search

heroku / buildpacks-php

Heroku's Cloud Native Buildpack for PHP applications.
BSD 3-Clause "New" or "Revised" License
8 stars 2 forks source link

Bump the rust-dependencies group with 4 updates #126

Closed dependabot[bot] closed 1 month ago

dependabot[bot] commented 1 month ago

Bumps the rust-dependencies group with 4 updates: serde, serde_json, ureq and serde_with.

Updates serde from 1.0.203 to 1.0.204

Release notes

Sourced from serde's releases.

v1.0.204

  • Apply #[diagnostic::on_unimplemented] attribute on Rust 1.78+ to suggest adding serde derive or enabling a "serde" feature flag in dependencies (#2767, thanks @​weiznich)
Commits
  • 18dcae0 Release 1.0.204
  • 58c307f Alphabetize list of rustc-check-cfg
  • 8cc4809 Merge pull request #2769 from dtolnay/onunimpl
  • 1179158 Update ui test with diagnostic::on_unimplemented from PR 2767
  • 91aa40e Add ui test of unsatisfied serde trait bound
  • 595019e Cut test_suite from workspace members in old toolchain CI jobs
  • b0d7917 Pull in trybuild 'following types implement trait' fix
  • 8e6637a Merge pull request #2767 from weiznich/feature/diagnostic_on_unimplemented
  • 694fe05 Use the #[diagnostic::on_unimplemented] attribute when possible
  • f3dfd2a Suppress dead code warning in test of unit struct remote derive
  • Additional commits viewable in compare view


Updates serde_json from 1.0.120 to 1.0.122

Release notes

Sourced from serde_json's releases.

v1.0.122

  • Support using json! in no-std crates (#1166)

v1.0.121

Commits
  • 54381d6 Release 1.0.122
  • 16fb6e0 Work around buggy rust-analyzer behavior
  • 49d7d66 Merge pull request #1166 from dtolnay/allocvec
  • 6827c7b Fix json! invocations when std prelude is not in scope
  • 611b2a4 Merge pull request #1165 from serde-rs/jsonmac
  • 7633cb7 Eliminate local_inner_macros in favor of non-ident macro paths
  • eca2658 Release 1.0.121
  • b0d678c Merge pull request #1160 from iex-rs/efficient-position
  • b1edc7d Optimize position search in error path
  • 40dd7f5 Merge pull request #1159 from iex-rs/fix-recursion
  • Additional commits viewable in compare view


Updates ureq from 2.9.7 to 2.10.0

Changelog

Sourced from ureq's changelog.

2.10.0

  • Bump MSRV 1.61 -> 1.63 due to rustls (#764)
  • Update deps (only patch versions in Cargo.lock) (#763)
  • Refork frewsxcv/rust-chunked-transfer to fix MIT/Apache2.0 license (#761)
  • Enable http-crate feature for docs (#755)
  • Update Rustls from 0.22 to 0.23 - this may be a breaking change if your application depends on Rustls 0.22 (e.g. to provide a custom rustls::ClientConfig to ureq). See the Rustls 0.23.0 changelog for a list of breaking API changes (#753)
  • Rustls dep to default to ring backend. If your project uses the default ureq TLS config, or constructs its own rustls::ClientConfig with rustls::ClientConfig::builder() you must ensure the Rustls aws-lc-rs feature is not activated, or set the process default cryptography provider before constructing any configs. See the Rustls CryptoProvider docs for more information (#753)
  • Remove direct dep rustls-webpki (#752)
  • Fix doc Rustls does now support IP address certificates (#759)(#753)
Commits
  • 1cad58f 2.10.0
  • 3b34812 Update changelog
  • 733048f Update deps
  • dc3b43d Bump MSRV 1.61 -> 1.63
  • 24828c0 rustls default to ring backend
  • 42bffb7 Handle missing \r\n with connection close
  • 96061c6 Refork frewsxcv/rust-chunked-transfer under MIT license
  • a138d2e Rustls supports IP SANs since 0.21.0
  • 5ed699d Enable http-crate feature while building docs
  • 6171608 Remove direct dep on rustls-webpki
  • Additional commits viewable in compare view


Updates serde_with from 3.8.2 to 3.9.0

Release notes

Sourced from serde_with's releases.

serde_with v3.9.0

Added

  • Deserialize a map` and skip all elements failing to deserialize by @​johnmave126 (#763)

    MapSkipError acts like a map (HashMap/BTreeMap), but keys or values that fail to deserialize, like are ignored.

    For formats with heterogeneously typed maps, we can collect only the elements where both key and value are deserializable. This is also useful in conjunction to #[serde(flatten)] to ignore some entries when capturing additional fields.

    // JSON
"value": {"0": "v0", "5": "v5", "str": "str", "10": 2},

    // Rust
#[serde_as(as = "MapSkipError<DisplayFromStr, _>")]
value: BTreeMap<u32, String>,
    

    // Only deserializes entries with a numerical key and a string value, i.e.,
{0 => "v0", 5 => "v5"}

serde_with v3.8.3

Fixed

  • Fix compile issues when dependency schemars_0_8 is used with the preserve_order features (#762)
Commits
  • c3e489f Bump version to 3.9.0 (#770)
  • 57ad877 Bump version to 3.9.0
  • d038657 Implement MapSkipError, analogous to VecSkipError, but for map-like data ...
  • aaa0a29 Update serde_with/src/guide/serde_as_transformations.md
  • 17dec11 Add tests to make sure syntax errors are not suppressed.
  • 97543d0 Implement MapSkipError, skipping un-deserializable entries.
  • bf6724d Move VecSkipError to a separate file, preparing for MapSkipError
  • 31e9172 Fix dead code warning by correcting a typo (#769)
  • f5b2626 Fix dead code warnings in tests
  • 4ad4a1b Fix dead code warning by correcting a typo
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions