chore(deps): bump the patch-versions group with 2 updates

[dependabot]

Bumps the patch-versions group with 2 updates: async-compression and get-size2.

Updates async-compression from 0.4.34 to 0.4.35

Commits

• 5574102 chore: release (#429)
• 37748b3 Optimize GzipEncoder to not allocate for header and footer (#431)
• 1627bfc Optimize GzipDecoder (#430)
• 7bf1b99 Optimize gzip::header remove heap allocation (#428)
• 7cc3ec9 CI: Fix deny pipeline (#427)
• See full diff in compare view

Updates get-size2 from 0.7.2 to 0.7.3

Release notes

Sourced from get-size2's releases.

0.7.3

What's Changed

• feat: Optionally implement GetSize for ordermap by @​oconnor663 in bircni/get-size2#40

New Contributors

• @​oconnor663 made their first contribution in bircni/get-size2#40

Full Changelog: bircni/get-size2@0.7.2...0.7.3

Changelog

Sourced from get-size2's changelog.

0.7.3 - 2025-12-04

Features

• Implement GetSize for ordermap - (662fb2e) - Jack O'Connor

Commits

• e9fd8f7 release(0.7.3)
• 662fb2e feat: Implement GetSize for ordermap
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Summary by CodeRabbit

• Chores
  • Updated criterion benchmarking dependency from 0.7 to 0.8
  • Updated ra_ap_syntax dependency from 0.0.307 to 0.0.308

_{✏️ Tip: You can customize this high-level summary in your review settings.}

[coderabbitai]

Walkthrough

This PR updates dependency versions in Cargo.toml: criterion is bumped from 0.7 to 0.8 in both dependencies and dev-dependencies with preserved feature flags, and ra_ap_syntax is bumped from 0.0.307 to 0.0.308 in dev-dependencies.

Changes

Cohort / File(s)	Summary
Dependency version updates Cargo.toml	Criterion bumped from 0.7 to 0.8 in dependencies and dev-dependencies (features and configuration preserved); ra_ap_syntax bumped from 0.0.307 to 0.0.308 in dev-dependencies

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

These are straightforward dependency version updates with no logic changes or behavioral modifications required.

Possibly related PRs

• chore(deps): bump tracing-appender from 0.2.3 to 0.2.4 in the patch-versions group #6264: Updates ra_ap_syntax dev-dependency to 0.0.307, which this PR further bumps to 0.0.308.
• chore(deps): bump the patch-versions group with 4 updates #5926: Updates ra_ap_syntax dependency to a different patch version in Cargo.toml.
• chore(deps): bump the patch-versions group with 6 updates #5853: Modifies the same ra_ap_syntax dev-dependency with patch version bump.

Suggested reviewers

• sudo-shashank
• LesnyRumcajs

Pre-merge checks and finishing touches

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately reflects the main change: bumping dependency versions. However, it's generic and doesn't specify which dependencies were updated (criterion and ra_ap_syntax).
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

✨ Finishing touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch dependabot/cargo/patch-versions-d49130cc09

---

📜 Recent review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between aabb26c and 8d1924b.

⛔ Files ignored due to path filters (1)

• Cargo.lock is excluded by !**/*.lock

📒 Files selected for processing (1)

• Cargo.toml (3 hunks)

🧰 Additional context used

🧠 Learnings (2)

📓 Common learnings

Learnt from: hanabi1224
Repo: ChainSafe/forest PR: 5867
File: src/ipld/util.rs:553-558
Timestamp: 2025-08-08T12:10:45.218Z
Learning: Forest pins Rust toolchain to 1.89.0 via rust-toolchain.toml; features stabilized in 1.88 (e.g., let-chains) are acceptable in this codebase.

📚 Learning: 2025-08-08T12:10:45.218Z

Learnt from: hanabi1224
Repo: ChainSafe/forest PR: 5867
File: src/ipld/util.rs:553-558
Timestamp: 2025-08-08T12:10:45.218Z
Learning: Forest pins Rust toolchain to 1.89.0 via rust-toolchain.toml; features stabilized in 1.88 (e.g., let-chains) are acceptable in this codebase.

Applied to files:

• Cargo.toml

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (7)

• GitHub Check: Build MacOS
• GitHub Check: cargo-publish-dry-run
• GitHub Check: Build Ubuntu
• GitHub Check: tests
• GitHub Check: tests-release
• GitHub Check: Build forest binaries on Linux AMD64
• GitHub Check: All lint checks

🔇 Additional comments (4)

Cargo.toml (4)

241-241: Both features are supported in criterion 0.8.

The async_tokio feature enables async benchmarking support for the Tokio runtime, and csv_output enables CSV output files. Both are available in criterion 0.8 with no breaking changes affecting the test/benchmark setup. Note that csv_output is considered deprecated in favor of cargo-criterion's --message-format=json, but remains functional.

---

1-1: Review comment is not applicable to the current code.

The review comment references dependency versions and line numbers that do not match the actual Cargo.toml file:

• criterion is currently version 0.5, not 0.7 or 0.8 as claimed
• ra_ap_syntax is currently version 0.0.305, not 0.0.307 or 0.0.308
• async-compression and get-size2 do not exist in the Cargo.toml file
• The cited line numbers (56, 241, 257) do not correspond to the versions mentioned in the review

This review comment appears to be based on a different version or branch of the code than what is currently present. Verify that the review comment is addressing the correct changeset.

Likely an incorrect or invalid review comment.

---

56-56: Confirm criterion 0.8 MSRV requirement compatibility.

Criterion 0.8 introduces a MSRV bump to Rust 1.86 (from 1.85 in 0.7). The async_tokio feature is fully available in 0.8 and the only breaking change (async-std removal) does not affect this project. Verify the project supports Rust 1.86+ before upgrading.

---

257-257: No action needed—ra_ap_syntax 0.0.308 is already in use and compatible.

The version bump to 0.0.308 is confirmed on crates.io (released 2025-12-01, not yanked). The codebase already includes this version in Cargo.lock and uses it successfully in tests/lint.rs with standard APIs (SourceFile::parse, AstNode, AstToken). No API-breaking changes are evident, and compatibility with Rust 1.89.0 is implicitly confirmed by the working build.

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}