build: bump the rust-dependencies group with 10 updates

[dependabot]

Bumps the rust-dependencies group with 10 updates:

Package	From	To
clap	4.5.4	4.5.13
clap-verbosity-flag	2.2.0	2.2.1
rattler_digest	0.19.4	1.0.0
rattler_networking	0.20.8	0.20.10
reqwest	0.12.4	0.12.5
reqwest-middleware	0.3.1	0.3.2
serde	1.0.203	1.0.204
serde_json	1.0.117	1.0.121
tokio	1.38.0	1.39.2
url	2.5.0	2.5.2

Updates clap from 4.5.4 to 4.5.13

Release notes

Sourced from clap's releases.

v4.5.13

[4.5.13] - 2024-07-31

Fixes

• (derive) Improve error message when #[flatten]ing an optional #[group(skip)]
• (help) Properly wrap long subcommand descriptions in help

v4.5.12

[4.5.12] - 2024-07-31

v4.5.10

[4.5.10] - 2024-07-23

v4.5.9

[4.5.9] - 2024-07-09

Fixes

• (error) When defining a custom help flag, be sure to suggest it like we do the built-in one

v4.5.8

[4.5.8] - 2024-06-28

Fixes

• Reduce extra flushes

v4.5.7

[4.5.7] - 2024-06-10

Fixes

• Clean up error message when too few arguments for num_args

v4.5.6

[4.5.6] - 2024-06-06

Changelog

Sourced from clap's changelog.

[4.5.13] - 2024-07-31

Fixes

• (derive) Improve error message when #[flatten]ing an optional #[group(skip)]
• (help) Properly wrap long subcommand descriptions in help

[4.5.12] - 2024-07-31

[4.5.11] - 2024-07-25

[4.5.10] - 2024-07-23

[4.5.9] - 2024-07-09

Fixes

• (error) When defining a custom help flag, be sure to suggest it like we do the built-in one

[4.5.8] - 2024-06-28

Fixes

• Reduce extra flushes

[4.5.7] - 2024-06-10

Fixes

• Clean up error message when too few arguments for num_args

[4.5.6] - 2024-06-06

[4.5.5] - 2024-06-06

Fixes

• Allow exclusive to override required_unless_present, required_unless_present_any, required_unless_present_all

Commits

• 66b5a12 chore: Release
• a83b724 docs: Update changelog
• e19469f Merge pull request #5615 from epage/wrap
• 360bb3b fix(help): Properly wrap subcommand about
• 58b5bd8 test(help): Show bad subcommand wrapping
• e1f6320 Merge pull request #5614 from epage/snap
• 7b5b61b test(help): Switch to snapbox
• 1490e24 chore: Update snapbox
• 6671d93 Merge pull request #5613 from epage/flatten
• 13dfdb3 fix(derive): Improve flattening-skipped-group assert
• Additional commits viewable in compare view

Updates clap-verbosity-flag from 2.2.0 to 2.2.1

Changelog

Sourced from clap-verbosity-flag's changelog.

[2.2.1] - 2024-07-25

Compatibility

• Raised MSRV to 1.74

Commits

• adabc5d chore: Release clap-verbosity-flag version 2.2.1
• db34036 docs: Update changelog
• 574853b chore(deps): Update Rust crate clap to v4.5.8 (#108)
• 0aa7578 chore(deps): Update Rust Stable to v1.79 (#106)
• 2275c1f style: Make clippy happy
• 383332e chore(deps): Update compatible (dev) (#105)
• dbe848c Merge pull request #104 from epage/template
• aca05cc chore: Update from _rust/main template
• f85ffc4 Merge pull request #101 from clap-rs/renovate/stable-1.x
• 0c706d1 chore(deps): Update Rust Stable to v1.78
• Additional commits viewable in compare view

Updates rattler_digest from 0.19.4 to 1.0.0

Release notes

Sourced from rattler_digest's releases.

rattler_digest-v1.0.0

Other

• bump dependencies and remove unused ones (#771)

rattler_digest-v0.19.5

Other

• bump dependencies and remove unused ones (#771)

Changelog

Sourced from rattler_digest's changelog.

