Skip to content

chore(deps): bump rquickjs from 0.12.0 to 0.12.1 in /src-tauri#73

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/src-tauri/rquickjs-0.12.1
Open

chore(deps): bump rquickjs from 0.12.0 to 0.12.1 in /src-tauri#73
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/src-tauri/rquickjs-0.12.1

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 10, 2026

Copy link
Copy Markdown

Bumps rquickjs from 0.12.0 to 0.12.1.

Changelog

Sourced from rquickjs's changelog.

[0.12.1] - 2026-06-29

Changed

  • Updated phf, phf_shared and phf_generator to 0.14

Fixed

  • Fixed Constructor::new_prototype leaking a reference cycle that aborted JS_FreeRuntime with a gc_obj_list assertion failure
Commits
  • 04e2734 Merge pull request #708 from richarddd/release/0.12.1
  • 81e7176 Bump version to 0.12.1
  • 8e23a9d Merge pull request #707 from richarddd/fix/update-phf-0.14
  • 626712a Update phf, phf_shared and phf_generator to 0.14
  • db24de3 Fix reference cycle leak in Constructor::new_prototype by deriving the protot...
  • 23c4cd9 Merge pull request #701 from DelSkayn/dependabot/github_actions/actions/check...
  • d6521f6 Bump actions/checkout from 6 to 7
  • ab182b8 Merge pull request #700 from DelSkayn/dependabot/github_actions/codecov/codec...
  • 02e2541 Bump codecov/codecov-action from 6 to 7
  • 144ad64 Merge pull request #699 from DelSkayn/dependabot/submodules/sys/quickjs-fd0a021
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Summary by cubic

Upgrade rquickjs in src-tauri to 0.12.1 to pick up a memory leak fix in the JS runtime bindings. This prevents rare shutdown crashes from JS_FreeRuntime assertion failures.

  • Dependencies
    • Bump rquickjs 0.12.0 → 0.12.1 (also rquickjs-core, rquickjs-macro, rquickjs-sys); upstream fixes a reference cycle in Constructor::new_prototype and updates phf to 0.14.

Written for commit df402c9. Summary will update on new commits.

Review in cubic

Note

Bump rquickjs from 0.12.0 to 0.12.1 in src-tauri

Updates the rquickjs dependency in Cargo.lock to the latest patch release.

Macroscope summarized df402c9.

Bumps [rquickjs](https://github.com/DelSkayn/rquickjs) from 0.12.0 to 0.12.1.
- [Changelog](https://github.com/DelSkayn/rquickjs/blob/master/CHANGELOG.md)
- [Commits](DelSkayn/rquickjs@v0.12.0...v0.12.1)

---
updated-dependencies:
- dependency-name: rquickjs
  dependency-version: 0.12.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Jul 10, 2026
@dependabot dependabot Bot requested a review from abyssbugg as a code owner July 10, 2026 22:44
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Jul 10, 2026
@warpfix

warpfix Bot commented Jul 10, 2026

Copy link
Copy Markdown

🔍 WarpFix PR Review

This pull request updates the rquickjs dependency from version 0.12.0 to 0.12.1 in the src-tauri directory. The update includes changes to the version and checksum for several related packages.

📖 Walkthrough

The primary change in this pull request is the update of the rquickjs package and its related components (rquickjs-core, rquickjs-macro, rquickjs-sys) from version 0.12.0 to 0.12.1. The Cargo.lock file reflects these changes, with new checksums provided for each package. The changelog indicates that this version fixes a reference cycle leak and updates several dependencies, which could improve performance and stability.

📁 File Changes

File Change Impact
src-tauri/Cargo.lock Updated rquickjs and related packages to version 0.12.1 with new checksums. 🟡 medium

⏱ Review Effort & Risk

Metric Value
Effort ██░░░ 2/5 (Small) · ~15min
Risk 🟡 MEDIUM
Risk Factors
  • Potential for breaking changes in the updated dependency
  • Need to verify that the new version does not introduce new bugs

Labels: dependencies update

💡 Key Observations

Ensure that the application is tested after the dependency update to catch any issues.

Review the changelog for rquickjs to understand the implications of the changes made.


🤖 Reviewed by WarpFix — AI-Powered Code Review + CI Repair · Security

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update rust code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants