Skip to content

chore(deps): bump the rust-safe-dependencies group across 1 directory with 3 updates#39

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/rust-safe-dependencies-8f1cf94235
Open

chore(deps): bump the rust-safe-dependencies group across 1 directory with 3 updates#39
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/rust-safe-dependencies-8f1cf94235

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 2, 2026

Copy link
Copy Markdown
Contributor

Bumps the rust-safe-dependencies group with 3 updates in the / directory: rpassword, regex and rand.

Updates rpassword from 7.5.3 to 7.5.4

Release notes

Sourced from rpassword's releases.

v7.5.4

No functional changes.

I've added license checks with Cargo Deny to ensure that the Apache 2.0 license is compatible with dependencies.

This release also updates the description to make it clear this library is cross-platform on crates.io.

Commits

Updates regex from 1.12.3 to 1.12.4

Changelog

Sourced from regex's changelog.

1.12.4 (2025-06-09)

This release includes a performance optimization for compilation of regexes with very large character classes.

Improvements:

  • #1308: Avoid re-canonicalizing the entire interval set when pushing new class ranges.
Commits
  • 7b96fdc 1.12.4
  • 7b89cf0 deps: update to regex-syntax 0.8.11
  • 1401679 regex-syntax-0.8.11
  • d709000 changelog: 1.12.4
  • 9825c74 syntax: avoid re-canonicalizing the entire IntervalSet on push (#1308)
  • a7f2ff6 docs: clarify regex-lite word boundaries
  • 2c7b172 docs: clarify unsupported Anchored::Pattern searches
  • 839d16b regex-syntax-0.8.10
  • c4865a0 syntax: fix negation handling in HIR translation
  • d8761c0 cargo: also include benches
  • Additional commits viewable in compare view

Updates rand from 0.10.1 to 0.10.2

Changelog

Sourced from rand's changelog.

[0.10.2] — 2026-07-02

Fixes

  • Fix possible memory safety violation due to deserialization of UniformChar from bad source (#1790)

Changes

  • Document required output order of fn partial_shuffle and apply #[must_use] (#1769)
  • Avoid usage of unsafe in contexts where non-local memory corruption could invalidate contract (#1791)

#1769: rust-random/rand#1769 #1790: rust-random/rand#1790 #1791: rust-random/rand#1791

Commits

@dependabot @github

dependabot Bot commented on behalf of github Jul 2, 2026

Copy link
Copy Markdown
Contributor Author

Labels

The following labels could not be found: dependencies, rust. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

… with 3 updates

Bumps the rust-safe-dependencies group with 3 updates in the / directory: [rpassword](https://github.com/conradkleinespel/rpassword), [regex](https://github.com/rust-lang/regex) and [rand](https://github.com/rust-random/rand).


Updates `rpassword` from 7.5.3 to 7.5.4
- [Release notes](https://github.com/conradkleinespel/rpassword/releases)
- [Commits](conradkleinespel/rpassword@v7.5.3...v7.5.4)

Updates `regex` from 1.12.3 to 1.12.4
- [Release notes](https://github.com/rust-lang/regex/releases)
- [Changelog](https://github.com/rust-lang/regex/blob/master/CHANGELOG.md)
- [Commits](rust-lang/regex@1.12.3...1.12.4)

Updates `rand` from 0.10.1 to 0.10.2
- [Release notes](https://github.com/rust-random/rand/releases)
- [Changelog](https://github.com/rust-random/rand/blob/master/CHANGELOG.md)
- [Commits](rust-random/rand@0.10.1...0.10.2)

---
updated-dependencies:
- dependency-name: rand
  dependency-version: 0.10.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-safe-dependencies
- dependency-name: regex
  dependency-version: 1.12.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-safe-dependencies
- dependency-name: rpassword
  dependency-version: 7.5.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-safe-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/cargo/rust-safe-dependencies-8f1cf94235 branch from 7a9fa5b to 5a09f0b Compare July 3, 2026 20:54
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants