From 64ddf4778385882aac3c125631330e75251b6ee1 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 16 May 2024 10:33:37 +0800
Subject: [PATCH] build(deps): bump zip from 1.2.1 to 1.2.3 in /userspace/ksud
(#1728)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Bumps [zip](https://github.com/zip-rs/zip2) from 1.2.1 to 1.2.3.
Release notes
Sourced from zip's
releases.
v1.2.3
🐛 Bug Fixes
- Remove a window when an extracted directory might be unexpectedly
listable and/or
cdable by non-owners
- Extract directory contents on Unix even if the directory doesn't
have write permission (zip-rs/zip-old#423)
⚙️ Miscellaneous Tasks
- More conditionally-unused imports
v1.2.2
🐛 Bug Fixes
- Failed to clear "writing_raw" before finishing a symlink,
leading to dropped extra fields
⚡ Performance
- Use boxed slice for archive comment, since it can't be
concatenated
- Optimize for the fact that false signatures can't overlap with real
ones
Changelog
Sourced from zip's
changelog.
1.2.3
- 2024-05-10
🐛 Bug Fixes
- Remove a window when an extracted directory might be unexpectedly
listable and/or
cdable by non-owners
- Extract directory contents on Unix even if the directory doesn't
have write permission (zip-rs/zip-old#423)
⚙️ Miscellaneous Tasks
- More conditionally-unused imports
1.2.2
- 2024-05-09
🐛 Bug Fixes
- Failed to clear "writing_raw" before finishing a symlink,
leading to dropped extra fields
⚡ Performance
- Use boxed slice for archive comment, since it can't be
concatenated
- Optimize for the fact that false signatures can't overlap with real
ones
Commits
adb40b8
Merge pull request #118 from
zip-rs/release-plz-2024-05-10T23-54-42Z3d7852a
chore: releasea385aaf
doc: Important correction: consuming package has to target
Unix, e.g. this ...4a5d28e
doc: Important correction: contents might not have been extracted at
allba4c693
doc: Important clarification: "any user" -> "any
non-root user"c28614a
doc: Document the guarantee provided by
137672cb29a264412211cc20b78f540308a221d3137672c
fix: Remove a window when an extracted directory might be unexpectedly
listab...c0691ec
Improve copyright warning123fb7b
doc: Improve copyright warning2198653
Add issue templates- Additional commits viewable in compare
view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
userspace/ksud/Cargo.lock | 63 ++-------------------------------------
1 file changed, 3 insertions(+), 60 deletions(-)
diff --git a/userspace/ksud/Cargo.lock b/userspace/ksud/Cargo.lock
index 407c9884..6dbee512 100644
--- a/userspace/ksud/Cargo.lock
+++ b/userspace/ksud/Cargo.lock
@@ -877,7 +877,7 @@ dependencies = [
"sha256",
"tempdir",
"which",
- "zip 1.2.1",
+ "zip 1.2.3",
"zip-extensions",
]
@@ -996,27 +996,6 @@ dependencies = [
"autocfg",
]
-[[package]]
-name = "num_enum"
-version = "0.7.2"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "02339744ee7253741199f897151b38e72257d13802d4ee837285cc2990a90845"
-dependencies = [
- "num_enum_derive",
-]
-
-[[package]]
-name = "num_enum_derive"
-version = "0.7.2"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "681030a937600a36906c185595136d26abfebb4aa9c65701cefcaf8578bb982b"
-dependencies = [
- "proc-macro-crate",
- "proc-macro2",
- "quote",
- "syn 2.0.58",
-]
-
[[package]]
name = "object"
version = "0.32.2"
@@ -1079,15 +1058,6 @@ version = "0.2.17"
source = "registry+https://github.com/rust-lang/crates.io-index"
checksum = "5b40af805b3121feab8a3c29f04d8ad262fa8e0561883e7653e024ae4479e6de"
-[[package]]
-name = "proc-macro-crate"
-version = "3.1.0"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "6d37c51ca738a55da99dc0c4a34860fd675453b8b36209178c2249bb13651284"
-dependencies = [
- "toml_edit",
-]
-
[[package]]
name = "proc-macro-hack"
version = "0.5.20+deprecated"
@@ -1521,23 +1491,6 @@ dependencies = [
"pin-project-lite",
]
-[[package]]
-name = "toml_datetime"
-version = "0.6.5"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "3550f4e9685620ac18a50ed434eb3aec30db8ba93b0287467bca5826ea25baf1"
-
-[[package]]
-name = "toml_edit"
-version = "0.21.1"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "6a8534fd7f78b5405e860340ad6575217ce99f38d4d5c8f2442cb5ecb50090e1"
-dependencies = [
- "indexmap",
- "toml_datetime",
- "winnow",
-]
-
[[package]]
name = "typenum"
version = "1.17.0"
@@ -1762,15 +1715,6 @@ version = "0.52.4"
source = "registry+https://github.com/rust-lang/crates.io-index"
checksum = "32b752e52a2da0ddfbdbcc6fceadfeede4c939ed16d13e648833a61dfb611ed8"
-[[package]]
-name = "winnow"
-version = "0.5.40"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "f593a95398737aeed53e489c785df13f3618e41dbcd6718c6addbf1395aa6876"
-dependencies = [
- "memchr",
-]
-
[[package]]
name = "winsafe"
version = "0.0.19"
@@ -1799,9 +1743,9 @@ dependencies = [
[[package]]
name = "zip"
-version = "1.2.1"
+version = "1.2.3"
source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "006d078b7b6fc587bb25e022ad39e7086f44e5c4fef6076964ea601533241beb"
+checksum = "c700ea425e148de30c29c580c1f9508b93ca57ad31c9f4e96b83c194c37a7a8f"
dependencies = [
"arbitrary",
"bzip2",
@@ -1811,7 +1755,6 @@ dependencies = [
"displaydoc",
"flate2",
"indexmap",
- "num_enum",
"thiserror",
"time",
"zstd 0.13.1",