Skip to content

⬆️ Update lofty requirement from 0.22.4 to 0.23.3#8

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/cargo/lofty-0.23.3
Open

⬆️ Update lofty requirement from 0.22.4 to 0.23.3#8
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/cargo/lofty-0.23.3

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Mar 21, 2026

Updates the requirements on lofty to permit the latest version.

Release notes

Sourced from lofty's releases.

0.23.3

What's Changed

New Contributors

Full Changelog: https://github.com/Serial-ATA/lofty-rs/blob/main/CHANGELOG.md#0233---2026-03-14

Changelog

Sourced from lofty's changelog.

[0.23.3] - 2026-03-14

Added

Changed

  • ID3v2: ItemKey::Lyrics is no longer supported (issue) (PR)
    • ItemKey::Lyrics is often overloaded with synchronized lyrics in LRC format. In other formats, the distinction between ItemKey::Lyrics and ItemKey::UnsyncLyrics doesn't matter much as they're both text fields. In ID3v2, however, synchronized lyrics are a separate binary frame. To write synchronized lyrics, you'll have to use Id3v2Tag and SynchronizedTextFrame directly.

Fixed

  • ID3v2:
    • Don't error on empty UTF-16 descriptions (issue) (PR)
    • Retain ItemKey::{AlbumArtists, Barcode, UnsyncLyrics, ReplayGainAlbumGain, ReplayGainAlbumPeak, ReplayGainTrackGain, ReplayGainTrackPeak} when during generic conversions (issue) (PR)
  • Timestamp: Only enforce valid year in strict mode (issue) (PR)
  • OGG Vorbis: Fixed potential infinite loop while property reading (issue) (PR)
  • IFF: Support chunks with invalid padding (issue) (PR)
    • When RIFF/AIFF chunks have an odd length, they should be padded, and the padding is not counted in the chunk size. However, some encoders incorrectly include the padding in the size, which can cause the parser to go out of sync. We no longer assume padding is valid and have additional checks to stay in sync when possible.

[0.23.2] - 2026-02-14

Fixed

  • FLAC:
    • Fix duplicate Last-metadata-block flags in the presence of PADDING blocks (issue) (PR)
    • Ignore ID3v2 tags when not stripped during write (issue) (PR)
      • Previously, the Vorbis Comments writer assumed that the ID3v2 tag had already been stripped. If that wasn't the case, it would error that it couldn't find the FLAC stream marker.

[0.23.1] - 2026-02-08

Fixed

  • Docs: Replaced doc_auto_cfg with doc_cfg (PR)

[0.23.0] - 2026-02-08

Added

  • ItemKey:
    • ItemKey::AlbumArtists, available for ID3v2, Vorbis Comments, APE, and MP4 Ilst (PR)

... (truncated)

Commits
  • f3fcfd0 0.23.3
  • 38f82b5 ID3v2: remove support for ItemKey::Lyrics
  • b64f972 IFF: Support invalid chunk padding
  • cb73828 ItemKey: Add ItemKey::MusicBrainzReleaseType
  • c0c5b6e ID3v2: Add back missing supported ItemKeys
  • 1412f10 OGG: Fix infinite loop
  • b017a75 FLAC: Simplify tag writes
  • c01dc7b docs: Add note on AI usage in CONTRIBUTING.md
  • caa1282 Timestamp: only enforce valid year in strict mode (#616)
  • 5597270 fix: fallback when BOM is not present in UTF-16 data
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
⬆️ Update lofty requirement from 0.22.4 to 0.23.3
9497db1 
Updates the requirements on [lofty](https://github.com/Serial-ATA/lofty-rs) to permit the latest version.
- [Release notes](https://github.com/Serial-ATA/lofty-rs/releases)
- [Changelog](https://github.com/Serial-ATA/lofty-rs/blob/main/CHANGELOG.md)
- [Commits](Serial-ATA/lofty-rs@0.22.4...0.23.3)

---
updated-dependencies:
- dependency-name: lofty
  dependency-version: 0.23.3
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Mar 21, 2026
@dependabot dependabot bot mentioned this pull request Mar 21, 2026
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update rust code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants