build(deps): bump the external group across 1 directory with 29 updates

[dependabot]

Bumps the external group with 27 updates in the / directory:

Package	From	To
alloy-primitives	1.1.2	1.4.1
anyhow	1.0.98	1.0.100
arbitrary	1.4.1	1.4.2
async-trait	0.1.88	0.1.89
axum	0.8.4	0.8.7
bolero	0.13.3	0.13.4
clap	4.5.39	4.5.53
http	1.3.1	1.4.0
hyper	1.6.0	1.8.1
parking_lot	0.12.4	0.12.5
rand	0.9.1	0.9.2
serde_json	1.0.140	1.0.145
serde_with	3.12.0	3.16.1
test-log	0.2.17	0.2.18
thiserror	2.0.12	2.0.17
tokio	1.45.1	1.48.0
tokio-util	0.7.15	0.7.17
tracing	0.1.41	0.1.43
tracing-appender	0.2.3	0.2.4
assert_cmd	2.0.17	2.1.1
chrono	0.4.41	0.4.42
uuid	1.17.0	1.18.1
reqwest	0.12.19	0.12.24
tower-http	0.6.6	0.6.7
hyper-util	0.1.13	0.1.18
semver	1.0.26	1.0.27
regex	1.11.1	1.12.2

Updates alloy-primitives from 1.1.2 to 1.4.1

Release notes

Sourced from alloy-primitives's releases.

alloy-core v1.4.1

Security

Patched: DoS vulnerability on alloy_dyn_abi::TypedData hashing

An uncaught panic triggered by malformed input to alloy_dyn_abi::TypedData could lead to a denial-of-service (DoS) via eip712_signing_hash().

Software with high availability requirements such as network services may be particularly impacted. If in use, external auto-restarting mechanisms can partially mitigate the availability issues unless repeated attacks are possible.

The vulnerability was patched by adding a check to ensure the element is not empty before accessing its first element; an error is returned if it is empty. The fix is included in version v1.4.1 and backported to v0.8.26.

See: GHSA-pgp9-98jm-wwq2

What's Changed

• chore: remove feature(doc_auto_cfg) by @​DaniPopes in alloy-rs/core#1019
• feat(primitives): Add Borsh support for TxKind by @​mablr in alloy-rs/core#1022
• feat: Add Sqlx Traits for Bytes Type by @​Arvmor in alloy-rs/core#1020
• chore: fix docs, typos by @​DaniPopes in alloy-rs/core#1023
• feat(sol-macro): add transient storage keyword support by @​AurelienFT in alloy-rs/core#1026
• feat: gate 60 tuple impls behind 'more-tuple-impls' feature flag by @​DaniPopes in alloy-rs/core#1027
• chore: remove some inlines by @​DaniPopes in alloy-rs/core#1028
• refactor(dyn-abi): clean up Resolver by @​DaniPopes in alloy-rs/core#1030

New Contributors

• @​AurelienFT made their first contribution in alloy-rs/core#1026

Full Changelog: alloy-rs/core@v1.4.0...v1.4.1

alloy-core v1.4.0

What's Changed

• feat(primitives): add borsh support by @​mablr in alloy-rs/core#993
• feat(sol-macro-expander): add name_by_selector method for enum variant retrieval by @​mablr in alloy-rs/core#995
• chore: typo rollup by @​onbjerg in alloy-rs/core#997
• feat(primitives): extend implementation of diesel's ToSql to Sqlite for FixedBytes and Address by @​xavierm02 in alloy-rs/core#977
• feat(sol-macro-expander): add Clone trait to enum contracts containers by @​fd0r in alloy-rs/core#1003
• fix(sol-types): Fix encode_topic_bytes for byte slices whose length is a non-zero multiple of 32 by @​davidsemakula in alloy-rs/core#1000
• feat(primitives): bump map deps, wrap DefaultHashBuilder by @​DaniPopes in alloy-rs/core#1001
• feat(sol-macro): inherit attributes from contract by @​DaniPopes in alloy-rs/core#1004
• perf(sol-macro): improve abi expansion by @​DaniPopes in alloy-rs/core#1005
• doc(primitives): inline doc for uint! macro by @​0xdapper in alloy-rs/core#1007
• feat: Add Sqlx Traits for Signed Type by @​Arvmor in alloy-rs/core#1008
• fix(sol-macro): remove #[automatically_derived] from non-trait impls by @​DaniPopes in alloy-rs/core#1012
• feat: rkyv support by @​lightsing in alloy-rs/core#990
• chore(deps): bumpies by @​DaniPopes in alloy-rs/core#1014
• fix(sol-macro-expander): propagate all_derives and extra_derives to periphery SC structs by @​squadgazzz in alloy-rs/core#1011
• chore(sol-types): sync panic reasons from geth by @​jsvisa in alloy-rs/core#1015
• fix(sol-macro): internal SC derives by @​squadgazzz in alloy-rs/core#1017
• chore: tweak postgres.rs by @​DaniPopes in alloy-rs/core#1018

New Contributors

... (truncated)

Changelog

Sourced from alloy-primitives's changelog.

1.4.1 - 2025-10-14

Features

• Gate 60 tuple impls behind 'more-tuple-impls' feature flag (#1027)
• [sol-macro] Add transient storage keyword support (#1026)
• Add Sqlx Traits for Bytes Type (#1020)
• [primitives] Add Borsh support for TxKind (#1022)

Miscellaneous Tasks

• Remove some inlines (#1028)
• Fix docs, typos (#1023)
• Remove feature(doc_auto_cfg) (#1019)

Other

• Merge commit from fork

Refactor

• [dyn-abi] Clean up Resolver (#1030)

1.4.0 - 2025-09-26

Bug Fixes

• [sol-macro] Internal SC derives (#1017)
• [sol-macro-expander] Propagate all_derives and extra_derives to periphery SC structs (#1011)
• [sol-macro] Remove #[automatically_derived] from non-trait impls (#1012)
• [sol-types] Fix encode_topic_bytes for byte slices whose length is a non-zero multiple of 32 (#1000)

Dependencies

• [deps] Bumpies (#1014)

Documentation

• [primitives] Inline doc for uint! macro (#1007)

Features

• Rkyv support (#990)
• Add Sqlx Traits for Signed Type (#1008)
• [sol-macro] Inherit attributes from contract (#1004)
• [primitives] Bump map deps, wrap DefaultHashBuilder (#1001)
• [sol-macro-expander] Add Clone trait to enum contracts containers (#1003)
• [primitives] Extend implementation of diesel's ToSql to Sqlite for FixedBytes and Address (#977)
• [sol-macro-expander] Add name_by_selector method for enum variant retrieval (#995)
• [primitives] Add borsh support (#993)

... (truncated)

Commits

• f7d4a85 chore: release 1.4.1
• 5ac01fa refactor(dyn-abi): clean up Resolver (#1030)
• 7823e9a Merge commit from fork
• baa341c chore: remove some inlines (#1028)
• 2ce9079 feat: gate 60 tuple impls behind 'more-tuple-impls' feature flag (#1027)
• 6893986 feat(sol-macro): add transient storage keyword support (#1026)
• bce535b chore: fix docs, typos (#1023)
• 534c90e feat: Add Sqlx Traits for Bytes Type (#1020)
• 4403ac8 feat(primitives): Add Borsh support for TxKind (#1022)
• a71f93a chore: remove feature(doc_auto_cfg) (#1019)
• Additional commits viewable in compare view

Updates anyhow from 1.0.98 to 1.0.100

Release notes

Sourced from anyhow's releases.

1.0.100

• Teach clippy to lint formatting arguments in bail!, ensure!, anyhow! (#426)

1.0.99

• Allow build-script cleanup failure with NFSv3 output directory to be non-fatal (#420)

Commits

• 18c2598 Release 1.0.100
• f271988 Merge pull request #426 from dtolnay/clippyfmt
• 52f2115 Mark macros with clippy::format_args
• da5fd9d Raise minimum tested compiler to rust 1.76
• 211e409 Opt in to generate-macro-expansion when building on docs.rs
• b48fc02 Enforce trybuild >= 1.0.108
• d5f59fb Update ui test suite to nightly-2025-09-07
• 238415d Update ui test suite to nightly-2025-08-24
• 3bab070 Update actions/checkout@v4 -> v5
• 4249254 Order cap-lints flag in the same order as thiserror build script
• Additional commits viewable in compare view

Updates arbitrary from 1.4.1 to 1.4.2

Changelog

Sourced from arbitrary's changelog.

1.4.2

Released 2025-08-13.

Added

• Added formal MSRV policy: "We reserve the right to increment the MSRV on minor releases, however we will strive to only do it deliberately and for good reasons." The current MSRV is 1.63.0.
• Added an Arbitrary implementation for core::cmp::Reverse.

Changed

• Landed a handful of changes to the code generated by #[derive(Arbitrary)] that speed up compilation.

Fixed

• Better documented bias and behavior when running out of entropy, fixed some outdated and incorrect docs related to this.

---

Commits

• dc22fde Merge pull request #230 from fitzgen/bump-to-1.4.2
• 2032403 Bump to version 1.4.2
• 688b494 Merge pull request #229 from nnethercote/with_recursive_count
• 40fe82d Shrink derived code size with with_recursive_count.
• 3fbc2d7 Merge pull request #228 from nnethercote/fieldless-enums-no-recursion
• 88bb8e2 Avoid recursive count guard for fieldless enums.
• 95cc16a Use size_hint for enum discriminants.
• 698d491 Use TokenStream instead of impl quote::ToTokens.
• 9029685 Merge pull request #227 from nnethercote/const-recursive_count
• 27241c6 Mark RECURSIVE_COUNT_* as const.
• Additional commits viewable in compare view

Updates async-trait from 0.1.88 to 0.1.89

Release notes

Sourced from async-trait's releases.

0.1.89

• Improve IDE functionality (#293, thanks @​Veykril)

Commits

• a7e91e9 Release 0.1.89
• fbcfcac Merge pull request 293 from Veykril/lw/quote_spanned
• fd93990 Improve use of spans in quote_spanned
• a5093fe Add type-mismatch ui test
• 6d12b44 Revert "Pin nightly toolchain used for miri job"
• dd9e4ba Hide unused_variables warning in consider-restricting.rs ui test
• b454fc8 Update ui test suite to nightly-2025-08-03
• 9c880e8 Update ui test suite to nightly-2025-07-30
• 7ca751d Ignore unused_parens warning in test
• 2bccfeb Update ui test suite to nightly-2025-05-28
• Additional commits viewable in compare view

Updates axum from 0.8.4 to 0.8.7

Release notes

Sourced from axum's releases.

axum v0.8.7

• Relax implicit Send / Sync bounds on RouterAsService, RouterIntoService (#3555)
• Make it easier to visually scan for default features (#3550)
• Fix some documentation typos

#3550: tokio-rs/axum#3550 #3555: tokio-rs/axum#3555

axum v0.8.5

• fixed: Reject JSON request bodies with trailing characters after the JSON document (#3453)
• added: Implement OptionalFromRequest for Multipart (#3220)
• added: Getter methods Location::{status_code, location}
• added: Support for writing arbitrary binary data into server-sent events (#3425)]
• added: middleware::ResponseAxumBodyLayer for mapping response body to axum::body::Body (#3469)
• added: impl FusedStream for WebSocket (#3443)
• changed: The sse module and Sse type no longer depend on the tokio feature (#3154)
• changed: If the location given to one of Redirects constructors is not a valid header value, instead of panicking on construction, the IntoResponse impl now returns an HTTP 500, just like Json does when serialization fails (#3377)
• changed: Update minimum rust version to 1.78 (#3412)

#3154: tokio-rs/axum#3154 #3220: tokio-rs/axum#3220 #3377: tokio-rs/axum#3377 #3412: tokio-rs/axum#3412 #3425: tokio-rs/axum#3425 #3443: tokio-rs/axum#3443 #3453: tokio-rs/axum#3453 #3469: tokio-rs/axum#3469

Commits

• 4404f27 Release axum v0.8.7 and axum-extra v0.12.2
• 8f1545a Fix typo in extractors guide (#3554)
• 4fc3faa Relax implicit Send / Sync bounds (#3555)
• a05920c Make it easier to visually scan for default features (#3550)
• 6d5e6d5 Use extensions directly in from_request_parts (#3542)
• fe607e6 Fixes wording typo (#3540)
• f9ce3e5 Release axum-extra 0.12.1
• 12e1cf9 Add back package.metadata.docs.rs for axum-extra
• 914a35a Release axum-extra 0.12.0
• e20e90d Upgrade axum-extra to prost v0.14 (#3517)
• Additional commits viewable in compare view

Updates bolero from 0.13.3 to 0.13.4

Commits

• See full diff in compare view

Updates clap from 4.5.39 to 4.5.53

Release notes

Sourced from clap's releases.

v4.5.53

[4.5.53] - 2025-11-19

Features

• Add default_values_if, default_values_ifs

v4.5.52

[4.5.52] - 2025-11-17

Fixes

• Don't panic when args_conflicts_with_subcommands conflicts with an ArgGroup

v4.5.51

[4.5.51] - 2025-10-29

Fixes

• (help) Correctly calculate padding for short flags that take a value
• (help) Don't panic on short flags using ArgAction::Count

v4.5.50

[4.5.50] - 2025-10-20

Features

• Accept Cow where String and &str are accepted

v4.5.48

[4.5.48] - 2025-09-19

Documentation

• Add a new CLI Concepts document as another way of framing clap
• Expand the typed_derive cookbook entry

v4.5.47

[4.5.47] - 2025-09-02

Features

• Added impl FromArgMatches for ()
• Added impl Args for ()
• Added impl Subcommand for ()
• Added impl FromArgMatches for Infallible
• Added impl Subcommand for Infallible

Fixes

... (truncated)

Changelog

Sourced from clap's changelog.

[4.5.53] - 2025-11-19

Features

• Add default_values_if, default_values_ifs

[4.5.52] - 2025-11-17

Fixes

• Don't panic when args_conflicts_with_subcommands conflicts with an ArgGroup

[4.5.51] - 2025-10-29

Fixes

• (help) Correctly calculate padding for short flags that take a value
• (help) Don't panic on short flags using ArgAction::Count

[4.5.50] - 2025-10-20

Features

• Accept Cow where String and &str are accepted

[4.5.49] - 2025-10-13

Fixes

• (help) Correctly wrap when ANSI escape codes are present

[4.5.48] - 2025-09-19

Documentation

• Add a new CLI Concepts document as another way of framing clap
• Expand the typed_derive cookbook entry

[4.5.47] - 2025-09-02

Features

• Added impl FromArgMatches for ()
• Added impl Args for ()
• Added impl Subcommand for ()
• Added impl FromArgMatches for Infallible
• Added impl Subcommand for Infallible

Fixes

... (truncated)

Commits

• 3716f9f chore: Release
• 613b69a docs: Update changelog
• d117f7a Merge pull request #6028 from epage/arg
• cb8255d feat(builder): Allow quoted id's for arg macro
• 1036060 Merge pull request #6025 from AldaronLau/typos-in-faq
• 2fcafc0 docs: Fix minor grammar issues in FAQ
• a380b65 Merge pull request #6023 from epage/template
• 4d7ab14 chore: Update from _rust/main template
• b8a7ea4 chore(deps): Update Rust Stable to v1.87 (#18)
• f9842b3 chore: Avoid MSRV problems out of the box
• Additional commits viewable in compare view

Updates http from 1.3.1 to 1.4.0

Release notes

Sourced from http's releases.

v1.4.0

Highlights

• Add StatusCode::EARLY_HINTS constant for 103 Early Hints.
• Make StatusCode::from_u16 now a const fn.
• Make Authority::from_static now a const fn.
• Make PathAndQuery::from_static now a const fn.
• MSRV increased to 1.57 (allows legible const fn panic messages).

What's Changed

• Updated Rand dependency to v0.9.1 by @​FarzadMohtasham in hyperium/http#763
• Fix compilation on latest nightly by @​akonradi-signal in hyperium/http#769
• Avoid unnecessary .expect()s for empty HeaderMap by @​akonradi-signal in hyperium/http#768
• feat: show types in Extensions debug output by @​crepererum in hyperium/http#773
• Docs: Clarify the HeaderMap documentaion by @​Sol-Ell in hyperium/http#774
• style: update format for tests by @​seanmonstar in hyperium/http#782
• Make StatusCode::from_u16 const by @​coolreader18 in hyperium/http#761
• docs: Fix typo 'an' to 'and' in http::status module documentation by @​zxzxovo in hyperium/http#784
• fix: Prevent panic in try_reserve/try_with_capacity on capacity overflow by @​AriajSarkar in hyperium/http#787
• fix: Add reserve() to Extend impl for (Option, T)) by @​AriajSarkar in hyperium/http#788
• chore: minor improvement for docs by @​claudecodering in hyperium/http#790
• chore: bump MSRV to 1.57 by @​seanmonstar in hyperium/http#793
• Add EARLY_HINTS status code by @​mdevino in hyperium/http#758
• refactor(header): use better panic message in const HeaderName and HeaderValue by @​seanmonstar in hyperium/http#797
• docs: remove unnecessary extern crate sentence by @​tottoto in hyperium/http#799
• chore(ci): update to actions/checkout@v5 by @​tottoto in hyperium/http#800
• feat(uri): make Authority/PathAndQuery::from_static const by @​WaterWhisperer in hyperium/http#786
• refactor(header): inline FNV hasher to reduce dependencies by @​seanmonstar in hyperium/http#796
• v1.4.0 by @​seanmonstar in hyperium/http#803

New Contributors

• @​FarzadMohtasham made their first contribution in hyperium/http#763
• @​akonradi-signal made their first contribution in hyperium/http#769
• @​crepererum made their first contribution in hyperium/http#773
• @​Sol-Ell made their first contribution in hyperium/http#774
• @​coolreader18 made their first contribution in hyperium/http#761
• @​zxzxovo made their first contribution in hyperium/http#784
• @​AriajSarkar made their first contribution in hyperium/http#787
• @​claudecodering made their first contribution in hyperium/http#790
• @​mdevino made their first contribution in hyperium/http#758
• @​WaterWhisperer made their first contribution in hyperium/http#786

Full Changelog: hyperium/http@v1.3.1...v1.4.0

Changelog

Sourced from http's changelog.

1.4.0 (November 24, 2025)

• Add StatusCode::EARLY_HINTS constant for 103 Early Hints.
• Make StatusCode::from_u16 now a const fn.
• Make Authority::from_static now a const fn.
• Make PathAndQuery::from_static now a const fn.
• MSRV increased to 1.57 (allows legible const fn panic messages).

Commits

• b9625d8 v1.4.0
• 50b009c refactor(header): inline FNV hasher to reduce dependencies (#796)
• b370d36 feat(uri): make Authority/PathAndQuery::from_static const (#786)
• 0d74251 chore(ci): update to actions/checkout@v5 (#800)
• a760767 docs: remove unnecessary extern crate sentence (#799)
• fb1d457 refactor(header): use better panic message in const HeaderName and HeaderValu...
• 20dbd6e feat(status): Add 103 EARLY_HINTS status code (#758)
• e7a7337 chore: bump MSRV to 1.57
• 1888e28 tests: downgrade rand back to 0.8 for now
• 918bbc3 chore: minor improvement for docs (#790)
• Additional commits viewable in compare view

Updates hyper from 1.6.0 to 1.8.1

Release notes

Sourced from hyper's releases.

v1.8.1

Bug Fixes

• http1: fix consuming extra CPU from previous change (#3977) (4492f31e)

Full Changelog: hyperium/hyper@v1.8.0...v1.8.1

v1.8.0

Highlights

Features

• rt: add Timer::now() method to allow overriding the instant returned (#3965) (5509ebe6)

Bug Fixes

• http1: fix rare missed write wakeup on connections (#3952) (2377b893)
• http2: fix internals of HTTP/2 CONNECT upgrades (#3967) (58e0e7dc, closes #3966)

Breaking Changes

While technically breaking, it's assumed you will not need to do anything or be affected.

• The HTTP/2 client connection no longer allows an executor that can not spawn itself.

  This was an oversight originally. The client connection will now include spawning a future that keeps a copy of the executor to spawn other futures. Thus, if it is !Send, it needs to spawn !Send futures. The likelihood of executors that match the previously allowed behavior should be very remote.

  There is also technically a semver break in here, which is that the Http2ClientConnExec trait no longer dyn-compatible, because it now expects to be Clone. This should not break usage of the conn builder, because it already separately had E: Clone bounds. If someone were using dyn Http2ClientConnExec, that will break. However, there is no purpose for doing so, and it is not usable otherwise, since the trait only exists to propagate bounds into hyper. Thus, the breakage should not affect anyone. (58e0e7dc)

What's Changed

• chore(ci): update to actions/checkout@v5 by @​tottoto in hyperium/hyper#3935
• refactor(ffi): specify "C" ABI explicitly in ffi_fn! macro by @​1911860538 in hyperium/hyper#3937
• Update documented default values for http1::Builder by @​Will-Low in hyperium/hyper#3938
• fix(client): port tests to in-memory socket by @​cratelyn in hyperium/hyper#3947
• feat: allow overriding the instant returned from Timer by @​arielb1 in hyperium/hyper#3965
• fix(http1): poll_loop writes when ready by @​lthiery in hyperium/hyper#3952
• test(ready_stream): replace tracing with printlns by @​seanmonstar in hyperium/hyper#3973

... (truncated)

Changelog

Sourced from hyper's changelog.

v1.8.1 (2025-11-13)

Bug Fixes

• http1: fix consuming extra CPU from previous change (#3977) (4492f31e)

v1.8.0 (2025-11-11)

Bug Fixes

• http1: fix rare missed write wakeup on connections (#3952) (2377b893)
• http2: fix internals of HTTP/2 CONNECT upgrades (#3967) (58e0e7dc, closes #3966)

Features

• rt: add Timer::now() method to allow overriding the instant returned (#3965) (5509ebe6)

Breaking Changes

• The HTTP/2 client connection no longer allows an executor that can not spawn itself.

  This was an oversight originally. The client connection will now include spawning a future that keeps a copy of the executor to spawn other futures. Thus, if it is !Send, it needs to spawn !Send futures. The likelihood of executors that match the previously allowed behavior should be very remote.

  There is also technically a semver break in here, which is that the Http2ClientConnExec trait no longer dyn-compatible, because it now expects to be Clone. This should not break usage of the conn builder, because it already separately had E: Clone bounds. If someone were using dyn Http2ClientConnExec, that will break. However, there is no purpose for doing so, and it is not usable otherwise, since the trait only exists to propagate bounds into hyper. Thus, the breakage should not affect anyone. (58e0e7dc)

v1.7.0 (2025-08-18)

Bug Fixes

• server: improve caching accuracy of Date header (#3887) (436cadd1)

... (truncated)

Commits

• 166c6ca v1.8.1
• 4492f31 fix(http1): fix consuming extra CPU from previous change (#3977)
• dbe6f25 v1.8.0
• 58e0e7d fix(http2): fix internals of HTTP/2 CONNECT upgrades (#3967)
• 0a37a8c test(ready_stream): replace tracing with printlns (#3973)
• 2377b89 fix(http1): fix rare missed write wakeup on connections (#3952)
• 5509ebe feat(rt): add Timer::now() method to allow overriding the instant returned ...
• f9f8f44 tests(client): port tests to in-memory socket (#3947)
• 5803a9c docs(server): update default values for http1::Builder (#3938)
• e1e1f2b refactor(ffi): specify "C" ABI explicitly in ffi_fn! macro (#3937)
• Additional commits viewable in compare view

Updates parking_lot from 0.12.4 to 0.12.5

Changelog

Sourced from parking_lot's changelog.

parking_lot - 0.12.5 - 2025-09-30

• Bumped MSRV to 1.71
• Fixed Miri when the hardware-lock-elision feature is enabled (#491)
• Added missing into_arc(_fair) methods (#472)
• Fixed RawRwLock::bump_*() not releasing lock when there are multiple readers (#471)

parking_lot_core - 0.9.12 - 2025-09-30

• Bumped MSRV to 1.71
• Switched from windows-targets to windows-link. (#493)
• Replaced thread-id dependency with std::thread::ThreadId (#483)
• Added SGX implementation for ThreadParker.park_until (#481)

lock_api - 0.4.14 - 2025-09-30

• Fixed use of doc_cfg when building on docs.rs.
• Bumped MSRV to 1.71
• Added #[track_caller] where locking implementations could feasibly need to panic
• Added try_map_or_err to various mutex guards (#480)
• Removed unnecessary build script and autocfg dependency (#474)
• Added missing into_arc(_fair) methods (#472)

Commits

• d7828ff chore: release
• 73365ad Merge pull request #495 from mbrobbel/doc_auto_cfg
• 0b5585a Replace doc_auto_cfg with doc_cfg
• c7b7dc7 Merge pull request #493 from a1phyr/windows_link
• 07c2d40 Update MSRV to 1.71
• 345cf7a Switch from windows-targets to windows-link
• eeb186c Merge pull request #491 from AaronKutch/fix_assembly_on_miri
• a7d328e do not use elision on Miri even if feature is enabled
• 739d370 Merge pull request #487 from sola-contrib/replace-winapi
• ed4ae93 Replace winapi with windows-sys in benchmark crate
• Additional commits viewable in compare view

Updates rand from 0.9.1 to 0.9.2

Changelog

Sourced from rand's changelog.

[0.9.2] - 2025-07-20

Deprecated

• Deprecate rand::rngs::mock module and StepRng generator (#1634)

Additions

• Enable WeightedIndex<usize> (de)serialization (#1646)

Commits

• d3dd415 Prepare rand_core 0.9.2 (#1605)
• 99fabd2 Prepare rand_core 0.9.2
• c7fe1c4 rand: re-export rand_core (#1604)
• db2b1e0 rand: re-export rand_core
• ee1d96f rand_core: implement reborrow for UnwrapMut (#1595)
• e0eb2ee rand_core: implement reborrow for UnwrapMut
• 975f602 fixup clippy 1.85 warnings
• 775b05b Relax Sized requirements for blanket impls (#1593)
• See full diff in compare view

Updates serde from 1.0.219 to 1.0.228

Release notes

Sourced from serde's releases.

v1.0.228

• Allow building documentation with RUSTDOCFLAGS='--cfg=docsrs' set for the whole dependency graph (#2995)

v1.0.227

• Documentation improvements (#2991)

v1.0.226

• Deduplicate variant matching logic inside generated Deserialize impl for adjacently tagged enums (#2935, thanks @​Mingun)

v1.0.225

• Avoid triggering a deprecation warning in derived Serialize and Deserialize impls for a data structure that contains its own deprecations (#2879, thanks @​rcrisanti)

v1.0.224

• Remove private types being suggested in rustc diagnostics (#2979)

v1.0.223

• Fix serde_core documentation links (#2978)

v1.0.222

• Make serialize_with attribute produce code that works if respanned to 2024 edition (#2950, thanks @​aytey)

v1.0.221

• Documentation improvements (#2973)
• Deprecate serde_if_integer128! macro (#2975)

v1.0.220

• Add a way for data formats to depend on serde traits without waiting for serde_derive compilation: https://docs.rs/serde_core (