fix(deps): bump zvariant from 4.2.0 to 5.8.0

[dependabot]

Bumps zvariant from 4.2.0 to 5.8.0.

Release notes

Sourced from zvariant's releases.

🔖 zvariant 5.8.0

• ➖ Switch from rand to fastrand in array_value test. fastrand is already depended on indirectly.

🔖 zvariant 5.7.0

• 🐛 Reduce allocations in OwnedValue::try_from.
• ✨ Add Value::try_into_owned. Doing as few allocations as possible.
• 📝 Document when ObjectPath::into_owned clones.

🔖 zvariant 5.6.0

• 🚑️ Check signature before serializing struct as a u8. This fixes a regression that was exposed by 56cbb1f64. #1417
• 🐛 Fix build on platforms without 64-bit atomics.
• 🏷️ Add a new FilePath type to serve as a thin abstraction that handles (de)serialization of a file path as a byte array, since en/decoding of strings is limited to only UTF-8 characters in both D-Bus format and serde API. #977

* 🔖 zvariant 5.5.3

• 🚑️ Fix use of empty structs with SerializeDict. #1375

🔖 zvariant 5.5.2

• ✨ Un-deprecate SerializeDict & DeserializeDict. For simple cases, they're pretty good and now that we've made them wrappers around serde derives, maintenance shouldn't be an issue. We will no longer need to add new attributes because if people woule want any, they should just use the serde derives directly.
• ✨ SerializeDict & DeserializeDict now wrappers around serde derives.

🔖 zvariant 5.5.1

A bugfix release, fixing the breakage from 5.5.0 (now yanked):

• 🚑️ Use pub use instead of a type alias. for as_value::{Deserialize, Serialize}. They structs expose their main internal field and get instantiated directly in the using code and that seems to break the API compatiblity when using type aliases.
• 🔥 Drop as_value::{Serialize, Deserialize} re-export. This was an accident. We don't want them on the crate-level.

🔖 zvariant 5.5.0

• 🚑️ Ensure empty array is (de)serialized the same way as unit type.
• ✨ Add as_value module. This new module provides API that can be used with serde::{Serialize::Deserialize} derives to (de)serialize a value as a Value (variant type). This is espcially useful for (de)serialization of structs as a dictionary (a{sv}).
• 🗑️ Deprecate SerializeDict & DeserializeDict macro. Now that user can directly use serde::{Serialize, Deserialize} for dict encoding of a struct, we don't need these anymore.
• 🚚 Move SerializeValue & DeserializeValue into as_value & rename. These types belong in as_value module and given the context, we can just name them Serialize and Deserialize. We still provide type aliases to not break the API.
• 📝 Improve Str docs.
• 🚑️ Correctly handle identifier de for gvariant. We basically just need to do it exactly the same way as we do for the D-Bus format.
• 🚑️ More robust deserialization of variants. Our deserializers rely on a specific behavior from the Value's Deserialize impls, and that fails when Value is being deserialized in a generic way (through deserialize_any or deserialize_ignored_any) and we end up with overflowing the stack. This happens for example when ignoring unknown fields/entries. Unfortunately, in case of GVariant we now no longer error out if a null byte is missing in a string type. You can blame Allison Lortie for removing the null-termination from a signature only when it is encoded in a variant but not otherwise. :)
• ✨ Allow structs to be serialized as dictionaries.
• ✨ zb,zn,Implement Borrow for Owned* types. Implementing Borrow makes things such as using Owned* types as keys easier, and it was more-or-less designed for this type of scenario anyway. Although it comes with some stringent requirements (i.e. traits implemented on the owned type need to have identical behavior to the borrowed type), all of these types are already rather thin wrappers to begin with.
• ➖ Drop static_assertions dep.
• 🐛 fix wrong lifetime when creating a Value from &Vec and &[]. When creating a Value from a borrowed vec or slice using Value's From implementation, the compiler would wrongfully assume, that the created value has the same lifetime, even though the input gets cloned when creating the Array struct. This commit makes the impl assign a new lifetime to the cloned value.
• ✨ Implement rename/rename_all when deriving Value/OwnedValue. Previously, setting these values would not apply to implementations of From and TryFrom when converting between a type and Value/OwnedValue. This change makes it so using rename or rename_all will apply to these traits. #320
• ✨ *Value derive macros:
  • Support string encoding for enums.
  • Support enum variants without explicit values.
• 🐛 Prefix a local variable w/ __ so it doesn't conflict w/ fields. ..in the struct deriving DeserializeDict. #1252.

... (truncated)

Commits

• 14fce7c 🔖 zv: Release 5.8.0
• a00e93c ⬆️ micro: Update clap to v4.5.49 (#1540)
• 7c2baf6 Merge pull request #1538 from dbus2/renovate/actions-checkout-5.x
• 5ac2239 ⬆️ Update actions/checkout action to v5
• c9a00ea Merge pull request #1537 from DarthB/codspeed
• 562f125 use codspeed benchmarks with criterion compat layer
• 4dc5325 ⬆️ micro: Update serde to v1.0.228 (#1534)
• 921e0e9 ⬆️ micro: Update windows-sys to v0.61.2 (#1535)
• 54dea5d ⬆️ micro: Update quote to v1.0.41 (#1533)
• c407d50 ⬆️ micro: Update camino to v1.2.1 (#1532)
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.