Skip to content

chore(deps): bump the all-deps group with 10 updates#108

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/all-deps-24824d9c5d
Closed

chore(deps): bump the all-deps group with 10 updates#108
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/all-deps-24824d9c5d

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 9, 2026

Copy link
Copy Markdown
Contributor

Bumps the all-deps group with 10 updates:

Package From To
nix 0.30.1 0.31.3
criterion 0.5.1 0.8.2
tokio-tungstenite 0.28.0 0.29.0
zip 2.4.2 7.2.0
rmcp 2.0.0 2.2.0
bytes 1.12.0 1.12.1
mail-parser 0.11.4 0.11.5
calamine 0.35.0 0.36.0
undoc 0.5.2 0.5.4
unpdf 0.7.0 0.7.1

Updates nix from 0.30.1 to 0.31.3

Changelog

Sourced from nix's changelog.

[0.31.3] - 2026-05-11

Added

  • Enable module ioctl for Cygwin (#2715)
  • Add CLOCK_BOOTTIME/CLOCK_PROCESS_CPUTIME_ID/CLOCK_THREAD_CPUTIME_ID/CLOCK_UPTIME to NetBSD-like platforms (#2716)
  • unistd: add mkfifo for redox (#2749)
  • Added kevent64 support on apple targets: Kqueue::kevent64, KEvent64, and Kevent64Flags. (#2781)

Fixed

  • fix SaFlags_t definition on redox (#2751)
  • Fixed EpollEvent::events() to use from_bits_retain instead of from_bits().unwrap(), preventing panics when the kernel returns unknown epoll flags. (#2783)
  • Fixed KEvent::flags() and KEvent::fflags() to use from_bits_retain instead of from_bits().unwrap(), preventing panics when the kernel returns unknown kqueue flags. (#2784)

[0.31.2] - 2026-02-28

Added

  • Add WatchDescriptor::as_raw, to get libc id of WatchDescriptor. (#2718)
  • Added process::pthread_getthreadid_np() on FreeBSD. (#2725)
  • Added timerfd support on FreeBSD (#2728)

Fixed

  • The libc requirement is now 0.2.181, rather than pinned to 0.2.180. (#2744)

[0.31.1] - 2026-01-23

Added

  • termios: Add definition for IUCLC to supported platforms (#2702)

... (truncated)

Commits
  • b5933ca chore: release v0.31.3
  • 5d6a46e Replace Cirrus CI with more Github Workflows jobs (#2776)
  • 3407489 event: add kevent64 support on apple targets (#2781)
  • fe80fc5 chore: resolve clippy useless_borrows_in_formatting (#2790)
  • 3310fc7 Revert "fix(ci): temporarily disable armv7-unknown-linux-uclibceabihf (#2764)...
  • e3ab917 epoll: use from_bits_retain to avoid panics on unknown flags (#2783)
  • 6c15701 kqueue: use from_bits_retain to avoid panics on unknown flags (#2784)
  • 73028cf fix(ci): enable Hurd target (#2765)
  • 1a680a9 cargo: Remove deprecated package authors field (#2789)
  • 85cff07 docs: add missing changelog entries (#2786)
  • Additional commits viewable in compare view

Updates criterion from 0.5.1 to 0.8.2

Release notes

Sourced from criterion's releases.

criterion-plot-v0.8.2

Other

  • Update Readme

criterion-v0.8.2

Fixed

  • don't build alloca on unsupported targets

Other

  • (deps) bump crate-ci/typos from 1.40.0 to 1.43.0
  • Fix panic with uniform iteration durations in benchmarks
  • Update Readme
  • Exclude development scripts from published package

criterion-plot-v0.8.1

Fixed

  • Typo

criterion-v0.8.1

Fixed

  • Homepage link

Other

  • (deps) bump crate-ci/typos from 1.23.5 to 1.40.0
  • (deps) bump jontze/action-mdbook from 3 to 4
  • (deps) bump actions/checkout from 4 to 6

criterion-plot-v0.8.0

No release notes provided.

criterion-v0.8.0

BREAKING

  • Drop async-std support

Changed

  • Bump MSRV to 1.86, stable to 1.91.1

Added

  • Add ability to plot throughput on summary page.
  • Add support for reporting throughput in elements and bytes - Throughput::ElementsAndBytes allows the text summary to report throughput in both units simultaneously.
  • Add alloca-based memory layout randomisation to mitigate memory effects on measurements.

... (truncated)

Changelog

Sourced from criterion's changelog.

0.8.2 - 2026-02-04

Fixed

  • don't build alloca on unsupported targets

Other

  • (deps) bump crate-ci/typos from 1.40.0 to 1.43.0
  • Fix panic with uniform iteration durations in benchmarks
  • Update Readme
  • Exclude development scripts from published package

0.8.1 - 2025-12-07

Fixed

  • Homepage link

Other

  • (deps) bump crate-ci/typos from 1.23.5 to 1.40.0
  • (deps) bump jontze/action-mdbook from 3 to 4
  • (deps) bump actions/checkout from 4 to 6

0.8.0 - 2025-11-29

BREAKING

  • Drop async-std support

Changed

  • Bump MSRV to 1.86, stable to 1.91.1

Added

  • Add ability to plot throughput on summary page.
  • Add support for reporting throughput in elements and bytes - Throughput::ElementsAndBytes allows the text summary to report throughput in both units simultaneously.
  • Add alloca-based memory layout randomisation to mitigate memory effects on measurements.
  • Add doc comment to benchmark runner in criterion_group macro (removes linter warnings)

Fixed

  • Fix plotting NaN bug

Other

  • Remove Master API Docs links temporarily while we restore the docs publishing.

... (truncated)

Commits
  • 7f0d745 chore: release v0.8.2
  • 4a467ce chore(deps): bump crate-ci/typos from 1.40.0 to 1.43.0
  • b277a75 Fix panic with uniform iteration durations in benchmarks
  • 828af14 fix: don't build alloca on unsupported targets
  • b01316b Update Readme
  • 4c02a3b Exclude development scripts from published package
  • e4e06df chore: release v0.8.1
  • aa548b9 fix: Homepage link
  • 950c3b7 fix: Typo
  • 7e3e50c chore(deps): bump crate-ci/typos from 1.23.5 to 1.40.0
  • Additional commits viewable in compare view

Updates tokio-tungstenite from 0.28.0 to 0.29.0

Changelog

Sourced from tokio-tungstenite's changelog.

0.29.0

Commits

Updates zip from 2.4.2 to 7.2.0

Release notes

Sourced from zip's releases.

v7.2.0

🚀 Features

  • add read_zipfile_from_stream_with_compressed_size (#70)
  • Allow choosing bzip2 rust backend (#329)

🐛 Bug Fixes

  • Need to include zip64 extra field in central directory (fix #353) (#360)
  • Fails to extract file which might or might not be malformed (#376) (#426)
  • (aes) Allow AES encryption while streaming (#463)
  • Default "platform" field in zip files should be set to the local platform, rather than always "Unix" (#470) (#471)

🚜 Refactor

  • Define cfg_if! and cfg_if_expr! internal macros (#438)

⚡ Performance

  • Change an assert to debug_assert when encrypting/decrypting AES, and eliminate a fallible operation (#521)
  • eliminate a String clone per new file added to archive, and other related refactors (#522)

⚙️ Miscellaneous Tasks

  • Fix another merge error, this one affecting only builds with flate2 and not zopfli
  • Fix more merge issues
  • Fix merge
  • Fix write_dir build errors on specific feature configs
  • Fix clippy warning
  • Fix --all-features build error
  • Fix merge

v7.1.0

🚀 Features

  • display the underlying error in Display impl for ZipError::Display (#483)
  • Enable creation of ZipArchive without reparsing (#485)

🐛 Bug Fixes

  • Return InvalidPassword rather than panic when AES key is the wrong length (#457)
  • bench with auto zip64 comment (#505)
  • add condition for getrandom dependency (#504)
  • (zipcrypto) Support streaming ZipCrypto encryption, don't store entire file in memory (#462)

🚜 Refactor

  • Clean up imports and move types (#461)
  • Replace handwritten Ord and PartialOrd for DateTime (#484)

... (truncated)

Changelog

Sourced from zip's changelog.

7.2.0 - 2026-01-20

🚀 Features

  • add read_zipfile_from_stream_with_compressed_size (#70)
  • Allow choosing bzip2 rust backend (#329)

🐛 Bug Fixes

  • Need to include zip64 extra field in central directory (fix #353) (#360)
  • Fails to extract file which might or might not be malformed (#376) (#426)
  • (aes) Allow AES encryption while streaming (#463)
  • Default "platform" field in zip files should be set to the local platform, rather than always "Unix" (#470) (#471)

🚜 Refactor

  • Define cfg_if! and cfg_if_expr! internal macros (#438)

⚡ Performance

  • Change an assert to debug_assert when encrypting/decrypting AES, and eliminate a fallible operation (#521)
  • eliminate a String clone per new file added to archive, and other related refactors (#522)

7.1.0 - 2026-01-14

🚀 Features

  • display the underlying error in Display impl for ZipError (#483)
  • Enable creation of ZipArchive without reparsing (#485)

🐛 Bug Fixes

  • Return InvalidPassword rather than panic when AES key is the wrong length (#457)
  • bench with auto zip64 comment (#505)
  • add condition for getrandom dependency (#504)
  • (zipcrypto) Support streaming ZipCrypto encryption, don't store entire file in memory (#462)

🚜 Refactor

  • Clean up imports and move types (#461)
  • Replace handwritten Ord and PartialOrd for DateTime (#484)

⚙️ Miscellaneous Tasks

  • Lock lzma-rust2 to at least 0.15.5 (#491)

7.0.0 - 2025-12-05

⚠️ Breaking Changes

... (truncated)

Commits
  • 46dc29c chore: release v7.2.0 (#526)
  • 8a586c6 test: Move a test that was in wrong folder and was using main() instead of `#...
  • cfbb476 docs(examples): Fix remaining log-injection alerts, and simplify writeln to e...
  • d905296 ci: Disable trigger on non-master push (#538)
  • a3a8696 chore(deps): Increase zstd minimum version to 0.13.3 (#539)
  • abd8bc8 ci: Add wasm tests and restore conditional wasm-bindgen dependency (#525)
  • c10c339 doc(examples): add delete/update examples (#56)
  • 9c1a9c7 docs(examples): Fix code scanning alert no. 228: Uncontrolled data used in pa...
  • a12eaaf ci: Combine rename invocations (#533)
  • e86d376 fix: Need to include zip64 extra field in central directory (fix #353) (#360)
  • Additional commits viewable in compare view

Updates rmcp from 2.0.0 to 2.2.0

Release notes

Sourced from rmcp's releases.

rmcp-macros-v2.2.0

Added

  • [breaking] align model types with MCP 2025-11-25 spec (#927)

Fixed

  • fill missing fully qualified syntax in prompt_handler macros (#866)

Other

  • align README examples with v2 model API (#928)

rmcp-v2.2.0

Added

  • reject auth servers lacking S256 PKCE support (#955)

Fixed

  • pass client conformance suite (#960)
  • don't respond to cancelled requests (#957)
  • fail orphaned streamable HTTP responses on reinit (#914)
  • address 2025-11-25 conformance audit findings (#951)

rmcp-macros-v2.1.0

Added

  • [breaking] align model types with MCP 2025-11-25 spec (#927)

Fixed

  • fill missing fully qualified syntax in prompt_handler macros (#866)

Other

  • align README examples with v2 model API (#928)

rmcp-v2.1.0

Added

  • add SEP-414 trace context meta accessors (#910)
  • add SEP-2575 meta helpers (#942)

Fixed

  • (transport) make AsyncRwTransport::receive cancel-safe (#941) (#947)
  • (auth) preserve refresh_token when refresh response omits it (#949)
  • block redirect header leaks (#936)
  • don't respond to unparsable messages (#940)

... (truncated)

Commits
  • 5195776 chore: release v2.2.0 (#953)
  • 6dd7b85 chore(deps): update p256 requirement from 0.13 to 0.14 (#959)
  • a037935 fix: pass client conformance suite (#960)
  • dbda50c fix: don't respond to cancelled requests (#957)
  • 45f2f72 fix: fail orphaned streamable HTTP responses on reinit (#914)
  • 95490fa feat: reject auth servers lacking S256 PKCE support (#955)
  • bdf0c32 fix: address 2025-11-25 conformance audit findings (#951)
  • 8e44af4 chore: release v2.1.0 (#950)
  • 4833ec7 fix(transport): make AsyncRwTransport::receive cancel-safe (#941) (#947)
  • 5837e22 fix(auth): preserve refresh_token when refresh response omits it (#949)
  • Additional commits viewable in compare view

Updates bytes from 1.12.0 to 1.12.1

Release notes

Sourced from bytes's releases.

Bytes v1.12.1

1.12.1 (July 8th, 2026)

Fixed

  • Properly handle when Box::new panics (#837)
Changelog

Sourced from bytes's changelog.

1.12.1 (July 8th, 2026)

Fixed

  • Properly handle when Box::new panics (#837)
Commits

Updates mail-parser from 0.11.4 to 0.11.5

Changelog

Sourced from mail-parser's changelog.

mail-parser 0.11.5

  • Fix: Address names containing LF are not parsed correctly (#149)
  • Fix: Decode the iso-8859-1 label as windows-1252 per the WHATWG Encoding Standard (#131)
  • Fix: panic with messages containing corrupted eml attachments (#120).
  • Recognize additional charset labels supported by encoding_rs (#123)
  • Added Dkim2Signature and MessageInstance to support DKIM2 headers.
Commits

Updates calamine from 0.35.0 to 0.36.0

Release notes

Sourced from calamine's releases.

v0.36.0 - 2026-07-06

Added

  • Added an XLSX streaming API for cell and formula records, including shared formula metadata. There are two new APIs: XlsxCellReader::next_cell_with_formula() and XlsxCellReader::next_cell_with_formula_metadata(). Previously it required 2 separate reads to get similar information. [PR #654].

    [PR #654]: tafia/calamine#654

  • Added a per-sheet, lazy XLSX API to read worksheet hyperlinks: Xlsx::hyperlinks_by_sheet_name() and Xlsx::hyperlinks_by_sheet_id(). Each hyperlink reports its anchor range (Dimensions), external target (URL/file/mailto), optional internal location, displayed text, and optional tooltip. [PR #659].

    [PR #659]: tafia/calamine#659

  • Extended the picture feature to also extract cell position information and the raw image data, and to handle newer Excel 365 style embedded images. [PR #652].

    [PR #652]: tafia/calamine#652

  • Added support for reading XLSX rich string (rstring) records. [Issue #655].

    [Issue #655]: tafia/calamine#655

Changed

... (truncated)

Changelog

Sourced from calamine's changelog.

[0.36.0] - 2026-07-06

Added

  • Added an XLSX streaming API for cell and formula records, including shared formula metadata. There are two new APIs: XlsxCellReader::next_cell_with_formula() and XlsxCellReader::next_cell_with_formula_metadata(). Previously it required 2 separate reads to get similar information. [PR #654].

    [PR #654]: tafia/calamine#654

  • Added a per-sheet, lazy XLSX API to read worksheet hyperlinks: Xlsx::hyperlinks_by_sheet_name() and Xlsx::hyperlinks_by_sheet_id(). Each hyperlink reports its anchor range (Dimensions), external target (URL/file/mailto), optional internal location, displayed text, and optional tooltip. [PR #659].

    [PR #659]: tafia/calamine#659

  • Extended the picture feature to also extract cell position information and the raw image data, and to handle newer Excel 365 style embedded images. [PR #652].

    [PR #652]: tafia/calamine#652

  • Added support for reading XLSX rich string (rstring) records. [Issue #655].

    [Issue #655]: tafia/calamine#655

Changed

... (truncated)

Commits
  • 2872ac1 release: 0.36.0
  • bec70ca fix(xlsx): fix whitespace trimming bug introduced in #671 (#673)
  • 058cb50 chore: clippy::manual_is_multiple_of
  • 070c4c0 deps: bump quick-xml 0.39 to 0.41
  • 01bc379 deps: bump zip from 7.0 to 8.6
  • c903532 deps: bump atoi_simd 0.17 to 0.18
  • 9bcfed2 example: fix cargo test warning for read_picture_data example (#676)
  • 0dad897 xlsx: make shared formula cell replacement more accurate (#664)
  • 1f1f7bc fix: strip whitespace from <t> elements without xml:space="preserve" (#671)
  • d206c9b fix(xls): better error message when file too small (#670)
  • Additional commits viewable in compare view

Updates undoc from 0.5.2 to 0.5.4

Release notes

Sourced from undoc's releases.

Release v0.5.4

Full Changelog: iyulab/undoc@v0.5.3...v0.5.4

Release v0.5.3

Full Changelog: iyulab/undoc@v0.5.2...v0.5.3

Changelog

Sourced from undoc's changelog.

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

[Unreleased]

Commits
  • 788680e fix(deps): bump crossbeam-epoch 0.9.18 -> 0.9.20 (RUSTSEC-2026-0204)
  • 0a508fa release: 0.5.4 — DOCX header/footer extraction (first/even pages, text boxes)
  • ed625b6 fix(docx): extract first/even and text-box header/footer content
  • f732c78 fix(deps): bump quick-xml to 0.41, preserve entity refs (RUSTSEC-2026-0194/-0...
  • See full diff in compare view

Updates unpdf from 0.7.0 to 0.7.1

Release notes

Sourced from unpdf's releases.

Release v0.7.1

Full Changelog: iyulab/unpdf@v0.7.0...v0.7.1

Full Changelog: iyulab/unpdf@v0.7.0...v0.7.1

Changelog

Sourced from unpdf's changelog.

0.7.1 — 2026-07-05

Also ships the parsing-quality and CI work that accumulated on main after the v0.7.0 tag.

Security

  • Bump tar 0.4.44 → 0.4.46 (RUSTSEC-2026-0067 symlink-traversal chmod, RUSTSEC-2026-0068 PAX size header ignored). Both fixed in ≥ 0.4.45; lifted within the existing semver range.
  • Add a cargo audit CI gate (Security Audit job) with a documented .cargo/audit.toml. The only accepted advisories are quick-xml 0.23 RUSTSEC-2026-0194/-0195 — an optional, uncompiled transitive of self_update's S3 backend (unused; unpdf has no direct quick-xml dependency).

Added

  • Scanned-PDF detection — recognizes image-only PDFs with no embedded fonts and flags them via extraction-quality diagnostics instead of emitting empty output.

Fixed

  • Header/footer filtering was skipped on pages containing tables, leaking page numbers and running headers into extracted headings; the filter now runs regardless of table presence.
  • Deterministic layout output — ToUnicodeMap and TrueType cmap tables now use BTreeMap, so repeated runs over the same document produce byte-identical Markdown (verified via two-run diff).
  • Inline table-of-contents dot-leader cleanup threshold raised from 4+ to 8+ dots, avoiding false removal of legitimate dotted text.
  • CI: npm publish uses --access public so @iyulab/unpdf publishes correctly.
Commits
  • 1f11b64 docs(changelog): document Phase C quality work shipped in 0.7.1
  • c4a4666 release: 0.7.1 — tar security bump + cargo audit CI gate
  • 64ac982 fix(deps): bump tar to 0.4.46, add cargo audit CI gate
  • d41b4df style: apply rustfmt formatting
  • 331eb25 chore: remove dead code + add regression tests
  • 944f8a3 fix(font): use BTreeMap for ToUnicodeMap and TrueType cmap tables
  • d08d177 fix(cleanup): raise inline TOC dot-leader threshold to 8+ dots
  • c59f530 feat(quality): scan PDF detection + layout improvements
  • 61a9acf fix(ci): add --access public to npm publish; add manual publish-npm workflow
  • 7614167 docs: update README for v0.7.0 — npm badge, WASM section, playground link
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Summary by cubic

Update 10 Rust crates to pick up bug fixes, security updates, and features across the workspace. Notable changes include calamine 0.36, a transitive zip major bump, criterion 0.8, and rmcp 2.2.

  • Dependencies

    • calamine → 0.36: adds XLSX streaming APIs and raises MSRV via zip 8.x.
    • zip: major upgrade in the dependency tree to 8.x with fixes and streaming encryption support.
    • criterion → 0.8: drops async-std; higher MSRV for benches.
    • rmcp → 2.2: auth/conformance fixes and cancel-safety improvements.
    • Patch/minor bumps: bytes 1.12.1, mail-parser 0.11.5, tokio-tungstenite 0.29.0, undoc 0.5.4, unpdf 0.7.1.
  • Migration

    • Rust 1.88+ may be required when building with the calamine feature set.
    • If you run benchmarks, ensure a toolchain compatible with criterion 0.8 (MSRV ≥ 1.86).

Written for commit 69358ea. Summary will update on new commits.

Review in cubic

Bumps the all-deps group with 10 updates:

| Package | From | To |
| --- | --- | --- |
| [nix](https://github.com/nix-rust/nix) | `0.30.1` | `0.31.3` |
| [criterion](https://github.com/criterion-rs/criterion.rs) | `0.5.1` | `0.8.2` |
| [tokio-tungstenite](https://github.com/snapview/tokio-tungstenite) | `0.28.0` | `0.29.0` |
| [zip](https://github.com/zip-rs/zip2) | `2.4.2` | `7.2.0` |
| [rmcp](https://github.com/modelcontextprotocol/rust-sdk) | `2.0.0` | `2.2.0` |
| [bytes](https://github.com/tokio-rs/bytes) | `1.12.0` | `1.12.1` |
| [mail-parser](https://github.com/stalwartlabs/mail-parser) | `0.11.4` | `0.11.5` |
| [calamine](https://github.com/tafia/calamine) | `0.35.0` | `0.36.0` |
| [undoc](https://github.com/iyulab/undoc) | `0.5.2` | `0.5.4` |
| [unpdf](https://github.com/iyulab/unpdf) | `0.7.0` | `0.7.1` |


Updates `nix` from 0.30.1 to 0.31.3
- [Changelog](https://github.com/nix-rust/nix/blob/master/CHANGELOG.md)
- [Commits](nix-rust/nix@v0.30.1...v0.31.3)

Updates `criterion` from 0.5.1 to 0.8.2
- [Release notes](https://github.com/criterion-rs/criterion.rs/releases)
- [Changelog](https://github.com/criterion-rs/criterion.rs/blob/master/CHANGELOG.md)
- [Commits](criterion-rs/criterion.rs@0.5.1...criterion-v0.8.2)

Updates `tokio-tungstenite` from 0.28.0 to 0.29.0
- [Changelog](https://github.com/snapview/tokio-tungstenite/blob/master/CHANGELOG.md)
- [Commits](snapview/tokio-tungstenite@v0.28.0...v0.29.0)

Updates `zip` from 2.4.2 to 7.2.0
- [Release notes](https://github.com/zip-rs/zip2/releases)
- [Changelog](https://github.com/zip-rs/zip2/blob/master/CHANGELOG.md)
- [Commits](zip-rs/zip2@v2.4.2...v7.2.0)

Updates `rmcp` from 2.0.0 to 2.2.0
- [Release notes](https://github.com/modelcontextprotocol/rust-sdk/releases)
- [Changelog](https://github.com/modelcontextprotocol/rust-sdk/blob/main/release-plz.toml)
- [Commits](modelcontextprotocol/rust-sdk@rmcp-v2.0.0...rmcp-v2.2.0)

Updates `bytes` from 1.12.0 to 1.12.1
- [Release notes](https://github.com/tokio-rs/bytes/releases)
- [Changelog](https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md)
- [Commits](tokio-rs/bytes@v1.12.0...v1.12.1)

Updates `mail-parser` from 0.11.4 to 0.11.5
- [Release notes](https://github.com/stalwartlabs/mail-parser/releases)
- [Changelog](https://github.com/stalwartlabs/mail-parser/blob/main/CHANGELOG.md)
- [Commits](https://github.com/stalwartlabs/mail-parser/commits)

Updates `calamine` from 0.35.0 to 0.36.0
- [Release notes](https://github.com/tafia/calamine/releases)
- [Changelog](https://github.com/tafia/calamine/blob/master/Changelog.md)
- [Commits](tafia/calamine@v0.35.0...v0.36.0)

Updates `undoc` from 0.5.2 to 0.5.4
- [Release notes](https://github.com/iyulab/undoc/releases)
- [Changelog](https://github.com/iyulab/undoc/blob/main/CHANGELOG.md)
- [Commits](iyulab/undoc@v0.5.2...v0.5.4)

Updates `unpdf` from 0.7.0 to 0.7.1
- [Release notes](https://github.com/iyulab/unpdf/releases)
- [Changelog](https://github.com/iyulab/unpdf/blob/main/CHANGELOG.md)
- [Commits](iyulab/unpdf@v0.7.0...v0.7.1)

---
updated-dependencies:
- dependency-name: nix
  dependency-version: 0.31.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-deps
- dependency-name: criterion
  dependency-version: 0.8.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-deps
- dependency-name: tokio-tungstenite
  dependency-version: 0.29.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-deps
- dependency-name: zip
  dependency-version: 7.2.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-deps
- dependency-name: rmcp
  dependency-version: 2.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-deps
- dependency-name: bytes
  dependency-version: 1.12.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-deps
- dependency-name: mail-parser
  dependency-version: 0.11.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-deps
- dependency-name: calamine
  dependency-version: 0.36.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-deps
- dependency-name: undoc
  dependency-version: 0.5.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-deps
- dependency-name: unpdf
  dependency-version: 0.7.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-deps
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Jul 9, 2026
@dependabot dependabot Bot requested a review from bhekanik as a code owner July 9, 2026 07:21
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Jul 9, 2026
@vercel

vercel Bot commented Jul 9, 2026

Copy link
Copy Markdown

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
mxr-mail Ready Ready Preview, Comment Jul 9, 2026 7:23am

@dependabot @github

dependabot Bot commented on behalf of github Jul 11, 2026

Copy link
Copy Markdown
Contributor Author

Looks like these dependencies are updatable in another way, so this is no longer needed.

@bhekanik

Copy link
Copy Markdown
Contributor

Superseded by #120, which rebases this all-deps bump onto current main and removes the now-stale RUSTSEC-2026-0194/0195 deny.toml ignores (quick-xml 0.41 fixes both). Closing in favor of #120.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update rust code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant