build(deps): bump the cargo group across 1 directory with 8 updates

[dependabot]

Bumps the cargo group with 8 updates in the / directory:

Package	From	To
clap	4.5.51	4.5.53
git2	0.20.2	0.20.3
log	0.4.28	0.4.29
quick-xml	0.38.3	0.38.4
mockito	1.7.0	1.7.1
pyo3	0.27.1	0.27.2
napi	3.5.2	3.6.1
napi-derive	3.3.3	3.4.0

Updates clap from 4.5.51 to 4.5.53

Release notes

Sourced from clap's releases.

v4.5.53

[4.5.53] - 2025-11-19

Features

• Add default_values_if, default_values_ifs

v4.5.52

[4.5.52] - 2025-11-17

Fixes

• Don't panic when args_conflicts_with_subcommands conflicts with an ArgGroup

Changelog

Sourced from clap's changelog.

[4.5.53] - 2025-11-19

Features

• Add default_values_if, default_values_ifs

[4.5.52] - 2025-11-17

Fixes

• Don't panic when args_conflicts_with_subcommands conflicts with an ArgGroup

Commits

• 3716f9f chore: Release
• 613b69a docs: Update changelog
• d117f7a Merge pull request #6028 from epage/arg
• cb8255d feat(builder): Allow quoted id's for arg macro
• 1036060 Merge pull request #6025 from AldaronLau/typos-in-faq
• 2fcafc0 docs: Fix minor grammar issues in FAQ
• a380b65 Merge pull request #6023 from epage/template
• 4d7ab14 chore: Update from _rust/main template
• b8a7ea4 chore(deps): Update Rust Stable to v1.87 (#18)
• f9842b3 chore: Avoid MSRV problems out of the box
• Additional commits viewable in compare view

Updates git2 from 0.20.2 to 0.20.3

Changelog

Sourced from git2's changelog.

0.20.3 - 2025-12-06

0.20.2...0.20.3

Changed

• Bumped requirement to libgit2-sys 0.18.3, which updates libgit2 from 1.9.0 to 1.9.2. #1197

Commits

• 7cf345c Merge pull request #1197 from ehuss/git2-0.20-br
• dd41077 Bump git2 to 0.20.3
• a6a58e2 Merge pull request #1195 from ehuss/update-libgit2
• See full diff in compare view

Updates log from 0.4.28 to 0.4.29

Release notes

Sourced from log's releases.

0.4.29

MSRV

This release increases log's MSRV from 1.61.0 to 1.68.0.

What's Changed

• docs: Add missing impls from README.md by @​AldaronLau in rust-lang/log#703
• Point to new URLs for favicon and logo by @​AldaronLau in rust-lang/log#704
• perf: reduce llvm-lines of FromStr for Level and LevelFilter by @​dishmaker in rust-lang/log#709
• Replace serde with serde_core by @​Thomasdezeeuw in rust-lang/log#712
• Fix clippy lints by @​Thomasdezeeuw in rust-lang/log#713
• Use GitHub Actions to install Rust and cargo-hack by @​Thomasdezeeuw in rust-lang/log#715
• Exclude old unstable_kv features from testing matrix by @​Thomasdezeeuw in rust-lang/log#716
• Fix up CI by @​KodrAus in rust-lang/log#718
• Prepare for 0.4.29 release by @​KodrAus in rust-lang/log#719

New Contributors

• @​AldaronLau made their first contribution in rust-lang/log#703
• @​dishmaker made their first contribution in rust-lang/log#709

Full Changelog: rust-lang/log@0.4.28...0.4.29

Changelog

Sourced from log's changelog.

[0.4.29] - 2025-12-02

What's Changed

• perf: reduce llvm-lines of FromStr for Level and LevelFilter by @​dishmaker in rust-lang/log#709
• Replace serde with serde_core by @​Thomasdezeeuw in rust-lang/log#712

New Contributors

• @​AldaronLau made their first contribution in rust-lang/log#703
• @​dishmaker made their first contribution in rust-lang/log#709

Full Changelog: rust-lang/log@0.4.28...0.4.29

Commits

• b1e2df7 Merge pull request #719 from rust-lang/cargo/0.4.29
• 3fe1a54 prepare for 0.4.29 release
• 7a432d9 Merge pull request #718 from rust-lang/ci/msrv
• 0689d56 rebump msrv to 1.68.0
• 46b448e try drop msrv back to 1.61.0
• 929ab38 fix up doc test feature gate
• 957cece bump serde-dependent crates
• bea40c8 bump msrv to 1.68.0
• c540184 Merge pull request #716 from rust-lang/ci-smaller-matrix2
• c971e63 Merge branch 'master' into ci-smaller-matrix2
• Additional commits viewable in compare view

Updates quick-xml from 0.38.3 to 0.38.4

Release notes

Sourced from quick-xml's releases.

v0.38.4 - CDATA serialization in serde

What's Changed

New Features

• #353: Add ability to serialize textual content as CDATA sections in Serializer. Everywhere where the text node may be created, a CDATA section(s) could be produced instead. See the new [Serializer::text_format()] method.

Bug Fixes

• #912: Fix deserialization of numbers, booleans and characters that is space-wrapped, for example <int> 42 </int>. That space characters are usually indent added during serialization and other XML serialization libraries trims them

Misc Changes

• #901: Fix running tests on 32-bit architecture
• #909: Avoid some allocations in the Serializer

#353: tafia/quick-xml#353 #901: tafia/quick-xml#901 #909: tafia/quick-xml#909 #912: tafia/quick-xml#912 [Serializer::text_format()]: https://docs.rs/quick-xml/0.38.4/quick_xml/se/struct.Serializer.html#method.text_format

New Contributors

• @​Ninja3047 made their first contribution in tafia/quick-xml#904
• @​alexanderkjall made their first contribution in tafia/quick-xml#901

Full Changelog: tafia/quick-xml@v0.38.3...v0.38.4

Changelog

Sourced from quick-xml's changelog.

0.38.4 -- 2025-11-11

New Features

• #353: Add ability to serialize textual content as CDATA sections in Serializer. Everywhere where the text node may be created, a CDATA section(s) could be produced instead. See the new [Serializer::text_format()] method.

Bug Fixes

• #912: Fix deserialization of numbers, booleans and characters that is space-wrapped, for example <int> 42 </int>. That space characters are usually indent added during serialization and other XML serialization libraries trims them

Misc Changes

• #901: Fix running tests on 32-bit architecture
• #909: Avoid some allocations in the Serializer

#353: tafia/quick-xml#353 #901: tafia/quick-xml#901 #909: tafia/quick-xml#909 #912: tafia/quick-xml#912 [Serializer::text_format()]: https://docs.rs/quick-xml/0.38.4/quick_xml/se/struct.Serializer.html#method.text_format

Commits

• 595033e Release 0.38.4
• 06772a6 compare: update xml-rs 0.8 -> 1.0
• 40a8ec1 compare: update xml5ever 0.35 -> 0.36
• 8188346 Merge pull request #912 from Mingun/trim-spaces-for-primitives
• 10d0646 Trim spaces in SimpleTypeDeserializer before deserialize numbers, booleans an...
• 1b07a6a Add tests with spaces around values
• 1fc4cb1 Add tests for deserializing primitives from self-closed tag
• c67b82b Reorder text_nested test to match common order
• 4c8712c Split one trivial::\<type>::{field, naked, text} tests to several independen...
• f2ac3f3 Forward deserialization of primitives to SimpleTypeDeserializer
• Additional commits viewable in compare view

Updates mockito from 1.7.0 to 1.7.1

Release notes

Sourced from mockito's releases.

1.7.1

• Add headers method to Request struct by @​gustavomedeiross in lipanski/mockito#220
• Optimize body matching by checking binary match before UTF-8 conversion by @​Abimael10 in lipanski/mockito#221
• Refactor response body by @​tottoto in lipanski/mockito#222

Commits

• 7f00a9c Bump to 1.7.1
• dff2b36 Bump to 1.7.0
• 9f776f9 Merge pull request #222 from tottoto/refactor-response-body
• 89c0121 Refactor response body
• 291ca06 Merge pull request #221 from Abimael10/optimize/body-matching-utf8-conversion
• ee454e4 Optimize body matching by checking binary match before UTF-8 conversion
• 239e654 Merge pull request #220 from gustavomedeiross/gustavomedeiross/add-headers-me...
• ae58947 Fix import
• 7ff6b99 Add headers method to Request struct
• See full diff in compare view

Updates pyo3 from 0.27.1 to 0.27.2

Release notes

Sourced from pyo3's releases.

PyO3 0.27.2

This patch contains very minor fixes for the PyO3 0.27 series:

• Workaround a rustc 1.92+ crash compiling PyO3 with both debug assertions and optimizations enabled.
• Fix runtime crash when subclassing dicts on PyPy and GraalPy.

There are also a number of documentation improvements applied across the codebase.

Thank you to the following contributors for the improvements:

@​davidhewitt @​dependabot[bot] @​MusicalNinjaDad @​pkalivas @​tpoliaw @​Tpt

Changelog

Sourced from pyo3's changelog.

[0.27.2] - 2025-11-30

Changed

• Disable subclassing PyDict on GraalPy (unsupported for now, may crash at runtime). #5653

Fixed

• Fix crash when compiling on Rust 1.92+ with both debug assertions and optimizations enabled. #5638
• Fix FFI definition of PyDictObject on PyPy. #5653

Commits

• 117102d release: 0.27.2
• 2b1d6c5 fix FFI definition of PyDictObject on PyPy (#5653)
• 032d4d3 ci: add lychee cache (#5616)
• b4f78c0 fix rumdl formatting
• 0497d48 ci: remove old netlify build files (#5631)
• f3d6e05 Avoid introducing generic parameter with implied bounds from an associated ty...
• c8e6597 ci: pin mdbook to 0.4 for now, properly install mdbook-tabs (#5632)
• 30cca7e build(deps): bump actions/checkout from 5.0.0 to 5.0.1 (#5629)
• bb7bb94 Update PyIterator::send docs to match behaviour (#5593)
• 1acadc5 Add radiate to README examples section (#5561)
• Additional commits viewable in compare view

Updates napi from 3.5.2 to 3.6.1

Release notes

Sourced from napi's releases.

napi-v3.6.1

Other

• updated the following local packages: napi-sys

napi-v3.6.0

Added

• (napi-derive) add tracing feature for debug logging NAPI function calls (#3041)
• (napi) add node_api_create_object_with_properties support for enum creation (#2990)

Fixed

• (napi) bigInt comparison (#3039)
• (napi) shutdown runtime at env cleanup on windows (#3026)

Other

• (napi) add back pub NODE_VERSION_* (#3046)
• (sys) add back non dyn-symbols behavior (#3045)
• (napi) add Eq and PartialEq trait to BigInt (#3033)
• update MSRV in README.md (#3023)

Commits

• be4b16c chore: release (#3048)
• 280ab7f fix(sys): always require libloading because of msvc (#3047)
• 98c987f chore: release (#3024)
• 257dde1 chore(release): publish
• 4ca47e1 chore(napi): add back pub NODE_VERSION_* (#3046)
• cf0465f chore(sys): add back non dyn-symbols behavior (#3045)
• 295c6b3 fix(napi): bigInt comparison (#3039)
• 54a9654 fix(napi-derive): add paren for function types (#3044)
• a673471 feat(napi-derive): add tracing feature for debug logging NAPI function calls ...
• 3cca48c chore(deps): lock file maintenance (#3040)
• Additional commits viewable in compare view

Updates napi-derive from 3.3.3 to 3.4.0

Release notes

Sourced from napi-derive's releases.

napi-derive-v3.4.0

Added

• (napi-derive) add tracing feature for debug logging NAPI function calls (#3041)

Fixed

• (deps) update rust crate convert_case to 0.10 (#3031)

Commits

• 98c987f chore: release (#3024)
• 257dde1 chore(release): publish
• 4ca47e1 chore(napi): add back pub NODE_VERSION_* (#3046)
• cf0465f chore(sys): add back non dyn-symbols behavior (#3045)
• 295c6b3 fix(napi): bigInt comparison (#3039)
• 54a9654 fix(napi-derive): add paren for function types (#3044)
• a673471 feat(napi-derive): add tracing feature for debug logging NAPI function calls ...
• 3cca48c chore(deps): lock file maintenance (#3040)
• e0f5993 chore(deps): update dependency tinybench to v6 (#3043)
• 337abca chore(deps): update dependency @​oxc-node/core to ^0.0.35 (#3042)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 96.53%. Comparing base (f621fce) to head (18bf3d1).
⚠️ Report is 2 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #223   +/-   ##
=======================================
  Coverage   96.53%   96.53%           
=======================================
  Files          14       14           
  Lines        2999     2999           
=======================================
  Hits         2895     2895           
  Misses        104      104           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.