Skip to content

chore(deps): bump the dependencies group with 6 updates#2192

Open
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/cargo/dependencies-347f77adf5
Open

chore(deps): bump the dependencies group with 6 updates#2192
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/cargo/dependencies-347f77adf5

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 11, 2026

Bumps the dependencies group with 6 updates:

Package From To
clap_complete 4.6.3 4.6.5
tokio 1.52.2 1.52.3
assert_cmd 2.2.1 2.2.2
octocrab 0.49.9 0.50.0
quick-xml 0.39.2 0.40.0
serde_with 3.19.0 3.20.0

Updates clap_complete from 4.6.3 to 4.6.5

Commits
  • c8c9355 chore: Release
  • af74def docs: Update changelog
  • c96f222 Merge pull request #6368 from truffle-dev/fix/fish-env-escaping
  • 49a05cd fix(complete): Two-pass quote fish env-completer
  • e791004 test(complete): Snapshot fish env quoting cases
  • 87ec1ad chore: Release
  • 78f2529 docs: Update changelog
  • b61f270 Merge pull request #6369 from Metbcy/fix/zsh-completion-ordering
  • 74c6666 fix(complete): Keep zsh candidate order
  • d142d8f Merge pull request #6360 from epage/string
  • Additional commits viewable in compare view

Updates tokio from 1.52.2 to 1.52.3

Release notes

Sourced from tokio's releases.

Tokio v1.52.3

1.52.3 (May 8th, 2026)

Fixed

  • sync: fix underflow in mpsc channel len() (#8062)
  • sync: notify receivers in mpsc OwnedPermit::release() method (#8075)
  • sync: require that an RwLock has max_readers != 0 (#8076)
  • sync: return Empty from try_recv() when mpsc is closed with outstanding permits (#8074)

#8062: tokio-rs/tokio#8062 #8074: tokio-rs/tokio#8074 #8075: tokio-rs/tokio#8075 #8076: tokio-rs/tokio#8076

Commits

Updates assert_cmd from 2.2.1 to 2.2.2

Changelog

Sourced from assert_cmd's changelog.

[2.2.2] - 2026-05-11

Fixes

  • Ensure #[track_caller] works for better panic messages
Commits
  • feece89 chore: Release assert_cmd version 2.2.2
  • 367cdf7 docs: Update changelog
  • a98cc85 Merge pull request #289 from marcospb19/track_caller
  • cd2e167 fix: .success() not reporting panic location
  • 45a1c74 chore(deps): Update Prek to v0.3.13 (#293)
  • f1d9b5b chore(deps): Update Prek to v0.3.12 (#292)
  • 1d34bab Merge pull request #291 from epage/template
  • d9a70ad style: Make clippy happy
  • 4f5b5af chore: Update from _rust template
  • 1e1d586 chore(renovate): Fix the tag
  • Additional commits viewable in compare view

Updates octocrab from 0.49.9 to 0.50.0

Release notes

Sourced from octocrab's releases.

v0.50.0

Added

  • add create_comment to PullRequestHandler (#880)
  • Add support for exchanging oauth code for access token (#780)
  • add get_app (#757)
  • Add ability to update an existing label (#786)
  • Added converted_from_draft to Event (#859)

Fixed

  • Use PUT not PATCH for pull request reviews (#879)
  • cargo fmt, cargo test, Set MSRV to 1.85.0 (#878)
  • deser generate repo as respository (#812)
  • use new search model on search function
  • revert commit back to correct structure

Other

  • [breaking] remove the either dependency (#883)
  • added issue_field_added to Event enum (#882)
  • update MSRV to 1.95.0
  • don't include unconditional backtrace in Display impl (#824)
  • add a simple test for compare commits
  • remove duplicated GitUser
  • create search models submodule
  • move repository model from commits module
  • move maybe_empty to models module
  • remove Option<> for some fields of PullRequest (#873)
Changelog

Sourced from octocrab's changelog.

0.50.0 - 2026-05-05

Added

  • add create_comment to PullRequestHandler (#880)
  • Add support for exchanging oauth code for access token (#780)
  • add get_app (#757)
  • Add ability to update an existing label (#786)
  • Added converted_from_draft to Event (#859)

Fixed

  • Use PUT not PATCH for pull request reviews (#879)
  • cargo fmt, cargo test, Set MSRV to 1.85.0 (#878)
  • deser generate repo as respository (#812)
  • use new search model on search function
  • revert commit back to correct structure

Other

  • [breaking] remove the either dependency (#883)
  • added issue_field_added to Event enum (#882)
  • update MSRV to 1.95.0
  • don't include unconditional backtrace in Display impl (#824)
  • add a simple test for compare commits
  • remove duplicated GitUser
  • create search models submodule
  • move repository model from commits module
  • move maybe_empty to models module
  • remove Option<> for some fields of PullRequest (#873)
Commits

Updates quick-xml from 0.39.2 to 0.40.0

Release notes

Sourced from quick-xml's releases.

v0.40.0 - UTF-16 and ISO-2022-JP encodings supported

What's Changed

MSRV bumped to 1.79.

Now quick-xml supports the UTF-16 and ISO-2022-JP encoded documents. See the new DecodingReader type.

New Features

  • #956: Add DecodingReader, a BufRead adapter that auto-detects encoding from BOM or XML declaration and transcodes to UTF-8. Enabled by the encoding feature.

  • #938: Add new enumeration XmlVersion and typified getter BytesDecl::xml_version().

  • #938: Add new error variant IllFormedError::UnknownVersion.

  • #371: Add new error variant EscapeError::TooManyNestedEntities.

  • #371: Improved compliance with the XML attribute value normalization process by adding

    • Attribute::normalized_value()
    • Attribute::normalized_value_with()
    • Attribute::decoded_and_normalized_value()
    • Attribute::decoded_and_normalized_value_with()

    which ought to be used in place of deprecated

    • Attribute::unescape_value()
    • Attribute::unescape_value_with()
    • Attribute::decode_and_unescape_value()
    • Attribute::decode_and_unescape_value_with()

    Deprecated functions now behaves the same as newly added.

Bug Fixes

  • #938: Use correct rules for EOL normalization in Deserializer when parse XML 1.0 documents. Previously XML 1.1. rules was applied.

Misc Changes

  • #914: Remove deprecated .prefixes(), .resolve(), .resolve_attribute(), and .resolve_element() of NsReader. Use .resolver().<...> methods instead.
  • #938: Now BytesText::xml_content, BytesCData::xml_content and BytesRef::xml_content accepts XmlVersion parameter to apply correct EOL normalization rules.
  • #944: read_text() now returns BytesText which allows you to get the content with properly normalized EOLs. To get the previous behavior use .read_text().decode()?.
  • #956: Bumped MSRV from 1.59 (Feb 2022) to 1.79 (June 2024)

#371: tafia/quick-xml#371 #914: tafia/quick-xml#914 #938: tafia/quick-xml#938 #944: tafia/quick-xml#944 #956: tafia/quick-xml#956

New Contributors

Full Changelog: tafia/quick-xml@v0.39.4...v0.40.0

v0.39.4 - Fix another panics when parse malformed DTD

... (truncated)

Changelog

Sourced from quick-xml's changelog.

0.40.0 -- 2026-05-11

MSRV bumped to 1.79.

Now quick-xml supports the UTF-16 encoded documents. See the new DecodingReader type.

New Features

  • #956: Add DecodingReader, a BufRead adapter that auto-detects encoding from BOM or XML declaration and transcodes to UTF-8. Enabled by the encoding feature.

  • #938: Add new enumeration XmlVersion and typified getter BytesDecl::xml_version().

  • #938: Add new error variant IllFormedError::UnknownVersion.

  • #371: Add new error variant EscapeError::TooManyNestedEntities.

  • #371: Improved compliance with the XML attribute value normalization process by adding

    • Attribute::normalized_value()
    • Attribute::normalized_value_with()
    • Attribute::decoded_and_normalized_value()
    • Attribute::decoded_and_normalized_value_with()

    which ought to be used in place of deprecated

    • Attribute::unescape_value()
    • Attribute::unescape_value_with()
    • Attribute::decode_and_unescape_value()
    • Attribute::decode_and_unescape_value_with()

    Deprecated functions now behaves the same as newly added.

Bug Fixes

  • #938: Use correct rules for EOL normalization in Deserializer when parse XML 1.0 documents. Previously XML 1.1. rules was applied.

Misc Changes

  • #914: Remove deprecated .prefixes(), .resolve(), .resolve_attribute(), and .resolve_element() of NsReader. Use .resolver().<...> methods instead.
  • #938: Now BytesText::xml_content, BytesCData::xml_content and BytesRef::xml_content accepts XmlVersion parameter to apply correct EOL normalization rules.
  • #944: read_text() now returns BytesText which allows you to get the content with properly normalized EOLs. To get the previous behavior use .read_text().decode()?.
  • #956: Bumped MSRV from 1.59 (Feb 2022) to 1.79 (June 2024)

#371: tafia/quick-xml#371 #914: tafia/quick-xml#914 #938: tafia/quick-xml#938 #944: tafia/quick-xml#944 #956: tafia/quick-xml#956

0.39.4 -- 2026-05-08

... (truncated)

Commits
  • 2778564 Release 0.40.0
  • 393db03 Merge pull request #962 from Mingun/prepare-0.40
  • a27709a Fix misprint in code example
  • 0c0c914 Make some functions const and enable clippy::missing_const_for_fn lint
  • bf4ffe5 Fix clippy warning: use .first() instead of .get(0)
  • d69baad Fix clippy warning: remove unnecessary after 241f01e20ff679e9248f2ae424c9ba82...
  • 8e0ae4f Fix clippy warning: use strip_prefix instead of manual stripping
  • b795a5d Remove outdated documentation line that accidentally remained after 99d2870a3...
  • 94e61ed Merge pull request #956 from dralley/decode
  • b918b0b Expand tests using DecodingReader
  • Additional commits viewable in compare view

Updates serde_with from 3.19.0 to 3.20.0

Release notes

Sourced from serde_with's releases.

serde_with v3.20.0

Added

  • Add support for base58 encoding, similar to the existing base64 setup by @​mitinarseny (#943)

Fixed

Commits
  • f1b06c7 Bump version to 3.20.0 (#953)
  • 11fe1c5 Bump version to 3.20.0
  • 222b9aa Include Rust 1.95 in the CI matrix (#951)
  • 993770c Include Rust 1.95 in the CI matrix
  • 731b00b feat: automatic schemars support for Base64 (#949)
  • 93d6d9d Bump github/codeql-action from 4.35.2 to 4.35.3 in the github-actions group (...
  • 59bc97b Bump github/codeql-action in the github-actions group
  • 84f2e40 feat: automatic schemars support for base64
  • ff837ab feat: base58 (#943)
  • 9fda9ce chore: bring back newline
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the dependencies group with 6 updates
f68b1e6 
Bumps the dependencies group with 6 updates:

| Package | From | To |
| --- | --- | --- |
| [clap_complete](https://github.com/clap-rs/clap) | `4.6.3` | `4.6.5` |
| [tokio](https://github.com/tokio-rs/tokio) | `1.52.2` | `1.52.3` |
| [assert_cmd](https://github.com/assert-rs/assert_cmd) | `2.2.1` | `2.2.2` |
| [octocrab](https://github.com/XAMPPRocky/octocrab) | `0.49.9` | `0.50.0` |
| [quick-xml](https://github.com/tafia/quick-xml) | `0.39.2` | `0.40.0` |
| [serde_with](https://github.com/jonasbb/serde_with) | `3.19.0` | `3.20.0` |


Updates `clap_complete` from 4.6.3 to 4.6.5
- [Release notes](https://github.com/clap-rs/clap/releases)
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md)
- [Commits](clap-rs/clap@clap_complete-v4.6.3...clap_complete-v4.6.5)

Updates `tokio` from 1.52.2 to 1.52.3
- [Release notes](https://github.com/tokio-rs/tokio/releases)
- [Commits](tokio-rs/tokio@tokio-1.52.2...tokio-1.52.3)

Updates `assert_cmd` from 2.2.1 to 2.2.2
- [Changelog](https://github.com/assert-rs/assert_cmd/blob/master/CHANGELOG.md)
- [Commits](assert-rs/assert_cmd@v2.2.1...v2.2.2)

Updates `octocrab` from 0.49.9 to 0.50.0
- [Release notes](https://github.com/XAMPPRocky/octocrab/releases)
- [Changelog](https://github.com/XAMPPRocky/octocrab/blob/main/CHANGELOG.md)
- [Commits](XAMPPRocky/octocrab@v0.49.9...v0.50.0)

Updates `quick-xml` from 0.39.2 to 0.40.0
- [Release notes](https://github.com/tafia/quick-xml/releases)
- [Changelog](https://github.com/tafia/quick-xml/blob/master/Changelog.md)
- [Commits](tafia/quick-xml@v0.39.2...v0.40.0)

Updates `serde_with` from 3.19.0 to 3.20.0
- [Release notes](https://github.com/jonasbb/serde_with/releases)
- [Commits](jonasbb/serde_with@v3.19.0...v3.20.0)

---
updated-dependencies:
- dependency-name: clap_complete
  dependency-version: 4.6.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: tokio
  dependency-version: 1.52.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: assert_cmd
  dependency-version: 2.2.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: octocrab
  dependency-version: 0.50.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: quick-xml
  dependency-version: 0.40.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: serde_with
  dependency-version: 3.20.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update Rust code labels May 11, 2026
@github-actions github-actions Bot enabled auto-merge May 11, 2026 19:55
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update Rust code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants