From d36c4c4d67e6d8eaf535dc2c0d4edce567028ab1 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 22 Jan 2024 09:47:14 +0200 Subject: [PATCH 1/5] Bump uuid from 1.6.1 to 1.7.0 in /lang/rust (#2698) Bumps [uuid](https://github.com/uuid-rs/uuid) from 1.6.1 to 1.7.0. - [Release notes](https://github.com/uuid-rs/uuid/releases) - [Commits](https://github.com/uuid-rs/uuid/compare/1.6.1...1.7.0) --- updated-dependencies: - dependency-name: uuid dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- lang/rust/Cargo.lock | 4 ++-- lang/rust/avro/Cargo.toml | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/lang/rust/Cargo.lock b/lang/rust/Cargo.lock index 5cf893c69f8..1e7e15f1661 100644 --- a/lang/rust/Cargo.lock +++ b/lang/rust/Cargo.lock @@ -1286,9 +1286,9 @@ checksum = "3354b9ac3fae1ff6755cb6db53683adb661634f67557942dea4facebec0fee4b" [[package]] name = "uuid" -version = "1.6.1" +version = "1.7.0" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "5e395fcf16a7a3d8127ec99782007af141946b4795001f876d54fb0d55978560" +checksum = "f00cc9702ca12d3c81455259621e676d0f7251cec66a21e98fe2e9a37db93b2a" dependencies = [ "serde", ] diff --git a/lang/rust/avro/Cargo.toml b/lang/rust/avro/Cargo.toml index 20c078cd491..c5e735ccdf8 100644 --- a/lang/rust/avro/Cargo.toml +++ b/lang/rust/avro/Cargo.toml @@ -70,7 +70,7 @@ strum = { default-features = false, version = "0.25.0" } strum_macros = { default-features = false, version = "0.25.3" } thiserror = { default-features = false, version = "1.0.56" } typed-builder = { default-features = false, version = "0.18.1" } -uuid = { default-features = false, version = "1.6.1", features = ["serde", "std"] } +uuid = { default-features = false, version = "1.7.0", features = ["serde", "std"] } xz2 = { default-features = false, version = "0.1.7", optional = true } zstd = { default-features = false, version = "0.13.0", optional = true } From 1112dcccb7a7538ef3990f535db8c07ac08174eb Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 22 Jan 2024 09:47:48 +0200 Subject: [PATCH 2/5] Bump actions/dependency-review-action from 3 to 4 (#2701) Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 3 to 4. - [Release notes](https://github.com/actions/dependency-review-action/releases) - [Commits](https://github.com/actions/dependency-review-action/compare/v3...v4) --- updated-dependencies: - dependency-name: actions/dependency-review-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/test-lang-rust-audit.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/test-lang-rust-audit.yml b/.github/workflows/test-lang-rust-audit.yml index d530f8ce6ff..ca94041ad8b 100644 --- a/.github/workflows/test-lang-rust-audit.yml +++ b/.github/workflows/test-lang-rust-audit.yml @@ -49,7 +49,7 @@ jobs: uses: actions/checkout@v4 - name: Dependency Review if: github.event_name == 'pull_request' - uses: actions/dependency-review-action@v3 + uses: actions/dependency-review-action@v4 - name: Install Cargo Audit run: cargo install cargo-audit - name: Audit From caed6e088714efbb8d820c491882e60fe31f2fdf Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 22 Jan 2024 09:48:25 +0200 Subject: [PATCH 3/5] Bump actions/cache from 3 to 4 (#2700) Bumps [actions/cache](https://github.com/actions/cache) from 3 to 4. - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](https://github.com/actions/cache/compare/v3...v4) --- updated-dependencies: - dependency-name: actions/cache dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/java-publish-snapshot.yml | 2 +- .github/workflows/maven4.yml | 4 ++-- .github/workflows/rat.yml | 2 +- .github/workflows/spotless.yml | 2 +- .github/workflows/test-lang-c.yml | 4 ++-- .github/workflows/test-lang-csharp.yml | 6 +++--- .github/workflows/test-lang-java.yml | 6 +++--- .github/workflows/test-lang-js.yml | 6 +++--- .github/workflows/test-lang-perl.yml | 2 +- .github/workflows/test-lang-php.yml | 4 ++-- .github/workflows/test-lang-py.yml | 2 +- .github/workflows/test-lang-ruby.yml | 8 ++++---- .github/workflows/test-lang-rust-ci.yml | 20 ++++++++++---------- 13 files changed, 34 insertions(+), 34 deletions(-) diff --git a/.github/workflows/java-publish-snapshot.yml b/.github/workflows/java-publish-snapshot.yml index 58f4c30e54a..2e13aae3844 100644 --- a/.github/workflows/java-publish-snapshot.yml +++ b/.github/workflows/java-publish-snapshot.yml @@ -40,7 +40,7 @@ jobs: - uses: actions/checkout@v4 - name: Cache Local Maven Repository - uses: actions/cache@v3 + uses: actions/cache@v4 with: path: ~/.m2/repository key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} diff --git a/.github/workflows/maven4.yml b/.github/workflows/maven4.yml index 24440b0712b..8ebd7e93ae9 100644 --- a/.github/workflows/maven4.yml +++ b/.github/workflows/maven4.yml @@ -35,7 +35,7 @@ jobs: - uses: actions/checkout@v4 - name: Cache Local Maven Repository - uses: actions/cache@v3 + uses: actions/cache@v4 with: path: ~/.m2/repository key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} @@ -43,7 +43,7 @@ jobs: ${{ runner.os }}-maven- - name: Cache Maven 4 Build Cache - uses: actions/cache@v3 + uses: actions/cache@v4 with: path: ~/.m2/build-cache key: ${{ runner.os }}-maven-build-cache-${{ hashFiles('**/pom.xml') }} diff --git a/.github/workflows/rat.yml b/.github/workflows/rat.yml index dd0266f2c3c..fc061678dea 100644 --- a/.github/workflows/rat.yml +++ b/.github/workflows/rat.yml @@ -32,7 +32,7 @@ jobs: - uses: actions/checkout@v4 - name: Cache Local Maven Repository - uses: actions/cache@v3 + uses: actions/cache@v4 with: path: ~/.m2/repository key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} diff --git a/.github/workflows/spotless.yml b/.github/workflows/spotless.yml index 73bfa4dc201..5e8515cf5f9 100644 --- a/.github/workflows/spotless.yml +++ b/.github/workflows/spotless.yml @@ -35,7 +35,7 @@ jobs: - uses: actions/checkout@v4 - name: Cache Local Maven Repository - uses: actions/cache@v3 + uses: actions/cache@v4 with: path: ~/.m2/repository key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} diff --git a/.github/workflows/test-lang-c.yml b/.github/workflows/test-lang-c.yml index e130f663b0c..e236778b37c 100644 --- a/.github/workflows/test-lang-c.yml +++ b/.github/workflows/test-lang-c.yml @@ -48,7 +48,7 @@ jobs: run: ./build.sh test - name: Cache Local Maven Repository - uses: actions/cache@v3 + uses: actions/cache@v4 with: path: ~/.m2/repository key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} @@ -87,7 +87,7 @@ jobs: libzstd-dev - name: Cache Local Maven Repository - uses: actions/cache@v3 + uses: actions/cache@v4 with: path: ~/.m2/repository key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} diff --git a/.github/workflows/test-lang-csharp.yml b/.github/workflows/test-lang-csharp.yml index 91ece116865..50f397beeb7 100644 --- a/.github/workflows/test-lang-csharp.yml +++ b/.github/workflows/test-lang-csharp.yml @@ -52,7 +52,7 @@ jobs: 7.0.x 8.0.x - - uses: actions/cache@v3 + - uses: actions/cache@v4 with: path: ~/.nuget/packages key: ${{ runner.os }}-nuget-${{ hashFiles('**/packages.lock.json') }} @@ -85,7 +85,7 @@ jobs: 8.0.x - name: Cache Local Maven Repository - uses: actions/cache@v3 + uses: actions/cache@v4 with: path: ~/.m2/repository key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} @@ -119,7 +119,7 @@ jobs: uses: actions/checkout@v4 - name: Cache Nuget - uses: actions/cache@v3 + uses: actions/cache@v4 with: path: ~/.nuget/packages key: ${{ runner.os }}-nuget-${{ hashFiles('**/packages.lock.json') }} diff --git a/.github/workflows/test-lang-java.yml b/.github/workflows/test-lang-java.yml index 988aec57e3e..8393d439b37 100644 --- a/.github/workflows/test-lang-java.yml +++ b/.github/workflows/test-lang-java.yml @@ -49,7 +49,7 @@ jobs: - uses: actions/checkout@v4 - name: Cache Local Maven Repository - uses: actions/cache@v3 + uses: actions/cache@v4 with: path: ~/.m2/repository key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} @@ -83,7 +83,7 @@ jobs: - uses: actions/checkout@v4 - name: Cache Local Maven Repository - uses: actions/cache@v3 + uses: actions/cache@v4 with: path: ~/.m2/repository key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} @@ -164,7 +164,7 @@ jobs: java-version: 11 - name: Cache Local Maven Repository - uses: actions/cache@v3 + uses: actions/cache@v4 with: path: ~/.m2/repository key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} diff --git a/.github/workflows/test-lang-js.yml b/.github/workflows/test-lang-js.yml index 32b3a45ce21..acb96369a86 100644 --- a/.github/workflows/test-lang-js.yml +++ b/.github/workflows/test-lang-js.yml @@ -49,7 +49,7 @@ jobs: with: node-version: ${{ matrix.node }} - - uses: actions/cache@v3 + - uses: actions/cache@v4 with: path: ~/.npm key: ${{ runner.os }}-node-${{ hashFiles('**/package-lock.json') }} @@ -78,7 +78,7 @@ jobs: with: node-version: ${{ matrix.node }} - - uses: actions/cache@v3 + - uses: actions/cache@v4 with: path: ~/.npm key: ${{ runner.os }}-node-${{ hashFiles('**/package-lock.json') }} @@ -122,7 +122,7 @@ jobs: uses: actions/checkout@v4 - name: Cache Npm - uses: actions/cache@v3 + uses: actions/cache@v4 with: path: ~/.npm key: ${{ runner.os }}-node-${{ hashFiles('**/package-lock.json') }} diff --git a/.github/workflows/test-lang-perl.yml b/.github/workflows/test-lang-perl.yml index a4e3c59aa99..b746495117c 100644 --- a/.github/workflows/test-lang-perl.yml +++ b/.github/workflows/test-lang-perl.yml @@ -116,7 +116,7 @@ jobs: inc::Module::Install - name: Cache Local Maven Repository - uses: actions/cache@v3 + uses: actions/cache@v4 with: path: ~/.m2/repository key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} diff --git a/.github/workflows/test-lang-php.yml b/.github/workflows/test-lang-php.yml index ac207ef8711..2f62048614a 100644 --- a/.github/workflows/test-lang-php.yml +++ b/.github/workflows/test-lang-php.yml @@ -56,7 +56,7 @@ jobs: id: composer-cache run: echo "dir=$(composer config cache-files-dir)" >> $GITHUB_OUTPUT - - uses: actions/cache@v3 + - uses: actions/cache@v4 with: path: ${{ steps.composer-cache.outputs.dir }} key: ${{ runner.os }}-composer-${{ hashFiles('**/composer.lock') }} @@ -89,7 +89,7 @@ jobs: tools: composer:2.2.5 - name: Cache Local Maven Repository - uses: actions/cache@v3 + uses: actions/cache@v4 with: path: ~/.m2/repository key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} diff --git a/.github/workflows/test-lang-py.yml b/.github/workflows/test-lang-py.yml index 9e26fa3e53b..f5f7ec4c422 100644 --- a/.github/workflows/test-lang-py.yml +++ b/.github/workflows/test-lang-py.yml @@ -120,7 +120,7 @@ jobs: python3 -m pip install python-snappy zstandard - name: Cache Local Maven Repository - uses: actions/cache@v3 + uses: actions/cache@v4 with: path: ~/.m2/repository key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} diff --git a/.github/workflows/test-lang-ruby.yml b/.github/workflows/test-lang-ruby.yml index 4c8f963dd45..216e2176846 100644 --- a/.github/workflows/test-lang-ruby.yml +++ b/.github/workflows/test-lang-ruby.yml @@ -54,7 +54,7 @@ jobs: - name: Install Dependencies run: sudo apt-get install -qqy libsnappy-dev - - uses: actions/cache@v3 + - uses: actions/cache@v4 with: path: .gem key: ${{ runner.os }}-gems-${{ hashFiles('**/Gemfile.lock') }} @@ -95,7 +95,7 @@ jobs: - name: Install Dependencies run: sudo apt-get install -qqy libsnappy-dev - - uses: actions/cache@v3 + - uses: actions/cache@v4 with: path: .gem key: ${{ runner.os }}-gems-${{ hashFiles('**/Gemfile.lock') }} @@ -106,7 +106,7 @@ jobs: run: bundle config path .gem - name: Cache Local Maven Repository - uses: actions/cache@v3 + uses: actions/cache@v4 with: path: ~/.m2/repository key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} @@ -152,7 +152,7 @@ jobs: uses: actions/checkout@v4 - name: Cache gems - uses: actions/cache@v3 + uses: actions/cache@v4 with: path: .gem key: ${{ runner.os }}-gems-${{ hashFiles('**/Gemfile.lock') }} diff --git a/.github/workflows/test-lang-rust-ci.yml b/.github/workflows/test-lang-rust-ci.yml index d41c52308ab..52aa799cbb6 100644 --- a/.github/workflows/test-lang-rust-ci.yml +++ b/.github/workflows/test-lang-rust-ci.yml @@ -60,14 +60,14 @@ jobs: uses: actions/checkout@v4 - name: Cache Cargo - uses: actions/cache@v3 + uses: actions/cache@v4 with: # these represent dependencies downloaded by cargo # and thus do not depend on the OS, arch nor rust version. path: ~/.cargo key: ${{ runner.os }}-target-cache1-${{ hashFiles('**/Cargo.lock') }} - name: Cache Rust dependencies - uses: actions/cache@v3 + uses: actions/cache@v4 with: # these represent compiled steps of both dependencies and avro # and thus are specific for a particular OS, arch and rust version. @@ -83,7 +83,7 @@ jobs: - name: Cache cargo-rdme if: matrix.rust == 'stable' && matrix.target == 'x86_64-unknown-linux-gnu' - uses: actions/cache@v3 + uses: actions/cache@v4 with: path: ~/.cargo-${{ matrix.rust }}/cargo-rdme key: cargo-rdme- @@ -130,14 +130,14 @@ jobs: toolchain: stable - name: Cache Cargo - uses: actions/cache@v3 + uses: actions/cache@v4 with: # these represent dependencies downloaded by cargo # and thus do not depend on the OS, arch nor rust version. path: ~/.cargo key: ${{ runner.os }}-target-cache1-${{ hashFiles('**/Cargo.lock') }} - name: Cache Rust dependencies - uses: actions/cache@v3 + uses: actions/cache@v4 with: # these represent compiled steps of both dependencies and avro # and thus are specific for a particular OS, arch and rust version. @@ -145,7 +145,7 @@ jobs: key: ${{ runner.os }}-target-cache1-stable-${{ hashFiles('**/Cargo.lock') }} - name: Cache Local Maven Repository - uses: actions/cache@v3 + uses: actions/cache@v4 with: path: ~/.m2/repository key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} @@ -215,7 +215,7 @@ jobs: targets: wasm32-unknown-unknown - name: Cache Cargo - uses: actions/cache@v3 + uses: actions/cache@v4 with: # these represent dependencies downloaded by cargo # and thus do not depend on the OS, arch nor rust version. @@ -223,7 +223,7 @@ jobs: key: ${{ runner.os }}-target-cache1-${{ hashFiles('**/Cargo.lock') }} - name: Cache Rust dependencies - uses: actions/cache@v3 + uses: actions/cache@v4 with: # these represent compiled steps of both dependencies and avro # and thus are specific for a particular OS, arch and rust version. @@ -248,7 +248,7 @@ jobs: uses: actions/checkout@v4 - name: Cache Cargo - uses: actions/cache@v3 + uses: actions/cache@v4 with: # these represent dependencies downloaded by cargo # and thus do not depend on the OS, arch nor rust version. @@ -256,7 +256,7 @@ jobs: key: ${{ runner.os }}-target-arm64-${{ hashFiles('**/Cargo.lock') }} - name: Cache Rust dependencies - uses: actions/cache@v3 + uses: actions/cache@v4 with: # these represent compiled steps of both dependencies and avro # and thus are specific for a particular OS, arch and rust version. From 664c4255dcb169c4d6cce9de927bbcf34417e50b Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 22 Jan 2024 09:54:03 +0200 Subject: [PATCH 4/5] Bump io.netty:netty-bom in /lang/java (#2702) Bumps [io.netty:netty-bom](https://github.com/netty/netty) from 4.1.104.Final to 4.1.106.Final. - [Commits](https://github.com/netty/netty/compare/netty-4.1.104.Final...netty-4.1.106.Final) --- updated-dependencies: - dependency-name: io.netty:netty-bom dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- lang/java/pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/lang/java/pom.xml b/lang/java/pom.xml index b20e83fdf48..ea052cb21ca 100644 --- a/lang/java/pom.xml +++ b/lang/java/pom.xml @@ -51,7 +51,7 @@ 5.10.1 3.3.9 4.11.0 - 4.1.104.Final + 4.1.106.Final 3.25.2 1.2.25 4.0.1 From 328136af454501f6cdb8f4b638edd084f295f9fb Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 22 Jan 2024 20:14:43 +0200 Subject: [PATCH 5/5] Bump proc-macro2 from 1.0.76 to 1.0.78 in /lang/rust (#2704) Bumps [proc-macro2](https://github.com/dtolnay/proc-macro2) from 1.0.76 to 1.0.78. - [Release notes](https://github.com/dtolnay/proc-macro2/releases) - [Commits](https://github.com/dtolnay/proc-macro2/compare/1.0.76...1.0.78) --- updated-dependencies: - dependency-name: proc-macro2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- lang/rust/Cargo.lock | 4 ++-- lang/rust/avro_derive/Cargo.toml | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/lang/rust/Cargo.lock b/lang/rust/Cargo.lock index 1e7e15f1661..b2d6ab81213 100644 --- a/lang/rust/Cargo.lock +++ b/lang/rust/Cargo.lock @@ -913,9 +913,9 @@ dependencies = [ [[package]] name = "proc-macro2" -version = "1.0.76" +version = "1.0.78" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "95fc56cda0b5c3325f5fbbd7ff9fda9e02bb00bb3dac51252d2f1bfa1cb8cc8c" +checksum = "e2422ad645d89c99f8f3e6b88a9fdeca7fabeac836b1002371c4367c8f984aae" dependencies = [ "unicode-ident", ] diff --git a/lang/rust/avro_derive/Cargo.toml b/lang/rust/avro_derive/Cargo.toml index 4631403ffe6..37bbbf8ff17 100644 --- a/lang/rust/avro_derive/Cargo.toml +++ b/lang/rust/avro_derive/Cargo.toml @@ -34,7 +34,7 @@ proc-macro = true [dependencies] darling = { default-features = false, version = "0.20.3" } -proc-macro2 = { default-features = false, version = "1.0.76" } +proc-macro2 = { default-features = false, version = "1.0.78" } quote = { default-features = false, version = "1.0.35" } serde_json = { workspace = true } syn = { default-features = false, version = "2.0.48", features = ["full", "fold"] }