search

kubewarden / allow-privilege-escalation-psp-policy

A Kubewarden Pod Security Policy that controls usage of allowPrivilegeEscalation
https://kubewarden.io
Apache License 2.0
6 stars 7 forks source link

Update Rust crate serde_yaml to 0.9 #29

Closed renovate[bot] closed 2 years ago

renovate[bot] commented 2 years ago

Mend Renovate

This PR contains the following updates:

Package Type Update Change
serde_yaml dev-dependencies minor 0.8 -> 0.9

Release Notes

dtolnay/serde-yaml ### [`v0.9.2`](https://togithub.com/dtolnay/serde-yaml/releases/tag/0.9.2) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.9.1...0.9.2) - Improve `Debug` representation of `serde_yaml::Error` ### [`v0.9.1`](https://togithub.com/dtolnay/serde-yaml/releases/tag/0.9.1) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.9.0...0.9.1) - Fix panic on some documents containing syntax error ([#​293](https://togithub.com/dtolnay/serde-yaml/issues/293)) - Improve error messages that used to contain duplicative line/column information ([#​294](https://togithub.com/dtolnay/serde-yaml/issues/294)) ### [`v0.9.0`](https://togithub.com/dtolnay/serde-yaml/releases/tag/0.9.0) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.26...0.9.0) *API documentation: https://docs.rs/serde_yaml/0.9* ##### Highlights - The `serde_yaml::Value` enum gains a `Tagged` variant which represents the deserialization of YAML's `!Tag` syntax. Tagged scalars, sequences, and mappings are all supported. - An empty YAML input (or document containing only comments) will deserialize successfully to an empty map, empty sequence, or Serde struct as long as the struct has only optional fields. Previously this would error. - A new `.apply_merge()` method on `Value` implements YAML's `<<` merge key convention. - The `Debug` representation of `serde_yaml::Value` has gotten vastly better ([https://github.com/dtolnay/serde-yaml/pull/287](https://togithub.com/dtolnay/serde-yaml/pull/287)). - Deserialization of borrowed strings now works. ```rust #[derive(Deserialize, Debug)] struct Struct<'a> { borrowed: &'a str, } let yaml = "borrowed: 'kölcsönzött'\n"; let value: Struct = serde_yaml::from_str(yaml)?; println!("{:#?}", value); ``` - `Value`'s and `Mapping`'s methods `get` and `get_mut` have been generalized to support a \&str argument, as opposed to requiring you to allocate and construct a `Value::String` for indexing into another existing `Value`. - `Mapping` exposes more APIs that have become conventional on map data structures, such as `.keys()`, `.values()`, `.into_keys()`, `.into_values()`, `.values_mut()`, and `.retain(|k, v| …)`. ##### Breaking changes - Serialization no longer produces leading `---\n` on the serialized output. You can prepend this yourself if your use case demands it. - Serialization of enum variants is now based on YAML's `!Tag` syntax, rather than JSON-style singleton maps. ```rust #[derive(Serialize, Deserialize)] enum Enum { Newtype(usize), Tuple(usize, usize, usize), Struct { x: f64, y: f64 }, } ``` ```yaml - !Newtype 1 - !Tuple [0, 0, 0] - !Struct {x: 1.0, y: 2.0} ``` - A bunch of non-base-10 edge cases in number parsing have been resolved. For example `0x+1` and `++0x1` are now parsed as strings, whereas they used to be incorrectly treated as numbers. - Deserializers obtained through iteration can no longer be iterated further: ```rust let deserializer = serde_yaml::Deserializer::from_str(multiple_documents); for de in deserializer { // correct: let myvalue = T::deserialize(de)?; // incorrect: used to produce some questionable result, now produces 0 sub-documents for questionable in de { let wat = T::deserialize(questionable)?; } } ``` - The abandoned yaml-rust crate is no longer used as the YAML backend. The new libyaml-based backend surely has different edge cases and quirks than yaml-rust. - Some excessive `PartialEq` impls have been eliminated. - The `serde_yaml::to_vec` function has been removed. Use `serde_yaml::to_writer` for doing I/O, or use `serde_yaml::to_string` + `.into_bytes()` on the resulting String. - The `serde_yaml::seed` module has been removed. Now that a `serde_yaml::Deserializer` is publicly available, the same use cases can be addressed via `seed.deserialize(Deserializer::from_str(…))` instead. ##### Bugfixes - Empty values in a mapping are supported, and deserialize to empty string when the corresponding struct field is of type string. Previously they would deserialize to "~" which makes no sense. - 128-bit integer deserialization now supports hex and octal input. - Serde_yaml now includes a mitigation against a ["billion laughs"](https://en.wikipedia.org/wiki/Billion_laughs_attack) attack in which malicious input involving YAML anchors and aliases is used to consume an amount of processing or memory that is exponential in the size of the input document. Serde_yaml will quickly produce an error in this situation instead. ### [`v0.8.26`](https://togithub.com/dtolnay/serde-yaml/releases/tag/0.8.26) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.25...0.8.26) - Add `flush` method to Serializer ([#​251](https://togithub.com/dtolnay/serde-yaml/issues/251), thanks [@​jturner314-nrl](https://togithub.com/jturner314-nrl)) ### [`v0.8.25`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.24...0.8.25) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.24...0.8.25) ### [`v0.8.24`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.23...0.8.24) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.23...0.8.24) ### [`v0.8.23`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.22...0.8.23) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.22...0.8.23) ### [`v0.8.22`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.21...0.8.22) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.21...0.8.22) ### [`v0.8.21`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.20...0.8.21) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.20...0.8.21) ### [`v0.8.20`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.19...0.8.20) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.19...0.8.20) ### [`v0.8.19`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.18...0.8.19) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.18...0.8.19) ### [`v0.8.18`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.17...0.8.18) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.17...0.8.18) ### [`v0.8.17`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.16...0.8.17) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.16...0.8.17) ### [`v0.8.16`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.15...0.8.16) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.15...0.8.16) ### [`v0.8.15`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.14...0.8.15) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.14...0.8.15) ### [`v0.8.14`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.13...0.8.14) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.13...0.8.14) ### [`v0.8.13`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.12...0.8.13) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.12...0.8.13) ### [`v0.8.12`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.11...0.8.12) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.11...0.8.12) ### [`v0.8.11`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.10...0.8.11) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.10...0.8.11) ### [`v0.8.10`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.9...0.8.10) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.9...0.8.10) ### [`v0.8.9`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.8...0.8.9) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.8...0.8.9) ### [`v0.8.8`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.7...0.8.8) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.7...0.8.8) ### [`v0.8.7`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.6...0.8.7) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.6...0.8.7) ### [`v0.8.6`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.5...0.8.6) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.5...0.8.6) ### [`v0.8.5`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.4...0.8.5) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.4...0.8.5) ### [`v0.8.4`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.3...0.8.4) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.3...0.8.4) ### [`v0.8.3`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.2...0.8.3) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.2...0.8.3) ### [`v0.8.2`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.1...0.8.2) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.1...0.8.2) ### [`v0.8.1`](https://togithub.com/dtolnay/serde-yaml/compare/0.8.0...0.8.1) [Compare Source](https://togithub.com/dtolnay/serde-yaml/compare/0.8.0...0.8.1)

Configuration

📅 Schedule: Branch creation - "before 3am on Monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

This PR has been generated by Mend Renovate. View repository job log here.