Skip to content

chore(deps): bump the cargo-dependencies group with 14 updates#2

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/cargo-dependencies-5d7ece5082
Closed

chore(deps): bump the cargo-dependencies group with 14 updates#2
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/cargo-dependencies-5d7ece5082

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 21, 2026
edited
Loading

Copy link
Copy Markdown

Bumps the cargo-dependencies group with 14 updates:

Package From To
smallvec 1.15.1 1.15.2
nom 7.1.3 8.0.0
quick-xml 0.37.5 0.40.1
phf 0.11.3 0.14.0
clap 4.6.0 4.6.1
indicatif 0.17.11 0.18.4
tiny-skia 0.11.4 0.12.0
jpeg-encoder 0.6.1 0.7.0
criterion 0.5.1 0.8.2
assert_cmd 2.2.0 2.2.2
clap_mangen 0.2.33 0.3.0
serde_json 1.0.149 1.0.150
resvg 0.45.1 0.47.0
png 0.17.16 0.18.1

Updates smallvec from 1.15.1 to 1.15.2

Release notes

Sourced from smallvec's releases.

v1.15.2

What's Changed

New Contributors

Full Changelog: servo/rust-smallvec@v1.15.1...v1.15.2

Commits
  • c469051 Bump version.
  • 9fe422b Fix Windows CI.
  • 51b965f Work around rustc 1.93 perf regression with MaybeUninit
  • 9da26a5 Fix use-after-free in DrainFilter::keep_rest for zero-capacity SmallVecs
  • 79184f1 Add Miri test for use-after-free in DrainFilter::keep_rest
  • f59fb36 Merge pull request #397 from GiGainfosystems/exclude_scripts
  • 28b6ed7 Exclude development script
  • See full diff in compare view

Updates nom from 7.1.3 to 8.0.0

Changelog

Sourced from nom's changelog.

8.0.0 2025-01-25

This version represents a significant refactoring of nom to reduce the amount of code generated by parsers, and reduce the API surface. As such, it comes with some breaking changes, mostly around the move from closure based combinators to trait based ones. In practice, it means that instead of writing combinator(arg)(input), we now write combinator(arg).parse(input).

This release also marks the introduction of the nom-language crate, which will hold tools more focused on language parsing than the rest of nom, like the VerboseError type and the newly added precedence parsing combinators.

Thanks

... (truncated)

Commits

Updates quick-xml from 0.37.5 to 0.40.1

Release notes

Sourced from quick-xml's releases.

v0.40.1 - Fix rarely possible serde deserialization panic

What's Changed

  • #964: Fix unreachable!() panic in the serde deserializer when a DOCTYPE declaration appears between two text runs inside an element (e.g. <a>x<!DOCTYPE y>z</a>). The DOCTYPE used to break drain_text's consecutive-text merge, so two DeEvent::Text events reached read_text and tripped its "Cannot be two consequent Text events" invariant. DOCTYPE is now treated as transparent during text drain — it still goes through the entity resolver, but the surrounding text is merged into one run. Discovered via libFuzzer on a real-world SAML deserializer harness.

#964: tafia/quick-xml#964

New Contributors

Full Changelog: tafia/quick-xml@v0.40.0...v0.40.1

v0.40.0 - UTF-16 and ISO-2022-JP encodings supported

What's Changed

MSRV bumped to 1.79.

Now quick-xml supports the UTF-16 and ISO-2022-JP encoded documents. See the new DecodingReader type.

New Features

  • #956: Add DecodingReader, a BufRead adapter that auto-detects encoding from BOM or XML declaration and transcodes to UTF-8. Enabled by the encoding feature.

  • #938: Add new enumeration XmlVersion and typified getter BytesDecl::xml_version().

  • #938: Add new error variant IllFormedError::UnknownVersion.

  • #371: Add new error variant EscapeError::TooManyNestedEntities.

  • #371: Improved compliance with the XML attribute value normalization process by adding

    • Attribute::normalized_value()
    • Attribute::normalized_value_with()
    • Attribute::decoded_and_normalized_value()
    • Attribute::decoded_and_normalized_value_with()

    which ought to be used in place of deprecated

    • Attribute::unescape_value()
    • Attribute::unescape_value_with()
    • Attribute::decode_and_unescape_value()
    • Attribute::decode_and_unescape_value_with()

    Deprecated functions now behaves the same as newly added.

Bug Fixes

  • #938: Use correct rules for EOL normalization in Deserializer when parse XML 1.0 documents. Previously XML 1.1. rules was applied.

Misc Changes

  • #914: Remove deprecated .prefixes(), .resolve(), .resolve_attribute(), and .resolve_element() of NsReader. Use .resolver().<...> methods instead.
  • #938: Now BytesText::xml_content, BytesCData::xml_content and BytesRef::xml_content accepts XmlVersion parameter to apply correct EOL normalization rules.
  • #944: read_text() now returns BytesText which allows you to get the content with properly normalized EOLs. To get the previous behavior use .read_text().decode()?.
  • #956: Bumped MSRV from 1.59 (Feb 2022) to 1.79 (June 2024)

... (truncated)

Changelog

Sourced from quick-xml's changelog.

0.40.1 -- 2026-05-15

Bug Fixes

  • #964: Fix unreachable!() panic in the serde deserializer when a DOCTYPE declaration appears between two text runs inside an element (e.g. <a>x<!DOCTYPE y>z</a>). The DOCTYPE used to break drain_text's consecutive-text merge, so two DeEvent::Text events reached read_text and tripped its "Cannot be two consequent Text events" invariant. DOCTYPE is now treated as transparent during text drain — it still goes through the entity resolver, but the surrounding text is merged into one run. Discovered via libFuzzer on a real-world SAML deserializer harness.

#964: tafia/quick-xml#964

Misc Changes

0.40.0 -- 2026-05-11

MSRV bumped to 1.79.

Now quick-xml supports the UTF-16 encoded documents. See the new DecodingReader type.

New Features

  • #956: Add DecodingReader, a BufRead adapter that auto-detects encoding from BOM or XML declaration and transcodes to UTF-8. Enabled by the encoding feature.

  • #938: Add new enumeration XmlVersion and typified getter BytesDecl::xml_version().

  • #938: Add new error variant IllFormedError::UnknownVersion.

  • #371: Add new error variant EscapeError::TooManyNestedEntities.

  • #371: Improved compliance with the XML attribute value normalization process by adding

    • Attribute::normalized_value()
    • Attribute::normalized_value_with()
    • Attribute::decoded_and_normalized_value()
    • Attribute::decoded_and_normalized_value_with()

    which ought to be used in place of deprecated

    • Attribute::unescape_value()
    • Attribute::unescape_value_with()
    • Attribute::decode_and_unescape_value()
    • Attribute::decode_and_unescape_value_with()

    Deprecated functions now behaves the same as newly added.

Bug Fixes

  • #938: Use correct rules for EOL normalization in Deserializer when parse XML 1.0 documents. Previously XML 1.1. rules was applied.

... (truncated)

Commits
  • 9aaea92 Release 0.40.1
  • ce488bc Merge pull request #964 from williamareynolds/fix/de-doctype-in-text-unreachable
  • e00ae5c Fix unreachable!() panic when DOCTYPE appears between text runs in element co...
  • 2778564 Release 0.40.0
  • 393db03 Merge pull request #962 from Mingun/prepare-0.40
  • a27709a Fix misprint in code example
  • 0c0c914 Make some functions const and enable clippy::missing_const_for_fn lint
  • bf4ffe5 Fix clippy warning: use .first() instead of .get(0)
  • d69baad Fix clippy warning: remove unnecessary after 241f01e20ff679e9248f2ae424c9ba82...
  • 8e0ae4f Fix clippy warning: use strip_prefix instead of manual stripping
  • Additional commits viewable in compare view

Updates phf from 0.11.3 to 0.14.0

Release notes

Sourced from phf's releases.

phf v0.12.0

What's Changed

New Contributors

Full Changelog: rust-phf/rust-phf@phf-v0.11.3...phf-v0.12.0

phf_codegen v0.12.0

What's Changed

New Contributors

Full Changelog: rust-phf/rust-phf@phf_codegen-v0.11.3...phf_codegen-v0.12.0

phf_generator v0.12.0

Chore

  • Update version number in docs

Chore

  • Update changelog

Commit Statistics

  • 5 commits contributed to the release over the course of 138 calendar days.
  • 163 days passed between releases.
  • 2 commits were understood as conventional.
  • 0 issues like '(#ID)' were seen in commit messages

Commit Details

... (truncated)

Commits
  • 1620d16 Prepare 0.14.0 release (#424)
  • e312645 chore(deps): update actions/checkout action to v7 (#423)
  • 3df600c chore(deps): update rust crate syn to v2.0.118 (#422)
  • 808b4c2 chore(deps): update actions/checkout action to v6.0.3 (#421)
  • 4ffa9f0 fix: implement PhfEq to address tuple lifetime issue (#420)
  • 2b64a06 fix: require suffixed int on parsing (#419)
  • 0335793 chore(deps): update embarkstudios/cargo-deny-action action to v2.0.20 (#418)
  • 28aa587 chore(deps): update embarkstudios/cargo-deny-action action to v2.0.19 (#417)
  • dbd34de feat: add FmtConst support for Vec/slice keys (#416)
  • 8125795 feat: migrate to 2024 edition (#415)
  • Additional commits viewable in compare view

Updates clap from 4.6.0 to 4.6.1

Release notes

Sourced from clap's releases.

v4.6.1

[4.6.1] - 2026-04-15

Fixes

  • (derive) Ensure rebuilds happen when an read env variable is changed
Changelog

Sourced from clap's changelog.

[4.6.1] - 2026-04-15

Fixes

  • (derive) Ensure rebuilds happen when an read env variable is changed
Commits
  • 1420275 chore: Release
  • d2c817d docs: Update changelog
  • f88c94e Merge pull request #6341 from epage/sep
  • acbb822 fix(complete): Reduce risk of conflict with actual subcommands
  • a49fadb refactor(complete): Pull out subcommand separator
  • ddc008b Merge pull request #6332 from epage/update
  • 497dc50 chore: Update compatible dependencies
  • dca2326 Merge pull request #6331 from clap-rs/renovate/j178-prek-action-2.x
  • 54bdaa3 chore(deps): Update j178/prek-action action to v2
  • f0d30d9 chore: Release
  • Additional commits viewable in compare view

Updates indicatif from 0.17.11 to 0.18.4

Release notes

Sourced from indicatif's releases.

0.18.4

What's Changed

0.18.3

What's Changed

0.18.2

What's Changed

0.18.1

What's Changed

0.18.0

Unfortunately 0.17.12 had to be yanked because the console upgrade was a semver-incompatible change. Rerelease as 0.18.0 instead.

What's Changed

0.17.12

What's Changed

Commits
  • 4de2f60 Bump version to 0.18.4
  • 8e0ab0e fix: respect NO_COLOR and TERM=dumb environment variables
  • 781b2d0 Take semver-compatible dependency updates
  • 34aee07 Introduce unicode-width feature
  • 51d284f Introduce wasmbind feature
  • ee057e5 Bump tokio from 1.48.0 to 1.49.0
  • 31bcea3 Bump portable-atomic from 1.11.1 to 1.12.0
  • dbd26eb Bump console from 0.16.1 to 0.16.2
  • 7ac4a0d Expose the current tab width
  • 95088ff iter: clean up variable names, casting
  • Additional commits viewable in compare view

Updates tiny-skia from 0.11.4 to 0.12.0

Changelog

Sourced from tiny-skia's changelog.

[0.12.0] - 2026-02-02

Fixed

  • Fixed a panic when drawing small anti-aliased rectangles. Thanks to @​nwhitehead

Added

  • 2-point conical gradient support for (RadialGradient). Thanks to @​wmedrano
  • Sweep gradient support (SweepGradient). Thanks to @​wmedrano
  • Support for a small number of color spaces. Thanks to @​danieldg
  • Added the is_empty and join methods to Rect. Thanks to @​danieldg
  • Implement Hash for PathVerb, Rect and Size and IntSize. Thanks to @​LaurenzV
  • Add support for relaxed SIMD in WebAssembly. Thanks to @​CryZe
  • Add the from_rgba_unchecked method to Color so it can be created in const contexts. Thanks to @​jeffreyrosenbluth
  • Add the scale_by and scale_to method to Size. Thanks to @​jermy
  • Add the take_demultiplied method to Pixmap. Thanks to @​JustForFun88
  • Add the take method to Mask. Thanks to @​valadaptive
  • Add the round_out method to Rect. Thanks to @​valadaptive

Changed

  • The RadialGradient::new requires a start radius now. Set the second argument to 0.0 to preserve the old behavior.
Commits

Updates jpeg-encoder from 0.6.1 to 0.7.0

Commits
  • 4e7b1e1 Run cargo fmt
  • 19c5ded Add cargo fmt --check to github actions
  • 3bba201 Implement Error in no_std
  • dc43432 Merge pull request #27 from vstroebel/ycbcr
  • 057934e Merge pull request #17 from Shnatsel/safe-simd-ycbcr
  • f75f32b Merge branch 'main' into safe-simd-ycbcr
  • f4ab0f2 Switch simd feature back to opt-in, it can be flipped in a subsequent PR
  • 5cf7c83 Fix subtle bug due to intermediate arrays being created by the try_into() call
  • 33de59f Roll back to last working configuration; something must be wrong with the stores
  • 7e055be Use the safe loads/store wrappers inside the AVX FDCT, drop the 'unsafe fn' f...
  • Additional commits viewable in compare view

