Skip to content

chore(deps): bump the rust-dependencies group across 1 directory with 5 updates#369

Closed
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/cargo/rust-dependencies-a6e386d89f
Closed

chore(deps): bump the rust-dependencies group across 1 directory with 5 updates#369
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/cargo/rust-dependencies-a6e386d89f

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 11, 2026
edited
Loading

Bumps the rust-dependencies group with 5 updates in the / directory:

Package From To
tokio 1.49.0 1.50.0
tempfile 3.26.0 3.27.0
ctrlc 3.5.1 3.5.2
libc 0.2.182 0.2.183
criterion 0.5.1 0.8.2

Updates tokio from 1.49.0 to 1.50.0

Release notes

Sourced from tokio's releases.

Tokio v1.50.0

1.50.0 (Mar 3rd, 2026)

Added

  • net: add TcpStream::set_zero_linger (#7837)
  • rt: add is_rt_shutdown_err (#7771)

Changed

  • io: add optimizer hint that memchr returns in-bounds pointer (#7792)
  • io: implement vectored writes for write_buf (#7871)
  • runtime: panic when event_interval is set to 0 (#7838)
  • runtime: shorten default thread name to fit in Linux limit (#7880)
  • signal: remember the result of SetConsoleCtrlHandler (#7833)
  • signal: specialize windows Registry (#7885)

Fixed

  • io: always cleanup AsyncFd registration list on deregister (#7773)
  • macros: remove (most) local use declarations in tokio::select! (#7929)
  • net: fix GET_BUF_SIZE constant for target_os = "android" (#7889)
  • runtime: avoid redundant unpark in current_thread scheduler (#7834)
  • runtime: don't park in current_thread if before_park defers waker (#7835)
  • io: fix write readiness on ESP32 on short writes (#7872)
  • runtime: wake deferred tasks before entering block_in_place (#7879)
  • sync: drop rx waker when oneshot receiver is dropped (#7886)
  • runtime: fix double increment of num_idle_threads on shutdown (#7910, #7918, #7922)

Unstable

  • fs: check for io-uring opcode support (#7815)
  • runtime: avoid lock acquisition after uring init (#7850)

Documented

  • docs: update outdated unstable features section (#7839)
  • io: clarify the behavior of AsyncWriteExt::shutdown() (#7908)
  • io: explain how to flush stdout/stderr (#7904)
  • io: fix incorrect and confusing AsyncWrite documentation (#7875)
  • rt: clarify the documentation of Runtime::spawn (#7803)
  • rt: fix missing quotation in docs (#7925)
  • runtime: correct the default thread name in docs (#7896)
  • runtime: fix event_interval doc (#7932)
  • sync: clarify RwLock fairness documentation (#7919)
  • sync: clarify that recv returns None once closed and no more messages (#7920)
  • task: clarify when to use spawn_blocking vs dedicated threads (#7923)
  • task: doc that task drops before JoinHandle completion (#7825)
  • signal: guarantee that listeners never return None (#7869)
  • task: fix task module feature flags in docs (#7891)

... (truncated)

Commits

Updates tempfile from 3.26.0 to 3.27.0

Changelog

Sourced from tempfile's changelog.

3.27.0

This release adds TempPath::try_from_path and deprecates TempPath::from_path.

Prior to this release, TempPath::from_path made no attempts to convert relative paths into absolute paths. The following code would have deleted the wrong file:

let tmp_path = TempPath::from_path("foo")
std::env::set_current_dir("/some/other/path").unwrap();
drop(tmp_path);

Now:

  1. TempPath::from_path will attempt to convert relative paths into absolute paths. However, this isn't always possible as we need to call std::env::current_dir, which can fail. If we fail to convert the relative path to an absolute path, we simply keep the relative path.
  2. The TempPath::try_from_path behaves exactly like TempPath::from_path, except that it returns an error if we fail to convert a relative path into an absolute path (or if the passed path is empty).

Neither function attempt to verify the existence of the file in question.

Thanks to @​meng-xu-cs for reporting this issue.

Commits
  • 5c8fa12 chore: release 3.27.0
  • e34e574 test: disable uds conflict test on redox
  • 772c795 test: add CWD guards
  • 2632fb9 fix: resolve relative paths when constructing TempPath
  • See full diff in compare view

Updates ctrlc from 3.5.1 to 3.5.2

Commits

Updates libc from 0.2.182 to 0.2.183

Release notes

Sourced from libc's releases.

0.2.183

Added

  • ESP-IDF: Add SOMAXCONN (#4993)
  • Linux: Add name_to_handle_at and open_by_handle_at (#4988)
  • NetBSD: Add kinfo_file, kinfo_pcb, and related constants (#4985)
  • OpenBSD: Add kinfo_file and related constants (#4991)
  • VxWorks: Add additional structs and defines (#5003)
  • Various: Implement Default for timeval and timespec (#4976)

Fixed

  • Hexagon musl: Enable unstable 64-bit time_t support and musl_v1_2_3 (#4992)
  • Nintendo Switch: Fix target support (#4982)
  • OpenBSD: Wrap an unused field in Padding (#4997)
  • Redox: Change sigaction.sa_flags to c_int (#4986)
  • Redox: Fix blkcnt_t type (#4994)
Changelog

Sourced from libc's changelog.

0.2.183 - 2026-03-08

Added

  • ESP-IDF: Add SOMAXCONN (#4993)
  • Linux: Add name_to_handle_at and open_by_handle_at (#4988)
  • NetBSD: Add kinfo_file, kinfo_pcb, and related constants (#4985)
  • OpenBSD: Add kinfo_file and related constants (#4991)
  • VxWorks: Add additional structs and defines (#5003)
  • Various: Implement Default for timeval and timespec (#4976)

Fixed

  • Hexagon musl: Enable unstable 64-bit time_t support and musl_v1_2_3 (#4992)
  • Nintendo Switch: Fix target support (#4982)
  • OpenBSD: Wrap an unused field in Padding (#4997)
  • Redox: Change sigaction.sa_flags to c_int (#4986)
  • Redox: Fix blkcnt_t type (#4994)
Commits
  • 5660e6f chore: Release libc 0.2.183
  • 8b439b7 allow unused link_cfg feature in rustc-dep-of-std
  • e6436dc Adding structs and defines for vxworks
  • e9cca04 Linux: add name_to_handle_at and open_by_handle_at
  • af8b812 linux: relocate PIDFD definitions to src/new
  • d0bd7e2 NetBSD: add kinfo_file, kinfo_pcb structures and related constants
  • 17f5cce build(deps): bump actions/upload-artifact from 6 to 7
  • 62c89e8 OpenBSD: Wrap an unused field in Padding
  • 82cb126 enable musl32_time64 and musl_v1_2_3 for hexagon
  • e7f9902 redox: fix blkcnt_t type
  • Additional commits viewable in compare view

Updates criterion from 0.5.1 to 0.8.2

Release notes

Sourced from criterion's releases.

criterion-plot-v0.8.2

Other

  • Update Readme

criterion-v0.8.2

Fixed

  • don't build alloca on unsupported targets

Other

  • (deps) bump crate-ci/typos from 1.40.0 to 1.43.0
  • Fix panic with uniform iteration durations in benchmarks
  • Update Readme
  • Exclude development scripts from published package

criterion-plot-v0.8.1

Fixed

  • Typo

criterion-v0.8.1

Fixed

  • Homepage link

Other

  • (deps) bump crate-ci/typos from 1.23.5 to 1.40.0
  • (deps) bump jontze/action-mdbook from 3 to 4
  • (deps) bump actions/checkout from 4 to 6

criterion-plot-v0.8.0

No release notes provided.

criterion-v0.8.0

BREAKING

  • Drop async-std support

Changed

  • Bump MSRV to 1.86, stable to 1.91.1

Added

  • Add ability to plot throughput on summary page.
  • Add support for reporting throughput in elements and bytes - Throughput::ElementsAndBytes allows the text summary to report throughput in both units simultaneously.
  • Add alloca-based memory layout randomisation to mitigate memory effects on measurements.

... (truncated)

Changelog

Sourced from criterion's changelog.

0.8.2 - 2026-02-04

Fixed

  • don't build alloca on unsupported targets

Other

  • (deps) bump crate-ci/typos from 1.40.0 to 1.43.0
  • Fix panic with uniform iteration durations in benchmarks
  • Update Readme
  • Exclude development scripts from published package

0.8.1 - 2025-12-07

Fixed

  • Homepage link

Other

  • (deps) bump crate-ci/typos from 1.23.5 to 1.40.0
  • (deps) bump jontze/action-mdbook from 3 to 4
  • (deps) bump actions/checkout from 4 to 6

0.8.0 - 2025-11-29

BREAKING

  • Drop async-std support

Changed

  • Bump MSRV to 1.86, stable to 1.91.1

Added

  • Add ability to plot throughput on summary page.
  • Add support for reporting throughput in elements and bytes - Throughput::ElementsAndBytes allows the text summary to report throughput in both units simultaneously.
  • Add alloca-based memory layout randomisation to mitigate memory effects on measurements.
  • Add doc comment to benchmark runner in criterion_group macro (removes linter warnings)

Fixed

  • Fix plotting NaN bug

Other

  • Remove Master API Docs links temporarily while we restore the docs publishing.

... (truncated)

Commits
  • 7f0d745 chore: release v0.8.2
  • 4a467ce chore(deps): bump crate-ci/typos from 1.40.0 to 1.43.0
  • b277a75 Fix panic with uniform iteration durations in benchmarks
  • 828af14 fix: don't build alloca on unsupported targets
  • b01316b Update Readme
  • 4c02a3b Exclude development scripts from published package
  • e4e06df chore: release v0.8.1
  • aa548b9 fix: Homepage link
  • 950c3b7 fix: Typo
  • 7e3e50c chore(deps): bump crate-ci/typos from 1.23.5 to 1.40.0
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the rust-dependencies group across 1 directory with…
2886f62 
… 5 updates

Bumps the rust-dependencies group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [tokio](https://github.com/tokio-rs/tokio) | `1.49.0` | `1.50.0` |
| [tempfile](https://github.com/Stebalien/tempfile) | `3.26.0` | `3.27.0` |
| [ctrlc](https://github.com/Detegr/rust-ctrlc) | `3.5.1` | `3.5.2` |
| [libc](https://github.com/rust-lang/libc) | `0.2.182` | `0.2.183` |
| [criterion](https://github.com/criterion-rs/criterion.rs) | `0.5.1` | `0.8.2` |



Updates `tokio` from 1.49.0 to 1.50.0
- [Release notes](https://github.com/tokio-rs/tokio/releases)
- [Commits](tokio-rs/tokio@tokio-1.49.0...tokio-1.50.0)

Updates `tempfile` from 3.26.0 to 3.27.0
- [Changelog](https://github.com/Stebalien/tempfile/blob/master/CHANGELOG.md)
- [Commits](Stebalien/tempfile@v3.26.0...v3.27.0)

Updates `ctrlc` from 3.5.1 to 3.5.2
- [Release notes](https://github.com/Detegr/rust-ctrlc/releases)
- [Commits](Detegr/rust-ctrlc@3.5.1...3.5.2)

Updates `libc` from 0.2.182 to 0.2.183
- [Release notes](https://github.com/rust-lang/libc/releases)
- [Changelog](https://github.com/rust-lang/libc/blob/0.2.183/CHANGELOG.md)
- [Commits](rust-lang/libc@0.2.182...0.2.183)

Updates `criterion` from 0.5.1 to 0.8.2
- [Release notes](https://github.com/criterion-rs/criterion.rs/releases)
- [Changelog](https://github.com/criterion-rs/criterion.rs/blob/master/CHANGELOG.md)
- [Commits](criterion-rs/criterion.rs@0.5.1...criterion-v0.8.2)

---
updated-dependencies:
- dependency-name: tokio
  dependency-version: 1.50.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: rust-dependencies
- dependency-name: tempfile
  dependency-version: 3.27.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: rust-dependencies
- dependency-name: ctrlc
  dependency-version: 3.5.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-dependencies
- dependency-name: libc
  dependency-version: 0.2.183
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-dependencies
- dependency-name: criterion
  dependency-version: 0.8.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: rust-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Mar 11, 2026

Labels

The following labels could not be found: dependencies, rust. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@dependabot dependabot bot requested a review from Coldaine as a code owner March 11, 2026 23:09
@chatgpt-codex-connector
Copy link

chatgpt-codex-connector bot commented Mar 11, 2026

Codex usage limits have been reached for code reviews. Please check with the admins of this repo to increase the limits by adding credits.
Credits must be used to enable repository wide code reviews.

@kilo-code-bot
Copy link

kilo-code-bot bot commented Mar 11, 2026

Code Review Roast 🔥

Verdict: No Issues Found | Recommendation: Merge

Oh wait, this PR is actually clean. I need to sit down. I had my flamethrower warmed up and everything.

This is a refreshingly boring dependency update PR - the kind that makes you go "that's it?" and then you realize that's exactly what you wanted. Just version bumps across the board:

  • tokio 1.49 → 1.50 (minor, should be smooth sailing)
  • criterion 0.5 → 0.8 (the biggest jump, but it's only a dev-dependency for benchmarks and uses stable APIs)
  • libc and tempfile (patch updates, carry on)

The Cargo.lock diff is what you'd expect - transitive dependencies shuffling around, nothing scary. The removed is-terminal crate and updated itertools are expected collateral from the criterion upgrade.

📊 Overall: Like finding a unicorn in production — I didn't think clean dependency PRs existed anymore, but here we are. Merge it before it changes.

Files Reviewed (7 files)
  • Cargo.lock
  • crates/app/Cargo.toml
  • crates/coldvox-audio-quality/Cargo.toml
  • crates/coldvox-audio/Cargo.toml
  • crates/coldvox-foundation/Cargo.toml
  • crates/coldvox-stt/Cargo.toml
  • crates/coldvox-text-injection/Cargo.toml

@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Mar 18, 2026

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Mar 18, 2026
@dependabot dependabot bot deleted the dependabot/cargo/rust-dependencies-a6e386d89f branch March 18, 2026 23:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Coldaine Coldaine Awaiting requested review from Coldaine Coldaine is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants