Bump the dependencies group across 1 directory with 14 updates #130

dependabot · 2025-09-15T09:00:59Z

Bumps the dependencies group with 13 updates in the / directory:

Package	From	To
anyhow	`1.0.98`	`1.0.99`
bzip2	`0.5.2`	`0.6.0`
chrono	`0.4.41`	`0.4.42`
clap	`4.5.41`	`4.5.47`
duct	`0.13.7`	`1.1.0`
indicatif	`0.17.11`	`0.18.0`
polars	`0.46.0`	`0.50.0`
rayon	`1.10.0`	`1.11.0`
rusqlite	`0.34.0`	`0.37.0`
serde_json	`1.0.141`	`1.0.145`
thiserror	`2.0.12`	`2.0.16`
tracing-subscriber	`0.3.19`	`0.3.20`
url	`2.5.4`	`2.5.7`

Updates anyhow from 1.0.98 to 1.0.99

Release notes

Sourced from anyhow's releases.

1.0.99

Allow build-script cleanup failure with NFSv3 output directory to be non-fatal (#420)

Commits

f2b963a Release 1.0.99
2c64c15 Merge pull request #420 from dtolnay/enotempty
8cf66f7 Allow build-script cleanup failure with NFSv3 output directory to be non-fatal
f5e145c Revert "Pin nightly toolchain used for miri job"
1d7ef1d Update ui test suite to nightly-2025-06-30
6929572 Update ui test suite to nightly-2025-06-18
37224e3 Ignore mismatched_lifetime_syntaxes lint
11f0e81 Pin nightly toolchain used for miri job
d04c999 Raise required compiler for backtrace feature to rust 1.82
219d163 Update test suite to nightly-2025-05-01
See full diff in compare view

Updates bzip2 from 0.5.2 to 0.6.0

Release notes

Sourced from bzip2's releases.

v0.6.0

Highlights

This release switches to libbz2-rs-sys as the default bzip2 backend. It is written in rust, making it much easier to cross-compile. The new implementation is also more performant.

The rust implementation does not export C symbols by default. An explicit dependency on libbz2-rs-sys and setting the export-symbols feature flag will fix that if needed.

The bzip2-sys feature flag can be used to continue to use the C backend (either the system library of a C version built from source).

This is a breaking release, given that we want this update to be opt-in. We've used the occasion to perform an MSRV bump to 1.82.0. The libbz2-rs-sys crate has the bzip2-1.0.6 license. Arguably, that is the license that bzip2-sys should have had too, given that it is just a wrapper of the original bzip2 (and libbz2-rs-sys is a derivative work). You may need to allow this license when using cargo-deny.

What's Changed

Release 0.6.0 by @folkertdev in trifectatechfoundation/bzip2-rs#141

Full Changelog: trifectatechfoundation/bzip2-rs@v0.5.2...v0.6.0

Commits

71d5b03 Release 0.6.0
See full diff in compare view

Updates chrono from 0.4.41 to 0.4.42

Release notes

Sourced from chrono's releases.

0.4.42

What's Changed

Add fuzzer for DateTime::parse_from_str by @tyler92 in chronotope/chrono#1700

Fix wrong amount of micro/milliseconds by @nmlt in chronotope/chrono#1703

Add warning about MappedLocalTime and wasm by @lutzky in chronotope/chrono#1702

Fix incorrect parsing of fixed-length second fractions by @chris-leach in chronotope/chrono#1705

Fix cfgs for wasm32-linux support by @arjunr2 in chronotope/chrono#1707

Fix OpenHarmony's tzdata parsing by @ldm0 in chronotope/chrono#1679

Convert NaiveDate to/from days since unix epoch by @findepi in chronotope/chrono#1715

Add ?Sized bound to related methods of DelayedFormat::write_to by @Huliiiiii in chronotope/chrono#1721

Add from_timestamp_secs method to DateTime by @jasonaowen in chronotope/chrono#1719

Migrate to core::error::Error by @benbrittain in chronotope/chrono#1704

Upgrade to windows-bindgen 0.63 by @djc in chronotope/chrono#1730

strftime: simplify error handling by @djc in chronotope/chrono#1731

Commits

f3fd15f Bump version to 0.4.42
5cf5603 strftime: add regression test case
a623170 strftime: simplify error handling
36fbfb1 strftime: move specifier handling out of match to reduce rightward drift
7f413c3 strftime: yield None early
9d5dfe1 strftime: outline constants
e5f6be7 strftime: move error() method below caller
d516c27 strftime: merge impl blocks
0ee2172 strftime: re-order items to keep impls together
757a8b0 Upgrade to windows-bindgen 0.63
Additional commits viewable in compare view

Updates clap from 4.5.41 to 4.5.47

Release notes

Sourced from clap's releases.

v4.5.47

[4.5.47] - 2025-09-02

Features

Added impl FromArgMatches for ()

Added impl Args for ()

Added impl Subcommand for ()

Added impl FromArgMatches for Infallible

Added impl Subcommand for Infallible

Fixes

(derive) Update runtime error text to match clap

v4.5.46

[4.5.46] - 2025-08-26

Features

Expose StyledStr::push_str

v4.5.45

[4.5.45] - 2025-08-12

Fixes

(unstable-v5) ValueEnum variants now use the full doc comment, not summary, for PossibleValue::help

v4.5.44

[4.5.44] - 2025-08-11

Features

Add Command::mut_subcommands

v4.5.43

[4.5.43] - 2025-08-06

Fixes

(help) In long help, list Possible Values before defaults, rather than after, for a more consistent look

v4.5.42

[4.5.42] - 2025-07-30

Fixes

Include subcommand visible long aliases in --help

Changelog

Sourced from clap's changelog.

[4.5.47] - 2025-09-02

Features

Added impl FromArgMatches for ()

Added impl Args for ()

Added impl Subcommand for ()

Added impl FromArgMatches for Infallible

Added impl Subcommand for Infallible

Fixes

(derive) Update runtime error text to match clap

[4.5.46] - 2025-08-26

Features

Expose StyledStr::push_str

[4.5.45] - 2025-08-12

Fixes

(unstable-v5) ValueEnum variants now use the full doc comment, not summary, for PossibleValue::help

[4.5.44] - 2025-08-11

Features

Add Command::mut_subcommands

[4.5.43] - 2025-08-06

Fixes

(help) In long help, list Possible Values before defaults, rather than after, for a more consistent look

[4.5.42] - 2025-07-30

Fixes

Include subcommand visible long aliases in --help

Commits

f046ca6 chore: Release
436949d docs: Update changelog
1ddab84 Merge pull request #5954 from epage/tests
8a66dbf test(complete): Add more native cases
76465cf test(complete): Make things more consistent
232cedb test(complete): Remove redundant index
02244a6 Merge pull request #5949 from krobelus/option-name-completions-after-positionals
2e13847 fix(complete): Missing options in multi-val arg
74388d7 test(complete): Multi-valued, unbounded positional
5b3d45f refactor(complete): Extract function for options
Additional commits viewable in compare view

Updates duct from 0.13.7 to 1.1.0

Commits

2757052 version 1.1.0
d2c8040 test_env_case_preserving
ae8814e use a mixed-case env var name in test_env_remove_case_sensitivity
944c126 add tests for EnvNameString
61f29ff avoid allocating in EnvNameString::hash
fc909f7 use case-insensitive strings for env var names on Windows
306bb5c clarify a comment in StdinBytesHandle::wait
ca531e2 improve the Expression docs
38fa270 wait_timeout and wait_deadline
0c90564 switch back to IntoRawFd/IntoRawHandle bounds
Additional commits viewable in compare view

Updates indicatif from 0.17.11 to 0.18.0

Release notes

Sourced from indicatif's releases.

0.18.0

Unfortunately 0.17.12 had to be yanked because the console upgrade was a semver-incompatible change. Rerelease as 0.18.0 instead.

What's Changed

Bump version to 0.18.0 by @djc in console-rs/indicatif#715

0.17.12

What's Changed

Add ProgressBar::force_draw by @jaheba in console-rs/indicatif#689

Use width to truncate HumanFloatCount values by @ReagentX in console-rs/indicatif#696

ProgressStyle enable/disable colors based on draw target by @tonywu6 in console-rs/indicatif#699

Switch dep number_prefix to unit_prefix by @kimono-koans in console-rs/indicatif#709

draw_target: inline the format arg to silence clippy by @chris-laplante in console-rs/indicatif#711

Upgrade to console 0.16 by @djc in console-rs/indicatif#712

Commits

354b732 Bump version to 0.18.0
f46ba0a Bump version to 0.17.12
9f08f12 Upgrade to console 0.16
9afc362 draw_target: inline the format arg to silence clippy
880d8ce Switch from number_prefix to unit-prefix (#709)
458e4dc ProgressStyle enable/disable colors based on draw target (#699)
abd2181 Use width to truncate HumanFloatCount values (#696)
79ea085 Add ProgressBar::force_draw (#689)
See full diff in compare view

Updates polars from 0.46.0 to 0.50.0

Release notes

Sourced from polars's releases.

Rust Polars 0.50.0

🏆 Highlights

Make Selector a concrete part of the DSL (#23351)

Rework Categorical/Enum to use (Frozen)Categories (#23016)

🚀 Performance improvements

Lower Expr.slice to streaming engine (#23683)

Elide bound check (#23653)

Preserve Column repr in ColumnTransform operations (#23648)

Lower any() and all() to streaming engine (#23640)

Lower row-separable functions in streaming engine (#23633)

Lower int_range(len()) to with_row_index (#23576)

Avoid double field resolution in with_columns (#23530)

Rolling quantile lower time complexity (#23443)

Use single-key optimization with Categorical (#23436)

Improve null-preserving identification for boolean functions (#23317)

Improve boolean bitwise aggregate performance (#23325)

Enable Parquet expressions and dedup is_in values in Parquet predicates (#23293)

Re-write join types during filter pushdown (#23275)

Generate PQ ZSTD decompression context once (#23200)

Trigger cache/cse optimizations when multiplexing (#23274)

Cache FileInfo upon DSL -> IR conversion (#23263)

Push more filters past joins (#23240)

✨ Enhancements

Expand on DataTypeExpr (#23249)

Lower row-separable functions in streaming engine (#23633)

Add scalar checks to range expressions (#23632)

Expose POLARS_DOT_SVG_VIEWER to automatically dispatch to SVG viewer (#23592)

Implement mean function in arr namespace (#23486)

Implement vec_hash for List and Array (#23578)

Add unstable pl.row_index() expression (#23556)

Add Categories on the Python side (#23543)

Implement partitioned sinks for the in-memory engine (#23522)

Expose IRFunctionExpr::Rank in the python visitor (#23512)

Raise and Warn on UDF's without return_dtype set (#23353)

IR pruning (#23499)

Expose IRFunctionExpr::FillNullWithStrategy in the python visitor (#23479)

Support min/max reducer for null dtype in streaming engine (#23465)

Implement streaming Categorical/Enum min/max (#23440)

Allow cast to Categorical inside list.eval (#23432)

Support pathlib.Path as source for read/scan_delta() (#23411)

Enable default set of ScanCastOptions for native scan_iceberg() (#23416)

Pass payload in ExprRegistry (#23412)

Support reading nanosecond/Int96 timestamps and schema evolved datasets in scan_delta() (#23398)

Support row group skipping with filters when cast_options is given (#23356)

Execute bitwise reductions in streaming engine (#23321)

... (truncated)

Commits

0478b35 Python Polars 1.32 (#23828)
2ffebfd fix: Allow encoding of pl.Enum with smaller physicals (#23829)
b2b6248 fix: Filter sorted flag from physical in CategoricalChunked (#23827)
58accb3 feat(python): Ensure CachingCredentialProvider returns copied credentials d...
f2c0eac feat(python): Change typing for .remote() from LazyFrameExt to `LazyFrame...
fab59cb perf: Lower extend_constant to the streaming engine (#23824)
36d3bfd build(python): Workaround for pyiceberg make requirements on Python 3.13 (#...
0f87392 ci: Automatically tag PRs mentioning "SQL" with the appropriate label (#23816)
9710467 chore: Update typos package (#23818)
ae11046 fix: Remove accidental todo! in repeat node (#23822)
Additional commits viewable in compare view

Updates rayon from 1.10.0 to 1.11.0

Changelog

Sourced from rayon's changelog.

Release rayon 1.11.0 / rayon-core 1.13.0 (2025-08-12)

The minimum supported rustc is now 1.80.

iter::repeatn has been renamed to iter::repeat_n to match the name stabilized in the standard library. The old name still exists as a deprecated function for compatibility.

Fixed a bug in in_place_scope when the default global registry uses the current thread, like on WebAssembly without threading support.

binary_heap::Iter no longer requires a temporary allocation.

Relaxed trait bounds on many of the public structs.

Implemented IntoParallelIterator for Box<[T]> and its references.

Implemented FromParallelIterator<_> for Box<str> via String.

Commits

6236214 Merge #1031
652f111 Release rayon 1.7.0 and rayon-core 1.11.0
7df001d Tweak plumbing consumer description
322dfe8 Merge #1026
099241d Merge #1030
a17bcb9 Fix inappropriate use of slice::as_mut_ptr
98077fe Be more cautious about drain drops
7069695 Merge #1028
874ff73 Fix docs for the yield None case on ThreadPool
58f7b7e Be careful comparing job_ref.execute_fn
Additional commits viewable in compare view

Updates rusqlite from 0.34.0 to 0.37.0

Release notes

Sourced from rusqlite's releases.

0.37.0

What's Changed

Add FromSqlError::other convenience conversion #1703

Fix warnings #1705

Update bindgen requirement from 0.71 to 0.72 #1707

Fix for vtab::parameter parsing #1712

Fix clippy warning #1713

Bump bundled SQLite version to 3.50.2 #1714

Fix issue with prettyplease #1717

Full Changelog: rusqlite/rusqlite@v0.36.0...v0.37.0

0.36.0

What's Changed

Introduce Name trait to support both &str and &CStr as name #1659

Use doc_auto_cfg #1683

Feature loadable_extension is incompatible with some other features #1686

Add missing wrappers for sqlite3_vtab_nochange and sqlite3_value_nochange #1688

Update bindings list #1689

Homogenize code related to hooks #1690

Try to increase code coverage #1610

Bump bundled SQLite version to 3.49.2 #1691

Add bindings to sqlite3_table_column_metadata #1692

Add bindings to sqlite3_vtab_distinct #1695

Fix clippy warning #1697

Add query_one #1699

Refactor one_column test method #1700

Full Changelog: rusqlite/rusqlite@v0.35.0...v0.36.0

0.35.0

What's Changed

Document 'rusqlite-macros' and 'jiff' features #1663

access column metadata from prepared statement #1672 / #1666

add support for Jiff's Timestamp #1676

Breaking change: Check that Connection::execute has no tail #1679 / #397

Breaking change: Check for multiple statements in prepare #1680 / #1147

Full Changelog: rusqlite/rusqlite@v0.34.0...v0.35.0

Commits

44e0ef9 Merge pull request #1718 from gwenn/0.37.0
45d2505 Prepare next release
258388e Merge pull request #1717 from gwenn/prettyplease
97ddb28 Try to fix issue with prettyplease
da7ba5a Merge pull request #1714 from gwenn/3.50.2
5c2294b Bump bundled SQLite version to 3.50.2
4955615 Merge pull request #1713 from gwenn/clippy
81e3059 Fix clippy warning
8a19998 Merge pull request #1712 from kfdm/vtab-parameter-fix
de78f7e Fix for vtab::parameter parsing
Additional commits viewable in compare view

Updates serde from 1.0.219 to 1.0.223

Release notes

Sourced from serde's releases.

v1.0.223

Fix serde_core documentation links (#2978)

v1.0.222

Make serialize_with attribute produce code that works if respanned to 2024 edition (#2950, thanks @aytey)

v1.0.221

Documentation improvements (#2973)

