Skip to content

chore(deps): bump the library-deps group in /library with 5 updates#332

Merged
eseidel merged 5 commits intomainfrom
dependabot/cargo/library/library-deps-a9b56d4654
Apr 8, 2026
Merged

chore(deps): bump the library-deps group in /library with 5 updates#332
eseidel merged 5 commits intomainfrom
dependabot/cargo/library/library-deps-a9b56d4654

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Apr 6, 2026
edited
Loading

Updates the requirements on sha2, zip, mockall, mock_instant and cbindgen to permit the latest version.
Updates sha2 to 0.11.0

Commits

Updates zip to 8.5.0

Release notes

Sourced from zip's releases.

v8.5.0

🐛 Bug Fixes

  • remove zip64 comment and add zip64 extensible data sector (#747)

🚜 Refactor

  • remove useless magic in struct (#730)
  • change extra_field from Arc<Vec> to Arc<[u8]> (#741)

⚙️ Miscellaneous Tasks

  • cleanup README (#758)
Changelog

Sourced from zip's changelog.

8.5.0 - 2026-04-01

🐛 Bug Fixes

  • remove zip64 comment and add zip64 extensible data sector (#747)

🚜 Refactor

  • remove useless magic in struct (#730)
  • change extra_field from Arc<Vec> to Arc<[u8]> (#741)

⚙️ Miscellaneous Tasks

  • cleanup README (#758)

8.4.0 - 2026-03-23

🚀 Features

  • add a check for building benches (#748)

🚜 Refactor

  • split part of read.rs for code readability (#744)
  • remove unused allow (#745)

⚡ Performance

  • skip BufReader for Stored files in make_reader (#739)

⚙️ Miscellaneous Tasks

  • move pull request template to correct folder (#749)

8.3.1 - 2026-03-21

🚜 Refactor

  • use AexEncryption::new (#736)
  • update tests to add big endian miri check (#735)

⚙️ Miscellaneous Tasks

  • cleanup repository files (#743)

8.3.0 - 2026-03-19

🚀 Features

  • add must_use (#727)

... (truncated)

Commits
  • 93ea679 chore: release v8.5.0 (#762)
  • fbd0d41 refactor: remove useless magic in struct (#730)
  • 1043e92 refactor: change extra_field from Arc<Vec> to Arc<[u8]> (#741)
  • 2eb28b6 fix: remove zip64 comment and add zip64 extensible data sector (#747)
  • 5f4a644 ci(deps): bump rust-lang/crates-io-auth-action from 1.0.3 to 1.0.4 (#761)
  • 6469720 ci: Add static.crates.io to allowed hosts in CodeQL workflow (#759)
  • 404c530 chore: cleanup README (#758)
  • 8fb7436 ci: Allowlist extra endpoints for Dependency Review and CodeQL actions (#756)
  • 609b821 ci: Restrict allowed remote endpoints for most workflows (#753)
  • 6244796 ci(deps): bump actions/cache from 5.0.3 to 5.0.4 (#752)
  • Additional commits viewable in compare view

Updates mockall to 0.14.0

Changelog

Sourced from mockall's changelog.

[ 0.14.0 ] - 2025-11-22

Added

  • Allow mocking structs and traits with const generics. (#649)

  • Compatibility with the #[trait_variant::make] macro. (#640)

  • Allow Expectations with a non-exact call count to be used in Sequences. (#660)

Changed

  • The MSRV is now Rust 1.77.0. (#650)

Fixed

  • No longer poison a static mock method's internal Mutex when panicing, even when using a stable Rust compiler. Also, no longer poison it even if there is no Context object. For example, if the user never set an Expectation at all. (#650)

  • Suppress single-use-lifetimes lints in the generated code, for cases where the orginal code wouldn't have triggered the warning. (#627)

  • Fix mocking foreign functions with a variadic argument and no pattern, for example fn foo(...) as opposed to fn bar(x: ...). That worked in prior versions of Mockall only until Rust 1.93.0, which made such arguments illegal for Rust functions. (#673)

  • Fully qualify Send and Sync traits in generated code, allowing structs named Send or Sync to be in scope without conflicts. (#672)

[ 0.13.1 ] - 2024-11-17

Fixed

  • Suppress warnings about the #[expect] lint, new in Rust 1.81.0, in generated code. (#619)

  • Suppress the #[clippy::ref_option] warning, new in Rust 1.83.0, in generated code.

... (truncated)

Commits
  • 4401e5a chore: Release
  • 73e6c8b Merge pull request #649 from jonatanzeidler/f.const-generics
  • c8920ba Add a CHANGELOG entry for PR #649
  • dcbad06 Actually use a struct in the const_generic_struct_with_static_method test
  • e9d52fb Don't create () fields for each const generic paramters
  • b734232 Allow const generics in automock
  • b2133c9 Allow methods on mocks to be called with a range of times in a Sequence (#660)
  • ae37861 Fully qualify Send and Sync marker traits (#672)
  • 695e55a Fix mocking foreign functions with a variadic argument and no pattern (#673)
  • d50aa1d improve error message (#668)
  • Additional commits viewable in compare view

Updates mock_instant to 0.6.0

Commits
  • 97e35a8 bump to 0.6.0 for ns resolution
  • 0603449 Merge pull request #27 from DDtKey/fix/add-sub-sub-millis
  • 0cf27a0 fix: allow sub-millisecond arithmetic operations (Add, Sub)
  • d16753c Merge pull request #23 from ShakenCodes/master
  • fdc0537 Improve documentation, making thread_local preferred
  • f83c8a9 bump version (#21)
  • 967b480 Bringing Instant::duration_since() in line with std. (#20)
  • 2093903 Fix typo in documentation (#19)
  • See full diff in compare view

Updates cbindgen to 0.29.2

Release notes

Sourced from cbindgen's releases.

0.29.2

  • Request serde's std feature to avoid issues with newer toml versions.

0.29.1

  • cf13c2b enum: Track dependencies properly in enumerations.
  • 307d1e9 constant: Handle cfg in associated constants.
  • 0902d02 Remove "display" feature from the toml crate
  • 9068410 Fix incorrect detection of duplicated constants
  • 451e768 docs: Correct after_include type in example config (fix)
  • aff68c6 cargo update
  • 09666f6 Update toml to 0.9

0.29.0

  • Support no-export annotation for statics and functions.
  • Fixed conditional fields of constexpr literal structs
  • Add rename rule for generated associated constant
  • Upgrade heck to 0.5
  • Add support for an optional nullable attribute
  • docs.md: Fix deprecated_with_note and deprecated_variant_with_note being spelled as 'notes'
  • Fix generic with "void" default
  • Fixed error generation of structures using the keyword as inside arrays
  • Added test for unsafe(no_mangle) attribute
  • Fixed handling of trait methods containing the unsafe attribute
  • Rename -Zparse-only

0.28.0

0.27.0

  • Revert: The Config struct now has a private member.
  • Allow users to specify a crate version for bindings generation (#901).
  • Update MSRV to 1.74 (#912, #987).
  • Support #[deprecated] on enum variants (#933).
  • Support integrating the package_version information in a header file comment (#939).
  • Add a language backend (#942).

... (truncated)

Changelog

Sourced from cbindgen's changelog.

0.29.2

  * Request serde's std feature to avoid issues with newer toml versions.

0.29.1

  * cf13c2b enum: Track dependencies properly in enumerations.
  * 307d1e9 constant: Handle cfg in associated constants.
  * 0902d02 Remove "display" feature from the toml crate
  * 9068410 Fix incorrect detection of duplicated constants
  * 451e768 docs: Correct after_include type in example config (fix)
  * aff68c6 cargo update
  * 09666f6 Update toml to 0.9

0.29.0

  * Support no-export annotation for statics and functions.
  * Fixed conditional fields of constexpr literal structs
  * Add rename rule for generated associated constant
  * Upgrade heck to 0.5
  * Add support for an optional nullable attribute
  * docs.md: Fix deprecated_with_note and deprecated_variant_with_note being spelled as 'notes'
  * Fix generic with "void" default
  * Fixed error generation of structures using the keyword as inside arrays
  * Added test for unsafe(no_mangle) attribute
  * Fixed handling of trait methods containing the unsafe attribute
  * Rename -Zparse-only

0.28.0

  * Parse unsafe attributes in https://github.com/mozilla/cbindgen/pull/1020
  * Fix local override of enum prefix-with-name by jsgf in https://github.com/mozilla/cbindgen/pull/1006
  * Add rename-all=prefix in https://github.com/mozilla/cbindgen/pull/1021
  * ir: add support for UnsafeCell and SyncUnsafeCell by alekitto in https://github.com/mozilla/cbindgen/pull/1003
  * Implement mangling for arrays in https://github.com/mozilla/cbindgen/pull/1022
  * Fix: Ignore `CARGO_BUILD_TARGET` in tests by bryango in https://github.com/mozilla/cbindgen/pull/1010
  * Newline for each field for constexpr field constants by youknowone in https://github.com/mozilla/cbindgen/pull/988
  * Fix clippy warnings by youknowone in https://github.com/mozilla/cbindgen/pull/1026
  * Add aarch64/arm64 to CI by NickeZ in https://github.com/mozilla/cbindgen/pull/1036
  * Add `unstable_ir` feature flag that makes the ir pub by heesooy in https://github.com/mozilla/cbindgen/pull/1011
  * Support generated a symbols file by TheElectronWill in https://github.com/mozilla/cbindgen/pull/916

0.27.0

  * Revert: The `Config` struct now has a private member.
  * Allow users to specify a crate version for bindings generation ([#901](https://github.com/mozilla/cbindgen/issues/901)).
  * Update MSRV to 1.74 ([#912](https://github.com/mozilla/cbindgen/issues/912), [#987](https://github.com/mozilla/cbindgen/issues/987)).
  * Support #[deprecated] on enum variants ([#933](https://github.com/mozilla/cbindgen/issues/933)).
  * Support integrating the package_version information in a header file comment ([#939](https://github.com/mozilla/cbindgen/issues/939)).
  * Add a language backend ([#942](https://github.com/mozilla/cbindgen/issues/942)).

... (truncated)

Commits
  • d458634 ci: Add a meta job to block the merge queue on it.
  • 77d17a0 Check for CMSE ABI's as well
  • 3620e88 Fix doc attribute parsing to properly handle block comments
  • ac824ec Expose the line_endings config option to use with the builder
  • 11320ac fix env in workflow file
  • 712e396 use env to pass output parameters
  • 76f41c0 Explicitly request serde's std features to avoid issues with newer toml versi...
  • eef1776 Account for master -> main rename.
  • 8c39b09 Update changelog and bump version.
  • 5a3a332 enum: Track dependencies properly in enumerations.
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Pull requests that update a dependency file rust Pull requests that update Rust code labels Apr 6, 2026
@dependabot
chore(deps): bump the library-deps group in /library with 5 updates
3cd747e 
Updates the requirements on [sha2](https://github.com/RustCrypto/hashes), [zip](https://github.com/zip-rs/zip2), [mockall](https://github.com/asomers/mockall), [mock_instant](https://github.com/museun/mock_instant) and [cbindgen](https://github.com/mozilla/cbindgen) to permit the latest version.

Updates `sha2` to 0.11.0
- [Commits](RustCrypto/hashes@streebog-v0.11.0-pre.0...sha2-v0.11.0)

Updates `zip` to 8.5.0
- [Release notes](https://github.com/zip-rs/zip2/releases)
- [Changelog](https://github.com/zip-rs/zip2/blob/master/CHANGELOG.md)
- [Commits](zip-rs/zip2@v3.0.0...v8.5.0)

Updates `mockall` to 0.14.0
- [Changelog](https://github.com/asomers/mockall/blob/master/CHANGELOG.md)
- [Commits](asomers/mockall@v0.13.1...v0.14.0)

Updates `mock_instant` to 0.6.0
- [Commits](museun/mock_instant@v0.5.1...v0.6.0)

Updates `cbindgen` to 0.29.2
- [Release notes](https://github.com/mozilla/cbindgen/releases)
- [Changelog](https://github.com/mozilla/cbindgen/blob/main/CHANGES)
- [Commits](mozilla/cbindgen@0.28.0...0.29.2)

---
updated-dependencies:
- dependency-name: sha2
  dependency-version: 0.11.0
  dependency-type: direct:production
  dependency-group: library-deps
- dependency-name: zip
  dependency-version: 8.5.0
  dependency-type: direct:production
  dependency-group: library-deps
- dependency-name: mockall
  dependency-version: 0.14.0
  dependency-type: direct:production
  dependency-group: library-deps
- dependency-name: mock_instant
  dependency-version: 0.6.0
  dependency-type: direct:production
  dependency-group: library-deps
- dependency-name: cbindgen
  dependency-version: 0.29.2
  dependency-type: direct:production
  dependency-group: library-deps
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/cargo/library/library-deps-a9b56d4654 branch from 2eea1f8 to 3cd747e Compare April 8, 2026 22:19
@eseidel eseidel enabled auto-merge (squash) April 8, 2026 23:09
@eseidel eseidel disabled auto-merge April 8, 2026 23:09
@codecov
Copy link
Copy Markdown

codecov bot commented Apr 8, 2026

Codecov Report

✅ All modified and coverable lines are covered by tests.

📢 Thoughts on this report? Let us know!

@eseidel eseidel requested a review from bdero April 8, 2026 23:12
@eseidel eseidel merged commit 08b91f4 into main Apr 8, 2026
15 checks passed
@eseidel eseidel deleted the dependabot/cargo/library/library-deps-a9b56d4654 branch April 8, 2026 23:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@eseidel eseidel eseidel approved these changes

@bdero bdero Awaiting requested review from bdero

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update Rust code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@eseidel