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

[Unreleased]

[0.18.0] - 2024-02-13

📃 Details

Added

• ProgressBar trait and progress bar for package writing by @​wolfv (#525)

Changed

• improved logging in package validation to include package path by @​orhun (#521)
• use resolvo 0.4.0 with better error messages by @​baszalmstra (#523)

Fixed

• allow multiple clobbers per package by @​wolfv (#526)
• remove drop-bomb, move empty folder removal to post_process by @​wolfv (#519)
• keep in mind python: noarch packages in clobber calculations by @​wolfv (#511)

[0.17.0] - 2024-02-01

✨ Highlights

This release contains some big changes to rattler:

Consistent clobbering

Rattler installs packages in parallel but this was at the cost of not being able to resolve files properly that existed in multiple packages. With this release we fixed this issue by creating a consistent clobbering experience. When a file is clobbered (installed by multiple packages) the last package in the topological ordering wins. This information is also recorded in the prefix itself which means that even if packages are added or removed from the environment the order remains consistent.

reqwest-middleware-client

The AuthenticatedClient has been rewritten by @​vlad-ivanov-name. Instead of having a custom client for network requests we now use the reqwest-middleware crate. The rattler implementation adds a middleware that handles authentication. This changes makes it easier to integrate with other crates that use reqwest for network requests, and it allows users to add their own middleware.

Lock-file v4

... (truncated)

Commits

• 809d3c4 chore: mark some crates 1.0 (#789)
• 35caccc fix: url parsing for namelessmatchspec and cleanup functions (#790)
• cc891b4 chore: release (#788)
• d407cec fix: channel base_url requires trailing slash (#787)
• 7b6ba50 chore: release (#785)
• 121785f feat: environment.yaml type (#786)
• 3a916ba feat: Add to_path() method to ExplicitEnvironmentSpec (#781)
• f0d5d00 feat: expose HasPrefixEntry for public use (#784)
• 31e16aa chore(rattler_virtual_packages): release v0.19.18 (#780)
• 5a5a416 fix: add gentoo support for glibc (#779)
• Additional commits viewable in compare view

Updates rattler_networking from 0.20.8 to 0.20.10

Release notes

Sourced from rattler_networking's releases.

rattler_networking-v0.20.10

Other

• bump dependencies and remove unused ones (#771)

rattler_networking-v0.20.9

Fixed

• errors should not contain trailing punctuation (#763)

Commits

• 11121a4 chore: release (#773)
• 014055b fix: unclobber issue when packages are named differently (#776)
• d619dcd perf: PrefixRecord deserialization using simd (#777)
• 73b260d feat: add pre commit config (#778)
• b830baf docs: Fix copy-paste mistake from rattler (#774)
• ead5201 chore: bump zip to 2.1.3 (#772)
• 09a0ba9 chore: bump dependencies and remove unused ones (#771)
• 412be3e fix: use valid cargo categories
• 51d76a2 fix: use valid cargo categories
• 6fae9a4 chore: release (#769)
• Additional commits viewable in compare view

Updates reqwest from 0.12.4 to 0.12.5

Release notes

Sourced from reqwest's releases.

v0.12.5

What's Changed

• Add http3 feature back, still requiring reqwest_unstable.
• Add rustls-tls-no-provider Cargo feature to use rustls without a crypto provider.
• Add blocking::ClientBuilder::dns_resolver() method to change DNS resolver in blocking client.
• Fix Accept-Encoding header combinations.
• Fix http3 resolving IPv6 addresses.
• Internal: upgrade to rustls 0.23.

New Contributors

• @​bnjmnjrk made their first contribution in seanmonstar/reqwest#2253
• @​d-e-s-o made their first contribution in seanmonstar/reqwest#2257
• @​mger1 made their first contribution in seanmonstar/reqwest#2260
• @​nickguletskii made their first contribution in seanmonstar/reqwest#2268
• @​lenstr made their first contribution in seanmonstar/reqwest#2271
• @​torokati44 made their first contribution in seanmonstar/reqwest#2274
• @​jayvdb made their first contribution in seanmonstar/reqwest#2284
• @​adamaq01 made their first contribution in seanmonstar/reqwest#2288
• @​asonix made their first contribution in seanmonstar/reqwest#2301

Full Changelog: seanmonstar/reqwest@v0.12.4...v0.12.5

Changelog

Sourced from reqwest's changelog.

v0.12.5

• Add blocking::ClientBuilder::dns_resolver() method to change DNS resolver in blocking client.
• Add http3 feature back, still requiring reqwest_unstable.
• Add rustls-tls-no-provider Cargo feature to use rustls without a crypto provider.
• Fix Accept-Encoding header combinations.
• Fix http3 resolving IPv6 addresses.
• Internal: upgrade to rustls 0.23.

Commits

• 29d4cff v0.12.5
• a7880d6 tests: fix http3 tests
• c32d877 tests: enable http3 content-length test
• ce3b30e http3: send content-length if known
• 404df59 test: add http3 test server support
• e5ce0b5 fix: don't enable hyper-rustls/http2 unless http2 is already enabled
• ccb5e40 Don't compile hyper-tls with native-roots unless rustls-tls-native-roots is e...
• c56fbae tests: remove a proxy parse error check
• 8cc7cd4 msrv: pin url
• 695bc04 fix: http3 resolving ipv6 addresses (#2305)
• Additional commits viewable in compare view

Updates reqwest-middleware from 0.3.1 to 0.3.2

Release notes

Sourced from reqwest-middleware's releases.

reqwest-middleware-v0.3.2

Added

• Added re-export of reqwest.
• http2, rustls-tls, and charset features, which simply enable those features in reqwest.

Changelog

Sourced from reqwest-middleware's changelog.

[0.3.2] - 2024-06-28

Added

• Added re-export of reqwest.
• http2, rustls-tls, and charset features, which simply enable those features in reqwest.

Commits

• See full diff in compare view

Updates serde from 1.0.203 to 1.0.204

Release notes

Sourced from serde's releases.

v1.0.204

• Apply #[diagnostic::on_unimplemented] attribute on Rust 1.78+ to suggest adding serde derive or enabling a "serde" feature flag in dependencies (#2767, thanks @​weiznich)

Commits

• 18dcae0 Release 1.0.204
• 58c307f Alphabetize list of rustc-check-cfg
• 8cc4809 Merge pull request #2769 from dtolnay/onunimpl
• 1179158 Update ui test with diagnostic::on_unimplemented from PR 2767
• 91aa40e Add ui test of unsatisfied serde trait bound
• 595019e Cut test_suite from workspace members in old toolchain CI jobs
• b0d7917 Pull in trybuild 'following types implement trait' fix
• 8e6637a Merge pull request #2767 from weiznich/feature/diagnostic_on_unimplemented
• 694fe05 Use the #[diagnostic::on_unimplemented] attribute when possible
• f3dfd2a Suppress dead code warning in test of unit struct remote derive
• Additional commits viewable in compare view

Updates serde_json from 1.0.117 to 1.0.121

Release notes

Sourced from serde_json's releases.

v1.0.121

• Optimize position search in error path (#1160, thanks @​purplesyringa)

v1.0.120

• Correctly specify required version of indexmap dependency (#1152, thanks @​cforycki)

v1.0.119

• Add serde_json::Map::shift_insert (#1149, thanks @​joshka)

v1.0.118

• Implement Hash for serde_json::Value (#1127, thanks @​edwardycl)

Commits

• eca2658 Release 1.0.121
• b0d678c Merge pull request #1160 from iex-rs/efficient-position
• b1edc7d Optimize position search in error path
• 40dd7f5 Merge pull request #1159 from iex-rs/fix-recursion
• 6a306e6 Move call to tri! out of check_recursion!
• 3f1c6de Ignore byte_char_slices clippy lint in test
• 3fd6f5f Merge pull request #1153 from dpathakj/master
• fcb5e83 Correct documentation URL for Value's Index impl.
• bcedc3d Release 1.0.120
• 962c0fb Merge pull request #1152 from cforycki/fix/index-map-minimal-version
• Additional commits viewable in compare view

Updates tokio from 1.38.0 to 1.39.2

Release notes

Sourced from tokio's releases.

Tokio v1.39.2

1.39.2 (July 27th, 2024)

This release fixes a regression where the select! macro stopped accepting expressions that make use of temporary lifetime extension. (#6722)

#6722: tokio-rs/tokio#6722

Tokio v1.39.1

1.39.1 (July 23rd, 2024)

This release reverts "time: avoid traversing entries in the time wheel twice" because it contains a bug. (#6715)

#6715: tokio-rs/tokio#6715

Tokio v1.39.0

1.39.0 (July 23rd, 2024)

• This release bumps the MSRV to 1.70. (#6645)
• This release upgrades to mio v1. (#6635)
• This release upgrades to windows-sys v0.52 (#6154)

Added

• io: implement AsyncSeek for Empty (#6663)
• metrics: stabilize num_alive_tasks (#6619, #6667)
• process: add Command::as_std_mut (#6608)
• sync: add watch::Sender::same_channel (#6637)
• sync: add {Receiver,UnboundedReceiver}::{sender_strong_count,sender_weak_count} (#6661)
• sync: implement Default for watch::Sender (#6626)
• task: implement Clone for AbortHandle (#6621)
• task: stabilize consume_budget (#6622)

Changed

• io: improve panic message of ReadBuf::put_slice() (#6629)
• io: read during write in copy_bidirectional and copy (#6532)
• runtime: replace num_cpus with available_parallelism (#6709)
• task: avoid stack overflow when passing large future to block_on (#6692)
• time: avoid traversing entries in the time wheel twice (#6584)
• time: support IntoFuture with timeout (#6666)
• macros: support IntoFuture with join! and select! (#6710)

Fixed

• docs: fix docsrs builds with the fs feature enabled (#6585)
• io: only use short-read optimization on known-to-be-compatible platforms (#6668)
• time: fix overflow panic when using large durations with Interval (#6612)

Added (unstable)

... (truncated)

Commits

• f602eae chore: prepare Tokio v1.39.2 (#6730)
• 438def7 macros: allow temporary lifetime extension in select (#6722)
• ee8d4d1 chore: fix ci failures (#6725)
• 3297052 ci: test Quinn in CI (#6719)
• f8fe0ff chore: prepare Tokio v1.39.1 (#6716)
• 47210a8 time: revert "avoid traversing entries in the time wheel twice" (#6715)
• 29545d9 runtime: ignore many_oneshot_futures test for alt scheduler (#6712)
• 48e35c1 chore: release Tokio v1.39.0 (#6711)
• dd1d371 macros: accept IntoFuture args for macros (#6710)
• 6a1a7b1 chore: prepare tokio-macros v2.4.0 (#6707)
• Additional commits viewable in compare view

Updates url from 2.5.0 to 2.5.2

Commits

• 54346fa Revert "Reimplement idna on top of ICU4X" (#946)
• dcfbed3 Update idna to 1.0.1 (#945)
• 467ef63 fix panic on xn--55555577 (#940)
• 3d6dbbb Reimplement idna on top of ICU4X (#923)
• de947ab Document possible replacements of the base URL (#926)
• 8b8431b docs: document SyntaxViolation variants, remove bare URLs (#924)
• fd042e0 Non-special URLs can have their paths erased (#921)
• 49eea1c Fix multiple issues on wasm32: (#886)
• a4dd58b Fix lint (#920)
• 73803fa Update URLs (#916)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions