Bump the cargo-deps group with 9 updates

[dependabot]

Bumps the cargo-deps group with 9 updates:

Package	From	To
indexmap	2.0.0	2.0.1
thiserror	1.0.48	1.0.49
indicatif	0.17.6	0.17.7
clap	4.4.4	4.4.6
regex	1.9.4	1.9.5
semver	1.0.18	1.0.19
time	0.3.28	0.3.29
warp	0.3.5	0.3.6
postcard	1.0.7	1.0.8

Updates indexmap from 2.0.0 to 2.0.1

Changelog

Sourced from indexmap's changelog.

• 2.0.1

  • MSRV: Rust 1.63.0 is now supported as well, pending publication of hashbrown's relaxed MSRV (or use cargo --ignore-rust-version).

Commits

• See full diff in compare view

Updates thiserror from 1.0.48 to 1.0.49

Release notes

Sourced from thiserror's releases.

1.0.49

• Access libcore types through ::core in generated code (#255, thanks @​mina86)

Commits

• 54465b7 Release 1.0.49
• 79704ad Merge pull request 255 from mina86/a
• 5bfbdae Test docs.rs documentation build in CI
• f0f303a Prefer core crate in macro expansions
• 435c7c8 Update actions/checkout@v3 -> v4
• See full diff in compare view

Updates indicatif from 0.17.6 to 0.17.7

Commits

• See full diff in compare view

Updates clap from 4.4.4 to 4.4.6

Release notes

Sourced from clap's releases.

v4.4.6

[4.4.6] - 2023-09-28

Internal

• Upgrade anstream

v4.4.5

[4.4.5] - 2023-09-25

Fixes

• (parser) When inferring subcommand name or long_flag, allow ambiguous-looking matches that unambiguously map back to the same command
• (parser) When inferring subcommand long_flag, don't panic
• (assert) Clarify what action is causing a positional that doesn't set values which is especially useful for derive users

Changelog

Sourced from clap's changelog.

[4.4.6] - 2023-09-28

Internal

• Upgrade anstream

[4.4.5] - 2023-09-25

Fixes

• (parser) When inferring subcommand name or long_flag, allow ambiguous-looking matches that unambiguously map back to the same command
• (parser) When inferring subcommand long_flag, don't panic
• (assert) Clarify what action is causing a positional that doesn't set values which is especially useful for derive users

Commits

• 39f5e80 chore: Release
• a5cb6bb docs: Update changelog
• 418c001 Merge pull request #5146 from epage/update
• 485b957 chore: Upgrade anstream
• a1af8d9 chore: Update from '_rust/main'
• ac51f09 chore(ci): Normalize json5 syntax
• 86c29de chore(ci): Updaet Renovate schema
• 2045528 chore: Release
• 55d2230 docs: Update changelog
• 492ee03 Merge pull request #5140 from epage/dyn
• Additional commits viewable in compare view

Updates regex from 1.9.4 to 1.9.5

Changelog

Sourced from regex's changelog.

1.9.5 (2023-09-02)

This is a patch release that hopefully mostly fixes a performance bug that occurs when sharing a regex across multiple threads.

Issue #934 explains this in more detail. It is also noted in the crate documentation. The bug can appear when sharing a regex across multiple threads simultaneously, as might be the case when using a regex from a OnceLock, lazy_static or similar primitive. Usually high contention only results when using many threads to execute searches on small haystacks.

One can avoid the contention problem entirely through one of two methods. The first is to use lower level APIs from regex-automata that require passing state explicitly, such as meta::Regex::search_with. The second is to clone a regex and send it to other threads explicitly. This will not use any additional memory usage compared to sharing the regex. The only downside of this approach is that it may be less convenient, for example, it won't work with things like OnceLock or lazy_static or once_cell.

With that said, as of this release, the contention performance problems have been greatly reduced. This was achieved by changing the free-list so that it was sharded across threads, and that ensuring each sharded mutex occupies a single cache line to mitigate false sharing. So while contention may still impact performance in some cases, it should be a lot better now.

Because of the changes to how the free-list works, please report any issues you find with this release. That not only includes search time regressions but also significant regressions in memory usage. Reporting improvements is also welcome as well! If possible, provide a reproduction.

Bug fixes:

• [BUG #934](rust-lang/regex#934): Fix a performance bug where high contention on a single regex led to massive slow downs.

Commits

• 554469b 1.9.5
• 48e09a8 deps: bump regex-automata to 0.3.8
• 894dcbe regex-automata-0.3.8
• 135e11b changelog: 1.9.5
• f578d74 automata: reduce regex contention somewhat
• 9a505a1 deps: bump to memchr 2.6
• 15cdc64 cli: remove use of deprecated API
• 329c6a3 ci: use dtolnay@master instead of @​v1
• 2637e11 ci: remove stale comment
• See full diff in compare view

Updates semver from 1.0.18 to 1.0.19

Release notes

Sourced from semver's releases.

1.0.19

• Improve test coverage (#299, thanks @​CXWorks)

Commits

• 72a6b5a Release 1.0.19
• 83abc7f Relocate comparator parse testing
• 2d34e8f Touch up PR 299 test cases
• 5e09329 More comprehensible excessive version comparator test
• 473209f Merge pull request #299 from CXWorks/master
• cb07901 Update actions/checkout@v3 -> v4
• fff3f40 Revert "Temporarily disable -Zrandomize-layout due to rustc ICE"
• 2399480 Temporarily disable -Zrandomize-layout due to rustc ICE
• b074ea0 Resolve incorrect_partial_ord_impl_on_ord_type clippy lint
• 2d50313 Add missed test cases
• See full diff in compare view

Updates time from 0.3.28 to 0.3.29

Release notes

Sourced from time's releases.

v0.3.29

See the changelog for details.

Changelog

Sourced from time's changelog.

0.3.29 [2023-09-24]

Added

• Niche value optimization for Date has been added. Both Date and Option<Date> are four bytes.
• Unit conversions have been added. It is now possible to write Second::per(Day), which returns the number of seconds in one day. See the types in the time::convert module for more information.

Changed

• The diagnostic for --cfg unsound_local_offset has been removed.
• #![feature(no_coverage)] was previously used internally for code coverage. It is no longer used, so it has been removed.
• The default value for modifier::OffsetHour has been changed. This was unintentionally changed in v0.3.17 and went unnoticed until now. The sign is now only present if needed by default, as was the case previously. This does not affect any situation where format_description! or format_description::parse is used.

Fixed

• Adding or subtracting a std::time::Duration to/from an OffsetDateTime will not result in integer overflow internally. It will still panic if the result is out of range.

Commits

• c96bb1a v0.3.29 release
• 6d0b341 Rework, expose unit conversions
• 313f980 Add niche value optimization to Date
• bcbca6e Partially move to rstest
• 9abaf30 Revert default for OffsetHour modifier
• 6248992 Address lints
• 5b48552 Avoid integer overflow in arithmetic
• 5813d61 Remove unused feature(no_coverage) opt-in (#622)
• 6aa8db5 Require internal macros be explicitly imported
• 5aa84bd Eliminate use of ensure_value_in_range!
• Additional commits viewable in compare view

Updates warp from 0.3.5 to 0.3.6

Release notes

Sourced from warp's releases.

v0.3.6

Features

• Add ability to pass None to multipart::form().max_length().
• Implement Reply for Result<impl Reply, impl Reply>.
• Make multipart::Part::content_type() return the full mime string.
• Add TlsServer::try_bind_with_graceful_shutdown().

Fixes

• Updated tungstenite and rustls dependencies for security fixes.

New Contributors

• @​jnicholls made their first contribution in seanmonstar/warp#717
• @​kouta-kun made their first contribution in seanmonstar/warp#1044
• @​tottoto made their first contribution in seanmonstar/warp#1043
• @​aedmondson made their first contribution in seanmonstar/warp#1046
• @​outamaa made their first contribution in seanmonstar/warp#919
• @​louiseyousre200 made their first contribution in seanmonstar/warp#1056
• @​nickbp made their first contribution in seanmonstar/warp#1061
• @​vitorenesduarte made their first contribution in seanmonstar/warp#1064
• @​AldaronLau made their first contribution in seanmonstar/warp#1063
• @​belgoking made their first contribution in seanmonstar/warp#1062

Changelog

Sourced from warp's changelog.

v0.3.6 (September 27, 2023)

• Features:
  • Add ability to pass None to multipart::form().max_length().
  • Implement Reply for Result<impl Reply, impl Reply>.
  • Make multipart::Part::content_type() return the full mime string.
  • Add TlsServer::try_bind_with_graceful_shutdown().
• Fixes:
  • Updated tungstenite and rustls dependencies for security fixes.

Commits

• 634b3ba v0.3.6
• 8b3bf76 deps: upgrade tungstenite (#1067)
• 5ad8a9c Add references to Filter in documentation (#1062)
• 2f2c744 Update tokio-rustls to 0.24 (Fix RUSTSEC-2023-0052 when "tls" feature enabled...
• 4d3a534 Fix docs build (#1064)
• 149913f Add example (and doc reference) for warp::body::stream() (#1061)
• 376c805 More detailed redirects documentation (#1056)
• 08ee809 example: multipart is wrongly using Buf::chunk (#1055)
• da47391 feat: implement Reply for Result<impl Reply, impl Reply> (#909)
• e562afa feat: add option to ignore content-length with multipart body (#919)
• Additional commits viewable in compare view

Updates postcard from 1.0.7 to 1.0.8

Changelog

Sourced from postcard's changelog.

1.0.8 -> Unreleased

• None yet!

Commits

• a095b49 Prepare for 1.0.8
• 03865c2 Feat: Add IO traits support (#91)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Size Comparison

examples	master (KB)	pull request (KB)	diff (KB)	diff (%)
async_clock	102.828	102.938	+0.109	+0.106%
boids	175.605	175.611	+0.006	+0.003%
communication_child_to_parent	95.298	95.302	+0.004	+0.004%
communication_grandchild_with_grandparent	109.036	109.041	+0.005	+0.004%
communication_grandparent_to_grandchild	105.720	105.719	-0.001	-0.001%
communication_parent_to_child	92.786	92.791	+0.005	+0.005%
contexts	113.456	113.443	-0.013	-0.011%
counter	89.195	89.195	0	0.000%
counter_functional	89.931	89.935	+0.004	+0.004%
dyn_create_destroy_apps	92.319	92.318	-0.001	-0.001%
file_upload	103.516	103.516	0	0.000%
function_memory_game	174.590	174.569	-0.021	-0.012%
function_router	352.387	352.521	+0.134	+0.038%
function_todomvc	163.504	163.497	-0.007	-0.004%
futures	227.445	227.445	0	0.000%
game_of_life	112.162	112.162	0	0.000%
immutable	188.794	188.802	+0.008	+0.004%
inner_html	85.981	85.980	-0.001	-0.001%
js_callback	113.450	113.460	+0.010	+0.009%
keyed_list	201.209	201.206	-0.003	-0.001%
mount_point	89.186	89.189	+0.004	+0.004%
nested_list	114.607	114.596	-0.012	-0.010%
node_refs	96.285	96.294	+0.009	+0.009%
password_strength	1721.320	1721.269	-0.052	-0.003%
portals	98.364	98.364	0	0.000%
router	318.390	318.516	+0.126	+0.040%
simple_ssr	144.249	144.240	-0.009	-0.006%
ssr_router	390.188	390.274	+0.087	+0.022%
suspense	118.998	118.997	-0.001	-0.001%
timer	91.743	91.745	+0.002	+0.002%
timer_functional	100.444	100.449	+0.005	+0.005%
todomvc	143.688	143.688	0	0.000%
two_apps	89.896	89.895	-0.001	-0.001%
web_worker_fib	138.869	138.884	+0.015	+0.011%
web_worker_prime	190.358	190.429	+0.070	+0.037%
webgl	88.499	88.502	+0.003	+0.003%

✅ None of the examples has changed their size significantly.

[github-actions]

Benchmark - SSR

Yew Master

Benchmark	Round	Min (ms)	Max (ms)	Mean (ms)	Standard Deviation
Baseline	10	319.192	319.713	319.465	0.152
Hello World	10	642.238	647.622	643.092	1.626
Function Router	10	2099.230	2114.716	2105.662	4.739
Concurrent Task	10	1006.505	1008.581	1007.811	0.717
Many Providers	10	1499.318	1559.015	1515.584	16.366

Pull Request

Benchmark	Round	Min (ms)	Max (ms)	Mean (ms)	Standard Deviation
Baseline	10	319.302	321.817	320.286	0.955
Hello World	10	645.017	648.396	646.119	0.968
Function Router	10	2095.113	2139.862	2104.831	13.368
Concurrent Task	10	1007.181	1008.317	1007.860	0.341
Many Providers	10	1495.204	1509.927	1500.002	4.466