refresh 10 crates to latest compatible versions

[zbowling]

Summary:
X-link: meta-pytorch/monarch#4193

Refreshes 10 third-party Rust crates to their latest semver-compatible versions. These are dependencies used by the hzdb/metavr CLI (arvr/apps/hzdb) that were behind in the shared lockfile; the bumps apply repo-wide since third-party/rust is shared.

• bitflags 2.11.1 -> 2.13.0
• bumpalo 3.20.2 -> 3.20.3
• cc 1.2.62 -> 1.2.63 (additively vendors shlex 2.0.1 as a new transitive of cc)
• chrono 0.4.44 -> 0.4.45
• http 1.4.0 -> 1.4.1
• hyper 1.9.0 -> 1.10.1
• memchr 2.8.0 -> 2.8.1
• reqwest 0.13.2 -> 0.13.4
• unicode-segmentation 1.13.2 -> 1.13.3
• zerocopy 0.8.48 -> 0.8.50

All are patch/minor (semver-compatible) bumps requiring no first-party code changes. Mirrored the applicable bumps into the github shim manifest (fbcode/github/standard/shim/third-party/rust/Cargo.toml) for bitflags, bumpalo, chrono, http, hyper, memchr, and unicode-segmentation. Regenerated with reindeer vendor, which also refreshed 255 first-party Cargo.toml manifests via autocargo. No first-party Rust source changes were needed.

Differential Revision: D107740437

[meta-codesync]

@zbowling has exported this pull request. If you are a Meta employee, you can view the originating Diff in D107740437.

[Copilot]

Pull request overview

Updates pinned Rust dependency versions across the Hack/HHVM Rust workspaces and related third-party Rust crates, primarily via semver-compatible crate bumps and the corresponding lockfile regeneration.

Changes:

• Bump bitflags to 2.13.0 across multiple Hack/HHVM crates.
• Bump bumpalo to 3.20.3 (widely used across parser/emitter utilities).
• Refresh cc, chrono, memchr, unicode-segmentation, zerocopy (and update hphp/hack/src/Cargo.lock accordingly).

Reviewed changes

Copilot reviewed 26 out of 27 changed files in this pull request and generated no comments.

Show a summary per file

File	Description
third-party/thrift/src/thrift/lib/rust/Cargo.toml	Bump memchr dependency version.
hphp/tools/hhbc-gen/Cargo.toml	Bump bitflags and build-dep cc.
hphp/hack/src/utils/test/arena_deserializer/Cargo.toml	Bump bumpalo in dev-dependencies.
hphp/hack/src/utils/hh_slog/cargo/hh_slog/Cargo.toml	Bump chrono.
hphp/hack/src/utils/escaper/Cargo.toml	Bump bumpalo.
hphp/hack/src/utils/arena_deserializer/Cargo.toml	Bump bumpalo.
hphp/hack/src/parser/lowerer/Cargo.toml	Bump bumpalo.
hphp/hack/src/parser/ffi_bridge/Cargo.toml	Bump bumpalo.
hphp/hack/src/parser/cargo/rust_parser_ffi/Cargo.toml	Bump bumpalo.
hphp/hack/src/parser/cargo/rust_parser_errors_ffi/Cargo.toml	Bump bumpalo.
hphp/hack/src/parser/cargo/mode_parser/Cargo.toml	Bump bumpalo.
hphp/hack/src/parser/cargo/decl_mode_parser/Cargo.toml	Bump bumpalo.
hphp/hack/src/parser/cargo/core_types/Cargo.toml	Bump bitflags and bumpalo.
hphp/hack/src/parser/cargo/aast_parser/Cargo.toml	Bump bitflags and bumpalo.
hphp/hack/src/parser/api/cargo/positioned_full_trivia_parser/Cargo.toml	Bump bumpalo.
hphp/hack/src/parser/api/cargo/positioned_by_ref_parser/Cargo.toml	Bump bumpalo.
hphp/hack/src/parser/api/cargo/decl_mode_parser/Cargo.toml	Bump bumpalo.
hphp/hack/src/oxidized/Cargo.toml	Bump bitflags and bumpalo.
hphp/hack/src/hackrs/pos/cargo/pos/Cargo.toml	Bump bumpalo.
hphp/hack/src/hackc/hhbc/cargo/hhbc/Cargo.toml	Bump bitflags.
hphp/hack/src/hackc/emitter/cargo/env/Cargo.toml	Bump bitflags.
hphp/hack/src/hackc/emitter/cargo/emit_unit/Cargo.toml	Bump bitflags.
hphp/hack/src/hackc/Cargo.toml	Bump bumpalo.
hphp/hack/src/elab/Cargo.toml	Bump bitflags.
hphp/hack/src/Cargo.lock	Regenerate lockfile for updated crate versions (incl. bitflags, bumpalo, cc, chrono, memchr, unicode-segmentation, zerocopy, shlex).
hphp/hack/src/arena_trait/Cargo.toml	Bump bumpalo.
hphp/hack/src/arena_collections/Cargo.toml	Bump bumpalo.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.