Skip to content

Bump the rust-dependencies group with 4 updates #442

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

Bump the rust-dependencies group with 4 updates #442

wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 1, 2025
edited
Loading

Bumps the rust-dependencies group with 4 updates: bullet_stream, rand, toml and fancy-regex.

Updates bullet_stream from 0.10.0 to 0.11.0

Changelog

Sourced from bullet_stream's changelog.

v0.11.0 2025/07/01

  • Change: global::print::sub_start_timer()now returns a new typeGlobalTimer` that implements the same interface cancel/done interface as before. (heroku-buildpacks/bullet_stream#45)
  • Change/fix: Minimum supported Rust version is now officially 1.86. Previously released, v0.10.0, used a feature stabalized in 1.86 but did not correctly update the MSRV (heroku-buildpacks/bullet_stream#47).
Commits

Updates rand from 0.9.1 to 0.9.2

Changelog

Sourced from rand's changelog.

[0.9.2 — 2025-07-20]

Deprecated

  • Deprecate rand::rngs::mock module and StepRng generator (#1634)

Additions

  • Enable WeightedIndex<usize> (de)serialization (#1646)
Commits

Updates toml from 0.8.23 to 0.9.4

Commits

Updates fancy-regex from 0.14.0 to 0.16.0

Release notes

Sourced from fancy-regex's releases.

0.16.0

Added

  • Add an optimization step after the pattern is parsed but before it is analyzed. Currently it only optimizes one specific use-case - where the expression is easy except for a trailing positive lookahead whose contents are also easy. The optimization is to delegate to the regex crate instead of using the backtracking VM. (#171)

Changed

  • Patterns which are anchored to the start of the text (i.e. with ^ when not in multiline mode) should now fail faster when there is no match, because fancy-regex no longer tries to match at other positions. (#170)
  • The CompileError for an invalid (numbered) backref has been updated to mention which backref was invalid (#170)
  • Removed dependency on derivative (#169)

Fixed

  • Fixed a bug whereby sometimes a capture group containing a backref to itself would cause a compile error, when it is valid - this fixes a few Oniguruma test cases (#170)

0.15.0

Added

  • Support \Z - anchor to the end of the text before any trailing newlines. (#148)
  • Support \O - any character including newlines. (#158)
  • The parser can now parse subroutine calls and relative backreferences (but execution is still unsupported). This is preparation for future work. Some new error variants have been added for features which can be parsed but are still otherwise unsupported.
  • Backreferences can now be case insensitive. (#160)
  • RegexBuilder: Add options for multi_line, ignore_whitespace, dot_matches_new_line (#165)

Fixed

  • Fix infinite loop when backtracking limit is hit (#153)
  • Fix RegexBuilder.case_insensitive not always applying when it should. (#163)
  • The toy example has had various bugfixes, and unit tests added. (#152, #159)
Changelog

Sourced from fancy-regex's changelog.

[0.16.0] - 2025-08-01

Added

  • Add an optimization step after the pattern is parsed but before it is analyzed. Currently it only optimizes one specific use-case - where the expression is easy except for a trailing positive lookahead whose contents are also easy. The optimization is to delegate to the regex crate instead of using the backtracking VM. (#171)

Changed

  • Patterns which are anchored to the start of the text (i.e. with ^ when not in multiline mode) should now fail faster when there is no match, because fancy-regex no longer tries to match at other positions. (#170)
  • The CompileError for an invalid (numbered) backref has been updated to mention which backref was invalid (#170)
  • Removed dependency on derivative (#169)

Fixed

  • Fixed a bug whereby sometimes a capture group containing a backref to itself would cause a compile error, when it is valid - this fixes a few Oniguruma test cases (#170)

[0.15.0] - 2025-07-06

Added

  • Support \Z - anchor to the end of the text before any trailing newlines. (#148)
  • Support \O - any character including newlines. (#158)
  • The parser can now parse subroutine calls and relative backreferences (but execution is still unsupported). This is preparation for future work. Some new error variants have been added for features which can be parsed but are still otherwise unsupported.
  • Backreferences can now be case insensitive. (#160)
  • RegexBuilder: Add options for multi_line, ignore_whitespace, dot_matches_new_line (#165)

Fixed

  • Fix infinite loop when backtracking limit is hit (#153)
  • Fix RegexBuilder.case_insensitive not always applying when it should. (#163)
  • The toy example has had various bugfixes, and unit tests added. (#152, #159)
Commits
  • 915d8d5 Version 0.16.0
  • db14c31 Merge pull request #172 from fancy-regex/prepare_changelog_for_release
  • 41756c4 Prepare changelog for next release
  • 3834f0e Merge pull request #171 from forkeith/positive_lookahead_including_wrap_elimi...
  • 14d3c01 change optimize function to take a mutable ExprTree
  • 1980032 improvements from PR review
  • b290bf3 Merge remote-tracking branch 'fancy-regex/main' into positive_lookahead_inclu...
  • fb62d4c Merge pull request #170 from forkeith/refactor_to_avoid_wrapping_exprtree
  • 6010fbb improvements from PR review
  • 2ad8096 rework trailing lookahead optimization now that there is no wrapping
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the rust-dependencies group with 4 updates
685908c 
Bumps the rust-dependencies group with 4 updates: [bullet_stream](https://github.com/schneems/bullet_stream), [rand](https://github.com/rust-random/rand), [toml](https://github.com/toml-rs/toml) and [fancy-regex](https://github.com/fancy-regex/fancy-regex).


Updates `bullet_stream` from 0.10.0 to 0.11.0
- [Changelog](https://github.com/heroku-buildpacks/bullet_stream/blob/main/CHANGELOG.md)
- [Commits](heroku-buildpacks/bullet_stream@v0.10.0...v0.11.0)

Updates `rand` from 0.9.1 to 0.9.2
- [Release notes](https://github.com/rust-random/rand/releases)
- [Changelog](https://github.com/rust-random/rand/blob/master/CHANGELOG.md)
- [Commits](rust-random/rand@rand_core-0.9.1...rand_core-0.9.2)

Updates `toml` from 0.8.23 to 0.9.4
- [Commits](toml-rs/toml@toml-v0.8.23...toml-v0.9.4)

Updates `fancy-regex` from 0.14.0 to 0.16.0
- [Release notes](https://github.com/fancy-regex/fancy-regex/releases)
- [Changelog](https://github.com/fancy-regex/fancy-regex/blob/main/CHANGELOG.md)
- [Commits](fancy-regex/fancy-regex@0.14.0...0.16.0)

---
updated-dependencies:
- dependency-name: bullet_stream
  dependency-version: 0.11.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: rust-dependencies
- dependency-name: rand
  dependency-version: 0.9.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-dependencies
- dependency-name: toml
  dependency-version: 0.9.4
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: rust-dependencies
- dependency-name: fancy-regex
  dependency-version: 0.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: rust-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file rust Pull requests that update Rust code skip changelog labels Aug 1, 2025
@dependabot dependabot bot requested a review from schneems as a code owner August 1, 2025 11:30
@dependabot dependabot bot added dependencies Pull requests that update a dependency file skip changelog rust Pull requests that update Rust code labels Aug 1, 2025
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Aug 1, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Aug 1, 2025
@dependabot dependabot bot deleted the dependabot/cargo/rust-dependencies-2f7174f367 branch August 1, 2025 15:45
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@schneems schneems Awaiting requested review from schneems schneems is a code owner

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update Rust code skip changelog

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants