ssa/universal-android-debloater
1
0
Fork 0
Code Issues Pull requests 1 Projects Releases Packages Wiki Activity Actions

build(deps): bump the cargo group across 1 directory with 3 updates #1

Open
dependabot[bot] wants to merge 1 commit from dependabot/cargo/cargo-6cf7bf2664 into main
pull from: dependabot/cargo/cargo-6cf7bf2664
merge into: ssa:main
Conversation 0 Commits 1 Files changed 1 +126 -49
dependabot[bot] commented 2026-03-20 17:33:34 +00:00 (Migrated from github.com)
Copy link

Bumps the cargo group with 3 updates in the / directory: tar, mio and webpki.

Updates tar from 0.4.38 to 0.4.45

Commits
  • 096e3d1 Bump to 0.4.45 (#443)
  • 17b1fd8 archive: Prevent symlink-directory collision chmod attack (#442)
  • de1a587 archive: Unconditionally honor PAX size (#441)
  • 6071cbe ci: Consolidate workflows (#439)
  • ad1fde9 build-sys: Promote unused_code to an error
  • c8cb250 tests: Squash a warning
  • 638c495 ci: Add xtask infra + reverse dependency testing (#435)
  • 32a9bbb tests: Add RandomReader to exercise partial-read resilience (#436)
  • 9c5df0b Fix GNU long-name extension stream corruption on validation error (#434)
  • 88b1e3b Fix docs typo in header.rs (#431)
  • Additional commits viewable in compare view

Updates mio from 0.8.6 to 0.8.11

Changelog

Sourced from mio's changelog.

0.8.11

0.8.10

Added

0.8.9

Added

Fixed

0.8.8

Fixed

0.8.7

Added

  • Add/fix support for tvOS and watchOS, Mio should now build for tvOS and

... (truncated)

Commits

Updates webpki from 0.22.0 to 0.22.4

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.
Bumps the cargo group with 3 updates in the / directory: [tar](https://github.com/alexcrichton/tar-rs), [mio](https://github.com/tokio-rs/mio) and [webpki](https://github.com/briansmith/webpki). Updates `tar` from 0.4.38 to 0.4.45 <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/alexcrichton/tar-rs/commit/096e3d16d14fefac51bc4d94d616b21546ea8bcc"><code>096e3d1</code></a> Bump to 0.4.45 (<a href="https://redirect.github.com/alexcrichton/tar-rs/issues/443">#443</a>)</li> <li><a href="https://github.com/alexcrichton/tar-rs/commit/17b1fd84e632071cb8eef9d3709bf347bd266446"><code>17b1fd8</code></a> archive: Prevent symlink-directory collision chmod attack (<a href="https://redirect.github.com/alexcrichton/tar-rs/issues/442">#442</a>)</li> <li><a href="https://github.com/alexcrichton/tar-rs/commit/de1a5870e603758f430073688691165f21a33946"><code>de1a587</code></a> archive: Unconditionally honor PAX size (<a href="https://redirect.github.com/alexcrichton/tar-rs/issues/441">#441</a>)</li> <li><a href="https://github.com/alexcrichton/tar-rs/commit/6071cbe74acefa8c8322809bfd43c825e5f16b60"><code>6071cbe</code></a> ci: Consolidate workflows (<a href="https://redirect.github.com/alexcrichton/tar-rs/issues/439">#439</a>)</li> <li><a href="https://github.com/alexcrichton/tar-rs/commit/ad1fde9edfb9657d17666bbec2933119ce527359"><code>ad1fde9</code></a> build-sys: Promote unused_code to an error</li> <li><a href="https://github.com/alexcrichton/tar-rs/commit/c8cb250e8bc3f28bd69406b396bb8a92b40012c1"><code>c8cb250</code></a> tests: Squash a warning</li> <li><a href="https://github.com/alexcrichton/tar-rs/commit/638c495a480d2a50099d55f445ece9e5f544b49d"><code>638c495</code></a> ci: Add xtask infra + reverse dependency testing (<a href="https://redirect.github.com/alexcrichton/tar-rs/issues/435">#435</a>)</li> <li><a href="https://github.com/alexcrichton/tar-rs/commit/32a9bbb26468cbdecbf73fe8eb249284d4a718ed"><code>32a9bbb</code></a> tests: Add RandomReader to exercise partial-read resilience (<a href="https://redirect.github.com/alexcrichton/tar-rs/issues/436">#436</a>)</li> <li><a href="https://github.com/alexcrichton/tar-rs/commit/9c5df0bfd70d1b063516b90fca2cf2e0dbe8b758"><code>9c5df0b</code></a> Fix GNU long-name extension stream corruption on validation error (<a href="https://redirect.github.com/alexcrichton/tar-rs/issues/434">#434</a>)</li> <li><a href="https://github.com/alexcrichton/tar-rs/commit/88b1e3b0da65b0c5b9750d1a75516145488f4793"><code>88b1e3b</code></a> Fix docs typo in header.rs (<a href="https://redirect.github.com/alexcrichton/tar-rs/issues/431">#431</a>)</li> <li>Additional commits viewable in <a href="https://github.com/alexcrichton/tar-rs/compare/0.4.38...0.4.45">compare view</a></li> </ul> </details> <br /> Updates `mio` from 0.8.6 to 0.8.11 <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/tokio-rs/mio/blob/master/CHANGELOG.md">mio's changelog</a>.</em></p> <blockquote> <h1>0.8.11</h1> <ul> <li>Fix receiving IOCP events after deregistering a Windows named pipe (<a href="https://redirect.github.com/tokio-rs/mio/pull/1760">tokio-rs/mio#1760</a>, backport pr: <a href="https://redirect.github.com/tokio-rs/mio/pull/1761">tokio-rs/mio#1761</a>).</li> </ul> <h1>0.8.10</h1> <h2>Added</h2> <ul> <li>Solaris support (<a href="https://redirect.github.com/tokio-rs/mio/pull/1724">tokio-rs/mio#1724</a>).</li> </ul> <h1>0.8.9</h1> <h2>Added</h2> <ul> <li>ESP-IDF framework support (<a href="https://redirect.github.com/tokio-rs/mio/pull/1692">tokio-rs/mio#1692</a>).</li> <li>AIX operating system support (<a href="https://redirect.github.com/tokio-rs/mio/pull/1704">tokio-rs/mio#1704</a>).</li> <li>Vita support (<a href="https://redirect.github.com/tokio-rs/mio/pull/1721">tokio-rs/mio#1721</a>).</li> <li><code>{UnixListener,UnixStream}:bind_addr</code> (<a href="https://redirect.github.com/tokio-rs/mio/pull/1630">tokio-rs/mio#1630</a>).</li> <li><code>mio_unsupported_force_poll_poll</code> and <code>mio_unsupported_force_waker_pipe</code> <strong>unsupported</strong> configuration flags to force a specific poll or waker implementation (<a href="https://redirect.github.com/tokio-rs/mio/pull/1684">tokio-rs/mio#1684</a>, <a href="https://redirect.github.com/tokio-rs/mio/pull/1685">tokio-rs/mio#1685</a>, <a href="https://redirect.github.com/tokio-rs/mio/pull/1692">tokio-rs/mio#1692</a>).</li> </ul> <h2>Fixed</h2> <ul> <li>The <code>pipe(2)</code> based waker (swapped file descriptors) (<a href="https://redirect.github.com/tokio-rs/mio/pull/1722">tokio-rs/mio#1722</a>).</li> <li>The duplicate waker check to work correctly with cloned <code>Registry</code>s. (<a href="https://redirect.github.com/tokio-rs/mio/pull/1706">tokio-rs/mio#1706</a>).</li> </ul> <h1>0.8.8</h1> <h2>Fixed</h2> <ul> <li>Fix compilation on WASI (<a href="https://redirect.github.com/tokio-rs/mio/pull/1676">tokio-rs/mio#1676</a>).</li> </ul> <h1>0.8.7</h1> <h2>Added</h2> <ul> <li>Add/fix support for tvOS and watchOS, Mio should now build for tvOS and</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/tokio-rs/mio/commit/0328bdef900b6396b8d00d33c825cd8af748553d"><code>0328bde</code></a> Release v0.8.11</li> <li><a href="https://github.com/tokio-rs/mio/commit/708449851283b57eb6f514c8f289b66e982720b3"><code>7084498</code></a> Fix warnings</li> <li><a href="https://github.com/tokio-rs/mio/commit/90d4fe00df870acd3d38f3dc4face9aacab8fbb9"><code>90d4fe0</code></a> named-pipes: fix receiving IOCP events after deregister</li> <li><a href="https://github.com/tokio-rs/mio/commit/c710a307f8627c4d63ac1003252aa45175e08399"><code>c710a30</code></a> Add v0.8.x to the CI</li> <li><a href="https://github.com/tokio-rs/mio/commit/c29e21c244b2b835e8b3e015b92c708c33c7d70a"><code>c29e21c</code></a> Release v0.8.10</li> <li><a href="https://github.com/tokio-rs/mio/commit/f6a20da1c81c2d56a78bc6f6832b9904b9215914"><code>f6a20da</code></a> Add Solaris operating system support (<a href="https://redirect.github.com/tokio-rs/mio/issues/1724">#1724</a>)</li> <li><a href="https://github.com/tokio-rs/mio/commit/e80c3b21b59b92238f4c8c331fcfc4a71508d1c5"><code>e80c3b2</code></a> Release v0.8.9</li> <li><a href="https://github.com/tokio-rs/mio/commit/862786bbbf719886be55631c0d150d4813a9a1b6"><code>862786b</code></a> Fix importing of IoSourceState</li> <li><a href="https://github.com/tokio-rs/mio/commit/40348728e4f06f5e150783d8f1559ee974e5e834"><code>4034872</code></a> Add support for vita target</li> <li><a href="https://github.com/tokio-rs/mio/commit/8eb4010a92bede550850e177d3dd7c4c76eb90ba"><code>8eb4010</code></a> Fix receiver and sender fd in pipe based waker</li> <li>Additional commits viewable in <a href="https://github.com/tokio-rs/mio/compare/v0.8.6...v0.8.11">compare view</a></li> </ul> </details> <br /> Updates `webpki` from 0.22.0 to 0.22.4 <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/briansmith/webpki/commits">compare view</a></li> </ul> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/shafiqalibhai/universal-android-debloater/network/alerts). </details>
This pull request can be merged automatically.
This branch is out-of-date with the base branch
You are not authorized to merge this pull request.
View command line instructions

Checkout

From your project repository, check out a new branch and test the changes.
git fetch -u origin dependabot/cargo/cargo-6cf7bf2664:dependabot/cargo/cargo-6cf7bf2664
git switch dependabot/cargo/cargo-6cf7bf2664

Merge

Merge the changes and update on Forgejo.

Warning: The "Autodetect manual merge" setting is not enabled for this repository, you will have to mark this pull request as manually merged afterwards.

git switch main
git merge --no-ff dependabot/cargo/cargo-6cf7bf2664
git switch dependabot/cargo/cargo-6cf7bf2664
git rebase main
git switch main
git merge --ff-only dependabot/cargo/cargo-6cf7bf2664
git switch dependabot/cargo/cargo-6cf7bf2664
git rebase main
git switch main
git merge --no-ff dependabot/cargo/cargo-6cf7bf2664
git switch main
git merge --squash dependabot/cargo/cargo-6cf7bf2664
git switch main
git merge --ff-only dependabot/cargo/cargo-6cf7bf2664
git switch main
git merge dependabot/cargo/cargo-6cf7bf2664
git push origin main
Sign in to join this conversation.
Reviewers
No reviewers
Labels
Clear labels   
bug
Something isn't working

  
dependencies
Pull requests that update a dependency file

  
documentation
Improvements or additions to documentation

  
duplicate
This issue or pull request already exists

  
enhancement
New feature or request

  
good first issue
Good for newcomers

  
help wanted
Extra attention is needed

  
invalid
This doesn't seem right

  
question
Further information is requested

  
rust
Pull requests that update rust code

  
wontfix
This will not be worked on

No labels
bug
dependencies
documentation
duplicate
enhancement
good first issue
help wanted
invalid
question
rust
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
ssa/universal-android-debloater!1
No description provided.