G07cha / pomodoro

A classic time management tool in your menubar
https://g07cha.github.io/pomodoro/
MIT License
350 stars 46 forks source link

chore(deps): bump tauri from 1.6.8 to 1.7.1 in /src-tauri #473

Closed dependabot[bot] closed 4 months ago

dependabot[bot] commented 4 months ago

Bumps tauri from 1.6.8 to 1.7.1.

Release notes

Sourced from tauri's releases.

tauri v1.7.1

Fetching advisory database from `https://github.com/RustSec/advisory-db.git`
      Loaded 630 security advisories (from /home/runner/.cargo/advisory-db)
    Updating crates.io index
    Scanning Cargo.lock for vulnerabilities (590 crate dependencies)
Crate:     atty
Version:   0.2.14
Warning:   unsound
Title:     Potential unaligned read
Date:      2021-07-04
ID:        RUSTSEC-2021-0145
URL:       https://rustsec.org/advisories/RUSTSEC-2021-0145
Dependency tree:
atty 0.2.14
└── clap 3.2.25
    └── tauri 1.7.1
        ├── tauri 1.7.1
        ├── restart 0.1.0
        └── app-updater 0.1.0

warning: 1 allowed warning found

[1.7.1]

Bug Fixes

Updating crates.io index
   Packaging tauri v1.7.1 (/home/runner/work/tauri/tauri/core/tauri)
    Updating crates.io index
   Verifying tauri v1.7.1 (/home/runner/work/tauri/tauri/core/tauri)
 Downloading crates ...
  Downloaded alloc-stdlib v0.2.2
  Downloaded phf_shared v0.10.0
  Downloaded phf v0.10.1
  Downloaded mac v0.1.1
  Downloaded matches v0.1.10
  Downloaded precomputed-hash v0.1.1
</tr></table> 

... (truncated)

Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)