Bump the patch group with 9 updates

[dependabot]

Bumps the patch group with 9 updates:

Package	From	To
proc-macro2	1.0.103	1.0.105
quote	1.0.42	1.0.43
syn	2.0.110	2.0.114
clap	4.5.51	4.5.54
bon	3.8.1	3.8.2
cxx	1.0.188	1.0.192
serde_json	1.0.145	1.0.149
dropshot	0.16.4	0.16.5
image	0.25.8	0.25.9

Updates proc-macro2 from 1.0.103 to 1.0.105

Release notes

Sourced from proc-macro2's releases.

1.0.105

• Make std dependencies more easily discoverable in source code (#528)

1.0.104

• Add Rust 1.92.0's TokenStream Extend impls (#527, rust-lang/rust#145722)

Commits

• 8c4135f Release 1.0.105
• 2825fb1 Make same crates available during probe as in crate root
• cc5819c Merge pull request #528 from dtolnay/nostd
• e78151e Disable std prelude
• 2fbddd4 Delete html_root_url comment
• aa54fc3 Patch rustc-literal-escaper std dependencies
• 876f800 CStr is available in core since Rust 1.64
• 4321369 Release 1.0.104
• 9561144 Merge pull request #527 from dtolnay/extend
• 57fed01 Update actions/upload-artifact@v5 -> v6
• Additional commits viewable in compare view

Updates quote from 1.0.42 to 1.0.43

Release notes

Sourced from quote's releases.

1.0.43

• Disambiguate references to stringify! macro inside generated code (#316)

Commits

• 635ee67 Release 1.0.43
• 5f605a6 Reorder module-level attributes in crate root
• 9c63cee Delete html_root_url comment
• 009af09 Disallow direct use of quote v1 as a no-std crate
• 546c7c2 Merge pull request 320 from tamird/no-std
• fc59136 Merge pull request #319 from tamird/fix-tests
• b3faa37 Make the crate no_std
• 8e70480 Merge pull request #318 from tamird/more-core
• 3b9996b tests: fix compilation with --no-default-features
• 4d1e4fe Change std imports to core/alloc
• Additional commits viewable in compare view

Updates syn from 2.0.110 to 2.0.114

Release notes

Sourced from syn's releases.

2.0.114

• Make std dependencies more easily discoverable in source code (#1956, thanks @​tamird)

2.0.113

• Allow parsing TypeParam with colon not followed by any type param bounds (#1953, thanks @​wyfo)

2.0.112

• Fix panic in LitByte::new().value() (#1951, thanks @​VictorArcium)

2.0.111

• Allow first argument of braced!, bracketed!, parenthesized! to be an otherwise unused variable (#1946)

Commits

• 211e0df Release 2.0.114
• 18cd645 Touch up PR 1956
• 8c9f7e1 Merge pull request #1956 from tamird/no-std-prep
• f8a7a33 Disable std prelude
• 888a207 Delete html_root_url comment
• 8cfa32a Release 2.0.113
• d5e19ff Do PR 1953 also for LifetimeParam
• 3fe4dc6 Merge pull request #1953 from wyfo/fix/type-param-colon-no-bounds
• 31508f3 Fix TypeParam expecting identifier after colon
• 1534d3a Update reqwest dev-dependency to 0.13
• Additional commits viewable in compare view

Updates clap from 4.5.51 to 4.5.54

Release notes

Sourced from clap's releases.

v4.5.54

[4.5.54] - 2026-01-02

Fixes

• (help) Move [default] to its own paragraph when PossibleValue::help is present in --help

v4.5.53

[4.5.53] - 2025-11-19

Features

• Add default_values_if, default_values_ifs

v4.5.52

[4.5.52] - 2025-11-17

Fixes

• Don't panic when args_conflicts_with_subcommands conflicts with an ArgGroup

Changelog

Sourced from clap's changelog.

[4.5.54] - 2026-01-02

Fixes

• (help) Move [default] to its own paragraph when PossibleValue::help is present in --help

[4.5.53] - 2025-11-19

Features

• Add default_values_if, default_values_ifs

[4.5.52] - 2025-11-17

Fixes

• Don't panic when args_conflicts_with_subcommands conflicts with an ArgGroup

Commits

• 194c676 chore: Release
• 44838f6 docs: Update changelog
• 0f59d55 Merge pull request #6027 from Alpha1337k/master
• 3716f9f chore: Release
• 613b69a docs: Update changelog
• d117f7a Merge pull request #6028 from epage/arg
• cb8255d feat(builder): Allow quoted id's for arg macro
• e2aa2f0 Feat: Add catch-all on external subcommands for zsh
• b9c0aee Feat: Add external subcommands test to suite
• 1036060 Merge pull request #6025 from AldaronLau/typos-in-faq
• Additional commits viewable in compare view

Updates bon from 3.8.1 to 3.8.2

Release notes

Sourced from bon's releases.

v3.8.2

Fixed

• Don't attempt to compile big default value showcases as ignored rust doctests (#360)

Internal

• Regular maintenance (#361, #354, #363)

Commits

• 9f43a1f chore: release v3.8.2 (#362)
• 9b97afd Update dependencies (Rust, website npm) (#363)
• 1e83ed3 Update dependencies (#361)
• 569fa0d Don't attempt to compile big default value showcases as ignored rust doctests...
• 7cbf385 Remove the docs website infra from this repo (#357)
• de818be Fix MSRV tests (#354)
• See full diff in compare view

Updates cxx from 1.0.188 to 1.0.192

Release notes

Sourced from cxx's releases.

1.0.192

• Add support for Vec<Box<T>> (#1681, thanks @​anforowicz)

1.0.191

• Suppress a GCC 15 warning false-positive in generated C++ code (#1686)

1.0.190

• Fix spacing of enum variant static assertions (#1675)

1.0.189

• Incorporate version number into cxx-generated symbol names to enforce version parity between C++ and Rust code generators in non-Cargo builds (#1665, thanks @​anforowicz)

Commits

• 0d80b35 Release 1.0.192
• 7672ce9 Touch up PR 1681
• 7b522fe Merge pull request #1681 from anforowicz/vec-of-box
• 7a9cad2 Add support for Vec\<Box<T>>.
• de37eeb Avoid duplicate errors for impl UniquePtr\<Vec<u8>> {}.
• 66774a5 Replace fn local_type in generics.rs with more granular functions.
• 6ab7caa Release 1.0.191
• 1e7f23c Lockfile update
• 133292f Merge pull request #1686 from dtolnay/mismatchnewdelete
• 17ba90c Ignore GCC 15's new mismatched-new-delete
• Additional commits viewable in compare view

Updates serde_json from 1.0.145 to 1.0.149

Release notes

Sourced from serde_json's releases.

v1.0.149

• Align arbitrary_precision number strings with zmij's formatting (#1306, thanks @​b41sh)

v1.0.148

• Update zmij dependency to 1.0

v1.0.147

• Switch float-to-string algorithm from Ryū to Żmij for better f32 and f64 serialization performance (#1304)

v1.0.146

• Set fast_arithmetic=64 for riscv64 (#1305, thanks @​Xeonacid)

Commits

• 4f6dbfa Release 1.0.149
• f3df680 Touch up PR 1306
• e16730f Merge pull request #1306 from b41sh/fix-float-number-display
• eeb2bcd Align arbitrary_precision number strings with zmij’s formatting
• 8b291c4 Release 1.0.148
• 1aefe15 Update to zmij 1.0
• 62d6e8d Release 1.0.147
• fd829a6 Merge pull request #1304 from dtolnay/zmij
• e757a3d Switch from ryu -> zmij for float formatting
• 75ad7e6 Release 1.0.146
• Additional commits viewable in compare view

Updates dropshot from 0.16.4 to 0.16.5

Changelog

Sourced from dropshot's changelog.

== 0.16.5 (released 2025-11-20)

oxidecomputer/dropshot@v0.16.4\...v0.16.5[Full list of commits]

• oxidecomputer/dropshot#1475 Added ClientSpecifiesVersionInHeader::on_missing to provide a default version when the header is missing, intended for use when you're not in control of all clients

Commits

• aa0c2bf release 0.16.5
• 81ec815 add ClientSpecifiesVersionInHeader::on_missing (#1475)
• f35f3a1 Update dependency rust to v1.91.1 (#1474)
• 7ab7e65 Bump hyper-util from 0.1.17 to 0.1.18 (#1478)
• 4e57a1e Bump bytes from 1.10.1 to 1.11.0 (#1476)
• c541b1c Bump hyper from 1.7.0 to 1.8.1 (#1477)
• 7dee9ef Bump trybuild from 1.0.113 to 1.0.114 (#1471)
• c4c68ef Bump syn from 2.0.108 to 2.0.110 (#1473)
• 11694f1 Bump quote from 1.0.41 to 1.0.42 (#1472)
• 33783d3 Bump rustls-pki-types from 1.12.0 to 1.13.0 (#1467)
• Additional commits viewable in compare view

Updates image from 0.25.8 to 0.25.9

Changelog

Sourced from image's changelog.

Version 0.25.9

Features:

• Support extracting XMP metadata from PNG, JPEG, GIF, WebP and TIFF files (#2567, #2634, #2644)
• Support reading IPTC metadata from PNG and JPG files (#2611)
• Support reading ICC profile from GIF files (#2644)
• Allow setting a specific DEFLATE compression level when writing PNG (#2583)
• Initial support for 16-bit CMYK TIFF files (#2588)
• Allow extracting the alpha channel of a Pixel in a generic way (#2638)

Structural changes:

• EXR format decoding now only uses multi-threading via Rayon when the rayon feature is enabled (#2643)
• Upgraded zune-jpeg to 0.5.x, ravif to 0.12.x, gif to 0.14.x
• pnm: parse integers in PBM/PGM/PPM headers without allocations (#2620)
• Replace doc_auto_cfg with doc_cfg (#2637)

Bug fixes:

• Do not encode empty JPEG images (#2624)
• tga: reject empty images (#2614)
• tga: fix orientation flip for color mapped images (#2607)
• tga: adjust colormap lookup to match tga 2.0 spec (#2608)

Commits

• 5ceb6af Merge pull request #2640 from Shnatsel/release-v0.25.9
• 282d7b3 Merge pull request #2646 from oligamiq/main
• 5412aee Amend the note in accordance with the advice of 197g.
• 4e8a4ed Clarify default features in README and add usage note
• ca8fa52 Merge pull request #2644 from image-rs/gif-0.14
• d9bc8fe mention GIF 0.14 changes
• 053220a Provide gif's XMP and ICC metadata
• 2ec20b3 Prepare codec with gif@0.14
• 31939fa Mention EXR rayon change
• c7f68be Merge pull request #2643 from Shnatsel/really-optional-rayon
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
⚠️ Please upload report for BASE (main@b28ad78). Learn more about missing BASE report.

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #1051   +/-   ##
=======================================
  Coverage        ?   29.16%           
=======================================
  Files           ?       35           
  Lines           ?     1721           
  Branches        ?        0           
=======================================
  Hits            ?      502           
  Misses          ?     1219           
  Partials        ?        0           

Flag	Coverage Δ
unittests	29.16% <ø> (?)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[dependabot]

Superseded by #1056.