Bump the rust group in /src-tauri with 3 updates#90
Conversation
Bumps the rust group in /src-tauri with 3 updates: [tauri](https://github.com/tauri-apps/tauri), [posthog-rs](https://github.com/posthog/posthog-rs) and [rand](https://github.com/rust-random/rand). Updates `tauri` from 2.11.3 to 2.11.5 - [Release notes](https://github.com/tauri-apps/tauri/releases) - [Commits](tauri-apps/tauri@tauri-v2.11.3...tauri-v2.11.5) Updates `posthog-rs` from 0.15.0 to 0.17.3 - [Release notes](https://github.com/posthog/posthog-rs/releases) - [Changelog](https://github.com/PostHog/posthog-rs/blob/main/CHANGELOG.md) - [Commits](PostHog/posthog-rs@0.15.0...0.17.3) Updates `rand` from 0.10.1 to 0.10.2 - [Release notes](https://github.com/rust-random/rand/releases) - [Changelog](https://github.com/rust-random/rand/blob/master/CHANGELOG.md) - [Commits](rust-random/rand@0.10.1...0.10.2) --- updated-dependencies: - dependency-name: tauri dependency-version: 2.11.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rust - dependency-name: posthog-rs dependency-version: 0.17.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rust - dependency-name: rand dependency-version: 0.10.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rust ... Signed-off-by: dependabot[bot] <support@github.com>
Greptile SummaryThis PR is a Dependabot-generated group bump of three Rust dependencies in
Confidence Score: 5/5Safe to merge — all three dependency bumps are patch/minor upgrades from Dependabot with no breaking changes and at least one meaningful safety fix. The rand 0.10.2 bump closes a memory-safety bug in UniformChar deserialization, tauri 2.11.5 is a pair of bug-fix patches, and posthog-rs 0.17.3 extends the SDK with backwards-compatible observability features. The only structural change is the new findshlibs transitive dependency, which is a small, well-known crate used by posthog-rs for native stack-frame symbolication and carries no known vulnerabilities. No files require special attention. Important Files Changed
Reviews (1): Last reviewed commit: "Bump the rust group in /src-tauri with 3..." | Re-trigger Greptile |
Bumps the rust group in /src-tauri with 3 updates: tauri, posthog-rs and rand.
Updates
taurifrom 2.11.3 to 2.11.5Release notes
Sourced from tauri's releases.
... (truncated)
Commits
7cd7136apply version updates (#15632)44594d6Revert "fix(deps): pin time to<0.3.52" (#15631)ca90b46apply version updates (#15621)ba865f2fix(windows): dpi getter leaksHDChandles (#15614)0299da0fix(deps): pin time to<0.3.52(#15616)40ad9d9chore(ci): migrate to use--cross-compile(#15602)8909f22apply version updates (#15598)67ffa19fix(bundler): make .desktop and .DirIcon relative symlinks (#15596)c5c8b2bdocs(readme): desktop platforms -> operating systems, closes #1558980d437ffix(#15580): bump memmap2 (#15587)Updates
posthog-rsfrom 0.15.0 to 0.17.3Release notes
Sourced from posthog-rs's releases.
Changelog
Sourced from posthog-rs's changelog.
Commits
8bdf84achore: Release v0.17.3 [skip ci]9d94264fix(capture): clamp Retry-After to retry_max_backoff_ms (#177)1987240ci: Standardize SDK release failure telemetry (#173)bf13d89chore: Release v0.17.2 [skip ci]7ee049cfix: stop duplicating distinct_id in flags person properties (#170)065199dchore: Release v0.17.1 [skip ci]c7e2533fix: Retry flags requests on 502 and 504 (#172)d99286bchore: Release v0.17.0 [skip ci]f00e91bfeat: general on_error observability hook (#167)2b76e52chore: Release v0.16.0 [skip ci]Updates
randfrom 0.10.1 to 0.10.2Changelog
Sourced from rand's changelog.
Commits
1540ea3Prepare rand 0.10.2 (#1800)a29964aBump chacha20 from 0.10.0 to 0.10.1 in the all-deps group (#1801)ced9491Tweak docs for RngExt::random_range and SampleRange (#1798)db14664Check UniformChar validity on deser (#1790)bea8620Bump the all-deps group with 2 updates (#1796)4f44932Bump actions/cache from 5 to 6 (#1795)b999a13Bump actions/checkout from 6 to 7 (#1794)aeab810Avoid unsafe where safety depends on non-local values (#1791)1896d7cAdd typos CI job (#1789)43eddeeBump the all-deps group with 2 updates (#1788)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditionsNeed help on this PR? Tag
/codesmithwith what you need. Autofix is disabled.