build(deps): bump the backend-deps group across 1 directory with 8 updates

[dependabot[bot]]

Fixes #377

• Big update to zip so hopefully that helps, new compression library, and we do a quick sanity check (read the file zile). This should hopefully catch corrupted support-packages.

Bumps the backend-deps group with 8 updates in the /src-tauri directory:

Package	From	To
flate2	1.0.29	1.0.30
semver	1.0.22	1.0.23
serde	1.0.199	1.0.201
serde_json	1.0.116	1.0.117
sysinfo	0.30.11	0.30.12
thiserror	1.0.59	1.0.60
wgpu	0.19.4	0.20.0
zip	0.6.6	1.2.3

Updates flate2 from 1.0.29 to 1.0.30

Commits

• d3bea90 Merge pull request #405 from Byron/fix-CI
• 5048843 Merge pull request #407 from striezel-stash/actions-checkout-v4
• 42c86ce Merge pull request #406 from striezel-stash/fix-some-typos
• f7b99e9 Update actions/checkout in GitHub Actions workflows to v4
• 563f1c4 Fix typos
• 1126a4a prepare bugfix release to make docs work again
• bc1b3e9 CI verifies that docs can be built (#404)
• 5ce4154 fix CI by assuring builds work with --all-features enabled (#404)
• See full diff in compare view

Updates semver from 1.0.22 to 1.0.23

Release notes

Sourced from semver's releases.

1.0.23

• Resolve unexpected_cfgs warning (#318)

Commits

• 69efd3c Release 1.0.23
• 451b419 Merge pull request #318 from dtolnay/checkcfg
• 5b71485 Resolve unexpected_cfgs warning
• c520af7 Revert "Temporarily disable miri on doctests"
• 73b5d9e Merge pull request #313 from Saecki/patch-1
• e8d61de chore: fix typo in safety comment
• d282d48 Explicitly install a Rust toolchain for cargo-outdated job
• 6e6ba22 Temporarily disable miri on doctests
• See full diff in compare view

Updates serde from 1.0.199 to 1.0.201

Release notes

Sourced from serde's releases.

v1.0.201

• Resolve unexpected_cfgs warning (#2737)

v1.0.200

• Fix formatting of "invalid type" and "invalid value" deserialization error messages containing NaN or infinite floats (#2733, thanks @​jamessan)

Commits

• b4f1bc1 Release 1.0.201
• 029ab46 Merge pull request #2737 from dtolnay/checkcfg
• 220ca0c Resolve unexpected_cfgs warning
• 20306f4 Fix cfg on test_systemtime_overflow
• cc865ac Release 1.0.200
• 2d973c1 Merge pull request #2733 from jamessan/nan-decimal
• 6ca499b Only format Unexpected::Float with decimal point if it is finite
• See full diff in compare view

Updates serde_json from 1.0.116 to 1.0.117

Release notes

Sourced from serde_json's releases.

v1.0.117

• Resolve unexpected_cfgs warning (#1130)

Commits

• 0ae247c Release 1.0.117
• 4517c7a PartialEq is not implemented between Value and 128-bit ints
• fdf99c7 Combine number PartialEq tests
• b4fc245 Merge pull request #1130 from serde-rs/checkcfg
• 98f1a24 Resolve unexpected_cfgs warning
• See full diff in compare view

Updates sysinfo from 0.30.11 to 0.30.12

Changelog

Sourced from sysinfo's changelog.

0.30.12

• FreeBSD: Fix network interfaces retrieval (one was always missing).

Commits

• See full diff in compare view

Updates thiserror from 1.0.59 to 1.0.60

Release notes

Sourced from thiserror's releases.

1.0.60

• Resolve unexpected_cfgs warning (#298)

Commits

• 870d11b Release 1.0.60
• 0ccee7c Merge pull request #298 from dtolnay/checkcfg
• cf43d0c Resolve unexpected_cfgs warning
• See full diff in compare view

Updates wgpu from 0.19.4 to 0.20.0

Release notes

Sourced from wgpu's releases.

v0.20.0

Major Changes

Pipeline overridable constants

Wgpu supports now pipeline-overridable constants

This allows you to define constants in wgsl like this:

override some_factor: f32 = 42.1337; // Specifies a default of 42.1337 if it's not set.

And then set them at runtime like so on your pipeline consuming this shader:

// ...
fragment: Some(wgpu::FragmentState {
    compilation_options: wgpu::PipelineCompilationOptions {
        constants: &[("some_factor".to_owned(), 0.1234)].into(), // Sets `some_factor` to 0.1234.
        ..Default::default()
    },
    // ...
}),
// ...

By @​teoxoy & @​jimblandy in #5500

Changed feature requirements for timestamps

Due to a specification change write_timestamp is no longer supported on WebGPU. wgpu::CommandEncoder::write_timestamp requires now the new wgpu::Features::TIMESTAMP_QUERY_INSIDE_ENCODERS feature which is available on all native backends but not on WebGPU.

By @​wumpf in #5188

Wgsl const evaluation for many more built-ins

Many numeric built-ins have had a constant evaluation implementation added for them, which allows them to be used in a const context:

abs, acos, acosh, asin, asinh, atan, atanh, cos, cosh, round, saturate, sin, sinh, sqrt, step, tan, tanh, ceil, countLeadingZeros, countOneBits, countTrailingZeros, degrees, exp, exp2, floor, fract, fma, inverseSqrt, log, log2, max, min, radians, reverseBits, sign, trunc

By @​ErichDonGubler in #4879, #5098

New native-only wgsl features

Subgroup operations

The following subgroup operations are available in wgsl now:

subgroupBallot, subgroupAll, subgroupAny, subgroupAdd, subgroupMul, subgroupMin, subgroupMax, subgroupAnd, subgroupOr, subgroupXor, subgroupExclusiveAdd, subgroupExclusiveMul, subgroupInclusiveAdd, subgroupInclusiveMul, subgroupBroadcastFirst, subgroupBroadcast, subgroupShuffle, subgroupShuffleDown, subgroupShuffleUp, subgroupShuffleXor

... (truncated)

Changelog

Sourced from wgpu's changelog.

v0.20.0 (2024-04-28)

Major Changes

Pipeline overridable constants

Wgpu supports now pipeline-overridable constants

This allows you to define constants in wgsl like this:

override some_factor: f32 = 42.1337; // Specifies a default of 42.1337 if it's not set.

And then set them at runtime like so on your pipeline consuming this shader:

// ...
fragment: Some(wgpu::FragmentState {
    compilation_options: wgpu::PipelineCompilationOptions {
        constants: &[("some_factor".to_owned(), 0.1234)].into(), // Sets `some_factor` to 0.1234.
        ..Default::default()
    },
    // ...
}),
// ...

By @​teoxoy & @​jimblandy in #5500

Changed feature requirements for timestamps

Due to a specification change write_timestamp is no longer supported on WebGPU. wgpu::CommandEncoder::write_timestamp requires now the new wgpu::Features::TIMESTAMP_QUERY_INSIDE_ENCODERS feature which is available on all native backends but not on WebGPU.

By @​wumpf in #5188

Wgsl const evaluation for many more built-ins

Many numeric built-ins have had a constant evaluation implementation added for them, which allows them to be used in a const context:

abs, acos, acosh, asin, asinh, atan, atanh, cos, cosh, round, saturate, sin, sinh, sqrt, step, tan, tanh, ceil, countLeadingZeros, countOneBits, countTrailingZeros, degrees, exp, exp2, floor, fract, fma, inverseSqrt, log, log2, max, min, radians, reverseBits, sign, trunc

By @​ErichDonGubler in #4879, #5098

New native-only wgsl features

Subgroup operations

The following subgroup operations are available in wgsl now:

subgroupBallot, subgroupAll, subgroupAny, subgroupAdd, subgroupMul, subgroupMin, subgroupMax, subgroupAnd, subgroupOr, subgroupXor, subgroupExclusiveAdd, subgroupExclusiveMul, subgroupInclusiveAdd, subgroupInclusiveMul, subgroupBroadcastFirst, subgroupBroadcast, subgroupShuffle, subgroupShuffleDown, subgroupShuffleUp, subgroupShuffleXor

... (truncated)

Commits

• 4521502 Release v0.20.0 (#5619)
• 05cfdec build(deps): bump the patch-updates group with 5 updates (#5605)
• e8e33ed refactor(naga): remove extraneous leading path qualifiers (#5612)
• 1ea9639 [hal] Document Api::Fence, its users, and its Vulkan impl. (#5618)
• 4af2e7b [hal] Document Queue::submit ordering guarantees a bit.
• a2cd2b9 [hal] Fix cargo doc --document-private-items. Check in CI. (#5617)
• 9eb1b71 Add some more changelog entries (#5611)
• 739905e Extract a naga pub create_validator function for use in Bevy (#5606)
• d4f3063 [core] Fix caller location tracking in lock::ranked.
• 55c9d69 [naga] fix the way we adjust constant initializers when processing overrides
• Additional commits viewable in compare view

Updates zip from 0.6.6 to 1.2.3

Release notes

Sourced from zip's releases.

v1.2.3

🐛 Bug Fixes

• Remove a window when an extracted directory might be unexpectedly listable and/or cdable by non-owners
• Extract directory contents on Unix even if the directory doesn't have write permission (zip-rs/zip-old#423)

⚙️ Miscellaneous Tasks

• More conditionally-unused imports

v1.2.2

🐛 Bug Fixes

• Failed to clear "writing_raw" before finishing a symlink, leading to dropped extra fields

⚡ Performance

• Use boxed slice for archive comment, since it can't be concatenated
• Optimize for the fact that false signatures can't overlap with real ones

v1.2.1

🐛 Bug Fixes

• Prevent panic when trying to read a file with an unsupported compression method
• Prevent panic after reading an invalid LZMA file
• Make Stored the default compression method if Deflated isn't available, so that zip files are readable by as much software as possible
• version_needed was wrong when e.g. cfg(bzip2) but current file wasn't bzip2 (#100)
• file paths shouldn't start with slashes (#102)

🚜 Refactor

• Overhaul impl Arbitrary for FileOptions
• Remove unused atomic module

v1.2.0

🚀 Features

• Add method decompressed_size() so non-recursive ZIP bombs can be detected

🚜 Refactor

• Make ZipWriter::finish() consume the ZipWriter

⚙️ Miscellaneous Tasks

• Use panic! rather than abort to ensure the fuzz harness can process the failure
• Update fuzz_write to use replace_with
• Remove a drop that can no longer be explicit
• Add #![allow(unexpected_cfgs)] in nightly

v1.1.4

🐛 Bug Fixes

• Rare bug where find_and_parse would give up prematurely on detecting a false end-of-CDR header

v1.1.3

🐛 Bug Fixes

• Alignment was previously handled incorrectly (#33)

🚜 Refactor

... (truncated)

Changelog

Sourced from zip's changelog.

1.2.3 - 2024-05-10

🐛 Bug Fixes

• Remove a window when an extracted directory might be unexpectedly listable and/or cdable by non-owners
• Extract directory contents on Unix even if the directory doesn't have write permission (zip-rs/zip-old#423)

⚙️ Miscellaneous Tasks

• More conditionally-unused imports

1.2.2 - 2024-05-09

🐛 Bug Fixes

• Failed to clear "writing_raw" before finishing a symlink, leading to dropped extra fields

⚡ Performance

• Use boxed slice for archive comment, since it can't be concatenated
• Optimize for the fact that false signatures can't overlap with real ones

1.2.1 - 2024-05-06

🐛 Bug Fixes

• Prevent panic when trying to read a file with an unsupported compression method
• Prevent panic after reading an invalid LZMA file
• Make Stored the default compression method if Deflated isn't available, so that zip files are readable by as much software as possible
• version_needed was wrong when e.g. cfg(bzip2) but current file wasn't bzip2 (#100)
• file paths shouldn't start with slashes (#102)

🚜 Refactor

• Overhaul impl Arbitrary for FileOptions
• Remove unused atomic module

1.2.0 - 2024-05-06

🚀 Features

• Add method decompressed_size() so non-recursive ZIP bombs can be detected

🚜 Refactor

• Make ZipWriter::finish() consume the ZipWriter

⚙️ Miscellaneous Tasks

• Use panic! rather than abort to ensure the fuzz harness can process the failure
• Update fuzz_write to use replace_with
• Remove a drop that can no longer be explicit
• Add #![allow(unexpected_cfgs)] in nightly

1.1.4 - 2024-05-04

🐛 Bug Fixes

• Build was failing with bzip2 enabled
• use is_dir in more places where Windows paths might be handled incorrectly

... (truncated)

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions