Update gix requirement from 0.53.0 to 0.54.0

Updates the requirements on gix to permit the latest version.

Release notes

gix v0.54.0

New Features

Add PathspecDetached as pathspec that can more easily be used across threads.

PathSpec implements gix_status::PathSpec to allow it to be used there. The reason we need a trait and can't do with simply a function is that multiple calls are needed to test for inclusion and allow the common-prefix optimization.

add Repository::stat_options() to learn how an index would compare filesystem stats.

add parallel feature toggle Make certain data structure threadsafe (or Sync) to facilitate multithreading. Further, many algorithms will now use multiple threads by default. If unset, most of gix can only be used in a single thread as data structures won't be Send anymore.

Bug Fixes

do not trust ctime by default. On MacOS it seems to be off by two seconds right from the source, which seems to be an issue stat isn't having.

ignore empty core.askpass settings This is the same as what git does, it's explicit per value, which means that other paths might be flagged as empty automatically.

Other

add note about the trust-model. It should explain why gix is happy to open repositories that won't be handled by git unless overrides are set.

Test

add assertion to assure ThreadSafeRepository is sync. If it doesn't appear to be sync, be sure to use the max-performance-safe feature.

Bug Fixes (BREAKING)

PrepareCheckout::main_worktree() now takes Progress as geric argument. This makes it more flexible and convenient, but is technically a breaking change.

Commit Statistics

30 commits contributed to the release over the course of 15 calendar days.

15 days passed between releases.

9 commits were understood as conventional.

0 issues like '(#ID)' were seen in commit messages

Commit Details

... (truncated)

Changelog

Sourced from gix's changelog.

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

0.30.0 (2023-09-24)

This release contains a security fix which assure URLs like 'ssh://-oProxyCommand=open$IFS-aCalculator/foo' will not execute attacker-controlled strings. The above can, on MacOS, launch the calculator app when using it with gix clone for example, up to v0.29.0.

New Features

gix status with basic index-worktree comparison

gix free index from-list and gix index from-tree gain --skip-hash. This flag can be derived from options, but thus far we have no higher-level writing of the index so this has to do to see the difference in performance.

Refactor

both ein and gix now share some code via the gitoxide library. This can slightly improve compile times as well, even though it wasn't measured.

Chore (BREAKING)

update to the latest prodash It makes proper usage of Progress types easier and allows them to be used as dyn traits as well.

Bug Fixes (BREAKING)

use dyn trait where possible. This reduces compile time due to avoiding duplication.

Commit Statistics

13 commits contributed to the release over the course of 27 calendar days.

33 days passed between releases.

5 commits were understood as conventional.

2 unique issues were worked on: #987, #992

Thanks Clippy

... (truncated)

Commits

7891fb1 Release gix-features v0.35.0, gix-actor v0.27.0, gix-object v0.37.0, gix-glob...
f692809 fix gix-status dev dependencies - can't use versions
8a60d5b prepare changelogs prior to release
c53bbd2 Merge branch 'fix-exploit'
114e91c improve journey test to validate handling ambiguous of ssh-hosts
b06a0dd fix: prevent hosts or paths that look like arguments to be passed to invoked ...
d80b5f6 feat: add Url::host_argument_safe() and Url::path_argument_safe()
54a8495 Merge branch 'reset'
f094f71 feat: gix status with basic index-worktree comparison
f9d14d8 feat: Add PathspecDetached as pathspec that can more easily be used across ...
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

rustyhorde / vergen

Update gix requirement from 0.53.0 to 0.54.0 #252

gix v0.54.0

New Features

Bug Fixes

Other

Test

Bug Fixes (BREAKING)

Commit Statistics

Commit Details

Changelog

0.30.0 (2023-09-24)

New Features

Refactor

Chore (BREAKING)

Bug Fixes (BREAKING)

Commit Statistics

Thanks Clippy

Codecov Report