Skip to content

chore(deps): bump the cargo-minor-and-patch group across 1 directory with 4 updates#75

Closed
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/cargo/cargo-minor-and-patch-a87b76155a
Closed

chore(deps): bump the cargo-minor-and-patch group across 1 directory with 4 updates#75
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/cargo/cargo-minor-and-patch-a87b76155a

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 25, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps the cargo-minor-and-patch group with 4 updates in the / directory: serde_json, tree-sitter, dashmap and tower-http.

Updates serde_json from 1.0.149 to 1.0.150

Release notes

Sourced from serde_json's releases.

v1.0.150

Commits
  • a1ae73a Release 1.0.150
  • 1a360b0 Merge pull request #1324 from puneetdixit200/reject-non-string-enum-keys
  • 2037b63 Reject non-string enum object keys
  • 5d30df6 Resolve manual_assert_eq pedantic clippy lint
  • dc8003a Raise required compiler for preserve_order feature to 1.85
  • a42fa98 Unpin CI miri toolchain
  • 684a60e Pin CI miri to nightly-2026-02-11
  • 7c7da33 Raise required compiler to Rust 1.71
  • acf4850 Simplify Number::is_f64
  • 6b8ceab Resolve unnecessary_map_or clippy lint
  • Additional commits viewable in compare view

Updates tree-sitter from 0.26.8 to 0.26.9

Release notes

Sourced from tree-sitter's releases.

v0.26.9

What's Changed

Full Changelog: tree-sitter/tree-sitter@v0.26.8...v0.26.9

Commits
  • 7f53486 release v0.26.9
  • 77b96de fix(wasm): validate memory reads (#5569) (#5613)
  • a082228 build(deps): bump wasmtime-c-api to v36.0.9
  • 7aea015 fix(wasm): load supertype tables for ABI 15 grammars (#5605) (#5606)
  • 2cad8b8 fix(generate): consider reserved words when removing unused rules
  • ddbe469 fix(generate): rewrite parse_grammar with forward DFS
  • 17f9796 fix(generate): improve error message for nonterminals used in immediate token...
  • 17e4bf9 fix(cli): account for process versions > 5 in the parse command's pretty
  • ec120d0 build(deps): bump wasmtime-c-api to v36.0.8
  • 7c3d842 docs: note zero point unbounded behavior in query functions
  • Additional commits viewable in compare view

Updates dashmap from 6.1.0 to 6.2.1

Release notes

Sourced from dashmap's releases.

v6.2.1

This is an interim maintenance release for the existing v6 branch before v7 can be released. This bumps the MSRV to 1.85 and updates dependencies to their latest versions.

Commits

Updates tower-http from 0.6.10 to 0.6.11

Release notes

Sourced from tower-http's releases.

tower-http-0.6.11

Added

  • set-header: add SetMultipleResponseHeadersLayer and SetMultipleResponseHeader for setting multiple response headers at once. Supports overriding, appending, and if_not_present modes. Header values can be fixed or computed dynamically via closures (#672)

    use http::{Response, header::{self, HeaderValue}};
use http_body::Body as _;
use tower_http::set_header::response::SetMultipleResponseHeadersLayer;
let layer = SetMultipleResponseHeadersLayer::overriding(vec![
(header::X_FRAME_OPTIONS, HeaderValue::from_static("DENY")).into(),
(header::CONTENT_LENGTH, |res: &Response<MyBody>| {
res.body().size_hint().exact()
.map(|size| HeaderValue::from_str(&size.to_string()).unwrap())
}).into(),
]);

  • set-header: add SetMultipleRequestHeadersLayer and SetMultipleRequestHeaders for setting multiple request headers at once, mirroring the response-side API (#677)

  • classify: add From<i32> and From<NonZeroI32> impls for GrpcCode. Unrecognized status codes map to GrpcCode::Unknown (#506)

Changed

  • compression: compress application/grpc-web responses. Previously all application/grpc* content types were excluded from compression; now only application/grpc (non-web) is excluded (#408)

Fixed

  • fs: fix ServeDir returning 500 instead of 405 for non-GET/HEAD requests when call_fallback_on_method_not_allowed is enabled but no fallback service is configured (#587)
  • fs: remove duplicate cfg attribute on is_reserved_dos_name (#675)

#408: tower-rs/tower-http#408 #506: tower-rs/tower-http#506 #587: tower-rs/tower-http#587 #672: tower-rs/tower-http#672 #675: tower-rs/tower-http#675 #677: tower-rs/tower-http#677

All PRs

... (truncated)

Commits
  • 1d082ef v0.6.11
  • 9c3117d feat: set multiple request header (#677)
  • 667e7c7 Remove duplicate cfg attribute for is_reserved_dos_name (#675)
  • 7551a9b feat(set_header): refactor and improve multiple header middleware (#672)
  • 991e9ee add From<i32> impl for GrpcCode (#506)
  • 3962dba Do compress grpc-web responses (#408)
  • f0b3bb6 Fix serve_dir method not allowed handling when no fallback is configured (#587)
  • d1a571b ci: use static timeout in stress-test workflow (#671)
  • 309555a ci: fix flaky encoding test, add nightly stress test job (#670)
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the cargo-minor-and-patch group across 1 directory …
f9a774f 
…with 4 updates

Bumps the cargo-minor-and-patch group with 4 updates in the / directory: [serde_json](https://github.com/serde-rs/json), [tree-sitter](https://github.com/tree-sitter/tree-sitter), [dashmap](https://github.com/xacrimon/dashmap) and [tower-http](https://github.com/tower-rs/tower-http).


Updates `serde_json` from 1.0.149 to 1.0.150
- [Release notes](https://github.com/serde-rs/json/releases)
- [Commits](serde-rs/json@v1.0.149...v1.0.150)

Updates `tree-sitter` from 0.26.8 to 0.26.9
- [Release notes](https://github.com/tree-sitter/tree-sitter/releases)
- [Commits](tree-sitter/tree-sitter@v0.26.8...v0.26.9)

Updates `dashmap` from 6.1.0 to 6.2.1
- [Release notes](https://github.com/xacrimon/dashmap/releases)
- [Commits](xacrimon/dashmap@v6.1.0...v6.2.1)

Updates `tower-http` from 0.6.10 to 0.6.11
- [Release notes](https://github.com/tower-rs/tower-http/releases)
- [Commits](tower-rs/tower-http@tower-http-0.6.10...tower-http-0.6.11)

---
updated-dependencies:
- dependency-name: serde_json
  dependency-version: 1.0.150
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: cargo-minor-and-patch
- dependency-name: tree-sitter
  dependency-version: 0.26.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: cargo-minor-and-patch
- dependency-name: dashmap
  dependency-version: 6.2.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: cargo-minor-and-patch
- dependency-name: tower-http
  dependency-version: 0.6.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: cargo-minor-and-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels May 25, 2026
@dependabot dependabot Bot requested a review from elicpeter as a code owner May 25, 2026 01:23
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels May 25, 2026
@CLAassistant

CLAassistant commented May 25, 2026

Copy link
Copy Markdown

CLA assistant check
Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
You have signed the CLA already but the status is still pending? Let us recheck it.

@github-actions github-actions Bot enabled auto-merge (squash) May 25, 2026 01:23
@dependabot @github

dependabot Bot commented on behalf of github Jun 3, 2026

Copy link
Copy Markdown
Contributor Author

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot Bot closed this Jun 3, 2026
auto-merge was automatically disabled June 3, 2026 23:26

Pull request was closed

@dependabot dependabot Bot deleted the dependabot/cargo/cargo-minor-and-patch-a87b76155a branch June 3, 2026 23:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@elicpeter elicpeter Awaiting requested review from elicpeter elicpeter is a code owner

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update rust code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@CLAassistant