Bumps [android_logger](https://github.com/rust-mobile/android_logger-rs)
from 0.13.3 to 0.14.1.
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/rust-mobile/android_logger-rs/commits/0.14.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [zip](https://github.com/zip-rs/zip2) from 2.1.2 to 2.1.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/zip-rs/zip2/releases">zip's
releases</a>.</em></p>
<blockquote>
<h2>v2.1.3</h2>
<h3><!-- raw HTML omitted -->🐛 Bug Fixes</h3>
<ul>
<li>Some date/time filters were previously unreliable (i.e. later-pass
filters had no earliest-pass or latest-fail, and vice-versa)</li>
<li>Decode Zip-Info UTF8 name and comment fields (<a
href="https://redirect.github.com/zip-rs/zip2/pull/159">#159</a>)</li>
</ul>
<h3><!-- raw HTML omitted -->🚜 Refactor</h3>
<ul>
<li>Return extended timestamp fields copied rather than borrowed (<a
href="https://redirect.github.com/zip-rs/zip2/pull/183">#183</a>)</li>
</ul>
<h3><!-- raw HTML omitted -->⚙️ Miscellaneous Tasks</h3>
<ul>
<li>Fix a new Clippy warning</li>
<li>Fix a bug and inline <code>deserialize</code> for safety</li>
<li>Add check for wrong-length blocks, and incorporate fixed-size
requirement into the trait name</li>
<li>Fix a fuzz failure by using checked_sub</li>
<li>Add feature gate for new unit test</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/zip-rs/zip2/blob/master/CHANGELOG.md">zip's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://github.com/zip-rs/zip2/compare/v2.1.2...v2.1.3">2.1.3</a>
- 2024-06-04</h2>
<h3><!-- raw HTML omitted -->🐛 Bug Fixes</h3>
<ul>
<li>Some date/time filters were previously unreliable (i.e. later-pass
filters had no earliest-pass or latest-fail, and vice-versa)</li>
<li>Decode Zip-Info UTF8 name and comment fields (<a
href="https://redirect.github.com/zip-rs/zip2/pull/159">#159</a>)</li>
</ul>
<h3><!-- raw HTML omitted -->🚜 Refactor</h3>
<ul>
<li>Return extended timestamp fields copied rather than borrowed (<a
href="https://redirect.github.com/zip-rs/zip2/pull/183">#183</a>)</li>
</ul>
<h3><!-- raw HTML omitted -->⚙️ Miscellaneous Tasks</h3>
<ul>
<li>Fix a new Clippy warning</li>
<li>Fix a bug and inline <code>deserialize</code> for safety</li>
<li>Add check for wrong-length blocks, and incorporate fixed-size
requirement into the trait name</li>
<li>Fix a fuzz failure by using checked_sub</li>
<li>Add feature gate for new unit test</li>
</ul>
<h2><a
href="https://github.com/zip-rs/zip2/compare/v2.1.0...v2.1.1">2.1.1</a>
- 2024-05-28</h2>
<h3><!-- raw HTML omitted -->🐛 Bug Fixes</h3>
<ul>
<li>Derive <code>Debug</code> for <code>ZipWriter</code></li>
<li>lower default version to 4.5 and use the version-needed-to-extract
where feasible.</li>
</ul>
<h3><!-- raw HTML omitted -->🚜 Refactor</h3>
<ul>
<li>use a MIN_VERSION constant</li>
</ul>
<h3><!-- raw HTML omitted -->⚙️ Miscellaneous Tasks</h3>
<ul>
<li>Bug fixes for debug implementation</li>
<li>Bug fixes for debug implementation</li>
<li>Update unit tests</li>
<li>Remove unused import</li>
</ul>
<h2><a
href="https://github.com/zip-rs/zip2/compare/v2.0.0...v2.1.0">2.1.0</a>
- 2024-05-25</h2>
<h3><!-- raw HTML omitted -->🚀 Features</h3>
<ul>
<li>Support mutual conversion between <code>DateTime</code> and MS-DOS
pair</li>
</ul>
<h3><!-- raw HTML omitted -->🐛 Bug Fixes</h3>
<ul>
<li>version-needed-to-extract was incorrect in central header, and
version-made-by could be lower than that (<a
href="https://redirect.github.com/zip-rs/zip2/pull/100">#100</a>)</li>
<li>version-needed-to-extract was incorrect in central header, and
version-made-by could be lower than that (<a
href="https://redirect.github.com/zip-rs/zip2/pull/100">#100</a>)</li>
</ul>
<h3><!-- raw HTML omitted -->⚙️ Miscellaneous Tasks</h3>
<ul>
<li>Another tweak to ensure <code>version_needed</code> is applied</li>
<li>Tweaks to make <code>version_needed</code> and
<code>version_made_by</code> work with recently-merged changes</li>
</ul>
<h2><a
href="https://github.com/zip-rs/zip2/compare/v1.3.1...v2.0.0">2.0.0</a>
- 2024-05-24</h2>
<h3><!-- raw HTML omitted -->🚀 Features</h3>
<ul>
<li>Add <code>fmt::Display</code> for <code>DateTime</code></li>
<li>Implement more traits for <code>DateTime</code></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="b5eb25d52f"><code>b5eb25d</code></a>
Merge pull request <a
href="https://redirect.github.com/zip-rs/zip2/issues/188">#188</a> from
zip-rs/release-plz-2024-06-04T17-06-20Z</li>
<li><a
href="cb076226f0"><code>cb07622</code></a>
chore: release</li>
<li><a
href="5c77e93616"><code>5c77e93</code></a>
ci(fuzz): Update fuzz_write seed corpus</li>
<li><a
href="0fef68b68f"><code>0fef68b</code></a>
ci(fuzz): Update fuzz_read seed corpus</li>
<li><a
href="fce5e0a2d3"><code>fce5e0a</code></a>
test: Add regression tests for <a
href="https://redirect.github.com/zip-rs/zip2/issues/159">#159</a></li>
<li><a
href="e052842d78"><code>e052842</code></a>
style: cargo fmt --all</li>
<li><a
href="b4970dd80f"><code>b4970dd</code></a>
test: Delete a unit test that's no longer needed</li>
<li><a
href="362a1123b5"><code>362a112</code></a>
ci(fuzz): Limit Zopfli buffer size to fix OOMEs</li>
<li><a
href="b7bec1c2dd"><code>b7bec1c</code></a>
fix: Some date/time filters were previously unreliable (i.e. later-pass
filte...</li>
<li><a
href="cb50ca1213"><code>cb50ca1</code></a>
test: Bug fix? Explicitly type int that may become as large as 3
<< 29</li>
<li>Additional commits viewable in <a
href="https://github.com/zip-rs/zip2/compare/v2.1.2...v2.1.3">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [regex](https://github.com/rust-lang/regex) from 1.10.4 to 1.10.5.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/rust-lang/regex/blob/master/CHANGELOG.md">regex's
changelog</a>.</em></p>
<blockquote>
<h1>1.10.5 (2024-06-09)</h1>
<p>This is a new patch release with some minor fixes.</p>
<p>Bug fixes:</p>
<ul>
<li>[BUG <a
href="https://redirect.github.com/rust-lang/regex/issues/1203">#1203</a>](<a
href="https://redirect.github.com/rust-lang/regex/pull/1203">rust-lang/regex#1203</a>):
Escape invalid UTF-8 when in the <code>Debug</code> impl of
<code>regex::bytes::Match</code>.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="0718fc5acb"><code>0718fc5</code></a>
1.10.5</li>
<li><a
href="377463bd82"><code>377463b</code></a>
changelog: 1.10.4 and 1.10.5</li>
<li><a
href="68c4f0b7b7"><code>68c4f0b</code></a>
regex-automata-0.4.7</li>
<li><a
href="4757b5f01a"><code>4757b5f</code></a>
regex-syntax-0.8.4</li>
<li><a
href="1430b65bae"><code>1430b65</code></a>
changelog: 1.10.4</li>
<li><a
href="1f9f9ccd39"><code>1f9f9cc</code></a>
bytes: escape invalid UTF-8 bytes in debug output for Match</li>
<li><a
href="ab4c8d1f21"><code>ab4c8d1</code></a>
doc: fix duplicate phrasing typo</li>
<li><a
href="ddeb85eaa3"><code>ddeb85e</code></a>
cli/deps: update memmap2 to 0.9</li>
<li><a
href="023f1c9ac1"><code>023f1c9</code></a>
lite: fix attribute warning about rustfmt</li>
<li><a
href="9c139f4fa5"><code>9c139f4</code></a>
syntax: simplify <code>Hir::dot</code> constructors</li>
<li>Additional commits viewable in <a
href="https://github.com/rust-lang/regex/compare/1.10.4...1.10.5">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [clap](https://github.com/clap-rs/clap) from 4.5.4 to 4.5.7.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/clap-rs/clap/releases">clap's
releases</a>.</em></p>
<blockquote>
<h2>v4.5.7</h2>
<h2>[4.5.7] - 2024-06-10</h2>
<h3>Fixes</h3>
<ul>
<li>Clean up error message when too few arguments for
<code>num_args</code></li>
</ul>
<h2>v4.5.6</h2>
<h2>[4.5.6] - 2024-06-06</h2>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/clap-rs/clap/blob/master/CHANGELOG.md">clap's
changelog</a>.</em></p>
<blockquote>
<h2>[4.5.7] - 2024-06-10</h2>
<h3>Fixes</h3>
<ul>
<li>Clean up error message when too few arguments for
<code>num_args</code></li>
</ul>
<h2>[4.5.6] - 2024-06-06</h2>
<h2>[4.5.5] - 2024-06-06</h2>
<h3>Fixes</h3>
<ul>
<li>Allow <code>exclusive</code> to override
<code>required_unless_present</code>,
<code>required_unless_present_any</code>,
<code>required_unless_present_all</code></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="6c6839a454"><code>6c6839a</code></a>
chore: Release</li>
<li><a
href="e79ff0d42b"><code>e79ff0d</code></a>
docs: Update changelog</li>
<li><a
href="be2e5ca91e"><code>be2e5ca</code></a>
Merge pull request <a
href="https://redirect.github.com/clap-rs/clap/issues/5527">#5527</a>
from epage/min</li>
<li><a
href="cf5c95862e"><code>cf5c958</code></a>
fix(parser): Report correct num_args on too-few</li>
<li><a
href="e0c9619c27"><code>e0c9619</code></a>
test(parser): Snapshot num_args errors</li>
<li><a
href="2f645d3e81"><code>2f645d3</code></a>
chore: Release</li>
<li><a
href="6e1e0368f9"><code>6e1e036</code></a>
docs: Update changelog</li>
<li><a
href="7e1bbf82af"><code>7e1bbf8</code></a>
Merge pull request <a
href="https://redirect.github.com/clap-rs/clap/issues/5523">#5523</a>
from ben--/zsh-colon</li>
<li><a
href="8e3c273b61"><code>8e3c273</code></a>
fix(zsh): Separate options from _arguments options</li>
<li>See full diff in <a
href="https://github.com/clap-rs/clap/compare/clap_complete-v4.5.4...v4.5.7">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps
[zip-extensions](https://github.com/matzefriedrich/zip-extensions-rs)
from 0.6.2 to 0.7.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/matzefriedrich/zip-extensions-rs/releases">zip-extensions's
releases</a>.</em></p>
<blockquote>
<h2>v0.7.0</h2>
<h2>Changes</h2>
<ul>
<li>The <code>create_from_directory_with_options</code> method now
supports per-item file options. This introduces a breaking change:
instead of passing <code>FileOptions</code> directly, an <code>Fn</code>
must be specified that will be called for each file and must return a
<code>FileOptions</code> value.</li>
<li>Upgraded the zip dependency to version 0.6.6.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/matzefriedrich/zip-extensions-rs/blob/master/CHANGELOG.md">zip-extensions's
changelog</a>.</em></p>
<blockquote>
<h2>[0.7.0] - 2024-06-01</h2>
<h3>Changed</h3>
<ul>
<li>[PR <a
href="https://redirect.github.com/matzefriedrich/zip-extensions-rs/issues/13">#13</a>]
Adds support for per-item file options by the
<code>create_from_directory_with_options</code> method. This introduces
a breaking change; instead of passing a <code>FileOptions</code>
directly an <code>Fn</code> must be specified that is called for each
file, and must return a <code>FileOptions</code> value.</li>
<li>Upgraded the zip dependency to version 0.6.6.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="b5858a69e5"><code>b5858a6</code></a>
Adds support for per-item FileOptions (<a
href="https://redirect.github.com/matzefriedrich/zip-extensions-rs/issues/14">#14</a>)</li>
<li>See full diff in <a
href="https://github.com/matzefriedrich/zip-extensions-rs/compare/v0.6.2...v0.7.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [zip](https://github.com/zip-rs/zip2) from 2.1.0 to 2.1.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/zip-rs/zip2/releases">zip's
releases</a>.</em></p>
<blockquote>
<h2>v2.1.2</h2>
<h3><!-- raw HTML omitted -->🐛 Bug Fixes</h3>
<ul>
<li>Derive <code>Debug</code> for <code>ZipWriter</code></li>
<li>lower default version to 4.5 and use the version-needed-to-extract
where feasible.</li>
</ul>
<h3><!-- raw HTML omitted -->🚜 Refactor</h3>
<ul>
<li>use a MIN_VERSION constant</li>
</ul>
<h3><!-- raw HTML omitted -->⚙️ Miscellaneous Tasks</h3>
<ul>
<li>Bug fixes for debug implementation</li>
<li>Bug fixes for debug implementation</li>
<li>Update unit tests</li>
<li>Remove unused import</li>
</ul>
<h2>v2.1.1</h2>
<h3><!-- raw HTML omitted -->🐛 Bug Fixes</h3>
<ul>
<li>Derive <code>Debug</code> for <code>ZipWriter</code></li>
<li>lower default version to 4.5 and use the version-needed-to-extract
where feasible.</li>
</ul>
<h3><!-- raw HTML omitted -->🚜 Refactor</h3>
<ul>
<li>use a MIN_VERSION constant</li>
</ul>
<h3><!-- raw HTML omitted -->⚙️ Miscellaneous Tasks</h3>
<ul>
<li>Bug fixes for debug implementation</li>
<li>Bug fixes for debug implementation</li>
<li>Update unit tests</li>
<li>Remove unused import</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/zip-rs/zip2/blob/master/CHANGELOG.md">zip's
changelog</a>.</em></p>
<blockquote>
<h1>Changelog</h1>
<h2><a
href="https://github.com/zip-rs/zip2/compare/v2.1.0...v2.1.1">2.1.1</a>
- 2024-05-28</h2>
<h3><!-- raw HTML omitted -->🐛 Bug Fixes</h3>
<ul>
<li>Derive <code>Debug</code> for <code>ZipWriter</code></li>
<li>lower default version to 4.5 and use the version-needed-to-extract
where feasible.</li>
</ul>
<h3><!-- raw HTML omitted -->🚜 Refactor</h3>
<ul>
<li>use a MIN_VERSION constant</li>
</ul>
<h3><!-- raw HTML omitted -->⚙️ Miscellaneous Tasks</h3>
<ul>
<li>Bug fixes for debug implementation</li>
<li>Bug fixes for debug implementation</li>
<li>Update unit tests</li>
<li>Remove unused import</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="999d41d438"><code>999d41d</code></a>
feat: Update dependencies</li>
<li><a
href="c74a811680"><code>c74a811</code></a>
ci(fuzz): Update fuzz_read corpus to increase coverage</li>
<li><a
href="6d29c8cc19"><code>6d29c8c</code></a>
ci(fuzz): Update fuzz_read corpus to increase coverage</li>
<li><a
href="9e0966130f"><code>9e09661</code></a>
ci(fuzz): Update fuzz_write corpus to increase coverage</li>
<li><a
href="ae45a26c96"><code>ae45a26</code></a>
ci(fuzz): Increase max_len to 70,000 to let it include overlength
comments</li>
<li><a
href="212dbe757a"><code>212dbe7</code></a>
ci(fuzz): Update fuzz_read corpus to increase coverage</li>
<li><a
href="6539545524"><code>6539545</code></a>
Merge pull request <a
href="https://redirect.github.com/zip-rs/zip2/issues/109">#109</a> from
afranchuk/configure-archive-offset</li>
<li><a
href="17c2d868a3"><code>17c2d86</code></a>
Merge branch 'master' into configure-archive-offset</li>
<li><a
href="74c238042e"><code>74c2380</code></a>
ci(fuzz): Remove len_control override from fuzz_read</li>
<li><a
href="a65d182d98"><code>a65d182</code></a>
Merge branch 'master' into configure-archive-offset</li>
<li>Additional commits viewable in <a
href="https://github.com/zip-rs/zip2/compare/v2.1.0...v2.1.2">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [zip](https://github.com/zip-rs/zip2) from 2.0.0 to 2.1.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/zip-rs/zip2/releases">zip's
releases</a>.</em></p>
<blockquote>
<h2>v2.1.0</h2>
<h3><!-- raw HTML omitted -->🚀 Features</h3>
<ul>
<li>Support mutual conversion between <code>DateTime</code> and MS-DOS
pair</li>
</ul>
<h3><!-- raw HTML omitted -->🐛 Bug Fixes</h3>
<ul>
<li>version-needed-to-extract was incorrect in central header, and
version-made-by could be lower than that (<a
href="https://redirect.github.com/zip-rs/zip2/pull/100">#100</a>)</li>
<li>version-needed-to-extract was incorrect in central header, and
version-made-by could be lower than that (<a
href="https://redirect.github.com/zip-rs/zip2/pull/100">#100</a>)</li>
</ul>
<h3><!-- raw HTML omitted -->⚙️ Miscellaneous Tasks</h3>
<ul>
<li>Another tweak to ensure <code>version_needed</code> is applied</li>
<li>Tweaks to make <code>version_needed</code> and
<code>version_made_by</code> work with recently-merged changes</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/zip-rs/zip2/blob/master/CHANGELOG.md">zip's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://github.com/zip-rs/zip2/compare/v2.0.0...v2.1.0">2.1.0</a>
- 2024-05-25</h2>
<h3><!-- raw HTML omitted -->🚀 Features</h3>
<ul>
<li>Support mutual conversion between <code>DateTime</code> and MS-DOS
pair</li>
</ul>
<h3><!-- raw HTML omitted -->🐛 Bug Fixes</h3>
<ul>
<li>version-needed-to-extract was incorrect in central header, and
version-made-by could be lower than that (<a
href="https://redirect.github.com/zip-rs/zip2/pull/100">#100</a>)</li>
<li>version-needed-to-extract was incorrect in central header, and
version-made-by could be lower than that (<a
href="https://redirect.github.com/zip-rs/zip2/pull/100">#100</a>)</li>
</ul>
<h3><!-- raw HTML omitted -->⚙️ Miscellaneous Tasks</h3>
<ul>
<li>Another tweak to ensure <code>version_needed</code> is applied</li>
<li>Tweaks to make <code>version_needed</code> and
<code>version_made_by</code> work with recently-merged changes</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="6d4e460556"><code>6d4e460</code></a>
Merge pull request <a
href="https://redirect.github.com/zip-rs/zip2/issues/154">#154</a> from
zip-rs/release-plz-2024-05-25T05-11-15Z</li>
<li><a
href="78aca55db5"><code>78aca55</code></a>
chore: release</li>
<li><a
href="699d10da71"><code>699d10d</code></a>
style: cargo fmt --all</li>
<li><a
href="e6b2290f70"><code>e6b2290</code></a>
chore: Another tweak to ensure <code>version_needed</code> is
applied</li>
<li><a
href="92012b9795"><code>92012b9</code></a>
chore: Tweaks to make <code>version_needed</code> and
<code>version_made_by</code> work with recent...</li>
<li><a
href="cda4712153"><code>cda4712</code></a>
fix: version-needed-to-extract was incorrect in central header, and
version-m...</li>
<li><a
href="b057d0dca2"><code>b057d0d</code></a>
Merge pull request <a
href="https://redirect.github.com/zip-rs/zip2/issues/93">#93</a> from
cosmicexplorer/bulk-parsing</li>
<li><a
href="a28b16e69c"><code>a28b16e</code></a>
Apply suggestions from code review</li>
<li><a
href="df70f6a320"><code>df70f6a</code></a>
Fix unmatched bracket due to bad merge</li>
<li><a
href="6b19c877e2"><code>6b19c87</code></a>
Merge branch 'master' into bulk-parsing</li>
<li>Additional commits viewable in <a
href="https://github.com/zip-rs/zip2/compare/v2.0.0...v2.1.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [zip](https://github.com/zip-rs/zip2) from 1.2.3 to 1.3.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/zip-rs/zip2/releases">zip's
releases</a>.</em></p>
<blockquote>
<h2>v1.3.0</h2>
<h3><!-- raw HTML omitted -->🚀 Features</h3>
<ul>
<li>Add <code>is_symlink</code> method</li>
</ul>
<h3><!-- raw HTML omitted -->🐛 Bug Fixes</h3>
<ul>
<li>Extract symlinks into symlinks on Unix and Windows, and fix a bug
that affected making directories writable on MacOS</li>
</ul>
<h3><!-- raw HTML omitted -->🚜 Refactor</h3>
<ul>
<li>Eliminate deprecation warning when <code>--all-features</code>
implicitly enables the deprecated feature</li>
<li>Check if archive contains a symlink's target, without borrowing both
at the same time</li>
<li>Eliminate a clone that's no longer necessary</li>
<li>is_dir only needs to look at the filename</li>
<li>Remove unnecessary #[cfg] attributes</li>
</ul>
<h3><!-- raw HTML omitted -->⚙️ Miscellaneous Tasks</h3>
<ul>
<li>Fix borrow-of-moved-value</li>
<li>Box<!-- raw HTML omitted --> doesn't directly convert to PathBuf, so
convert back to String first</li>
<li>partial revert - only &str has chars(), but Box<!-- raw HTML
omitted --> should auto-deref</li>
<li>contains_key needs a <code>Box<str></code>, so generify
<code>is_dir</code> to accept one</li>
<li>Add missing <code>ZipFileData::is_dir()</code> method</li>
<li>Fix another Windows-specific error</li>
<li>More bug fixes for Windows-specific symlink code</li>
<li>More bug fixes for Windows-specific symlink code</li>
<li>Bug fix: variable name change</li>
<li>Bug fix: need both internal and output path to determine whether to
symlink_dir</li>
<li>Another bug fix</li>
<li>Fix another error-type conversion error</li>
<li>Fix error-type conversion on Windows</li>
<li>Fix conditionally-unused import</li>
<li>Fix continued issues, and factor out the Vec<!-- raw HTML omitted
-->-to-OsString conversion (cc: <a
href="https://redirect.github.com/zip-rs/zip2/pull/125">#125</a>)</li>
<li>Fix CI failure involving conversion to OsString for symlinks (see my
comments on <a
href="https://redirect.github.com/zip-rs/zip2/pull/125">#125</a>)</li>
<li>Move path join into platform-independent code</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/zip-rs/zip2/blob/master/CHANGELOG.md">zip's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://github.com/zip-rs/zip2/compare/v1.2.3...v1.3.0">1.3.0</a>
- 2024-05-17</h2>
<h3><!-- raw HTML omitted -->🚀 Features</h3>
<ul>
<li>Add <code>is_symlink</code> method</li>
</ul>
<h3><!-- raw HTML omitted -->🐛 Bug Fixes</h3>
<ul>
<li>Extract symlinks into symlinks on Unix and Windows, and fix a bug
that affected making directories writable on MacOS</li>
</ul>
<h3><!-- raw HTML omitted -->🚜 Refactor</h3>
<ul>
<li>Eliminate deprecation warning when <code>--all-features</code>
implicitly enables the deprecated feature</li>
<li>Check if archive contains a symlink's target, without borrowing both
at the same time</li>
<li>Eliminate a clone that's no longer necessary</li>
<li>is_dir only needs to look at the filename</li>
<li>Remove unnecessary #[cfg] attributes</li>
</ul>
<h3><!-- raw HTML omitted -->⚙️ Miscellaneous Tasks</h3>
<ul>
<li>Fix borrow-of-moved-value</li>
<li>Box<!-- raw HTML omitted --> doesn't directly convert to PathBuf, so
convert back to String first</li>
<li>partial revert - only &str has chars(), but Box<!-- raw HTML
omitted --> should auto-deref</li>
<li>contains_key needs a <code>Box<str></code>, so generify
<code>is_dir</code> to accept one</li>
<li>Add missing <code>ZipFileData::is_dir()</code> method</li>
<li>Fix another Windows-specific error</li>
<li>More bug fixes for Windows-specific symlink code</li>
<li>More bug fixes for Windows-specific symlink code</li>
<li>Bug fix: variable name change</li>
<li>Bug fix: need both internal and output path to determine whether to
symlink_dir</li>
<li>Another bug fix</li>
<li>Fix another error-type conversion error</li>
<li>Fix error-type conversion on Windows</li>
<li>Fix conditionally-unused import</li>
<li>Fix continued issues, and factor out the Vec<!-- raw HTML omitted
-->-to-OsString conversion (cc: <a
href="https://redirect.github.com/zip-rs/zip2/pull/125">#125</a>)</li>
<li>Fix CI failure involving conversion to OsString for symlinks (see my
comments on <a
href="https://redirect.github.com/zip-rs/zip2/pull/125">#125</a>)</li>
<li>Move path join into platform-independent code</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="102e31113d"><code>102e311</code></a>
Merge pull request <a
href="https://redirect.github.com/zip-rs/zip2/issues/131">#131</a> from
zip-rs/release-plz-2024-05-15T23-52-34Z</li>
<li><a
href="461fb58a02"><code>461fb58</code></a>
chore: release</li>
<li><a
href="a8b2855910"><code>a8b2855</code></a>
ci: Auto-merge PRs from within repo even if I'm the triggering
actor</li>
<li><a
href="6fa4486089"><code>6fa4486</code></a>
Enable attestation of release builds</li>
<li><a
href="3e81fddb78"><code>3e81fdd</code></a>
style: cargo fmt --all</li>
<li><a
href="1cb0e1b3b7"><code>1cb0e1b</code></a>
refactor: Eliminate deprecation warning when <code>--all-features</code>
implicitly enab...</li>
<li><a
href="fbf111ef97"><code>fbf111e</code></a>
style: cargo fmt --all</li>
<li><a
href="3e06f6433a"><code>3e06f64</code></a>
chore: Fix borrow-of-moved-value</li>
<li><a
href="633a6733e6"><code>633a673</code></a>
refactor: Check if archive contains a symlink's target, without
borrowing bot...</li>
<li><a
href="17fee7938a"><code>17fee79</code></a>
refactor: Eliminate a clone that's no longer necessary</li>
<li>Additional commits viewable in <a
href="https://github.com/zip-rs/zip2/compare/v1.2.3...v1.3.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [zip](https://github.com/zip-rs/zip2) from 1.2.1 to 1.2.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/zip-rs/zip2/releases">zip's
releases</a>.</em></p>
<blockquote>
<h2>v1.2.3</h2>
<h3><!-- raw HTML omitted -->🐛 Bug Fixes</h3>
<ul>
<li>Remove a window when an extracted directory might be unexpectedly
listable and/or <code>cd</code>able by non-owners</li>
<li>Extract directory contents on Unix even if the directory doesn't
have write permission (<a
href="https://redirect.github.com/zip-rs/zip-old/issues/423">zip-rs/zip-old#423</a>)</li>
</ul>
<h3><!-- raw HTML omitted -->⚙️ Miscellaneous Tasks</h3>
<ul>
<li>More conditionally-unused imports</li>
</ul>
<h2>v1.2.2</h2>
<h3><!-- raw HTML omitted -->🐛 Bug Fixes</h3>
<ul>
<li>Failed to clear "writing_raw" before finishing a symlink,
leading to dropped extra fields</li>
</ul>
<h3><!-- raw HTML omitted -->⚡ Performance</h3>
<ul>
<li>Use boxed slice for archive comment, since it can't be
concatenated</li>
<li>Optimize for the fact that false signatures can't overlap with real
ones</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/zip-rs/zip2/blob/master/CHANGELOG.md">zip's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://github.com/zip-rs/zip2/compare/v1.2.2...v1.2.3">1.2.3</a>
- 2024-05-10</h2>
<h3><!-- raw HTML omitted -->🐛 Bug Fixes</h3>
<ul>
<li>Remove a window when an extracted directory might be unexpectedly
listable and/or <code>cd</code>able by non-owners</li>
<li>Extract directory contents on Unix even if the directory doesn't
have write permission (<a
href="https://redirect.github.com/zip-rs/zip-old/issues/423">zip-rs/zip-old#423</a>)</li>
</ul>
<h3><!-- raw HTML omitted -->⚙️ Miscellaneous Tasks</h3>
<ul>
<li>More conditionally-unused imports</li>
</ul>
<h2><a
href="https://github.com/zip-rs/zip2/compare/v1.2.1...v1.2.2">1.2.2</a>
- 2024-05-09</h2>
<h3><!-- raw HTML omitted -->🐛 Bug Fixes</h3>
<ul>
<li>Failed to clear "writing_raw" before finishing a symlink,
leading to dropped extra fields</li>
</ul>
<h3><!-- raw HTML omitted -->⚡ Performance</h3>
<ul>
<li>Use boxed slice for archive comment, since it can't be
concatenated</li>
<li>Optimize for the fact that false signatures can't overlap with real
ones</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="adb40b83d2"><code>adb40b8</code></a>
Merge pull request <a
href="https://redirect.github.com/zip-rs/zip2/issues/118">#118</a> from
zip-rs/release-plz-2024-05-10T23-54-42Z</li>
<li><a
href="3d7852a337"><code>3d7852a</code></a>
chore: release</li>
<li><a
href="a385aaf854"><code>a385aaf</code></a>
doc: Important correction: consuming package has to <em>target</em>
Unix, e.g. this ...</li>
<li><a
href="4a5d28ed30"><code>4a5d28e</code></a>
doc: Important correction: contents might not have been extracted at
all</li>
<li><a
href="ba4c6936d5"><code>ba4c693</code></a>
doc: Important clarification: "any user" -> "any
non-root user"</li>
<li><a
href="c28614a0b2"><code>c28614a</code></a>
doc: Document the guarantee provided by
137672cb29a264412211cc20b78f540308a221d3</li>
<li><a
href="137672cb29"><code>137672c</code></a>
fix: Remove a window when an extracted directory might be unexpectedly
listab...</li>
<li><a
href="c0691ec1e5"><code>c0691ec</code></a>
Improve copyright warning</li>
<li><a
href="123fb7b807"><code>123fb7b</code></a>
doc: Improve copyright warning</li>
<li><a
href="2198653882"><code>2198653</code></a>
Add issue templates</li>
<li>Additional commits viewable in <a
href="https://github.com/zip-rs/zip2/compare/v1.2.1...v1.2.3">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [rust-embed](https://github.com/pyros2097/rust-embed) from 8.3.0
to 8.4.0.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/pyrossh/rust-embed/blob/master/changelog.md">rust-embed's
changelog</a>.</em></p>
<blockquote>
<h2>[8.4.0] - 2024-05-11</h2>
<ul>
<li>Re-export RustEmbed as Embed <a
href="https://redirect.github.com/pyrossh/rust-embed/pull/245/files">#245</a>.
Thanks to <a href="https://github.com/pyrossh">pyrossh</a></li>
<li>Do not build glob matchers repeatedly when include-exclude feature
is enabled <a
href="https://redirect.github.com/pyrossh/rust-embed/pull/244/files">#244</a>.
Thanks to <a href="https://github.com/osiewicz">osiewicz</a></li>
<li>Add <code>metadata_only</code> attribute <a
href="https://redirect.github.com/pyrossh/rust-embed/pull/241/files">#241</a>.
Thanks to <a href="https://github.com/ddfisher">ddfisher</a></li>
<li>Replace <code>expect</code> with a safer alternative that returns
<code>None</code> instead <a
href="https://redirect.github.com/pyrossh/rust-embed/pull/240/files">#240</a>.
Thanks to <a href="https://github.com/costinsin">costinsin</a></li>
<li>Eliminate unnecessary <code>to_path</code> call <a
href="https://redirect.github.com/pyrossh/rust-embed/pull/239/files">#239</a>.
Thanks to <a href="https://github.com/smoelius">smoelius</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/pyros2097/rust-embed/commits">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Fixes#1710
What do you think?
* It first uses `TEMP_DIR` (`/debug_ramdisk`) if it exists + is is
empty.
* Otherwise it tries to create a random directory in `/dev`.
* If that fails, it goes through a list of directories (including
`TEMP_DIR_LEGACY`), and chooses the first one that is empty.
* If no empty directory it chooses the first one that exists
---------
Co-authored-by: user <user@localhost>
Bumps [zip](https://github.com/zip-rs/zip2) from 1.1.4 to 1.2.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/zip-rs/zip2/releases">zip's
releases</a>.</em></p>
<blockquote>
<h2>v1.2.1</h2>
<h3><!-- raw HTML omitted -->🐛 Bug Fixes</h3>
<ul>
<li>Prevent panic when trying to read a file with an unsupported
compression method</li>
<li>Prevent panic after reading an invalid LZMA file</li>
<li>Make <code>Stored</code> the default compression method if
<code>Deflated</code> isn't available, so that zip files are readable by
as much software as possible</li>
<li>version_needed was wrong when e.g. cfg(bzip2) but current file
wasn't bzip2 (<a
href="https://redirect.github.com/zip-rs/zip2/pull/100">#100</a>)</li>
<li>file paths shouldn't start with slashes (<a
href="https://redirect.github.com/zip-rs/zip2/pull/102">#102</a>)</li>
</ul>
<h3><!-- raw HTML omitted -->🚜 Refactor</h3>
<ul>
<li>Overhaul <code>impl Arbitrary for FileOptions</code></li>
<li>Remove unused <code>atomic</code> module</li>
</ul>
<h2>v1.2.0</h2>
<h3><!-- raw HTML omitted -->🚀 Features</h3>
<ul>
<li>Add method <code>decompressed_size()</code> so non-recursive ZIP
bombs can be detected</li>
</ul>
<h3><!-- raw HTML omitted -->🚜 Refactor</h3>
<ul>
<li>Make <code>ZipWriter::finish()</code> consume the
<code>ZipWriter</code></li>
</ul>
<h3><!-- raw HTML omitted -->⚙️ Miscellaneous Tasks</h3>
<ul>
<li>Use panic! rather than abort to ensure the fuzz harness can process
the failure</li>
<li>Update fuzz_write to use replace_with</li>
<li>Remove a drop that can no longer be explicit</li>
<li>Add <code>#![allow(unexpected_cfgs)]</code> in nightly</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/zip-rs/zip2/blob/master/CHANGELOG.md">zip's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://github.com/zip-rs/zip2/compare/v1.2.0...v1.2.1">1.2.1</a>
- 2024-05-06</h2>
<h3><!-- raw HTML omitted -->🐛 Bug Fixes</h3>
<ul>
<li>Prevent panic when trying to read a file with an unsupported
compression method</li>
<li>Prevent panic after reading an invalid LZMA file</li>
<li>Make <code>Stored</code> the default compression method if
<code>Deflated</code> isn't available, so that zip files are readable by
as much software as possible</li>
<li>version_needed was wrong when e.g. cfg(bzip2) but current file
wasn't bzip2 (<a
href="https://redirect.github.com/zip-rs/zip2/pull/100">#100</a>)</li>
<li>file paths shouldn't start with slashes (<a
href="https://redirect.github.com/zip-rs/zip2/pull/102">#102</a>)</li>
</ul>
<h3><!-- raw HTML omitted -->🚜 Refactor</h3>
<ul>
<li>Overhaul <code>impl Arbitrary for FileOptions</code></li>
<li>Remove unused <code>atomic</code> module</li>
</ul>
<h2><a
href="https://github.com/zip-rs/zip2/compare/v1.1.4...v1.2.0">1.2.0</a>
- 2024-05-06</h2>
<h3><!-- raw HTML omitted -->🚀 Features</h3>
<ul>
<li>Add method <code>decompressed_size()</code> so non-recursive ZIP
bombs can be detected</li>
</ul>
<h3><!-- raw HTML omitted -->🚜 Refactor</h3>
<ul>
<li>Make <code>ZipWriter::finish()</code> consume the
<code>ZipWriter</code></li>
</ul>
<h3><!-- raw HTML omitted -->⚙️ Miscellaneous Tasks</h3>
<ul>
<li>Use panic! rather than abort to ensure the fuzz harness can process
the failure</li>
<li>Update fuzz_write to use replace_with</li>
<li>Remove a drop that can no longer be explicit</li>
<li>Add <code>#![allow(unexpected_cfgs)]</code> in nightly</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="b725303cce"><code>b725303</code></a>
Merge pull request <a
href="https://redirect.github.com/zip-rs/zip2/issues/103">#103</a> from
zip-rs/release-plz-2024-05-06T17-54-03Z</li>
<li><a
href="a1f239980e"><code>a1f2399</code></a>
chore: release</li>
<li><a
href="f7ab2ae506"><code>f7ab2ae</code></a>
fix: Prevent panic when trying to read a file with an unsupported
compression...</li>
<li><a
href="7f46b77da2"><code>7f46b77</code></a>
ci: Upload leak reports if fuzz fails</li>
<li><a
href="d13031cc14"><code>d13031c</code></a>
fix: Prevent panic after reading an invalid LZMA file</li>
<li><a
href="8868a11d23"><code>8868a11</code></a>
test(fuzz): Fix a fuzz-read bug when finishing LZMA</li>
<li><a
href="b277298d7f"><code>b277298</code></a>
test(fuzz): Fix: need to accept FileNotFound from abort</li>
<li><a
href="162c9b7281"><code>162c9b7</code></a>
test(fuzz): Fix bugs that were breaking the fuzz test</li>
<li><a
href="447f9c6e4f"><code>447f9c6</code></a>
refactor: Overhaul <code>impl Arbitrary for FileOptions</code></li>
<li><a
href="845c3ec91f"><code>845c3ec</code></a>
refactor: Remove unused <code>atomic</code> module</li>
<li>Additional commits viewable in <a
href="https://github.com/zip-rs/zip2/compare/v1.1.4...v1.2.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [zip](https://github.com/zip-rs/zip2) from 1.1.3 to 1.1.4.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/zip-rs/zip2/releases">zip's
releases</a>.</em></p>
<blockquote>
<h2>v1.1.4</h2>
<h3><!-- raw HTML omitted -->🐛 Bug Fixes</h3>
<ul>
<li>Rare bug where find_and_parse would give up prematurely on detecting
a false end-of-CDR header</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/zip-rs/zip2/blob/master/CHANGELOG.md">zip's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://github.com/zip-rs/zip2/compare/v1.1.3...v1.1.4">1.1.4</a>
- 2024-05-04</h2>
<h3><!-- raw HTML omitted -->🐛 Bug Fixes</h3>
<ul>
<li>Build was failing with bzip2 enabled</li>
<li>use is_dir in more places where Windows paths might be handled
incorrectly</li>
</ul>
<h3><!-- raw HTML omitted -->⚡ Performance</h3>
<ul>
<li>Quick filter for paths that contain "/../" or
"/./" or start with "./" or "../"</li>
<li>Fast handling for separator-free paths</li>
<li>Speed up logic if main separator isn't '/'</li>
<li>Drop <code>normalized_components</code> slightly sooner when not
using it</li>
<li>Speed up <code>path_to_string</code> in cases where the path is
already in the proper format</li>
</ul>
<h3><!-- raw HTML omitted -->⚙️ Miscellaneous Tasks</h3>
<ul>
<li>Refactor: can short-circuit handling of paths that start with
MAIN_SEPARATOR, no matter what MAIN_SEPARATOR is</li>
<li>Bug fix: non-canonical path detection when MAIN_SEPARATOR is not
slash or occurs twice in a row</li>
<li>Bug fix: must recreate if . or .. is a path element</li>
<li>Bug fix</li>
</ul>
<h3><!-- raw HTML omitted -->◀️ Revert</h3>
<ul>
<li><a href="https://redirect.github.com/zip-rs/zip2/pull/58">#58</a>
(partial): <code>bzip2-rs</code> can't replace <code>bzip2</code>
because it's decompress-only</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="a9482ea8ca"><code>a9482ea</code></a>
Bump version to trigger new release PR</li>
<li><a
href="52af9ffd23"><code>52af9ff</code></a>
Merge pull request <a
href="https://redirect.github.com/zip-rs/zip2/issues/96">#96</a> from
zip-rs/oldpr452</li>
<li><a
href="3ccaa3cc85"><code>3ccaa3c</code></a>
style: cargo fmt --all & <code>#![allow(dead_code)]</code></li>
<li><a
href="de95acc543"><code>de95acc</code></a>
style: allow conditionally-unused variables in write_dir.rs</li>
<li><a
href="c4906cfd59"><code>c4906cf</code></a>
Merge remote-tracking branch 'allilo/add_compression_algo_arg' into
oldpr452</li>
<li><a
href="629707c060"><code>629707c</code></a>
Merge pull request <a
href="https://redirect.github.com/zip-rs/zip2/issues/95">#95</a> from
zip-rs/speedup_path_to_string</li>
<li><a
href="1852e96192"><code>1852e96</code></a>
Prelim changes to write_dir</li>
<li><a
href="1b2c42b199"><code>1b2c42b</code></a>
style: cargo fmt --all</li>
<li><a
href="74e76a94ca"><code>74e76a9</code></a>
chore: Refactor: can short-circuit handling of paths that start with
MAIN_SEP...</li>
<li><a
href="2adbbccb82"><code>2adbbcc</code></a>
perf: Quick filter for paths that contain "/../" or
"/./" or start with "./" ...</li>
<li>Additional commits viewable in <a
href="https://github.com/zip-rs/zip2/compare/v1.1.3...v1.1.4">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Add the magiskboot binary to the /data/adb/ksu/bin directory so that
scripts/programs can call magiskboot to patch the boot/init_boot image.
---------
Co-authored-by: weishu <twsxtd@gmail.com>
Bumps [serde_json](https://github.com/serde-rs/json) from 1.0.115 to
1.0.116.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/serde-rs/json/releases">serde_json's
releases</a>.</em></p>
<blockquote>
<h2>v1.0.116</h2>
<ul>
<li>Make module structure comprehensible to static analysis (<a
href="https://redirect.github.com/serde-rs/json/issues/1124">#1124</a>,
thanks <a
href="https://github.com/mleonhard"><code>@mleonhard</code></a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="a3f62bb10e"><code>a3f62bb</code></a>
Release 1.0.116</li>
<li><a
href="12c8ee0ce6"><code>12c8ee0</code></a>
Hide "non-exhaustive patterns" errors when crate fails to
compile</li>
<li><a
href="051ce970fe"><code>051ce97</code></a>
Merge pull request 1124 from mleonhard/master</li>
<li><a
href="25dc75050a"><code>25dc750</code></a>
Replace <code>features_check</code> mod with a call to
<code>std::compile_error!</code>. Fixes htt...</li>
<li><a
href="2e15e3d7d5"><code>2e15e3d</code></a>
Revert "Temporarily disable miri on doctests"</li>
<li><a
href="0baba28775"><code>0baba28</code></a>
Resolve legacy_numeric_constants clippy lints</li>
<li>See full diff in <a
href="https://github.com/serde-rs/json/compare/v1.0.115...v1.0.116">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [serde](https://github.com/serde-rs/serde) from 1.0.197 to
1.0.198.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/serde-rs/serde/releases">serde's
releases</a>.</em></p>
<blockquote>
<h2>v1.0.198</h2>
<ul>
<li>Support serializing and deserializing
<code>Saturating<T></code> (<a
href="https://redirect.github.com/serde-rs/serde/issues/2709">#2709</a>,
thanks <a
href="https://github.com/jbethune"><code>@jbethune</code></a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="c4fb923335"><code>c4fb923</code></a>
Release 1.0.198</li>
<li><a
href="65b7eea775"><code>65b7eea</code></a>
Merge pull request <a
href="https://redirect.github.com/serde-rs/serde/issues/2729">#2729</a>
from dtolnay/saturating</li>
<li><a
href="01cd696fd1"><code>01cd696</code></a>
Integrate Saturating<T> deserialization into impl_deserialize_num
macro</li>
<li><a
href="c13b3f7e68"><code>c13b3f7</code></a>
Format PR 2709</li>
<li><a
href="a6571ee0da"><code>a6571ee</code></a>
Merge pull request <a
href="https://redirect.github.com/serde-rs/serde/issues/2709">#2709</a>
from jbethune/master</li>
<li><a
href="6e38afff49"><code>6e38aff</code></a>
Revert "Temporarily disable miri on doctests"</li>
<li><a
href="3d1b19ed90"><code>3d1b19e</code></a>
Implement Ser+De for <code>Saturating\<T></code></li>
<li><a
href="5b24f88e73"><code>5b24f88</code></a>
Resolve legacy_numeric_constants clippy lints</li>
<li><a
href="74d06708dd"><code>74d0670</code></a>
Explicitly install a Rust toolchain for cargo-outdated job</li>
<li><a
href="3bfab6ef7f"><code>3bfab6e</code></a>
Temporarily disable miri on doctests</li>
<li>Additional commits viewable in <a
href="https://github.com/serde-rs/serde/compare/v1.0.197...v1.0.198">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
