build(deps): bump the cargo-minor group with 11 updates #21977

dependabot · 2025-10-20T20:18:38Z

Bumps the cargo-minor group with 11 updates:

Package	From	To
clap	`4.5.49`	`4.5.50`
bitflags	`2.9.4`	`2.10.0`
tokio	`1.47.1`	`1.48.0`
indicatif	`0.17.11`	`0.18.0`
indexmap	`2.11.4`	`2.12.0`
syn	`2.0.106`	`2.0.107`
webbrowser	`1.0.5`	`1.0.6`
getrandom	`0.3.3`	`0.3.4`
csv	`1.3.1`	`1.4.0`
lru	`0.16.1`	`0.16.2`
bzip2	`0.6.0`	`0.6.1`

Updates clap from 4.5.49 to 4.5.50

Release notes

Sourced from clap's releases.

v4.5.50

[4.5.50] - 2025-10-20

Features

Accept Cow where String and &str are accepted

Changelog

Sourced from clap's changelog.

[4.5.50] - 2025-10-20

Features

Accept Cow where String and &str are accepted

Commits

d8acd47 chore: Release
7c2b8d9 docs: Update changelog
e69a2ea Merge pull request #5987 from mernen/fix-bash-comp-words-loop
e03cc2e Merge pull request #5988 from cordx56/fix-builder-custom-version-docs
5ab2579 fix: Minor fix for builder docs about version
2f66432 fix(complete): Only parse arguments before current
4d9d210 test(complete): Illustrate current behavior in Bash
See full diff in compare view

Updates bitflags from 2.9.4 to 2.10.0

Release notes

Sourced from bitflags's releases.

2.10.0

What's Changed

Implement iterator for all named flags by @ssrlive in bitflags/bitflags#465

Depend on serde_core instead of serde by @KodrAus in bitflags/bitflags#467

Prepare for 2.10.0 release by @KodrAus in bitflags/bitflags#468

New Contributors

@ssrlive made their first contribution in bitflags/bitflags#465

Full Changelog: bitflags/bitflags@2.9.4...2.10.0

Changelog

Sourced from bitflags's changelog.

2.10.0

What's Changed

Implement iterator for all named flags by @ssrlive in bitflags/bitflags#465

Depend on serde_core instead of serde by @KodrAus in bitflags/bitflags#467

New Contributors

@ssrlive made their first contribution in bitflags/bitflags#465

Full Changelog: bitflags/bitflags@2.9.4...2.10.0

Commits

7cc8595 Merge pull request #468 from bitflags/cargo/2.10.0
ea9b2f7 prepare for 2.10.0 release
7fdc68c Merge pull request #467 from KodrAus/feat/serde_core
fdc1d4a depend on serde_core instead of serde
7922585 Merge pull request #466 from KodrAus/chore/iter-named-tests
409666e rename iter_named to iter_defined_names
50fab91 Merge pull request #465 from ssrlive/main
f886489 Fix bitflags_custom_bits.stderr & bitflags_trait_custom.stderr
39bd761 rename all_named_flags to iter_named
3e52578 Implement iterator for all named flags
See full diff in compare view

Updates tokio from 1.47.1 to 1.48.0

Release notes

Sourced from tokio's releases.

Tokio v1.48.0

1.48.0 (October 14th, 2025)

The MSRV is increased to 1.71.

Added

fs: add File::max_buf_size (#7594)

io: export Chain of AsyncReadExt::chain (#7599)

net: add SocketAddr::as_abstract_name (#7491)

net: add TcpStream::quickack and TcpStream::set_quickack (#7490)

net: implement AsRef<Self> for TcpStream and UnixStream (#7573)

task: add LocalKey::try_get (#7666)

task: implement Ord for task::Id (#7530)

Changed

deps: bump windows-sys to version 0.61 (#7645)

fs: preserve max_buf_size when cloning a File (#7593)

macros: suppress clippy::unwrap_in_result in #[tokio::main] (#7651)

net: remove PollEvented noise from Debug formats (#7675)

process: upgrade Command::spawn_with to use FnOnce (#7511)

sync: remove inner mutex in SetOnce (#7554)

sync: use UnsafeCell::get_mut in Mutex::get_mut and RwLock::get_mut (#7569)

time: reduce the generated code size of Timeout<T>::poll (#7535)

Fixed

macros: fix hygiene issue in join! and try_join! (#7638)

net: fix copy/paste errors in udp peek methods (#7604)

process: fix error when runtime is shut down on nightly-2025-10-12 (#7672)

runtime: use release ordering in wake_by_ref() even if already woken (#7622)

sync: close the broadcast::Sender in broadcast::Sender::new() (#7629)

sync: fix implementation of unused RwLock::try_* methods (#7587)

Unstable

tokio: use cargo features instead of --cfg flags for taskdump and io_uring (#7655, #7621)

fs: support io_uring in fs::write (#7567)

fs: support io_uring with File::open() (#7617)

fs: support io_uring with OpenOptions (#7321)

macros: add local runtime flavor (#7375, #7597)

Documented

io: clarify the zero capacity case of AsyncRead::poll_read (#7580)

io: fix typos in the docs of AsyncFd readiness guards (#7583)

net: clarify socket gets closed on drop (#7526)

net: clarify the behavior of UCred::pid() on Cygwin (#7611)

net: clarify the supported platform of set_reuseport() and reuseport() (#7628)

... (truncated)

Commits

556820f chore: prepare Tokio v1.48.0 (#7677)
fd1659a chore: prepare tokio-macros v2.6.0 (#7676)
53e8aca ci: update nightly version to 2025-10-12 (#7670)
9e5527d process: fix error when runtime is shut down on nightly-2025-10-12 (#7672)
25a24de net: remove PollEvented noise from Debug formats (#7675)
c1fa25f task: clarify the behavior of several spawn_local methods (#7669)
e7e02fc fs: use FileOptions inside fs::File to support uring (#7617)
f7a7f62 ci: remove cargo-deny Unicode-DFS-2016 license exception config (#7619)
d1f1499 tokio: use cargo feature for taskdump support instead of cfg (#7655)
ad6f618 runtime: clarify the behavior of Handle::block_on (#7665)
Additional commits viewable in compare view

Updates indicatif from 0.17.11 to 0.18.0

Release notes

Sourced from indicatif's releases.

0.18.0

Unfortunately 0.17.12 had to be yanked because the console upgrade was a semver-incompatible change. Rerelease as 0.18.0 instead.

What's Changed

Bump version to 0.18.0 by @djc in console-rs/indicatif#715

0.17.12

What's Changed

Add ProgressBar::force_draw by @jaheba in console-rs/indicatif#689

Use width to truncate HumanFloatCount values by @ReagentX in console-rs/indicatif#696

ProgressStyle enable/disable colors based on draw target by @tonywu6 in console-rs/indicatif#699

Switch dep number_prefix to unit_prefix by @kimono-koans in console-rs/indicatif#709

draw_target: inline the format arg to silence clippy by @chris-laplante in console-rs/indicatif#711

Upgrade to console 0.16 by @djc in console-rs/indicatif#712

Commits

354b732 Bump version to 0.18.0
f46ba0a Bump version to 0.17.12
9f08f12 Upgrade to console 0.16
9afc362 draw_target: inline the format arg to silence clippy
880d8ce Switch from number_prefix to unit-prefix (#709)
458e4dc ProgressStyle enable/disable colors based on draw target (#699)
abd2181 Use width to truncate HumanFloatCount values (#696)
79ea085 Add ProgressBar::force_draw (#689)
See full diff in compare view

Updates indexmap from 2.11.4 to 2.12.0

Changelog

Sourced from indexmap's changelog.

2.12.0 (2025-10-17)

MSRV: Rust 1.82.0 or later is now required.

Updated the hashbrown dependency to 0.16 alone.

Error types now implement core::error::Error.

Added pop_if methods to IndexMap and IndexSet, similar to the method for Vec added in Rust 1.86.

Commits

0e68f8a Merge pull request #422 from cuviper/msrv-1.82
61c9c94 ci: only run full miri in the merge queue
db43f19 Release 2.12.0
b46a32a Move more to the lints table
4849b16 Make use of RFC2145 type privacy for sealed traits
cfff4b7 Use bounds in associated type position
c7178d7 Use core::error::Error
76b459b Use more precise capturing for some impl Trait
b3d9cc3 Use the primitive slice's is_sorted methods
09db3cc Use inherent usize::div_ceil
Additional commits viewable in compare view

Updates syn from 2.0.106 to 2.0.107

Release notes

Sourced from syn's releases.

2.0.107

Improve panic message when constructing a LitInt, LitFloat, or Lit from invalid syntax (#1917)

Improve panic message on Punctuated index out of bounds (#1922)

Commits

e4a8957 Release 2.0.107
1792e83 Merge pull request #1922 from dtolnay/outofbounds
532e4af Improve panic message on Punctuated index out of bounds
909c222 Add test of Punctuated indexing
9c3101a Relocate map_unwrap_or clippy suppression for no_opaque_drop test
d257968 Rename test_iterators -> test_punctuated
d429733 Relocate no_opaque_drop test from Punctuated-related to Generics-related
310cb92 Resolve replace_box clippy lint
0731b55 Raise compiler required for syn-codegen to 1.82
7acdd39 Simplify conversion of u8 -> char
Additional commits viewable in compare view

Updates webbrowser from 1.0.5 to 1.0.6

Release notes

Sourced from webbrowser's releases.

v1.0.6

Fixed

Windows: fix browser opening when unicode characters exist in path. See PR #108

Changelog

Sourced from webbrowser's changelog.

[1.0.6] - 2025-10-15

Fixed

Windows: fix browser opening when unicode characters exist in path. See PR #108

Commits

6596229 Release v1.0.6 [skip ci]
44908ca ios: fix lint for objc2 invocation #build-ios
b76a217 Merge branch 'Nodeigi-fix/107'
ee2b1cd fix opening a browser that is located in a path that contains unicode characters
061e65e ios: fix lints
85dd4a3 macos: fix lints
See full diff in compare view

Updates getrandom from 0.3.3 to 0.3.4

Release notes

Sourced from getrandom's releases.

getrandom v0.3.4

Major change to wasm_js backend

Now, when the wasm_js feature is enabled, the wasm_js backend will be used by default. Users of wasm32-unknown-unknown targeting JavaScript environments like the Web and Node.js will no longer need to specify:
--cfg getrandom_backend="wasm_js"
in RUSTFLAGS for the crate to compile. They can now simple enable a feature.

Note: this should not affect non-JS users of the wasm32-unknown-unknown target. Using --cfg getrandom_backend will still override the source of randomness even if the wasm_js feature is enabled. This includes --cfg getrandom_backend=custom and --cfg getrandom_backend=unsupported.

For more information, see the discussions in #671, #675, and #730.

Added

unsupported opt-in backend #667

windows_legacy opt-in backend #724

Changed

Implement Memory Sanitizer unpoisoning more precisely #678

Relax MSRV for the linux_raw opt-in backend on ARM targets #688

Use getrandom syscall on all RISC-V Linux targets #699

Replaced wasi dependency with wasip2 #721

Enable wasm_js backend by default if the wasm_js feature is enabled #730

Removed

Unstable rustc-dep-of-std crate feature #694

#667: rust-random/getrandom#667 #671: rust-random/getrandom#671 #675: rust-random/getrandom#675 #678: rust-random/getrandom#678 #688: rust-random/getrandom#688 #694: rust-random/getrandom#694 #699: rust-random/getrandom#699 #721: rust-random/getrandom#721 #724: rust-random/getrandom#724 #730: rust-random/getrandom#730

Changelog

Sourced from getrandom's changelog.

[0.3.4] - 2025-10-14

Major change to wasm_js backend

Now, when the wasm_js feature is enabled, the wasm_js backend will be used by default. Users of wasm32-unknown-unknown targeting JavaScript environments like the Web and Node.js will no longer need to specify:
--cfg getrandom_backend="wasm_js"
in RUSTFLAGS for the crate to compile. They can now simple enable a feature.

Note: this should not affect non-JS users of the wasm32-unknown-unknown target. Using --cfg getrandom_backend will still override the source of randomness even if the wasm_js feature is enabled. This includes --cfg getrandom_backend=custom and --cfg getrandom_backend=unsupported.

For more information, see the discussions in #671, #675, and #730.

Added

unsupported opt-in backend #667

windows_legacy opt-in backend #724

Changed

Implement Memory Sanitizer unpoisoning more precisely #678

Relax MSRV for the linux_raw opt-in backend on ARM targets #688

Use getrandom syscall on all RISC-V Linux targets #699

Replaced wasi dependency with wasip2 #721

Enable wasm_js backend by default if the wasm_js feature is enabled #730

Removed

Unstable rustc-dep-of-std crate feature #694

#667: rust-random/getrandom#667 #671: rust-random/getrandom#671 #675: rust-random/getrandom#675 #678: rust-random/getrandom#678 #688: rust-random/getrandom#688 #694: rust-random/getrandom#694 #699: rust-random/getrandom#699 #721: rust-random/getrandom#721 #724: rust-random/getrandom#724 #730: rust-random/getrandom#730

