Skip to content

build(deps): bump the prod group across 1 directory with 29 updates#10920

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/prod-a1af7bfd91
Open

build(deps): bump the prod group across 1 directory with 29 updates#10920
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/prod-a1af7bfd91

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 7, 2026

Copy link
Copy Markdown
Contributor

Bumps the prod group with 29 updates in the / directory:

Package From To
bitflags 2.11.1 2.13.0
bitvec 1.0.1 1.1.1
bytes 1.11.1 1.12.0
chrono 0.4.44 0.4.45
crossbeam-channel 0.5.15 0.5.16
humantime 2.3.0 2.4.0
hyper 1.9.0 1.10.1
inferno 0.12.6 0.12.7
insta 1.47.2 1.48.0
jsonrpsee-proc-macros 0.24.10 0.24.11
jsonrpsee-types 0.24.10 0.24.11
log 0.4.29 0.4.33
pin-project 1.1.11 1.1.13
prost 0.14.3 0.14.4
quote 1.0.45 1.0.46
reddsa 0.5.1 0.5.2
regex 1.12.3 1.12.4
reqwest 0.12.28 0.13.3
serde_json 1.0.149 1.0.150
serde_with 3.17.0 3.21.0
syn 2.0.117 2.0.118
tokio 1.52.1 1.52.3
tonic 0.14.5 0.14.6
tonic-prost 0.14.5 0.14.6
tonic-prost-build 0.14.5 0.14.6
tonic-reflection 0.14.5 0.14.6
tower 0.4.13 0.5.3
config 0.15.22 0.15.25
which 8.0.2 8.0.4

Updates bitflags from 2.11.1 to 2.13.0

Release notes

Sourced from bitflags's releases.

2.13.0

What's Changed

Full Changelog: bitflags/bitflags@2.12.1...2.13.0

2.12.1

What's Changed

Full Changelog: bitflags/bitflags@2.12.0...2.12.1

2.12.0

Yanked

This release has been yanked because the #[flag_name] processing noticeably increases macro recursion, hitting the default limit in cases that are already close to it.

What's Changed

Full Changelog: bitflags/bitflags@2.11.1...2.12.0

Changelog

Sourced from bitflags's changelog.

2.13.0

What's Changed

Full Changelog: bitflags/bitflags@2.12.1...2.13.0

2.12.1

What's Changed

Full Changelog: bitflags/bitflags@2.12.0...2.12.1

2.12.0

Yanked

This release has been yanked because the #[flag_name] processing noticeably increases macro recursion, hitting the default limit in cases that are already close to it.

What's Changed

Full Changelog: bitflags/bitflags@2.11.1...2.12.0

Commits
  • 9253889 prepare for 2.13.0 release
  • fbbbfac Merge pull request #489 from ssrlive/main
  • 8c498c7 Change visibility of new function to crate scope
  • 3cbddab move iter_equal_names to trait Flags
  • 80f2193 add MyFlags::Abc::iter_equal_names() method
  • 9196a3a Merge pull request #488 from bitflags/cargo/2.12.1
  • 5626df4 prepare for 2.12.1 release
  • a5d3d5e Merge pull request #487 from bitflags/fix/macro-expansion
  • 241a8e0 add a few docs for tt-munchers
  • 1d21383 namaespace #[flag_name] under #[bitflags()]
  • Additional commits viewable in compare view

Updates bitvec from 1.0.1 to 1.1.1

Changelog

Sourced from bitvec's changelog.

Changelog

All notable changes will be documented in this file.

This document is written according to the [Keep a Changelog][kac] style.

  1. Version 1
    1. 1.1.0
    2. 1.0.1
    3. 1.0.0
  2. Version 0 (https://github.com/ferrilab/bitvec/blob/main/Prototyping)
    1. 0.22
    2. 0.21
    3. 0.20
    4. 0.19
    5. 0.18
    6. 0.17
    7. 0.16
    8. 0.15
    9. 0.14
    10. 0.13
    11. 0.12
    12. 0.11
    13. 0.10
    14. 0.9
    15. 0.8
    16. 0.7
    17. 0.6
    18. 0.5
    19. 0.4
    20. 0.3
    21. 0.2
    22. 0.1

Version 1

bitvec’s initial development is now complete, and uses the one-dot series. It will continue to receive maintenance, but its API is now stable and will not change until const-generics allow BitArray to be rewritten.

1.1.0

The BitSlice::shift_{left,right} functions have been renamed to BitSlice::shift_{start,end} to try to better reflect their behavior. These functions move data relative to the index as defined by the O: BitOrder type parameter, not according to the processor lsl and lsr instructions.

Commits

Updates bytes from 1.11.1 to 1.12.0

Release notes

Sourced from bytes's releases.

Bytes v1.12.0

1.12.0 (June 18th, 2026)

Added

  • Add BytesMut::extend_from_within() (#818)
  • Add BytesMut::try_unsplit() (#746)

Fixed

  • Fix panic in get_int if nbytes is zero (#806)

Changed

  • Pass vtable data by value (#826)
  • Exclude development scripts from published package (#810)

Documented

  • Document that BytesMut::{reserve,try_reserve} doesn't preserve unused capacity (#808)
Changelog

Sourced from bytes's changelog.

1.12.0 (June 18th, 2026)

Added

  • Add BytesMut::extend_from_within() (#818)
  • Add BytesMut::try_unsplit() (#746)

Fixed

  • Fix panic in get_int if nbytes is zero (#806)

Changed

  • Pass vtable data by value (#826)
  • Exclude development scripts from published package (#810)

Documented

  • Document that BytesMut::{reserve,try_reserve} doesn't preserve unused capacity (#808)
Commits

Updates chrono from 0.4.44 to 0.4.45

Release notes

Sourced from chrono's releases.

0.4.45

What's Changed

Commits
  • 1703382 Prepare 0.4.45 release
  • 881f9ab tz_data: fix tzdata locations on Android
  • f14ead4 fix(tz): reject TZ offset hour of 24 to avoid FixedOffset overflow
  • c6063e6 Update similar-asserts requirement from 1.6.1 to 2.0.0
  • 120686c Bump codecov/codecov-action from 5 to 6
  • See full diff in compare view

Updates crossbeam-channel from 0.5.15 to 0.5.16

Release notes

Sourced from crossbeam-channel's releases.

crossbeam-channel 0.5.16

  • Improve support for rust-analyzer auto-completion of code inside select!/select_biased! macro. (#1240)
  • Make never const. (#1250)
Commits
  • 9b56303 Prepare for the next release
  • a078b17 ci: Sync config with main
  • 508c29d Remove crossbeam-skiplist which is not published from this branch from worksp...
  • 6a20e57 tests: Fix mismatched_lifetime_syntaxes
  • c2d674f epoch: Fix rustdoc::invalid_rust_codeblocks
  • bd6563e Update no_atomic.rs
  • d3e1e36 Make CachePadded<T> have C repr to allow casting to and from T (#1270)
  • c0c466e channel: Use non-poison Mutex
  • 8b3940f Add missing word to docs (#1208)
  • df6eec0 docs: Link select_biased! from select! macro (#1202)
  • Additional commits viewable in compare view

Updates humantime from 2.3.0 to 2.4.0

Release notes

Sourced from humantime's releases.

2.4.0

What's Changed

Commits
  • fc09281 chore: prepare release 2.4.0
  • 8a022cc feat: allow creating Duration in const context
  • 27a4f77 Explicitly set rust-version to 1.60
  • acc3c19 ci: upgrade to actions/checkout v7
  • 3acf96b ci: fix workflow formatting
  • See full diff in compare view

Updates hyper from 1.9.0 to 1.10.1

Release notes

Sourced from hyper's releases.

v1.10.1

What's Changed

Full Changelog: hyperium/hyper@v1.10.0...v1.10.1

v1.10.0

Features

Bug Fixes

  • http1:
  • http2:
    • do not reserve capacity before body data is available (#4061) (99f24345, closes #4003)
    • reading trailers shouldn't propagate NO_ERROR from early response (#3998) (e5ad96b1)

Refactors, chores, et al

New Contributors

... (truncated)

Changelog

Sourced from hyper's changelog.

v1.10.1 (2026-05-29)

Bug Fixes

  • http1: fix busy loop when peer half-closes and open body (#4086) (c6cb906f, closes #4085)

v1.10.0 (2026-05-27)

Bug Fixes

  • http1:
  • http2:
    • do not reserve capacity before body data is available (#4061) (99f24345, closes #4003)
    • reading trailers shouldn't propagate NO_ERROR from early response (#3998) (e5ad96b1)

Features

Commits

Updates inferno from 0.12.6 to 0.12.7

Changelog

Sourced from inferno's changelog.

[0.12.7] - 2026-07-05

Changed

Commits

Updates insta from 1.47.2 to 1.48.0

Release notes

Sourced from insta's releases.

1.48.0

Release Notes

  • Add strip_ansi_escape_codes setting which removes ANSI escape sequences (color codes, cursor movement, etc.) from snapshot content before comparison. Requires the filters feature. #899 (@​pierluigilenoci)
  • Add opt-in support for YAML literal blocks for multiline strings in snapshot metadata fields such as description and expression. Set INSTA_YAML_BLOCK_STYLE=1 to enable. #851 (@​ivov)
  • Setting CI=true normally makes cargo insta test behave as though --check was passed. Explicit snapshot handling options such as --accept now take precedence over this environment variable, allowing users to override this behavior if they want to. #924
  • Fix cargo insta test --profile being forwarded to nextest as the nextest profile instead of the cargo build profile; it now translates to --cargo-profile for the nextest runner. Add --nextest-profile to select the nextest profile. #910
  • Fix cargo insta pending-snapshots printing unusable \\?\-prefixed paths on Windows. The --snapshot filter now also accepts partial paths: any trailing path suffix of the snapshot file matches, so a bare --snapshot my_test.snap works. #904
  • Accepting a binary snapshot no longer fails with os error 2 when its data file is missing (e.g. gitignored and not committed). #914

Install cargo-insta 1.48.0

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/mitsuhiko/insta/releases/download/1.48.0/cargo-insta-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy Bypass -c "irm https://github.com/mitsuhiko/insta/releases/download/1.48.0/cargo-insta-installer.ps1 | iex"

Download cargo-insta 1.48.0

File Platform Checksum
cargo-insta-aarch64-apple-darwin.tar.xz Apple Silicon macOS checksum
cargo-insta-x86_64-apple-darwin.tar.xz Intel macOS checksum
cargo-insta-x86_64-pc-windows-msvc.zip x64 Windows checksum
cargo-insta-x86_64-unknown-linux-gnu.tar.xz x64 Linux checksum
cargo-insta-x86_64-unknown-linux-musl.tar.xz x64 MUSL Linux checksum
Changelog

Sourced from insta's changelog.

1.48.0

  • Add strip_ansi_escape_codes setting which removes ANSI escape sequences (color codes, cursor movement, etc.) from snapshot content before comparison. Requires the filters feature. #899 (@​pierluigilenoci)
  • Add opt-in support for YAML literal blocks for multiline strings in snapshot metadata fields such as description and expression. Set INSTA_YAML_BLOCK_STYLE=1 to enable. #851 (@​ivov)
  • Setting CI=true normally makes cargo insta test behave as though --check was passed. Explicit snapshot handling options such as --accept now take precedence over this environment variable, allowing users to override this behavior if they want to. #924
  • Fix cargo insta test --profile being forwarded to nextest as the nextest profile instead of the cargo build profile; it now translates to --cargo-profile for the nextest runner. Add --nextest-profile to select the nextest profile. #910
  • Fix cargo insta pending-snapshots printing unusable \\?\-prefixed paths on Windows. The --snapshot filter now also accepts partial paths: any trailing path suffix of the snapshot file matches, so a bare --snapshot my_test.snap works. #904
  • Accepting a binary snapshot no longer fails with os error 2 when its data file is missing (e.g. gitignored and not committed). #914
Commits
  • 7f23d2e Release 1.48.0 (#925)
  • ee9cae1 Allow CI=true to be overridden by an explicitly passed --accept CLI flag ...
  • 043cf82 fix: translate --profile to --cargo-profile for nextest (#913)
  • 9c77f13 test: cover deep-wildcard redaction through arrays (#915)
  • 362f432 Fix --snapshot filter on Windows; allow partial paths (#904)
  • a436836 fix: tolerate a missing binary snapshot data file (#914)
  • bf5fcdf fix: regenerate Cargo.lock and guard it with --locked in CI (#912)
  • a761a9c feat: Support YAML literal blocks for multiline strings (#851)
  • f9633f3 ci: pin check-minver to nightly-2026-04-25 (#905)
  • c7b98b8 feat: add strip_ansi_escape_codes setting (#899)
  • See full diff in compare view

Updates jsonrpsee-proc-macros from 0.24.10 to 0.24.11

Commits

Updates jsonrpsee-types from 0.24.10 to 0.24.11

Commits

Updates log from 0.4.29 to 0.4.33

Release notes

Sourced from log's releases.

0.4.32

What's Changed

Full Changelog: rust-lang/log@0.4.31...0.4.32

0.4.31

What's Changed

New Contributors

Full Changelog: rust-lang/log@0.4.30...0.4.31

0.4.30

What's Changed

New Contributors

Full Changelog: rust-lang/log@0.4.29...0.4.30

Notable Changes

Changelog

Sourced from log's changelog.

[0.4.33] - 2026-06-20

What's Changed

New Contributors

Full Changelog: rust-lang/log@0.4.32...0.4.33

[0.4.32] - 2026-06-04

What's Changed

Full Changelog: rust-lang/log@0.4.31...0.4.32

[0.4.31] - 2026-06-02

What's Changed

New Contributors

Full Changelog: rust-lang/log@0.4.30...0.4.31

[0.4.30] - 2026-05-21

What's Changed

New Contributors

Full Changelog: rust-lang/log@0.4.29...0.4.30

Notable Changes

Commits
  • f405739 Merge pull request #734 from rust-lang/cargo/0.4.33
  • 6a24abf prepare for 0.4.33 release
  • 87e0621 Merge pull request #732 from matteo-zeggiotti-ok/fix-key-comparison
  • a9b5711 Review: fallback to the &str hash
  • cc89cc6 Review: fixed other comparisons
  • 920e7dc Review: fixed comparison on MaybeStaticStr
  • 0d71d3c Fixed key comparison
  • a5b5b21 Merge pull request #730 from rust-lang/cargo/0.4.32
  • c8d3b12 prepare for 0.4.32 release
  • ce6cd9f Merge pull request #729 from tisonkun/kv-std-support
  • Additional commits viewable in compare view

Updates pin-project from 1.1.11 to 1.1.13

Release notes

Sourced from pin-project's releases.

1.1.13

  • Suppress clippy::missing_trait_methods lint in generated code.

1.1.12

  • Documentation improvements.
Changelog

Sourced from pin-project's changelog.

[1.1.13] - 2026-05-13

  • Suppress clippy::missing_trait_methods lint in generated code.

[1.1.12] - 2026-05-05

  • Documentation improvements.
Commits

Updates prost from 0.14.3 to 0.14.4

Changelog

Sourced from prost's changelog.

Prost version 0.14.4

PROST! is a Protocol Buffers implementation for the Rust Language. prost generates simple, idiomatic Rust code from proto2 and proto3 files.

🚀 Features

  • (prost-derive) Make is_valid a constant function (#1401)
  • Increase MSRV to 1.85 (#1428)

🐛 Bug Fixes

  • Use Display instead of Debug for generated enumeration attributes (#1419)
  • (prost-derive) Return error for invalid enumeration default identifiers (#1426)
  • (build) Grab binary path from cargo (#1429)
  • (build) Fix C++ build on GCC 15 (#1395)

📚 Documentation

  • Add example for decode_length_delimiter (#1311)
  • Update protobuf-src example to avoid unsafe set_var

🧪 Testing

  • Test derive Eq behavior (#1422)
  • (groups) Actually construct NestedGroup (#1363)

💼 Dependencies

  • (deps) Update criterion requirement from 0.7 to 0.8 (#1374)
  • (deps) Remove getrandom@0.4.1 from build-dependencies (#1400)
  • (deps) Update rand requirement from 0.9 to 0.10 (#1397)
  • (deps) Bump actions/upload-artifact from 6 to 7 (#1409)
  • (deps) Update cargo clippy to 1.89 (#1433)
  • (deps) Update cargo clippy to 1.91 (#1435)
  • (deps) Update and improve nix devshell (#1393)

🎨 Styling

  • Prevent needless borrow (#1404)
  • Use std::hint::black_box() (#1403)
  • Use variables directly in format!() (#1432)
  • Remove explicit .into_iter() (

@dependabot dependabot Bot added A-dependencies Area: Dependency file updates A-rust Area: Updates to Rust code C-exclude-from-changelog Category: The PR should be excluded from the changelog and release notes labels Jul 7, 2026
Copilot AI review requested due to automatic review settings July 7, 2026 20:21

Copilot AI left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Copilot can't review bot-authored pull requests automatically. A user with Copilot access can request a review manually.

---
updated-dependencies:
- dependency-name: bitflags
  dependency-version: 2.13.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod
- dependency-name: bitvec
  dependency-version: 1.1.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod
- dependency-name: bytes
  dependency-version: 1.12.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod
- dependency-name: chrono
  dependency-version: 0.4.45
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod
- dependency-name: config
  dependency-version: 0.15.25
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod
- dependency-name: crossbeam-channel
  dependency-version: 0.5.16
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod
- dependency-name: humantime
  dependency-version: 2.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod
- dependency-name: hyper
  dependency-version: 1.10.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod
- dependency-name: inferno
  dependency-version: 0.12.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod
- dependency-name: insta
  dependency-version: 1.48.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod
- dependency-name: jsonrpsee-proc-macros
  dependency-version: 0.24.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod
- dependency-name: jsonrpsee-types
  dependency-version: 0.24.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod
- dependency-name: log
  dependency-version: 0.4.33
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod
- dependency-name: pin-project
  dependency-version: 1.1.13
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod
- dependency-name: prost
  dependency-version: 0.14.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod
- dependency-name: quote
  dependency-version: 1.0.46
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod
- dependency-name: reddsa
  dependency-version: 0.5.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod
- dependency-name: regex
  dependency-version: 1.12.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod
- dependency-name: reqwest
  dependency-version: 0.13.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod
- dependency-name: serde_json
  dependency-version: 1.0.150
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod
- dependency-name: serde_with
  dependency-version: 3.21.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod
- dependency-name: syn
  dependency-version: 2.0.118
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod
- dependency-name: tokio
  dependency-version: 1.52.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod
- dependency-name: tonic
  dependency-version: 0.14.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod
- dependency-name: tonic-prost
  dependency-version: 0.14.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod
- dependency-name: tonic-prost-build
  dependency-version: 0.14.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod
- dependency-name: tonic-reflection
  dependency-version: 0.14.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod
- dependency-name: tower
  dependency-version: 0.5.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod
- dependency-name: which
  dependency-version: 8.0.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod
...

Signed-off-by: dependabot[bot] <support@github.com>
Copilot AI review requested due to automatic review settings July 10, 2026 09:55
@dependabot dependabot Bot force-pushed the dependabot/cargo/prod-a1af7bfd91 branch from ad242a8 to 44803c7 Compare July 10, 2026 09:55

Copilot AI left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Copilot can't review bot-authored pull requests automatically. A user with Copilot access can request a review manually.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

A-dependencies Area: Dependency file updates A-rust Area: Updates to Rust code C-exclude-from-changelog Category: The PR should be excluded from the changelog and release notes P-Low ❄️

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant