Skip to content

Bump the cargo_dependencies group with 5 updates#181

Merged
CramBL merged 2 commits intotrunkfrom
dependabot/cargo/cargo_dependencies-d86366f157
Oct 14, 2025
Merged

Bump the cargo_dependencies group with 5 updates#181
CramBL merged 2 commits intotrunkfrom
dependabot/cargo/cargo_dependencies-d86366f157

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 13, 2025

Bumps the cargo_dependencies group with 5 updates:

Package From To
socket2 0.6.0 0.6.1
regex 1.11.3 1.12.2
clap 4.5.48 4.5.49
reqwest 0.12.23 0.12.24
zip 5.1.1 6.0.0

Updates socket2 from 0.6.0 to 0.6.1

Changelog

Sourced from socket2's changelog.

0.6.1

Added

Changed

Commits
  • d0ba3d3 Release v0.6.1
  • 3a8b7ed Add example to create SockAddr from libc::sockaddr_storage (#615)
  • b54e2e6 Disable armv7-sony-vita-newlibeabihf CI check
  • 2d4a2f7 Update feature doc_auto_cfg to doc_cfg
  • 11aa102 Add missing components when installing Rust in CI
  • 528ba2b Add TCP_NOTSENT_LOWAT socketopt support
  • 1fdd293 Correct rename in CHANGELOG.md (#610)
  • 600ff0d Add support for Windows Registered I/O
  • f083696 Allow SockFilter::new in const contexts
  • 15ade51 Refactor for cargo fmt
  • Additional commits viewable in compare view

Updates regex from 1.11.3 to 1.12.2

Changelog

Sourced from regex's changelog.

1.12.2 (2025-10-13)

This release fixes a cargo doc breakage on nightly when --cfg docsrs is enabled. This caused documentation to fail to build on docs.rs.

Bug fixes:

1.12.1 (2025-10-10)

This release makes a bug fix in the new regex::Captures::get_match API introduced in 1.12.0. There was an oversight with the lifetime parameter for the Match returned. This is technically a breaking change, but given that it was caught almost immediately and I've yanked the 1.12.0 release, I think this is fine.

1.12.0 (2025-10-10)

This release contains a smattering of bug fixes, a fix for excessive memory consumption in some cases and a new regex::Captures::get_match API.

Improvements:

Bug fixes:

Commits

Updates clap from 4.5.48 to 4.5.49

Changelog

Sourced from clap's changelog.

[4.5.49] - 2025-10-13

Fixes

  • (help) Correctly wrap when ANSI escape codes are present
Commits

Updates reqwest from 0.12.23 to 0.12.24

Release notes

Sourced from reqwest's releases.

v0.12.24

Highlights

  • Refactor cookie handling to an internal middleware.
  • Refactor internal random generator.
  • Refactor base64 encoding to reduce a copy.
  • Documentation updates.

What's Changed

New Contributors

Full Changelog: seanmonstar/reqwest@v0.12.23...v0.12.24

Changelog

Sourced from reqwest's changelog.

v0.12.24

  • Refactor cookie handling to an internal middleware.
  • Refactor internal random generator.
  • Refactor base64 encoding to reduce a copy.
  • Documentation updates.
Commits
  • b126ca4 v0.12.24
  • 4023493 refactor: change fast_random from xorshift to siphash a counter
  • fd61bc9 refactor(cookie): avoid duplicate cookie insertion (#2834)
  • 0bfa526 test(multipart): fix build failure with no-default-features (#2801)
  • 994b8a0 docs: typo in retry max_retries_per_request (#2824)
  • da0702b refactor(cookie): de-duplicate cookie support as CookieService middleware (...
  • 7ebddea chore: align internal name usage of TotalTimeout (#2657)
  • b540a4e chore(readme): use correct CI status badge
  • e4550c4 docs: fix method name in changelog entry (#2807)
  • f4694a2 perf(util): avoid extra copy when base64 encoding (#2805)
  • Additional commits viewable in compare view

Updates zip from 5.1.1 to 6.0.0

Release notes

Sourced from zip's releases.

v6.0.0

🐛 Bug Fixes

  • panic when reading empty extended-timestamp field (#404) (#422)
  • Restore original file timestamp when unzipping with chrono (#46)

⚙️ Miscellaneous Tasks

  • Configure Amazon Q rules (#421)
Changelog

Sourced from zip's changelog.

6.0.0 - 2025-10-09

🚀 Features

  • Add by_index_with_options(), which can be used to ignore encryption in a file's metadata (#439) and may be used for other file-specific overrides in the future.

⚙️ Miscellaneous Tasks

  • [breaking] FileOptions::add_extra_data is now generic and accepts any AsRef<[u8]>. (#435)
Commits
  • abfc23d feat: Upgrade [Extended]FileOptions::add_extra_data() data from Box<[u8]> to ...
  • eb1b586 docs: Update zip_writer documentation example (#431)
  • 26e6e08 feat: Add by_index_with_options() for ignoring encryption (#439)
  • 165415d chore(deps): update nt-time requirement from 0.10.6 to 0.12.1 (#429)
  • 1d5d4ed chore(deps): update lzma-rust2 requirement from 0.13 to 0.14 (#432)
  • 72cce40 chore(deps): update nt-time requirement from 0.10.6 to 0.12.1 (#428)
  • 2ef4d3e chore(deps): update nt-time requirement from 0.10.6 to 0.12.1 (#427)
  • 9cf28cb test(ci): Fix: rename can't be skipped
  • 5987cdd test(ci): Fix: need recursive rename
  • 74f8a3c test(ci): Need to rename more files during fuzz runs
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the cargo_dependencies group with 5 updates
c358a6f 
Bumps the cargo_dependencies group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [socket2](https://github.com/rust-lang/socket2) | `0.6.0` | `0.6.1` |
| [regex](https://github.com/rust-lang/regex) | `1.11.3` | `1.12.2` |
| [clap](https://github.com/clap-rs/clap) | `4.5.48` | `4.5.49` |
| [reqwest](https://github.com/seanmonstar/reqwest) | `0.12.23` | `0.12.24` |
| [zip](https://github.com/zip-rs/zip2) | `5.1.1` | `6.0.0` |


Updates `socket2` from 0.6.0 to 0.6.1
- [Release notes](https://github.com/rust-lang/socket2/releases)
- [Changelog](https://github.com/rust-lang/socket2/blob/master/CHANGELOG.md)
- [Commits](rust-lang/socket2@v0.6.0...v0.6.1)

Updates `regex` from 1.11.3 to 1.12.2
- [Release notes](https://github.com/rust-lang/regex/releases)
- [Changelog](https://github.com/rust-lang/regex/blob/master/CHANGELOG.md)
- [Commits](rust-lang/regex@1.11.3...1.12.2)

Updates `clap` from 4.5.48 to 4.5.49
- [Release notes](https://github.com/clap-rs/clap/releases)
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md)
- [Commits](clap-rs/clap@clap_complete-v4.5.48...clap_complete-v4.5.49)

Updates `reqwest` from 0.12.23 to 0.12.24
- [Release notes](https://github.com/seanmonstar/reqwest/releases)
- [Changelog](https://github.com/seanmonstar/reqwest/blob/master/CHANGELOG.md)
- [Commits](seanmonstar/reqwest@v0.12.23...v0.12.24)

Updates `zip` from 5.1.1 to 6.0.0
- [Release notes](https://github.com/zip-rs/zip2/releases)
- [Changelog](https://github.com/zip-rs/zip2/blob/master/CHANGELOG.md)
- [Commits](zip-rs/zip2@v5.1.1...v6.0.0)

---
updated-dependencies:
- dependency-name: socket2
  dependency-version: 0.6.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: cargo_dependencies
- dependency-name: regex
  dependency-version: 1.12.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: cargo_dependencies
- dependency-name: clap
  dependency-version: 4.5.49
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: cargo_dependencies
- dependency-name: reqwest
  dependency-version: 0.12.24
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: cargo_dependencies
- dependency-name: zip
  dependency-version: 6.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: cargo_dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Oct 13, 2025
@CramBL CramBL merged commit 8fbacc1 into trunk Oct 14, 2025
38 checks passed
@CramBL CramBL deleted the dependabot/cargo/cargo_dependencies-d86366f157 branch October 14, 2025 15:18
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update rust code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@CramBL