Bump the cargo-deps group with 6 updates

[dependabot]

Bumps the cargo-deps group with 6 updates:

Package	From	To
indexmap	2.11.4	2.12.0
proc-macro2	1.0.101	1.0.103
syn	2.0.106	2.0.108
indicatif	0.18.0	0.18.1
clap	4.5.49	4.5.50
warp	0.3.7	0.4.2

Updates indexmap from 2.11.4 to 2.12.0

Changelog

Sourced from indexmap's changelog.

2.12.0 (2025-10-17)

• MSRV: Rust 1.82.0 or later is now required.
• Updated the hashbrown dependency to 0.16 alone.
• Error types now implement core::error::Error.
• Added pop_if methods to IndexMap and IndexSet, similar to the method for Vec added in Rust 1.86.

Commits

• 0e68f8a Merge pull request #422 from cuviper/msrv-1.82
• 61c9c94 ci: only run full miri in the merge queue
• db43f19 Release 2.12.0
• b46a32a Move more to the lints table
• 4849b16 Make use of RFC2145 type privacy for sealed traits
• cfff4b7 Use bounds in associated type position
• c7178d7 Use core::error::Error
• 76b459b Use more precise capturing for some impl Trait
• b3d9cc3 Use the primitive slice's is_sorted methods
• 09db3cc Use inherent usize::div_ceil
• Additional commits viewable in compare view

Updates proc-macro2 from 1.0.101 to 1.0.103

Release notes

Sourced from proc-macro2's releases.

1.0.103

• Add semver-exempt Literal methods str_value, cstr_value, byte_str_value (#525)

1.0.102

• Fix interaction of Display impls for TokenStream and Ident with formatting specifiers for padding, alignment, width (#523, #524)

Commits

• d1bf13a Release 1.0.103
• 29e08c0 Merge pull request #525 from dtolnay/literalvalue
• f9eec24 Restore support for rustc older than 1.74
• cc983fc Restore support for rustc older than 1.79
• 465f781 Restore support for rustc older than 1.89
• ab5231c Add string literal value tests
• 4c039a8 Add Literal methods from proc_macro_value feature
• 885fde9 Vendor rustc_literal_escaper v0.0.5
• 39b016a Release 1.0.102
• c3870f1 Add raw identifier Debug test
• Additional commits viewable in compare view

Updates syn from 2.0.106 to 2.0.108

Release notes

Sourced from syn's releases.

2.0.108

• Parse unrecognized or invalid literals as Lit::Verbatim (#1925)

2.0.107

• Improve panic message when constructing a LitInt, LitFloat, or Lit from invalid syntax (#1917)
• Improve panic message on Punctuated index out of bounds (#1922)

Commits

• 7a7e331 Release 2.0.108
• 30463af Merge pull request #1926 from dtolnay/litfuzz
• 1cc9167 Add fuzzer for literal parsing
• c49e1d3 Merge pull request #1925 from dtolnay/litparse
• d047536 Report unexpected verbatim literals in test
• ce97767 Parse unrecognized or invalid literals as Lit::Verbatim
• e4a8957 Release 2.0.107
• 1792e83 Merge pull request #1922 from dtolnay/outofbounds
• 532e4af Improve panic message on Punctuated index out of bounds
• 909c222 Add test of Punctuated indexing
• Additional commits viewable in compare view

Updates indicatif from 0.18.0 to 0.18.1

Release notes

Sourced from indicatif's releases.

0.18.1

What's Changed

• Do not render "current" char if no "current" char is configured by @​Finomnis in console-rs/indicatif#719
• Update vt100 requirement from 0.15.1 to 0.16.1 by @​dependabot[bot] in console-rs/indicatif#723
• Bump MSRV to 1.71 with versioned lockfile by @​djc in console-rs/indicatif#735
• Fix wide_bar width computation with a multiline message by @​glehmann in console-rs/indicatif#738

Commits

• e836112 Bump version to 0.18.1
• e69d621 Fix wide_bar width computation with multiline a message
• 985f053 Bump MSRV to 1.71 (for console 0.16.1)
• 5436ffc Start versioning Cargo.lock
• e1f410d Update vt100 requirement from 0.15.1 to 0.16.1
• b3e94be Do not draw "current" char if none is configured
• 771a27e Add test for multicolor style without current char
• See full diff in compare view

Updates clap from 4.5.49 to 4.5.50

Release notes

Sourced from clap's releases.

v4.5.50

[4.5.50] - 2025-10-20

Features

• Accept Cow where String and &str are accepted

Changelog

Sourced from clap's changelog.

[4.5.50] - 2025-10-20

Features

• Accept Cow where String and &str are accepted

Commits

• d8acd47 chore: Release
• 7c2b8d9 docs: Update changelog
• e69a2ea Merge pull request #5987 from mernen/fix-bash-comp-words-loop
• e03cc2e Merge pull request #5988 from cordx56/fix-builder-custom-version-docs
• 5ab2579 fix: Minor fix for builder docs about version
• 2f66432 fix(complete): Only parse arguments before current
• 4d9d210 test(complete): Illustrate current behavior in Bash
• See full diff in compare view

Updates warp from 0.3.7 to 0.4.2

Release notes

Sourced from warp's releases.

v0.4.1

Fixes:

• Fix Server::graceful() bounds incorrect requiring the filter to be a future.
• Enable tokio/net when the server feature is enabled.
• Render cfgs in the docs.

Full Changelog: seanmonstar/warp@v0.4.0...v0.4.1

v0.4.0

Changes:

• Upgrade to hyper, http, and http-body to v1.
• Remove multipart and websocket features from being enabled by default.
• Put warp::serve() behind a server feature, not enabled by default.
• Put warp::test behind a test feature, not enabled by default.
• Remove tls feature and types.
• Remove warp::addr filters.

Full Changelog: seanmonstar/warp@v0.3.7...v0.4.0

Changelog

Sourced from warp's changelog.

v0.4.2 (August 19, 2025)

• Features:
  • Add support for passing UnixListener to incoming(listener).
• Fixes:
  • Reduce some dependencies when server is not enabled.

v0.4.1 (August 6, 2025)

• Fixes:
  • Fix Server::graceful() bounds incorrect requiring the filter to be a future.
  • Enable tokio/net when the server feature is enabled.
  • Render cfgs in the docs.

v0.4.0 (August 5, 2025)

• Changes:
  • Upgrade to hyper, http, and http-body to v1.
  • Remove multipart and websocket features from being enabled by default.
  • Put warp::serve() behind a server feature, not enabled by default.
  • Put warp::test behind a test feature, not enabled by default.
  • Remove tls feature and types.
  • Remove warp::addr filters.

Commits

• c29f293 v0.4.2
• 3867d41 feat: implement Accept for tokio::net::UnixListener (#1135)
• d120a0e deps: make futures-channel optional dependency (#1134)
• 3641ea7 deps: make hyper optional dependency (#1133)
• f4d8e08 ci: update to actions/checkout v4 (#1131)
• 4f3f653 Bump http-body-util min version to 0.1.2 (#1129)
• e5001e2 Move to minimum working hyper util (#1128)
• eea3a28 v0.4.1
• 53bc811 docs: ensure Server methods have docs (#1125)
• 8673081 fix: server.graceful() had wrong trait bounds
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Benchmark - core

Yew Master

vnode           fastest       │ slowest       │ median        │ mean          │ samples │ iters
╰─ vnode_clone  2.462 ns      │ 3.717 ns      │ 2.467 ns      │ 2.548 ns      │ 100     │ 1000000000

Pull Request

vnode           fastest       │ slowest       │ median        │ mean          │ samples │ iters
╰─ vnode_clone  2.461 ns      │ 3.729 ns      │ 2.47 ns       │ 2.98 ns       │ 100     │ 1000000000

[github-actions]

Visit the preview URL for this PR (updated for commit 959f3a7):

https://yew-rs-api--pr3936-dependabot-cargo-car-qs78l4so.web.app

_{(expires Fri, 31 Oct 2025 03:06:24 GMT)}

_{🔥 via Firebase Hosting GitHub Action 🌎}

[github-actions]

Benchmark - SSR

Yew Master

Details

Benchmark	Round	Min (ms)	Max (ms)	Mean (ms)	Standard Deviation
Baseline	10	310.509	311.225	310.771	0.248
Hello World	10	507.422	574.702	516.024	20.893
Function Router	10	1695.546	1707.922	1701.523	3.825
Concurrent Task	10	1005.286	1007.716	1006.605	0.673
Many Providers	10	1110.359	1157.879	1137.991	14.237

Pull Request

Details

Benchmark	Round	Min (ms)	Max (ms)	Mean (ms)	Standard Deviation
Baseline	10	310.455	311.327	310.691	0.269
Hello World	10	509.930	527.492	514.007	5.373
Function Router	10	1717.859	1738.998	1729.297	6.604
Concurrent Task	10	1005.106	1007.668	1006.618	0.740
Many Providers	10	1099.731	1131.131	1108.529	9.666

[github-actions]

Size Comparison

Details

examples	master (KB)	pull request (KB)	diff (KB)	diff (%)
async_clock	98.411	98.343	-0.068	-0.069%
boids	167.362	167.332	-0.030	-0.018%
communication_child_to_parent	91.521	91.492	-0.028	-0.031%
communication_grandchild_with_grandparent	102.628	102.600	-0.028	-0.028%
communication_grandparent_to_grandchild	98.986	98.957	-0.029	-0.030%
communication_parent_to_child	88.844	88.813	-0.030	-0.034%
contexts	103.967	103.935	-0.032	-0.031%
counter	85.527	85.497	-0.030	-0.035%
counter_functional	85.792	85.761	-0.031	-0.036%
dyn_create_destroy_apps	88.604	88.651	+0.047	+0.053%
file_upload	97.884	98.034	+0.150	+0.154%
function_delayed_input	91.124	91.184	+0.060	+0.065%
function_memory_game	169.791	169.666	-0.125	-0.074%
function_router	329.139	329.464	+0.325	+0.099%
function_todomvc	162.222	162.110	-0.111	-0.069%
futures	237.633	236.880	-0.753	-0.317%
game_of_life	104.207	104.088	-0.119	-0.114%
immutable	193.033	192.699	-0.334	-0.173%
inner_html	79.983	79.953	-0.030	-0.038%
js_callback	107.407	107.368	-0.039	-0.036%
keyed_list	179.754	179.727	-0.027	-0.015%
mount_point	83.211	83.184	-0.027	-0.033%
nested_list	113.013	112.903	-0.109	-0.097%
node_refs	90.859	90.829	-0.030	-0.033%
password_strength	1751.605	1751.215	-0.391	-0.022%
portals	92.355	92.327	-0.028	-0.031%
router	302.853	303.179	+0.326	+0.108%
suspense	111.702	111.752	+0.050	+0.045%
timer	88.202	88.172	-0.030	-0.034%
timer_functional	95.944	95.910	-0.034	-0.036%
todomvc	142.285	142.169	-0.116	-0.082%
two_apps	85.251	85.221	-0.030	-0.036%
web_worker_fib	132.962	133.111	+0.149	+0.112%
web_worker_prime	185.220	185.367	+0.147	+0.080%
webgl	82.541	82.584	+0.043	+0.052%

✅ None of the examples has changed their size significantly.

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.