Mirrors/servo
1
0
Fork 0
mirror of https://github.com/servo/servo.git synced 2025-08-07 06:25:32 +01:00
Code Issues Projects Releases Packages Wiki Activity

Upgrade bumpalo and stop holding it back for dependabot (#30303)

Browse source 
This fixes a dependabot security alert.
This commit is contained in:
Martin Robinson 2023-09-06 12:10:12 +02:00 committed by GitHub
parent c3c6c95a9b
commit 5b3bd6439e
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 2 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

4
.github/dependabot.yml vendored
View file

@ -179,10 +179,6 @@ updates:
- dependency-name: thiserror - dependency-name: thiserror
versions: versions:
- 1.0.24 - 1.0.24
- dependency-name: bumpalo
versions:
- 3.6.0
- 3.6.1
- dependency-name: core-text - dependency-name: core-text
versions: versions:
- 19.2.0 - 19.2.0

4
Cargo.lock generated
View file

@ -560,9 +560,9 @@ dependencies = [
[[package]] [[package]]
name = "bumpalo" name = "bumpalo"
version = "3.3.0" version = "3.13.0"
source = "registry+https://github.com/rust-lang/crates.io-index" source = "registry+https://github.com/rust-lang/crates.io-index"
checksum = "5356f1d23ee24a1f785a56d1d1a5f0fd5b0f6a0c0fb2412ce11da71649ab78f6" checksum = "a3e2c3daef883ecc1b5d58c15adae93470a91d425f3532ba1695849656af3fc1"
[[package]] [[package]]
name = "byte-slice-cast" name = "byte-slice-cast"