build(deps): bump the minor-and-patch-cargo-updates group across 1 directory with 5 updates

[dependabot]

Bumps the minor-and-patch-cargo-updates group with 5 updates in the / directory:

Package	From	To
tokio-metrics	0.3.1	0.4.0
url	2.5.3	2.5.4
hyper-rustls	0.27.2	0.27.3
rustls	0.23.10	0.23.18
tracing-core	0.1.32	0.1.33

Updates tokio-metrics from 0.3.1 to 0.4.0

Release notes

Sourced from tokio-metrics's releases.

tokio-metrics v0.4.0

0.4.0 (November 26th, 2024)

The core Tokio crate has renamed some of the metrics and this breaking release uses the new names. The minimum required Tokio is bumped to 1.41, and the MSRV is bumped to 1.70 to match.

• runtime: use new names for poll time histogram (#66)
• runtime: rename injection queue to global queue (#66)
• doc: various doc fixes (#66, #65)

#65: tokio-rs/tokio-metrics#65 #66: tokio-rs/tokio-metrics#66

Changelog

Sourced from tokio-metrics's changelog.

0.4.0 (November 26th, 2024)

The core Tokio crate has renamed some of the metrics and this breaking release uses the new names. The minimum required Tokio is bumped to 1.41, and the MSRV is bumped to 1.70 to match.

• runtime: use new names for poll time histogram (#66)
• runtime: rename injection queue to global queue (#66)
• doc: various doc fixes (#66, #65)

#65: tokio-rs/tokio-metrics#65 #66: tokio-rs/tokio-metrics#66

Commits

• a566938 chore: prepare 0.4.0 (#67)
• 1ec11a8 task: fix plus displayed as list (#65)
• 28ab355 chore: avoid deprecated items, fix warnings (#66)
• 47fbe3b chore: Update doc links in the README (#60)
• 9700cda chore: Add some lint checks (#59)
• See full diff in compare view

Updates url from 2.5.3 to 2.5.4

Release notes

Sourced from url's releases.

v2.5.4

What's Changed

• Revert "Normalize URL paths: convert /.//p, /..//p, and //p to p (#943)" by @​valenting in servo/rust-url#999
• Updates the MSRV to 1.63 required though the libc v0.2.164 dependency

Full Changelog: servo/rust-url@v2.5.3...v2.5.4

Commits

• d77dfb4 Revert "Normalize URL paths: convert /.//p, /..//p, and //p to p (#943)" (#999)
• da64903 Change no_std to no-std in Cargo.toml (#991)
• See full diff in compare view

Updates hyper-rustls from 0.27.2 to 0.27.3

Release notes

Sourced from hyper-rustls's releases.

v/0.27.3

What's Changed

• fix: add rustls-platform-verifier flag for importing ConfigBuilderExt by @​junkurihara in rustls/hyper-rustls#276
• docs: add a feature rustls-platform-verifier in the list of README.md by @​junkurihara in rustls/hyper-rustls#277
• Bump seanmiddleditch/gha-setup-ninja from 4 to 5 by @​dependabot in rustls/hyper-rustls#278
• Bump MSRV to 1.70 (for tokio 1.39) by @​djc in rustls/hyper-rustls#281
• Builder fixes by @​Gelbpunkt in rustls/hyper-rustls#283
• enable rustls-platform-verifier for docs.rs by @​flisky in rustls/hyper-rustls#279
• Upgrade to rustls-native-certs 0.8 by @​djc in rustls/hyper-rustls#285

Commits

• dc54bc0 Bump version to 0.27.3
• a1d9263 Import std::io directly
• 6d1267c Avoid io::Result type alias
• 139550b Upgrade to rustls-native-certs 0.8
• 516e3ac Alphabetically sort features
• 3a4d5d7 Move features before dependencies
• f8c2036 chore: sort features
• 1d57d93 enable rustls-platform-verifier for docs.rs
• a6a5687 Take impl Into<Arc> in connector builder
• b4f5132 Add ConnectorBuilder::with_provider_and_platform_verifier
• Additional commits viewable in compare view

Updates rustls from 0.23.10 to 0.23.18

Commits

• 33af2c3 Prepare 0.23.18
• ffe646d Add reproducer for bug 2227
• 69b6f74 Record and restore the processed cursor in first_handshake_message
• 4ef3532 Upgrade to mio 1
• 092a164 Manage dependencies via the workspace
• a01bd6b rustls-bench: fix warnings with no features
• 7d74de2 tests: linearize new test code helper
• 499d797 fix: do not send session_ticket(35) extension for TLS 1.3
• faca289 chore(deps): lock file maintenance
• d12f423 fix(deps): update rust crate asn1 to 0.20
• Additional commits viewable in compare view

Updates tracing-core from 0.1.32 to 0.1.33

Release notes

Sourced from tracing-core's releases.

tracing-core 0.1.33

Added

• Add index API for Field (#2820)
• allow &[u8] to be recorded as event/span field (#2954)

Changed

• Bump MSRV to 1.63 (#2793)
• Use const thread_locals when possible (#2838)

Fixed

• Fix missed register_callsite error (#2938)
• Do not add valuable/std feature as dependency unless valuable is used (#3002)
• prefix macro calls with ::core to avoid clashing with local macros (#3024)

Documented

• Fix incorrect (incorrectly updated) docs for LevelFilter (#2767)

Thanks to new contributor @​maddiemort for contributing to this release!

#2767: tokio-rs/tracing#2767 #2793: tokio-rs/tracing#2793 #2820: tokio-rs/tracing#2820 #2838: tokio-rs/tracing#2838 #2938: tokio-rs/tracing#2938 #2954: tokio-rs/tracing#2954 #3002: tokio-rs/tracing#3002 #3024: tokio-rs/tracing#3024

Commits

• cb0f0e7 chore: prepare tracing-core 0.1.33 (#3153)
• 11c8273 subscriber: don't gate with_ansi() on the "ansi" feature (#3020)
• 8a25a16 core: fix missed register_callsite error (#2938)
• 6f08af0 subscriber: set log max level when reloading (#1270)
• f6a6c8c tracing: add index API for Field (#2820)
• 345fbff Add json-subscriber to ecosystem (#3121)
• 82a92df fix: correct SerializeField definition and doc formatting (#3040)
• 0759973 fix: prefix macro calls with ::core to avoid clashing with local macros (#3024)
• 40ae82f macros: allow field path segments to be keywords (#2925)
• 329d8d3 docs: remove non-existing method in comments (#2894)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.