Skip to content

chore(deps): bump the cargo-minor-patch group with 2 updates#170

Closed
dependabot[bot] wants to merge 1 commit intoDevfrom
dependabot/cargo/Dev/cargo-minor-patch-5f7a84da95
Closed

chore(deps): bump the cargo-minor-patch group with 2 updates#170
dependabot[bot] wants to merge 1 commit intoDevfrom
dependabot/cargo/Dev/cargo-minor-patch-5f7a84da95

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Mar 16, 2026
edited
Loading

Bumps the cargo-minor-patch group with 2 updates: zip and tempfile.

Updates zip from 8.0.0 to 8.2.0

Release notes

Sourced from zip's releases.

v8.2.0

🚀 Features

  • allow custom salt (#680)
  • Support compressing bzip2 when feature bzip2-rs is enabled, since bzip2/bzip2-sys now supports it (#685)
  • enforce clippy in CI (#674)

🐛 Bug Fixes

  • zip64 central header (issue 617) (#629)
  • allow aes password as bytes (#686)
  • handle extra field padding (#682)

🚜 Refactor

  • Simplify 2 type conversions in src/write.rs (#687)

⚡ Performance

  • AI tweaks for string type conversions in src/types.rs (#670)

v8.1.0

🚀 Features

  • (writer) Allow getting underlying writer of ZipWriter (#464)
  • add system to FileOption, so byte-for-byte identical archives can be created across platforms (#660)

🐛 Bug Fixes

  • Bugs in extra-data length calculation in src/write.rs (#662)
Changelog

Sourced from zip's changelog.

8.2.0 - 2026-03-02

🚀 Features

  • allow custom salt (#680)
  • Support compressing bzip2 when feature bzip2-rs is enabled, since bzip2/bzip2-sys now supports it (#685)
  • enforce clippy in CI (#674)

🐛 Bug Fixes

  • zip64 central header (issue 617) (#629)
  • allow aes password as bytes (#686)
  • handle extra field padding (#682)

🚜 Refactor

  • Simplify 2 type conversions in src/write.rs (#687)

⚡ Performance

  • AI tweaks for string type conversions in src/types.rs (#670)

8.1.0 - 2026-02-16

🚀 Features

  • (writer) Allow getting underlying writer of ZipWriter (#464)
  • add system to FileOption, so byte-for-byte identical archives can be created across platforms (#660)

🐛 Bug Fixes

  • Bugs in extra-data length calculation in src/write.rs (#662)
Commits
  • ff001c6 chore: release v8.2.0 (#678)
  • 9c328dc ci(deps): bump github/codeql-action from 4.32.2 to 4.32.4 (#707)
  • f2bd439 test: add test to check len of zip64 (#705)
  • 617cee1 test: Add a test that validates CRC_TABLE (#690)
  • 2ee1e93 style: Rename KEYSTREAM_BASE_SUFFIX to KEYSTREAM_BITMASK and clarify comment ...
  • 18301ce style: Potential fix for 1 code quality finding in tests/zip_ntfs.rs (#702)
  • 240f27a feat: allow custom salt (#680)
  • 8c36837 ci(deps): bump actions/dependency-review-action from 4.8.2 to 4.8.3 (#698)
  • 79a46ea Apply suggested fix to tests/zip_extra_field.rs from Copilot Autofix (#701)
  • 7c2c6bd style: Remove macros (#689)
  • Additional commits viewable in compare view

Updates tempfile from 3.26.0 to 3.27.0

Changelog

Sourced from tempfile's changelog.

3.27.0

This release adds TempPath::try_from_path and deprecates TempPath::from_path.

Prior to this release, TempPath::from_path made no attempts to convert relative paths into absolute paths. The following code would have deleted the wrong file:

let tmp_path = TempPath::from_path("foo")
std::env::set_current_dir("/some/other/path").unwrap();
drop(tmp_path);

Now:

  1. TempPath::from_path will attempt to convert relative paths into absolute paths. However, this isn't always possible as we need to call std::env::current_dir, which can fail. If we fail to convert the relative path to an absolute path, we simply keep the relative path.
  2. The TempPath::try_from_path behaves exactly like TempPath::from_path, except that it returns an error if we fail to convert a relative path into an absolute path (or if the passed path is empty).

Neither function attempt to verify the existence of the file in question.

Thanks to @​meng-xu-cs for reporting this issue.

Commits
  • 5c8fa12 chore: release 3.27.0
  • e34e574 test: disable uds conflict test on redox
  • 772c795 test: add CWD guards
  • 2632fb9 fix: resolve relative paths when constructing TempPath
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the cargo-minor-patch group with 2 updates
b711ec8 
Bumps the cargo-minor-patch group with 2 updates: [zip](https://github.com/zip-rs/zip2) and [tempfile](https://github.com/Stebalien/tempfile).


Updates `zip` from 8.0.0 to 8.2.0
- [Release notes](https://github.com/zip-rs/zip2/releases)
- [Changelog](https://github.com/zip-rs/zip2/blob/master/CHANGELOG.md)
- [Commits](zip-rs/zip2@v8.0.0...v8.2.0)

Updates `tempfile` from 3.26.0 to 3.27.0
- [Changelog](https://github.com/Stebalien/tempfile/blob/master/CHANGELOG.md)
- [Commits](Stebalien/tempfile@v3.26.0...v3.27.0)

---
updated-dependencies:
- dependency-name: zip
  dependency-version: 8.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: cargo-minor-patch
- dependency-name: tempfile
  dependency-version: 3.27.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: cargo-minor-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added deps Dependency updates rust Rust/Cargo updates labels Mar 16, 2026
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot bot commented on behalf of github Mar 16, 2026

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Mar 16, 2026
@dependabot dependabot bot deleted the dependabot/cargo/Dev/cargo-minor-patch-5f7a84da95 branch March 16, 2026 17:32
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

deps Dependency updates rust Rust/Cargo updates

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants