Skip to content

chore(deps): bump the rust-dependencies group with 4 updates#2117

Merged
chaliy merged 2 commits into
mainfrom
dependabot/cargo/rust-dependencies-90076c0a7c
Jun 22, 2026
Merged

chore(deps): bump the rust-dependencies group with 4 updates#2117
chaliy merged 2 commits into
mainfrom
dependabot/cargo/rust-dependencies-90076c0a7c

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 22, 2026

Copy link
Copy Markdown
Contributor

Bumps the rust-dependencies group with 4 updates: getrandom, napi, syn and quote.

Updates getrandom from 0.4.2 to 0.4.3

Changelog

Sourced from getrandom's changelog.

0.4.3 - 2026-06-17

Added

  • wasm64-unknown-unknown target support for wasm_js backend #848

Changed

  • Drop wasip2 and wasip3 dependencies in favor of manual bindings #830

#830: rust-random/getrandom#830 #848: rust-random/getrandom#848

Commits

Updates napi from 3.9.2 to 3.9.3

Release notes

Sourced from napi's releases.

napi-v3.9.3

Fixed

  • (napi) sync referred flag when creating a weak ThreadsafeFunction (#3337)

Other

  • (napi) outline non-generic core of ThreadsafeFunction::create (#3334)
Commits
  • ee58383 chore(napi): release v3.9.3 (#3335)
  • c787276 fix(napi): sync referred flag when creating a weak ThreadsafeFunction (#3337)
  • d4276ca chore(deps): update dependency oxc-parser to ^0.137.0 (#3336)
  • a0b1831 perf(napi): outline non-generic core of ThreadsafeFunction::create (#3334)
  • 3759d7b chore(deps): update rust-lang/crates-io-auth-action action to v1.0.5 (#3333)
  • dd41eeb build(deps): bump protobufjs from 7.6.2 to 7.6.4 (#3332)
  • cdd48b3 chore(deps): update dependency oxc-parser to ^0.136.0 (#3314)
  • e98762d chore(deps): update yarn monorepo to v4.17.0 (#3330)
  • See full diff in compare view

Updates syn from 2.0.117 to 2.0.118

Release notes

Sourced from syn's releases.

2.0.118

  • Documentation improvements
Commits
  • f033ef1 Release 2.0.118
  • 45f65f7 Wrap long lint attributes
  • b3f9bf8 Mirror PR 1975 from readme to crate-level rustdoc
  • 97dc117 Wrap PR 1975 to 80 columns
  • 0085b7a Lint repr_transparent_non_zst_fields has been removed
  • 9fc1c9d Update test suite to nightly-2026-06-12
  • 504bcc7 Update test suite to nightly-2026-06-09
  • 353d20b Update test suite to nightly-2026-06-06
  • f257a16 Update test suite to nightly-2026-05-25
  • b706e6e Update test suite to nightly-2026-05-13
  • Additional commits viewable in compare view

Updates quote from 1.0.45 to 1.0.46

Release notes

Sourced from quote's releases.

1.0.46

Commits
  • bc4caf2 Release 1.0.46
  • dc0e304 Format with rustfmt
  • 712114c Drop arrow from syntax of quote_spanned_with_expanded_span
  • f93ab8a Eliminate quote_spanned_with_expanded_span_as_expr macro
  • 1ff3951 Eliminate __quote_spanned macro
  • 64e913a Unify quote_spanned definitions
  • 2978e8b Wrap comment to 80 columns
  • 7f311a0 Fix PR 329 fat arrow spacing
  • 313a8a2 Remove unneeded get_span from PR 329
  • 0b33821 Merge pull request #329 from Noratrieb/avoid-repeat-expand
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the rust-dependencies group with 4 updates
4ec473a 
Bumps the rust-dependencies group with 4 updates: [getrandom](https://github.com/rust-random/getrandom), [napi](https://github.com/napi-rs/napi-rs), [syn](https://github.com/dtolnay/syn) and [quote](https://github.com/dtolnay/quote).


Updates `getrandom` from 0.4.2 to 0.4.3
- [Changelog](https://github.com/rust-random/getrandom/blob/master/CHANGELOG.md)
- [Commits](rust-random/getrandom@v0.4.2...v0.4.3)

Updates `napi` from 3.9.2 to 3.9.3
- [Release notes](https://github.com/napi-rs/napi-rs/releases)
- [Commits](napi-rs/napi-rs@napi-v3.9.2...napi-v3.9.3)

Updates `syn` from 2.0.117 to 2.0.118
- [Release notes](https://github.com/dtolnay/syn/releases)
- [Commits](dtolnay/syn@2.0.117...2.0.118)

Updates `quote` from 1.0.45 to 1.0.46
- [Release notes](https://github.com/dtolnay/quote/releases)
- [Commits](dtolnay/quote@1.0.45...1.0.46)

---
updated-dependencies:
- dependency-name: getrandom
  dependency-version: 0.4.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-dependencies
- dependency-name: napi
  dependency-version: 3.9.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-dependencies
- dependency-name: syn
  dependency-version: 2.0.118
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-dependencies
- dependency-name: quote
  dependency-version: 1.0.46
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Jun 22, 2026
@cloudflare-workers-and-pages

cloudflare-workers-and-pages Bot commented Jun 22, 2026
edited
Loading

Copy link
Copy Markdown

Deploying with  Cloudflare Workers  Cloudflare Workers

The latest updates on your project. Learn more about integrating Git with Workers.

Status Name Latest Commit Preview URL Updated (UTC)
✅ Deployment successful!
View logs		 bashkit 2755b14 Commit Preview URL

Branch Preview URL		 Jun 22 2026, 07:58 PM

@chaliy
chore(deps): add cargo-vet exemptions for bumped crates
2755b14 
getrandom 0.4.3, napi 3.9.3, syn 2.0.118, quote 1.0.46 — update the
existing safe-to-deploy exemptions to the new versions so cargo vet
passes for the rust-dependencies group bump.
@chaliy chaliy merged commit c064938 into main Jun 22, 2026
35 checks passed
@chaliy chaliy deleted the dependabot/cargo/rust-dependencies-90076c0a7c branch June 22, 2026 20:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update rust code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@chaliy