Skip to content

cargo(deps): bump the patch-and-minor group with 2 updates#65

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/patch-and-minor-152fb9e9d8
Open

cargo(deps): bump the patch-and-minor group with 2 updates#65
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/patch-and-minor-152fb9e9d8

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 13, 2026

Copy link
Copy Markdown
Contributor

Bumps the patch-and-minor group with 2 updates: bytemuck and rand.

Updates bytemuck from 1.25.0 to 1.25.1

Changelog

Sourced from bytemuck's changelog.

1.25.1

1.25

1.24

1.23.2

  • bump derive minimum version.

1.23.1

  • Added a windows-only ZeroableInOption impl for "stdcall" functions.

1.23

  • impl_core_error crate feature adds core::error::Error impl.
  • More ZeroableInOption impls.

1.22

  • Add the pod_saturating feature, which adds Pod impls for Saturating<T> when T is already Pod.
  • A bump in the minimum bytemuck_derive dependency from 1.4.0 to 1.4.1 to avoid a bug if you have a truly ancient cargo.lock file sitting around.
  • Adds Send and Sync impls to BoxBytes.

1.21

  • Implement Pod and Zeroable for core::arch::{x86, x86_64}::__m512, __m512d and __m512i without nightly. Requires Rust 1.72, and is gated through the avx512_simd cargo feature.
  • Allow the use of must_cast_mut and must_cast_slice_mut in const contexts. Requires Rust 1.83, and is gated through the must_cast_extra cargo feature.
  • internal: introduced the maybe_const_fn macro that allows defining some function to be const depending upon some cfg predicate.

1.20

  • New functions to allocate zeroed Arc and Rc. Requires Rust 1.82
  • TransparentWrapper impls for core::cmp::Reverse and core::num::Saturating.

... (truncated)

Commits
  • cabc8e7 chore: Release bytemuck version 1.25.1
  • 2d4d8ca changelog
  • 946e7a9 chore: Release bytemuck_derive version 1.11.0
  • 8a8f7cf changelog derive
  • ee6742e changelog
  • e2d1c7f Don't impl core::error::Error on spirv (#348)
  • 7dd7174 make the note more terse
  • 24b1b71 Update Rust version in CI workflow to 1.71.0
  • f0dfc1b docs: note that an empty slice must still satisfy target alignment in cast_sl...
  • See full diff in compare view

Updates rand from 0.10.1 to 0.10.2

Changelog

Sourced from rand's changelog.

[0.10.2] — 2026-07-02

Fixes

  • Fix possible memory safety violation due to deserialization of UniformChar from bad source (#1790)

Changes

  • Document required output order of fn partial_shuffle and apply #[must_use] (#1769)
  • Avoid usage of unsafe in contexts where non-local memory corruption could invalidate contract (#1791)

#1769: rust-random/rand#1769 #1790: rust-random/rand#1790 #1791: rust-random/rand#1791

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the patch-and-minor group with 2 updates: [bytemuck](https://github.com/Lokathor/bytemuck) and [rand](https://github.com/rust-random/rand).


Updates `bytemuck` from 1.25.0 to 1.25.1
- [Changelog](https://github.com/Lokathor/bytemuck/blob/main/changelog.md)
- [Commits](Lokathor/bytemuck@v1.25.0...v1.25.1)

Updates `rand` from 0.10.1 to 0.10.2
- [Release notes](https://github.com/rust-random/rand/releases)
- [Changelog](https://github.com/rust-random/rand/blob/master/CHANGELOG.md)
- [Commits](rust-random/rand@0.10.1...0.10.2)

---
updated-dependencies:
- dependency-name: bytemuck
  dependency-version: 1.25.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch-and-minor
- dependency-name: rand
  dependency-version: 0.10.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch-and-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github

dependabot Bot commented on behalf of github Jul 13, 2026

Copy link
Copy Markdown
Contributor Author

Labels

The following labels could not be found: dependencies, rust. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants