provenance statement published to transparency log: https://search.sigstore.dev/?logIndex=822964230
+ @tauri-apps/plugin-http@2.5.6

http v2.5.6

[2.5.6]

• b1dbee2c (#3210 by @​FabianLars) Fixed an issue that caused the Origin header to always be null on macOS, iOS and Linux.

... (truncated)

Commits

• 2308f22 publish new versions (#3203)
• 82c4046 temp: delete updater changefiles
• b1dbee2 fix(http): manually set origin header to tauri://localhost (#3210)
• d7a0bb3 feat(dialog) - Support fileAccessMode for open dialog (#3030) (#3136)
• f3d75f7 Revert "temp: remove updater changefiles"
• 6e2e7e4 publish new versions (#3070)
• 9a2c98f temp: remove updater changefiles
• 4a2ecb6 chore(deps): update rkyv, closes #3196
• 31415ef docs(shell): update example to include Encoding usage in Command::spawn (#3...
• 04b33ea chore(deps): update dependency typescript-eslint to v8.50.1 (#3181)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​tauri-apps/plugin-http since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Review	Updated (UTC)
vod-next	Error		Jan 16, 2026 4:16am

[coderabbitai]

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}