deps(deps): bump zip from 2.4.2 to 4.3.0

[dependabot]

Bumps zip from 2.4.2 to 4.3.0.

Release notes

Sourced from zip's releases.

v4.3.0

🚀 Features

• Add support for PPMd (#370)

v4.2.0

🚀 Features

• Write ZIP file to stream (#246)

v4.1.0

🚀 Features

• Add has_overlapping_files method

v4.0.0

🐛 Bug Fixes

• Allow extraction of Zip64 where "Version needed to extract" is higher than "Version made by" (#356)

⚙️ Miscellaneous Tasks

• Revert nt-time upgrade (would increase MSRV)
• Revert constant_time_eq update (would increase MSRV)
• Update fully-qualified names of liblzma imports

v3.0.0

🐛 Bug Fixes

• return correct offset in SeekableTake::seek (#342)
• When only zopfli is available, decompression of deflate should not be possible (#348)
• Specify flate2 dependency of the deflate-flate2 feature. (#345)

⚙️ Miscellaneous Tasks

• drop unused crossbeam-utils dependency (#339)
• fix typo
• remove deflate-flate2 dependency on specific backend
• [breaking] Drop deprecated deflate-miniz feature flag (#351)

v2.6.1

🐛 Bug Fixes

• avoid scanning through all local file headers while opening an archive (#281)

v2.6.0

🚀 Features

• Add support for time::PrimitiveDateTime (#322)
• Add jiff integration (#323)

... (truncated)

Changelog

Sourced from zip's changelog.

4.3.0 - 2025-07-09

🚀 Features

• Add support for PPMd (#370)

4.2.0 - 2025-06-21

🚀 Features

• Write ZIP file to stream (#246)

4.1.0 - 2025-06-14

🚀 Features

• Add has_overlapping_files method

4.0.0 - 2025-05-21

🐛 Bug Fixes

• Allow extraction of Zip64 where "Version needed to extract" is higher than "Version made by" (#356)

⚙️ Miscellaneous Tasks

• Revert nt-time upgrade (would increase MSRV)
• Revert constant_time_eq update (would increase MSRV)
• Update fully-qualified names of liblzma imports

3.0.0 - 2025-05-14

🐛 Bug Fixes

• return correct offset in SeekableTake::seek (#342)
• When only zopfli is available, decompression of deflate should not be possible (#348)
• Specify flate2 dependency of the deflate-flate2 feature. (#345)

⚙️ Miscellaneous Tasks

• drop unused crossbeam-utils dependency (#339)
• fix typo
• remove deflate-flate2 dependency on specific backend
• [breaking] Drop deprecated deflate-miniz feature flag (#351)

2.6.1 - 2025-04-03

🐛 Bug Fixes

• avoid scanning through all local file headers while opening an archive (#281)

... (truncated)

Commits

• 6c78fe3 Bump version to 4.3.0 and update CHANGELOG
• 741ca45 ci: Update release-plz configuration
• 2c77a90 deps: Remove dependency on getrandom wasm backend (#336) (#372)
• f5963e3 Add support for PPMd (#370)
• c827899 Upgrade to bzip2 0.6.0 (#366)
• 3a92c78 chore: release v4.2.0 (#365)
• 3f34acd Add StreamWriter::into_inner() (#367)
• 44c0315 Include magic signature when writing data descriptors (#368)
• 027cbb7 feat: Write ZIP file to stream (#246)
• 6ad5924 chore: release v4.1.0 (#362)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Reviewers

The following users could not be added as reviewers: blacksky-algorithms. Either the username does not exist or it does not have the correct permissions to be added as a reviewer.

Assignees

The following users could not be added as assignees: blacksky-algorithms. Either the username does not exist or it does not have the correct permissions to be added as an assignee.

Labels

The following labels could not be found: dependencies, rust. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[dependabot]

The reviewers field in the dependabot.yml file will be removed soon. Please use the code owners file to specify reviewers for Dependabot PRs. For more information, see this blog post.

[dependabot]

Superseded by #10.