Skip to content

chore(deps): bump the prod-dependencies group across 1 directory with 8 updates#333

Merged
rubberduck203 merged 1 commit into
mainfrom
dependabot/cargo/prod-dependencies-0bd4482499
Jun 18, 2026
Merged

chore(deps): bump the prod-dependencies group across 1 directory with 8 updates#333
rubberduck203 merged 1 commit into
mainfrom
dependabot/cargo/prod-dependencies-0bd4482499

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 18, 2026

Copy link
Copy Markdown
Contributor

Bumps the prod-dependencies group with 8 updates in the / directory:

Package From To
chrono 0.4.44 0.4.45
ignore 0.4.25 0.4.26
itertools 0.14.0 0.15.0
minijinja 2.20.0 2.21.0
octocrab 0.51.0 0.53.1
regex 1.12.3 1.12.4
time 0.3.47 0.3.49
which 8.0.2 8.0.4

Updates chrono from 0.4.44 to 0.4.45

Release notes

Sourced from chrono's releases.

0.4.45

What's Changed

Commits
  • 1703382 Prepare 0.4.45 release
  • 881f9ab tz_data: fix tzdata locations on Android
  • f14ead4 fix(tz): reject TZ offset hour of 24 to avoid FixedOffset overflow
  • c6063e6 Update similar-asserts requirement from 1.6.1 to 2.0.0
  • 120686c Bump codecov/codecov-action from 5 to 6
  • See full diff in compare view

Updates ignore from 0.4.25 to 0.4.26

Commits
  • 82313cf ignore-0.4.26
  • 43e2f08 ignore: fix parent gitignore matching across multiple roots
  • 79a23e0 ignore: use named fields in Ignore
  • 4519153 doc: clarify half-boundary syntax for the -w/--word-regexp flag
  • cb66736 core: bleat a DEBUG message when RIPGREP_CONFIG_PATH is not set
  • 9b84e15 ignore/types: add container type that covers both Dockerfile and `Contain...
  • cd1f981 fix: derive Default when possible
  • See full diff in compare view

Updates itertools from 0.14.0 to 0.15.0

Changelog

Sourced from itertools's changelog.

0.15.0

Breaking

  • Restructure Position as struct instead of enum (#1042, #1043)
  • Canonicalize all_equal_value's error type (#1032)

Added

  • Add *_with_hasher adaptors (#1007)
  • Add strip_prefix and strip_prefix_by methods (#1104)

Changed

  • Remove Clone bounds from tuple_combinations and array_combinations(#1011)
  • must_use for collect_vec (#1009)
  • Make izip! temporary friendly (#1021)
  • Add array_combinations_with_replacement (#1033)
  • Implement Debug for remaining public types (#1038)
  • Specialize ExactlyOneError::count (#1046)
  • Implement PeekingNext for more types, in particular vec::IntoIter (#1059, #1073)
  • Fix PadUsing::next_back (#1082)
  • Introduce [circular_]array_windows, deprecate tuple_windows (#1086)
  • Deprecate tuple_combinations (replaced by array_combinations) (#1085)

Notable Internal Changes

Commits
  • 37bd72a Update CHANGELOG.md: strip_prefix[_by]
  • 86ec635 Use ControlFlow in fold_while implementation
  • d5897f7 refactor(strip_prefix): use try_for_each and drop PartialEq, Eq on StripPrefi...
  • b2a978a feat(Itertools): add strip_prefix and strip_prefix_by methods
  • 12b6ec6 Update CHANGELOG.md for all_equal_value_error's error type
  • 121821e AllEqualValueError implements std::error::Error
  • adac44e Introduce AllEqualValueError
  • 5707384 Update CHANGELOG.md
  • df60ff0 Update CHANGELOG.md
  • 113b850 Update CHANGELOG.md to include with_hasher
  • Additional commits viewable in compare view

Updates minijinja from 2.20.0 to 2.21.0

Changelog

Sourced from minijinja's changelog.

2.21.0

  • Fixed a panic when comparing two numbers that have no common lossless representation, such as a float against an integer that cannot be represented exactly as f64 (for example 1.0 < 9007199254740993). #904
  • Fixed a stack overflow caused by repeated sequence concatenation. #907
  • Improved performance of iteration over map items. #906
Commits
  • 1d3e73d chore: bump version to 2.21.0
  • 002351e docs(changelog): note stack overflow fix and map iteration perf
  • 1183321 Improve performance of iteration over map items (#906)
  • 3dd5936 fix(value): avoid panic comparing numbers without a common lossless represent...
  • f8d9cc7 fix: avoid stack overflow on repeated sequence concatenation (#907)
  • 3018c2e chore(ci): use Node 24 for npm publishing
  • See full diff in compare view

Updates octocrab from 0.51.0 to 0.53.1

Release notes

Sourced from octocrab's releases.

v0.53.1

Added

  • support sub-issues (#898)

Fixed

  • Omit input object if null. Github expects object or nothing. (#918)

Other

  • cargo clippy --tests --examples --fix (#920)
  • Use std::sync::LazyLock over once_cell::sync::Lazy (#919)

v0.53.0

Fixed

  • [breaking] correct nullable properties on AutoMerge (#911)

v0.52.0

Added

  • Added GitHub async SBOM API endpoints. (#903)
  • [breaking] made PullRequest to be able to accept SimplePullRequest payload from github (#902)
  • add list-artifacts-for-a-repository endpoint (#896)
  • support pinned comments (#894)

Other

  • add tests for InMemoryCache [cache-redb 2/3] (#904)
  • serde support for Cache structs [cache-redb 1/3] (#905)
  • add changes field to PullRequestWebhookEventPayload (#907)
Changelog

Sourced from octocrab's changelog.

0.53.1 - 2026-06-10

Added

  • support sub-issues (#898)

Fixed

  • Omit input object if null. Github expects object or nothing. (#918)

Other

  • cargo clippy --tests --examples --fix (#920)
  • Use std::sync::LazyLock over once_cell::sync::Lazy (#919)

0.53.0 - 2026-06-03

Fixed

  • [breaking] correct nullable properties on AutoMerge (#911)

0.52.0 - 2026-06-02

Added

  • Added GitHub async SBOM API endpoints. (#903)
  • [breaking] made PullRequest to be able to accept SimplePullRequest payload from github (#902)
  • add list-artifacts-for-a-repository endpoint (#896)
  • support pinned comments (#894)

Other

  • add tests for InMemoryCache [cache-redb 2/3] (#904)
  • serde support for Cache structs [cache-redb 1/3] (#905)
  • add changes field to PullRequestWebhookEventPayload (#907)
Commits

Updates regex from 1.12.3 to 1.12.4

Changelog

Sourced from regex's changelog.

1.12.4 (2025-06-09)

This release includes a performance optimization for compilation of regexes with very large character classes.

Improvements:

  • #1308: Avoid re-canonicalizing the entire interval set when pushing new class ranges.
Commits
  • 7b96fdc 1.12.4
  • 7b89cf0 deps: update to regex-syntax 0.8.11
  • 1401679 regex-syntax-0.8.11
  • d709000 changelog: 1.12.4
  • 9825c74 syntax: avoid re-canonicalizing the entire IntervalSet on push (#1308)
  • a7f2ff6 docs: clarify regex-lite word boundaries
  • 2c7b172 docs: clarify unsupported Anchored::Pattern searches
  • 839d16b regex-syntax-0.8.10
  • c4865a0 syntax: fix negation handling in HIR translation
  • d8761c0 cargo: also include benches
  • Additional commits viewable in compare view

Updates time from 0.3.47 to 0.3.49

Release notes

Sourced from time's releases.

v0.3.49

See the changelog for details.

v0.3.48

See the changelog for details.

Changelog

Sourced from time's changelog.

0.3.49 [2026-06-13]

Fixed

  • Due to a long-standing bug in the Rust compiler, v0.3.48 caused a number of crates to stop compiling. A patch has been added that avoids triggering the bug.

0.3.48 [2026-06-12] [YANKED]

Security

  • The number of digits parsed by [subsecond digits:1+] is capped at 32 to avoid parsing unbounded user input. Digits after the 9th have no semantic meaning.
  • Explicitly specify #[repr] for Weekday. The value of the variants is relied upon in multiple locations for soundness. The practical effect of this change is nothing, as Rust has always mapped C-like enums to 0..N in memory.

Compatibility

  • Non-UTF-8 formatting and parsing is deprecated without replacement. It is recommended to only format and parse valid UTF-8.
  • format_description::parse is deprecated. It is recommended to use format_description::parse_borrowed::<3> or format_description::parse_owned::<3>.

Added

  • All types in the unit module have a generic parameter, though this is currently not used for much. Usage will be expanded in the future.
  • Comparisons between types in the unit module and the generic Unit type are permitted.
  • Support for rand 0.10
  • Version 3 format descriptions
    • Only UTF-8 is supported. As a side effect of this, [ignore] requires that the remaining input not begin mid-codepoint.
    • Representation is deliberately opaque to allow for arbitrary changes going forward.
    • format:false is supported on [optional] components. This is not possible in version 1 and version 2 format descriptions due to API compatibility.
    • The time::serde::format_description! macro uses a new, clearer syntax for version 3.
      • time::serde::format_description!(mod foo [Date] = "[year]-[month]-[day]");
      • Unlike version 1 and version 2 format descriptions, the type is not automatically brought into scope. You must import it yourself.
    • Nonsensical combinations of modifiers are rejected. For example, you cannot specify case-sensitivity when parsing a numerical month.
    • [year] defaults to range:standard
    • Components and modifiers are case sensitive (and always lowercase).

Changed

  • The convert module has been renamed to unit.

Fixed

... (truncated)

Commits
  • ff8683c v0.3.49 release
  • f189886 fix: resolve E0119 trait coherence error in rustc >= 1.95.0
  • 5d8737c v0.3.48 release
  • 1bfca87 Use widen instead of extend in sys code
  • c57284f fix: return error instead of panicking on truncated strftime padding modifier
  • a74f35f Use v3 format descriptions for serde defaults
  • 96ff36c Allow eliding serde format description version
  • edc58b1 Permit duplicates in v1/v2 in permit_modifiers!
  • a838f69 Bump codecov action
  • f2f99f8 Fix unused warning
  • Additional commits viewable in compare view

Updates which from 8.0.2 to 8.0.4

Release notes

Sourced from which's releases.

8.0.4

What's Changed

Full Changelog: harryfei/which-rs@8.0.3...8.0.4

8.0.3

What's Changed

New Contributors

Full Changelog: harryfei/which-rs@8.0.2...8.0.3

Changelog

Sourced from which's changelog.

8.0.4

  • On Windows we now emit a NonFatalError if the PATHEXT environment variable is not populated, and the query did not specify a file extension.

8.0.3

  • Add fallback implementation of is_valid_executable allowing which-rs to compile on targets which are not Unix, Windows, WASI, or Redox. Thanks @​pmikolajczyk41 for your contribution to which!
Commits
  • c9df5ef feat: emit NonFatalError on Windows if PATHEXT not populated (#125)
  • 9b1ec59 bump version number, update changelog
  • 6ddf6cf Implement is_valid_executable for other configurations (#124)
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

… 8 updates

Bumps the prod-dependencies group with 8 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [chrono](https://github.com/chronotope/chrono) | `0.4.44` | `0.4.45` |
| [ignore](https://github.com/BurntSushi/ripgrep) | `0.4.25` | `0.4.26` |
| [itertools](https://github.com/rust-itertools/itertools) | `0.14.0` | `0.15.0` |
| [minijinja](https://github.com/mitsuhiko/minijinja) | `2.20.0` | `2.21.0` |
| [octocrab](https://github.com/XAMPPRocky/octocrab) | `0.51.0` | `0.53.1` |
| [regex](https://github.com/rust-lang/regex) | `1.12.3` | `1.12.4` |
| [time](https://github.com/time-rs/time) | `0.3.47` | `0.3.49` |
| [which](https://github.com/harryfei/which-rs) | `8.0.2` | `8.0.4` |



Updates `chrono` from 0.4.44 to 0.4.45
- [Release notes](https://github.com/chronotope/chrono/releases)
- [Changelog](https://github.com/chronotope/chrono/blob/main/CHANGELOG.md)
- [Commits](chronotope/chrono@v0.4.44...v0.4.45)

Updates `ignore` from 0.4.25 to 0.4.26
- [Release notes](https://github.com/BurntSushi/ripgrep/releases)
- [Changelog](https://github.com/BurntSushi/ripgrep/blob/master/CHANGELOG.md)
- [Commits](BurntSushi/ripgrep@ignore-0.4.25...ignore-0.4.26)

Updates `itertools` from 0.14.0 to 0.15.0
- [Changelog](https://github.com/rust-itertools/itertools/blob/master/CHANGELOG.md)
- [Commits](rust-itertools/itertools@v0.14.0...v0.15.0)

Updates `minijinja` from 2.20.0 to 2.21.0
- [Release notes](https://github.com/mitsuhiko/minijinja/releases)
- [Changelog](https://github.com/mitsuhiko/minijinja/blob/main/CHANGELOG.md)
- [Commits](mitsuhiko/minijinja@minijinja-go/v2.20.0...minijinja-go/v2.21.0)

Updates `octocrab` from 0.51.0 to 0.53.1
- [Release notes](https://github.com/XAMPPRocky/octocrab/releases)
- [Changelog](https://github.com/XAMPPRocky/octocrab/blob/main/CHANGELOG.md)
- [Commits](XAMPPRocky/octocrab@v0.51.0...v0.53.1)

Updates `regex` from 1.12.3 to 1.12.4
- [Release notes](https://github.com/rust-lang/regex/releases)
- [Changelog](https://github.com/rust-lang/regex/blob/master/CHANGELOG.md)
- [Commits](rust-lang/regex@1.12.3...1.12.4)

Updates `time` from 0.3.47 to 0.3.49
- [Release notes](https://github.com/time-rs/time/releases)
- [Changelog](https://github.com/time-rs/time/blob/main/CHANGELOG.md)
- [Commits](time-rs/time@v0.3.47...v0.3.49)

Updates `which` from 8.0.2 to 8.0.4
- [Release notes](https://github.com/harryfei/which-rs/releases)
- [Changelog](https://github.com/harryfei/which-rs/blob/master/CHANGELOG.md)
- [Commits](harryfei/which-rs@8.0.2...8.0.4)

---
updated-dependencies:
- dependency-name: chrono
  dependency-version: 0.4.45
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod-dependencies
- dependency-name: ignore
  dependency-version: 0.4.26
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod-dependencies
- dependency-name: itertools
  dependency-version: 0.15.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod-dependencies
- dependency-name: minijinja
  dependency-version: 2.21.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod-dependencies
- dependency-name: octocrab
  dependency-version: 0.53.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod-dependencies
- dependency-name: regex
  dependency-version: 1.12.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod-dependencies
- dependency-name: time
  dependency-version: 0.3.49
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod-dependencies
- dependency-name: which
  dependency-version: 8.0.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Jun 18, 2026
@rubberduck203 rubberduck203 merged commit ffa63fc into main Jun 18, 2026
11 checks passed
@rubberduck203 rubberduck203 deleted the dependabot/cargo/prod-dependencies-0bd4482499 branch June 18, 2026 14:15
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update rust code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant