Bump the rust-crates group across 1 directory with 15 updates

[dependabot]

Bumps the rust-crates group with 15 updates in the / directory:

Package	From	To
cc	1.2.61	1.2.63
chrono	0.4.44	0.4.45
compact_str	0.9.0	0.9.1
ctor	1.0.6	1.0.7
dashmap	6.1.0	6.2.1
filetime	0.2.27	0.2.29
ignore	0.4.25	0.4.26
log	0.4.29	0.4.32
nix	0.31.2	0.31.3
reqwest	0.13.3	0.13.4
reqwest-middleware	0.5.1	0.5.2
serde_json	1.0.149	1.0.150
serde_with	3.19.0	3.21.0
tar	0.4.45	0.4.46
uuid	1.23.1	1.23.2

Updates cc from 1.2.61 to 1.2.63

Release notes

Sourced from cc's releases.

cc-v1.2.63

Other

• Update shlex requirement from 1.3.0 to 2.0.1 (#1736)

cc-v1.2.62

Other

• Regenerate target info (#1721)
• Allow exceptions on wasm platforms (#1714)
• Add relibc env (#1710)
• recognize sh4 architecture in parse_arch() (#1712)

Changelog

Sourced from cc's changelog.

1.2.63 - 2026-05-29

Other

• Update shlex requirement from 1.3.0 to 2.0.1 (#1736)

1.2.62 - 2026-05-08

Other

• Regenerate target info (#1721)
• Allow exceptions on wasm platforms (#1714)
• Add relibc env (#1710)
• recognize sh4 architecture in parse_arch() (#1712)

Commits

• b49589a chore(cc): release v1.2.63 (#1740)
• 71a5688 Update shlex requirement from 1.3.0 to 2.0.1 (#1736)
• 6361640 Bump release-plz/action from 0.5.128 to 0.5.129 (#1728)
• 225326a Bump taiki-e/install-action from 2.75.28 to 2.77.6 (#1729)
• aa3088d Bump taiki-e/install-action from 2.75.19 to 2.75.28 (#1722)
• 37a5f8f chore(cc): release v1.2.62 (#1716)
• 34a2218 Regenerate target info (#1721)
• a9d8632 Allow exceptions on wasm platforms (#1714)
• ce036b3 Add relibc env (#1710)
• 18ed3dc target: recognize sh4 architecture in parse_arch() (#1712)
• Additional commits viewable in compare view

Updates chrono from 0.4.44 to 0.4.45

Release notes

Sourced from chrono's releases.

0.4.45

What's Changed

• fix(tz): reject TZ offset hour of 24 to avoid FixedOffset overflow by @​SAY-5 in chronotope/chrono#1787
• tz_data: fix tzdata locations on Android by @​caruschalalamove in chronotope/chrono#1789

Commits

• 1703382 Prepare 0.4.45 release
• 881f9ab tz_data: fix tzdata locations on Android
• f14ead4 fix(tz): reject TZ offset hour of 24 to avoid FixedOffset overflow
• c6063e6 Update similar-asserts requirement from 1.6.1 to 2.0.0
• 120686c Bump codecov/codecov-action from 5 to 6
• See full diff in compare view

Updates compact_str from 0.9.0 to 0.9.1

Changelog

Sourced from compact_str's changelog.

0.9.1

May 26, 2026

Changes

• Fixed a case of undefined behavior in HeapString.
  • Fix in fix: possible undefined behavior with realloc in a HeapString

Commits

• fbe932e fix CI
• 639e171 v0.9.1
• 0a51e12 backport ParkMyCar/compact_str#459
• 70361f7 version: 0.9.0 (#430)
• f1c0bc3 start, delete methods that are documented as being deleted in v0.9.0 (#429)
• 2d7e3d4 start, small fix, qualify the vec macro (#428)
• See full diff in compare view

Updates ctor from 1.0.6 to 1.0.7

Release notes

Sourced from ctor's releases.

ctor-1.0.7

What's Changed

• Bump downstream link-section crate version and API updates.
• Better error messages on bad attributes.

Full Changelog: mmastrac/linktime@ctor-1.0.6...ctor-1.0.7

Commits

• 187a658 Bump crate versions and remove scattered-collect-proc-macro (#472)
• f8b097f Updating link-section to use private sections (#469)
• 6f7fc13 Add a new combine! macro to replace hash/ident_concat (#471)
• 87a7bfd Improve macro-magic errors on bad attribute (#470)
• 606c223 Improve macro collection path resolution (#468)
• 80ce8d3 Scattered iterable (#467)
• 86ee26c Remove feature(used_with_args) from all examples (#466)
• 31a2a52 Implement the scattered map (#465)
• 06cf9aa Improve scattered-collect macros (#464)
• 7fcecab Improved scattered-collect docs (#463)
• See full diff in compare view

Updates dashmap from 6.1.0 to 6.2.1

Release notes

Sourced from dashmap's releases.

v6.2.1

This is an interim maintenance release for the existing v6 branch before v7 can be released. This bumps the MSRV to 1.85 and updates dependencies to their latest versions.

Commits

• 749ed1f v6.2.1
• d02b945 v6.2.0
• b983625 update dependencies
• 94a294a bump msrv to 1.85
• See full diff in compare view

Updates filetime from 0.2.27 to 0.2.29

Commits

• ab5ee65 Bump to 0.2.29
• 46c34ef Try to fix updating write-only files (#122)
• b10e535 Bump to 0.2.28
• 646bce9 Update README
• 190eafe Add QNX Neutrino (nto) to utimensat platform list (#120)
• 13d4570 Use the standard library for most of the crate (#121)
• 75abafa impl From<FileTime> for SystemTime (#119)
• 06a6f24 use libc::UTIME_OMIT (#117)
• See full diff in compare view

Updates ignore from 0.4.25 to 0.4.26

Commits

• 82313cf ignore-0.4.26
• 43e2f08 ignore: fix parent gitignore matching across multiple roots
• 79a23e0 ignore: use named fields in Ignore
• 4519153 doc: clarify half-boundary syntax for the -w/--word-regexp flag
• cb66736 core: bleat a DEBUG message when RIPGREP_CONFIG_PATH is not set
• 9b84e15 ignore/types: add container type that covers both Dockerfile and `Contain...
• cd1f981 fix: derive Default when possible
• See full diff in compare view

Updates log from 0.4.29 to 0.4.32

Release notes

Sourced from log's releases.

0.4.32

What's Changed

• Support Value -> string conversions with kv + std features instead of kv_std by @​tisonkun in rust-lang/log#729
• Prepare for 0.4.32 release by @​KodrAus in rust-lang/log#730

Full Changelog: rust-lang/log@0.4.31...0.4.32

0.4.31

What's Changed

• fix typos in kv compile errors and log documentation by @​Isvane in rust-lang/log#726
• Leverage static str key when possible by @​tisonkun in rust-lang/log#727
• Prepare for 0.4.31 release by @​KodrAus in rust-lang/log#728

New Contributors

• @​Isvane made their first contribution in rust-lang/log#726

Full Changelog: rust-lang/log@0.4.30...0.4.31

0.4.30

What's Changed

• Support capturing of std::net types by @​KodrAus in rust-lang/log#724

New Contributors

• @​V0ldek made their first contribution in rust-lang/log#720
• @​woodruffw made their first contribution in rust-lang/log#723

Full Changelog: rust-lang/log@0.4.29...0.4.30

Notable Changes

• MSRV is bumped to 1.71.0 in rust-lang/log#723

Changelog

Sourced from log's changelog.

[0.4.32] - 2026-06-04

What's Changed

• Support Value -> string conversions with kv + std features instead of kv_std by @​tisonkun in rust-lang/log#729

Full Changelog: rust-lang/log@0.4.31...0.4.32

[0.4.31] - 2026-06-02

What's Changed

• Leverage static str key when possible by @​tisonkun in rust-lang/log#727

New Contributors

• @​Isvane made their first contribution in rust-lang/log#726

Full Changelog: rust-lang/log@0.4.30...0.4.31

[0.4.30] - 2026-05-21

What's Changed

• Support capturing of std::net types by @​KodrAus in rust-lang/log#724

New Contributors

• @​V0ldek made their first contribution in rust-lang/log#720
• @​woodruffw made their first contribution in rust-lang/log#723

Full Changelog: rust-lang/log@0.4.29...0.4.30

Notable Changes

• MSRV is bumped to 1.71.0 in rust-lang/log#723

Commits

• a5b5b21 Merge pull request #730 from rust-lang/cargo/0.4.32
• c8d3b12 prepare for 0.4.32 release
• ce6cd9f Merge pull request #729 from tisonkun/kv-std-support
• 20b3b05 drop cfg-feature=kv as it is already met
• 7bc1200 kv::std_support may not need value-bag
• 5808392 Merge pull request #728 from rust-lang/cargo/0.4.31
• 86d739f prepare for 0.4.31 release
• c906cfb Merge pull request #727 from tisonkun/leverage-static-str-key-when-possible
• 756c279 leverage str literal as well
• 3dd250d rename Key::from_static_str to from_str_static
• Additional commits viewable in compare view

Updates nix from 0.31.2 to 0.31.3

Changelog

Sourced from nix's changelog.

[0.31.3] - 2026-05-11

Added

• Enable module ioctl for Cygwin (#2715)
• Add CLOCK_BOOTTIME/CLOCK_PROCESS_CPUTIME_ID/CLOCK_THREAD_CPUTIME_ID/CLOCK_UPTIME to NetBSD-like platforms (#2716)
• unistd: add mkfifo for redox (#2749)
• Added kevent64 support on apple targets: Kqueue::kevent64, KEvent64, and Kevent64Flags. (#2781)

Fixed

• fix SaFlags_t definition on redox (#2751)
• Fixed EpollEvent::events() to use from_bits_retain instead of from_bits().unwrap(), preventing panics when the kernel returns unknown epoll flags. (#2783)
• Fixed KEvent::flags() and KEvent::fflags() to use from_bits_retain instead of from_bits().unwrap(), preventing panics when the kernel returns unknown kqueue flags. (#2784)

Commits

• b5933ca chore: release v0.31.3
• 5d6a46e Replace Cirrus CI with more Github Workflows jobs (#2776)
• 3407489 event: add kevent64 support on apple targets (#2781)
• fe80fc5 chore: resolve clippy useless_borrows_in_formatting (#2790)
• 3310fc7 Revert "fix(ci): temporarily disable armv7-unknown-linux-uclibceabihf (#2764)...
• e3ab917 epoll: use from_bits_retain to avoid panics on unknown flags (#2783)
• 6c15701 kqueue: use from_bits_retain to avoid panics on unknown flags (#2784)
• 73028cf fix(ci): enable Hurd target (#2765)
• 1a680a9 cargo: Remove deprecated package authors field (#2789)
• 85cff07 docs: add missing changelog entries (#2786)
• Additional commits viewable in compare view

Updates reqwest from 0.13.3 to 0.13.4

Release notes

Sourced from reqwest's releases.

v0.13.4

tl;dr

• Add ClientBuilder::tls_sslkeylogfile(bool) option to allow using the related environment variable.
• Add ClientBuilder::http2_keep_alive_* options for the blocking client.
• Add TLS 1.3 support when using native-tls backend.
• Fix redirect handling to strip sensitive headers when the scheme changes.
• Fix HTTP/3 happy-eyeball connection creation.
• Upgrade hickory-resolver to 0.26.

What's Changed

• fix(tls): improve rustls-no-provider panic message and add module docs by @​smythg4 in seanmonstar/reqwest#3021
• fix: do not lose the url in error when decoding json by @​Dushistov in seanmonstar/reqwest#3026
• Add tls_sslkeylogfile builder method by @​passcod in seanmonstar/reqwest#2923
• fix(redirect): strip sensitive headers on scheme change across redirects by @​SAY-5 in seanmonstar/reqwest#3034
• chore: upgrade MSRV to 1.85 by @​seanmonstar in seanmonstar/reqwest#3038
• chore: clean up minimal-versions CI job by @​seanmonstar in seanmonstar/reqwest#3039
• fix(http3): use happy eyeballs for h3 connect by @​lyuzichong in seanmonstar/reqwest#3030
• fix: update hickory-resolver to 0.26 and adjust code accordingly by @​seanmonstar in seanmonstar/reqwest#3040
• fix: remove unwrap in hickory initialization by @​mat813 in seanmonstar/reqwest#3041
• feat(https): support TLS 1.3 as min version under native-tls 🎉 by @​AverageHelper in seanmonstar/reqwest#2975
• Expose keep alive configurations in blocking client by @​aeb-dev in seanmonstar/reqwest#3043
• Prepare v0.13.4 by @​seanmonstar in seanmonstar/reqwest#3046

New Contributors

• @​smythg4 made their first contribution in seanmonstar/reqwest#3021
• @​Dushistov made their first contribution in seanmonstar/reqwest#3026
• @​SAY-5 made their first contribution in seanmonstar/reqwest#3034
• @​mat813 made their first contribution in seanmonstar/reqwest#3041
• @​AverageHelper made their first contribution in seanmonstar/reqwest#2975
• @​aeb-dev made their first contribution in seanmonstar/reqwest#3043

Full Changelog: seanmonstar/reqwest@v0.13.3...v0.13.4

Changelog

Sourced from reqwest's changelog.

v0.13.4

• Add ClientBuilder::tls_sslkeylogfile(bool) option to allow using the related environment variable.
• Add ClientBuilder::http2_keep_alive_* options for the blocking client.
• Add TLS 1.3 support when using native-tls backend.
• Fix redirect handling to strip sensitive headers when the scheme changes.
• Fix HTTP/3 happy-eyeball connection creation.
• Upgrade hickory-resolver to 0.26.

Commits

• 11489b3 v0.13.4
• d31ffbb feat: Expose HTTP2 keep alive configurations in blocking client (#3043)
• 79ed0d7 feat: support TLS 1.3 as min version under native-tls 🎉 (#2975)
• fb7bf6a fix: remove unwrap in hickory initialization (#3041)
• 3da616f fix: update hickory-resolver to 0.26 and adjust code accordingly (#3040)
• c77e7b2 fix(http3): use happy eyeballs for h3 connect (#3030)
• 9cbb65b chore: clean up minimal-versions CI job (#3039)
• 17a7dc5 chore: upgrade MSRV to 1.85 (#3038)
• 03db63a fix(redirect): strip sensitive headers on scheme change across redirects (#3034)
• 4b813a8 feat: add tls_sslkeylogfile builder method (#2923)
• Additional commits viewable in compare view

Updates reqwest-middleware from 0.5.1 to 0.5.2

Release notes

Sourced from reqwest-middleware's releases.

reqwest-middleware-v0.5.2

Added

• (reqwest-middleware) stream feature exported. (#246)
• expose internal reqwest::Client as reference (#209)

Other

• Adjust third-party middleware list in readme (#282)

Commits

• 614b947 chore: release (#280)
• 051dc25 feat!: support opentelemetry 0.32 (#284)
• 9bedaf8 Adjust third-party middleware list in readme (#282)
• 8bc3640 feat(reqwest-middleware): stream feature exported. (#246)
• de31517 feat: expose internal reqwest::Client as reference (#209)
• See full diff in compare view

Updates serde_json from 1.0.149 to 1.0.150

Release notes

Sourced from serde_json's releases.

v1.0.150

• Reject non-string enum object keys (#1324, thanks @​puneetdixit200)

Commits

• a1ae73a Release 1.0.150
• 1a360b0 Merge pull request #1324 from puneetdixit200/reject-non-string-enum-keys
• 2037b63 Reject non-string enum object keys
• 5d30df6 Resolve manual_assert_eq pedantic clippy lint
• dc8003a Raise required compiler for preserve_order feature to 1.85
• a42fa98 Unpin CI miri toolchain
• 684a60e Pin CI miri to nightly-2026-02-11
• 7c7da33 Raise required compiler to Rust 1.71
• acf4850 Simplify Number::is_f64
• 6b8ceab Resolve unnecessary_map_or clippy lint
• Additional commits viewable in compare view

Updates serde_with from 3.19.0 to 3.21.0

Release notes

Sourced from serde_with's releases.

serde_with v3.21.0

Security

• GHSA-7gcf-g7xr-8hxj: KeyValueMap serialization panics on empty sequence or map entries Bad or attacker controlled values could cause a panic while allocating too large values. Fixed in #966 by setting a maximum allocation size during the creation of collections like Vec or sets.

  Thanks to @​7thParkk for reporting the issue.

Added

• Add NoneAsZero adapter that maps Option<NonZero*> to a plain integer, encoding None as 0 by @​SAY-5 (#486)

Changed

• Re-enable link-to-definition on docs.rs (#964)

Fixed

• Fix some doc links to point to the correct types (#963)
• Re-enable unused_qualifications and fix the resulting findings by @​lms0806 (#962)

serde_with v3.20.0

Added

• Add support for base58 encoding, similar to the existing base64 setup by @​mitinarseny (#943)

Fixed

• Extend base64 with schemars support by @​mitinarseny (#9949)

Commits

• 0f4ca67 Update changelog for 3.21.0 (#967)
• 7654841 Update changelog for 3.21.0
• c8a1d82 Protect all collection creations against capacity overflow by using `size_hin...
• 6ad5fa5 Properly feature gate the vec_with_capacity_cautious function
• ef7d141 Protect all collection creations against capacity overflow by using `size_hin...
• a348da3 Add serde_as deserialize_as explain (#958)
• 2e5bc20 Bump the github-actions group with 3 updates (#965)
• 927a3d6 Bump the github-actions group with 3 updates
• 62d14ec Enable link-to-definition on docs.rs again, after the upstream issue was reso...
• 4584d94 Enable link-to-definition on docs.rs again, after the upstream issue was reso...
• Additional commits viewable in compare view

Updates tar from 0.4.45 to 0.4.46

Release notes

Sourced from tar's releases.

0.4.46

Security

• archive: Fix another PAX header desync (GHSA-3cv2-h65g-fgmm) by @​cgwalters in composefs/tar-rs#454

See also GHSA-3cv2-h65g-fgmm

Other changes

• ci: Fix and re-enable reverse dependency testing by @​cgwalters in composefs/tar-rs#444
• Update astral-tokio-tar requirement from 0.5 to 0.6 by @​dependabot[bot] in composefs/tar-rs#446
• Update some links by @​atouchet in composefs/tar-rs#445
• Add support of absolute paths by @​zxvfc in composefs/tar-rs#426
• docs: Expand notes on concurrent mutations and following symlinks by @​cgwalters in composefs/tar-rs#453
• Update repo links by @​cgwalters in composefs/tar-rs#451
• ci: Add crates.io trusted publishing workflow by @​cgwalters in composefs/tar-rs#456
• Release 0.4.46 by @​cgwalters in composefs/tar-rs#455

New Contributors

• @​dependabot[bot] made their first contribution in composefs/tar-rs#446
• @​atouchet made their first contribution in composefs/tar-rs#445
• @​zxvfc made their first contribution in composefs/tar-rs#426

Full Changelog: composefs/tar-rs@0.4.45...0.4.46

Commits

• fc459c1 Release 0.4.46
• 43e05a8 ci: Add crates.io trusted publishing workflow
• bba5666 Update repo links
• cd94c46 docs: Document TOCTOU / concurrent-mutation threat model
• 1b4997c builder: Expand docs for follow_symlinks and append_dir_all
• bab14dd archive: Fix another PAX header desync (GHSA-3cv2-h65g-fgmm)
• 2349b49 Add support of absolute paths
• 39d0311 Update some links
• 59d803e Update astral-tokio-tar requirement from 0.5 to 0.6
• 8296b9a ci: Fix and re-enable reverse dependency testing (#444)
• See full diff in compare view

Updates uuid from 1.23.1 to 1.23.2

Release notes

Sourced from uuid's releases.

v1.23.2

What's Changed

• Improve error messages for ambiguous formats by @​KodrAus in uuid-rs/uuid#882
• Prepare for 1.23.2 release by @​KodrAus in uuid-rs/uuid#883

Full Changelog: uuid-rs/uuid@v1.23.1...v1.23.2

Commits

• d119657 Merge pull request #883 from uuid-rs/cargo/v1.23.2
• 0651cfc prepare for 1.23.2 release
• e8dea0c Merge pull request #882 from uuid-rs/fix/error-msgs
• bdc429a fix up serde messages
• d4342e4 make indexes 0 based and fix up more error messages
• 4ad479f work on more accurate parser errors
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions