chore: bump regex-syntax from 0.8.10 to 0.8.11#108
Conversation
Bumps [regex-syntax](https://github.com/rust-lang/regex) from 0.8.10 to 0.8.11. - [Release notes](https://github.com/rust-lang/regex/releases) - [Changelog](https://github.com/rust-lang/regex/blob/master/CHANGELOG.md) - [Commits](rust-lang/regex@regex-syntax-0.8.10...regex-syntax-0.8.11) --- updated-dependencies: - dependency-name: regex-syntax dependency-version: 0.8.11 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
LabelsThe following labels could not be found: Please fix the above issues or remove invalid values from |
![chatgpt-codex-connector[bot]](https://avatars.githubusercontent.com/in/1144995?s=60&v=4){kind=small}
There was a problem hiding this comment.
💡 Codex Review
Here are some automated review suggestions for this pull request.
Reviewed commit: cd49116b90
ℹ️ About Codex in GitHub
Codex has been enabled to automatically review pull requests in this repo. Reviews are triggered when you
- Open a pull request for review
- Mark a draft as ready
- Comment "@codex review".
If Codex has suggestions, it will comment; otherwise it will react with 👍.
When you sign up for Codex through ChatGPT, Codex can also answer questions or update the PR, like "@codex address that feedback".
| [[package]] | ||
| name = "regex-syntax" | ||
| version = "0.8.10" | ||
| version = "0.8.11" |
There was a problem hiding this comment.
Bumping the locked regex-syntax component changes the dependency inventory, but the committed provenance artifacts still identify regex-syntax as 0.8.10 in provenance/THIRD-PARTY-NOTICES.txt:42 and provenance/sbom.cdx.json:1405-1450. Since Cargo.lock is a configured provenance input in .github/workflows/ci.yml:60-73 and release staging copies these files, this leaves the public SBOM/notices inconsistent with the code being built; regenerate and commit provenance/ with the lockfile update.
Useful? React with 👍 / 👎.
Bumps regex-syntax from 0.8.10 to 0.8.11.
Commits
1401679regex-syntax-0.8.11d709000changelog: 1.12.49825c74syntax: avoid re-canonicalizing the entire IntervalSet on push (#1308)a7f2ff6docs: clarify regex-lite word boundaries2c7b172docs: clarify unsupported Anchored::Pattern searchesDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)