deps: bump the rust-dependencies group across 1 directory with 6 updates by dependabot[bot] · Pull Request #34 · agentic-dev3o/sandbox-shell

dependabot · 2026-03-16T02:19:26Z

Bumps the rust-dependencies group with 6 updates in the / directory:

Package	From	To
clap	`4.5.60`	`4.6.0`
toml	`1.0.3+spec-1.1.0`	`1.0.6+spec-1.1.0`
shellexpand	`3.1.1`	`3.1.2`
tracing-subscriber	`0.3.22`	`0.3.23`
tempfile	`3.25.0`	`3.27.0`
assert_cmd	`2.1.2`	`2.2.0`

Updates clap from 4.5.60 to 4.6.0

Changelog

Sourced from clap's changelog.

[4.6.0] - 2026-03-12

Compatibility

Update MSRV to 1.85

[4.5.61] - 2026-03-12

Internal

Update dependencies

Commits

9ab6dee chore: Release
374a30d docs: Update changelog
d0c8aab Merge pull request #6306 from epage/update
686ce2f chore: Upgrade compatible
8203238 Merge pull request #6305 from epage/msrv
c774a89 docs: Reduce main's in doctests
73534f6 chore: Upgrade to 2025 edition
dfe05a9 chore: Bump MSRV to 1.85
8b41d0b chore: Release
518220f docs: Update changelog
Additional commits viewable in compare view

Updates toml from 1.0.3+spec-1.1.0 to 1.0.6+spec-1.1.0

Commits

a09707e chore: Release
7b0feaa docs: Update changelog
2902954 Revert "fix(toml): Track dotted key for spans" (#1119)
a586cae Revert "fix(toml): Track dotted key for spans"
d35c3f6 chore: Release
949b4e8 docs: Update changelog
47b878b fix(toml): Track dotted key for spans (#1118)
87461d8 fix(toml): Track dotted key for spans
796370e test(serde): Check span meaning
ad87859 test(serde): Track key spans
Additional commits viewable in compare view

Updates shellexpand from 3.1.1 to 3.1.2

Commits

ba453c5 Merge branch 'release' into 'main'
93948d0 Document changes and finalise version 3.1.2
3bd04da Explain why we're still on os_str_bytes 6.x in Cargo.toml
21ce012 Routine dependency updates
f593384 Merge branch 'fix' into 'main'
5245cfa README: Fix various misspelled cargo feature references
9bb1ddf Add three lint allows
7ecf0c2 Add missing elided lifetimes
b6173f0 Rename WstrExt and WstrRefExt methods
69022a0 Use rfind rather than raw_len on RawOsStr
See full diff in compare view

Updates tracing-subscriber from 0.3.22 to 0.3.23

Release notes

Sourced from tracing-subscriber's releases.

tracing-subscriber 0.3.23

Fixed

Allow ansi sanitization to be disabled (#3484)

#3484: tokio-rs/tracing#3484

Commits

54ede4d chore: prepare tracing-subscriber 0.3.23 (#3490)
37558d5 subscriber: allow ansi sanitization to be disabled (#3484)
efc690f core: add missing const (#3449)
0c32367 core: Use const initializers instead of once_cell
9feb241 docs: add arcswap reload crate to related (#3442)
2d55f6f chore: prepare tracing 0.1.44 (#3439)
10a9e83 chore: prepare tracing-core 0.1.36 (#3440)
ee82cf9 tracing: fix record_all panic (#3432)
9978c36 chore: prepare tracing-mock 0.1.0-beta.3 (#3429)
See full diff in compare view

Updates tempfile from 3.25.0 to 3.27.0

Changelog

Sourced from tempfile's changelog.

3.27.0

This release adds TempPath::try_from_path and deprecates TempPath::from_path.

Prior to this release, TempPath::from_path made no attempts to convert relative paths into absolute paths. The following code would have deleted the wrong file:
let tmp_path = TempPath::from_path("foo")
std::env::set_current_dir("/some/other/path").unwrap();
drop(tmp_path);
Now:

TempPath::from_path will attempt to convert relative paths into absolute paths. However, this isn't always possible as we need to call std::env::current_dir, which can fail. If we fail to convert the relative path to an absolute path, we simply keep the relative path.

The TempPath::try_from_path behaves exactly like TempPath::from_path, except that it returns an error if we fail to convert a relative path into an absolute path (or if the passed path is empty).

Neither function attempt to verify the existence of the file in question.

Thanks to @meng-xu-cs for reporting this issue.

3.26.0

Support NamedTempFile::persist on RedoxOS (#393) (thanks to @Andy-Python-Programmer).

Commits

See full diff in compare view

Updates assert_cmd from 2.1.2 to 2.2.0

Changelog

Sourced from assert_cmd's changelog.

[2.2.0] - 2026-03-10

Compatibility

Change cargo_bin bad paths to panics

[2.1.3] - 2026-03-10

Fixes

Un-deprecate cargo_bin

Commits

d935ff8 chore: Release assert_cmd version 2.2.0
1631cf4 docs: Changelog
3137b55 Merge pull request #283 from epage/panic
ebd79f1 fix(cargo): Panic, rather than return bad path
79c9b0d chore: Release assert_cmd version 2.1.3
90cb0dd docs: Update changelog
7af59b9 Merge pull request #282 from epage/deprecated
80fe94c docs(cargo): Specify support for different versions
0246aa6 test: Close markdown quotes
cb3b590 Revert "fix: Deprecate cargo_bin (runtime version)"
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the rust-dependencies group with 6 updates in the / directory: | Package | From | To | | --- | --- | --- | | [clap](https://github.com/clap-rs/clap) | `4.5.60` | `4.6.0` | | [toml](https://github.com/toml-rs/toml) | `1.0.3+spec-1.1.0` | `1.0.6+spec-1.1.0` | | [shellexpand](https://gitlab.com/ijackson/rust-shellexpand) | `3.1.1` | `3.1.2` | | [tracing-subscriber](https://github.com/tokio-rs/tracing) | `0.3.22` | `0.3.23` | | [tempfile](https://github.com/Stebalien/tempfile) | `3.25.0` | `3.27.0` | | [assert_cmd](https://github.com/assert-rs/assert_cmd) | `2.1.2` | `2.2.0` | Updates `clap` from 4.5.60 to 4.6.0 - [Release notes](https://github.com/clap-rs/clap/releases) - [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md) - [Commits](clap-rs/clap@clap_complete-v4.5.60...clap_complete-v4.6.0) Updates `toml` from 1.0.3+spec-1.1.0 to 1.0.6+spec-1.1.0 - [Commits](toml-rs/toml@toml-v1.0.3...toml-v1.0.6) Updates `shellexpand` from 3.1.1 to 3.1.2 - [Commits](https://gitlab.com/ijackson/rust-shellexpand/compare/shellexpand-3.1.1...shellexpand-3.1.2) Updates `tracing-subscriber` from 0.3.22 to 0.3.23 - [Release notes](https://github.com/tokio-rs/tracing/releases) - [Commits](tokio-rs/tracing@tracing-subscriber-0.3.22...tracing-subscriber-0.3.23) Updates `tempfile` from 3.25.0 to 3.27.0 - [Changelog](https://github.com/Stebalien/tempfile/blob/master/CHANGELOG.md) - [Commits](https://github.com/Stebalien/tempfile/commits/v3.27.0) Updates `assert_cmd` from 2.1.2 to 2.2.0 - [Changelog](https://github.com/assert-rs/assert_cmd/blob/master/CHANGELOG.md) - [Commits](assert-rs/assert_cmd@v2.1.2...v2.2.0) --- updated-dependencies: - dependency-name: clap dependency-version: 4.6.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rust-dependencies - dependency-name: toml dependency-version: 1.0.6+spec-1.1.0 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rust-dependencies - dependency-name: shellexpand dependency-version: 3.1.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rust-dependencies - dependency-name: tracing-subscriber dependency-version: 0.3.23 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rust-dependencies - dependency-name: tempfile dependency-version: 3.27.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rust-dependencies - dependency-name: assert_cmd dependency-version: 2.2.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rust-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added the dependencies label Mar 16, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

deps: bump the rust-dependencies group across 1 directory with 6 updates#34

deps: bump the rust-dependencies group across 1 directory with 6 updates#34
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/cargo/rust-dependencies-31f02b7c50

dependabot bot commented on behalf of github Mar 16, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot bot commented on behalf of github Mar 16, 2026

[4.6.0] - 2026-03-12

Compatibility

[4.5.61] - 2026-03-12

Internal

tracing-subscriber 0.3.23

Fixed

3.27.0

3.26.0

[2.2.0] - 2026-03-10

Compatibility

[2.1.3] - 2026-03-10

Fixes

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants