chore(deps): bump the all-cargo-version-updates group across 1 directory with 6 updates

[dependabot]

Bumps the all-cargo-version-updates group with 6 updates in the / directory:

Package	From	To
blake3	1.8.2	1.8.3
log	0.4.28	0.4.29
rusqlite	0.37.0	0.38.0
criterion	0.7.0	0.8.1
ctor	0.6.1	0.6.3
insta	1.44.3	1.46.0

Updates blake3 from 1.8.2 to 1.8.3

Release notes

Sourced from blake3's releases.

1.8.3

version 1.8.3

Changes since 1.8.2:

• Add Hash::as_slice.
• Update to the 2024 Edition and bump the MSRV to 1.85.
• Fix a set of Miri failures in the intrinsics implementations. We were computing (though not dereferencing) an out-of-bounds pointer using add rather than wrapping_add. I'm not aware of any observable consequences of this bug. See BLAKE3-team/BLAKE3#507.
• CPU feature detection on x86/x86-64 no longer requires the std Cargo feature in the blake3 crate.
• Build fixes in the C implementation for macOS and Cygwin, and various improvements to the CMake build.

Commits

• 8b829b6 version 1.8.3
• 7d6e242 update to the 2024 edition
• 0b64ce2 bump constant_time_eq version to 0.4.2
• 890050c Fix Cygwin build by skipping blake3_xof_many_avx512
• 308b95d Add Hash::as_slice() for convenient serialization to bytes
• eae9bf3 Revert "pin generic-array to the un-deprecated version"
• 185f1db pin generic-array to the un-deprecated version
• c54ee7e add a warning to the --check doc
• 2f341f1 update ccache reference to official release notes URL
• 8bec2fb chore: make some documents clearer (#528)
• Additional commits viewable in compare view

Updates log from 0.4.28 to 0.4.29

Release notes

Sourced from log's releases.

0.4.29

MSRV

This release increases log's MSRV from 1.61.0 to 1.68.0.

What's Changed

• docs: Add missing impls from README.md by @​AldaronLau in rust-lang/log#703
• Point to new URLs for favicon and logo by @​AldaronLau in rust-lang/log#704
• perf: reduce llvm-lines of FromStr for Level and LevelFilter by @​dishmaker in rust-lang/log#709
• Replace serde with serde_core by @​Thomasdezeeuw in rust-lang/log#712
• Fix clippy lints by @​Thomasdezeeuw in rust-lang/log#713
• Use GitHub Actions to install Rust and cargo-hack by @​Thomasdezeeuw in rust-lang/log#715
• Exclude old unstable_kv features from testing matrix by @​Thomasdezeeuw in rust-lang/log#716
• Fix up CI by @​KodrAus in rust-lang/log#718
• Prepare for 0.4.29 release by @​KodrAus in rust-lang/log#719

New Contributors

• @​AldaronLau made their first contribution in rust-lang/log#703
• @​dishmaker made their first contribution in rust-lang/log#709

Full Changelog: rust-lang/log@0.4.28...0.4.29

Changelog

Sourced from log's changelog.

[0.4.29] - 2025-12-02

What's Changed

• perf: reduce llvm-lines of FromStr for Level and LevelFilter by @​dishmaker in rust-lang/log#709
• Replace serde with serde_core by @​Thomasdezeeuw in rust-lang/log#712

New Contributors

• @​AldaronLau made their first contribution in rust-lang/log#703
• @​dishmaker made their first contribution in rust-lang/log#709

Full Changelog: rust-lang/log@0.4.28...0.4.29

Commits

• b1e2df7 Merge pull request #719 from rust-lang/cargo/0.4.29
• 3fe1a54 prepare for 0.4.29 release
• 7a432d9 Merge pull request #718 from rust-lang/ci/msrv
• 0689d56 rebump msrv to 1.68.0
• 46b448e try drop msrv back to 1.61.0
• 929ab38 fix up doc test feature gate
• 957cece bump serde-dependent crates
• bea40c8 bump msrv to 1.68.0
• c540184 Merge pull request #716 from rust-lang/ci-smaller-matrix2
• c971e63 Merge branch 'master' into ci-smaller-matrix2
• Additional commits viewable in compare view

Updates rusqlite from 0.37.0 to 0.38.0

Release notes

Sourced from rusqlite's releases.

0.38.0

What's Changed

• bump sqlcipher to 4.10.0 (sqlite 3.50.4) #1725
• Use CARGO_CFG_TARGET_FEATURE for crt-static check #1737
• Disable u64, usize ToSql/FromSql impl by default #1732, ##1722 (breaking change)
• Make statement cache optional #1682, #1173 (breaking change)
• Remove shell scripts from the published package #1744
• Use new interfaces with 64-bit length parameters #1749
• sqlite3_vtab_rhs_value #1753
• Handle VTab IN values #1754
• Give access to Connection from VTabCursor::column #1755
• Bump minimal SQLite version to 3.34.1 #1733, #1731 (breaking change)
• Bump bundled SQLite version to 3.51.1 #1758
• Add support for transaction to the vtab module #1761
• Check Connection is owned when registering Closure as hook #1764 (breaking change)
• Turn libsqlite3-sys in a !#[no_std] crate #1767
• Add wasm32-unknown-unknown support #1769, #488, #827
• Remove useless Send/Sync on Module #1774

Full Changelog: rusqlite/rusqlite@v0.37.0...v0.38.0

Commits

• 35b3be2 Merge pull request #1777 from gwenn/release
• 03feebc Prepare new release
• 671533c Merge pull request #1775 from Spxg/w/bump
• 6df2072 Bump sqlite-wasm-rs to 0.5.1
• 2618364 Merge pull request #1774 from rusqlite/vtab-send
• b37caff Merge pull request #1773 from rusqlite/clippy
• 44bdbc4 Remove useless Send/Sync on Module
• 465d751 Fix Clippy warning
• 78d6678 Merge pull request #1772 from rusqlite/dependabot/cargo/getrandom-0.3
• 6b8fb83 Update Cargo.toml
• Additional commits viewable in compare view

Updates criterion from 0.7.0 to 0.8.1

Release notes

Sourced from criterion's releases.

criterion-plot-v0.8.1

Fixed

• Typo

criterion-v0.8.1

Fixed

• Homepage link

Other

• (deps) bump crate-ci/typos from 1.23.5 to 1.40.0
• (deps) bump jontze/action-mdbook from 3 to 4
• (deps) bump actions/checkout from 4 to 6

criterion-plot-v0.8.0

No release notes provided.

criterion-v0.8.0

BREAKING

• Drop async-std support

Changed

• Bump MSRV to 1.86, stable to 1.91.1

Added

• Add ability to plot throughput on summary page.
• Add support for reporting throughput in elements and bytes - Throughput::ElementsAndBytes allows the text summary to report throughput in both units simultaneously.
• Add alloca-based memory layout randomisation to mitigate memory effects on measurements.
• Add doc comment to benchmark runner in criterion_group macro (removes linter warnings)

Fixed

• Fix plotting NaN bug

Other

• Remove Master API Docs links temporarily while we restore the docs publishing.

Changelog

Sourced from criterion's changelog.

0.8.1 - 2025-12-07

Fixed

• Homepage link

Other

• (deps) bump crate-ci/typos from 1.23.5 to 1.40.0
• (deps) bump jontze/action-mdbook from 3 to 4
• (deps) bump actions/checkout from 4 to 6

0.8.0 - 2025-11-29

BREAKING

• Drop async-std support

Changed

• Bump MSRV to 1.86, stable to 1.91.1

Added

• Add ability to plot throughput on summary page.
• Add support for reporting throughput in elements and bytes - Throughput::ElementsAndBytes allows the text summary to report throughput in both units simultaneously.
• Add alloca-based memory layout randomisation to mitigate memory effects on measurements.
• Add doc comment to benchmark runner in criterion_group macro (removes linter warnings)

Fixed

• Fix plotting NaN bug

Other

• Remove Master API Docs links temporarily while we restore the docs publishing.

Commits

• e4e06df chore: release v0.8.1
• aa548b9 fix: Homepage link
• 950c3b7 fix: Typo
• 7e3e50c chore(deps): bump crate-ci/typos from 1.23.5 to 1.40.0
• 391a99a chore(deps): bump jontze/action-mdbook from 3 to 4
• 8fb9a87 chore(deps): bump actions/checkout from 4 to 6
• b49ade7 chore: release v0.8.0
• See full diff in compare view

Updates ctor from 0.6.1 to 0.6.3

Commits

• See full diff in compare view

Updates insta from 1.44.3 to 1.46.0

Release notes

Sourced from insta's releases.

1.46.0

Release Notes

• Add INSTA_PENDING_DIR environment variable for Bazel and other hermetic build systems. When set, pending snapshots are written to a separate directory while keeping the source tree read-only. We are very open to feedback on this feature. #852
• Fix documentation for test.runner_fallback config key. #853

Install cargo-insta 1.46.0

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/mitsuhiko/insta/releases/download/1.46.0/cargo-insta-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy Bypass -c "irm https://github.com/mitsuhiko/insta/releases/download/1.46.0/cargo-insta-installer.ps1 | iex"

Download cargo-insta 1.46.0

File	Platform	Checksum
cargo-insta-aarch64-apple-darwin.tar.xz	Apple Silicon macOS	checksum
cargo-insta-x86_64-apple-darwin.tar.xz	Intel macOS	checksum
cargo-insta-x86_64-pc-windows-msvc.zip	x64 Windows	checksum
cargo-insta-x86_64-unknown-linux-gnu.tar.xz	x64 Linux	checksum
cargo-insta-x86_64-unknown-linux-musl.tar.xz	x64 MUSL Linux	checksum

1.45.1

Release Notes

• Fix backward compatibility with TOML format produced by insta < 1.45.0. #849 (@​chitoku-k)

Install cargo-insta 1.45.1

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/mitsuhiko/insta/releases/download/1.45.1/cargo-insta-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy Bypass -c "irm https://github.com/mitsuhiko/insta/releases/download/1.45.1/cargo-insta-installer.ps1 | iex"

Download cargo-insta 1.45.1

... (truncated)

Changelog

Sourced from insta's changelog.

1.46.0

• Add INSTA_PENDING_DIR environment variable for Bazel and other hermetic build systems. When set, pending snapshots are written to a separate directory while keeping the source tree read-only. We are very open to feedback on this feature. #852
• Fix documentation for test.runner_fallback config key. #853

1.45.1

• Fix backward compatibility with TOML format produced by insta < 1.45.0. #849 (@​chitoku-k)

1.45.0

• Add external diff tool support via INSTA_DIFF_TOOL environment variable. When set, insta uses the specified tool (e.g., delta, difftastic) to display snapshot diffs instead of the built-in diff. The tool is invoked as <tool> <old_file> <new_file>. #844
• Add test.disable_nextest_doctest config option to insta.yaml, allowing users to silence the nextest doctest warning via config instead of passing --dnd every time. #842
• Skip non-insta snapshot files in unreferenced detection. Projects using both insta and other snapshot tools (like vitest or jest) can now use --unreferenced=reject without false positives on .snap files from other tools. #846
• Collect warnings from tests for display after run. Ensures deprecation warnings are visible even when nextest suppresses stdout/stderr from passing tests. #840
• Update TOML serialization to be up-to-date and backwards-compatible. #834 (@​spoutn1k)
• Support clippy::needless_raw_strings lint by only using raw strings when content contains backslashes or quotes. #828

Commits

• 7d27e3a Release 1.46.0 (#855)
• 3aa59d6 Add INSTA_PENDING_DIR environment variable for hermetic builds (#852)
• fd40cf7 Fix docs for test.runner_fallback config key (#853)
• ac191ba Add test for multiline snapshots without special characters (#848)
• 55f6999 Release 1.45.1 (#850)
• 00b1cd4 Fix backward compatibility with TOML format produced by insta < 1.45.0 (#849)
• 681a026 Release 1.45.0 (#847)
• ad233cd Skip non-insta snapshot files in unreferenced detection (#846)
• d8e8dfe Collect warnings from tests for display after run (#840)
• 521812c Support clippy::needless_raw_strings lint (#828)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.