search

cedar-policy / cedar

Implementation of the Cedar Policy Language
https://www.cedarpolicy.com
Apache License 2.0
889 stars 80 forks source link

Bump the rust-dependencies group with 14 updates #1311

Closed dependabot[bot] closed 1 week ago

dependabot[bot] commented 1 week ago

Bumps the rust-dependencies group with 14 updates:

Package From To
thiserror 1.0.67 2.0.3
arbitrary 1.3.2 1.4.1
tempfile 3.13.0 3.14.0
url 2.5.2 2.5.3
anstream 0.6.17 0.6.18
anyhow 1.0.92 1.0.93
borsh 1.5.1 1.5.2
cc 1.1.34 1.1.37
derive_arbitrary 1.3.2 1.4.1
fastrand 2.1.1 2.2.0
idna 0.5.0 1.0.3
libc 0.2.161 0.2.162
rustix 0.38.38 0.38.40
thiserror-impl 1.0.67 1.0.69

Updates thiserror from 1.0.67 to 2.0.3

Release notes

Sourced from thiserror's releases.

2.0.3

  • Support the same Path field being repeated in both Debug and Display representation in error message (#383)
  • Improve error message when a format trait used in error message is not implemented by some field (#384)

2.0.2

  • Fix hang on invalid input inside #[error(...)] attribute (#382)

2.0.1

  • Support errors that contain a dynamically sized final field (#375)
  • Improve inference of trait bounds for fields that are interpolated multiple times in an error message (#377)

2.0.0

Breaking changes

  • Referencing keyword-named fields by a raw identifier like {r#type} inside a format string is no longer accepted; simply use the unraw name like {type} (#347)

    This aligns thiserror with the standard library's formatting macros, which gained support for implicit argument capture later than the release of this feature in thiserror 1.x.

    #[derive(Error, Debug)]
#[error("... {type} ...")]  // Before: {r#type}
pub struct Error {
    pub r#type: Type,
}

  • Trait bounds are no longer inferred on fields whose value is shadowed by an explicit named argument in a format message (#345)

    // Before: impl<T: Octal> Display for Error<T>
// After: impl<T> Display for Error<T>
#[derive(Error, Debug)]
#[error("{thing:o}", thing = "...")]
pub struct Error<T> {
    thing: T,
}

  • Tuple structs and tuple variants can no longer use numerical {0} {1} access at the same time as supplying extra positional arguments for a format message, as this makes it ambiguous whether the number refers to a tuple field vs a different positional arg (#354)

    #[derive(Error, Debug)]
#[error("ambiguous: {0} {}", $N)]
//                  ^^^ Not allowed, use #[error("... {0} {n}", n = $N)]
pub struct TupleError(i32);

  • Code containing invocations of thiserror's derive(Error) must now have a direct dependency on the thiserror crate regardless of the error data structure's contents (#368, #369, #370, #372)

Features

... (truncated)

Commits
  • 15fd26e Release 2.0.3
  • 7046023 Simplify how has_bonus_display is accumulated
  • 9cc1d0b Merge pull request #384 from dtolnay/nowrap
  • 1d040f3 Use Var wrapper only for Pointer formatting
  • 6a6132d Extend no-display ui test to cover another fmt trait
  • a061beb Merge pull request #383 from dtolnay/both
  • 6388293 Support Display and Debug of same path in error message
  • dc0359e Defer binding_value construction
  • 520343e Add test of Debug and Display of paths
  • 49be39d Release 2.0.2
  • Additional commits viewable in compare view


Updates arbitrary from 1.3.2 to 1.4.1

Changelog

Sourced from arbitrary's changelog.

Unreleased

Released YYYY-MM-DD.

Added

  • TODO (or remove section if none)

Changed

  • TODO (or remove section if none)

Deprecated

  • TODO (or remove section if none)

Removed

  • TODO (or remove section if none)

Fixed

  • TODO (or remove section if none)

Security

  • TODO (or remove section if none)

1.4.0

Released 2024-10-30.

Added

  • Added an Arbitrary implementation for PhantomPinned.
  • Added the Unstructured::choose_iter helper method.
  • Added #[arbitrary(skip)] for enum variants in the derive macro.
  • Added the Arbitrary::try_size_hint trait method.

Changed

  • Implement Arbitrary for PhantomData<A> even when A does not implement Arbitrary and when A is ?Sized.
  • Make usize's underlying encoding independent of machine word size so that corpora are more portable.

Fixed

... (truncated)

Commits
  • c22d7c8 Arbitrary-derive 1.4.1
  • 690db06 Merge pull request #204 from djc/msrv
  • 6cbaf48 Merge pull request #205 from Manishearth/fq-result
  • de2becf Use fully qualified path for Result when generated by macro
  • 4f5967b Bump version for release
  • a5dfc7e Check stated MSRV in CI
  • da62b03 Add lifetime bound for trait impl as required on older toolchains
  • f643527 Use std::error::Error for compatibility with older toolchains
  • 5b86c44 Bump to 1.4.0
  • 1cc0e46 Merge pull request #185 from sosthene-nitrokey/wide-recursive
  • Additional commits viewable in compare view


Updates tempfile from 3.13.0 to 3.14.0

Changelog

Sourced from tempfile's changelog.

3.14.0

  • Make the wasip2 target work (requires tempfile's "nightly" feature to be enabled). #305.
  • Allow older windows-sys versions #304.
Commits


Updates url from 2.5.2 to 2.5.3

Release notes

Sourced from url's releases.

v2.5.3

What's Changed

New Contributors

Full Changelog: https://github.com/servo/rust-url/compare/v2.5.2...v2.5.3

Commits


Updates anstream from 0.6.17 to 0.6.18

Commits
  • fabe0c3 chore: Release
  • 762ca76 docs: Update changelog
  • d364ac4 Merge pull request #229 from epage/cfg
  • ad3f458 fix(stream): Respect 'test' feature
  • 0b8d105 fix(stream): Refer to correct stream on panic
  • 69cf6c9 refactor(stream): Pull out test macro body
  • c78b3c1 refactor(stream): Be extra clear that macros mod is not for use
  • ab37812 chore(deps): Update compatible (dev) (#226)
  • 7c48196 Merge pull request #227 from rust-cli/renovate/stable-1.x
  • a28405f style: Make clippy happy
  • Additional commits viewable in compare view


Updates anyhow from 1.0.92 to 1.0.93

Release notes

Sourced from anyhow's releases.

1.0.93

  • Update dev-dependencies to thiserror v2
Commits
  • 713bda9 Release 1.0.93
  • f91c247 Merge pull request #391 from dtolnay/thiserror
  • 2a3901c Isolate old rustc version tests from needing anyhow dev-dependencies in lockfile
  • 3ca2cdd Update dev-dependencies to thiserror v2
  • See full diff in compare view


Updates borsh from 1.5.1 to 1.5.2

Release notes

Sourced from borsh's releases.

borsh-derive-v1.5.2

No release notes provided.

borsh-v1.5.2

Added

  • ser/de for IpAddr type; schema for Ipv4Addr/Ipv6Addr/IpAddr types (#309)

Other

  • serde_json::Value bridging example/doc (#317)
  • remove dependency on syn_derive (#318)
  • cover one more syn::generics::TypeParamBound as per syntax change (#316)
Changelog

Sourced from borsh's changelog.

1.5.2 - 2024-11-07

Added

  • ser/de for IpAddr type; schema for Ipv4Addr/Ipv6Addr/IpAddr types (#309)

Other

  • serde_json::Value bridging example/doc (#317)
  • remove dependency on syn_derive (#318)
  • cover one more syn::generics::TypeParamBound as per syntax change (#316)
Commits
  • d521f76 chore: release v1.5.2 (#313)
  • cef1258 chore: remove dependency on syn_derive (#318)
  • 21c024f doc: serde_json::Value bridging example/doc (#317)
  • fa9a0a1 chore: cover one more syn::generics::TypeParamBound as per syntax change (#...
  • b416d11 feat: ser/de for IpAddr type; schema for Ipv4Addr/Ipv6Addr/IpAddr typ...
  • See full diff in compare view


Updates cc from 1.1.34 to 1.1.37

Release notes

Sourced from cc's releases.

cc-v1.1.37

Other

  • Use relative directory for obj files hash (#1270)
  • Regenerate target info (#1280)

cc-v1.1.36

Other

  • Fix CUDA build with clang++. (#1273)

cc-v1.1.35

Other

  • Remove support for FRC (#1268)
  • Do not add -fPIC by default on UEFI targets (#1263)
  • Use -windows-gnu for all UEFI targets (#1264)
Changelog

Sourced from cc's changelog.

1.1.37 - 2024-11-08

Other

  • Use relative directory for obj files hash (#1270)
  • Regenerate target info (#1280)

1.1.36 - 2024-11-05

Other

  • Fix CUDA build with clang++. (#1273)

1.1.35 - 2024-11-04

Other

  • Remove support for FRC (#1268)
  • Do not add -fPIC by default on UEFI targets (#1263)
  • Use -windows-gnu for all UEFI targets (#1264)
Commits


Updates derive_arbitrary from 1.3.2 to 1.4.1

Changelog

Sourced from derive_arbitrary's changelog.

Unreleased

Released YYYY-MM-DD.

Added

  • TODO (or remove section if none)

Changed

  • TODO (or remove section if none)

Deprecated

  • TODO (or remove section if none)

Removed

  • TODO (or remove section if none)

Fixed

  • TODO (or remove section if none)

Security

  • TODO (or remove section if none)

1.4.0

Released 2024-10-30.

Added

  • Added an Arbitrary implementation for PhantomPinned.
  • Added the Unstructured::choose_iter helper method.
  • Added #[arbitrary(skip)] for enum variants in the derive macro.
  • Added the Arbitrary::try_size_hint trait method.

Changed

  • Implement Arbitrary for PhantomData<A> even when A does not implement Arbitrary and when A is ?Sized.
  • Make usize's underlying encoding independent of machine word size so that corpora are more portable.

Fixed

... (truncated)

Commits
  • c22d7c8 Arbitrary-derive 1.4.1
  • 690db06 Merge pull request #204 from djc/msrv
  • 6cbaf48 Merge pull request #205 from Manishearth/fq-result
  • de2becf Use fully qualified path for Result when generated by macro
  • 4f5967b Bump version for release
  • a5dfc7e Check stated MSRV in CI
  • da62b03 Add lifetime bound for trait impl as required on older toolchains
  • f643527 Use std::error::Error for compatibility with older toolchains
  • 5b86c44 Bump to 1.4.0
  • 1cc0e46 Merge pull request #185 from sosthene-nitrokey/wide-recursive
  • Additional commits viewable in compare view


Updates fastrand from 2.1.1 to 2.2.0

Release notes

Sourced from fastrand's releases.

v2.2.0

  • Expose missing fill method for the global RNG. (#90)
Changelog

Sourced from fastrand's changelog.

Version 2.2.0

  • Expose missing fill method for the global RNG. (#90)
Commits


Updates idna from 0.5.0 to 1.0.3

Release notes

Sourced from idna's releases.

idna v1.0.3

What's Changed

New Contributors

Full Changelog: https://github.com/servo/rust-url/compare/v2.5.2...idna-v1.0.3

idna v1.0.1

What's Changed

Full Changelog: https://github.com/servo/rust-url/compare/v2.5.1...idna-v1.0.1

Commits


Updates libc from 0.2.161 to 0.2.162

Release notes

Sourced from libc's releases.

0.2.162

Added

Fixed

Other

Changelog

Sourced from libc's changelog.

0.2.162 - 2024-11-07

Added

Fixed

Other

Commits
  • b8c255c chore: release v0.2.162
  • acb0c19 Merge pull request #4020 from tgross35/backport-collard-greens
  • 33a772c feat: add ioctl flags in linux/if_tun.h
  • a3ca238 freebsd adding CLOSE_RANGE_CLOEXEC flag
  • 8c88d9a armv7-unknown-freebsd: fix test errors regarding __gregset_t
  • c0c9391 Fix the build on armv7-unknown-freebsd
  • d435e9b Merge pull request #4006 from tgross35/backport-spinach
  • 7ee37b9 Merge pull request #4017 from tgross35/backport-watercress
  • 073c7b4 Fix definition of FIODGNAME on 32-bit FreeBSD
  • 255b039 Fix size of struct kinfo_file on 32-bit FreeBSD
  • Additional commits viewable in compare view


Updates rustix from 0.38.38 to 0.38.40

Commits
  • 309c288 chore: Release rustix version 0.38.40
  • feb5227 Clarify getppid documentation: explain how None can occur (#1209)
  • 81021ad Disable AF_NCA, VSTATUS, VERASE2, and fcntl_lock on Solaris. (#1211)
  • c9d06b2 Migrate from wasm32-wasi (no longer exists on nightly) to wasm32-wasip1 (#1210)
  • 8c50519 Disable epoll support on Solaris. (#1208)
  • 827830f chore: Release rustix version 0.38.39
  • 4919082 Update CI to macos-13. (#1207)
  • 4054d28 Enable a few features on more platforms. (#1203)
  • 2b4becf fix: enable wasip2 feature for wasm32-wasip2 target (#1205)
  • 9fd6e48 Don't store build check rmeta (#1200)
  • See full diff in compare view


Updates thiserror-impl from 1.0.67 to 1.0.69

Release notes

Sourced from thiserror-impl's releases.

1.0.69

  • Backport 2.0.2 fixes

1.0.68

  • Handle incomplete expressions more robustly in format arguments, such as while code is being typed (#341, #344)
Commits
  • 41938bd Release 1.0.69
  • 9d6506e Merge pull request #382 from dtolnay/hang
  • 591a44d Fix fallback fmt expression parser hang
  • 5b36e37 Add ui test of invalid expression syntax in display attribute
  • 8d06fb5 Release 1.0.68
  • 372fd8a Merge pull request #344 from dtolnay/binop
  • 08f8992 Disregard equality binop in fallback parser
  • d2a823d Merge pull request #343 from dtolnay/unnamed
  • b3bf7a6 Add logic to determine whether unnamed fmt arguments are present
  • 490f9c0 Merge pull request #342 from dtolnay/synfull
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
cdisselkoen commented 1 week ago

Especially notable here is thiserror from 1 to 2. I looked through the changelog and it all seems reasonable. One particular feature we might want to take advantage of:

A new attribute #[error(fmt = path::to::myfmt)] can be used to write formatting logic for an enum variant out-of-line

cdisselkoen commented 1 week ago

specifically, we can replace stuff like #[error("{}", func_call())] with #[error(fmt = func_call)], tweaking the signature of the called function a bit

cdisselkoen commented 1 week ago

Given also that there's a build failure on this PR caused by a different change in thiserror 2, I'll make a separate PR just to bump thiserror to 2

cdisselkoen commented 1 week ago

Done with the separate PR, #1312. Let's merge that first

cdisselkoen commented 1 week ago

@dependabot rebase

dependabot[bot] commented 1 week ago

Looks like these dependencies are updatable in another way, so this is no longer needed.