chore(deps): bump the dependencies group with 8 updates by dependabot[bot] · Pull Request #32 · ararog/sofie

dependabot · 2026-03-11T17:43:30Z

Bumps the dependencies group with 8 updates:

Package	From	To
toml	`1.0.3+spec-1.1.0`	`1.0.6+spec-1.1.0`
crossfire	`3.1.4`	`3.1.5`
libc	`0.2.182`	`0.2.183`
quinn-proto	`0.11.13`	`0.11.14`
schannel	`0.1.28`	`0.1.29`
winnow	`0.7.14`	`0.7.15`
zerocopy	`0.8.40`	`0.8.42`
zerocopy-derive	`0.8.40`	`0.8.42`

Updates toml from 1.0.3+spec-1.1.0 to 1.0.6+spec-1.1.0

Commits

a09707e chore: Release
7b0feaa docs: Update changelog
2902954 Revert "fix(toml): Track dotted key for spans" (#1119)
a586cae Revert "fix(toml): Track dotted key for spans"
d35c3f6 chore: Release
949b4e8 docs: Update changelog
47b878b fix(toml): Track dotted key for spans (#1118)
87461d8 fix(toml): Track dotted key for spans
796370e test(serde): Check span meaning
ad87859 test(serde): Track key spans
Additional commits viewable in compare view

Updates crossfire from 3.1.4 to 3.1.5

Changelog

Sourced from crossfire's changelog.

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

Unreleased

Added

Removed

Changed

Fixed

Commits

See full diff in compare view

Updates libc from 0.2.182 to 0.2.183

Release notes

Sourced from libc's releases.

0.2.183

Added

ESP-IDF: Add SOMAXCONN (#4993)

Linux: Add name_to_handle_at and open_by_handle_at (#4988)

NetBSD: Add kinfo_file, kinfo_pcb, and related constants (#4985)

OpenBSD: Add kinfo_file and related constants (#4991)

VxWorks: Add additional structs and defines (#5003)

Various: Implement Default for timeval and timespec (#4976)

Fixed

Hexagon musl: Enable unstable 64-bit time_t support and musl_v1_2_3 (#4992)

Nintendo Switch: Fix target support (#4982)

OpenBSD: Wrap an unused field in Padding (#4997)

Redox: Change sigaction.sa_flags to c_int (#4986)

Redox: Fix blkcnt_t type (#4994)

Changelog

Sourced from libc's changelog.

0.2.183 - 2026-03-08

Added

ESP-IDF: Add SOMAXCONN (#4993)

Linux: Add name_to_handle_at and open_by_handle_at (#4988)

NetBSD: Add kinfo_file, kinfo_pcb, and related constants (#4985)

OpenBSD: Add kinfo_file and related constants (#4991)

VxWorks: Add additional structs and defines (#5003)

Various: Implement Default for timeval and timespec (#4976)

Fixed

Hexagon musl: Enable unstable 64-bit time_t support and musl_v1_2_3 (#4992)

Nintendo Switch: Fix target support (#4982)

OpenBSD: Wrap an unused field in Padding (#4997)

Redox: Change sigaction.sa_flags to c_int (#4986)

Redox: Fix blkcnt_t type (#4994)

Commits

5660e6f chore: Release libc 0.2.183
8b439b7 allow unused link_cfg feature in rustc-dep-of-std
e6436dc Adding structs and defines for vxworks
e9cca04 Linux: add name_to_handle_at and open_by_handle_at
af8b812 linux: relocate PIDFD definitions to src/new
d0bd7e2 NetBSD: add kinfo_file, kinfo_pcb structures and related constants
17f5cce build(deps): bump actions/upload-artifact from 6 to 7
62c89e8 OpenBSD: Wrap an unused field in Padding
82cb126 enable musl32_time64 and musl_v1_2_3 for hexagon
e7f9902 redox: fix blkcnt_t type
Additional commits viewable in compare view

Updates quinn-proto from 0.11.13 to 0.11.14

Release notes

Sourced from quinn-proto's releases.

quinn-proto 0.11.14

@jxs reported a denial of service issue in quinn-proto 5 days ago:

GHSA-6xvm-j4wr-6v98

We coordinated with them to release this version to patch the issue. Unfortunately the maintainers missed these issues during code review and we did not have enough fuzzing coverage -- we regret the oversight and have added an additional fuzzing target.

Organizations that want to participate in coordinated disclosure can contact us privately to discuss terms.

What's Changed

Fix over-permissive proto dependency edge by @Ralith in quinn-rs/quinn#2385

0.11.x: avoid unwrapping VarInt decoding during parameter parsing by @djc in quinn-rs/quinn#2559

Commits

2c315aa proto: bump version to 0.11.14
8ad47f4 Use newer rustls-pki-types PEM parser API
c81c028 ci: fix workflow syntax
0050172 ci: pin wasm-bindgen-cli version
8a6f82c Take semver-compatible dependency updates
e52db4a Apply suggestions from clippy 1.91
6df7275 chore: Fix unnecessary_unwrap clippy
c8eefa0 proto: avoid unwrapping varint decoding during parameters parsing
9723a97 fuzz: add fuzzing target for parsing transport parameters
eaf0ef3 Fix over-permissive proto dependency edge (#2385)
Additional commits viewable in compare view

Updates schannel from 0.1.28 to 0.1.29

Commits

ff7ffd3 Release v0.1.29
3530cff Merge pull request #121 from nateprewitt/fix_tls13_data_corruption
a136697 add test for tls renegotiation (TLS1.3, #121)
6e817db Fix TLS 1.3 data corruption from double-send during renegotiation
f75095d Merge pull request #120 from steffengy/feature/119-wrong-ncrypt-check
4269250 Fix condition #119 for CERT_NCRYPT_KEY_SPEC check
6cc5637 Merge pull request #117 from 42triangles/master
ed24fe2 Use package.include to only include necessary data for using the crate
See full diff in compare view

Updates winnow from 0.7.14 to 0.7.15

Changelog

Sourced from winnow's changelog.

[0.7.15] - 2026-03-05

Compatibility

Deprecate combinator::permutation in favor of combinator::unordered_seq!

Features

Add combinator::unordered_seq!, like seq! but where the order of values does not matter

Commits

eae4d4a chore: Release
5769b89 docs: Update changelog
329c13b Merge pull request #876 from epage/unordered_seq
c169964 fix(comb): Deprecate permutation
2f97279 fix(macros): Preserve original failure location
5926ad3 feat(comb): Add unordered support to unordered_seq
6d7e8d4 feat(comb): Add baseline for unordered_seq
cfcd411 refactor(macros): Be consistent on indentation
716f2a7 Merge pull request #869 from winnow-rs/renovate/crate-ci-committed-1.x
7cc7343 Merge pull request #870 from winnow-rs/renovate/crate-ci-typos-1.x
Additional commits viewable in compare view

Updates zerocopy from 0.8.40 to 0.8.42

Release notes

Sourced from zerocopy's releases.

v0.8.41

What's Changed

Add code generation tests by @jswrenn in google/zerocopy#3042

Introduce 'Code Generation' documentation by @jswrenn in google/zerocopy#3078

[codegen] Track unanalyzed assembly and include it in docs. by @jswrenn in google/zerocopy#3081

[codegen] Use descriptive benchmark target fn name. by @jswrenn in google/zerocopy#3082

[codegen] Make codegen tests even more stressful. by @jswrenn in google/zerocopy#3083

[codegen] Test and document codegen under different layouts by @jswrenn in google/zerocopy#3085

Full Changelog: google/zerocopy@v0.8.40...v0.8.41

v0.8.41-alpha

What's Changed

Add code generation tests by @jswrenn in google/zerocopy#3042

Introduce 'Code Generation' documentation by @jswrenn in google/zerocopy#3078

Full Changelog: google/zerocopy@v0.8.40...v0.8.41-alpha

Commits

90600f1 [docs] Remove superfluous heading (#3099)
fc73624 [codegen] Test and document codegen under different layouts (#3085)
098b966 [codegen] Make codegen tests even more stressful. (#3083)
daa1971 [codegen] Use descriptive benchmark target fn name. (#3082)
aa1bbf4 [codegen] Track unanalyzed assembly and include it in docs. (#3081)
dbef272 Release 0.8.41-alpha (#3080)
128f030 Introduce 'Code Generation' documentation (#3078)
2694453 Add code generation tests (#3042)
See full diff in compare view

Updates zerocopy-derive from 0.8.40 to 0.8.42

Release notes

Sourced from zerocopy-derive's releases.

v0.8.41

What's Changed

Add code generation tests by @jswrenn in google/zerocopy#3042

Introduce 'Code Generation' documentation by @jswrenn in google/zerocopy#3078

[codegen] Track unanalyzed assembly and include it in docs. by @jswrenn in google/zerocopy#3081

[codegen] Use descriptive benchmark target fn name. by @jswrenn in google/zerocopy#3082

[codegen] Make codegen tests even more stressful. by @jswrenn in google/zerocopy#3083

[codegen] Test and document codegen under different layouts by @jswrenn in google/zerocopy#3085

Full Changelog: google/zerocopy@v0.8.40...v0.8.41

v0.8.41-alpha

What's Changed

Add code generation tests by @jswrenn in google/zerocopy#3042

Introduce 'Code Generation' documentation by @jswrenn in google/zerocopy#3078

Full Changelog: google/zerocopy@v0.8.40...v0.8.41-alpha

Commits

90600f1 [docs] Remove superfluous heading (#3099)
fc73624 [codegen] Test and document codegen under different layouts (#3085)
098b966 [codegen] Make codegen tests even more stressful. (#3083)
daa1971 [codegen] Use descriptive benchmark target fn name. (#3082)
aa1bbf4 [codegen] Track unanalyzed assembly and include it in docs. (#3081)
dbef272 Release 0.8.41-alpha (#3080)
128f030 Introduce 'Code Generation' documentation (#3078)
2694453 Add code generation tests (#3042)
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the dependencies group with 8 updates: | Package | From | To | | --- | --- | --- | | [toml](https://github.com/toml-rs/toml) | `1.0.3+spec-1.1.0` | `1.0.6+spec-1.1.0` | | [crossfire](https://github.com/frostyplanet/crossfire-rs) | `3.1.4` | `3.1.5` | | [libc](https://github.com/rust-lang/libc) | `0.2.182` | `0.2.183` | | [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.13` | `0.11.14` | | [schannel](https://github.com/steffengy/schannel-rs) | `0.1.28` | `0.1.29` | | [winnow](https://github.com/winnow-rs/winnow) | `0.7.14` | `0.7.15` | | [zerocopy](https://github.com/google/zerocopy) | `0.8.40` | `0.8.42` | | [zerocopy-derive](https://github.com/google/zerocopy) | `0.8.40` | `0.8.42` | Updates `toml` from 1.0.3+spec-1.1.0 to 1.0.6+spec-1.1.0 - [Commits](toml-rs/toml@toml-v1.0.3...toml-v1.0.6) Updates `crossfire` from 3.1.4 to 3.1.5 - [Release notes](https://github.com/frostyplanet/crossfire-rs/releases) - [Changelog](https://github.com/frostyplanet/crossfire-rs/blob/master/CHANGELOG.md) - [Commits](https://github.com/frostyplanet/crossfire-rs/commits) Updates `libc` from 0.2.182 to 0.2.183 - [Release notes](https://github.com/rust-lang/libc/releases) - [Changelog](https://github.com/rust-lang/libc/blob/0.2.183/CHANGELOG.md) - [Commits](rust-lang/libc@0.2.182...0.2.183) Updates `quinn-proto` from 0.11.13 to 0.11.14 - [Release notes](https://github.com/quinn-rs/quinn/releases) - [Commits](quinn-rs/quinn@quinn-proto-0.11.13...quinn-proto-0.11.14) Updates `schannel` from 0.1.28 to 0.1.29 - [Release notes](https://github.com/steffengy/schannel-rs/releases) - [Commits](steffengy/schannel-rs@v0.1.28...v0.1.29) Updates `winnow` from 0.7.14 to 0.7.15 - [Changelog](https://github.com/winnow-rs/winnow/blob/main/CHANGELOG.md) - [Commits](winnow-rs/winnow@v0.7.14...v0.7.15) Updates `zerocopy` from 0.8.40 to 0.8.42 - [Release notes](https://github.com/google/zerocopy/releases) - [Changelog](https://github.com/google/zerocopy/blob/main/CHANGELOG.md) - [Commits](google/zerocopy@v0.8.40...v0.8.42) Updates `zerocopy-derive` from 0.8.40 to 0.8.42 - [Release notes](https://github.com/google/zerocopy/releases) - [Changelog](https://github.com/google/zerocopy/blob/main/CHANGELOG.md) - [Commits](google/zerocopy@v0.8.40...v0.8.42) --- updated-dependencies: - dependency-name: toml dependency-version: 1.0.6+spec-1.1.0 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: crossfire dependency-version: 3.1.5 dependency-type: indirect update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: libc dependency-version: 0.2.183 dependency-type: indirect update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: quinn-proto dependency-version: 0.11.14 dependency-type: indirect update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: schannel dependency-version: 0.1.29 dependency-type: indirect update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: winnow dependency-version: 0.7.15 dependency-type: indirect update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: zerocopy dependency-version: 0.8.42 dependency-type: indirect update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: zerocopy-derive dependency-version: 0.8.42 dependency-type: indirect update-type: version-update:semver-patch dependency-group: dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot · 2026-03-11T17:43:31Z

Milestone

The specified milestone could not be found on this repository. If you view a milestone, the final part of the page URL, after milestone, is the identifier. For example: https://github.com/<org>/<repo>/milestone/3.

Labels

The following labels could not be found: dependencies, rust. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

dependabot bot assigned ararog Mar 11, 2026

ararog merged commit b8e9cf9 into main Mar 11, 2026
0 of 2 checks passed

ararog deleted the dependabot/cargo/dependencies-0201b7fac7 branch March 11, 2026 23:08

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore(deps): bump the dependencies group with 8 updates#32

chore(deps): bump the dependencies group with 8 updates#32
ararog merged 1 commit intomainfrom
dependabot/cargo/dependencies-0201b7fac7

dependabot bot commented on behalf of github Mar 11, 2026

Uh oh!

dependabot bot commented on behalf of github Mar 11, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Uh oh!

Conversation

dependabot bot commented on behalf of github Mar 11, 2026

Changelog

Unreleased

Added

Removed

Changed

Fixed

0.2.183

Added

Fixed

0.2.183 - 2026-03-08

Added

Fixed

quinn-proto 0.11.14

What's Changed

[0.7.15] - 2026-03-05

Compatibility

Features

v0.8.41

What's Changed

v0.8.41-alpha

What's Changed

v0.8.41

What's Changed

v0.8.41-alpha

What's Changed

Uh oh!

dependabot bot commented on behalf of github Mar 11, 2026

Milestone

Labels

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant