Skip to content

chore(deps): bump the rust-dependencies group across 1 directory with 7 updates#33

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/rust-dependencies-f555edd159
Open

chore(deps): bump the rust-dependencies group across 1 directory with 7 updates#33
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/rust-dependencies-f555edd159

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 29, 2026

Copy link
Copy Markdown
Contributor

Bumps the rust-dependencies group with 6 updates in the / directory:

Package From To
js-sys 0.3.98 0.3.103
memchr 2.8.0 2.8.2
napi 3.9.0 3.9.4
napi-derive 3.5.6 3.5.7
smallvec 1.15.1 1.15.2
insta 1.47.2 1.48.0

Updates js-sys from 0.3.98 to 0.3.103

Commits

Updates memchr from 2.8.0 to 2.8.2

Commits
  • a61ac1a 2.8.2
  • a08bf90 arch: fix undefined behavior in lower level (but public) APIs
  • b41293b rebar: update memchr to latest
  • 87467c9 impl: remove unnecessary clones in into_owned impls
  • ff7dca7 2.8.1
  • 016878a target: fix aarch64_be endianness bug
  • ee18717 docs: add AI policy for contributors
  • db1a77d build(deps): bump actions/checkout in the actions group (#212)
  • c8abbe1 Hash-pin all actions, drop persisted credentials (#210)
  • 24f5daa lint: fix clippy get_first
  • Additional commits viewable in compare view

Updates napi from 3.9.0 to 3.9.4

Release notes

Sourced from napi's releases.

napi-v3.9.4

Other

  • (napi-derive) outline #[napi(object)] field-error decoration (#3338)

napi-v3.9.3

Fixed

  • (napi) sync referred flag when creating a weak ThreadsafeFunction (#3337)

Other

  • (napi) outline non-generic core of ThreadsafeFunction::create (#3334)

napi-v3.9.2

Fixed

  • (napi) ReadableStream Reader loses chunks and aborts on errored streams (#3328)

napi-v3.9.1

Fixed

  • (napi) unify Reference finalize callbacks on Arc (Rc/Arc type confusion) (#3313)
  • (napi) zero-copy external strings, fix WASI double-free (#3308)
  • (napi) experimental node_api_create_object_with_properties (#3304)
Commits
  • 9cc199f chore: release (#3345)
  • b77119e chore(release): publish
  • 71ce9f6 chore(deps): update actions/cache action to v6 (#3349)
  • 8c87f47 chore(deps): update @​tybys/wasm-util to 0.10.3 (#3348)
  • 04e2a76 chore(deps): update cross-platform-actions/action action to v1.3.0 (#3346)
  • 54ecbe4 chore(deps): update actions/checkout action to v7 (#3340)
  • 3dd0c30 perf(napi-derive): outline #[napi(object)] field-error decoration (#3338)
  • 81ac3d9 build(deps): bump undici from 6.26.0 to 6.27.0 (#3342)
  • ee58383 chore(napi): release v3.9.3 (#3335)
  • c787276 fix(napi): sync referred flag when creating a weak ThreadsafeFunction (#3337)
  • Additional commits viewable in compare view

Updates napi-derive from 3.5.6 to 3.5.7

Release notes

Sourced from napi-derive's releases.

napi-derive-v3.5.7

Other

  • updated the following local packages: napi-derive-backend
Commits
  • 9cc199f chore: release (#3345)
  • b77119e chore(release): publish
  • 71ce9f6 chore(deps): update actions/cache action to v6 (#3349)
  • 8c87f47 chore(deps): update @​tybys/wasm-util to 0.10.3 (#3348)
  • 04e2a76 chore(deps): update cross-platform-actions/action action to v1.3.0 (#3346)
  • 54ecbe4 chore(deps): update actions/checkout action to v7 (#3340)
  • 3dd0c30 perf(napi-derive): outline #[napi(object)] field-error decoration (#3338)
  • 81ac3d9 build(deps): bump undici from 6.26.0 to 6.27.0 (#3342)
  • ee58383 chore(napi): release v3.9.3 (#3335)
  • c787276 fix(napi): sync referred flag when creating a weak ThreadsafeFunction (#3337)
  • Additional commits viewable in compare view

Updates smallvec from 1.15.1 to 1.15.2

Release notes

Sourced from smallvec's releases.

v1.15.2

What's Changed

New Contributors

Full Changelog: servo/rust-smallvec@v1.15.1...v1.15.2

Commits
  • c469051 Bump version.
  • 9fe422b Fix Windows CI.
  • 51b965f Work around rustc 1.93 perf regression with MaybeUninit
  • 9da26a5 Fix use-after-free in DrainFilter::keep_rest for zero-capacity SmallVecs
  • 79184f1 Add Miri test for use-after-free in DrainFilter::keep_rest
  • f59fb36 Merge pull request #397 from GiGainfosystems/exclude_scripts
  • 28b6ed7 Exclude development script
  • See full diff in compare view

Updates wasm-bindgen from 0.2.121 to 0.2.126

Release notes

Sourced from wasm-bindgen's releases.

0.2.126

Changed

  • Emscripten output now hoists every clean export (free functions, classes, enums, plus their finalization registries and string-enum tables) out of the $initBindgen init closure into its own top-level addToLibrary symbol and self-registers it into EXPORTED_FUNCTIONS. emscripten then emits the clean API (add, Counter, ...) as named ESM exports under -sMODULARIZE=instance and as Module.<name> properties (via each symbol's __postset) in factory mode, with no extra sidecar files. Namespaced exports are reached through their namespace root (e.g. app), assembled in the root symbol's __postset. User module/inline-js imports are now wired as addToLibrary shims (they were previously dropped, since emcc resolves imports only against env), and their ESM-imported bindings are __wbg_-prefixed to avoid colliding with emcc runtime names such as Module/HEAP8. #5210

Fixed

  • The descriptor interpreter now follows emscripten invoke_* trampolines. emscripten's exception/longjmp lowering rewrites direct calls into indirect calls through the function table wrapped in imported invoke_*(fnptr, ..args) helpers, including the describe helpers a descriptor function must reach. The interpreter resolves fnptr against the reconstructed function table, forwards the trailing arguments, and evaluates the surrounding "did it throw?" control flow (if/else, loop, br_table), so descriptors are interpreted correctly on emscripten builds with unwinding/longjmp enabled. #5215

  • Relaxed alignment requirement for 8-byte types. #5204

0.2.125

Added

  • Added the --force-enable-abort-handler CLI flag, which emits the hard-abort detection and set_on_abort machinery on panic=abort builds. With panic=unwind this machinery is generated automatically; the flag does nothing there. #5191

Changed

  • Made the internal __wbindgen_destroy_closure export private in the Rust API. #5196

0.2.123

Added

  • Added the maxAge attribute to the CookieInit dictionary in web-sys,

... (truncated)

Changelog

Sourced from wasm-bindgen's changelog.

0.2.126

Changed

  • Emscripten output now hoists every clean export (free functions, classes, enums, plus their finalization registries and string-enum tables) out of the $initBindgen init closure into its own top-level addToLibrary symbol and self-registers it into EXPORTED_FUNCTIONS. emscripten then emits the clean API (add, Counter, ...) as named ESM exports under -sMODULARIZE=instance and as Module.<name> properties (via each symbol's __postset) in factory mode, with no extra sidecar files. Namespaced exports are reached through their namespace root (e.g. app), assembled in the root symbol's __postset. User module/inline-js imports are now wired as addToLibrary shims (they were previously dropped, since emcc resolves imports only against env), and their ESM-imported bindings are __wbg_-prefixed to avoid colliding with emcc runtime names such as Module/HEAP8. #5210

Fixed

  • The descriptor interpreter now follows emscripten invoke_* trampolines. emscripten's exception/longjmp lowering rewrites direct calls into indirect calls through the function table wrapped in imported invoke_*(fnptr, ..args) helpers, including the describe helpers a descriptor function must reach. The interpreter resolves fnptr against the reconstructed function table, forwards the trailing arguments, and evaluates the surrounding "did it throw?" control flow (if/else, loop, br_table), so descriptors are interpreted correctly on emscripten builds with unwinding/longjmp enabled. #5215

  • Relaxed alignment requirement for 8-byte types. #5204

Removed

0.2.125

Added

  • Added the --force-enable-abort-handler CLI flag, which emits the hard-abort detection and set_on_abort machinery on panic=abort builds. With panic=unwind this machinery is generated automatically; the flag does nothing there. #5191

Changed

  • Made the internal __wbindgen_destroy_closure export private in the Rust API. #5196

... (truncated)

Commits
  • 21ac804 Release 0.2.126
  • b111cbe Follow emscripten invoke_* trampolines in the descriptor interpreter (#5215)
  • 5dc7131 Hoist emscripten exports into top-level library symbols (#5210)
  • 7f013c3 build(deps): bump actions/checkout in the github-actions group (#5212)
  • d37fcef Relaxed alignment requirement for 8-byte types. (#5204)
  • 6ff7f1c Release 0.2.125 (#5200)
  • 1ae2b88 Release 0.2.124 (#5199)
  • 197f576 Wrapped fatal JS Error in panic=abort + abort handlers path (#5198)
  • 9f77521 build(deps): bump codecov/codecov-action (#5187)
  • 18c4e33 Fix flaky abort-handler CLI tests by isolating build dirs (#5197)
  • Additional commits viewable in compare view

Updates insta from 1.47.2 to 1.48.0

Release notes

Sourced from insta's releases.

1.48.0

Release Notes

  • Add strip_ansi_escape_codes setting which removes ANSI escape sequences (color codes, cursor movement, etc.) from snapshot content before comparison. Requires the filters feature. #899 (@​pierluigilenoci)
  • Add opt-in support for YAML literal blocks for multiline strings in snapshot metadata fields such as description and expression. Set INSTA_YAML_BLOCK_STYLE=1 to enable. #851 (@​ivov)
  • Setting CI=true normally makes cargo insta test behave as though --check was passed. Explicit snapshot handling options such as --accept now take precedence over this environment variable, allowing users to override this behavior if they want to. #924
  • Fix cargo insta test --profile being forwarded to nextest as the nextest profile instead of the cargo build profile; it now translates to --cargo-profile for the nextest runner. Add --nextest-profile to select the nextest profile. #910
  • Fix cargo insta pending-snapshots printing unusable \\?\-prefixed paths on Windows. The --snapshot filter now also accepts partial paths: any trailing path suffix of the snapshot file matches, so a bare --snapshot my_test.snap works. #904
  • Accepting a binary snapshot no longer fails with os error 2 when its data file is missing (e.g. gitignored and not committed). #914

Install cargo-insta 1.48.0

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/mitsuhiko/insta/releases/download/1.48.0/cargo-insta-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy Bypass -c "irm https://github.com/mitsuhiko/insta/releases/download/1.48.0/cargo-insta-installer.ps1 | iex"

Download cargo-insta 1.48.0

File Platform Checksum
cargo-insta-aarch64-apple-darwin.tar.xz Apple Silicon macOS checksum
cargo-insta-x86_64-apple-darwin.tar.xz Intel macOS checksum
cargo-insta-x86_64-pc-windows-msvc.zip x64 Windows checksum
cargo-insta-x86_64-unknown-linux-gnu.tar.xz x64 Linux checksum
cargo-insta-x86_64-unknown-linux-musl.tar.xz x64 MUSL Linux checksum
Changelog

Sourced from insta's changelog.

1.48.0

  • Add strip_ansi_escape_codes setting which removes ANSI escape sequences (color codes, cursor movement, etc.) from snapshot content before comparison. Requires the filters feature. #899 (@​pierluigilenoci)
  • Add opt-in support for YAML literal blocks for multiline strings in snapshot metadata fields such as description and expression. Set INSTA_YAML_BLOCK_STYLE=1 to enable. #851 (@​ivov)
  • Setting CI=true normally makes cargo insta test behave as though --check was passed. Explicit snapshot handling options such as --accept now take precedence over this environment variable, allowing users to override this behavior if they want to. #924
  • Fix cargo insta test --profile being forwarded to nextest as the nextest profile instead of the cargo build profile; it now translates to --cargo-profile for the nextest runner. Add --nextest-profile to select the nextest profile. #910
  • Fix cargo insta pending-snapshots printing unusable \\?\-prefixed paths on Windows. The --snapshot filter now also accepts partial paths: any trailing path suffix of the snapshot file matches, so a bare --snapshot my_test.snap works. #904
  • Accepting a binary snapshot no longer fails with os error 2 when its data file is missing (e.g. gitignored and not committed). #914
Commits
  • 7f23d2e Release 1.48.0 (#925)
  • ee9cae1 Allow CI=true to be overridden by an explicitly passed --accept CLI flag ...
  • 043cf82 fix: translate --profile to --cargo-profile for nextest (#913)
  • 9c77f13 test: cover deep-wildcard redaction through arrays (#915)
  • 362f432 Fix --snapshot filter on Windows; allow partial paths (#904)
  • a436836 fix: tolerate a missing binary snapshot data file (#914)
  • bf5fcdf fix: regenerate Cargo.lock and guard it with --locked in CI (#912)
  • a761a9c feat: Support YAML literal blocks for multiline strings (#851)
  • f9633f3 ci: pin check-minver to nightly-2026-04-25 (#905)
  • c7b98b8 feat: add strip_ansi_escape_codes setting (#899)
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

… 7 updates

Bumps the rust-dependencies group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [js-sys](https://github.com/wasm-bindgen/wasm-bindgen) | `0.3.98` | `0.3.103` |
| [memchr](https://github.com/BurntSushi/memchr) | `2.8.0` | `2.8.2` |
| [napi](https://github.com/napi-rs/napi-rs) | `3.9.0` | `3.9.4` |
| [napi-derive](https://github.com/napi-rs/napi-rs) | `3.5.6` | `3.5.7` |
| [smallvec](https://github.com/servo/rust-smallvec) | `1.15.1` | `1.15.2` |
| [insta](https://github.com/mitsuhiko/insta) | `1.47.2` | `1.48.0` |



Updates `js-sys` from 0.3.98 to 0.3.103
- [Release notes](https://github.com/wasm-bindgen/wasm-bindgen/releases)
- [Changelog](https://github.com/wasm-bindgen/wasm-bindgen/blob/main/CHANGELOG.md)
- [Commits](https://github.com/wasm-bindgen/wasm-bindgen/commits)

Updates `memchr` from 2.8.0 to 2.8.2
- [Commits](BurntSushi/memchr@2.8.0...2.8.2)

Updates `napi` from 3.9.0 to 3.9.4
- [Release notes](https://github.com/napi-rs/napi-rs/releases)
- [Commits](napi-rs/napi-rs@napi-v3.9.0...napi-v3.9.4)

Updates `napi-derive` from 3.5.6 to 3.5.7
- [Release notes](https://github.com/napi-rs/napi-rs/releases)
- [Commits](napi-rs/napi-rs@napi-derive-v3.5.6...napi-derive-v3.5.7)

Updates `smallvec` from 1.15.1 to 1.15.2
- [Release notes](https://github.com/servo/rust-smallvec/releases)
- [Commits](servo/rust-smallvec@v1.15.1...v1.15.2)

Updates `wasm-bindgen` from 0.2.121 to 0.2.126
- [Release notes](https://github.com/wasm-bindgen/wasm-bindgen/releases)
- [Changelog](https://github.com/wasm-bindgen/wasm-bindgen/blob/main/CHANGELOG.md)
- [Commits](wasm-bindgen/wasm-bindgen@0.2.121...0.2.126)

Updates `insta` from 1.47.2 to 1.48.0
- [Release notes](https://github.com/mitsuhiko/insta/releases)
- [Changelog](https://github.com/mitsuhiko/insta/blob/master/CHANGELOG.md)
- [Commits](mitsuhiko/insta@1.47.2...1.48.0)

---
updated-dependencies:
- dependency-name: js-sys
  dependency-version: 0.3.103
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-dependencies
- dependency-name: memchr
  dependency-version: 2.8.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-dependencies
- dependency-name: napi
  dependency-version: 3.9.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-dependencies
- dependency-name: napi-derive
  dependency-version: 3.5.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-dependencies
- dependency-name: smallvec
  dependency-version: 1.15.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-dependencies
- dependency-name: wasm-bindgen
  dependency-version: 0.2.126
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-dependencies
- dependency-name: insta
  dependency-version: 1.48.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: rust-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Jun 29, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update rust code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants