build(deps): Bump the rust-dependencies group with 6 updates

[dependabot[bot]]

Bumps the rust-dependencies group with 6 updates:

Package	From	To
figment	0.10.10	0.10.12
flate2	1.0.27	1.0.28
reqwest	0.11.20	0.11.22
serde	1.0.188	1.0.190
thiserror	1.0.49	1.0.50
tracing	0.1.37	0.1.40

Updates figment from 0.10.10 to 0.10.12

Commits

• e33a99b New version: 0.10.12.
• 776b27f Silence new unused imports errors.
• 9b1e548 Improve 'Jail::create_file()' docs.
• affdb62 Add 'Jail::create_dir()': create jail directories.
• 4f30545 New version: 0.10.11.
• 6e37c46 Add a tip to avoid 'serde(flatten)'.
• 7d01bb3 Update outdated CI actions.
• 1fd3800 Update 'toml' and 'atomic' dependencies.
• 91b9e29 Allow preserving original env var casing.
• f7a75e7 Add failing test for 'SelectedProfile'.
• See full diff in compare view

Updates flate2 from 1.0.27 to 1.0.28

Release notes

Sourced from flate2's releases.

1.0.28

What's Changed

• Use explicit Default for GzHeaderState enum by @​jongiddy in rust-lang/flate2-rs#371
• Fix spare capacity handling by @​anforowicz in rust-lang/flate2-rs#373
• Fix and unify docs of bufread and read types. by @​georeth in rust-lang/flate2-rs#375
• Reset StreamWrapper after calling mz_inflate / mz_deflate by @​Manishearth in rust-lang/flate2-rs#380
• prepare next patch-release by @​Byron in rust-lang/flate2-rs#378

New Contributors

• @​anforowicz made their first contribution in rust-lang/flate2-rs#373
• @​georeth made their first contribution in rust-lang/flate2-rs#375
• @​Manishearth made their first contribution in rust-lang/flate2-rs#380

Full Changelog: https://github.com/rust-lang/flate2-rs/compare/1.0.27...1.0.28

Commits

• a99b53e Merge pull request #378 from Byron/prep-release
• 223f829 Merge pull request #380 from Manishearth/reset-stream
• 7a61ea5 Reset StreamWrapper after calling mz_inflate / mz_deflate
• 1260d3e prepare next patch-release
• f62ff42 Merge pull request #375 from georeth/fix-read-doc
• 5b23cc9 Fix and unify docs of bufread and read types.
• f285e9a Merge pull request #373 from anforowicz/fix-spare-capacity-handling
• 69972b8 Fix soundness of write_to_spare_capacity_of_vec.
• 82e45fa Refactoring: Dedupe code into write_to_spare_capacity_of_vec helper.
• 20cdcbe Merge pull request #371 from jongiddy/jgiddy/msrv-1.53
• Additional commits viewable in compare view

Updates reqwest from 0.11.20 to 0.11.22

Release notes

Sourced from reqwest's releases.

v0.11.21

What's Changed

• Add automatically detecting macOS proxy settings.
• Add ClientBuilder::tls_info(bool), which will put tls::TlsInfo into the response extensions.
• Fix trust-dns resolver from possible hangs.
• Fix connect timeout to be split among multiple IP addresses.

New Contributors

• @​SpeedReach made their first contribution in seanmonstar/reqwest#1960
• @​jefflloyd made their first contribution in seanmonstar/reqwest#1955
• @​droe made their first contribution in seanmonstar/reqwest#1938
• @​conradludgate made their first contribution in seanmonstar/reqwest#1940

Changelog

Sourced from reqwest's changelog.

v0.11.22

• Fix compilation on Windows when trust-dns is enabled.

v0.11.21

• Add automatically detecting macOS proxy settings.
• Add ClientBuilder::tls_info(bool), which will put tls::TlsInfo into the response extensions.
• Fix trust-dns resolver from possible hangs.
• Fix connect timeout to be split among multiple IP addresses.

Commits

• 5df3861 v0.11.22
• afc3a93 fix trust-dns error kind on windows (#1992)
• d050e60 v0.11.21
• 2a881fb fix: split connect timeout for multiple IPs (#1940)
• 17c893f Bump actions/checkout from 3 to 4 (#1968)
• 10d9d23 Add tls_info / TlsInfo for access to peer's leaf certificate (#1938)
• d3d95a5 Optimize TrustDnsResolver (#1967)
• 0292486 dep: Upgrade trust-dns-resolver from v0.22 to v0.23 (#1965)
• 70d100c Feature: auto detect MacOS proxy settings (#1955)
• 34f6c70 Added wasm in the docs. (#1960)
• See full diff in compare view

Updates serde from 1.0.188 to 1.0.190

Release notes

Sourced from serde's releases.

v1.0.190

• Preserve NaN sign when deserializing f32 from f64 or vice versa (#2637)

v1.0.189

• Fix "cannot infer type" error when internally tagged enum contains untagged variant (#2613, thanks @​ahl)

Commits

• edb1a58 Release 1.0.190
• 11c2917 Merge pull request #2637 from dtolnay/nansign
• 6ba9c12 Float copysign does not exist in libcore yet
• d2fcc34 Ensure f32 deserialized from f64 and vice versa preserve NaN sign
• a091a07 Add float NaN tests
• bb4135c Fix unused imports
• 8de84b7 Resolve get_first clippy lint
• 9cdf332 Remove 'remember to update' reminder from Cargo.toml
• e94fc65 Release 1.0.189
• b908487 Remove double nesting of first_attempt
• Additional commits viewable in compare view

Updates thiserror from 1.0.49 to 1.0.50

Release notes

Sourced from thiserror's releases.

1.0.50

• Improve diagnostic when a #[source], #[from], or #[transparant] attribute refers to a type that has no std::error::Error impl (#258, thanks @​de-vri-es)

Commits

• a7d220d Release 1.0.50
• 4088d16 Ignore module_name_repetitions pedantic clippy lint
• ebebf77 Format ui tests with rustfmt
• ff0a0a5 Source and From attributes only have single-ident path
• 7cec716 Remove reliance on Spanned for Member
• c9fe739 Touch up PR 258
• 4850c6f Merge pull request #258 from de-vri-es/as-dyn-error-span
• a49f7c6 Change span of as_dyn_error() to point compile error at attribute.
• f4eac7e Ignore needless_raw_string_hashes clippy lint
• See full diff in compare view

Updates tracing from 0.1.37 to 0.1.40

Release notes

Sourced from tracing's releases.

tracing 0.1.40

This release fixes a potential stack use-after-free in the Instrument::into_inner method. Only uses of this method are affected by this bug.

Fixed

• Use mem::ManuallyDrop instead of mem::forget in Instrument::into_inner (#2765)

#2765: tokio-rs/tracing#2765

Thanks to @​cramertj and @​manishearth for finding and fixing this issue!

tracing 0.1.39

This release adds several additional features to the tracing macros. In addition, it updates the tracing-core dependency to [v0.1.32][core-0.1.32] and the tracing-attributes dependency to [v0.1.27][attrs-0.1.27].

Added

• Allow constant field names in macros (#2617)
• Allow setting event names in macros (#2699)
• core: Allow ValueSets of any length (#2508)

Changed

• tracing-attributes: updated to [0.1.27][attrs-0.1.27]
• tracing-core: updated to [0.1.32][core-0.1.32]
• attributes: Bump minimum version of proc-macro2 to 1.0.60 (#2732)
• attributes: Generate less dead code for async block return type hint (#2709)

Fixed

• Use fully qualified names in macros for items exported from std prelude (#2621, #2757)
• attributes: Allow [clippy::let_with_type_underscore] in macro-generated code (#2609)
• attributes: Allow unknown_lints in macro-generated code (#2626)
• attributes: Fix a compilation error in #[instrument] when the "log" feature is enabled (#2599)

Documented

• Add axum-insights to relevant crates. (#2713)
• Fix link to RAI pattern crate documentation (#2612)
• Fix docs typos and warnings (#2581)
• Add clippy-tracing to related crates (#2628)
• Add tracing-cloudwatch to related crates (#2667)
• Fix deadlink to tracing-etw repo (#2602)

... (truncated)

Commits

• 15600a3 tracing: prepare to release v0.1.40
• 20a1762 tracing: use ManuallyDrop instead of mem::forget (#2765)
• 4b99457 chore: prepare tracing 0.1.39 (#2755)
• b2a5e11 tracing: update core to v0.1.31 and attributes to v0.1.27
• 3825a50 tracing: use full path when calling format_args! (#2757)
• c4b2a56 chore: prepare tracing-core 0.1.32 (#2754)
• 2502f19 chore: prepare tracing-attributes 0.1.27 (#2756)
• 9048762 Revert "log: update to env_logger 0.10 to fix GHSA-g98v-hv3f-hcfr (#2740)" (#...
• 6ba5af2 docs: remove mention of Registration on v0.1.x (#2753)
• 11aac9a log: deprecate env_logger in favor of tracing_subscriber::fmt::Subscriber...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

[dependabot[bot]]

Looks like these dependencies are updatable in another way, so this is no longer needed.