Updates criterion from 0.5.1 to 0.8.2

Release notes

Sourced from criterion's releases.

criterion-plot-v0.8.2

Other

  • Update Readme

criterion-v0.8.2

Fixed

  • don't build alloca on unsupported targets

Other

  • (deps) bump crate-ci/typos from 1.40.0 to 1.43.0
  • Fix panic with uniform iteration durations in benchmarks
  • Update Readme
  • Exclude development scripts from published package

criterion-plot-v0.8.1

Fixed

  • Typo

criterion-v0.8.1

Fixed

  • Homepage link

Other

  • (deps) bump crate-ci/typos from 1.23.5 to 1.40.0
  • (deps) bump jontze/action-mdbook from 3 to 4
  • (deps) bump actions/checkout from 4 to 6

criterion-plot-v0.8.0

No release notes provided.

criterion-v0.8.0

BREAKING

  • Drop async-std support

Changed

  • Bump MSRV to 1.86, stable to 1.91.1

Added

  • Add ability to plot throughput on summary page.
  • Add support for reporting throughput in elements and bytes - Throughput::ElementsAndBytes allows the text summary to report throughput in both units simultaneously.
  • Add alloca-based memory layout randomisation to mitigate memory effects on measurements.

... (truncated)

Changelog

Sourced from criterion's changelog.

0.8.2 - 2026-02-04

Fixed

  • don't build alloca on unsupported targets

Other

  • (deps) bump crate-ci/typos from 1.40.0 to 1.43.0
  • Fix panic with uniform iteration durations in benchmarks
  • Update Readme
  • Exclude development scripts from published package

0.8.1 - 2025-12-07

Fixed

  • Homepage link

Other

  • (deps) bump crate-ci/typos from 1.23.5 to 1.40.0
  • (deps) bump jontze/action-mdbook from 3 to 4
  • (deps) bump actions/checkout from 4 to 6

0.8.0 - 2025-11-29

BREAKING

  • Drop async-std support

Changed

  • Bump MSRV to 1.86, stable to 1.91.1

Added

  • Add ability to plot throughput on summary page.
  • Add support for reporting throughput in elements and bytes - Throughput::ElementsAndBytes allows the text summary to report throughput in both units simultaneously.
  • Add alloca-based memory layout randomisation to mitigate memory effects on measurements.
  • Add doc comment to benchmark runner in criterion_group macro (removes linter warnings)

Fixed

  • Fix plotting NaN bug

Other

  • Remove Master API Docs links temporarily while we restore the docs publishing.

... (truncated)

Commits
  • 7f0d745 chore: release v0.8.2
  • 4a467ce chore(deps): bump crate-ci/typos from 1.40.0 to 1.43.0
  • b277a75 Fix panic with uniform iteration durations in benchmarks
  • 828af14 fix: don't build alloca on unsupported targets
  • b01316b Update Readme
  • 4c02a3b Exclude development scripts from published package
  • e4e06df chore: release v0.8.1
  • aa548b9 fix: Homepage link
  • 950c3b7 fix: Typo
  • 7e3e50c chore(deps): bump crate-ci/typos from 1.23.5 to 1.40.0
  • Additional commits viewable in compare view

Updates assert_cmd from 2.2.0 to 2.2.2

Changelog

Sourced from assert_cmd's changelog.

[2.2.2] - 2026-05-11

Fixes

  • Ensure #[track_caller] works for better panic messages

[2.2.1] - 2026-04-17

Internal

  • Dependency update
Commits
  • feece89 chore: Release assert_cmd version 2.2.2
  • 367cdf7 docs: Update changelog
  • a98cc85 Merge pull request #289 from marcospb19/track_caller
  • cd2e167 fix: .success() not reporting panic location
  • 45a1c74 chore(deps): Update Prek to v0.3.13 (#293)
  • f1d9b5b chore(deps): Update Prek to v0.3.12 (#292)
  • 1d34bab Merge pull request #291 from epage/template
  • d9a70ad style: Make clippy happy
  • 4f5b5af chore: Update from _rust template
  • 1e1d586 chore(renovate): Fix the tag
  • Additional commits viewable in compare view

Updates clap_mangen from 0.2.33 to 0.3.0

Commits

Updates serde_json from 1.0.149 to 1.0.150

Release notes

Sourced from serde_json's releases.

v1.0.150

Commits
  • a1ae73a Release 1.0.150
  • 1a360b0 Merge pull request #1324 from puneetdixit200/reject-non-string-enum-keys
  • 2037b63 Reject non-string enum object keys
  • 5d30df6 Resolve manual_assert_eq pedantic clippy lint
  • dc8003a Raise required compiler for preserve_order feature to 1.85
  • a42fa98 Unpin CI miri toolchain
  • 684a60e Pin CI miri to nightly-2026-02-11
  • 7c7da33 Raise required compiler to Rust 1.71
  • acf4850 Simplify Number::is_f64
  • 6b8ceab Resolve unnecessary_map_or clippy lint
  • Additional commits viewable in compare view

Updates resvg from 0.45.1 to 0.47.0

Release notes

Sourced from resvg's releases.

v0.47.0

  • resvg-0.*.0.tar.xz is a sources archive with vendored Rust dependencies
  • resvg-explorer-extension.exe is an SVG thumbnailer for Windows Explorer

Check CHANGELOG.

v0.46.0

  • resvg-0.*.0.tar.xz is a sources archive with vendored Rust dependencies
  • resvg-explorer-extension.exe is an SVG thumbnailer for Windows Explorer

Check CHANGELOG.

Changelog

Sourced from resvg's changelog.

[0.47.0] 2026-02-05

This release has an MSRV of 1.87.0 for usvg and resvg and the C API.

Added

  • Focal radius (fr) supported for Radial Gradients. (#1014 by @​wmedrano)
  • Support for variable fonts based on font-variation-settings CSS property. (#997 by @​oetiker)

Changed

  • tiny-skia has a major version bump from 0.11 to 0.12.

[0.46.0]

This release has an MSRV of 1.87.0 for usvg and resvg and the C API.

Added

Changed

Removed

  • Remove unused phf dependency (#920)
Commits

@dependabot
chore(deps): bump the cargo-dependencies group with 14 updates
5828c2c 
Bumps the cargo-dependencies group with 14 updates:

| Package | From | To |
| --- | --- | --- |
| [smallvec](https://github.com/servo/rust-smallvec) | `1.15.1` | `1.15.2` |
| [nom](https://github.com/rust-bakery/nom) | `7.1.3` | `8.0.0` |
| [quick-xml](https://github.com/tafia/quick-xml) | `0.37.5` | `0.40.1` |
| [phf](https://github.com/rust-phf/rust-phf) | `0.11.3` | `0.14.0` |
| [clap](https://github.com/clap-rs/clap) | `4.6.0` | `4.6.1` |
| [indicatif](https://github.com/console-rs/indicatif) | `0.17.11` | `0.18.4` |
| [tiny-skia](https://github.com/linebender/tiny-skia) | `0.11.4` | `0.12.0` |
| [jpeg-encoder](https://github.com/vstroebel/jpeg-encoder) | `0.6.1` | `0.7.0` |
| [criterion](https://github.com/criterion-rs/criterion.rs) | `0.5.1` | `0.8.2` |
| [assert_cmd](https://github.com/assert-rs/assert_cmd) | `2.2.0` | `2.2.2` |
| [clap_mangen](https://github.com/clap-rs/clap) | `0.2.33` | `0.3.0` |
| [serde_json](https://github.com/serde-rs/json) | `1.0.149` | `1.0.150` |
| [resvg](https://github.com/linebender/resvg) | `0.45.1` | `0.47.0` |
| [png](https://github.com/image-rs/image-png) | `0.17.16` | `0.18.1` |


Updates `smallvec` from 1.15.1 to 1.15.2
- [Release notes](https://github.com/servo/rust-smallvec/releases)
- [Commits](servo/rust-smallvec@v1.15.1...v1.15.2)

Updates `nom` from 7.1.3 to 8.0.0
- [Changelog](https://github.com/rust-bakery/nom/blob/main/CHANGELOG.md)
- [Commits](rust-bakery/nom@7.1.3...8.0.0)

Updates `quick-xml` from 0.37.5 to 0.40.1
- [Release notes](https://github.com/tafia/quick-xml/releases)
- [Changelog](https://github.com/tafia/quick-xml/blob/master/Changelog.md)
- [Commits](tafia/quick-xml@v0.37.5...v0.40.1)

Updates `phf` from 0.11.3 to 0.14.0
- [Release notes](https://github.com/rust-phf/rust-phf/releases)
- [Changelog](https://github.com/rust-phf/rust-phf/blob/main/RELEASE_PROCESS.md)
- [Commits](rust-phf/rust-phf@phf-v0.11.3...v0.14.0)

Updates `clap` from 4.6.0 to 4.6.1
- [Release notes](https://github.com/clap-rs/clap/releases)
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md)
- [Commits](clap-rs/clap@clap_complete-v4.6.0...clap_complete-v4.6.1)

Updates `indicatif` from 0.17.11 to 0.18.4
- [Release notes](https://github.com/console-rs/indicatif/releases)
- [Commits](console-rs/indicatif@0.17.11...0.18.4)

Updates `tiny-skia` from 0.11.4 to 0.12.0
- [Changelog](https://github.com/linebender/tiny-skia/blob/main/CHANGELOG.md)
- [Commits](linebender/tiny-skia@v0.11.4...v0.12.0)

Updates `jpeg-encoder` from 0.6.1 to 0.7.0
- [Release notes](https://github.com/vstroebel/jpeg-encoder/releases)
- [Commits](vstroebel/jpeg-encoder@v0.6.1...v0.7.0)

Updates `criterion` from 0.5.1 to 0.8.2
- [Release notes](https://github.com/criterion-rs/criterion.rs/releases)
- [Changelog](https://github.com/criterion-rs/criterion.rs/blob/master/CHANGELOG.md)
- [Commits](criterion-rs/criterion.rs@0.5.1...criterion-v0.8.2)

Updates `assert_cmd` from 2.2.0 to 2.2.2
- [Changelog](https://github.com/assert-rs/assert_cmd/blob/master/CHANGELOG.md)
- [Commits](assert-rs/assert_cmd@v2.2.0...v2.2.2)

Updates `clap_mangen` from 0.2.33 to 0.3.0
- [Release notes](https://github.com/clap-rs/clap/releases)
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md)
- [Commits](clap-rs/clap@clap_mangen-v0.2.33...clap_mangen-v0.3.0)

Updates `serde_json` from 1.0.149 to 1.0.150
- [Release notes](https://github.com/serde-rs/json/releases)
- [Commits](serde-rs/json@v1.0.149...v1.0.150)

Updates `resvg` from 0.45.1 to 0.47.0
- [Release notes](https://github.com/linebender/resvg/releases)
- [Changelog](https://github.com/linebender/resvg/blob/main/CHANGELOG.md)
- [Commits](linebender/resvg@v0.45.1...v0.47.0)

Updates `png` from 0.17.16 to 0.18.1
- [Changelog](https://github.com/image-rs/image-png/blob/master/CHANGES.md)
- [Commits](https://github.com/image-rs/image-png/commits)

---
updated-dependencies:
- dependency-name: smallvec
  dependency-version: 1.15.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: cargo-dependencies
- dependency-name: nom
  dependency-version: 8.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: cargo-dependencies
- dependency-name: quick-xml
  dependency-version: 0.40.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: cargo-dependencies
- dependency-name: phf
  dependency-version: 0.14.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: cargo-dependencies
- dependency-name: clap
  dependency-version: 4.6.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: cargo-dependencies
- dependency-name: indicatif
  dependency-version: 0.18.4
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: cargo-dependencies
- dependency-name: tiny-skia
  dependency-version: 0.12.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: cargo-dependencies
- dependency-name: jpeg-encoder
  dependency-version: 0.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: cargo-dependencies
- dependency-name: criterion
  dependency-version: 0.8.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: cargo-dependencies
- dependency-name: assert_cmd
  dependency-version: 2.2.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: cargo-dependencies
- dependency-name: clap_mangen
  dependency-version: 0.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: cargo-dependencies
- dependency-name: serde_json
  dependency-version: 1.0.150
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: cargo-dependencies
- dependency-name: resvg
  dependency-version: 0.47.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: cargo-dependencies
- dependency-name: png
  dependency-version: 0.18.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: cargo-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Jun 21, 2026
@dependabot @github

dependabot Bot commented on behalf of github Jun 21, 2026

Copy link
Copy Markdown
Author

Looks like these dependencies are no longer updatable, so this is no longer needed.

@dependabot dependabot Bot closed this Jun 21, 2026
@dependabot dependabot Bot deleted the dependabot/cargo/cargo-dependencies-5d7ece5082 branch June 21, 2026 16:11
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update rust code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants