Bump the cargo group with 12 updates

[dependabot]

Bumps the cargo group with 12 updates:

Package	From	To
clap_complete	4.5.47	4.5.48
rustix	1.0.5	1.0.7
syn	2.0.100	2.0.101
insta	1.42.2	1.43.1
async-executor	1.13.1	1.13.2
openssl-sys	0.9.107	0.9.108
quinn-udp	0.5.11	0.5.12
synstructure	0.13.1	0.13.2
toml	0.8.20	0.8.22
toml_datetime	0.6.8	0.6.9
toml_edit	0.22.24	0.22.26
webpki-roots	0.26.8	0.26.10

Updates clap_complete from 4.5.47 to 4.5.48

Commits

• c3a1ddc chore: Release
• 4460ff4 docs: Update changelog
• 54947a1 Merge pull request #5981 from mernen/fix-bash-clap-complete-space
• fd3f6d2 fix(complete): Restore nospace in bash
• 2f6a108 test(complete): Demonstrate current behavior
• f88be57 style: Ensure consistent newlines
• f209bce chore: Release
• f33ff7f docs: Update changelog
• bf06e6f Merge pull request #5974 from kryvashek/support-clearing-args-matches
• 5d357ad feat(parser): Added ArgMatches::try_clear_id()
• Additional commits viewable in compare view

Updates rustix from 1.0.5 to 1.0.7

Commits

• 6883580 chore: Release rustix version 1.0.7
• fc794e9 Fix the assertion in Pid::from_raw to accept 0. (#1456)
• 5ce17db chore: Release rustix version 1.0.6
• cd95201 Remove pidfd_send_signal from not_implemented (#1448)
• 4fbc05c Always cast pread, lseek etc. offsets to off_t. (#1442)
• 4626b69 Document that negative pids aren't UB, but may cause unexpected behavior. (#1...
• ca41f0a Add trap instructions after noreturn syscalls. (#1444)
• See full diff in compare view

Updates syn from 2.0.100 to 2.0.101

Release notes

Sourced from syn's releases.

2.0.101

• Improve TypeGenerics::as_turbofish to return longer-lived return value (#1861)

Commits

• 58336a3 Release 2.0.101
• f1612cc Merge pull request #1861 from JakobDegen/turbofish
• d04eea1 Fix lifetime on as_turbofish
• 432b303 Resolve renamed_and_removed_lints warning about match_on_vec_items
• 1353d60 Update test suite to nightly-2025-04-08
• 3980ff2 Improve wording of comment in advance_to implementation
• 8328b52 Update test suite to nightly-2025-04-05
• 1d2e2be Update test suite to nightly-2025-04-03
• 2400946 Update test suite to nightly-2025-04-02
• 114a629 Update test suite to nightly-2025-03-27
• Additional commits viewable in compare view

Updates insta from 1.42.2 to 1.43.1

Release notes

Sourced from insta's releases.

1.43.1

Release Notes

This release in identical in rust code to 1.43.0, but reruns the GitHub Actions workflows, which failed to create a release within GitHub for 1.43.0.

Install cargo-insta 1.43.1

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/mitsuhiko/insta/releases/download/1.43.1/cargo-insta-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy ByPass -c "irm https://github.com/mitsuhiko/insta/releases/download/1.43.1/cargo-insta-installer.ps1 | iex"

Download cargo-insta 1.43.1

File	Platform	Checksum
cargo-insta-aarch64-apple-darwin.tar.xz	Apple Silicon macOS	checksum
cargo-insta-x86_64-apple-darwin.tar.xz	Intel macOS	checksum
cargo-insta-x86_64-pc-windows-msvc.zip	x64 Windows	checksum
cargo-insta-x86_64-unknown-linux-gnu.tar.xz	x64 Linux	checksum
cargo-insta-x86_64-unknown-linux-musl.tar.xz	x64 MUSL Linux	checksum

Changelog

Sourced from insta's changelog.

1.43.1

This release in identical in rust code to 1.43.0, but reruns the GitHub Actions workflows, which failed to create a release within GitHub for 1.43.0.

1.43.0

• Add uppercase keyboard shortcuts for bulk operations in cargo insta review: A to accept all, R to reject all, and S to skip all remaining snapshots. #745
• --unreferenced=auto (or other relevant values) no longer cleans up pending snapshots. A bug where cargo insta test --unreferenced=auto would incorrectly pass on new pending snapshots has been fixed.
• Support specifying cargo-nextest bin with INSTA_CARGO_NEXTEST_BIN. #721 (Louis Fruleux)
• Allow setting INSTA_WORKSPACE_ROOT at compile time. This is useful for reproducible binaries so they don't contain references to CARGO_MANIFEST_DIR. #726 (Pascal Bach)
• Qualify all references in macros to avoid name clashes. #729 (Austin Schey)
• Remove linked-hash-map and pin-project dependencies. #742, #741, #738
• cargo insta review fails with a helpful error message when run in a non-TTY environment.

Commits

• 82c6224 Update runners for dist on musl (#769)
• c055282 Bump versions to 1.43.1 (#767)
• 7335b55 Update runners for dist (#768)
• 34196da bump version to 1.43.0 (#763)
• fd8ec9f fix --unreferenced=auto clearing new pending snapshots (#762)
• f781958 Rename process_snapshots function to review_snapshots for clarity (#761)
• 93b12c6 Add pre-commit hook for Rust code formatting (#760)
• e91a7ac fix unreferenced not being read from config file (#759)
• 7aa23e0 small simplification of macros (#758)
• 2c30a7f Run with --force-update-snapshots (#749)
• Additional commits viewable in compare view

Updates async-executor from 1.13.1 to 1.13.2

Release notes

Sourced from async-executor's releases.

v1.13.2

• Fix build failure with minimal-versions. (#132)
• Prevent executor from becoming unusable by panic of the iterator passed by the user to the spawn_many. (#136)
• Reduce memory footprint. (#137)

Changelog

Sourced from async-executor's changelog.

Version 1.13.2

• Fix build failure with minimal-versions. (#132)
• Prevent executor from becoming unusable by panic of the iterator passed by the user to the spawn_many. (#136)
• Reduce memory footprint. (#137)

Commits

• 3d912bb Release 1.13.2
• 60a2185 ci: Use reusable workflows for fmt and security_audit
• 47739f1 Reduce memory footprint
• 76bea84 deps: Bump slab to v0.4.7
• 0c216e8 Ignore poisoning of active
• 9335b7e ci: Use "v2.0.0" branch for security check
• 0a20bc8 Merge pull request #128 from lewiszlw/patch-1
• fc33b2b Fix build badge
• See full diff in compare view

Updates openssl-sys from 0.9.107 to 0.9.108

Release notes

Sourced from openssl-sys's releases.

openssl-sys-v0.9.108

What's Changed

• test against openssl 3.5.0 by @​alex in sfackler/rust-openssl#2392
• Support Libressl 4.1 by @​botovq in sfackler/rust-openssl#2398
• Release openssl-sys v0.9.108 by @​alex in sfackler/rust-openssl#2399

Full Changelog: sfackler/rust-openssl@openssl-sys-v0.9.107...openssl-sys-v0.9.108

Commits

• 132418b Merge pull request #2399 from alex/release-sys
• f7a692b Release openssl-sys v0.9.108
• 2f9b496 Merge pull request #2398 from botovq/libressl-4.1
• ae9d988 Replace LibreSSL 3.8 with 4.1 in CI
• 5292dec Allow libressl 4.1.0 (stable release)
• 6a45982 Merge pull request #2392 from sfackler/alex-patch-1
• df0e2f0 test against openssl 3.5.0
• See full diff in compare view

Updates quinn-udp from 0.5.11 to 0.5.12

Release notes

Sourced from quinn-udp's releases.

quinn-udp 0.5.12

What's Changed

• quinn-udp: handle EMSGSIZE in a common place by @​thomaseizinger in quinn-rs/quinn#2199
• quinn-udp: refactor control-flow in send and recv impls by @​thomaseizinger in quinn-rs/quinn#2200
• fix(quinn-udp): move cmsg-len check to Iterator by @​thomaseizinger in quinn-rs/quinn#2208
• fix(udp): zero control message array on fast-apple-datapath by @​mxinden in quinn-rs/quinn#2216
• fix(quinn-udp): sanitise segment_size by @​thomaseizinger in quinn-rs/quinn#2217

Commits

• 6b901a3 quinn-udp: sanitise segment_size
• 458295c chore(udp): increase crate patch version to v0.5.12
• 76b8916 fix(udp): zero control message array on fast-apple-datapath
• 8936cc0 Bump the quinn-proto version to 0.11.11 for release
• b406b98 build(deps): bump rand from 0.9.0 to 0.9.1
• 37beebf docs(quinn): Copy edit poll_read(_buf?) docs
• 19a625d fix(quinn-udp): move cmsg-len check to Iterator
• 3f94660 ci: run quinn-udp fast-data-path tests
• 107dd92 ci: run macOS tests conditionally on runner OS
• c7687f7 refactor(quinn-udp): use match blocks in recv
• Additional commits viewable in compare view

Updates synstructure from 0.13.1 to 0.13.2

Commits

• See full diff in compare view

Updates toml from 0.8.20 to 0.8.22

Commits

• 6922da3 chore: Release
• fbf0a92 docs: Update changelog
• 83588b3 Merge pull request #878 from epage/w1
• eeb885c fix(serde): Skip fields with newtypes wrapping None
• 3c305c7 test(serde): Show NewType(None) behavior
• 7bd5eaf test(serde): Group None tests
• 388cfa3 chore(deps): Update toml-test (#877)
• a025b84 refactor(edit): Change ser none tracking to mut field
• 54666ad docs(write): Add guidance
• 13cf518 refactor(edit): Bypass a layer of abstraction in ser
• Additional commits viewable in compare view

Updates toml_datetime from 0.6.8 to 0.6.9

Commits

• 4021081 chore: Release
• 3312698 chore: Release
• b25da32 docs: Update changelog
• 8844949 docs(write): Update base commit
• 5406815 Merge pull request #875 from epage/w
• c6479a2 refactor(toml): Pull out ValueSerializer for easier comparison
• 8c43cf8 refactor(toml): Remove redundant non_exhaustive
• 268a1f8 Merge pull request #874 from epage/w
• e406f94 refactor(toml): Split ser module
• 4d782f8 refactor(edit): Rely on type alias in ser
• Additional commits viewable in compare view

Updates toml_edit from 0.22.24 to 0.22.26

Commits

• 6922da3 chore: Release
• fbf0a92 docs: Update changelog
• 83588b3 Merge pull request #878 from epage/w1
• eeb885c fix(serde): Skip fields with newtypes wrapping None
• 3c305c7 test(serde): Show NewType(None) behavior
• 7bd5eaf test(serde): Group None tests
• 388cfa3 chore(deps): Update toml-test (#877)
• a025b84 refactor(edit): Change ser none tracking to mut field
• 54666ad docs(write): Add guidance
• 13cf518 refactor(edit): Bypass a layer of abstraction in ser
• Additional commits viewable in compare view

Updates webpki-roots from 0.26.8 to 0.26.10

Release notes

Sourced from webpki-roots's releases.

0.26.10

Incorporates CCADB April updates.

Roots removed due to https://wiki.mozilla.org/CA/Root_CA_Lifecycles / https://bugzilla.mozilla.org/show_bug.cgi?id=1957685:

• "AAA Certificate Services"
• "Baltimore CyberTrust Root"
• "Entrust.net Certification Authority (2048)"
• "GlobalSign Root CA"
• "Go Daddy Class 2 Certification Authority"
• "Starfield Class 2 Certification Authority"
• "XRamp Global Certification Authority"

What's Changed

• 0.26.10: April CCADB updates by @​ctz in rustls/webpki-roots#96

Full Changelog: rustls/webpki-roots@v/0.26.9...v/0.26.10

0.26.9

The license of the webpki-roots and webpki-root-certs crates changed from MPL-2.0 to CDLA-Permissive-2.0. Thank you to the CCADB maintainers for enabling us to make this change.

Upstream changes

None

What's Changed

• Adjust license of mechnically-reformed crates by @​ctz in rustls/webpki-roots#88
• Run CI on ubuntu-latest by @​ctz in rustls/webpki-roots#91
• Support code-signing trust bit by @​ctz in rustls/webpki-roots#93
• manual_ok_err clippy fix by @​ctz in rustls/webpki-roots#94
• webpki-(roots|root-certs): v0.26.8 -> v0.26.9 by @​ctz in rustls/webpki-roots#95

Full Changelog: rustls/webpki-roots@v/0.26.8...v/0.26.9

Commits

• e37165d webpki-(roots|root-certs): v0.26.9 -> v0.26.10
• 4a4e2aa April CCADB updates:
• 82c433e webpki-ccadb: support placeholder absent trust bits
• 5b76d00 Address new nightly clippy lints
• 7c4a882 Move to 2021 edition
• 575994b webpki-(roots|root-certs): v0.26.8 -> v0.26.9
• f9f5789 manual_ok_err clippy fix
• fce41f7 Support code-signing trust bit
• f19c83f Run CI on ubuntu-latest
• 90c48f3 Adjust license of mechanically-reformed crates
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will merge this PR once CI passes on it, as requested by @EliahKagan.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[EliahKagan]

LGTM. The upgrade of webpki-roots, which is a transitive dependency through reqwest and some other packages, carries data that are licensed under CDLA-Permissive-2.0 (rustls/webpki-roots#88), which is a different (more permissive) license than before. The second commit I added here, f3a4ad6, allowlists that license. See the commit message for further details.

[EliahKagan]

@dependabot merge