Handle potential integer overflows in 32-bit systems when seeking/truncating "spooled" temporary files past 4GiB (2³²).
Handle a theoretical 32-bit overflow when generating a temporary file name larger than 4GiB. Now it'll panic (on allocation failure) rather than silently succeeding due to wraparound.
Thanks to @stoeckmann for finding and fixing both of these issues.
3.10.0
Drop redox_syscall dependency, we now use rustix for Redox.
Add Builder::permissions for setting the permissions on temporary files and directories (thanks to @Byron).
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
Bumps the rust-dependencies group with 5 updates:
3.9.0
3.10.1
1.0.55
1.0.57
2.9.1
2.9.6
4.4.18
4.5.1
0.8.9
0.8.10
Updates
tempfile
from 3.9.0 to 3.10.1Changelog
Sourced from tempfile's changelog.
Commits
094c115
chore: release 3.10.156c5934
Fix integer overflows and truncation (#278)5a949d6
chore: 2021 edition (#276)61531ea
chore: release v3.10.0e246c4a
chore: update deps (#275)4a05e47
feat: AddBuilder::permissions()
method. (#273)184ab8f
fix: drop redox_syscall dependency (#272)Updates
thiserror
from 1.0.55 to 1.0.57Release notes
Sourced from thiserror's releases.
Commits
1d106b1
Release 1.0.578a5c4d1
Use write_str when args only consists of trailing commaf790bee
Phrase flag in terms of whether core::fmt machinery is requiredd43b759
Ignore needless_raw_string_hashes pedantic clippy lint in testd09c418
Touch up PR 286097251d
Merge pull request #286 from nyurik/litstrcd79876
optimize by avoiding second fmt.value() calld7e738e
Optimize simple literals for Display::fmt0717de3
Update ui test suite to nightly-2024-02-08c7c7547
Update ui test suite to nightly-2024-01-31Updates
ureq
from 2.9.1 to 2.9.6Changelog
Sourced from ureq's changelog.
Commits
4e3169f
2.9.63665d6b
hootbin 0.1.52812bb7
testdeps feature to pull in hootbin when needed4ea0a0a
Exclude unnecessary files from being packaged5178597
2.9.59d77043
Update deps55c9b19
ntls: Convert native_tls::WouldBlock to io::Error::TimedOut825e7ab
Add AgentBuilder::timeout to FUTURE.md2300a5b
2.9.4f36354b
ChangelogUpdates
clap
from 4.4.18 to 4.5.1Release notes
Sourced from clap's releases.
Changelog
Sourced from clap's changelog.
Commits
0c01b55
chore: Release08e0b5b
docs: Update changelogf2c4e6e
Merge pull request #5359 from poliorcetics/ab/push-szymvyzpmnqxe782775
fix(complete): Handle newlines in command/arg descriptionsfba7c85
test(complete): Show newline issue8a7a13a
chore: Release7b3a3e1
docs: Update changelog7b624ca
Merge pull request #5356 from epage/escape446328a
fix(error): Include -- in more cases7de6df8
test(error): Show existing last behaviorUpdates
toml
from 0.8.9 to 0.8.10Commits
7f3e276
chore: Release07c8c2c
docs: Update changelog10392d5
chore: Release4592fe4
docs: Update changelogb7bd3a4
Merge pull request #675 from epage/dotted-key89d1416
fix(edit): Preserve previous line decor on leaf key4e89856
fix(edit): Don't include decor in Key's Display35e5326
Merge pull request #674 from epage/refactor0aca85b
refactor(encode): Remove trait abstraction16c8353
test(edit): Show dotted-key comment bugDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show