Bump the cargo group with 8 updates

[dependabot]

Bumps the cargo group with 8 updates:

Package	From	To
decorum	0.3.1	0.4.0
parry2d-f64	0.17.2	0.17.3
parry3d-f64	0.17.2	0.17.3
bytemuck	1.19.0	1.20.0
wgpu	23.0.0	23.0.1
octocrab	0.42.0	0.42.1
url	2.5.3	2.5.4
cargo_metadata	0.18.1	0.19.0

Updates decorum from 0.3.1 to 0.4.0

Commits

• See full diff in compare view

Updates parry2d-f64 from 0.17.2 to 0.17.3

Changelog

Sourced from parry2d-f64's changelog.

v0.17.3

Fix

• Fix compiling with enhanced-determinism feature enabled.
  • This is now checked on CI.

Commits

• c67687e Release v0.17.3
• aa2a0c2 fix enhanced-determinism compilation (#287)
• See full diff in compare view

Updates parry3d-f64 from 0.17.2 to 0.17.3

Changelog

Sourced from parry3d-f64's changelog.

v0.17.3

Fix

• Fix compiling with enhanced-determinism feature enabled.
  • This is now checked on CI.

Commits

• c67687e Release v0.17.3
• aa2a0c2 fix enhanced-determinism compilation (#287)
• See full diff in compare view

Updates bytemuck from 1.19.0 to 1.20.0

Changelog

Sourced from bytemuck's changelog.

bytemuck changelog

1.20

• New functions to allocate zeroed Arc and Rc. Requires Rust 1.82
• TransparentWrapper impls for core::cmp::Reverse and core::num::Saturating.
• internal: Simplified the library's fill_zeroes calls to write_bytes

1.19

• Adds the #[track_caller] attribute to functions which may panic.

1.18

• Adds the latest_stable_rust cargo feature, which is a blanket feature that turns all other features on that are both sound and compatible with Stable rust.

1.17.1

• Adds #[repr(C)] to the union Transmute<A, B> type that's used internally for most of the transmutations.

1.17.0

• Makes the must_cast versions of the by-value and by-ref casts be const. The mut ref cast is unaffected for now (mut references aren't yet stable in const fn). This increases the MSRV of using that particular feature from 1.57 to 1.64.

1.16.3

• Fully described in Lokathor/bytemuck#256, This makes casting slices to/from ZST elements more consistent between the crate's core module and other modules.

1.16.2

• Fixes potential UB where BoxBytes could attempt to free a dangling pointer if the Layout is zero sized. This type was introduced in 1.14.1, so that version and the others up to and including 1.16.1 are now yanked for safety.

1.16.1

• NOT SEMVER SUPPORTED: Adds the nightly_float Cargo feature. This activates the f16 and f128 nightly features, and then provides Zeroable and Pod impls for those types.

1.16.0

• Adds a const_zeroed feature (MSRV 1.75) which puts a zeroed fn at the crate root. This is just like the Zeroable::zeroed method, but as a const fn.

... (truncated)

Commits

• 9bf993b chore: Release bytemuck version 1.20.0
• 0a995ff changelog
• 1400815 Improve fill_zeroes' use of ptr::write_bytes (#284)
• 13f4ae0 Add functions to allocate zeroed Arc and Rc (#283)
• af8d110 More TransparentWrapper impls (core::cmp::Reverse and `core::num::Saturat...
• 79a15d0 Remove incorrect spanned quote usage (#279)
• See full diff in compare view

Updates wgpu from 23.0.0 to 23.0.1

Release notes

Sourced from wgpu's releases.

23.0.1 (2024-11-25)

This release includes patches for wgpu, wgpu-core and wgpu-hal. All other crates remain at 23.0.0. Below changes were cherry-picked from 24.0.0 development line.

Bug fixes

General

• Fix Texture view leaks regression. By @​xiaopengli89 in #6576

Metal

• Fix surface creation crashing on iOS. By @​mockersf in #6535

Vulkan

• Fix surface capabilities being advertised when its query failed. By @​wumpf in #6510

Changelog

Sourced from wgpu's changelog.

23.0.1 (2024-11-25)

This release includes patches for wgpu, wgpu-core and wgpu-hal. All other crates remain at 23.0.0. Below changes were cherry-picked from 24.0.0 development line.

Bug fixes

General

• Fix Texture view leaks regression. By @​xiaopengli89 in #6576

Metal

• Fix surface creation crashing on iOS. By @​mockersf in #6535

Vulkan

• Fix surface capabilities being advertised when its query failed. By @​wumpf in #6510

Commits

• 1755db7 bump wgpu, wgpu-core, wgpu-hal to 23.0.1
• 1f49837 Fix Vulkan surface capabilities being advertised when its query failed. (#6510)
• 5ea7288 Fix leaks of WeakVec (#6576)
• f286882 Fix iOS crash: don't set autoresizing mask (#6535)
• See full diff in compare view

Updates octocrab from 0.42.0 to 0.42.1

Release notes

Sourced from octocrab's releases.

v0.42.1

Other

• Secret scanning alert locations API (#735)

Changelog

Sourced from octocrab's changelog.

0.42.1 - 2024-11-22

Other

• Secret scanning alert locations API (#735)

Commits

• 653814c chore: release v0.42.1 (#736)
• 592f165 Secret scanning alert locations API (#735)
• See full diff in compare view

Updates url from 2.5.3 to 2.5.4

Release notes

Sourced from url's releases.

v2.5.4

What's Changed

• Revert "Normalize URL paths: convert /.//p, /..//p, and //p to p (#943)" by @​valenting in servo/rust-url#999
• Updates the MSRV to 1.63 required though the libc v0.2.164 dependency

Full Changelog: servo/rust-url@v2.5.3...v2.5.4

Commits

• d77dfb4 Revert "Normalize URL paths: convert /.//p, /..//p, and //p to p (#943)" (#999)
• da64903 Change no_std to no-std in Cargo.toml (#991)
• See full diff in compare view

Updates cargo_metadata from 0.18.1 to 0.19.0

Changelog

Sourced from cargo_metadata's changelog.

[0.19.0] - 2024-11-20

Added

• Re-exported semver crate directly.
• Added implementation of std::ops::Index<&PackageId> for Resolve.
• Added pub fn is_kind(&self, name: TargetKind) -> bool to Target.
• Added derived implementations of PartialEq, Eq and Hash for Metadata and its members' types.
• Added default fields to PackageBuilder.
• Added pub fn new(name:version:id:path:) -> Self to PackageBuilder for providing all required fields upfront.

Changed

• Bumped MSRV from 1.42.0 to 1.56.0.
• Made parse_stream more versatile by accepting anything that implements Read.
• Converted TargetKind and CrateType to an enum representation.

Removed

• Removed re-exports for BuildMetadata and Prerelease from semver crate.
• Removed .is_lib(…), .is_bin(…), .is_example(…), .is_test(…), .is_bench(…), .is_custom_build(…), and .is_proc_macro(…) from Target (in favor of adding .is_kind(…)).

Fixed

• Added missing manifest_path field to Artifact. Fixes #187.

[0.15.0] - 2022-06-22

Added

• Re-exported BuildMetadata and Prerelease from semver crate.
• Added workspace_packages function.
• Added Edition enum to better parse edition field.
• Added rust-version field to Cargo manifest.

Changed

• Bumped msrv from 1.40.0 to 1.42.0.

Internal Changes

• Updated derive_builder to the latest version.
• Made use of matches! macros where possible.
• Fixed some tests

[0.15.1] - 2022-10-13

Added

• Added TestMessage, TestEvent, SuiteEvent for parsing the cargo test -- --format json output.

Commits

• af70fe5 Merge pull request #272 from regexident/prepare-v0.19.0
• 3f2e39d Apply suggestions from code review
• e8cfa29 Prepare release of v0.19.0
• 5568997 Merge pull request #271 from regexident/derive-hash
• 24fe65d Fix a typo, while we're at it
• c8377a8 Derive Hash traits for Metadata and its transitive members
• c7bee38 Merge pull request #269 from oscartbeaumont/improve-package-builder
• 7a623f7 Add PackageBuilder::new
• dcb47f5 Don't require default fields
• 066f52a Merge pull request #267 from regexident/derive-eq
• Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
wgpu	[>= 23.0.0.a, < 23.0.1]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[hannobraun]

The new version of decorum requires manual intervention. I've opened #2484.

[hannobraun]

@dependabot ignore decorum patch version

[dependabot]

OK, I won't notify you about version 0.4.0 of decorum again, unless you unignore it.

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.