Skip to content

build(deps): bump the simple2 group across 1 directory with 11 updates#37033

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/simple2-a32e7e8fe1
Open

build(deps): bump the simple2 group across 1 directory with 11 updates#37033
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/simple2-a32e7e8fe1

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 14, 2026

Copy link
Copy Markdown
Contributor

Bumps the simple2 group with 9 updates in the / directory:

Package From To
native-tls 0.2.15 0.2.18
prost 0.14.3 0.14.4
prost-build 0.14.3 0.14.4
prost-reflect 0.16.3 0.16.4
regex 1.12.3 1.12.4
rpassword 7.5.2 7.5.4
smallvec 1.15.1 1.15.2
socket2 0.6.3 0.6.4
which 8.0.2 8.0.3

Updates native-tls from 0.2.15 to 0.2.18

Release notes

Sourced from native-tls's releases.

v0.2.17

What's Changed

Full Changelog: rust-native-tls/rust-native-tls@v0.2.16...v0.2.17

v0.2.16

Full Changelog: rust-native-tls/rust-native-tls@v0.2.15...v0.2.16

Changelog

Sourced from native-tls's changelog.

[v0.2.18]

  • Fixed min/max protocol selection fallback for very old OpenSSL versions.

[v0.2.17]

  • Added support for ALPN on the server side on non-Apple platforms.
  • Fixed iOS + ALPN feature flag.

[v0.2.16]

  • Added TLS 1.3 as an option on non-Apple platforms. Apple platforms will fall back to TLS 1.2 when it's allowed, or fail due to lack of TLS 1.3 in the Security.framework.
  • Added stack_from_pem (except iOS).
  • Upgraded openssl-probe.
  • Upgraded Security.framework bindings.
  • Simplified cfg()s to support all non-macOS Apple platforms.
Commits
  • 3cf1877 TLS 1.3 min/max fallback for old OpenSSL versions
  • a352cb3 Exclude unused files from the package
  • be13f94 Release 0.2.17
  • 8213e1d fmt
  • c250fa7 Test features
  • bd165e9 Work around set_alpn_select_callback lifetime issues
  • 64439ad Use separate feature flag for server-side ALPN
  • aa71c45 Common helper for alpn
  • 1be1ac9 add ALPN server side test
  • f640501 Add ALPN implement for schannel
  • Additional commits viewable in compare view

Updates prost from 0.14.3 to 0.14.4

Changelog

Sourced from prost's changelog.

Prost version 0.14.4

PROST! is a Protocol Buffers implementation for the Rust Language. prost generates simple, idiomatic Rust code from proto2 and proto3 files.

🚀 Features

  • (prost-derive) Make is_valid a constant function (#1401)
  • Increase MSRV to 1.85 (#1428)

🐛 Bug Fixes

  • Use Display instead of Debug for generated enumeration attributes (#1419)
  • (prost-derive) Return error for invalid enumeration default identifiers (#1426)
  • (build) Grab binary path from cargo (#1429)
  • (build) Fix C++ build on GCC 15 (#1395)

📚 Documentation

  • Add example for decode_length_delimiter (#1311)
  • Update protobuf-src example to avoid unsafe set_var

🧪 Testing

  • Test derive Eq behavior (#1422)
  • (groups) Actually construct NestedGroup (#1363)

💼 Dependencies

  • (deps) Update criterion requirement from 0.7 to 0.8 (#1374)
  • (deps) Remove getrandom@0.4.1 from build-dependencies (#1400)
  • (deps) Update rand requirement from 0.9 to 0.10 (#1397)
  • (deps) Bump actions/upload-artifact from 6 to 7 (#1409)
  • (deps) Update cargo clippy to 1.89 (#1433)
  • (deps) Update cargo clippy to 1.91 (#1435)
  • (deps) Update and improve nix devshell (#1393)

🎨 Styling

  • Prevent needless borrow (#1404)
  • Use std::hint::black_box() (#1403)
  • Use variables directly in format!() (#1432)
  • Remove explicit .into_iter() (#1434)
  • Run clippy on benches (#1405)
Commits

Updates prost-build from 0.14.3 to 0.14.4

Changelog

Sourced from prost-build's changelog.

Prost version 0.14.4

PROST! is a Protocol Buffers implementation for the Rust Language. prost generates simple, idiomatic Rust code from proto2 and proto3 files.

🚀 Features

  • (prost-derive) Make is_valid a constant function (#1401)
  • Increase MSRV to 1.85 (#1428)

🐛 Bug Fixes

  • Use Display instead of Debug for generated enumeration attributes (#1419)
  • (prost-derive) Return error for invalid enumeration default identifiers (#1426)
  • (build) Grab binary path from cargo (#1429)
  • (build) Fix C++ build on GCC 15 (#1395)

📚 Documentation

  • Add example for decode_length_delimiter (#1311)
  • Update protobuf-src example to avoid unsafe set_var

🧪 Testing

  • Test derive Eq behavior (#1422)
  • (groups) Actually construct NestedGroup (#1363)

💼 Dependencies

  • (deps) Update criterion requirement from 0.7 to 0.8 (#1374)
  • (deps) Remove getrandom@0.4.1 from build-dependencies (#1400)
  • (deps) Update rand requirement from 0.9 to 0.10 (#1397)
  • (deps) Bump actions/upload-artifact from 6 to 7 (#1409)
  • (deps) Update cargo clippy to 1.89 (#1433)
  • (deps) Update cargo clippy to 1.91 (#1435)
  • (deps) Update and improve nix devshell (#1393)

🎨 Styling

  • Prevent needless borrow (#1404)
  • Use std::hint::black_box() (#1403)
  • Use variables directly in format!() (#1432)
  • Remove explicit .into_iter() (#1434)
  • Run clippy on benches (#1405)
Commits

Updates prost-reflect from 0.16.3 to 0.16.4

Release notes

Sourced from prost-reflect's releases.

prost-reflect-v0.16.4

Fixed

  • Fix proto3 default for is_packed when FieldOptions is present but packed is absent (#196)

Other

  • Update logos to 0.16.0 #192
Changelog

Sourced from prost-reflect's changelog.

0.16.4 - 2026-05-24

Fixed

  • Fix proto3 default for is_packed when FieldOptions is present but packed is absent (#196)

Other

  • Update logos to 0.16.0 #192
Commits
  • 4815843 chore: release (#191)
  • 6e22dfe replace serde_yaml 0.9 to yaml_serde 0.10 (#193)
  • 57f463a test: extend is_packed regression to cover proto2 and extension fields (#198)
  • 9be1d05 Fix unbounded regex in text format parser
  • e85b8e1 Merge remote-tracking branch 'origin/main' into bump_logos
  • ca7f286 fix: restore proto3 default for is_packed when FieldOptions is present but pa...
  • 1aabd79 Fix ci (#197)
  • f88da53 Update logos to remove some outdated dependencies
  • See full diff in compare view

Updates prost-types from 0.14.3 to 0.14.4

Changelog

Sourced from prost-types's changelog.

Prost version 0.14.4

PROST! is a Protocol Buffers implementation for the Rust Language. prost generates simple, idiomatic Rust code from proto2 and proto3 files.

🚀 Features

  • (prost-derive) Make is_valid a constant function (#1401)
  • Increase MSRV to 1.85 (#1428)

🐛 Bug Fixes

  • Use Display instead of Debug for generated enumeration attributes (#1419)
  • (prost-derive) Return error for invalid enumeration default identifiers (#1426)
  • (build) Grab binary path from cargo (#1429)
  • (build) Fix C++ build on GCC 15 (#1395)

📚 Documentation

  • Add example for decode_length_delimiter (#1311)
  • Update protobuf-src example to avoid unsafe set_var

🧪 Testing

  • Test derive Eq behavior (#1422)
  • (groups) Actually construct NestedGroup (#1363)

💼 Dependencies

  • (deps) Update criterion requirement from 0.7 to 0.8 (#1374)
  • (deps) Remove getrandom@0.4.1 from build-dependencies (#1400)
  • (deps) Update rand requirement from 0.9 to 0.10 (#1397)
  • (deps) Bump actions/upload-artifact from 6 to 7 (#1409)
  • (deps) Update cargo clippy to 1.89 (#1433)
  • (deps) Update cargo clippy to 1.91 (#1435)
  • (deps) Update and improve nix devshell (#1393)

🎨 Styling

  • Prevent needless borrow (#1404)
  • Use std::hint::black_box() (#1403)
  • Use variables directly in format!() (#1432)
  • Remove explicit .into_iter() (#1434)
  • Run clippy on benches (#1405)
Commits

Updates regex from 1.12.3 to 1.12.4

Changelog

Sourced from regex's changelog.

1.12.4 (2025-06-09)

This release includes a performance optimization for compilation of regexes with very large character classes.

Improvements:

  • #1308: Avoid re-canonicalizing the entire interval set when pushing new class ranges.
Commits
  • 7b96fdc 1.12.4
  • 7b89cf0 deps: update to regex-syntax 0.8.11
  • 1401679 regex-syntax-0.8.11
  • d709000 changelog: 1.12.4
  • 9825c74 syntax: avoid re-canonicalizing the entire IntervalSet on push (#1308)
  • a7f2ff6 docs: clarify regex-lite word boundaries
  • 2c7b172 docs: clarify unsupported Anchored::Pattern searches
  • 839d16b regex-syntax-0.8.10
  • c4865a0 syntax: fix negation handling in HIR translation
  • d8761c0 cargo: also include benches
  • Additional commits viewable in compare view

Updates regex-syntax from 0.8.10 to 0.8.11

Commits
  • 1401679 regex-syntax-0.8.11
  • d709000 changelog: 1.12.4
  • 9825c74 syntax: avoid re-canonicalizing the entire IntervalSet on push (#1308)
  • a7f2ff6 docs: clarify regex-lite word boundaries
  • 2c7b172 docs: clarify unsupported Anchored::Pattern searches
  • See full diff in compare view

Updates rpassword from 7.5.2 to 7.5.4

Release notes

Sourced from rpassword's releases.

v7.5.4

No functional changes.

I've added license checks with Cargo Deny to ensure that the Apache 2.0 license is compatible with dependencies.

This release also updates the description to make it clear this library is cross-platform on crates.io.

v7.5.3

Fixes compile errors with Rust 1.85. Thanks @​nwalfield for reporting in conradkleinespel/rpassword#130.

Backwards compatible. No breaking change.

Commits
  • 1151510 add license checks
  • 3ca2ece bump to 7.5.3
  • ed863bf remove cargo-tarpaulin build incompatible with rust 1.85 from ci
  • 479012d fixes compile errors with rust 1.85
  • 6ee4708 update nix config to use rust 1.85
  • 6d3518d run ci with rust 1.85
  • See full diff in compare view

Updates smallvec from 1.15.1 to 1.15.2

Release notes

Sourced from smallvec's releases.

v1.15.2

What's Changed

New Contributors

Full Changelog: servo/rust-smallvec@v1.15.1...v1.15.2

Commits
  • c469051 Bump version.
  • 9fe422b Fix Windows CI.
  • 51b965f Work around rustc 1.93 perf regression with MaybeUninit
  • 9da26a5 Fix use-after-free in DrainFilter::keep_rest for zero-capacity SmallVecs
  • 79184f1 Add Miri test for use-after-free in DrainFilter::keep_rest
  • f59fb36 Merge pull request #397 from GiGainfosystems/exclude_scripts
  • 28b6ed7 Exclude development script
  • See full diff in compare view

Updates socket2 from 0.6.3 to 0.6.4

Changelog

Sourced from socket2's changelog.

0.6.4

Commits

Updates which from 8.0.2 to 8.0.3

Release notes

Sourced from which's releases.

8.0.3

What's Changed

New Contributors

Full Changelog: harryfei/which-rs@8.0.2...8.0.3

Changelog

Sourced from which's changelog.

8.0.3

  • Add fallback implementation of is_valid_executable allowing which-rs to compile on targets which are not Unix, Windows, WASI, or Redox. Thanks @​pmikolajczyk41 for your contribution to which!
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump the simple2 group across 1 directory with 11 updates
3f50cad 
Bumps the simple2 group with 9 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [native-tls](https://github.com/rust-native-tls/rust-native-tls) | `0.2.15` | `0.2.18` |
| [prost](https://github.com/tokio-rs/prost) | `0.14.3` | `0.14.4` |
| [prost-build](https://github.com/tokio-rs/prost) | `0.14.3` | `0.14.4` |
| [prost-reflect](https://github.com/andrewhickman/prost-reflect) | `0.16.3` | `0.16.4` |
| [regex](https://github.com/rust-lang/regex) | `1.12.3` | `1.12.4` |
| [rpassword](https://github.com/conradkleinespel/rpassword) | `7.5.2` | `7.5.4` |
| [smallvec](https://github.com/servo/rust-smallvec) | `1.15.1` | `1.15.2` |
| [socket2](https://github.com/rust-lang/socket2) | `0.6.3` | `0.6.4` |
| [which](https://github.com/harryfei/which-rs) | `8.0.2` | `8.0.3` |



Updates `native-tls` from 0.2.15 to 0.2.18
- [Release notes](https://github.com/rust-native-tls/rust-native-tls/releases)
- [Changelog](https://github.com/rust-native-tls/rust-native-tls/blob/main/CHANGELOG.md)
- [Commits](rust-native-tls/rust-native-tls@v0.2.15...v0.2.18)

Updates `prost` from 0.14.3 to 0.14.4
- [Release notes](https://github.com/tokio-rs/prost/releases)
- [Changelog](https://github.com/tokio-rs/prost/blob/master/CHANGELOG.md)
- [Commits](tokio-rs/prost@v0.14.3...v0.14.4)

Updates `prost-build` from 0.14.3 to 0.14.4
- [Release notes](https://github.com/tokio-rs/prost/releases)
- [Changelog](https://github.com/tokio-rs/prost/blob/master/CHANGELOG.md)
- [Commits](tokio-rs/prost@v0.14.3...v0.14.4)

Updates `prost-reflect` from 0.16.3 to 0.16.4
- [Release notes](https://github.com/andrewhickman/prost-reflect/releases)
- [Changelog](https://github.com/andrewhickman/prost-reflect/blob/main/CHANGELOG.md)
- [Commits](andrewhickman/prost-reflect@prost-reflect-v0.16.3...prost-reflect-v0.16.4)

Updates `prost-types` from 0.14.3 to 0.14.4
- [Release notes](https://github.com/tokio-rs/prost/releases)
- [Changelog](https://github.com/tokio-rs/prost/blob/master/CHANGELOG.md)
- [Commits](tokio-rs/prost@v0.14.3...v0.14.4)

Updates `regex` from 1.12.3 to 1.12.4
- [Release notes](https://github.com/rust-lang/regex/releases)
- [Changelog](https://github.com/rust-lang/regex/blob/master/CHANGELOG.md)
- [Commits](rust-lang/regex@1.12.3...1.12.4)

Updates `regex-syntax` from 0.8.10 to 0.8.11
- [Release notes](https://github.com/rust-lang/regex/releases)
- [Changelog](https://github.com/rust-lang/regex/blob/master/CHANGELOG.md)
- [Commits](rust-lang/regex@regex-syntax-0.8.10...regex-syntax-0.8.11)

Updates `rpassword` from 7.5.2 to 7.5.4
- [Release notes](https://github.com/conradkleinespel/rpassword/releases)
- [Commits](conradkleinespel/rpassword@v7.5.2...v7.5.4)

Updates `smallvec` from 1.15.1 to 1.15.2
- [Release notes](https://github.com/servo/rust-smallvec/releases)
- [Commits](servo/rust-smallvec@v1.15.1...v1.15.2)

Updates `socket2` from 0.6.3 to 0.6.4
- [Release notes](https://github.com/rust-lang/socket2/releases)
- [Changelog](https://github.com/rust-lang/socket2/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rust-lang/socket2/commits)

Updates `which` from 8.0.2 to 8.0.3
- [Release notes](https://github.com/harryfei/which-rs/releases)
- [Changelog](https://github.com/harryfei/which-rs/blob/master/CHANGELOG.md)
- [Commits](harryfei/which-rs@8.0.2...8.0.3)

---
updated-dependencies:
- dependency-name: native-tls
  dependency-version: 0.2.18
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: simple2
- dependency-name: prost
  dependency-version: 0.14.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: simple2
- dependency-name: prost-build
  dependency-version: 0.14.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: simple2
- dependency-name: prost-reflect
  dependency-version: 0.16.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: simple2
- dependency-name: prost-types
  dependency-version: 0.14.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: simple2
- dependency-name: regex
  dependency-version: 1.12.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: simple2
- dependency-name: regex-syntax
  dependency-version: 0.8.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: simple2
- dependency-name: rpassword
  dependency-version: 7.5.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: simple2
- dependency-name: smallvec
  dependency-version: 1.15.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: simple2
- dependency-name: socket2
  dependency-version: 0.6.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: simple2
- dependency-name: which
  dependency-version: 8.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: simple2
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the A-dependencies Area: dependency upgrades label Jun 14, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

A-dependencies Area: dependency upgrades

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants