Bumps [web_atoms](https://github.com/servo/html5ever) from 0.1.1 to
0.1.2.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="0c645e1336"><code>0c645e1</code></a>
Add missing event handler names (<a
href="https://redirect.github.com/servo/html5ever/issues/610">#610</a>)</li>
<li><a
href="559f96ae6a"><code>559f96a</code></a>
Publish web_atoms 0.1.1. (<a
href="https://redirect.github.com/servo/html5ever/issues/609">#609</a>)</li>
<li><a
href="c24853eeb8"><code>c24853e</code></a>
Add <code>innerText</code> and <code>textContent</code> as localname (<a
href="https://redirect.github.com/servo/html5ever/issues/608">#608</a>)</li>
<li><a
href="0eace84090"><code>0eace84</code></a>
Remove unsupported category. (<a
href="https://redirect.github.com/servo/html5ever/issues/607">#607</a>)</li>
<li><a
href="018ecdb941"><code>018ecdb</code></a>
Bump markup5ever to 0.16.1 (<a
href="https://redirect.github.com/servo/html5ever/issues/606">#606</a>)</li>
<li><a
href="0292f3fddf"><code>0292f3f</code></a>
Split atoms out into a separate crate (<a
href="https://redirect.github.com/servo/html5ever/issues/599">#599</a>)</li>
<li><a
href="a02b136d71"><code>a02b136</code></a>
Remove the <code>emit</code> and <code>emit_temp</code> shorthands from
the html tokenizer (<a
href="https://redirect.github.com/servo/html5ever/issues/604">#604</a>)</li>
<li><a
href="a1486b09c1"><code>a1486b0</code></a>
Trigger errors without macros, remove <code>unwrap_or_else!</code> and
<code>go_match!</code> (<a
href="https://redirect.github.com/servo/html5ever/issues/600">#600</a>)</li>
<li><a
href="809eec756c"><code>809eec7</code></a>
Remove all direct uses of unwrap_or_return! (<a
href="https://redirect.github.com/servo/html5ever/issues/598">#598</a>)</li>
<li><a
href="cb63d4f871"><code>cb63d4f</code></a>
Don't import xml5ever enums into the global namespace (<a
href="https://redirect.github.com/servo/html5ever/issues/597">#597</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/servo/html5ever/compare/v0.1.1...web_atoms-v0.1.2">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [libm](https://github.com/rust-lang/compiler-builtins) from 0.2.14
to 0.2.15.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/rust-lang/compiler-builtins/releases">libm's
releases</a>.</em></p>
<blockquote>
<h2>libm-v0.2.15</h2>
<h3>Other</h3>
<ul>
<li>Require <code>target_has_atomic = "ptr"</code> for runtime
feature detection</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="a4c748f72a"><code>a4c748f</code></a>
release-plz: Include the libm changelog in compiler-builtins</li>
<li><a
href="cf00941064"><code>cf00941</code></a>
chore: release</li>
<li><a
href="da8b5829f4"><code>da8b582</code></a>
Require <code>target_has_atomic = "ptr"</code> for runtime
feature detection</li>
<li><a
href="1b1b2ed16e"><code>1b1b2ed</code></a>
ci: Mention <code>ci: skip-extensive</code> in the error message</li>
<li><a
href="6d78c1acc9"><code>6d78c1a</code></a>
Replace <code>super::super</code> with <code>crate::support</code> where
possible</li>
<li><a
href="8e78411a4f"><code>8e78411</code></a>
docs: fix typo in Cargo.toml</li>
<li>See full diff in <a
href="https://github.com/rust-lang/compiler-builtins/compare/libm-v0.2.14...libm-v0.2.15">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [winnow](https://github.com/winnow-rs/winnow) from 0.7.9 to
0.7.10.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/winnow-rs/winnow/blob/main/CHANGELOG.md">winnow's
changelog</a>.</em></p>
<blockquote>
<h2>[0.7.10] - 2025-05-06</h2>
<h3>Compatibility</h3>
<ul>
<li>Deprecated <code>Stream::raw</code></li>
</ul>
<h3>Features</h3>
<ul>
<li>Added <code>Stream::trace</code> for better customization of
<code>trace</code> parsers</li>
</ul>
<h3>Fixes</h3>
<ul>
<li>Remove <code>initial</code> from <code>TokenSlice</code> /
<code>LocatingSlice</code>s Debug impl</li>
<li><code>Stream::trace</code> prints non-pretty output for
<code>&[T]</code> and <code>TokenSlice<T></code></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="a2eed308b3"><code>a2eed30</code></a>
chore: Release</li>
<li><a
href="af1225adb4"><code>af1225a</code></a>
docs: Update changelog</li>
<li><a
href="ec852b5246"><code>ec852b5</code></a>
Merge pull request <a
href="https://redirect.github.com/winnow-rs/winnow/issues/661">#661</a>
from epage/trace</li>
<li><a
href="5acc4e7ec3"><code>5acc4e7</code></a>
docs: Provide example of custom Debug for lexing</li>
<li><a
href="bc06ccbdb6"><code>bc06ccb</code></a>
fix(stream): Don't use 'pretty' dump for Slice/TokenSlice</li>
<li><a
href="ad874536eb"><code>ad87453</code></a>
fix(stream): Decouple BStr's trace from debug</li>
<li><a
href="0184e67291"><code>0184e67</code></a>
fix(stream): Deprecated Stream::raw</li>
<li><a
href="34480fd561"><code>34480fd</code></a>
feat(stream): Give streams direct control over 'trace' output</li>
<li><a
href="d607525bea"><code>d607525</code></a>
fix(stream): Remove initial input from debug reprs</li>
<li><a
href="07f43d332d"><code>07f43d3</code></a>
test(stream): Use snapbox</li>
<li>See full diff in <a
href="https://github.com/winnow-rs/winnow/compare/v0.7.9...v0.7.10">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [backtrace](https://github.com/rust-lang/backtrace-rs) from 0.3.74
to 0.3.75.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/rust-lang/backtrace-rs/releases">backtrace's
releases</a>.</em></p>
<blockquote>
<h2>0.3.75</h2>
<h2>What's Changed</h2>
<ul>
<li>Add support for symbolicating APK/ZIP-embedded libraries on Android
in <a
href="https://redirect.github.com/rust-lang/backtrace-rs/pull/662">rust-lang/backtrace-rs#662</a></li>
<li>Support zstd-compressed ELF sections in <a
href="https://redirect.github.com/rust-lang/backtrace-rs/pull/626">rust-lang/backtrace-rs#626</a></li>
<li>Recognize windows-sys signatures as "C" or
"system" depending on cfg in <a
href="https://redirect.github.com/rust-lang/backtrace-rs/pull/677">rust-lang/backtrace-rs#677</a></li>
<li>Enable libunwind for rtems in <a
href="https://redirect.github.com/rust-lang/backtrace-rs/pull/682">rust-lang/backtrace-rs#682</a></li>
<li>MSRV is now 1.79</li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/thesummer"><code>@thesummer</code></a>
made their first contribution in <a
href="https://redirect.github.com/rust-lang/backtrace-rs/pull/682">rust-lang/backtrace-rs#682</a></li>
<li><a
href="https://github.com/sudoBash418"><code>@sudoBash418</code></a>
made their first contribution in <a
href="https://redirect.github.com/rust-lang/backtrace-rs/pull/662">rust-lang/backtrace-rs#662</a></li>
<li><a href="https://github.com/MarcoIeni"><code>@MarcoIeni</code></a>
made their first contribution in <a
href="https://redirect.github.com/rust-lang/backtrace-rs/pull/684">rust-lang/backtrace-rs#684</a></li>
<li><a href="https://github.com/madsmtm"><code>@madsmtm</code></a> made
their first contribution in <a
href="https://redirect.github.com/rust-lang/backtrace-rs/pull/681">rust-lang/backtrace-rs#681</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/rust-lang/backtrace-rs/compare/0.3.74...0.3.75">https://github.com/rust-lang/backtrace-rs/compare/0.3.74...0.3.75</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="f8cc6ac9ac"><code>f8cc6ac</code></a>
Merge pull request <a
href="https://redirect.github.com/rust-lang/backtrace-rs/issues/680">#680</a>
from ChrisDenton/0.3.75</li>
<li><a
href="612c01817b"><code>612c018</code></a>
Cut backtrace 0.3.75</li>
<li><a
href="d7c5a4522d"><code>d7c5a45</code></a>
Merge pull request <a
href="https://redirect.github.com/rust-lang/backtrace-rs/issues/689">#689</a>
from workingjubilee/formalize-lru</li>
<li><a
href="c88b038c34"><code>c88b038</code></a>
Revert "mem::swap, not mem::replace, in LRU backshifts"</li>
<li><a
href="b7fbd04694"><code>b7fbd04</code></a>
mem::swap, not mem::replace, in LRU backshifts</li>
<li><a
href="3afccb194e"><code>3afccb1</code></a>
raise backtrace MSRV to allow <code>inline_const</code></li>
<li><a
href="63b7d260a9"><code>63b7d26</code></a>
Use a custom container for Cache's cache</li>
<li><a
href="154a0eafb9"><code>154a0ea</code></a>
Update libloading dep, run <code>cargo
update</code><code>rust-lang/backtrace-rs#650</code></li>
<li><a
href="4d7906bb24"><code>4d7906b</code></a><code>rust-lang/backtrace-rs#682</code></li>
<li><a
href="a9c4658d49"><code>a9c4658</code></a>
Test Mac Catalyst in CI, and clean up unnecessary iOS env flags
(rust-lang/ba...</li>
<li>Additional commits viewable in <a
href="https://github.com/rust-lang/backtrace-rs/compare/0.3.74...0.3.75">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [rustls-pki-types](https://github.com/rustls/pki-types) from
1.11.0 to 1.12.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/rustls/pki-types/releases">rustls-pki-types's
releases</a>.</em></p>
<blockquote>
<h2>1.12.0</h2>
<ul>
<li>Implement <code>Zeroize</code> for private key types</li>
<li>Add algorithm identifiers for ML-DSA signing algorithms</li>
</ul>
<h2>What's Changed</h2>
<ul>
<li>Add support for the zeroize crate by <a
href="https://github.com/jarhodes314"><code>@jarhodes314</code></a> in
<a
href="https://redirect.github.com/rustls/pki-types/pull/71">rustls/pki-types#71</a></li>
<li>rustfmt: style_edition 2024 by <a
href="https://github.com/ctz"><code>@ctz</code></a> in <a
href="https://redirect.github.com/rustls/pki-types/pull/74">rustls/pki-types#74</a></li>
<li>Add cargo deny check in CI by <a
href="https://github.com/djc"><code>@djc</code></a> in <a
href="https://redirect.github.com/rustls/pki-types/pull/76">rustls/pki-types#76</a></li>
<li>Add AlgorithmIdentifiers for ML-DSA variants by <a
href="https://github.com/djc"><code>@djc</code></a> in <a
href="https://redirect.github.com/rustls/pki-types/pull/78">rustls/pki-types#78</a></li>
<li>Check external types in public API by <a
href="https://github.com/ctz"><code>@ctz</code></a> in <a
href="https://redirect.github.com/rustls/pki-types/pull/80">rustls/pki-types#80</a></li>
<li>Prepare 1.12.0 release by <a
href="https://github.com/djc"><code>@djc</code></a> in <a
href="https://redirect.github.com/rustls/pki-types/pull/79">rustls/pki-types#79</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="4b52db8f39"><code>4b52db8</code></a>
Bump version to 1.12.0</li>
<li><a
href="812eb3a067"><code>812eb3a</code></a>
ci: sync nightly for cargo-check-external-types</li>
<li><a
href="a15fc87315"><code>a15fc87</code></a>
Enable running CI workflow manually</li>
<li><a
href="df76779e64"><code>df76779</code></a>
Skip push CI for most branches</li>
<li><a
href="939c2c6b9c"><code>939c2c6</code></a>
ci: check external types</li>
<li><a
href="fae72b94cb"><code>fae72b9</code></a>
Allow zeroize::Zeroize to appear in public API</li>
<li><a
href="c5fffabe70"><code>c5fffab</code></a>
Add AlgorithmIdentifiers for ML-DSA variants</li>
<li><a
href="b59e08d499"><code>b59e08d</code></a>
Version Cargo.lock</li>
<li><a
href="bbad87b6c2"><code>bbad87b</code></a>
Add cargo deny check in CI</li>
<li><a
href="864471f5db"><code>864471f</code></a>
rustfmt: style_edition 2024</li>
<li>Additional commits viewable in <a
href="https://github.com/rustls/pki-types/compare/v/1.11.0...v/1.12.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
The two significant changes here are 1) a commit that frees memory used
to perform memory reporting once the reporting is complete, 2) memory
reporting for the system font service. There are various other commits
that remove `#[ignore_malloc_size_of]` attributes for data that we are
now able to measure, but they do not significantly change our
measurements when testing servo.org.
Testing: Comparing the output of about:memory on servo.org.
---------
Signed-off-by: Josh Matthews <josh@joshmatthews.net>
Bumps [jiff](https://github.com/BurntSushi/jiff) from 0.2.12 to 0.2.13.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/BurntSushi/jiff/blob/master/CHANGELOG.md">jiff's
changelog</a>.</em></p>
<blockquote>
<h1>0.2.13 (2025-05-05)</h1>
<p>This release fixes a bug in a corner case where
<code>TimeZone::following</code> could
sometimes omit the last time zone transition. This could only happen in
time
zones that once had daylight saving time, but ended it. This did not
have an
impact on other Jiff APIs that handle daylight saving time.</p>
<p>Bug fixes:</p>
<ul>
<li><a
href="https://redirect.github.com/BurntSushi/jiff/issues/362">#362</a>:
Fix a bug where <code>TimeZone::following</code> could omit the last
historical time zone
transition.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="5d60f33c58"><code>5d60f33</code></a>
0.2.13</li>
<li><a
href="677072eb0f"><code>677072e</code></a>
tz: fix case analysis in <code>TimeZone::following</code></li>
<li><a
href="5336ffb811"><code>5336ffb</code></a>
doc: fix outdated reference to <code>Eq</code> implementation on
<code>Span</code></li>
<li><a
href="b3f9c1effe"><code>b3f9c1e</code></a>
doc: some minor clean-ups</li>
<li>See full diff in <a
href="https://github.com/BurntSushi/jiff/compare/jiff-static-0.2.12...jiff-static-0.2.13">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [rustls](https://github.com/rustls/rustls) from 0.23.26 to
0.23.27.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="260190933b"><code>2601909</code></a>
Bump version to 0.23.27</li>
<li><a
href="a70b0e6a2c"><code>a70b0e6</code></a>
Handle webpki RequiredEkuNotFoundContext errors</li>
<li><a
href="06a704e3c8"><code>06a704e</code></a>
Update to webpki 0.103.2</li>
<li><a
href="9509626f13"><code>9509626</code></a>
Deprecate dangerous_extract_secrets on unbuffered connections</li>
<li><a
href="bf9e874384"><code>bf9e874</code></a>
Add test cases for KernelConnection key updates</li>
<li><a
href="5a12171558"><code>5a12171</code></a>
Add kernel connection API</li>
<li><a
href="35c44d2688"><code>35c44d2</code></a>
Extract tls13 expand_secret function out of extract_secrets</li>
<li><a
href="47ed0c66e4"><code>47ed0c6</code></a>
ci: enable triggering CI workflow manually</li>
<li><a
href="26b8ee3f65"><code>26b8ee3</code></a>
ci: skip push triggers for most branches</li>
<li><a
href="70ed532b33"><code>70ed532</code></a>
Update Rust crate nix to 0.30</li>
<li>Additional commits viewable in <a
href="https://github.com/rustls/rustls/compare/v/0.23.26...v/0.23.27">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [jiff](https://github.com/BurntSushi/jiff) from 0.2.11 to 0.2.12.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/BurntSushi/jiff/blob/master/CHANGELOG.md">jiff's
changelog</a>.</em></p>
<blockquote>
<h1>0.2.12 (2025-05-03)</h1>
<p>This release fixes a couple bugs in Jiff's parser. In particular, a
regression
was introduced in <code>jiff 0.2.11</code> where its RFC 2822 parser
could panic on some
inputs. Previous releases of Jiff are unaffected.</p>
<p>Bug fixes:</p>
<ul>
<li><a
href="https://redirect.github.com/BurntSushi/jiff/issues/357">#357</a>:
Fix a bug where parsing
<code>1970-06-01T00-00:45:00[Africa/Monrovia]</code> succeeded
but it should fail.</li>
<li><a
href="https://redirect.github.com/BurntSushi/jiff/issues/359">#359</a>:
Fix a bug where the RFC 2822 parser could panic on some inputs.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="d6bae333b0"><code>d6bae33</code></a>
0.2.12</li>
<li><a
href="016d0b1254"><code>016d0b1</code></a>
fmt/rfc2822: fix panic in handling of whitespace</li>
<li><a
href="3efed44871"><code>3efed44</code></a>
fmt/temporal: ensure that
<code>1970-06-01T00-00:45:00[Africa/Monrovia]</code> does not ...</li>
<li><a
href="b0512f4ef4"><code>b0512f4</code></a>
jiff-icu: compatibility fixes</li>
<li><a
href="11b286deed"><code>11b286d</code></a>
jiff-icu-0.2.0-beta.2</li>
<li>See full diff in <a
href="https://github.com/BurntSushi/jiff/compare/jiff-static-0.2.11...jiff-static-0.2.12">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [libm](https://github.com/rust-lang/compiler-builtins) from 0.2.13
to 0.2.14.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/rust-lang/compiler-builtins/releases">libm's
releases</a>.</em></p>
<blockquote>
<h2>libm-v0.2.14</h2>
<h3>Other</h3>
<ul>
<li>Use runtime feature detection for fma routines on x86</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="257dd48089"><code>257dd48</code></a>
chore: release</li>
<li><a
href="a2f6440761"><code>a2f6440</code></a>
Use runtime feature detection for fma routines on x86</li>
<li><a
href="6e4255a712"><code>6e4255a</code></a>
Rename the i686 module to x86</li>
<li><a
href="f83962ed9a"><code>f83962e</code></a>
update-api-list: Match subdirectories within arch</li>
<li><a
href="725484ee67"><code>725484e</code></a>
fmaf: Add a test case from a MinGW failure</li>
<li><a
href="7ccb126f88"><code>7ccb126</code></a>
builtins-test: Remove <code>no_mangle</code> from
<code>eh_personality</code></li>
<li><a
href="f456aa8baf"><code>f456aa8</code></a>
Refactor the fma modules</li>
<li><a
href="91963f59b3"><code>91963f5</code></a>
Move <code>fma</code> implementations to <code>mod generic</code></li>
<li><a
href="99b4c19591"><code>99b4c19</code></a>
Resolve <code>unnecessary_transmutes</code> lints</li>
<li><a
href="fdbefb39d5"><code>fdbefb3</code></a>
Warn on <code>unsafe_op_in_unsafe_fn</code> by default</li>
<li>Additional commits viewable in <a
href="https://github.com/rust-lang/compiler-builtins/compare/libm-v0.2.13...libm-v0.2.14">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [brotli](https://github.com/dropbox/rust-brotli) from 8.0.0 to
8.0.1.
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/dropbox/rust-brotli/commits">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Also update a WPT test to fail-fast if the iframe incorrectly
evaluates the `eval`. Before, it would run into a timeout if
the implementation is correct. Now we reject the promise
when an exception is thrown.
Requires servo/rust-content-security-policy#6
Signed-off-by: Tim van der Lippe <tvanderlippe@gmail.com>
Bumps [cc](https://github.com/rust-lang/cc-rs) from 1.2.20 to 1.2.21.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/rust-lang/cc-rs/releases">cc's
releases</a>.</em></p>
<blockquote>
<h2>cc-v1.2.21</h2>
<h3>Other</h3>
<ul>
<li>Fix wasm32-unknown-unknown by passing -c (<a
href="https://redirect.github.com/rust-lang/cc-rs/pull/1424">#1424</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/rust-lang/cc-rs/blob/main/CHANGELOG.md">cc's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://github.com/rust-lang/cc-rs/compare/cc-v1.2.20...cc-v1.2.21">1.2.21</a>
- 2025-05-02</h2>
<h3>Other</h3>
<ul>
<li>Fix wasm32-unknown-unknown by passing -c (<a
href="https://redirect.github.com/rust-lang/cc-rs/pull/1424">#1424</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="0342d854e1"><code>0342d85</code></a>
chore: release v1.2.21 (<a
href="https://redirect.github.com/rust-lang/cc-rs/issues/1464">#1464</a>)</li>
<li><a
href="e93b705945"><code>e93b705</code></a>
Fix wasm32-unknown-unknown by passing -c (<a
href="https://redirect.github.com/rust-lang/cc-rs/issues/1424">#1424</a>)</li>
<li>See full diff in <a
href="https://github.com/rust-lang/cc-rs/compare/cc-v1.2.20...cc-v1.2.21">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [jiff](https://github.com/BurntSushi/jiff) from 0.2.10 to 0.2.11.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/BurntSushi/jiff/blob/master/CHANGELOG.md">jiff's
changelog</a>.</em></p>
<blockquote>
<h1>0.2.11 (2025-05-01)</h1>
<p>This release includes new APIs for customizing Jiff's
<code>strtime</code> behavior along
with a few minor bug fixes. Jiff's <code>strtime</code> formatting API
has also been
optimized. It's about twice as fast as it was.</p>
<p>This release also coincides with the publication of <code>jiff-icu
0.2.0-beta.2</code>,
which has support for <code>icu 2.0.0-beta.2</code>.</p>
<p>Enhancements:</p>
<ul>
<li><a
href="https://redirect.github.com/BurntSushi/jiff/pull/338">#338</a>:
Add support for the <code>%c</code>, <code>%r</code>, <code>%X</code>
and <code>%x</code> conversion specifiers.</li>
<li><a
href="https://redirect.github.com/BurntSushi/jiff/issues/341">#341</a>:
Add support for <code>%q</code> in <code>jiff::fmt::strtime</code>
(prints quarter of year).</li>
<li><a
href="https://redirect.github.com/BurntSushi/jiff/issues/342">#342</a>:
Add support for <code>%::z</code> and <code>%:::z</code> in
<code>jiff::fmt::strtime</code>.</li>
<li><a
href="https://redirect.github.com/BurntSushi/jiff/issues/344">#344</a>:
Add support for <code>%N</code> in <code>jiff::fmt::strtime</code>
(alias for <code>%9f</code>).</li>
<li><a
href="https://redirect.github.com/BurntSushi/jiff/issues/350">#350</a>:
Add a "lenient" mode for <code>strtime</code> formatting APIs
that ignores most errors.</li>
</ul>
<p>Bug fixes:</p>
<ul>
<li><a
href="https://redirect.github.com/BurntSushi/jiff/issues/328">#328</a>:
Document default precision behavior of <code>Display</code> impls for
datetime types.</li>
<li><a
href="https://redirect.github.com/BurntSushi/jiff/issues/340">#340</a>:
Allow whitespace in more places in RFC 2822 parser (improves spec
compliance).</li>
<li><a
href="https://redirect.github.com/BurntSushi/jiff/issues/346">#346</a>:
<code>TimeZone::get("UTC")</code> should now always return
<code>TimeZone::UTC</code>.</li>
</ul>
<p>Performance:</p>
<ul>
<li><a
href="https://redirect.github.com/BurntSushi/jiff/pull/338">#338</a>:
Jiff's <code>strftime</code> APIs are now approximately twice as fast as
they were.
Performance should be comparable to <code>chrono</code> and
<code>time</code>'s prebuilt APIs.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="0d1cf196a0"><code>0d1cf19</code></a>
0.2.11</li>
<li><a
href="407180a402"><code>407180a</code></a>
changelog: 0.2.11</li>
<li><a
href="2dc5b00d2e"><code>2dc5b00</code></a>
doc: fix typo in "formatting"</li>
<li><a
href="3acc4f9b60"><code>3acc4f9</code></a>
display: clarify default precision in <code>Display</code> impls</li>
<li><a
href="c9701c3c94"><code>c9701c3</code></a>
fmt/rfc2822: fix handling whitespace at comma and time separators</li>
<li><a
href="d395262c24"><code>d395262</code></a>
fmt/strtime: remove breadcrumbs comment</li>
<li><a
href="2f6602eedb"><code>2f6602e</code></a>
fmt/strtime: add "lenient" mode for <code>strtime</code>
formatting APIs</li>
<li><a
href="9f3d5ebd2f"><code>9f3d5eb</code></a>
fmt/strtime: add support for <code>%::z</code> and
<code>%:::z</code></li>
<li><a
href="8860d97b0b"><code>8860d97</code></a>
fmt/strtime: use Temporal offset parser in <code>strptime</code></li>
<li><a
href="0957978bae"><code>0957978</code></a>
fmt/strtime: add more <code>%z</code> and <code>%:z</code> tests</li>
<li>Additional commits viewable in <a
href="https://github.com/BurntSushi/jiff/compare/jiff-static-0.2.10...jiff-static-0.2.11">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [dpi](https://github.com/rust-windowing/winit) from 0.1.1 to
0.1.2.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="587ade844d"><code>587ade8</code></a>
DPI version 0.1.2</li>
<li><a
href="6756549ac9"><code>6756549</code></a>
clippy: fix casing in windows backend</li>
<li><a
href="17666e3171"><code>17666e3</code></a>
Bump version on master</li>
<li><a
href="f6ca06cd58"><code>f6ca06c</code></a>
wayland: bump wayland-rs to avoid yanked release</li>
<li><a
href="e634cc609f"><code>e634cc6</code></a>
windows: fix incorrect cursor_range calculation in Ime::Preedit</li>
<li><a
href="aa83726c72"><code>aa83726</code></a>
macOS: Fix monitors connected via certain Thunderbolt hubs (<a
href="https://redirect.github.com/rust-windowing/winit/issues/4207">#4207</a>)</li>
<li><a
href="1800fa1670"><code>1800fa1</code></a>
macOS: Store UUID in MonitorHandle instead of CGDirectDisplayID (<a
href="https://redirect.github.com/rust-windowing/winit/issues/4167">#4167</a>)</li>
<li><a
href="a5e6d0aaaf"><code>a5e6d0a</code></a>
fix: Support fractional refresh rates in video modes on macOS (<a
href="https://redirect.github.com/rust-windowing/winit/issues/4191">#4191</a>)</li>
<li><a
href="4fe4ce3d77"><code>4fe4ce3</code></a>
wayland: support fractional scale for custom cursor</li>
<li><a
href="078c4c0c4f"><code>078c4c0</code></a>
wayland: add WindowExtWayland::xdg_toplevel</li>
<li>Additional commits viewable in <a
href="https://github.com/rust-windowing/winit/compare/dpi_v0.1.1...dpi_v0.1.2">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [winnow](https://github.com/winnow-rs/winnow) from 0.7.8 to 0.7.9.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/winnow-rs/winnow/blob/main/CHANGELOG.md">winnow's
changelog</a>.</em></p>
<blockquote>
<h2>[0.7.9] - 2025-05-02</h2>
<h3>Features</h3>
<ul>
<li>Add <code>ContextError::extend</code></li>
<li>Add <code>Parser::context_with</code></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="3c63944160"><code>3c63944</code></a>
chore: Release</li>
<li><a
href="6624b1eb80"><code>6624b1e</code></a>
docs: Update changelog</li>
<li><a
href="9142fd7870"><code>9142fd7</code></a>
Merge pull request <a
href="https://redirect.github.com/winnow-rs/winnow/issues/781">#781</a>
from epage/context_with</li>
<li><a
href="e850d3d1b0"><code>e850d3d</code></a>
feat(parser): Add Parser::context_with</li>
<li><a
href="98a5a24065"><code>98a5a24</code></a>
feat(error): Allow extending on ContextError</li>
<li><a
href="6741c2ba88"><code>6741c2b</code></a>
Merge pull request <a
href="https://redirect.github.com/winnow-rs/winnow/issues/783">#783</a>
from epage/template</li>
<li><a
href="14303e3b96"><code>14303e3</code></a>
style: Make clippy happy</li>
<li><a
href="3fa02d3520"><code>3fa02d3</code></a>
chore: Update from _rust/main template</li>
<li><a
href="97755b3c01"><code>97755b3</code></a>
chore(ci): Improve perf at the cost of coverage</li>
<li>See full diff in <a
href="https://github.com/winnow-rs/winnow/compare/v0.7.8...v0.7.9">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [wayland-protocols-wlr](https://github.com/smithay/wayland-rs)
from 0.3.6 to 0.3.8.
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/smithay/wayland-rs/commits">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [wayland-cursor](https://github.com/smithay/wayland-rs) from
0.31.8 to 0.31.10.
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/smithay/wayland-rs/commits">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [winnow](https://github.com/winnow-rs/winnow) from 0.7.7 to 0.7.8.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/winnow-rs/winnow/blob/main/CHANGELOG.md">winnow's
changelog</a>.</em></p>
<blockquote>
<h2>[0.7.8] - 2025-05-01</h2>
<h3>Features</h3>
<ul>
<li>Add <code>ContextError::push</code></li>
<li>Add <code>Parser::map_err</code></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="37a4d87fa8"><code>37a4d87</code></a>
chore: Release</li>
<li><a
href="4118ce205f"><code>4118ce2</code></a>
docs: Update changelog</li>
<li><a
href="ffdedc9661"><code>ffdedc9</code></a>
Merge pull request <a
href="https://redirect.github.com/winnow-rs/winnow/issues/780">#780</a>
from epage/map_err</li>
<li><a
href="3874036f81"><code>3874036</code></a>
feat(parser): Add Parser::map_err</li>
<li><a
href="c410dcf7d5"><code>c410dcf</code></a>
feat(error): Add ErrorContext::push</li>
<li><a
href="54841c5cff"><code>54841c5</code></a>
docs: Link Parser::context to tutorial</li>
<li><a
href="34f5bea3e3"><code>34f5bea</code></a>
docs: Provide example for Parser::context</li>
<li><a
href="e2b8d4d1de"><code>e2b8d4d</code></a>
Merge pull request <a
href="https://redirect.github.com/winnow-rs/winnow/issues/776">#776</a>
from epage/docs</li>
<li><a
href="e7bbb38777"><code>e7bbb38</code></a>
docs: Link to lexing topic when its discussed</li>
<li><a
href="eff8b93812"><code>eff8b93</code></a>
docs(tutorial): Be explicit in what we mean by tokens</li>
<li>Additional commits viewable in <a
href="https://github.com/winnow-rs/winnow/compare/v0.7.7...v0.7.8">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Martin Robinson <mrobinson@igalia.com>
Fixes: #36717.
Testing: This is covered by existing tests.
Signed-off-by: Martin Robinson <mrobinson@igalia.com>
Bumps [synstructure](https://github.com/mystor/synstructure) from 0.13.1
to 0.13.2.
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/mystor/synstructure/commits">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [wayland-backend](https://github.com/smithay/wayland-rs) from
0.3.9 to 0.3.10.
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/smithay/wayland-rs/commits">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [webpki-roots](https://github.com/rustls/webpki-roots) from 0.26.9
to 0.26.10.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/rustls/webpki-roots/releases">webpki-roots's
releases</a>.</em></p>
<blockquote>
<h2>0.26.10</h2>
<p>Incorporates CCADB April updates.</p>
<p>Roots removed due to <a
href="https://wiki.mozilla.org/CA/Root_CA_Lifecycles">https://wiki.mozilla.org/CA/Root_CA_Lifecycles</a>
/ <a
href="https://bugzilla.mozilla.org/show_bug.cgi?id=1957685">https://bugzilla.mozilla.org/show_bug.cgi?id=1957685</a>:</p>
<ul>
<li>"AAA Certificate Services"</li>
<li>"Baltimore CyberTrust Root"</li>
<li>"Entrust.net Certification Authority (2048)"</li>
<li>"GlobalSign Root CA"</li>
<li>"Go Daddy Class 2 Certification Authority"</li>
<li>"Starfield Class 2 Certification Authority"</li>
<li>"XRamp Global Certification Authority"</li>
</ul>
<h2>What's Changed</h2>
<ul>
<li>0.26.10: April CCADB updates by <a
href="https://github.com/ctz"><code>@ctz</code></a> in <a
href="https://redirect.github.com/rustls/webpki-roots/pull/96">rustls/webpki-roots#96</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/rustls/webpki-roots/compare/v/0.26.9...v/0.26.10">https://github.com/rustls/webpki-roots/compare/v/0.26.9...v/0.26.10</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="e37165d995"><code>e37165d</code></a>
webpki-(roots|root-certs): v0.26.9 -> v0.26.10</li>
<li><a
href="4a4e2aa5d6"><code>4a4e2aa</code></a>
April CCADB updates:</li>
<li><a
href="82c433e58c"><code>82c433e</code></a>
webpki-ccadb: support placeholder absent trust bits</li>
<li><a
href="5b76d00f04"><code>5b76d00</code></a>
Address new nightly clippy lints</li>
<li><a
href="7c4a88225c"><code>7c4a882</code></a>
Move to 2021 edition</li>
<li>See full diff in <a
href="https://github.com/rustls/webpki-roots/compare/v/0.26.9...v/0.26.10">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [winit](https://github.com/rust-windowing/winit) from 0.30.9 to
0.30.10.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/rust-windowing/winit/releases">winit's
releases</a>.</em></p>
<blockquote>
<h2>Winit version 0.30.10</h2>
<h3>Added</h3>
<ul>
<li>On Windows, add
<code>IconExtWindows::from_resource_name</code>.</li>
<li>On Windows, add <code>CursorGrabMode::Locked</code>.</li>
<li>On Wayland, add <code>WindowExtWayland::xdg_toplevel</code>.</li>
</ul>
<h3>Changed</h3>
<ul>
<li>On macOS, no longer need control of the main
<code>NSApplication</code> class (which means you can now override it
yourself).</li>
<li>On iOS, remove custom application delegates. You are now allowed to
override the
application delegate yourself.</li>
<li>On iOS, no longer act as-if the application successfully open all
URLs. Override
<code>application:didFinishLaunchingWithOptions:</code> and provide the
desired behaviour yourself.</li>
</ul>
<h3>Fixed</h3>
<ul>
<li>On Windows, fixed ~500 ms pause when clicking the title bar during
continuous redraw.</li>
<li>On macOS, <code>WindowExtMacOS::set_simple_fullscreen</code> now
honors <code>WindowExtMacOS::set_borderless_game</code></li>
<li>On X11 and Wayland, fixed pump_events with
<code>Some(Duration::Zero)</code> blocking with <code>Wait</code>
polling mode</li>
<li>On Wayland, fixed a crash when consequently calling
<code>set_cursor_grab</code> without pointer focus.</li>
<li>On Wayland, ensure that external event loop is woken-up when using
pump_events and integrating via <code>FD</code>.</li>
<li>On Wayland, apply fractional scaling to custom cursors.</li>
<li>On macOS, fixed <code>run_app_on_demand</code> returning without
closing open windows.</li>
<li>On macOS, fixed <code>VideoMode::refresh_rate_millihertz</code> for
fractional refresh rates.</li>
<li>On macOS, store monitor handle to avoid panics after going in/out of
sleep.</li>
<li>On macOS, allow certain invalid monitor handles and return
<code>None</code> instead of panicking.</li>
<li>On Windows, fixed <code>Ime::Preedit</code> cursor offset
calculation.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="2385410366"><code>2385410</code></a>
Winit version 0.30.10</li>
<li><a
href="6db1343c0b"><code>6db1343</code></a>
wayland: bump wayland-rs to avoid yanked release</li>
<li><a
href="a26899a75d"><code>a26899a</code></a>
windows: fix incorrect cursor_range calculation in Ime::Preedit</li>
<li><a
href="80bddda641"><code>80bddda</code></a>
macOS: Fix monitors connected via certain Thunderbolt hubs</li>
<li><a
href="5f1e9f6cc1"><code>5f1e9f6</code></a>
macOS: Store UUID in MonitorHandle instead of CGDirectDisplayID</li>
<li><a
href="57baf72741"><code>57baf72</code></a>
Allow the user to register the application delegate on iOS</li>
<li><a
href="da7a09658a"><code>da7a096</code></a>
fix: Support fractional refresh rates in video modes on macOS (<a
href="https://redirect.github.com/rust-windowing/winit/issues/4191">#4191</a>)</li>
<li><a
href="53321dc6f5"><code>53321dc</code></a>
Swizzle sendEvent: instead of subclassing NSApplication</li>
<li><a
href="6556cde246"><code>6556cde</code></a>
macOS: Close windows automatically when exiting</li>
<li><a
href="7672fd5657"><code>7672fd5</code></a>
wayland: support fractional scale for custom cursor</li>
<li>Additional commits viewable in <a
href="https://github.com/rust-windowing/winit/compare/v0.30.9...v0.30.10">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
canvas crate was home for both webgl and 2dcanvas impl, but it makes
more sense to separate these two, by splitting webgl into standalone
crate (like we already have for webgpu).
Testing: Rust for fearless refactoring (but there are WPT tests just in
case)
Signed-off-by: sagudev <16504129+sagudev@users.noreply.github.com>
Bumps [bytemuck](https://github.com/Lokathor/bytemuck) from 1.22.0 to
1.23.0.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/Lokathor/bytemuck/blob/main/changelog.md">bytemuck's
changelog</a>.</em></p>
<blockquote>
<h1><code>bytemuck</code> changelog</h1>
<h2>1.23</h2>
<ul>
<li><code>impl_core_error</code> crate feature adds
<code>core::error::Error</code> impl.</li>
<li>More <code>ZeroableInOption</code> impls.</li>
</ul>
<h2>1.22</h2>
<ul>
<li>Add the <code>pod_saturating</code> feature, which adds
<code>Pod</code> impls for <code>Saturating<T></code>
when <code>T</code> is already <code>Pod</code>.</li>
<li>A bump in the minimum <code>bytemuck_derive</code> dependency from
1.4.0 to 1.4.1 to
avoid a bug if you have a truly ancient <code>cargo.lock</code> file
sitting around.</li>
<li>Adds <code>Send</code> and <code>Sync</code> impls to
<code>BoxBytes</code>.</li>
</ul>
<h2>1.21</h2>
<ul>
<li>Implement <code>Pod</code> and <code>Zeroable</code> for
<code>core::arch::{x86, x86_64}::__m512</code>, <code>__m512d</code> and
<code>__m512i</code> without nightly.
Requires Rust 1.72, and is gated through the <code>avx512_simd</code>
cargo feature.</li>
<li>Allow the use of <code>must_cast_mut</code> and
<code>must_cast_slice_mut</code> in const contexts.
Requires Rust 1.83, and is gated through the
<code>must_cast_extra</code> cargo feature.</li>
<li>internal: introduced the <code>maybe_const_fn</code> macro that
allows defining some function
to be const depending upon some <code>cfg</code> predicate.</li>
</ul>
<h2>1.20</h2>
<ul>
<li>New functions to allocate zeroed <code>Arc</code> and
<code>Rc</code>. Requires Rust 1.82</li>
<li><code>TransparentWrapper</code> impls for
<code>core::cmp::Reverse</code> and
<code>core::num::Saturating</code>.</li>
<li>internal: Simplified the library's <code>fill_zeroes</code> calls to
<code>write_bytes</code></li>
</ul>
<h2>1.19</h2>
<ul>
<li>Adds the <code>#[track_caller]</code> attribute to functions which
may panic.</li>
</ul>
<h2>1.18</h2>
<ul>
<li>Adds the <code>latest_stable_rust</code> cargo feature, which is a
blanket feature that turns all other features on that are both sound and
compatible with Stable rust.</li>
</ul>
<h2>1.17.1</h2>
<ul>
<li>Adds <code>#[repr(C)]</code> to the <code>union Transmute<A,
B></code> type that's used internally
for most of the transmutations.</li>
</ul>
<h2>1.17.0</h2>
<ul>
<li>Makes the <code>must_cast</code> versions of the by-value and by-ref
casts be <code>const</code>.
The mut ref cast is unaffected for now (mut references aren't yet stable
in <code>const fn</code>).
This increases the MSRV of using that particular feature from 1.57 to
1.64.</li>
</ul>
<h2>1.16.3</h2>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="028ff3bec6"><code>028ff3b</code></a>
chore: Release bytemuck version 1.23.0</li>
<li><a
href="343f34ff9e"><code>343f34f</code></a>
changelog</li>
<li><a
href="90db36000f"><code>90db360</code></a>
Impl core's Error trait on Rust 1.81+ (<a
href="https://redirect.github.com/Lokathor/bytemuck/issues/311">#311</a>)</li>
<li><a
href="ede91413f7"><code>ede9141</code></a>
Set rust version for <code>bytemuck_derive</code> to 1.61 (<a
href="https://redirect.github.com/Lokathor/bytemuck/issues/310">#310</a>)</li>
<li><a
href="46d0910f3a"><code>46d0910</code></a>
Extend <a
href="https://redirect.github.com/Lokathor/bytemuck/issues/308">#308</a>
with <code>-unwind</code> support (<a
href="https://redirect.github.com/Lokathor/bytemuck/issues/309">#309</a>)</li>
<li><a
href="6751adc3e4"><code>6751adc</code></a>
Impl ZeroablInOption for several function types. (<a
href="https://redirect.github.com/Lokathor/bytemuck/issues/308">#308</a>)</li>
<li><a
href="66569e6cc7"><code>66569e6</code></a>
chore: Release bytemuck_derive version 1.9.2</li>
<li><a
href="5c301b1ddd"><code>5c301b1</code></a>
remove resolver from the Cargo.toml</li>
<li><a
href="3053413e55"><code>3053413</code></a>
update the .cargo/config.toml to use the "stable rust"
feature.</li>
<li><a
href="9b087bb7e5"><code>9b087bb</code></a>
chore: Release bytemuck_derive version 1.9.1</li>
<li>Additional commits viewable in <a
href="https://github.com/Lokathor/bytemuck/compare/v1.22.0...v1.23.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [toml_edit](https://github.com/toml-rs/toml) from 0.22.25 to
0.22.26.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="6922da374c"><code>6922da3</code></a>
chore: Release</li>
<li><a
href="fbf0a9298c"><code>fbf0a92</code></a>
docs: Update changelog</li>
<li><a
href="83588b3610"><code>83588b3</code></a>
Merge pull request <a
href="https://redirect.github.com/toml-rs/toml/issues/878">#878</a> from
epage/w1</li>
<li><a
href="eeb885ceb5"><code>eeb885c</code></a>
fix(serde): Skip fields with newtypes wrapping None</li>
<li><a
href="3c305c72fa"><code>3c305c7</code></a>
test(serde): Show NewType(None) behavior</li>
<li><a
href="7bd5eafbd7"><code>7bd5eaf</code></a>
test(serde): Group None tests</li>
<li><a
href="388cfa3856"><code>388cfa3</code></a>
chore(deps): Update toml-test (<a
href="https://redirect.github.com/toml-rs/toml/issues/877">#877</a>)</li>
<li><a
href="a025b84797"><code>a025b84</code></a>
refactor(edit): Change ser none tracking to mut field</li>
<li><a
href="54666ad0b2"><code>54666ad</code></a>
docs(write): Add guidance</li>
<li><a
href="13cf5185f9"><code>13cf518</code></a>
refactor(edit): Bypass a layer of abstraction in ser</li>
<li>Additional commits viewable in <a
href="https://github.com/toml-rs/toml/compare/v0.22.25...v0.22.26">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [wayland-backend](https://github.com/smithay/wayland-rs) from
0.3.8 to 0.3.9.
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/smithay/wayland-rs/commits">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [chrono](https://github.com/chronotope/chrono) from 0.4.40 to
0.4.41.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/chronotope/chrono/releases">chrono's
releases</a>.</em></p>
<blockquote>
<h2>v0.4.41</h2>
<h2>What's Changed</h2>
<ul>
<li>Add <code>subsec_micros</code> and <code>subsec_millis</code>
methods to <code>TimeDelta</code> by <a
href="https://github.com/ggoetz"><code>@ggoetz</code></a> in <a
href="https://redirect.github.com/chronotope/chrono/pull/1668">chronotope/chrono#1668</a></li>
<li>Deprecate <code>NaiveDateTime::UNIX_EPOCH</code> by <a
href="https://github.com/robertbastian"><code>@robertbastian</code></a>
in <a
href="https://redirect.github.com/chronotope/chrono/pull/1670">chronotope/chrono#1670</a></li>
<li>Implement <code>as_seconds_f32</code> and
<code>as_seconds_f64</code> for <code>TimeDelta</code> by <a
href="https://github.com/ggoetz"><code>@ggoetz</code></a> in <a
href="https://redirect.github.com/chronotope/chrono/pull/1671">chronotope/chrono#1671</a></li>
<li>chore: fix some comments by <a
href="https://github.com/jimmycathy"><code>@jimmycathy</code></a> in <a
href="https://redirect.github.com/chronotope/chrono/pull/1677">chronotope/chrono#1677</a></li>
<li>Add <code>num_days_in_month</code> method to <code>Datelike</code>
trait by <a href="https://github.com/aslilac"><code>@aslilac</code></a>
in <a
href="https://redirect.github.com/chronotope/chrono/pull/1673">chronotope/chrono#1673</a></li>
<li>add <code>WeekdaySet</code>, a collection of <code>Weekday</code>
that is <code>Copy</code> by <a
href="https://github.com/Kinrany"><code>@Kinrany</code></a> in <a
href="https://redirect.github.com/chronotope/chrono/pull/1676">chronotope/chrono#1676</a></li>
<li>WeekdaySet tweaks by <a
href="https://github.com/djc"><code>@djc</code></a> in <a
href="https://redirect.github.com/chronotope/chrono/pull/1680">chronotope/chrono#1680</a></li>
<li>Upgrade to windows-bindgen 0.61 by <a
href="https://github.com/djc"><code>@djc</code></a> in <a
href="https://redirect.github.com/chronotope/chrono/pull/1682">chronotope/chrono#1682</a></li>
<li>Implemented a consistent Eq trait for NaiveWeek by <a
href="https://github.com/Splashling1789"><code>@Splashling1789</code></a>
in <a
href="https://redirect.github.com/chronotope/chrono/pull/1687">chronotope/chrono#1687</a></li>
<li>TimeZone::from_posix_tz: Treat empty TZ variable as UTC by <a
href="https://github.com/drinkcat"><code>@drinkcat</code></a> in <a
href="https://redirect.github.com/chronotope/chrono/pull/1691">chronotope/chrono#1691</a></li>
<li>Add support for lossy format strings by <a
href="https://github.com/Qelxiros"><code>@Qelxiros</code></a> in <a
href="https://redirect.github.com/chronotope/chrono/pull/1693">chronotope/chrono#1693</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="d1de1d95ea"><code>d1de1d9</code></a>
Bump version to 0.4.41</li>
<li><a
href="e2bd1d1d67"><code>e2bd1d1</code></a>
Add support for lenient format strings (<a
href="https://redirect.github.com/chronotope/chrono/issues/1693">#1693</a>)</li>
<li><a
href="2c95b0aca8"><code>2c95b0a</code></a>
Tweak expression to avoid repetition</li>
<li><a
href="ebeef99426"><code>ebeef99</code></a>
TimeZone::from_posix_tz: Treat empty TZ variable as UTC</li>
<li><a
href="dc068f0373"><code>dc068f0</code></a>
Tweak style on NaiveWeek fixes</li>
<li><a
href="b267a4fe90"><code>b267a4f</code></a>
Implemented consistent Hash and Eq trait for NaiveWeek</li>
<li><a
href="7c0bd136d6"><code>7c0bd13</code></a>
Apply suggestions from clippy 1.86</li>
<li><a
href="104cdc73cb"><code>104cdc7</code></a>
Bump MSRV to 1.62</li>
<li><a
href="6a853015b7"><code>6a85301</code></a>
Upgrade to windows-bindgen 0.61</li>
<li><a
href="265c79b2a5"><code>265c79b</code></a>
Tweak WeekdaySet method order</li>
<li>Additional commits viewable in <a
href="https://github.com/chronotope/chrono/compare/v0.4.40...v0.4.41">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [webpki-roots](https://github.com/rustls/webpki-roots) from 0.26.8
to 0.26.9.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/rustls/webpki-roots/releases">webpki-roots's
releases</a>.</em></p>
<blockquote>
<h2>0.26.9</h2>
<p>The license of the <code>webpki-roots</code> and
<code>webpki-root-certs</code> crates changed from MPL-2.0 to
CDLA-Permissive-2.0. Thank you to the <a
href="https://redirect.github.com/mozilla/www.ccadb.org/issues/188">CCADB
maintainers for enabling us to make this change</a>.</p>
<h2>Upstream changes</h2>
<p><em>None</em></p>
<h2>What's Changed</h2>
<ul>
<li>Adjust license of mechnically-reformed crates by <a
href="https://github.com/ctz"><code>@ctz</code></a> in <a
href="https://redirect.github.com/rustls/webpki-roots/pull/88">rustls/webpki-roots#88</a></li>
<li>Run CI on ubuntu-latest by <a
href="https://github.com/ctz"><code>@ctz</code></a> in <a
href="https://redirect.github.com/rustls/webpki-roots/pull/91">rustls/webpki-roots#91</a></li>
<li>Support code-signing trust bit by <a
href="https://github.com/ctz"><code>@ctz</code></a> in <a
href="https://redirect.github.com/rustls/webpki-roots/pull/93">rustls/webpki-roots#93</a></li>
<li><code>manual_ok_err</code> clippy fix by <a
href="https://github.com/ctz"><code>@ctz</code></a> in <a
href="https://redirect.github.com/rustls/webpki-roots/pull/94">rustls/webpki-roots#94</a></li>
<li>webpki-(roots|root-certs): v0.26.8 -> v0.26.9 by <a
href="https://github.com/ctz"><code>@ctz</code></a> in <a
href="https://redirect.github.com/rustls/webpki-roots/pull/95">rustls/webpki-roots#95</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/rustls/webpki-roots/compare/v/0.26.8...v/0.26.9">https://github.com/rustls/webpki-roots/compare/v/0.26.8...v/0.26.9</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="575994bb51"><code>575994b</code></a>
webpki-(roots|root-certs): v0.26.8 -> v0.26.9</li>
<li><a
href="f9f5789f47"><code>f9f5789</code></a>
<code>manual_ok_err</code> clippy fix</li>
<li><a
href="fce41f761a"><code>fce41f7</code></a>
Support code-signing trust bit</li>
<li><a
href="f19c83f0f6"><code>f19c83f</code></a>
Run CI on ubuntu-latest</li>
<li><a
href="90c48f3867"><code>90c48f3</code></a>
Adjust license of mechanically-reformed crates</li>
<li>See full diff in <a
href="https://github.com/rustls/webpki-roots/compare/v/0.26.8...v/0.26.9">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [toml_edit](https://github.com/toml-rs/toml) from 0.22.24 to
0.22.25.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="40210818d7"><code>4021081</code></a>
chore: Release</li>
<li><a
href="33126988a3"><code>3312698</code></a>
chore: Release</li>
<li><a
href="b25da32148"><code>b25da32</code></a>
docs: Update changelog</li>
<li><a
href="884494977f"><code>8844949</code></a>
docs(write): Update base commit</li>
<li><a
href="5406815967"><code>5406815</code></a>
Merge pull request <a
href="https://redirect.github.com/toml-rs/toml/issues/875">#875</a> from
epage/w</li>
<li><a
href="c6479a246c"><code>c6479a2</code></a>
refactor(toml): Pull out ValueSerializer for easier comparison</li>
<li><a
href="8c43cf8903"><code>8c43cf8</code></a>
refactor(toml): Remove redundant non_exhaustive</li>
<li><a
href="268a1f82aa"><code>268a1f8</code></a>
Merge pull request <a
href="https://redirect.github.com/toml-rs/toml/issues/874">#874</a> from
epage/w</li>
<li><a
href="e406f94893"><code>e406f94</code></a>
refactor(toml): Split ser module</li>
<li><a
href="4d782f8cdf"><code>4d782f8</code></a>
refactor(edit): Rely on type alias in ser</li>
<li>Additional commits viewable in <a
href="https://github.com/toml-rs/toml/compare/v0.22.24...v0.22.25">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [web_atoms](https://github.com/servo/html5ever) from 0.1.0 to
0.1.1.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="15d10bf716"><code>15d10bf</code></a>
v0.1.1</li>
<li><a
href="b57243cb76"><code>b57243c</code></a>
Auto merge of <a
href="https://redirect.github.com/servo/html5ever/issues/146">#146</a> -
servo:rustup, r=SimonSapin</li>
<li><a
href="4630ad8a95"><code>4630ad8</code></a>
Upgrade to rustc 1.2.0-nightly (2f5683913 2015-06-18)</li>
<li><a
href="395e39ce7b"><code>395e39c</code></a>
Merge pull request <a
href="https://redirect.github.com/servo/html5ever/issues/145">#145</a>
from kstep/patch-1</li>
<li><a
href="5f8d1e128e"><code>5f8d1e1</code></a>
add documentation link to cargo.toml</li>
<li><a
href="73d3f78e82"><code>73d3f78</code></a>
Auto merge of <a
href="https://redirect.github.com/servo/html5ever/issues/144">#144</a> -
servo:crates.io, r=metajack</li>
<li>See full diff in <a
href="https://github.com/servo/html5ever/compare/v0.1.0...v0.1.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [syn](https://github.com/dtolnay/syn) from 2.0.100 to 2.0.101.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/dtolnay/syn/releases">syn's
releases</a>.</em></p>
<blockquote>
<h2>2.0.101</h2>
<ul>
<li>Improve TypeGenerics::as_turbofish to return longer-lived return
value (<a
href="https://redirect.github.com/dtolnay/syn/issues/1861">#1861</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="58336a3fb4"><code>58336a3</code></a>
Release 2.0.101</li>
<li><a
href="f1612cc7cc"><code>f1612cc</code></a>
Merge pull request <a
href="https://redirect.github.com/dtolnay/syn/issues/1861">#1861</a>
from JakobDegen/turbofish</li>
<li><a
href="d04eea1637"><code>d04eea1</code></a>
Fix lifetime on <code>as_turbofish</code></li>
<li><a
href="432b303bd4"><code>432b303</code></a>
Resolve renamed_and_removed_lints warning about match_on_vec_items</li>
<li><a
href="1353d60a3a"><code>1353d60</code></a>
Update test suite to nightly-2025-04-08</li>
<li><a
href="3980ff22bb"><code>3980ff2</code></a>
Improve wording of comment in advance_to implementation</li>
<li><a
href="8328b52319"><code>8328b52</code></a>
Update test suite to nightly-2025-04-05</li>
<li><a
href="1d2e2be40e"><code>1d2e2be</code></a>
Update test suite to nightly-2025-04-03</li>
<li><a
href="2400946a73"><code>2400946</code></a>
Update test suite to nightly-2025-04-02</li>
<li><a
href="114a629a7a"><code>114a629</code></a>
Update test suite to nightly-2025-03-27</li>
<li>Additional commits viewable in <a
href="https://github.com/dtolnay/syn/compare/2.0.100...2.0.101">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
This turned out to be a full rabbit hole. The new header
is parsed in the new `parse_csp_list_from_metadata` which
sets `disposition` to `report.
I was testing this with
`script-src-report-only-policy-works-with-external-hash-policy.html`
which was blocking the script incorrectly. Turns out that there
were multiple bugs in the CSP library, as well as a missing
check in `fetch` to report violations.
Additionally, in several locations we were manually reporting csp
violations, instead of the new `global.report_csp_violations`. As
a result of that, they would double report, since the report-only
header would be appended as a policy and now would report twice.
Now, all callsides use `global.report_csp_violations`. As a nice
side-effect, I added the code to set source file information,
since that was already present for the `eval` check, but nowhere
else.
Part of #36437
Requires servo/rust-content-security-policy#5
---------
Signed-off-by: Tim van der Lippe <tvanderlippe@gmail.com>
Signed-off-by: Tim van der Lippe <TimvdLippe@users.noreply.github.com>
Bumps [winnow](https://github.com/winnow-rs/winnow) from 0.7.6 to 0.7.7.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/winnow-rs/winnow/blob/main/CHANGELOG.md">winnow's
changelog</a>.</em></p>
<blockquote>
<h2>[0.7.7] - 2025-04-24</h2>
<h3>Fixes</h3>
<ul>
<li>Ensure <code>LocatedSlice</code> and <code>Stateful</code>s
<code>Stream::raw</code> gets the inner input</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="bb0cea3a79"><code>bb0cea3</code></a>
chore: Release</li>
<li><a
href="c887eee41b"><code>c887eee</code></a>
docs: Update changelog</li>
<li><a
href="296323d58c"><code>296323d</code></a>
Merge pull request <a
href="https://redirect.github.com/winnow-rs/winnow/issues/774">#774</a>
from tianyuanhao/inner-most</li>
<li><a
href="491ebfced9"><code>491ebfc</code></a>
fix(stream): Make raw() inner-most</li>
<li><a
href="3752dafb4b"><code>3752daf</code></a>
Merge pull request <a
href="https://redirect.github.com/winnow-rs/winnow/issues/767">#767</a>
from dqkqd/fix-ndjson-link</li>
<li><a
href="358080d29b"><code>358080d</code></a>
docs(topic): Fixed link ndjson</li>
<li><a
href="2566343d8d"><code>2566343</code></a>
Merge pull request <a
href="https://redirect.github.com/winnow-rs/winnow/issues/766">#766</a>
from epage/clippy</li>
<li><a
href="886a29dce1"><code>886a29d</code></a>
style: Help catch 'alloc' mistakes</li>
<li><a
href="03e4fc3e51"><code>03e4fc3</code></a>
style: Make clippy happy</li>
<li>See full diff in <a
href="https://github.com/winnow-rs/winnow/compare/v0.7.6...v0.7.7">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [derive_more](https://github.com/JelteF/derive_more) from 0.99.19
to 0.99.20.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/JelteF/derive_more/blob/v0.99.20/CHANGELOG.md">derive_more's
changelog</a>.</em></p>
<blockquote>
<h2>0.99.20 - 2025-04-23</h2>
<ul>
<li>Revert adding of Rust Playground metadata</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="adbf92c341"><code>adbf92c</code></a>
chore: Release derive_more version 0.99.20</li>
<li><a
href="f4ed4a1edc"><code>f4ed4a1</code></a>
Update changelog for 0.99.20</li>
<li><a
href="530db58e60"><code>530db58</code></a>
Revert "Add Rust Playground metadata"</li>
<li>See full diff in <a
href="https://github.com/JelteF/derive_more/compare/v0.99.19...v0.99.20">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [tokio-util](https://github.com/tokio-rs/tokio) from 0.7.14 to
0.7.15.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="4d4d12613b"><code>4d4d126</code></a>
chore: prepare tokio-util v0.7.15 (<a
href="https://redirect.github.com/tokio-rs/tokio/issues/7283">#7283</a>)</li>
<li><a
href="5490267a79"><code>5490267</code></a>
fs: update the mockall dev dependency to 0.13.0 (<a
href="https://redirect.github.com/tokio-rs/tokio/issues/7234">#7234</a>)</li>
<li><a
href="1434b32b5a"><code>1434b32</code></a>
examples: improve echo example consistency (<a
href="https://redirect.github.com/tokio-rs/tokio/issues/7256">#7256</a>)</li>
<li><a
href="159a3b2c85"><code>159a3b2</code></a>
rt(unstable): remove alt multi-threaded runtime (<a
href="https://redirect.github.com/tokio-rs/tokio/issues/7275">#7275</a>)</li>
<li><a
href="ce87dcfbf0"><code>ce87dcf</code></a>
runtime: document the queue behavior of <code>spawn_blocking</code> (<a
href="https://redirect.github.com/tokio-rs/tokio/issues/7269">#7269</a>)</li>
<li><a
href="d41d49d202"><code>d41d49d</code></a>
metrics: fix panic comment in <code>max_error</code> docs (<a
href="https://redirect.github.com/tokio-rs/tokio/issues/7273">#7273</a>)</li>
<li><a
href="7a6c424f6e"><code>7a6c424</code></a>
process: add <code>Command::spawn_with</code> (<a
href="https://redirect.github.com/tokio-rs/tokio/issues/7249">#7249</a>)</li>
<li><a
href="c3037adac9"><code>c3037ad</code></a>
task: properly handle removed entries in <code>JoinMap</code> (<a
href="https://redirect.github.com/tokio-rs/tokio/issues/7264">#7264</a>)</li>
<li><a
href="964fd06e0f"><code>964fd06</code></a>
benches: add helper functions for building runtimes (<a
href="https://redirect.github.com/tokio-rs/tokio/issues/7260">#7260</a>)</li>
<li><a
href="817fa605ee"><code>817fa60</code></a>
fs: avoid some copies in <code>tokio::fs::write</code> (<a
href="https://redirect.github.com/tokio-rs/tokio/issues/7199">#7199</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/tokio-rs/tokio/compare/tokio-util-0.7.14...tokio-util-0.7.15">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Each canvas context returns snapshot instead of just raw bytes. This
allows as to hold off conversions (BGRA <-> RGBA, (un)premultiply) to
when/if they are actually needed. For example when loading snapshot into
webgl we can load both RGBA and BGRA so no conversion is really needed.
Currently whole thing is designed to be able to be extend on
https://github.com/servo/ipc-channel/pull/356, to make less copies.
Hence some commented out code.
Fixes#35759
There are tests for these changes in WPT
---------
Signed-off-by: sagudev <16504129+sagudev@users.noreply.github.com>
Adds a convenience macro that adds sane defaults to the tracing macro.
Closes: #36534
Testing:
- Pass in sample test cases and compare against expected behaviour.
---------
Signed-off-by: Astraea Quinn Skoutelli <astraea.quinn.skoutelli@huawei.com>
Bumps
[async-compression](https://github.com/Nullus157/async-compression) from
0.4.22 to 0.4.23.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/Nullus157/async-compression/blob/main/CHANGELOG.md">async-compression's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://github.com/Nullus157/async-compression/compare/v0.4.22...v0.4.23">0.4.23</a>
- 2025-04-21</h2>
<h3>Other</h3>
<ul>
<li><em>(deps)</em> update brotli requirement from 7.0 to 8.0</li>
<li><em>(deps)</em> update liblzma requirement from 0.3.6 to 0.4.0</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="aaac1a62ca"><code>aaac1a6</code></a>
chore: release v0.4.23</li>
<li><a
href="79c3dcced6"><code>79c3dcc</code></a>
Merge pull request <a
href="https://redirect.github.com/Nullus157/async-compression/issues/343">#343</a>
from Nullus157/dependabot/cargo/brotli-8.0</li>
<li><a
href="efba501fed"><code>efba501</code></a>
chore(deps): update brotli requirement from 7.0 to 8.0</li>
<li><a
href="a642a55a35"><code>a642a55</code></a>
Merge pull request <a
href="https://redirect.github.com/Nullus157/async-compression/issues/339">#339</a>
from Nullus157/dependabot/cargo/liblzma-0.4.0</li>
<li><a
href="2abd8e70af"><code>2abd8e7</code></a>
chore(deps): update liblzma requirement from 0.3.6 to 0.4.0</li>
<li><a
href="55af2a44ff"><code>55af2a4</code></a>
Merge pull request <a
href="https://redirect.github.com/Nullus157/async-compression/issues/338">#338</a>
from Nullus157/release-plz-2025-03-25T10-06-59Z</li>
<li>See full diff in <a
href="https://github.com/Nullus157/async-compression/compare/v0.4.22...v0.4.23">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
dependabot[bot]
Josh Matthews
Simon Wülker
Oriol Brufau
Tim van der Lippe
Martin Robinson
sagudev
Astraea Quinn S