Handle potential integer overflows in 32-bit systems when seeking/truncating "spooled" temporary files past 4GiB (2³²).
Handle a theoretical 32-bit overflow when generating a temporary file name larger than 4GiB. Now it'll panic (on allocation failure) rather than silently succeeding due to wraparound.
Thanks to @stoeckmann for finding and fixing both of these issues.
3.10.0
Drop redox_syscall dependency, we now use rustix for Redox.
Add Builder::permissions for setting the permissions on temporary files and directories (thanks to @Byron).
New release with some fixes and improvements. Note the 0.10.1 is missing (yanked from crates.io) due to a conflict with the clap version and the Rust minimum version (1.74 now instead of 1.70).
Thanks to all people that contributed to this release!
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
Bumps the minor group with 3 updates: tempfile, pulldown-cmark and syntect.
Updates
tempfile
from 3.9.0 to 3.10.1Changelog
Sourced from tempfile's changelog.
Commits
094c115
chore: release 3.10.156c5934
Fix integer overflows and truncation (#278)5a949d6
chore: 2021 edition (#276)61531ea
chore: release v3.10.0e246c4a
chore: update deps (#275)4a05e47
feat: AddBuilder::permissions()
method. (#273)184ab8f
fix: drop redox_syscall dependency (#272)Updates
pulldown-cmark
from 0.9.6 to 0.10.2Release notes
Sourced from pulldown-cmark's releases.
... (truncated)
Commits
8c77390
chore: upgrade Rust minimum version to 1.747e0e90c
chore: update Cargo.lock17ccf97
chore: bump versioncc18f0e
Merge pull request #868 from pulldown-cmark/cargo_perf_opt2f94b34
docs: suggest performance options, license in README, new authors2e4617d
fix: remove thecpu=native
flag in the sake of reproducible buildsd4b1f29
Merge pull request #875 from blinxen/master2ae599d
Add symlink to license file so it is included in the release tarball that is ...92aa151
perf: cargo-wizard default recommendations for runtime perfc735de1
Merge pull request #864 from notriddle/tilde-flanking-rulesUpdates
syntect
from 5.1.0 to 5.2.0Release notes
Sourced from syntect's releases.
Changelog
Sourced from syntect's changelog.
Commits
1651081
Merge pull request #518 from Enselic/prepare-release6c365b4
Prepare for v5.2.05a9c472
Merge pull request #517 from Enselic/release-v25548e47
Automate the release process with a GitHub Actions workflow2d2f22b
Merge pull request #516 from Enselic/fix-nodef665482
Merge pull request #506 from timhillgit/parse_gutterSettings2900d85
workflows: actions/checkout@v3 -> v43a712ec
Merge pull request #513 from Enselic/revert-bitflags5404691
Revert to bitflags 1.0.4 to not break semverfbabe18
Merge pull request #511 from dtolnay-contrib/deriveDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show