Bump the all-dependencies-cargo group with 9 updates

[dependabot]

Bumps the all-dependencies-cargo group with 9 updates:

Package	From	To
toml	0.8.10	0.8.12
serde_json	1.0.114	1.0.115
git2	0.18.2	0.18.3
rayon	1.9.0	1.10.0
regex	1.10.3	1.10.4
yansi	0.5.1	1.0.1
reqwest	0.11.24	0.12.2
tokio	1.36.0	1.37.0
clap	4.5.1	4.5.4

Updates toml from 0.8.10 to 0.8.12

Commits

• 3a777b3 chore: Release
• 7979905 docs: Update changelog
• 487768d Merge pull request #703 from epage/overflow
• 6987f77 chore(ci): Run with default opt-level
• 21f545d fix(parser): Don't stackoverflow on opt-level=0
• af1f97d refactor(parser): Pull recursion limit out to variable
• eb86543 chore: Release
• 246b292 docs: Update changelog
• d41c62c Merge pull request #701 from epage/cleanup
• 31457b3 refactor(error): Clean up highlight code
• Additional commits viewable in compare view

Updates serde_json from 1.0.114 to 1.0.115

Release notes

Sourced from serde_json's releases.

v1.0.115

• Documentation improvements

Commits

• b1ebf38 Release 1.0.115
• c3dc153 Merge pull request #1119 from titaniumtraveler/pr
• 218770b Explicitly install a Rust toolchain for cargo-outdated job
• 840da8e Fix missing backticks in doc comments
• 3a3f61b Temporarily disable miri on doctests
• 4a0be88 Format regression tests with rustfmt
• d2dbbf7 Ignore dead code lint in tests
• 8e7b37b Merge pull request #1118 from serde-rs/transparent
• a25f6c6 Remove conditional on repr(transparent)
• fedf834 Ignore non_local_definitions false positive in test
• See full diff in compare view

Updates git2 from 0.18.2 to 0.18.3

Changelog

Sourced from git2's changelog.

0.18.3 - 2024-03-18

0.18.2...0.18.3

Added

• Added opts:: functions to get / set libgit2 mwindow options #1035

Changed

• Updated examples to use clap instead of structopt #1007

Commits

• 04427a3 Merge pull request #1037 from ehuss/fix-publish
• 389a06f Fix publish not following redirect
• a7f2ac4 Merge pull request #1036 from rpelliard/release-0.19.0
• 1456fcd Release 0.18.3
• 3778952 Merge pull request #1035 from rpelliard/mwindow-opts
• 68880b2 make functions unsafe
• a75e007 Merge pull request #1007 from tamird/clap
• 1e6524e use libc::size_t as param type
• 8d18374 Add bindings for mwindow opts
• 3da58f3 Merge pull request #1023 from ehuss/ctest2
• Additional commits viewable in compare view

Updates rayon from 1.9.0 to 1.10.0

Changelog

Sourced from rayon's changelog.

Release rayon 1.10.0 (2024-03-23)

• The new methods ParallelSlice::par_chunk_by and ParallelSliceMut::par_chunk_by_mut work like the slice methods chunk_by and chunk_by_mut added in Rust 1.77.

Commits

• 4a6e9bf Merge #991
• b0008f3 Release rayon 1.6.0 / rayon-core 1.10.0
• c2dfa5c Merge #990
• 17f5b08 fix typo
• ca9b279 Merge #989
• a119f23 Unify chunks, fold_chunks, and fold_chunks_with
• 911d6d0 Merge #492
• 9ef85cd Add some documentation about when broadcasts run
• bd7b61c Add more internal enforcement of static/scope lifetimes
• 812ca02 Simplify calls that use the panic_handler
• Additional commits viewable in compare view

Updates regex from 1.10.3 to 1.10.4

Commits

• aa2d8bd 1.10.4
• 088d7f3 api: add Cow guarantee to replace API
• a5ae351 regex-automata-0.4.6
• 9cf4a42 automata: fix bug where reverse NFA lacked an unanchored prefix
• 10fe722 style: clean up some recent lint violations
• d7f9347 regex-automata-0.4.5
• 07ef7f1 automata: make additional prefileter metadata public
• See full diff in compare view

Updates yansi from 0.5.1 to 1.0.1

Release notes

Sourced from yansi's releases.

v1.0.0

Version 1.0.0 of yansi is now available.

For most users, upgrading will consist largely of changing calls of the form Paint::foo(value) to value.foo():

- use yansi::{Paint, Color};
+ use yansi::Paint;
println!("Testing, {}, {}, {}!",

Paint::red(1),


1.red(),


Paint::green(2).bold().underline(),


2.green().bold().underline(),


Paint::blue("3").bg(Color::White).italic());


"3".blue().on_white().italic());

Please see the rustdocs for complete documentation.

Commits

• See full diff in compare view

Updates reqwest from 0.11.24 to 0.12.2

Release notes

Sourced from reqwest's releases.

v0.12.2

What's Changed

• Fix missing ALPN when connecting to socks5 proxy with rustls.
• Fix TLS version limits with rustls.
• Fix not detected ALPN h2 from server with native-tls.

New Contributors

• @​cxw620 made their first contribution in seanmonstar/reqwest#2165

Full Changelog: seanmonstar/reqwest@v0.12.1...v0.12.2

v0.12.1

What's Changed

• Fix ClientBuilder::interface() when no TLS is enabled.
• Fix TlsInfo::peer_certificate() being truncated with rustls.
• Fix panic if http2 feature disabled but TLS negotiated h2 in ALPN.
• Fix Display for Error to not include its source error.

New Contributors

• @​atouchet made their first contribution in seanmonstar/reqwest#2193
• @​mbme made their first contribution in seanmonstar/reqwest#2195

Full Changelog: seanmonstar/reqwest@v0.12.0...v0.12.1

v0.12.0

What's Changed

• Upgrade to hyper, http, and http-body v1.
• Add better support for converting to and from http::Request and http::Response.
• Add http2 optional cargo feature, default on.
• Add charset optional cargo feature, default on.
• Add macos-system-configuration cargo feature, default on.
• Change all optional dependencies to no longer be exposed as implicit features.
• Add ClientBuilder::interface(str) to specify the local interface to bind to.
• Experimental: disables the http3 feature temporarily.

Full Changelog: seanmonstar/reqwest@v0.11.27...v0.12.0

v0.11.27

What's Changed

• Add hickory-dns feature, deprecating trust-dns.
• (wasm) Fix Form::text() to not set octet-stream for plain text fields.

New Contributors

• @​ashdnazg made their first contribution in seanmonstar/reqwest#2174

Full Changelog: seanmonstar/reqwest@v0.11.26...v0.11.27

... (truncated)

Changelog

Sourced from reqwest's changelog.

v0.12.2

• Fix missing ALPN when connecting to socks5 proxy with rustls.
• Fix TLS version limits with rustls.
• Fix not detected ALPN h2 from server with native-tls.

v0.12.1

• Fix ClientBuilder::interface() when no TLS is enabled.
• Fix TlsInfo::peer_certificate() being truncated with rustls.
• Fix panic if http2 feature disabled but TLS negotiated h2 in ALPN.
• Fix Display for Error to not include its source error.

v0.12.0

• Upgrade to hyper, http, and http-body v1.
• Add better support for converting to and from http::Request and http::Response.
• Add http2 optional cargo feature, default on.
• Add charset optional cargo feature, default on.
• Add macos-system-configuration cargo feature, default on.
• Change all optional dependencies to no longer be exposed as implicit features.
• Add ClientBuilder::interface(str) to specify the local interface to bind to.
• Experimental: disables the http3 feature temporarily.

v0.11.27

• Add hickory-dns feature, deprecating trust-dns.
• (wasm) Fix Form::text() to not set octet-stream for plain text fields.

v0.11.26

• Revert system-configuration upgrade, which broke MSRV on macOS.

v0.11.25

• Fix Certificate::from_pem_bundle() parsing.
• Fix Apple linker errors from detecting system proxies.

Commits

• 6768a8e v0.12.2
• fff307b fix(connect): ALPN missed when using socks5 proxy with rustls backend (#2164)
• 04bf45f fix: tls version limit for rustls (#2203)
• 056f8c4 fix(connect): not negotiate h2 when using native-tls backend (#2165)
• e0ea15b v0.12.1
• 3d78fcb fix: Display for Error shouldn't include source (#2199)
• c535724 Fix binding interface when no TLS is used (#2200)
• d5adcba fix: rustls extraction of TlsInfo::peer_certificate() being truncated (#2195)
• 7a5df21 fix: could panic if http2 disabled but TLS negotiated h2 (#2194)
• d5051f9 Update version number in Readme
• Additional commits viewable in compare view

Updates tokio from 1.36.0 to 1.37.0

Release notes

Sourced from tokio's releases.

Tokio v1.37.0

1.37.0 (March 28th, 2024)

Added

• fs: add set_max_buf_size to tokio::fs::File (#6411)
• io: add try_new and try_with_interest to AsyncFd (#6345)
• sync: add forget_permits method to semaphore (#6331)
• sync: add is_closed, is_empty, and len to mpsc receivers (#6348)
• sync: add a rwlock() method to owned RwLock guards (#6418)
• sync: expose strong and weak counts of mpsc sender handles (#6405)
• sync: implement Clone for watch::Sender (#6388)
• task: add TaskLocalFuture::take_value (#6340)
• task: implement FromIterator for JoinSet (#6300)

Changed

• io: make io::split use a mutex instead of a spinlock (#6403)

Fixed

• docs: fix docsrs build without net feature (#6360)
• macros: allow select with only else branch (#6339)
• runtime: fix leaking registration entries when os registration fails (#6329)

Documented

• io: document cancel safety of AsyncBufReadExt::fill_buf (#6431)
• io: document cancel safety of AsyncReadExt's primitive read functions (#6337)
• runtime: add doc link from Runtime to #[tokio::main] (#6366)
• runtime: make the enter example deterministic (#6351)
• sync: add Semaphore example for limiting the number of outgoing requests (#6419)
• sync: fix missing period in broadcast docs (#6377)
• sync: mark mpsc::Sender::downgrade with #[must_use] (#6326)
• sync: reorder const_new before new_with (#6392)
• sync: update watch channel docs (#6395)
• task: fix documentation links (#6336)

Changed (unstable)

• runtime: include task Id in taskdumps (#6328)
• runtime: panic if unhandled_panic is enabled when not supported (#6410)

#6300: tokio-rs/tokio#6300 #6326: tokio-rs/tokio#6326 #6328: tokio-rs/tokio#6328 #6329: tokio-rs/tokio#6329 #6331: tokio-rs/tokio#6331 #6336: tokio-rs/tokio#6336 #6337: tokio-rs/tokio#6337

... (truncated)

Commits

• 9c337ca chore: prepare Tokio v1.37.0 (#6435)
• e542501 io: document cancel safety of AsyncBufReadExt::fill_buf (#6431)
• 4601c84 stream: add next_many and poll_next_many to StreamMap (#6409)
• deff252 util: document cancel safety of SinkExt::send and StreamExt::next (#6417)
• 4565b81 sync: add a rwlock() method to owned RwLock guards (#6418)
• 3ce4720 sync: add is_closed, is_empty, and len to mpsc receivers (#6348)
• 8342e4b util: assert compatibility between LengthDelimitedCodec options (#6414)
• 4c453e9 readme: add description about benchmarks (#6425)
• 1846483 sync: expose strong and weak counts of mpsc sender handles (#6405)
• baad270 sync: add Semaphore example for limiting the number of outgoing requests (#6419)
• Additional commits viewable in compare view

Updates clap from 4.5.1 to 4.5.4

Release notes

Sourced from clap's releases.

v4.5.4

[4.5.4] - 2024-03-25

Fixes

• (derive) Allow non-literal #[arg(id)] attributes again

v4.5.3

[4.5.3] - 2024-03-15

Internal

• (derive) Update heck

v4.5.2

[4.5.2] - 2024-03-06

Fixes

• (macros) Silence a warning

Changelog

Sourced from clap's changelog.

[4.5.4] - 2024-03-25

Fixes

• (derive) Allow non-literal #[arg(id)] attributes again

[4.5.3] - 2024-03-15

Internal

• (derive) Update heck

[4.5.2] - 2024-03-06

Fixes

• (macros) Silence a warning

Commits

• 5e4facf chore: Release
• 8880b0a docs: Update changelog
• 132b5dd Merge pull request #5425 from epage/lit
• df915fe fix(derive): Re-allow expressions for id's
• 8eab48f refactor(derive): Make it easier to work with 'Name'
• be73195 refactor(derive): Clarify tests
• 024089b Merge pull request #5415 from Pi-Cla/patch-1
• 3b35dba docs: Add mention of nushell to clap_complete README
• 58469d1 Merge pull request #5405 from epage/docs
• 655d829 docs(derive): Fix ToC links within tutorial chapters
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[bomgar]

@dependabot rebase

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.