chore(deps): bump the all-cargo-version-updates group across 1 directory with 7 updates

[dependabot]

Bumps the all-cargo-version-updates group with 7 updates in the / directory:

Package	From	To
blake3	1.8.2	1.8.3
log	0.4.28	0.4.29
rusqlite	0.37.0	0.38.0
criterion	0.7.0	0.8.2
ctor	0.6.1	0.6.3
env_logger	0.11.8	0.11.9
insta	1.44.3	1.46.3

Updates blake3 from 1.8.2 to 1.8.3

Release notes

Sourced from blake3's releases.

1.8.3

version 1.8.3

Changes since 1.8.2:

• Add Hash::as_slice.
• Update to the 2024 Edition and bump the MSRV to 1.85.
• Fix a set of Miri failures in the intrinsics implementations. We were computing (though not dereferencing) an out-of-bounds pointer using add rather than wrapping_add. I'm not aware of any observable consequences of this bug. See BLAKE3-team/BLAKE3#507.
• CPU feature detection on x86/x86-64 no longer requires the std Cargo feature in the blake3 crate.
• Build fixes in the C implementation for macOS and Cygwin, and various improvements to the CMake build.

Commits

• 8b829b6 version 1.8.3
• 7d6e242 update to the 2024 edition
• 0b64ce2 bump constant_time_eq version to 0.4.2
• 890050c Fix Cygwin build by skipping blake3_xof_many_avx512
• 308b95d Add Hash::as_slice() for convenient serialization to bytes
• eae9bf3 Revert "pin generic-array to the un-deprecated version"
• 185f1db pin generic-array to the un-deprecated version
• c54ee7e add a warning to the --check doc
• 2f341f1 update ccache reference to official release notes URL
• 8bec2fb chore: make some documents clearer (#528)
• Additional commits viewable in compare view

Updates log from 0.4.28 to 0.4.29

Release notes

Sourced from log's releases.

0.4.29

MSRV

This release increases log's MSRV from 1.61.0 to 1.68.0.

What's Changed

• docs: Add missing impls from README.md by @​AldaronLau in rust-lang/log#703
• Point to new URLs for favicon and logo by @​AldaronLau in rust-lang/log#704
• perf: reduce llvm-lines of FromStr for Level and LevelFilter by @​dishmaker in rust-lang/log#709
• Replace serde with serde_core by @​Thomasdezeeuw in rust-lang/log#712
• Fix clippy lints by @​Thomasdezeeuw in rust-lang/log#713
• Use GitHub Actions to install Rust and cargo-hack by @​Thomasdezeeuw in rust-lang/log#715
• Exclude old unstable_kv features from testing matrix by @​Thomasdezeeuw in rust-lang/log#716
• Fix up CI by @​KodrAus in rust-lang/log#718
• Prepare for 0.4.29 release by @​KodrAus in rust-lang/log#719

New Contributors

• @​AldaronLau made their first contribution in rust-lang/log#703
• @​dishmaker made their first contribution in rust-lang/log#709

Full Changelog: rust-lang/log@0.4.28...0.4.29

Changelog

Sourced from log's changelog.

[0.4.29] - 2025-12-02

What's Changed

• perf: reduce llvm-lines of FromStr for Level and LevelFilter by @​dishmaker in rust-lang/log#709
• Replace serde with serde_core by @​Thomasdezeeuw in rust-lang/log#712

New Contributors

• @​AldaronLau made their first contribution in rust-lang/log#703
• @​dishmaker made their first contribution in rust-lang/log#709

Full Changelog: rust-lang/log@0.4.28...0.4.29

Commits

• b1e2df7 Merge pull request #719 from rust-lang/cargo/0.4.29
• 3fe1a54 prepare for 0.4.29 release
• 7a432d9 Merge pull request #718 from rust-lang/ci/msrv
• 0689d56 rebump msrv to 1.68.0
• 46b448e try drop msrv back to 1.61.0
• 929ab38 fix up doc test feature gate
• 957cece bump serde-dependent crates
• bea40c8 bump msrv to 1.68.0
• c540184 Merge pull request #716 from rust-lang/ci-smaller-matrix2
• c971e63 Merge branch 'master' into ci-smaller-matrix2
• Additional commits viewable in compare view

Updates rusqlite from 0.37.0 to 0.38.0

Release notes

Sourced from rusqlite's releases.

0.38.0

What's Changed

• bump sqlcipher to 4.10.0 (sqlite 3.50.4) #1725
• Use CARGO_CFG_TARGET_FEATURE for crt-static check #1737
• Disable u64, usize ToSql/FromSql impl by default #1732, ##1722 (breaking change)
• Make statement cache optional #1682, #1173 (breaking change)
• Remove shell scripts from the published package #1744
• Use new interfaces with 64-bit length parameters #1749
• sqlite3_vtab_rhs_value #1753
• Handle VTab IN values #1754
• Give access to Connection from VTabCursor::column #1755
• Bump minimal SQLite version to 3.34.1 #1733, #1731 (breaking change)
• Bump bundled SQLite version to 3.51.1 #1758
• Add support for transaction to the vtab module #1761
• Check Connection is owned when registering Closure as hook #1764 (breaking change)
• Turn libsqlite3-sys in a !#[no_std] crate #1767
• Add wasm32-unknown-unknown support #1769, #488, #827
• Remove useless Send/Sync on Module #1774

Full Changelog: rusqlite/rusqlite@v0.37.0...v0.38.0

Commits

• 35b3be2 Merge pull request #1777 from gwenn/release
• 03feebc Prepare new release
• 671533c Merge pull request #1775 from Spxg/w/bump
• 6df2072 Bump sqlite-wasm-rs to 0.5.1
• 2618364 Merge pull request #1774 from rusqlite/vtab-send
• b37caff Merge pull request #1773 from rusqlite/clippy
• 44bdbc4 Remove useless Send/Sync on Module
• 465d751 Fix Clippy warning
• 78d6678 Merge pull request #1772 from rusqlite/dependabot/cargo/getrandom-0.3
• 6b8fb83 Update Cargo.toml
• Additional commits viewable in compare view

Updates criterion from 0.7.0 to 0.8.2

Release notes

Sourced from criterion's releases.

criterion-plot-v0.8.2

Other

• Update Readme

criterion-v0.8.2

Fixed

• don't build alloca on unsupported targets

Other

• (deps) bump crate-ci/typos from 1.40.0 to 1.43.0
• Fix panic with uniform iteration durations in benchmarks
• Update Readme
• Exclude development scripts from published package

criterion-plot-v0.8.1

Fixed

• Typo

criterion-v0.8.1

Fixed

• Homepage link

Other

• (deps) bump crate-ci/typos from 1.23.5 to 1.40.0
• (deps) bump jontze/action-mdbook from 3 to 4
• (deps) bump actions/checkout from 4 to 6

criterion-plot-v0.8.0

No release notes provided.

criterion-v0.8.0

BREAKING

• Drop async-std support

Changed

• Bump MSRV to 1.86, stable to 1.91.1

Added

• Add ability to plot throughput on summary page.
• Add support for reporting throughput in elements and bytes - Throughput::ElementsAndBytes allows the text summary to report throughput in both units simultaneously.
• Add alloca-based memory layout randomisation to mitigate memory effects on measurements.

... (truncated)

Changelog

Sourced from criterion's changelog.

0.8.2 - 2026-02-04

Fixed

• don't build alloca on unsupported targets

Other

• (deps) bump crate-ci/typos from 1.40.0 to 1.43.0
• Fix panic with uniform iteration durations in benchmarks
• Update Readme
• Exclude development scripts from published package

0.8.1 - 2025-12-07

Fixed

• Homepage link

Other

• (deps) bump crate-ci/typos from 1.23.5 to 1.40.0
• (deps) bump jontze/action-mdbook from 3 to 4
• (deps) bump actions/checkout from 4 to 6

0.8.0 - 2025-11-29

BREAKING

• Drop async-std support

Changed

• Bump MSRV to 1.86, stable to 1.91.1

Added

• Add ability to plot throughput on summary page.
• Add support for reporting throughput in elements and bytes - Throughput::ElementsAndBytes allows the text summary to report throughput in both units simultaneously.
• Add alloca-based memory layout randomisation to mitigate memory effects on measurements.
• Add doc comment to benchmark runner in criterion_group macro (removes linter warnings)

Fixed

• Fix plotting NaN bug

Other

• Remove Master API Docs links temporarily while we restore the docs publishing.

Commits

• 7f0d745 chore: release v0.8.2
• 4a467ce chore(deps): bump crate-ci/typos from 1.40.0 to 1.43.0
• b277a75 Fix panic with uniform iteration durations in benchmarks
• 828af14 fix: don't build alloca on unsupported targets
• b01316b Update Readme
• 4c02a3b Exclude development scripts from published package
• e4e06df chore: release v0.8.1
• aa548b9 fix: Homepage link
• 950c3b7 fix: Typo
• 7e3e50c chore(deps): bump crate-ci/typos from 1.23.5 to 1.40.0
• Additional commits viewable in compare view

Updates ctor from 0.6.1 to 0.6.3

Commits

• See full diff in compare view

Updates env_logger from 0.11.8 to 0.11.9

Release notes

Sourced from env_logger's releases.

v0.11.9

[0.11.9] - 2026-02-11

Changelog

Sourced from env_logger's changelog.

[0.11.9] - 2026-02-11

Commits

• 2f06b4c chore: Release
• 57e13ac chore: Release
• 4f9066d Merge pull request #393 from rust-cli/renovate/crate-ci-typos-1.x
• 3e4709a chore(deps): Update Rust crate snapbox to v0.6.24 (#394)
• 80ff83a chore(deps): Update pre-commit hook crate-ci/typos to v1.42.3
• 76891b9 Merge pull request #392 from epage/template
• 14cda4a chore: Update from _rust template
• e4f2b35 chore(ci): Update action
• 6d0d36b chore(ci): Clean up previous branch in case it was leaked
• 30b3b14 chore(ci): Fix how rustfmt jobs run
• Additional commits viewable in compare view

Updates insta from 1.44.3 to 1.46.3

Release notes

Sourced from insta's releases.

1.46.3

Release Notes

• Fix inline escaped snapshots incorrectly stripping leading newlines when content contains control characters like carriage returns. The escaped format (used for snapshots with control chars) now correctly preserves the original content without stripping a non-existent formatting newline. #865

Install cargo-insta 1.46.3

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/mitsuhiko/insta/releases/download/1.46.3/cargo-insta-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy Bypass -c "irm https://github.com/mitsuhiko/insta/releases/download/1.46.3/cargo-insta-installer.ps1 | iex"

Download cargo-insta 1.46.3

File	Platform	Checksum
cargo-insta-aarch64-apple-darwin.tar.xz	Apple Silicon macOS	checksum
cargo-insta-x86_64-apple-darwin.tar.xz	Intel macOS	checksum
cargo-insta-x86_64-pc-windows-msvc.zip	x64 Windows	checksum
cargo-insta-x86_64-unknown-linux-gnu.tar.xz	x64 Linux	checksum
cargo-insta-x86_64-unknown-linux-musl.tar.xz	x64 MUSL Linux	checksum

1.46.2

Release Notes

• Fix inline snapshot corruption with carriage returns. The leading_space() function incorrectly treated \r as indentation, causing carriage returns to be stripped from snapshot content. #866
• Remove < 0.4.17 upper bound on globset dependency. #864

Install cargo-insta 1.46.2

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/mitsuhiko/insta/releases/download/1.46.2/cargo-insta-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy Bypass -c "irm https://github.com/mitsuhiko/insta/releases/download/1.46.2/cargo-insta-installer.ps1 | iex"

Download cargo-insta 1.46.2

... (truncated)

Changelog

Sourced from insta's changelog.

1.46.3

• Fix inline escaped snapshots incorrectly stripping leading newlines when content contains control characters like carriage returns. The escaped format (used for snapshots with control chars) now correctly preserves the original content without stripping a non-existent formatting newline. #865

1.46.2

• Fix inline snapshot corruption with carriage returns. The leading_space() function incorrectly treated \r as indentation, causing carriage returns to be stripped from snapshot content. #866
• Remove < 0.4.17 upper bound on globset dependency. #864

1.46.1

• Fix inline snapshot corruption when multiple snapshots appear inside with_settings! macro. #858

1.46.0

• Add INSTA_PENDING_DIR environment variable for Bazel and other hermetic build systems. When set, pending snapshots are written to a separate directory while keeping the source tree read-only. We are very open to feedback on this feature. #852
• Fix documentation for test.runner_fallback config key. #853

1.45.1

• Fix backward compatibility with TOML format produced by insta < 1.45.0. #849 (@​chitoku-k)

1.45.0

• Add external diff tool support via INSTA_DIFF_TOOL environment variable. When set, insta uses the specified tool (e.g., delta, difftastic) to display snapshot diffs instead of the built-in diff. The tool is invoked as <tool> <old_file> <new_file>. #844
• Add test.disable_nextest_doctest config option to insta.yaml, allowing users to silence the nextest doctest warning via config instead of passing --dnd every time. #842
• Skip non-insta snapshot files in unreferenced detection. Projects using both insta and other snapshot tools (like vitest or jest) can now use --unreferenced=reject without false positives on .snap files from other tools. #846
• Collect warnings from tests for display after run. Ensures deprecation warnings are visible even when nextest suppresses stdout/stderr from passing tests. #840
• Update TOML serialization to be up-to-date and backwards-compatible. #834 (@​spoutn1k)
• Support clippy::needless_raw_strings lint by only using raw strings when content contains backslashes or quotes. #828

Commits

• 1324590 Release 1.46.3 (#870)
• b26bc7f Fix escaped format inline snapshots not stripping formatting newline (#869)
• 2ab00cc Release 1.46.2 (#867)
• 97c6f57 Fix inline snapshot corruption with carriage returns (#866)
• 2a9f7ad Remove globset version cap (#864)
• 8a5b775 Release 1.46.1 (#859)
• 822f404 Fix inline snapshot corruption with multiple snapshots in with_settings! (#858)
• 7d27e3a Release 1.46.0 (#855)
• 3aa59d6 Add INSTA_PENDING_DIR environment variable for hermetic builds (#852)
• fd40cf7 Fix docs for test.runner_fallback config key (#853)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions