Skip to content

Bump the dependencies group across 1 directory with 4 updates #211

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
dependabot wants to merge 1 commit into from
Closed

Bump the dependencies group across 1 directory with 4 updates #211

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 2, 2025
edited
Loading

Bumps the dependencies group with 4 updates in the / directory: cargo_metadata, clap, goblin and ureq.

Updates cargo_metadata from 0.21.0 to 0.23.1

Changelog

Sourced from cargo_metadata's changelog.

[0.23.1] - 2025-11-11

Changed

  • Stabilized build_directory

[0.23.0] - 2025-09-27

Added

  • Added FeatureName and PackageName newtype wrappers.

[0.22.0] - 2025-08-18

Added

  • Added pub fn env_remove<K: Into<OsString>>(&mut self, key: K) -> &mut MetadataCommand to MetadataCommand.
  • Added export of cargo_platform at crate's root module.

Changed

  • Updated dependencies:
    • camino from 1.0.7 to 1.1.10
    • cargo_platform from 0.2.0 to 0.3.0
    • derive_builder from 0.12 to 0.20
    • semver from 1.0.7 to 1.0.26
    • serde_json from 1.0.118 to 1.0.142
    • serde from 1.0.136 to 1.0.219
    • thiserror from 2.0.3 to 2.0.12
  • Made Dependency's source member the same type as Package's source member: Option<Source>.

[0.19.0] - 2024-11-20

Added

  • Re-exported semver crate directly.
  • Added implementation of std::ops::Index<&PackageId> for Resolve.
  • Added pub fn is_kind(&self, name: TargetKind) -> bool to Target.
  • Added derived implementations of PartialEq, Eq and Hash for Metadata and its members' types.
  • Added default fields to PackageBuilder.
  • Added pub fn new(name:version:id:path:) -> Self to PackageBuilder for providing all required fields upfront.

Changed

  • Bumped MSRV from 1.42.0 to 1.56.0.
  • Made parse_stream more versatile by accepting anything that implements Read.
  • Converted TargetKind and CrateType to an enum representation.

Removed

... (truncated)

Commits
  • c08e66c Merge pull request #317 from Muscraft/stabilize-build-dir
  • 083ca69 chore: Bump version to 0.23.1
  • 84d613b chore: Stabilize build_directory
  • 9d81809 chore: Address new clippy warnings
  • 4d66bd3 Merge pull request #309 from BD103/fix-doc-auto-config
  • d1a6aa2 fix: cargo_metadata not building on docs.rs
  • 2af44df Merge pull request #307 from smoelius/bump-version
  • 33cf6da Try to get CI to pass
  • 790de54 Bump version
  • 8af4dc4 Merge pull request #304 from smoelius/newtype-wrapper
  • Additional commits viewable in compare view

Updates clap from 4.5.52 to 4.5.53

Release notes

Sourced from clap's releases.

v4.5.53

[4.5.53] - 2025-11-19

Features

  • Add default_values_if, default_values_ifs
Changelog

Sourced from clap's changelog.

[4.5.53] - 2025-11-19

Features

  • Add default_values_if, default_values_ifs
Commits
  • 3716f9f chore: Release
  • 613b69a docs: Update changelog
  • d117f7a Merge pull request #6028 from epage/arg
  • cb8255d feat(builder): Allow quoted id's for arg macro
  • 1036060 Merge pull request #6025 from AldaronLau/typos-in-faq
  • 2fcafc0 docs: Fix minor grammar issues in FAQ
  • a380b65 Merge pull request #6023 from epage/template
  • 4d7ab14 chore: Update from _rust/main template
  • b8a7ea4 chore(deps): Update Rust Stable to v1.87 (#18)
  • f9842b3 chore: Avoid MSRV problems out of the box
  • Additional commits viewable in compare view

Updates goblin from 0.10.3 to 0.10.4

Changelog

Sourced from goblin's changelog.

[0.10.4] - 2025-11-30

Added

elf.reloc: add some missing PowerPC 32-bit relocation type constants, thanks @​ivlzme: m4b/goblin#495

Fixed

pe: Fix potential out-of-bounds read in unwind/POGO info parser, thanks @​kkent030315: m4b/goblin#498 pe: Reject cyclic resource trees, thanks @​Mrmaxmeier: m4b/goblin#499 pe: Handle unpadded resource values in .NET assemblies compiled with Mono, thanks @​BinFlip: m4b/goblin#501

Commits

Updates ureq from 2.12.1 to 3.1.4

Changelog

Sourced from ureq's changelog.

3.1.4

  • Set content-type with new Multipart form #1133

3.1.3

  • Fix short read with multi-byte charset #1131
  • Replace rustls-pemfile usage with rustls-pki-types #1122
  • Support for env NO_PROXY and proxy config #1118
  • Experimental multi-part form support #1102

3.1.2

  • Fix bug when query is after host "example.com?query" #1115

3.1.1

  • Fix regression in MSRV (hold back native-tls) #1113
  • Fix edge case regression when setting request header Content-Length: 0 #1109

3.1.0

DECISION: webpki-roots and webpki-root-certs goes from pre-release (0.26) to stable release (1.0.0). This is potentially a big change for ureq users. We release this as semver minor.

  • Bump all deps to latest #1104
  • Fixes to CONNECT to follow spec #1103
  • Send Content-Length for File #1100
  • native-tls transport capture and surface underlying errors #1093
  • Bump webpki-roots/webpki-root-certs to 1.0.0 #1089
  • Bump rustls-platform-verifier to 0.6.0 #1089
  • Allow the license CDLA-Permissive-2.0 #1089

3.0.12

  • Chunked transfer handle abrupt close after 0\r\n #1074
  • Fix incorrect DNS resolving when using proxies #1081
  • Use + instead of %20 for url encoded form bodies #1071
  • Fix problem with double-quotes in cookie values #1068
  • Reduce Body size #1065
  • Fix featue flag public_suffix for CookieStore #1063
  • Improve doc for 10MB limit #1061

3.0.11

  • Fix CONNECT proxy bug #1057
  • Fix bug setting cookies in redirects #1055
  • Annotated example for making a Transport #1054
  • Feature for adding unencoded query parameters #1039

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Dec 2, 2025
@dependabot
Bump the dependencies group across 1 directory with 4 updates
6f311a3 
Bumps the dependencies group with 4 updates in the / directory: [cargo_metadata](https://github.com/oli-obk/cargo_metadata), [clap](https://github.com/clap-rs/clap), [goblin](https://github.com/m4b/goblin) and [ureq](https://github.com/algesten/ureq).


Updates `cargo_metadata` from 0.21.0 to 0.23.1
- [Release notes](https://github.com/oli-obk/cargo_metadata/releases)
- [Changelog](https://github.com/oli-obk/cargo_metadata/blob/main/CHANGELOG.md)
- [Commits](oli-obk/cargo_metadata@0.21.0...0.23.1)

Updates `clap` from 4.5.52 to 4.5.53
- [Release notes](https://github.com/clap-rs/clap/releases)
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md)
- [Commits](clap-rs/clap@clap_complete-v4.5.52...clap_complete-v4.5.53)

Updates `goblin` from 0.10.3 to 0.10.4
- [Changelog](https://github.com/m4b/goblin/blob/master/CHANGELOG.md)
- [Commits](https://github.com/m4b/goblin/commits)

Updates `ureq` from 2.12.1 to 3.1.4
- [Changelog](https://github.com/algesten/ureq/blob/main/CHANGELOG.md)
- [Commits](algesten/ureq@2.12.1...3.1.4)

---
updated-dependencies:
- dependency-name: cargo_metadata
  dependency-version: 0.23.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: clap
  dependency-version: 4.5.53
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: goblin
  dependency-version: 0.10.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: ureq
  dependency-version: 3.1.4
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added rust Pull requests that update Rust code dependencies Pull requests that update a dependency file labels Dec 2, 2025
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Dec 8, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Dec 8, 2025
@dependabot dependabot bot deleted the dependabot/cargo/dependencies-2dfe11f050 branch December 8, 2025 22:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update Rust code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants