From f1b1225a8e3b41279b6995a775a51f881027ca15 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 24 Apr 2023 13:48:13 -0400 Subject: [PATCH] chore(deps): Bump regex from 1.7.3 to 1.8.1 (#645) Bumps [regex](https://github.com/rust-lang/regex) from 1.7.3 to 1.8.1. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/rust-lang/regex/blob/master/CHANGELOG.md">regex's changelog</a>.</em></p> <blockquote> <h1>1.8.1 (2023-04-21)</h1> <p>This is a patch release that fixes a bug where a regex match could be reported where none was found. Specifically, the bug occurs when a pattern contains some literal prefixes that could be extracted <em>and</em> an optional word boundary in the prefix.</p> <p>Bug fixes:</p> <ul> <li>[BUG <a href="https://redirect.github.com/rust-lang/regex/issues/981">#981</a>](<a href="https://redirect.github.com/rust-lang/regex/issues/981">rust-lang/regex#981</a>): Fix a bug where a word boundary could interact with prefix literal optimizations and lead to a false positive match.</li> </ul> <h1>1.8.0 (2023-04-20)</h1> <p>This is a sizeable release that will be soon followed by another sizeable release. Both of them will combined close over 40 existing issues and PRs.</p> <p>This first release, despite its size, essentially represent preparatory work for the second release, which will be even bigger. Namely, this release:</p> <ul> <li>Increases the MSRV to Rust 1.60.0, which was released about 1 year ago.</li> <li>Upgrades its dependency on <code>aho-corasick</code> to the recently release 1.0 version.</li> <li>Upgrades its dependency on <code>regex-syntax</code> to the simultaneously released <code>0.7</code> version. The changes to <code>regex-syntax</code> principally revolve around a rewrite of its literal extraction code and a number of simplifications and optimizations to its high-level intermediate representation (HIR).</li> </ul> <p>The second release, which will follow ~shortly after the release above, will contain a soup-to-nuts rewrite of every regex engine. This will be done by bringing <a href="https://github.com/BurntSushi/regex-automata"><code>regex-automata</code></a> into this repository, and then changing the <code>regex</code> crate to be nothing but an API shim layer on top of <code>regex-automata</code>'s API.</p> <p>These tandem releases are the culmination of about 3 years of on-and-off work that <a href="https://redirect.github.com/rust-lang/regex/issues/656">began in earnest in March 2020</a>.</p> <p>Because of the scale of changes involved in these releases, I would love to hear about your experience. Especially if you notice undocumented changes in behavior or performance changes (positive <em>or</em> negative).</p> <p>Most changes in the first release are listed below. For more details, please see the commit log, which reflects a linear and decently documented history of all changes.</p> <p>New features:</p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/rust-lang/regex/commit/4e29fceace6f3c189f78b1baaec6755f27d69ffb"><code>4e29fce</code></a> 1.8.1</li> <li><a href="https://github.com/rust-lang/regex/commit/8a7cb645cfd7c4e0f77482e8894155b93ca5fc3f"><code>8a7cb64</code></a> deps: bump regex-syntax to 0.7.1</li> <li><a href="https://github.com/rust-lang/regex/commit/31c845296c5d34092aae637a02bf0d757a35f646"><code>31c8452</code></a> regex-syntax-0.7.1</li> <li><a href="https://github.com/rust-lang/regex/commit/960aadeba06420f8b979aa983fd55429c42d3e4a"><code>960aade</code></a> changelog: 1.8.1</li> <li><a href="https://github.com/rust-lang/regex/commit/f003d72578c84d3b849fa1c59724e003338a3ca1"><code>f003d72</code></a> impl: fix prefix literal matching bug</li> <li><a href="https://github.com/rust-lang/regex/commit/93316a3b1adc43cc12fab6c73a59f646658cd984"><code>93316a3</code></a> doc: update MSRV in README</li> <li><a href="https://github.com/rust-lang/regex/commit/070374f2878f23809a4e5ca0810d523f692c6e7e"><code>070374f</code></a> release: 1.8.0</li> <li><a href="https://github.com/rust-lang/regex/commit/a73c61cecbf24ebf70699269cca95b991dbe2e7e"><code>a73c61c</code></a> fuzz: get rid of 'named-profiles' feature</li> <li><a href="https://github.com/rust-lang/regex/commit/7cd75d22b56f60dc711976242a5cbca9e5922413"><code>7cd75d2</code></a> changelog: tweaks to 1.8 release entry</li> <li><a href="https://github.com/rust-lang/regex/commit/33898de870fc584ce912651590d8715d1178e667"><code>33898de</code></a> syntax: fix bug in new alternation literal analysis</li> <li>Additional commits viewable in <a href="https://github.com/rust-lang/regex/compare/1.7.3...1.8.1">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=regex&package-manager=cargo&previous-version=1.7.3&new-version=1.8.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- Cargo.lock | 18 ++++++++++++------ 1 file changed, 12 insertions(+), 6 deletions(-) diff --git a/Cargo.lock b/Cargo.lock index f1709783..e3800aa9 100644 --- a/Cargo.lock +++ b/Cargo.lock @@ -265,9 +265,9 @@ dependencies = [ [[package]] name = "aho-corasick" -version = "0.7.20" +version = "1.0.1" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "cc936419f96fa211c1b9166887b38e5e40b19958e5b895be7c1f93adec7071ac" +checksum = "67fc08ce920c31afb70f013dcce1bfc3a3195de6a228474e45e1f145b36f8d04" dependencies = [ "memchr", ] @@ -1752,7 +1752,7 @@ dependencies = [ "proc-macro2", "quote", "regex", - "regex-syntax", + "regex-syntax 0.6.29", "structmeta", "syn 1.0.109", ] @@ -2039,13 +2039,13 @@ dependencies = [ [[package]] name = "regex" -version = "1.7.3" +version = "1.8.1" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "8b1f693b24f6ac912f4893ef08244d70b6067480d2f1a46e950c9691e6749d1d" +checksum = "af83e617f331cc6ae2da5443c602dfa5af81e517212d9d611a5b3ba1777b5370" dependencies = [ "aho-corasick", "memchr", - "regex-syntax", + "regex-syntax 0.7.1", ] [[package]] @@ -2054,6 +2054,12 @@ version = "0.6.29" source = "registry+https://github.com/rust-lang/crates.io-index" checksum = "f162c6dd7b008981e4d40210aca20b4bd0f9b60ca9271061b07f78537722f2e1" +[[package]] +name = "regex-syntax" +version = "0.7.1" +source = "registry+https://github.com/rust-lang/crates.io-index" +checksum = "a5996294f19bd3aae0453a862ad728f60e6600695733dd5df01da90c54363a3c" + [[package]] name = "retain_mut" version = "0.1.9"