search

geiger-rs / cargo-geiger

Detects usage of unsafe Rust in a Rust crate and its dependencies.
https://crates.io/crates/cargo-geiger
1.41k stars 66 forks source link

build(deps): bump syn from 1.0.109 to 2.0.12 #465

Closed dependabot[bot] closed 11 months ago

dependabot[bot] commented 1 year ago

Bumps syn from 1.0.109 to 2.0.12.

Release notes

Sourced from syn's releases.

2.0.12

  • Refer to compile_error! by absolute path in token stream produced by syn::Error::to_compile_error (#1431, thanks @​smoelius)

2.0.11

  • Improve error message on empty parens inside parse_nested_meta (#1428)

2.0.10

  • Fix visibility being parsed incorrectly on macro invocations inside of a trait

2.0.9

  • Disallow type items in an extern block, trait, or module from being marked default

2.0.8

  • Treat try keyword as 2015-edition identifier in definition of try macro (#1422)

2.0.7

  • Fix parsing of mut self inside of Type::BareFn

2.0.6

  • Improve error message on missing ';' between statements (#1419)
  • Keep non-brace macro invocations in trailing expr position as Expr::Macro (#1420)

2.0.5

  • Expose ExprMacro data structure even when features="full" is not used (#1417)

2.0.4

  • Improve error reporting when parsing identifiers and paths (#1415, #1416)

2.0.3

  • Expose ExprGroup data structure even when features="full" is not used (#1412)

2.0.2

  • Documentation improvements

2.0.1

  • Add methods on syn::Meta for reporting error on an incorrect kind of attribute (#1409)

2.0.0

This release contains a batch of syntax tree improvements to incorporate ongoing Rust language development from the past 3.5 years since syn 1.

It never seems like an ideal time to finalize a syntax tree design, considering the frankly alarming number of syntax-disrupting language features currently in flight: keyword generics, restrictions, capabilities and contexts, conditional constness, new varieties of literals, dyn revamp such as explicitly dyn-safe traits and dyn-star, expression syntax in various phases of being added or being torn out (const blocks, try blocks, raw references), auto traits and negative impls, generalizations to higher rank trait bounds, async closures and static async trait methods, postfix keywords, pattern types, return type notation, unsafe attributes, …

The plan continues to be the same as laid out originally in the 1.0.0 release announcement:

Be aware that the underlying Rust language will continue to evolve. Syn is able to accommodate most kinds of Rust grammar changes via the nonexhaustive enums and Verbatim variants in the syntax tree, but we will plan to put out new major versions on a 12 to 24 month cadence to incorporate ongoing language changes as needed.

If anything, the takeaway from the 3.5 year longevity of syn 1 is that this period was tamer from a language development perspective than anticipated, but that is unlikely to last and I think around 24 months is still the correct cadence to expect between releases going forward.

... (truncated)

Commits
  • 42e8686 Release 2.0.12
  • cc7cf99 Absolute path to refer to core crate in compile_error expansion
  • 4d1fd26 Merge pull request 1431 from smoelius/compile-error
  • 07601a8 Use core instead of std
  • 7109084 Qualify compile_error!
  • c58aceb Release 2.0.11
  • 161be5a Merge pull request #1428 from dtolnay/emptyattr
  • 0b7da96 Improve error message on empty parens inside parse_nested_meta
  • 0296180 Update test suite to nightly-2023-03-28
  • e19a0fb Merge pull request #1425 from dtolnay/alert
  • Additional commits viewable in compare view


Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

dependabot[bot] commented 11 months ago

Superseded by #491.