Skip to content

chore(deps): bump the rust-deps group in /crates/contribai-rs with 4 updates#36

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/crates/contribai-rs/rust-deps-68e14afb66
Open

chore(deps): bump the rust-deps group in /crates/contribai-rs with 4 updates#36
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/crates/contribai-rs/rust-deps-68e14afb66

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 25, 2026

Copy link
Copy Markdown
Contributor

Bumps the rust-deps group in /crates/contribai-rs with 4 updates: serde_json, clap_complete, tree-sitter and tower-http.

Updates serde_json from 1.0.149 to 1.0.150

Release notes

Sourced from serde_json's releases.

v1.0.150

Commits
  • a1ae73a Release 1.0.150
  • 1a360b0 Merge pull request #1324 from puneetdixit200/reject-non-string-enum-keys
  • 2037b63 Reject non-string enum object keys
  • 5d30df6 Resolve manual_assert_eq pedantic clippy lint
  • dc8003a Raise required compiler for preserve_order feature to 1.85
  • a42fa98 Unpin CI miri toolchain
  • 684a60e Pin CI miri to nightly-2026-02-11
  • 7c7da33 Raise required compiler to Rust 1.71
  • acf4850 Simplify Number::is_f64
  • 6b8ceab Resolve unnecessary_map_or clippy lint
  • Additional commits viewable in compare view

Updates clap_complete from 4.6.4 to 4.6.5

Commits
  • c8c9355 chore: Release
  • af74def docs: Update changelog
  • c96f222 Merge pull request #6368 from truffle-dev/fix/fish-env-escaping
  • 49a05cd fix(complete): Two-pass quote fish env-completer
  • e791004 test(complete): Snapshot fish env quoting cases
  • See full diff in compare view

Updates tree-sitter from 0.26.8 to 0.26.9

Release notes

Sourced from tree-sitter's releases.

v0.26.9

What's Changed

Full Changelog: tree-sitter/tree-sitter@v0.26.8...v0.26.9

Commits
  • 7f53486 release v0.26.9
  • 77b96de fix(wasm): validate memory reads (#5569) (#5613)
  • a082228 build(deps): bump wasmtime-c-api to v36.0.9
  • 7aea015 fix(wasm): load supertype tables for ABI 15 grammars (#5605) (#5606)
  • 2cad8b8 fix(generate): consider reserved words when removing unused rules
  • ddbe469 fix(generate): rewrite parse_grammar with forward DFS
  • 17f9796 fix(generate): improve error message for nonterminals used in immediate token...
  • 17e4bf9 fix(cli): account for process versions > 5 in the parse command's pretty
  • ec120d0 build(deps): bump wasmtime-c-api to v36.0.8
  • 7c3d842 docs: note zero point unbounded behavior in query functions
  • Additional commits viewable in compare view

Updates tower-http from 0.6.10 to 0.6.11

Release notes

Sourced from tower-http's releases.

tower-http-0.6.11

Added

  • set-header: add SetMultipleResponseHeadersLayer and SetMultipleResponseHeader for setting multiple response headers at once. Supports overriding, appending, and if_not_present modes. Header values can be fixed or computed dynamically via closures (#672)

    use http::{Response, header::{self, HeaderValue}};
use http_body::Body as _;
use tower_http::set_header::response::SetMultipleResponseHeadersLayer;
let layer = SetMultipleResponseHeadersLayer::overriding(vec![
(header::X_FRAME_OPTIONS, HeaderValue::from_static("DENY")).into(),
(header::CONTENT_LENGTH, |res: &Response<MyBody>| {
res.body().size_hint().exact()
.map(|size| HeaderValue::from_str(&size.to_string()).unwrap())
}).into(),
]);

  • set-header: add SetMultipleRequestHeadersLayer and SetMultipleRequestHeaders for setting multiple request headers at once, mirroring the response-side API (#677)

  • classify: add From<i32> and From<NonZeroI32> impls for GrpcCode. Unrecognized status codes map to GrpcCode::Unknown (#506)

Changed

  • compression: compress application/grpc-web responses. Previously all application/grpc* content types were excluded from compression; now only application/grpc (non-web) is excluded (#408)

Fixed

  • fs: fix ServeDir returning 500 instead of 405 for non-GET/HEAD requests when call_fallback_on_method_not_allowed is enabled but no fallback service is configured (#587)
  • fs: remove duplicate cfg attribute on is_reserved_dos_name (#675)

#408: tower-rs/tower-http#408 #506: tower-rs/tower-http#506 #587: tower-rs/tower-http#587 #672: tower-rs/tower-http#672 #675: tower-rs/tower-http#675 #677: tower-rs/tower-http#677

All PRs

... (truncated)

Commits
  • 1d082ef v0.6.11
  • 9c3117d feat: set multiple request header (#677)
  • 667e7c7 Remove duplicate cfg attribute for is_reserved_dos_name (#675)
  • 7551a9b feat(set_header): refactor and improve multiple header middleware (#672)
  • 991e9ee add From<i32> impl for GrpcCode (#506)
  • 3962dba Do compress grpc-web responses (#408)
  • f0b3bb6 Fix serve_dir method not allowed handling when no fallback is configured (#587)
  • d1a571b ci: use static timeout in stress-test workflow (#671)
  • 309555a ci: fix flaky encoding test, add nightly stress test job (#670)
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the rust-deps group
b5ca816 
Bumps the rust-deps group in /crates/contribai-rs with 4 updates: [serde_json](https://github.com/serde-rs/json), [clap_complete](https://github.com/clap-rs/clap), [tree-sitter](https://github.com/tree-sitter/tree-sitter) and [tower-http](https://github.com/tower-rs/tower-http).


Updates `serde_json` from 1.0.149 to 1.0.150
- [Release notes](https://github.com/serde-rs/json/releases)
- [Commits](serde-rs/json@v1.0.149...v1.0.150)

Updates `clap_complete` from 4.6.4 to 4.6.5
- [Release notes](https://github.com/clap-rs/clap/releases)
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md)
- [Commits](clap-rs/clap@clap_complete-v4.6.4...clap_complete-v4.6.5)

Updates `tree-sitter` from 0.26.8 to 0.26.9
- [Release notes](https://github.com/tree-sitter/tree-sitter/releases)
- [Commits](tree-sitter/tree-sitter@v0.26.8...v0.26.9)

Updates `tower-http` from 0.6.10 to 0.6.11
- [Release notes](https://github.com/tower-rs/tower-http/releases)
- [Commits](tower-rs/tower-http@tower-http-0.6.10...tower-http-0.6.11)

---
updated-dependencies:
- dependency-name: serde_json
  dependency-version: 1.0.150
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-deps
- dependency-name: clap_complete
  dependency-version: 4.6.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-deps
- dependency-name: tree-sitter
  dependency-version: 0.26.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-deps
- dependency-name: tower-http
  dependency-version: 0.6.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-deps
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github

dependabot Bot commented on behalf of github May 25, 2026

Copy link
Copy Markdown
Contributor Author

Labels

The following labels could not be found: dependencies, rust. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@dependabot dependabot Bot requested a review from tang-vu as a code owner May 25, 2026 01:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tang-vu tang-vu Awaiting requested review from tang-vu tang-vu is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants