Skip to content

deps: bump the deps-patches group with 6 updates#693

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/deps-patches-0af5be5363
Open

deps: bump the deps-patches group with 6 updates#693
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/deps-patches-0af5be5363

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 13, 2026

Copy link
Copy Markdown
Contributor

Bumps the deps-patches group with 6 updates:

Package From To
indicatif 0.18.5 0.18.6
rand 0.10.1 0.10.2
clap_complete 4.6.5 4.6.7
tauri-winrt-notification 0.7.2 0.7.3
jsonschema 0.46.6 0.46.10
time 0.3.51 0.3.53

Updates indicatif from 0.18.5 to 0.18.6

Release notes

Sourced from indicatif's releases.

0.18.6

What's Changed

Commits

Updates rand from 0.10.1 to 0.10.2

Changelog

Sourced from rand's changelog.

[0.10.2] — 2026-07-02

Fixes

  • Fix possible memory safety violation due to deserialization of UniformChar from bad source (#1790)

Changes

  • Document required output order of fn partial_shuffle and apply #[must_use] (#1769)
  • Avoid usage of unsafe in contexts where non-local memory corruption could invalidate contract (#1791)

#1769: rust-random/rand#1769 #1790: rust-random/rand#1790 #1791: rust-random/rand#1791

Commits

Updates clap_complete from 4.6.5 to 4.6.7

Commits
  • d3e59a9 chore: Release
  • d997f87 docs: Update changelog
  • fb6058c Merge pull request #6409 from heaths/pwsh-support
  • 2310870 test(complete): Add tests for completer_for_path
  • 5967c17 refactor(complete): Move shell detection to Shells
  • 594602b fix(complete): Detect pwsh for PowerShell
  • 3a4f2d0 Merge pull request #6427 from clap-rs/renovate/shlex-2.x
  • 67ebaed Merge pull request #6426 from clap-rs/renovate/actions-checkout-7.x
  • c968b13 chore(deps): Update Rust crate shlex to v2
  • 8f247cb chore(deps): Update actions/checkout action to v7
  • Additional commits viewable in compare view

Updates tauri-winrt-notification from 0.7.2 to 0.7.3

Release notes

Sourced from tauri-winrt-notification's releases.

tauri-winrt-notification v0.7.3

Updating crates.io index Locking 20 packages to latest compatible versions Adding windows v0.61.3 (available: v0.62.2) Adding windows-registry v0.5.3 (available: v0.6.1)

Fetching advisory database from `https://github.com/RustSec/advisory-db.git`
      Loaded 1149 security advisories (from /home/runner/.cargo/advisory-db)
    Updating crates.io index
    Scanning Cargo.lock for vulnerabilities (21 crate dependencies)

[0.7.3]

Updating crates.io index
   Packaging tauri-winrt-notification v0.7.3 (/home/runner/work/winrt-notification/winrt-notification)
    Updating crates.io index
    Packaged 34 files, 103.1KiB (46.6KiB compressed)
   Uploading tauri-winrt-notification v0.7.3 (/home/runner/work/winrt-notification/winrt-notification)
    Uploaded tauri-winrt-notification v0.7.3 to registry `crates-io`
note: waiting for tauri-winrt-notification v0.7.3 to be available at registry `crates-io`
help: you may press ctrl-c to skip waiting; the crate should be available shortly
   Published tauri-winrt-notification v0.7.3 at registry `crates-io`
Changelog

Sourced from tauri-winrt-notification's changelog.

[0.7.3]

Commits

Updates jsonschema from 0.46.6 to 0.46.10

Release notes

Sourced from jsonschema's releases.

[Python] Release 0.46.10

Fixed

  • Stack overflow with a self-referential $dynamicRef combined with unevaluatedProperties or unevaluatedItems.
  • Incorrect unevaluatedProperties and unevaluatedItems results when a meta-schema disables the Applicator vocabulary.

[Ruby] Release 0.46.10

Fixed

  • Stack overflow with a self-referential $dynamicRef combined with unevaluatedProperties or unevaluatedItems.
  • Incorrect unevaluatedProperties and unevaluatedItems results when a meta-schema disables the Applicator vocabulary.

[Rust] Release 0.46.10

Fixed

  • Stack overflow with a self-referential $dynamicRef combined with unevaluatedProperties or unevaluatedItems.
  • Incorrect unevaluatedProperties and unevaluatedItems results when a meta-schema disables the Applicator vocabulary.

[Python] Release 0.46.9

Fixed

  • Stack overflow while preparing a registry containing deeply nested schema documents.

[Ruby] Release 0.46.9

Fixed

  • Stack overflow while preparing a registry containing deeply nested schema documents.

[Rust] Release 0.46.9

Fixed

  • multipleOf incorrectly rounds integer instances above 2^53 to f64 before the divisibility check on builds without the arbitrary-precision feature.
  • Stack overflow while preparing a registry containing deeply nested schema documents.

[Python] Release 0.46.8

Fixed

  • idn-email format rejected non-ASCII characters in quoted local parts (e.g. "δοκιμή"@example.com).

[Ruby] Release 0.46.8

Fixed

  • idn-email format rejected non-ASCII characters in quoted local parts (e.g. "δοκιμή"@example.com).

[Rust] Release 0.46.8

Fixed

  • idn-email format rejected non-ASCII characters in quoted local parts (e.g. "δοκιμή"@example.com).

[Python] Release 0.46.7

... (truncated)

Changelog

Sourced from jsonschema's changelog.

[0.46.10] - 2026-07-05

Fixed

  • Stack overflow with a self-referential $dynamicRef combined with unevaluatedProperties or unevaluatedItems.
  • Incorrect unevaluatedProperties and unevaluatedItems results when a meta-schema disables the Applicator vocabulary.

[0.46.9] - 2026-07-02

Fixed

  • multipleOf incorrectly rounds integer instances above 2^53 to f64 before the divisibility check on builds without the arbitrary-precision feature.
  • Stack overflow while preparing a registry containing deeply nested schema documents.

[0.46.8] - 2026-07-01

Fixed

  • idn-email format rejected non-ASCII characters in quoted local parts (e.g. "δοκιμή"@example.com).

[0.46.7] - 2026-06-30

Fixed

  • idn-hostname format accepted A-labels that decode to a disallowed code point (e.g. xn--7a).
Commits
  • 6b7087e chore(ruby): Release 0.46.10
  • a722ef5 chore(python): Release 0.46.10
  • ecaecea chore(rust): Release 0.46.10
  • 571e22b fix: Incorrect unevaluatedProperties and unevaluatedItems results when a ...
  • 99cbafc chore: Unify codecov configs
  • 91037c6 fix: Stack overflow with a self-referential $dynamicRef combined with `unev...
  • a743a33 chore(ruby): Release 0.46.9
  • 099cdd0 chore(python): Release 0.46.9
  • b6c58f4 chore(rust): Release 0.46.9
  • 1d78785 refactor: Extract jsonschema-regex crate
  • Additional commits viewable in compare view

Updates time from 0.3.51 to 0.3.53

Release notes

Sourced from time's releases.

v0.3.53

See the changelog for details.

v0.3.52

See the changelog for details.

Changelog

Sourced from time's changelog.

0.3.53 [2026-07-01]

There are no publicly-facing changes in this release. It solely works around the cookie crate relying on an implementation detail of time that was never part of the public API (and thus subject to semver guarantees). The internal API has been reverted to the extent necessary for cookie to compile. This measure is temporary; the internal change will be re-applied in an yet-to-be-determined future release.

0.3.52 [2026-06-30]

Fixed

  • Subsecond values in the time! macro are parsed using the textual representation, ensuring accuracy. Previously, they were parsed using the floating point representation, which could result in a loss of precision and even invalid values.
  • The date! macro could previously create an invalid value that would then panic at compile time. The macro now emits a proper error instead.
  • When parsing an invalid format description, an edge case would inadvertently panic. This now returns an error as intended.

Added

  • Support default values when parsing
Commits
  • 0ae2f84 v0.3.53 release
  • cea8c96 Avoid issue with cookie crate temporarily
  • 55e1f2b Require private type to properly seal traits
  • 7cf4780 v0.3.52 release
  • 0e5b04f Fix trusted publishing workflow
  • 6e4140a Support default values when parsing
  • 10ac36a Add more doctests to Timestamp
  • 6b0d468 Restore lexer depth on the unclosed-bracket error path
  • 0abc06d Add trusted publishing
  • 43cf0c0 Preferentially group shards by target
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the deps-patches group with 6 updates:

| Package | From | To |
| --- | --- | --- |
| [indicatif](https://github.com/console-rs/indicatif) | `0.18.5` | `0.18.6` |
| [rand](https://github.com/rust-random/rand) | `0.10.1` | `0.10.2` |
| [clap_complete](https://github.com/clap-rs/clap) | `4.6.5` | `4.6.7` |
| [tauri-winrt-notification](https://github.com/tauri-apps/winrt-notification) | `0.7.2` | `0.7.3` |
| [jsonschema](https://github.com/Stranger6667/jsonschema) | `0.46.6` | `0.46.10` |
| [time](https://github.com/time-rs/time) | `0.3.51` | `0.3.53` |


Updates `indicatif` from 0.18.5 to 0.18.6
- [Release notes](https://github.com/console-rs/indicatif/releases)
- [Commits](console-rs/indicatif@0.18.5...0.18.6)

Updates `rand` from 0.10.1 to 0.10.2
- [Release notes](https://github.com/rust-random/rand/releases)
- [Changelog](https://github.com/rust-random/rand/blob/master/CHANGELOG.md)
- [Commits](rust-random/rand@0.10.1...0.10.2)

Updates `clap_complete` from 4.6.5 to 4.6.7
- [Release notes](https://github.com/clap-rs/clap/releases)
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md)
- [Commits](clap-rs/clap@clap_complete-v4.6.5...clap_complete-v4.6.7)

Updates `tauri-winrt-notification` from 0.7.2 to 0.7.3
- [Release notes](https://github.com/tauri-apps/winrt-notification/releases)
- [Changelog](https://github.com/tauri-apps/winrt-notification/blob/dev/CHANGELOG.md)
- [Commits](tauri-apps/winrt-notification@tauri-winrt-notification-v0.7.2...tauri-winrt-notification-v0.7.3)

Updates `jsonschema` from 0.46.6 to 0.46.10
- [Release notes](https://github.com/Stranger6667/jsonschema/releases)
- [Changelog](https://github.com/Stranger6667/jsonschema/blob/master/CHANGELOG.md)
- [Commits](Stranger6667/jsonschema@cli-v0.46.6...ruby-v0.46.10)

Updates `time` from 0.3.51 to 0.3.53
- [Release notes](https://github.com/time-rs/time/releases)
- [Changelog](https://github.com/time-rs/time/blob/main/CHANGELOG.md)
- [Commits](time-rs/time@v0.3.51...v0.3.53)

---
updated-dependencies:
- dependency-name: indicatif
  dependency-version: 0.18.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: deps-patches
- dependency-name: rand
  dependency-version: 0.10.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: deps-patches
- dependency-name: clap_complete
  dependency-version: 4.6.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: deps-patches
- dependency-name: tauri-winrt-notification
  dependency-version: 0.7.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: deps-patches
- dependency-name: jsonschema
  dependency-version: 0.46.10
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: deps-patches
- dependency-name: time
  dependency-version: 0.3.53
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: deps-patches
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update Rust code labels Jul 13, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update Rust code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants