Skip to content

deps(deps): bump the patch-and-minor group across 1 directory with 2 updates#11

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/patch-and-minor-fcf40cfdd5
Closed

deps(deps): bump the patch-and-minor group across 1 directory with 2 updates#11
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/patch-and-minor-fcf40cfdd5

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 25, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps the patch-and-minor group with 2 updates in the / directory: tokio and serde_json.

Updates tokio from 1.52.1 to 1.52.3

Release notes

Sourced from tokio's releases.

Tokio v1.52.3

1.52.3 (May 8th, 2026)

Fixed

  • sync: fix underflow in mpsc channel len() (#8062)
  • sync: notify receivers in mpsc OwnedPermit::release() method (#8075)
  • sync: require that an RwLock has max_readers != 0 (#8076)
  • sync: return Empty from try_recv() when mpsc is closed with outstanding permits (#8074)

#8062: tokio-rs/tokio#8062 #8074: tokio-rs/tokio#8074 #8075: tokio-rs/tokio#8075 #8076: tokio-rs/tokio#8076

Tokio v1.52.2

1.52.2 (May 4th, 2026)

This release reverts the LIFO slot stealing change introduced in 1.51.0 (#7431), due to [its performance impact]#8065. (#8100)

#7431: tokio-rs/tokio#7431 #8065: tokio-rs/tokio#8065 #8100: tokio-rs/tokio#8100

Commits

Updates serde_json from 1.0.149 to 1.0.150

Release notes

Sourced from serde_json's releases.

v1.0.150

Commits
  • a1ae73a Release 1.0.150
  • 1a360b0 Merge pull request #1324 from puneetdixit200/reject-non-string-enum-keys
  • 2037b63 Reject non-string enum object keys
  • 5d30df6 Resolve manual_assert_eq pedantic clippy lint
  • dc8003a Raise required compiler for preserve_order feature to 1.85
  • a42fa98 Unpin CI miri toolchain
  • 684a60e Pin CI miri to nightly-2026-02-11
  • 7c7da33 Raise required compiler to Rust 1.71
  • acf4850 Simplify Number::is_f64
  • 6b8ceab Resolve unnecessary_map_or clippy lint
  • Additional commits viewable in compare view

@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label May 25, 2026
@dependabot dependabot Bot changed the title deps(deps): bump the patch-and-minor group with 2 updates deps(deps): bump the patch-and-minor group across 1 directory with 2 updates May 28, 2026
@dependabot dependabot Bot force-pushed the dependabot/cargo/patch-and-minor-fcf40cfdd5 branch 3 times, most recently from 7c1218a to 67992e9 Compare May 29, 2026 00:11
@dependabot
deps(deps): bump the patch-and-minor group across 1 directory with 2 …
9a31102 
…updates

Bumps the patch-and-minor group with 2 updates in the / directory: [tokio](https://github.com/tokio-rs/tokio) and [serde_json](https://github.com/serde-rs/json).


Updates `tokio` from 1.52.1 to 1.52.3
- [Release notes](https://github.com/tokio-rs/tokio/releases)
- [Commits](tokio-rs/tokio@tokio-1.52.1...tokio-1.52.3)

Updates `serde_json` from 1.0.149 to 1.0.150
- [Release notes](https://github.com/serde-rs/json/releases)
- [Commits](serde-rs/json@v1.0.149...v1.0.150)

---
updated-dependencies:
- dependency-name: serde_json
  dependency-version: 1.0.150
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch-and-minor
- dependency-name: tokio
  dependency-version: 1.52.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch-and-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/cargo/patch-and-minor-fcf40cfdd5 branch from 67992e9 to 9a31102 Compare June 1, 2026 08:58
@madetocreate

madetocreate commented Jun 5, 2026

Copy link
Copy Markdown
Contributor

Geschlossen: dieser patch/minor-Bump hebt die MSRV ueber das bewusst gepinnte 1.85.0 (Cargo.toml rust-version=1.85, CI-Kommentar dokumentiert edition-2024-Kompat). test(rust stable) gruen, test(1.85.0) rot. cargo-audit + cargo-deny + osv-scanner sind gruen, also kein Security-Druck. Wir bleiben MSRV-kompatibel; Dependabot oeffnet neu sobald eine 1.85-taugliche Version vorliegt.

@dependabot @github

dependabot Bot commented on behalf of github Jun 5, 2026

Copy link
Copy Markdown
Contributor Author

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

@dependabot dependabot Bot deleted the dependabot/cargo/patch-and-minor-fcf40cfdd5 branch June 5, 2026 21:34
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@madetocreate