Deprecate serde_if_integer128! macro (#2975)

v1.0.220

Add a way for data formats to depend on serde traits without waiting for serde_derive compilation: https://docs.rs/serde_core (#2608, thanks @osiewicz)

Commits

6c316d7 Release 1.0.223
a4ac0c2 Merge pull request #2978 from dtolnay/htmlrooturl
ed76364 Change serde_core's html_root_url to docs.rs/serde_core
57e21a1 Release 1.0.222
bb58726 Merge pull request #2950 from aytey/fix_lifetime_issue_2024
3f69251 Delete unneeded field of MapDeserializer
fd4decf Merge pull request #2976 from dtolnay/content
00b1b6b Move Content's Deserialize impl from serde_core to serde
cf141aa Move Content's Clone impl from serde_core to serde
ff3aee4 Release 1.0.221
Additional commits viewable in compare view

Updates serde_json from 1.0.141 to 1.0.145

Release notes

Sourced from serde_json's releases.

v1.0.145

Raise serde version requirement to >=1.0.220

v1.0.144

Switch serde dependency to serde_core (#1285)

v1.0.143

Implement Clone and Debug for serde_json::Map iterators (#1264, thanks @xlambein)

Implement Default for CompactFormatter (#1268, thanks @SOF3)

Implement FromStr for serde_json::Map (#1271, thanks @mickvangelderen)

v1.0.142

impl Default for &Value (#1265, thanks @aatifsyed)

Commits

efa66e3 Release 1.0.145
23679e2 Add serde version constraint
fc27baf Release 1.0.144
caef3c6 Ignore uninlined_format_args pedantic clippy lint
81ba3aa Merge pull request #1285 from dtolnay/serdecore
d21e8ce Switch serde dependency to serde_core
6beb6cd Merge pull request #1286 from dtolnay/up
1dbc803 Raise required compiler to Rust 1.61
0bf5d87 Enforce trybuild >= 1.0.108
d12e943 Update actions/checkout@v4 -> v5
Additional commits viewable in compare view

Updates thiserror from 2.0.12 to 2.0.16

Release notes

Sourced from thiserror's releases.

2.0.16

Add to "no-std" crates.io category (#429)

2.0.15

Prevent Error::provide API becoming unavailable from a future new compiler lint (#427)

2.0.14

Allow build-script cleanup failure with NFSv3 output directory to be non-fatal (#426)

2.0.13

Documentation improvements

Commits

40b5853 Release 2.0.16
83dfb5f Merge pull request #429 from dtolnay/nostd
9b4a99f Add to "no-std" crates.io category
f6145eb Release 2.0.15
2717177 Merge pull request #427 from dtolnay/caplints
2cd13e6 Make error_generic_member_access compatible with -Dwarnings
eea6799 Release 2.0.14
a2aa6d7 Merge pull request #426 from dtolnay/enotempty
f00ebc5 Allow build-script cleanup failure with NFSv3 output directory to be non-fatal
61f28da Release 2.0.13
Additional commits viewable in compare view

Updates tracing-subscriber from 0.3.19 to 0.3.20

Release notes

Sourced from tracing-subscriber's releases.

tracing-subscriber 0.3.20

Security Fix: ANSI Escape Sequence Injection (CVE-TBD)

Impact

Previous versions of tracing-subscriber were vulnerable to ANSI escape sequence injection attacks. Untrusted user input containing ANSI escape sequences could be injected into terminal output when logged, potentially allowing attackers to:

Manipulate terminal title bars

Clear screens or modify terminal display

Potentially mislead users through terminal manipulation

In isolation, impact is minimal, however security issues have been found in terminal emulators that enabled an attacker to use ANSI escape sequences via logs to exploit vulnerabilities in the terminal emulator.

Solution

Version 0.3.20 fixes this vulnerability by escaping ANSI control characters in when writing events to destinations that may be printed to the terminal.

Affected Versions

All versions of tracing-subscriber prior to 0.3.20 are affected by this vulnerability.

Recommendations

Immediate Action Required: We recommend upgrading to tracing-subscriber 0.3.20 immediately, especially if your application:

Logs user-provided input (form data, HTTP headers, query parameters, etc.)

Runs in environments where terminal output is displayed to users

Migration

This is a patch release with no breaking API changes. Simply update your Cargo.toml:
[dependencies]
tracing-subscriber = "0.3.20"
Acknowledgments

We would like to thank zefr0x who responsibly reported the issue at [email protected].

If you believe you have found a security vulnerability in any tokio-rs project, please email us at [email protected].

Commits

4c52ca5 fmt: fix ANSI escape sequence injection vulnerability (#3368)
f71cebe subscriber: impl Clone for EnvFilter (#3360)
3a1f571 Fix CI (#3361)
e63ef57 chore: prepare tracing-attributes 0.1.30 (#3316)
6e59a13 attributes: fix tracing::instrument regression around shadowing (#3311)
e4df761 tracing: update core to 0.1.34 and attributes to 0.1.29 (#3305)
643f392 chore: prepare tracing-attributes 0.1.29 (#3304)
d08e7a6 chore: prepare tracing-core 0.1.34 (#3302)
6e70c57 tracing-subscriber: count numbers of enters in Timings (#2944)
c01d4fd fix docs and enable CI on main branch (#3295)
Additional commits viewable in compare view

Updates url from 2.5.4 to 2.5.7

Release notes

Sourced from url's releases.

v2.5.7

What's Changed

v.2.5.6

Bump versions by @valenting in servo/rust-url#1062

version bump to 2.5.6 by @edgul in servo/rust-url#1065

Use no-std instead of no_std in Cargo.toml by @valenting in servo/rust-url#1064

fix: add Serde std feature if needed by @reneca in servo/rust-url#1068

v.2.5.7

make serde std feature use optional syntax by @klensy in servo/rust-url#1071

New Contributors

@reneca made their first contribution in servo/rust-url#1068

Full Changelog: servo/rust-url@v2.5.5...v2.5.7

v2.5.5

What's Changed

ci: downgrade crates when building for Rust 1.67.0 by @mxinden in servo/rust-url#1003

ci: run unit tests with sanitizers by @mxinden in servo/rust-url#1002

fix small typo by @hkBst in servo/rust-url#1011

chore: fix clippy errors on main by @dsherret in servo/rust-url#1019

perf: remove heap allocation in parse_query by @dsherret in servo/rust-url#1020

perf: slightly improve parsing a port by @dsherret in servo/rust-url#1022

perf: improve to_file_path() by @dsherret in servo/rust-url#1018

perf: make parse_scheme slightly faster by @dsherret in servo/rust-url#1025

update LICENSE-MIT by @wmjae in servo/rust-url#1029

perf: url encode path segments in longer string slices by @dsherret in servo/rust-url#1026

Disable the default features on serde by @rilipco in servo/rust-url#1033

docs: base url relative join by @tisonkun in servo/rust-url#1013

perf: remove heap allocation in parse_host by @dsherret in servo/rust-url#1021

Update tests to Unicode 16.0 by @hsivonen in servo/rust-url#1045

Add some some basic functions to Mime by @mrobinson in servo/rust-url#1047

ran cargo clippy --fix -- -Wclippy::use_self by @mrobinson in servo/rust-url#1048

Fix MSRV and clippy CI by @Manishearth in servo/rust-url#1058

Update Url::domain docs to show that it includes subdomain by @supercoolspy in servo/rust-url#1057

set_hostname should error when encountering colon ':' by @edgul in servo/rust-url#1060

version bump to 2.5.5 by @edgul in servo/rust-url#1061

New Contributors

@mxinden made their first contribution in servo/rust-url#1003

@hkBst made their first contribution in servo/rust-url#1011

@wmjae made their first contribution in servo/rust-url#1029

@rilipco made their first contribution in servo/rust-url#1033

@tisonkun made their first contribution in servo/rust-url#1013

@supercoolspy made their first contribution in servo/rust-url#1057

Full Changelog: servo/rust-url@v2.5.4...v2.5.5

Commits

43f47e2 make serde std feature use optional syntax (#1071)
2387efa fix: add Serde std feature if needed (#1068)
aae60cf Use no-std instead of no_std in Cargo.toml (#1064)
44afd9f version bump to 2.5.6 (#1065)
91377f4 Bump versions (#1062)
a40f904 version bump to 2.5.5 (#1061)
cf305db set_hostname should error when encountering colon ':' (#1060)
88826bd Update Url::domain docs to show that it includes subdomain (#1057)
c3bbf66 Fix MSRV and clippy CI (#1058)
dbd5261 ran cargo clippy --fix -- -Wclippy::use_self (#1048)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
`@dependabot ignore <depe...

Description has been truncated

Bumps the dependencies group with 13 updates in the / directory: | Package | From | To | | --- | --- | --- | | [anyhow](https://github.com/dtolnay/anyhow) | `1.0.98` | `1.0.99` | | [bzip2](https://github.com/trifectatechfoundation/bzip2-rs) | `0.5.2` | `0.6.0` | | [chrono](https://github.com/chronotope/chrono) | `0.4.41` | `0.4.42` | | [clap](https://github.com/clap-rs/clap) | `4.5.41` | `4.5.47` | | [duct](https://github.com/oconnor663/duct.rs) | `0.13.7` | `1.1.0` | | [indicatif](https://github.com/console-rs/indicatif) | `0.17.11` | `0.18.0` | | [polars](https://github.com/pola-rs/polars) | `0.46.0` | `0.50.0` | | [rayon](https://github.com/rayon-rs/rayon) | `1.10.0` | `1.11.0` | | [rusqlite](https://github.com/rusqlite/rusqlite) | `0.34.0` | `0.37.0` | | [serde_json](https://github.com/serde-rs/json) | `1.0.141` | `1.0.145` | | [thiserror](https://github.com/dtolnay/thiserror) | `2.0.12` | `2.0.16` | | [tracing-subscriber](https://github.com/tokio-rs/tracing) | `0.3.19` | `0.3.20` | | [url](https://github.com/servo/rust-url) | `2.5.4` | `2.5.7` | Updates `anyhow` from 1.0.98 to 1.0.99 - [Release notes](https://github.com/dtolnay/anyhow/releases) - [Commits](dtolnay/anyhow@1.0.98...1.0.99) Updates `bzip2` from 0.5.2 to 0.6.0 - [Release notes](https://github.com/trifectatechfoundation/bzip2-rs/releases) - [Commits](trifectatechfoundation/bzip2-rs@v0.5.2...v0.6.0) Updates `chrono` from 0.4.41 to 0.4.42 - [Release notes](https://github.com/chronotope/chrono/releases) - [Changelog](https://github.com/chronotope/chrono/blob/main/CHANGELOG.md) - [Commits](chronotope/chrono@v0.4.41...v0.4.42) Updates `clap` from 4.5.41 to 4.5.47 - [Release notes](https://github.com/clap-rs/clap/releases) - [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md) - [Commits](clap-rs/clap@clap_complete-v4.5.41...clap_complete-v4.5.47) Updates `duct` from 0.13.7 to 1.1.0 - [Commits](oconnor663/duct.rs@0.13.7...1.1.0) Updates `indicatif` from 0.17.11 to 0.18.0 - [Release notes](https://github.com/console-rs/indicatif/releases) - [Commits](console-rs/indicatif@0.17.11...0.18.0) Updates `polars` from 0.46.0 to 0.50.0 - [Release notes](https://github.com/pola-rs/polars/releases) - [Commits](pola-rs/polars@rs-0.46.0...rs-0.50.0) Updates `rayon` from 1.10.0 to 1.11.0 - [Changelog](https://github.com/rayon-rs/rayon/blob/main/RELEASES.md) - [Commits](rayon-rs/rayon@rayon-core-v1.10.0...rayon-core-v1.11.0) Updates `rusqlite` from 0.34.0 to 0.37.0 - [Release notes](https://github.com/rusqlite/rusqlite/releases) - [Changelog](https://github.com/rusqlite/rusqlite/blob/master/Changelog.md) - [Commits](rusqlite/rusqlite@v0.34.0...v0.37.0) Updates `serde` from 1.0.219 to 1.0.223 - [Release notes](https://github.com/serde-rs/serde/releases) - [Commits](serde-rs/serde@v1.0.219...v1.0.223) Updates `serde_json` from 1.0.141 to 1.0.145 - [Release notes](https://github.com/serde-rs/json/releases) - [Commits](serde-rs/json@v1.0.141...v1.0.145) Updates `thiserror` from 2.0.12 to 2.0.16 - [Release notes](https://github.com/dtolnay/thiserror/releases) - [Commits](dtolnay/thiserror@2.0.12...2.0.16) Updates `tracing-subscriber` from 0.3.19 to 0.3.20 - [Release notes](https://github.com/tokio-rs/tracing/releases) - [Commits](tokio-rs/tracing@tracing-subscriber-0.3.19...tracing-subscriber-0.3.20) Updates `url` from 2.5.4 to 2.5.7 - [Release notes](https://github.com/servo/rust-url/releases) - [Commits](servo/rust-url@v2.5.4...v2.5.7) --- updated-dependencies: - dependency-name: anyhow dependency-version: 1.0.99 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: bzip2 dependency-version: 0.6.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: chrono dependency-version: 0.4.42 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: clap dependency-version: 4.5.47 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: duct dependency-version: 1.1.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: indicatif dependency-version: 0.18.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: polars dependency-version: 0.50.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: rayon dependency-version: 1.11.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: rusqlite dependency-version: 0.37.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: serde dependency-version: 1.0.223 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: serde_json dependency-version: 1.0.145 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: thiserror dependency-version: 2.0.16 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: tracing-subscriber dependency-version: 0.3.20 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: url dependency-version: 2.5.7 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added dependencies Pull requests that update a dependency file rust Pull requests that update Rust code labels Sep 15, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump the dependencies group across 1 directory with 14 updates #130

Bump the dependencies group across 1 directory with 14 updates #130

Uh oh!

dependabot bot commented on behalf of github Sep 15, 2025 •

edited

Loading

Uh oh!

Uh oh!

Bump the dependencies group across 1 directory with 14 updates #130

Are you sure you want to change the base?

Bump the dependencies group across 1 directory with 14 updates #130

Uh oh!

Conversation

dependabot bot commented on behalf of github Sep 15, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

1.0.99

v0.6.0

Highlights

What's Changed

0.4.42

What's Changed

v4.5.47

[4.5.47] - 2025-09-02

Features

Fixes

v4.5.46

[4.5.46] - 2025-08-26

Features

v4.5.45

[4.5.45] - 2025-08-12

Fixes

v4.5.44

[4.5.44] - 2025-08-11

Features

v4.5.43

[4.5.43] - 2025-08-06

Fixes

v4.5.42

[4.5.42] - 2025-07-30

Fixes

[4.5.47] - 2025-09-02

Features

Fixes

[4.5.46] - 2025-08-26

Features

[4.5.45] - 2025-08-12

Fixes

[4.5.44] - 2025-08-11

Features

[4.5.43] - 2025-08-06

Fixes

[4.5.42] - 2025-07-30

Fixes

0.18.0

What's Changed

0.17.12

What's Changed

Rust Polars 0.50.0

🏆 Highlights

🚀 Performance improvements

✨ Enhancements

Release rayon 1.11.0 / rayon-core 1.13.0 (2025-08-12)

0.37.0

What's Changed

0.36.0

What's Changed

0.35.0

What's Changed

v1.0.223

v1.0.222

v1.0.221

v1.0.220

v1.0.145

v1.0.144

v1.0.143

v1.0.142

2.0.16

2.0.15

2.0.14

2.0.13

tracing-subscriber 0.3.20

Impact

Solution

Affected Versions

Recommendations

Migration

Acknowledgments

v2.5.7

dependabot bot commented on behalf of github Sep 15, 2025 •

edited

Loading