Skip to content

build(deps): bump the extractor group with 11 updates#67

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/extractor-e43c640e81
Open

build(deps): bump the extractor group with 11 updates#67
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/extractor-e43c640e81

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Jun 1, 2026
edited
Loading

Bumps the extractor group with 11 updates:

Package From To
log 0.4.28 0.4.30
env_logger 0.11.8 0.11.10
tokio 1.47.1 1.50.0
anyhow 1.0.99 1.0.102
thiserror 2.0.16 2.0.18
ghactions 0.16.5 0.18.4
ghactions-core 0.16.5 0.18.4
ghastoolkit 0.11.5 0.12.2
octocrab 0.44.1 0.48.1
openssl 0.10.78 0.10.80
serde_json 1.0.143 1.0.150

Updates log from 0.4.28 to 0.4.30

Release notes

Sourced from log's releases.

0.4.30

What's Changed

New Contributors

Full Changelog: rust-lang/log@0.4.29...0.4.30

Notable Changes

0.4.29

MSRV

This release increases log's MSRV from 1.61.0 to 1.68.0.

What's Changed

New Contributors

Full Changelog: rust-lang/log@0.4.28...0.4.29

Changelog

Sourced from log's changelog.

[0.4.30] - 2026-05-21

What's Changed

New Contributors

Full Changelog: rust-lang/log@0.4.29...0.4.30

Notable Changes

[0.4.29] - 2025-12-02

What's Changed

New Contributors

Full Changelog: rust-lang/log@0.4.28...0.4.29

Commits
  • 9c55760 Merge pull request #725 from rust-lang/cargo/0.4.30
  • d1acb05 update docs on current MSRV and note latest bump in changelog
  • 5068293 prepare for 0.4.30 release
  • 7ccd873 Merge pull request #724 from rust-lang/feat/net-to-value
  • 923dfaa fix up test cfgs
  • ecb7de8 gate net value impls on std
  • 67bb4f6 run fmt
  • 25f49fe rework net type capturing
  • 7087dcb feat: impl ToValue for core::net types
  • 67bc7e3 Merge pull request #723 from woodruffw-forks/ww/ci
  • Additional commits viewable in compare view

Updates env_logger from 0.11.8 to 0.11.10

Release notes

Sourced from env_logger's releases.

v0.11.10

[0.11.10] - 2026-03-23

Internal

  • Update dependencies

v0.11.9

[0.11.9] - 2026-02-11

Changelog

Sourced from env_logger's changelog.

[0.11.10] - 2026-03-23

Internal

  • Update dependencies

[0.11.9] - 2026-02-11

Commits
  • 41320bf chore: Release
  • de8c74f docs: Update changelog
  • d550741 docs(gh): Add sponsor link
  • 458b075 chore(deps): Update Rust Stable to v1.94 (#401)
  • 8bc3fc3 Merge pull request #400 from epage/update
  • 143fa64 chore: Upgrade incompatible
  • b687a24 chore: Upgrade compatible
  • 8cf1ba9 Merge pull request #397 from rust-cli/renovate/crate-ci-typos-1.x
  • 094ecf7 Merge pull request #396 from rust-cli/renovate/crate-ci-committed-1.x
  • 34ad626 chore(deps): Update pre-commit hook crate-ci/typos to v1.44.0
  • Additional commits viewable in compare view

Updates tokio from 1.47.1 to 1.50.0

Release notes

Sourced from tokio's releases.

Tokio v1.50.0

1.50.0 (Mar 3rd, 2026)

Added

  • net: add TcpStream::set_zero_linger (#7837)
  • rt: add is_rt_shutdown_err (#7771)

Changed

  • io: add optimizer hint that memchr returns in-bounds pointer (#7792)
  • io: implement vectored writes for write_buf (#7871)
  • runtime: panic when event_interval is set to 0 (#7838)
  • runtime: shorten default thread name to fit in Linux limit (#7880)
  • signal: remember the result of SetConsoleCtrlHandler (#7833)
  • signal: specialize windows Registry (#7885)

Fixed

  • io: always cleanup AsyncFd registration list on deregister (#7773)
  • macros: remove (most) local use declarations in tokio::select! (#7929)
  • net: fix GET_BUF_SIZE constant for target_os = "android" (#7889)
  • runtime: avoid redundant unpark in current_thread scheduler (#7834)
  • runtime: don't park in current_thread if before_park defers waker (#7835)
  • io: fix write readiness on ESP32 on short writes (#7872)
  • runtime: wake deferred tasks before entering block_in_place (#7879)
  • sync: drop rx waker when oneshot receiver is dropped (#7886)
  • runtime: fix double increment of num_idle_threads on shutdown (#7910, #7918, #7922)

Unstable

  • fs: check for io-uring opcode support (#7815)
  • runtime: avoid lock acquisition after uring init (#7850)

Documented

  • docs: update outdated unstable features section (#7839)
  • io: clarify the behavior of AsyncWriteExt::shutdown() (#7908)
  • io: explain how to flush stdout/stderr (#7904)
  • io: fix incorrect and confusing AsyncWrite documentation (#7875)
  • rt: clarify the documentation of Runtime::spawn (#7803)
  • rt: fix missing quotation in docs (#7925)
  • runtime: correct the default thread name in docs (#7896)
  • runtime: fix event_interval doc (#7932)
  • sync: clarify RwLock fairness documentation (#7919)
  • sync: clarify that recv returns None once closed and no more messages (#7920)
  • task: clarify when to use spawn_blocking vs dedicated threads (#7923)
  • task: doc that task drops before JoinHandle completion (#7825)
  • signal: guarantee that listeners never return None (#7869)
  • task: fix task module feature flags in docs (#7891)

... (truncated)

Commits

Updates anyhow from 1.0.99 to 1.0.102

Release notes

Sourced from anyhow's releases.

1.0.102

1.0.101

1.0.100

  • Teach clippy to lint formatting arguments in bail!, ensure!, anyhow! (#426)
Commits
  • 5c657b3 Release 1.0.102
  • e737fb6 Merge pull request #442 from dtolnay/backtrace
  • 7fe62b5 Further simply backtrace conditional compilation
  • c8cb5ca Merge pull request #441 from dtolnay/backtrace
  • de27df7 Delete CI use of --features=backtrace
  • 9b67e5d Merge pull request #440 from dtolnay/backtrace
  • efdb11a Simplify std_backtrace conditional code
  • b8a9a70 Merge pull request #439 from dtolnay/backtrace
  • a42fc2c Remove feature = "backtrace" conditional code
  • 2a2a3ce Re-word backtrace feature comment
  • Additional commits viewable in compare view

Updates thiserror from 2.0.16 to 2.0.18

Release notes

Sourced from thiserror's releases.

2.0.18

2.0.17

  • Use differently named __private module per patch release (#434)
Commits
  • dc0f6a2 Release 2.0.18
  • 0275292 Touch up PR 443
  • 3c33bc6 Merge pull request #443 from LucaCappelletti94/master
  • 995939c Reproduce issue 442
  • 21653d1 Made clippy lifetime allows conditional
  • 45e5388 Update actions/upload-artifact@v5 -> v6
  • 386aac1 Update actions/upload-artifact@v4 -> v5
  • ec50561 Update actions/checkout@v5 -> v6
  • 247eab5 Update name of empty_enum clippy lint
  • 91b181f Raise required compiler to Rust 1.68
  • Additional commits viewable in compare view

Updates ghactions from 0.16.5 to 0.18.4

Release notes

Sourced from ghactions's releases.

v0.18.4

What's Changed

Full Changelog: 42ByteLabs/ghactions@0.18.3...0.18.4

v0.18.3

What's Changed

Full Changelog: 42ByteLabs/ghactions@0.18.2...0.18.3

v0.18.2

What's Changed

Full Changelog: 42ByteLabs/ghactions@0.18.1...0.18.2

v0.18.1

What's Changed

Full Changelog: 42ByteLabs/ghactions@0.18.0...0.18.1

v0.18.0

What's Changed

Full Changelog: 42ByteLabs/ghactions@0.17.0...0.18.0

v0.17.0

What's Changed

... (truncated)

Commits
  • 23bdd42 Merge pull request #243 from 42ByteLabs/v0_18_4
  • ab76f5f feat(version): v0.18.4
  • 90cc06b Merge pull request #242 from 42ByteLabs/dependabot/github_actions/production-...
  • 58d57a7 Merge branch 'main' into dependabot/github_actions/production-dependencies-76...
  • f15a9d3 Merge pull request #241 from 42ByteLabs/dependabot/cargo/production-dependenc...
  • c776b78 build(deps): bump actions/checkout in the production-dependencies group
  • 696a86a build(deps): bump the production-dependencies group with 4 updates
  • fd317ba Merge pull request #240 from 42ByteLabs/dependabot/cargo/production-dependenc...
  • e8ee979 build(deps): bump the production-dependencies group across 1 directory with 3...
  • e944b17 Merge pull request #238 from 42ByteLabs/v0_18_3
  • Additional commits viewable in compare view

Updates ghactions-core from 0.16.5 to 0.18.4

Release notes

Sourced from ghactions-core's releases.

v0.18.4

What's Changed

Full Changelog: 42ByteLabs/ghactions@0.18.3...0.18.4

v0.18.3

What's Changed

Full Changelog: 42ByteLabs/ghactions@0.18.2...0.18.3

v0.18.2

What's Changed

Full Changelog: 42ByteLabs/ghactions@0.18.1...0.18.2

v0.18.1

What's Changed

Full Changelog: 42ByteLabs/ghactions@0.18.0...0.18.1

v0.18.0

What's Changed

Full Changelog: 42ByteLabs/ghactions@0.17.0...0.18.0

v0.17.0

What's Changed

... (truncated)

Commits
  • 23bdd42 Merge pull request #243 from 42ByteLabs/v0_18_4
  • ab76f5f feat(version): v0.18.4
  • 90cc06b Merge pull request #242 from 42ByteLabs/dependabot/github_actions/production-...
  • 58d57a7 Merge branch 'main' into dependabot/github_actions/production-dependencies-76...
  • f15a9d3 Merge pull request #241 from 42ByteLabs/dependabot/cargo/production-dependenc...
  • c776b78 build(deps): bump actions/checkout in the production-dependencies group
  • 696a86a build(deps): bump the production-dependencies group with 4 updates
  • fd317ba Merge pull request #240 from 42ByteLabs/dependabot/cargo/production-dependenc...
  • e8ee979 build(deps): bump the production-dependencies group across 1 directory with 3...
  • e944b17 Merge pull request #238 from 42ByteLabs/v0_18_3
  • Additional commits viewable in compare view

Updates ghastoolkit from 0.11.5 to 0.12.2

Release notes

Sourced from ghastoolkit's releases.

v0.12.2

What's Changed

Full Changelog: GeekMasher/ghastoolkit-rs@0.12.1...0.12.2

v0.12.1

What's Changed

Full Changelog: GeekMasher/ghastoolkit-rs@0.12.0...0.12.1

v0.12.0

What's Changed

Full Changelog: GeekMasher/ghastoolkit-rs@0.11.5...0.12.0

Commits
  • 0348552 Merge pull request #96 from GeekMasher/v0_12_2
  • b24f08e feat(version): v0.12.2
  • f132ce5 Merge pull request #95 from GeekMasher/dependabot/cargo/production-dependenci...
  • 211a717 build(deps): bump the production-dependencies group with 2 updates
  • ec3c1bd Merge pull request #94 from GeekMasher/v0_12_1
  • 5a00a1a feat(version): v0.12.1
  • 9f070ba Merge pull request #93 from GeekMasher/dependabot/cargo/production-dependenci...
  • d202f54 build(deps): update octocrab requirement
  • f990266 Merge pull request #92 from GeekMasher/v0_12_0
  • 8939283 fix(cargo): Update CLI dep
  • Additional commits viewable in compare view

Updates octocrab from 0.44.1 to 0.48.1

Release notes

Sourced from octocrab's releases.

v0.48.1

Fixed

  • (build) don't fetch dependencies (#828)

v0.48.0

Added

  • fetch contributor repository permission (#825)
  • [breaking] Use Option<AuthorAssociation> over String in Issue struct (#822)

Other

  • add missing issue event types (#821)
  • Remove fields deleted in October 2025 API changes (#826)
  • Bump jsonwebtoken to v10 (#814)
  • Feature/set http headers #808 (#819)

v0.47.1

Added

  • add missing list workflows filters (#820)

Other

  • Modify _put method documentation (#818)
  • Feature/interactions 537 (#817)
  • Added Feature/classrooms #524 (#815)

v0.47.0

Added

  • add immutable Release field (#806)

Other

  • added creating a review (POST "/repos/{owner}/{repo}/pulls/{pull_number}/reviews") (#805)

v0.46.0

Fixed

  • [breaking] make CommitAuthor email nullable (#799)

Other

  • Expose digest field in Asset model (#804)
  • cargo clippy (#803)
  • fix doc url for ProjectHandler (#802)

v0.45.0

... (truncated)

Changelog

Sourced from octocrab's changelog.

0.48.1 - 2025-12-02

Fixed

  • (build) don't fetch dependencies (#828)

0.48.0 - 2025-11-18

Added

  • fetch contributor repository permission (#825)
  • [breaking] Use Option<AuthorAssociation> over String in Issue struct (#822)

Other

  • add missing issue event types (#821)
  • Remove fields deleted in October 2025 API changes (#826)
  • Bump jsonwebtoken to v10 (#814)
  • Feature/set http headers #808 (#819)

0.47.1 - 2025-11-03

Added

  • add missing list workflows filters (#820)

Other

  • Modify _put method documentation (#818)
  • Feature/interactions 537 (#817)
  • Added Feature/classrooms #524 (#815)

0.47.0 - 2025-10-06

Added

  • add immutable Release field (#806)

Other

  • added creating a review (POST "/repos/{owner}/{repo}/pulls/{pull_number}/reviews") (#805)

0.46.0 - 2025-09-28

Fixed

  • [breaking] make CommitAuthor email nullable (#799)

Other

... (truncated)

Commits

Updates openssl from 0.10.78 to 0.10.80

Release notes

Sourced from openssl's releases.

openssl-v0.10.80

What's Changed

Full Changelog: rust-openssl/rust-openssl@openssl-v0.10.79...openssl-v0.10.80

openssl-v0.10.79

What's Changed

Full Changelog: rust-openssl/rust-openssl@openssl-v0.10.78...openssl-v0.10.79

Commits
  • 35be7ae Release openssl 0.10.80 and openssl-sys 0.9.116 (#2639)
  • 19eceb2 Fix output buffer overflow in cipher_update_inplace for AES key-wrap-with-pad...
  • b460eb3 Prefer Homebrew openssl@4 and stop looking for openssl@1.1 (#2633)
  • 649f2d9 Release openssl 0.10.79 and openssl-sys 0.9.115 (#2632)
  • 257f9b2 Fix output buffer overflow for AES key-wrap-with-padding ciphers (#2630)
  • d43e917 Reject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders (#2631)
  • f46519c Add PkeyCtxRef::set_context_string for ML-DSA (#2629)
  • ad9ae31 Bind OSSL_PARAM_modified and use it for seed_into (#2628)
  • 4e25c9b Fix process abort when verify/PSK callbacks fire after SSL_CTX swap (#2624)
  • 3dd8f42 Add PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction (#2626)
  • Additional commits viewable in compare view

Updates serde_json ...

Description has been truncated

@dependabot
build(deps): bump the extractor group with 11 updates
5fe6872 
Bumps the extractor group with 11 updates:

| Package | From | To |
| --- | --- | --- |
| [log](https://github.com/rust-lang/log) | `0.4.28` | `0.4.30` |
| [env_logger](https://github.com/rust-cli/env_logger) | `0.11.8` | `0.11.10` |
| [tokio](https://github.com/tokio-rs/tokio) | `1.47.1` | `1.50.0` |
| [anyhow](https://github.com/dtolnay/anyhow) | `1.0.99` | `1.0.102` |
| [thiserror](https://github.com/dtolnay/thiserror) | `2.0.16` | `2.0.18` |
| [ghactions](https://github.com/42ByteLabs/ghactions) | `0.16.5` | `0.18.4` |
| [ghactions-core](https://github.com/42ByteLabs/ghactions) | `0.16.5` | `0.18.4` |
| [ghastoolkit](https://github.com/GeekMasher/ghastoolkit-rs) | `0.11.5` | `0.12.2` |
| [octocrab](https://github.com/XAMPPRocky/octocrab) | `0.44.1` | `0.48.1` |
| [openssl](https://github.com/rust-openssl/rust-openssl) | `0.10.78` | `0.10.80` |
| [serde_json](https://github.com/serde-rs/json) | `1.0.143` | `1.0.150` |


Updates `log` from 0.4.28 to 0.4.30
- [Release notes](https://github.com/rust-lang/log/releases)
- [Changelog](https://github.com/rust-lang/log/blob/master/CHANGELOG.md)
- [Commits](rust-lang/log@0.4.28...0.4.30)

Updates `env_logger` from 0.11.8 to 0.11.10
- [Release notes](https://github.com/rust-cli/env_logger/releases)
- [Changelog](https://github.com/rust-cli/env_logger/blob/main/CHANGELOG.md)
- [Commits](rust-cli/env_logger@v0.11.8...v0.11.10)

Updates `tokio` from 1.47.1 to 1.50.0
- [Release notes](https://github.com/tokio-rs/tokio/releases)
- [Commits](tokio-rs/tokio@tokio-1.47.1...tokio-1.50.0)

Updates `anyhow` from 1.0.99 to 1.0.102
- [Release notes](https://github.com/dtolnay/anyhow/releases)
- [Commits](dtolnay/anyhow@1.0.99...1.0.102)

Updates `thiserror` from 2.0.16 to 2.0.18
- [Release notes](https://github.com/dtolnay/thiserror/releases)
- [Commits](dtolnay/thiserror@2.0.16...2.0.18)

Updates `ghactions` from 0.16.5 to 0.18.4
- [Release notes](https://github.com/42ByteLabs/ghactions/releases)
- [Commits](42ByteLabs/ghactions@0.16.5...0.18.4)

Updates `ghactions-core` from 0.16.5 to 0.18.4
- [Release notes](https://github.com/42ByteLabs/ghactions/releases)
- [Commits](42ByteLabs/ghactions@0.16.5...0.18.4)

Updates `ghastoolkit` from 0.11.5 to 0.12.2
- [Release notes](https://github.com/GeekMasher/ghastoolkit-rs/releases)
- [Commits](GeekMasher/ghastoolkit-rs@0.11.5...0.12.2)

Updates `octocrab` from 0.44.1 to 0.48.1
- [Release notes](https://github.com/XAMPPRocky/octocrab/releases)
- [Changelog](https://github.com/XAMPPRocky/octocrab/blob/main/CHANGELOG.md)
- [Commits](XAMPPRocky/octocrab@v0.44.1...v0.48.1)

Updates `openssl` from 0.10.78 to 0.10.80
- [Release notes](https://github.com/rust-openssl/rust-openssl/releases)
- [Commits](rust-openssl/rust-openssl@openssl-v0.10.78...openssl-v0.10.80)

Updates `serde_json` from 1.0.143 to 1.0.150
- [Release notes](https://github.com/serde-rs/json/releases)
- [Commits](serde-rs/json@v1.0.143...v1.0.150)

---
updated-dependencies:
- dependency-name: log
  dependency-version: 0.4.30
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: extractor
- dependency-name: env_logger
  dependency-version: 0.11.10
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: extractor
- dependency-name: tokio
  dependency-version: 1.50.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: extractor
- dependency-name: anyhow
  dependency-version: 1.0.102
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: extractor
- dependency-name: thiserror
  dependency-version: 2.0.18
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: extractor
- dependency-name: ghactions
  dependency-version: 0.18.4
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: extractor
- dependency-name: ghactions-core
  dependency-version: 0.18.4
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: extractor
- dependency-name: ghastoolkit
  dependency-version: 0.12.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: extractor
- dependency-name: octocrab
  dependency-version: 0.48.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: extractor
- dependency-name: openssl
  dependency-version: 0.10.80
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: extractor
- dependency-name: serde_json
  dependency-version: 1.0.150
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: extractor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Jun 1, 2026
@dependabot dependabot Bot requested a review from a team as a code owner June 1, 2026 16:17
@dependabot dependabot Bot added the rust Pull requests that update rust code label Jun 1, 2026
@dependabot dependabot Bot requested review from adrienpessu and felickz June 1, 2026 16:17
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Jun 1, 2026
@github-actions
Copy link
Copy Markdown

github-actions Bot commented Jun 1, 2026

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@felickz felickz Awaiting requested review from felickz felickz is a code owner automatically assigned from advanced-security/oss-maintainers

@adrienpessu adrienpessu Awaiting requested review from adrienpessu adrienpessu is a code owner automatically assigned from advanced-security/oss-maintainers

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update rust code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants