Skip to content

chore(deps): update dependencies and fix CI for Renovate #392

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
panbanda merged 1 commit into from
Feb 9, 2026
Merged

chore(deps): update dependencies and fix CI for Renovate #392

panbanda merged 1 commit into from
Feb 9, 2026
+980 −471

Conversation

@panbanda
Copy link
Owner

@panbanda panbanda commented Feb 9, 2026

Summary

  • Update gix 0.77->0.78, reqwest 0.12->0.13, minify-html 0.16->0.18, criterion 0.5->0.8
  • Update all semver-compatible deps (anyhow, chrono, clap, flate2, insta, minijinja, proptest, regex, thiserror, toml, assert_cmd)
  • Fix gix 0.78 breaking change: diff::Action::Continue replaced with ControlFlow::Continue(())
  • Fix criterion 0.8 deprecation: criterion::black_box -> std::hint::black_box
  • Fix reqwest 0.13 feature rename: rustls-tls -> rustls
  • Add explicit toolchain input to all dtolnay/rust-toolchain CI steps so future Renovate SHA updates don't break builds

Not updated

  • tree-sitter ecosystem (0.24->0.26): blocked because 5 grammar crates (typescript, java, cpp, c-sharp, ruby) have no releases beyond 0.23 on crates.io

Why Renovate PRs were failing

Test plan

  • cargo build succeeds
  • cargo clippy --all-targets --all-features -- -D warnings passes
  • cargo fmt --check passes
  • 1666 unit tests pass
  • 29/32 integration tests pass (3 score tests are slow full-repo analyses, not a regression)

@panbanda @ruvnet
chore(deps): update dependencies and fix CI for Renovate
169b4a7 
Update gix 0.77->0.78, reqwest 0.12->0.13, minify-html 0.16->0.18,
criterion 0.5->0.8, and all semver-compatible deps. Fix gix 0.78
diff::Action API change and criterion 0.8 black_box deprecation.
Add explicit toolchain input to dtolnay/rust-toolchain CI steps so
Renovate SHA updates don't break the build.

Co-Authored-By: claude-flow <ruv@ruv.net>
@github-actions
Copy link
Contributor

github-actions bot commented Feb 9, 2026

Omen Analysis

Diff Risk
Risk Score 46%
Risk Level MEDIUM
Files Modified 6
Lines Added +979
Lines Deleted -470
Commits 2
Risk Factors
Factor Score
lines_added 0.16
file_churn 0.1
lines_deleted 0.08
num_files 0.032
file_complexity 0.0156
commits 0.0140
entropy 0.0073
ownership_diffusion 0.0036
Recommendations
  • Large PR with 979 lines added - consider splitting into smaller changes
  • Large deletion of 470 lines - ensure no accidental removals
  • Touches historically volatile files - changes here often introduce bugs

Repository Health
Health Score 77.26902837047508 / 100
Grade C
Files Analyzed 93
Critical Issues 1
Score Components
Component Score Weight
complexity 92 1
duplication 41.7 0.8
cohesion 94.2 0.6
tdg 84 0.6
coupling 50.6 0.4
satd 91.4 0.4
smells 100 0.2
Tips for AI agents

Use these commands to investigate and improve low-scoring areas.

Run full analysis:

omen -f json score    # health score with component breakdown
omen -f json diff     # PR risk analysis
omen hotspot          # high-churn + high-complexity files

Coupling (score: 50.56559139784946) -- needs attention

omen graph && omen smells

Break cyclic dependencies by introducing interfaces or extracting shared types. Reduce fan-out from hub modules by splitting responsibilities.

Duplication (score: 41.70640486208509) -- needs attention

omen clones

Look for Type-1 (exact) and Type-2 (renamed) clones. Extract shared logic into reusable functions or modules. Prioritize clones in high-churn files.

General workflow for improving scores:

  1. Run the relevant analyzer command to identify specific files
  2. Focus on the highest-weight components first (complexity 25%, duplication 20%, cohesion 15%, TDG 15%)
  3. Make targeted improvements -- small refactors that reduce complexity or eliminate duplication
  4. Re-run omen score to verify improvement

@coderabbitai
Copy link

coderabbitai bot commented Feb 9, 2026

Important

Review skipped

Auto reviews are limited based on label configuration.

🚫 Review skipped — only excluded labels are configured. (1)
  • autorelease: pending

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Use the checkbox below for a quick retry:

  • 🔍 Trigger review
✨ Finishing touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Post copyable unit tests in a comment
  • Commit unit tests in branch chore/update-dependencies

Comment @coderabbitai help to get the list of available commands and usage tips.

@panbanda panbanda merged commit 8770cb6 into main Feb 9, 2026
8 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

risk: medium

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@panbanda