Commits

38e4ad3 Update version number to v0.3.4 (#736)
2d033b7 Release Version v0.3.4 (#735)
ccb0ca9 build(deps): bump the all-deps group across 1 directory with 5 updates (#734)
1af2510 Implement #675: let wasm_js enable the backend by default (#730)
18d8984 Don't run doctests with -Zsanitizer=memory
c904801 Change removed doc_auto_cfg feature
d4cb6a2 Update all nightly toolchains to latest nightly
9b78fcc Update Cargo.lock (#731)
b6ac385 ci: re-enable NetBSD job (#729)
3983e0f Add windows_legacy opt-in backend (#724)
Additional commits viewable in compare view

Updates csv from 1.3.1 to 1.4.0

Commits

4a3997e 1.4.0
a0a3c9e csv-core-0.1.13
f8e6b07 deps: switch serde dependency to serde_core
7c7c135 style: address many Clippy lints
5b2da18 doc: simplify tutorial section on accessing headers
633552a perf: serialize 128-bit integers via itoa
e9f06f4 lint: fix needless_lifetimes and mismatched_lifetime_syntaxes
9dab947 test: fix broken test after panic message change
da00088 style: address many Clippy lints
f973cd4 enum: use #[non_exhaustive] instead of #[doc(hidden)] variant
Additional commits viewable in compare view

Updates lru from 0.16.1 to 0.16.2

Changelog

Sourced from lru's changelog.

v0.16.2 - 2025-10-14

Upgrade hashbrown dependency to 0.16.0.

Commits

c1f843d Merge pull request #223 from jeromefroe/jerome/prepare-0-16-2-release
fc4f309 Prepare 0.16.2 release
e91ea2b Merge pull request #222 from torokati44/hashbrown-0.16
90d05fe Update hashbrown to 0.16
See full diff in compare view

Updates bzip2 from 0.6.0 to 0.6.1

Commits

eebf6e4 release version 0.6.1
1ed41c4 Add MaybeUninit\<u8> (de)compress API
a165219 chore: remove redundant word in comment
422ae6d fix(bzip2-sys): license expression to be a valid spdx expression
21db697 ran cargo clippy --fix -- -A clippy::all -W clippy::use_self
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the cargo-minor group with 11 updates: | Package | From | To | | --- | --- | --- | | [clap](https://github.com/clap-rs/clap) | `4.5.49` | `4.5.50` | | [bitflags](https://github.com/bitflags/bitflags) | `2.9.4` | `2.10.0` | | [tokio](https://github.com/tokio-rs/tokio) | `1.47.1` | `1.48.0` | | [indicatif](https://github.com/console-rs/indicatif) | `0.17.11` | `0.18.0` | | [indexmap](https://github.com/indexmap-rs/indexmap) | `2.11.4` | `2.12.0` | | [syn](https://github.com/dtolnay/syn) | `2.0.106` | `2.0.107` | | [webbrowser](https://github.com/amodm/webbrowser-rs) | `1.0.5` | `1.0.6` | | [getrandom](https://github.com/rust-random/getrandom) | `0.3.3` | `0.3.4` | | [csv](https://github.com/BurntSushi/rust-csv) | `1.3.1` | `1.4.0` | | [lru](https://github.com/jeromefroe/lru-rs) | `0.16.1` | `0.16.2` | | [bzip2](https://github.com/trifectatechfoundation/bzip2-rs) | `0.6.0` | `0.6.1` | Updates `clap` from 4.5.49 to 4.5.50 - [Release notes](https://github.com/clap-rs/clap/releases) - [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md) - [Commits](clap-rs/clap@clap_complete-v4.5.49...clap_complete-v4.5.50) Updates `bitflags` from 2.9.4 to 2.10.0 - [Release notes](https://github.com/bitflags/bitflags/releases) - [Changelog](https://github.com/bitflags/bitflags/blob/main/CHANGELOG.md) - [Commits](bitflags/bitflags@2.9.4...2.10.0) Updates `tokio` from 1.47.1 to 1.48.0 - [Release notes](https://github.com/tokio-rs/tokio/releases) - [Commits](tokio-rs/tokio@tokio-1.47.1...tokio-1.48.0) Updates `indicatif` from 0.17.11 to 0.18.0 - [Release notes](https://github.com/console-rs/indicatif/releases) - [Commits](console-rs/indicatif@0.17.11...0.18.0) Updates `indexmap` from 2.11.4 to 2.12.0 - [Changelog](https://github.com/indexmap-rs/indexmap/blob/main/RELEASES.md) - [Commits](indexmap-rs/indexmap@2.11.4...2.12.0) Updates `syn` from 2.0.106 to 2.0.107 - [Release notes](https://github.com/dtolnay/syn/releases) - [Commits](dtolnay/syn@2.0.106...2.0.107) Updates `webbrowser` from 1.0.5 to 1.0.6 - [Release notes](https://github.com/amodm/webbrowser-rs/releases) - [Changelog](https://github.com/amodm/webbrowser-rs/blob/main/CHANGELOG.md) - [Commits](amodm/webbrowser-rs@v1.0.5...v1.0.6) Updates `getrandom` from 0.3.3 to 0.3.4 - [Release notes](https://github.com/rust-random/getrandom/releases) - [Changelog](https://github.com/rust-random/getrandom/blob/master/CHANGELOG.md) - [Commits](rust-random/getrandom@v0.3.3...v0.3.4) Updates `csv` from 1.3.1 to 1.4.0 - [Commits](BurntSushi/rust-csv@1.3.1...1.4.0) Updates `lru` from 0.16.1 to 0.16.2 - [Changelog](https://github.com/jeromefroe/lru-rs/blob/master/CHANGELOG.md) - [Commits](jeromefroe/lru-rs@0.16.1...0.16.2) Updates `bzip2` from 0.6.0 to 0.6.1 - [Release notes](https://github.com/trifectatechfoundation/bzip2-rs/releases) - [Commits](trifectatechfoundation/bzip2-rs@v0.6.0...v0.6.1) --- updated-dependencies: - dependency-name: clap dependency-version: 4.5.50 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: cargo-minor - dependency-name: bitflags dependency-version: 2.10.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: cargo-minor - dependency-name: tokio dependency-version: 1.48.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: cargo-minor - dependency-name: indicatif dependency-version: 0.18.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: cargo-minor - dependency-name: indexmap dependency-version: 2.12.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: cargo-minor - dependency-name: syn dependency-version: 2.0.107 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: cargo-minor - dependency-name: webbrowser dependency-version: 1.0.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: cargo-minor - dependency-name: getrandom dependency-version: 0.3.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: cargo-minor - dependency-name: csv dependency-version: 1.4.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: cargo-minor - dependency-name: lru dependency-version: 0.16.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: cargo-minor - dependency-name: bzip2 dependency-version: 0.6.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: cargo-minor ... Signed-off-by: dependabot[bot] <support@github.com>

torokati44 · 2025-10-20T20:45:51Z

Cargo.lock

+]
+
+[[package]]
+name = "hashbrown"


dependabot bot added A-deps Area: Dependencies T-chore Type: Chore (like updating a dependency, it's gotta be done) labels Oct 20, 2025

torokati44 reviewed Oct 20, 2025

View reviewed changes

Cargo.lock

]

[[package]]

name = "hashbrown"

Copy link

Member

torokati44 Oct 20, 2025

C 8194 hoose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🥲

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

build(deps): bump the cargo-minor group with 11 updates #21977

build(deps): bump the cargo-minor group with 11 updates #21977

Uh oh!

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Uh oh!

build(deps): bump the cargo-minor group with 11 updates #21977

Are you sure you want to change the base?

build(deps): bump the cargo-minor group with 11 updates #21977

Uh oh!

Conversation

v4.5.50

[4.5.50] - 2025-10-20

Features

[4.5.50] - 2025-10-20

Features

2.10.0

What's Changed

New Contributors

2.10.0

What's Changed

New Contributors

Tokio v1.48.0

1.48.0 (October 14th, 2025)

Added

Changed

Fixed

Unstable

Documented

0.18.0

What's Changed

0.17.12

What's Changed

2.12.0 (2025-10-17)

2.0.107

v1.0.6

Fixed

[1.0.6] - 2025-10-15

Fixed

getrandom v0.3.4

Major change to wasm_js backend

Added

Changed

Removed

[0.3.4] - 2025-10-14

Major change to wasm_js backend

Added

Changed

Removed

v0.16.2 - 2025-10-14

Uh oh!

C 8194 hoose a reason for hiding this comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Major change to `wasm_js` backend

Major change to `wasm_js` backend