build(deps): Bump the rust-dependencies group with 9 updates

[dependabot]

Bumps the rust-dependencies group with 9 updates:

Package	From	To
tokio	1.36.0	1.37.0
clap	4.5.1	4.5.4
clap_complete	4.5.1	4.5.2
serde	1.0.197	1.0.199
serde_json	1.0.114	1.0.116
reqwest	0.11.24	0.12.4
shelby	64aa4d2	029163d
figment	0.10.14	0.10.18
pyo3	0.20.3	0.21.2

Updates tokio from 1.36.0 to 1.37.0

Release notes

Sourced from tokio's releases.

Tokio v1.37.0

1.37.0 (March 28th, 2024)

Added

• fs: add set_max_buf_size to tokio::fs::File (#6411)
• io: add try_new and try_with_interest to AsyncFd (#6345)
• sync: add forget_permits method to semaphore (#6331)
• sync: add is_closed, is_empty, and len to mpsc receivers (#6348)
• sync: add a rwlock() method to owned RwLock guards (#6418)
• sync: expose strong and weak counts of mpsc sender handles (#6405)
• sync: implement Clone for watch::Sender (#6388)
• task: add TaskLocalFuture::take_value (#6340)
• task: implement FromIterator for JoinSet (#6300)

Changed

• io: make io::split use a mutex instead of a spinlock (#6403)

Fixed

• docs: fix docsrs build without net feature (#6360)
• macros: allow select with only else branch (#6339)
• runtime: fix leaking registration entries when os registration fails (#6329)

Documented

• io: document cancel safety of AsyncBufReadExt::fill_buf (#6431)
• io: document cancel safety of AsyncReadExt's primitive read functions (#6337)
• runtime: add doc link from Runtime to #[tokio::main] (#6366)
• runtime: make the enter example deterministic (#6351)
• sync: add Semaphore example for limiting the number of outgoing requests (#6419)
• sync: fix missing period in broadcast docs (#6377)
• sync: mark mpsc::Sender::downgrade with #[must_use] (#6326)
• sync: reorder const_new before new_with (#6392)
• sync: update watch channel docs (#6395)
• task: fix documentation links (#6336)

Changed (unstable)

• runtime: include task Id in taskdumps (#6328)
• runtime: panic if unhandled_panic is enabled when not supported (#6410)

#6300: tokio-rs/tokio#6300 #6326: tokio-rs/tokio#6326 #6328: tokio-rs/tokio#6328 #6329: tokio-rs/tokio#6329 #6331: tokio-rs/tokio#6331 #6336: tokio-rs/tokio#6336 #6337: tokio-rs/tokio#6337

... (truncated)

Commits

• 9c337ca chore: prepare Tokio v1.37.0 (#6435)
• e542501 io: document cancel safety of AsyncBufReadExt::fill_buf (#6431)
• 4601c84 stream: add next_many and poll_next_many to StreamMap (#6409)
• deff252 util: document cancel safety of SinkExt::send and StreamExt::next (#6417)
• 4565b81 sync: add a rwlock() method to owned RwLock guards (#6418)
• 3ce4720 sync: add is_closed, is_empty, and len to mpsc receivers (#6348)
• 8342e4b util: assert compatibility between LengthDelimitedCodec options (#6414)
• 4c453e9 readme: add description about benchmarks (#6425)
• 1846483 sync: expose strong and weak counts of mpsc sender handles (#6405)
• baad270 sync: add Semaphore example for limiting the number of outgoing requests (#6419)
• Additional commits viewable in compare view

Updates clap from 4.5.1 to 4.5.4

Release notes

Sourced from clap's releases.

v4.5.4

[4.5.4] - 2024-03-25

Fixes

• (derive) Allow non-literal #[arg(id)] attributes again

v4.5.3

[4.5.3] - 2024-03-15

Internal

• (derive) Update heck

v4.5.2

[4.5.2] - 2024-03-06

Fixes

• (macros) Silence a warning

Changelog

Sourced from clap's changelog.

[4.5.4] - 2024-03-25

Fixes

• (derive) Allow non-literal #[arg(id)] attributes again

[4.5.3] - 2024-03-15

Internal

• (derive) Update heck

[4.5.2] - 2024-03-06

Fixes

• (macros) Silence a warning

Commits

• 5e4facf chore: Release
• 8880b0a docs: Update changelog
• 132b5dd Merge pull request #5425 from epage/lit
• df915fe fix(derive): Re-allow expressions for id's
• 8eab48f refactor(derive): Make it easier to work with 'Name'
• be73195 refactor(derive): Clarify tests
• 024089b Merge pull request #5415 from Pi-Cla/patch-1
• 3b35dba docs: Add mention of nushell to clap_complete README
• 58469d1 Merge pull request #5405 from epage/docs
• 655d829 docs(derive): Fix ToC links within tutorial chapters
• Additional commits viewable in compare view

Updates clap_complete from 4.5.1 to 4.5.2

Release notes

Sourced from clap_complete's releases.

v4.5.2

[4.5.2] - 2024-03-06

Fixes

• (macros) Silence a warning

Changelog

Sourced from clap_complete's changelog.

[4.5.2] - 2024-03-06

Fixes

• (macros) Silence a warning

Commits

• 3092aa4 chore: Release
• dc33328 docs: Update changelog
• a78b953 Merge pull request #5444 from sudotac/fix-broken-completion-on-bash-4.0
• 93d4045 docs: Fix typo
• cd82f8c fix(complete): Avoid use of -v in bash completion
• 9d14f39 chore(deps): update compatible (dev) (#5438)
• 5e4facf chore: Release
• 8880b0a docs: Update changelog
• 132b5dd Merge pull request #5425 from epage/lit
• df915fe fix(derive): Re-allow expressions for id's
• Additional commits viewable in compare view

Updates serde from 1.0.197 to 1.0.199

Release notes

Sourced from serde's releases.

v1.0.199

• Fix ambiguous associated item when forward_to_deserialize_any! is used on an enum with Error variant (#2732, thanks @​aatifsyed)

v1.0.198

• Support serializing and deserializing Saturating<T> (#2709, thanks @​jbethune)

Commits

• 1477028 Release 1.0.199
• 789740b Merge pull request #2732 from aatifsyed/master
• 8fe7539 fix: ambiguous associated type in forward_to_deserialize_any!
• f6623a3 Ignore cast_precision_loss pedantic clippy lint
• c4fb923 Release 1.0.198
• 65b7eea Merge pull request #2729 from dtolnay/saturating
• 01cd696 Integrate Saturating<T> deserialization into impl_deserialize_num macro
• c13b3f7 Format PR 2709
• a6571ee Merge pull request #2709 from jbethune/master
• 6e38aff Revert "Temporarily disable miri on doctests"
• Additional commits viewable in compare view

Updates serde_json from 1.0.114 to 1.0.116

Release notes

Sourced from serde_json's releases.

v1.0.116

• Make module structure comprehensible to static analysis (#1124, thanks @​mleonhard)

v1.0.115

• Documentation improvements

Commits

• a3f62bb Release 1.0.116
• 12c8ee0 Hide "non-exhaustive patterns" errors when crate fails to compile
• 051ce97 Merge pull request 1124 from mleonhard/master
• 25dc750 Replace features_check mod with a call to std::compile_error!. Fixes htt...
• 2e15e3d Revert "Temporarily disable miri on doctests"
• 0baba28 Resolve legacy_numeric_constants clippy lints
• b1ebf38 Release 1.0.115
• c3dc153 Merge pull request #1119 from titaniumtraveler/pr
• 218770b Explicitly install a Rust toolchain for cargo-outdated job
• 840da8e Fix missing backticks in doc comments
• Additional commits viewable in compare view

Updates reqwest from 0.11.24 to 0.12.4

Release notes

Sourced from reqwest's releases.

v0.12.4

What's Changed

• Add zstd support, enabled with zstd Cargo feature (thanks @​paolobarbolini!)
• Add ClientBuilder::read_timeout(Duration), which applies the duration for each read operation. The timeout resets after a successful read.

New Contributors

• @​SamuelMarks made their first contribution in seanmonstar/reqwest#2245

v0.12.3

What's Changed

• Add FromStr for dns::Name.
• Add ClientBuilder::built_in_webpki_certs(bool) to enable them separately.
• Add ClientBuilder::built_in_native_certs(bool) to enable them separately.
• Fix sending content-length: 0 for GET requests.
• Fix response body content_length() to return value when timeout is configured.
• Fix ClientBuilder::resolve() to use lowercase domain names.

New Contributors

• @​zuisong made their first contribution in seanmonstar/reqwest#2207
• @​djc made their first contribution in seanmonstar/reqwest#2222
• @​krant made their first contribution in seanmonstar/reqwest#2226
• @​Kriskras99 made their first contribution in seanmonstar/reqwest#2236

Full Changelog: seanmonstar/reqwest@v0.12.2...v0.12.3

v0.12.2

What's Changed

• Fix missing ALPN when connecting to socks5 proxy with rustls.
• Fix TLS version limits with rustls.
• Fix not detected ALPN h2 from server with native-tls.

New Contributors

• @​cxw620 made their first contribution in seanmonstar/reqwest#2165

Full Changelog: seanmonstar/reqwest@v0.12.1...v0.12.2

v0.12.1

What's Changed

• Fix ClientBuilder::interface() when no TLS is enabled.
• Fix TlsInfo::peer_certificate() being truncated with rustls.
• Fix panic if http2 feature disabled but TLS negotiated h2 in ALPN.
• Fix Display for Error to not include its source error.

New Contributors

• @​atouchet made their first contribution in seanmonstar/reqwest#2193
• @​mbme made their first contribution in seanmonstar/reqwest#2195

Full Changelog: seanmonstar/reqwest@v0.12.0...v0.12.1

... (truncated)

Changelog

Sourced from reqwest's changelog.

v0.12.4

• Add zstd support, enabled with zstd Cargo feature.
• Add ClientBuilder::read_timeout(Duration), which applies the duration for each read operation. The timeout resets after a successful read.

v0.12.3

• Add FromStr for dns::Name.
• Add ClientBuilder::built_in_webpki_certs(bool) to enable them separately.
• Add ClientBuilder::built_in_native_certs(bool) to enable them separately.
• Fix sending content-length: 0 for GET requests.
• Fix response body content_length() to return value when timeout is configured.
• Fix ClientBuilder::resolve() to use lowercase domain names.

v0.12.2

• Fix missing ALPN when connecting to socks5 proxy with rustls.
• Fix TLS version limits with rustls.
• Fix not detected ALPN h2 from server with native-tls.

v0.12.1

• Fix ClientBuilder::interface() when no TLS is enabled.
• Fix TlsInfo::peer_certificate() being truncated with rustls.
• Fix panic if http2 feature disabled but TLS negotiated h2 in ALPN.
• Fix Display for Error to not include its source error.

v0.12.0

• Upgrade to hyper, http, and http-body v1.
• Add better support for converting to and from http::Request and http::Response.
• Add http2 optional cargo feature, default on.
• Add charset optional cargo feature, default on.
• Add macos-system-configuration cargo feature, default on.
• Change all optional dependencies to no longer be exposed as implicit features.
• Add ClientBuilder::interface(str) to specify the local interface to bind to.
• Experimental: disables the http3 feature temporarily.

v0.11.27

• Add hickory-dns feature, deprecating trust-dns.
• (wasm) Fix Form::text() to not set octet-stream for plain text fields.

v0.11.26

• Revert system-configuration upgrade, which broke MSRV on macOS.

v0.11.25

• Fix Certificate::from_pem_bundle() parsing.

... (truncated)

Commits

• de5dbb1 v0.12.4
• 0f126f5 tests: fix blocking test about empty bodies and content-length
• 1073881 feat: add zstd support (#1866)
• 1af8945 feat: add ClientBuilder::read_timeout(dur) (#2241)
• e99da85 refactor: fix warnings related to mutability of self (#2245)
• 0720159 v0.12.3
• 9209695 Remove duplicate example for ClientBuilder::default_headers (#2236)
• e3a1565 fix: use lower case domain string when using resolve and resolve_to_addrs...
• b4c491a feat: allow fine-grained root certs for rustls (#2232)
• cf4295d chore: update winreg to 0.52.0 (#2226)
• Additional commits viewable in compare view

Updates shelby from 64aa4d2 to 029163d

Commits

• 029163d build(deps): bump the ci-dependencies group with 1 update (#19)
• See full diff in compare view

Updates figment from 0.10.14 to 0.10.18

Commits

• 4bb7876 New version: 0.10.18.
• 2c83ffa Add lossy extraction.
• d2a31e8 New version: 0.10.17.
• 94d09e1 Use consistent path/key wording. Fix error paths.
• 060742b New version: 0.10.16.
• 6370f6b Export 'Error::chain()'. Impl 'Error: From<&str>'.
• 6253b25 New version: 0.10.15.
• 0ae4eaa Move jail utils to 'jail' module.
• 3a063a2 Add 'Jail::create_binary()' method.
• 70a105f Document and test 'Data::file_exact()'.
• Additional commits viewable in compare view

Updates pyo3 from 0.20.3 to 0.21.2

Release notes

Sourced from pyo3's releases.

PyO3 0.21.2

This release contains some fixes to compile-time edge cases for the PyO3 0.21 series:

• A missing deprecation warning for the GIL Ref constructor PySet::empty has now been added.
• #[pymodule] functions will no longer trigger missing_docs lints on their generated code.
• Incorrect implementations of __traverse__ in #[pymethods] will now emit a better error.
• Extension modules on AIX will now link to libpython.

This release also fixes some compile errors for the experimental-async and experimental-declarative-modules features, and corrects some documentation typos.

Thank you to the following users for the improvements:

@​adamreichold @​blmarket @​davidhewitt @​Icxolu @​lfn3 @​messense @​wyfo

PyO3 0.21.1

This release is a set of touch-ups to PyO3 0.21 to fix cases found as adoption of PyO3 0.21.0 progressed.

The new PyBackedStr and PyBackedBytes types have had a large range of standard traits implemented, including Clone, PartialEq, Hash, PartialOrd, Display, Debug, Send and Sync.

The argument to a #[setter] function now accepts the full range of input types as any other function argument in a #[pymethods] block, and will now correctly handle a #[pyo3(from_py_with = "...")] annotation.

Some procedural macro output has been adjusted to reuse more code and make it easier to reach complete code coverage in projects using PyO3. The import_exception_bound! macro has been added to further assist with coverage during migration, by skipping generating code which is only needed to use the exception as a GIL Ref.

Finally, the experimental-async feature now correctly handles async fn in #[pymethods] which have a &self or &mut self receiver plus additional arguments.

Thank you to the following users for the improvements:

@​alex @​davidhewitt @​geo7 @​Icxolu @​reswqa @​rikushoney @​tisonkun

PyO3 0.21.0

This release introduces a substantial new direction for PyO3's API. The Bound<'py, T> smart pointer type has been added that replaces "GIL Refs" such as &'py PyAny and &'py PyList with smart-pointer forms Bound<'py, PyAny> and Bound<'py, PyList>. This new smart pointer brings ownership out of PyO3's internals and into user control. This has been done for sake of both performance and soundness.

The migration guide extensively details the intended transition to the new API. To allow users a more graceful upgrade path, PyO3 0.21 and 0.22 will maintain backwards compatibility support for the existing "GIL Refs" API.

As well as the Bound API, highlights of PyO3 0.21 include:

• Support for compiling for GraalPy
• Extended chrono / datetime conversions, including support for the abi3 feature and the chrono-tz crate
• Simplifications to __next__ and __anext__ methods

... (truncated)

Changelog

Sourced from pyo3's changelog.

[0.21.2] - 2024-04-16

Changed

• Deprecate the PySet::empty() gil-ref constructor. #4082

Fixed

• Fix compile error for async fn in #[pymethods] with a &self receiver and more than one additional argument. #4035
• Improve error message for wrong receiver type in __traverse__. #4045
• Fix compile error when exporting a #[pyclass] living in a different Rust module using the experimental-declarative-modules feature. #4054
• Fix missing_docs lint triggering on documented #[pymodule] functions. #4067
• Fix undefined symbol errors for extension modules on AIX (by linking libpython). #4073

[0.21.1] - 2024-04-01

Added

• Implement Send and Sync for PyBackedStr and PyBackedBytes. #4007
• Implement Clone, Debug, PartialEq, Eq, PartialOrd, Ord and Hash implementation for PyBackedBytes and PyBackedStr, and Display for PyBackedStr. #4020
• Add import_exception_bound! macro to import exception types without generating GIL Ref functionality for them. #4027

Changed

• Emit deprecation warning for uses of GIL Refs as #[setter] function arguments. #3998
• Add #[inline] hints on many Bound and Borrowed methods. #4024

Fixed

• Handle #[pyo3(from_py_with = "")] in #[setter] methods #3995
• Allow extraction of &Bound in #[setter] methods. #3998
• Fix some uncovered code blocks emitted by #[pymodule], #[pyfunction] and #[pyclass] macros. #4009
• Fix typo in the panic message when a class referenced in pyo3::import_exception! does not exist. #4012
• Fix compile error when using an async #[pymethod] with a receiver and additional arguments. #4015

[0.21.0] - 2024-03-25

Added

• Add support for GraalPy (24.0 and up). #3247
• Add PyMemoryView type. #3514
• Allow async fn in for #[pyfunction] and #[pymethods], with the experimental-async feature. #3540 #3588 #3599 #3931
• Implement PyTypeInfo for PyEllipsis, PyNone and PyNotImplemented. #3577
• Support #[pyclass] on enums that have non-unit variants. #3582
• Support chrono feature with abi3 feature. #3664
• FromPyObject, IntoPy<PyObject> and ToPyObject are implemented on std::duration::Duration #3670
• Add PyString::to_cow. Add Py<PyString>::to_str, Py<PyString>::to_cow, and Py<PyString>::to_string_lossy, as ways to access Python string data safely beyond the GIL lifetime. #3677
• Add Bound<T> and Borrowed<T> smart pointers as a new API for accessing Python objects. #3686
• Add PyNativeType::as_borrowed to convert "GIL refs" to the new Bound smart pointer. #3692

... (truncated)

Commits

• a646a82 release: 0.21.2
• bd15f92 Deprecate the PySet::empty gil-ref constructor (#4082)
• 4f7c706 Suppress non_local_definitions lint as we often want the non-local effects in...
• 3f6faf0 Extend guide on interaction between method receivers and lifetime elision. (#...
• 4e13c0e Link libpython for AIX target (#4073)
• e501377 fix declarative-modules compile error (#4054)
• fd18955 add #[doc(hidden)] to the Rust module created by #[pymodule] (#4067)
• e174a04 Minor: Fix a typo in Contributing.md (#4066)
• a8abe50 build(deps): bump peaceiris/actions-gh-pages from 3 to 4 (#4062)
• 68d1973 Fix typo (#4052)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Superseded by #343.