chore(deps): bump pulseengine/rivet from 0.16.1 to 0.19.0

[dependabot]

Bumps pulseengine/rivet from 0.16.1 to 0.19.0.

Release notes

Sourced from pulseengine/rivet's releases.

Rivet v0.19.0

What's Changed

• fix(wasm): rivet-core --features wasm test build compiles (#543) by @​avrabe in pulseengine/rivet#569
• fix(yaml): parse plain multi-line scalars as sequence items (#570) by @​avrabe in pulseengine/rivet#572
• feat(coverage): combined V-closure metric — satisfied AND verified (REQ-228) by @​avrabe in pulseengine/rivet#571
• chore(release): v0.19.0 — measure the V by @​avrabe in pulseengine/rivet#575

Full Changelog: pulseengine/rivet@v0.18.0...v0.19.0

Rivet v0.18.0

What's Changed

• feat(schema): requirement-verification rule — close the right side of the V (#555) by @​avrabe in pulseengine/rivet#561
• ci(release): make VSIX Marketplace publish non-blocking so npm publish isn't skipped by @​avrabe in pulseengine/rivet#560
• fix(schema): load bundled bridge schemas by name in a consumer's schemas: list (#530) by @​avrabe in pulseengine/rivet#558
• fix(add): create a default file for a new artifact type instead of forcing --file (#552) by @​avrabe in pulseengine/rivet#562
• feat(schema): per-type status enum overrides the global lifecycle (#550) by @​avrabe in pulseengine/rivet#563
• feat(schema): cited-source usable on any type incl. verification (#556) by @​avrabe in pulseengine/rivet#565
• feat(cli): rivet verify advances to verified on verifying evidence (#559) by @​avrabe in pulseengine/rivet#566
• chore(release): v0.18.0 — close the right side of the V by @​avrabe in pulseengine/rivet#568

Full Changelog: pulseengine/rivet@v0.17.0...v0.18.0

Rivet v0.17.0

What's Changed

• fix(next-id): honor IDs claimed in git history, never reissue a burned ID (#479) by @​avrabe in pulseengine/rivet#531
• docs(npm): first-class npm/npx install path + sync stale package versions by @​avrabe in pulseengine/rivet#533
• feat(cli): minimal --no-default-features build (excludes serve+MCP+LSP stack) — REQ-202 / #456 by @​avrabe in pulseengine/rivet#534
• ci: move mutants-cli off lean-mem to rust-cpu (#523) by @​avrabe in pulseengine/rivet#526
• fix(schema): restore accepted to canonical status enum (#522) by @​avrabe in pulseengine/rivet#525
• feat(init): --vendor-schemas pins built-in schemas on-disk against upgrades (#431) by @​avrabe in pulseengine/rivet#537
• fix(deps): bump wasmtime 43 → 44.0.3 for RUSTSEC-2026-0182 (unblocks all PRs) by @​avrabe in pulseengine/rivet#542
• feat(check): add rivet check docs oracle with --format json + --strict (#540) by @​avrabe in pulseengine/rivet#541
• fix(variants): skip feature-model binding files in load_variant_configs_from_dir (#532) by @​avrabe in pulseengine/rivet#539
• ci: runner-liveness alert for the self-hosted pool (#509 slice 1) by @​avrabe in pulseengine/rivet#536
• fix(cli): JSON error envelope on parse failure under --format json (#500) by @​avrabe in pulseengine/rivet#535
• release(v0.17.0): bump version + CHANGELOG by @​avrabe in pulseengine/rivet#545

Full Changelog: pulseengine/rivet@v0.16.1...v0.17.0

Changelog

Sourced from pulseengine/rivet's changelog.

[0.19.0] - 2026-06-24

Theme: measure the V — a combined closure metric plus build/parse fixes.

Added

• REQ-228 / #571 — combined V-closure metric in rivet coverage. For every source type governed by more than one traceability rule, rivet coverage now reports the intersection — the share of artifacts satisfying every applicable rule (e.g. requirements that are BOTH satisfied AND verified). This is strictly stronger than the per-rule numbers, which hide the gap when different artifacts miss different rules: on this repo requirements are 12.8% V-closed vs 25.1% satisfied. --format json gains a closure array (closed/total/open_ids/percentage/rule_names). External-boundary (supplier-delegated) artifacts count as closed, matching the 3-state accounted convention.

Fixed

• REQ-227 / #543 — rivet-core --features wasm test build compiles. The host model::Link gained an external field (prefix:ID externals); an "add it everywhere" pass had leaked it into the WIT-generated types::Link constructors, which carry only link-type + target, breaking cargo test -p rivet-core --features wasm (E0560). The host→WIT conversion now omits the host-only field; the .wit is unchanged.
• #572 / #570 — YAML plain multi-line scalars parse as sequence items. The rowan-yaml CST no longer mis-folds a plain multi-line scalar that continues onto an indented next line.

[0.18.0] - 2026-06-23

Theme: close the right side of the V — make requirement→test→evidence a first-class, drift-checked, status-advancing trace, and remove the schema friction that blocked declaring verification artifacts.

Added

• REQ-226 / #559 — rivet verify <ID>. Advances an implemented artifact to verified iff it has verifying evidence — an incoming verifies link OR a // rivet: verifies <ID> source marker (scanned from src/ + tests/, or --scan <path>). Refuses with an actionable message when there's no evidence; no-ops if already verified; rejects non-implemented states. The write reuses the schema-validated modify --set-status path. Nothing previously advanced status from test evidence (import-results is a separate run-log), so a requirement stayed implemented no matter how many passing tests verified it.
• REQ-222 / #555 — requirement-verification traceability rule. A dev schema rule (required-backlink: verifies, severity warning) surfaces requirements with no incoming verification in the coverage report, closing the right side of the V in the rule set. (dev 0.1.0 → 0.2.0.)

... (truncated)

Commits

• a251fbd chore(release): v0.19.0 — measure the V (#575)
• c33b255 feat(coverage): combined V-closure metric — satisfied AND verified (REQ-228) ...
• 74aa830 fix(yaml): parse plain multi-line scalars as sequence items (#572)
• f80298f fix(wasm): rivet-core --features wasm test build compiles — drop host-only ...
• 950f0ae chore(release): v0.18.0 — close the right side of the V (#568)
• 65008cb feat(cli): rivet verify \<ID> advances to verified on verifying evidence (RE...
• 9220c3a feat(schema): cited-source usable on any type incl. verification (REQ-225, #5...
• 5f63ca3 feat(schema): per-type status enum overrides the global lifecycle (REQ-224, #...
• b253418 fix(add): create a default file for a new artifact type instead of forcing --...
• 71fb5f3 fix(schema): load bundled bridge schemas by name in a consumer's schemas: lis...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)