chore(deps): bump the minor-and-patch group with 11 updates

[dependabot]

Bumps the minor-and-patch group with 11 updates:

Package	From	To
assert_cmd	2.1.2	2.2.0
bon	3.9.0	3.9.1
clap	4.5.60	4.6.0
clap_complete	4.5.66	4.6.0
cyper	0.8.2	0.8.3
once_cell	1.21.3	1.21.4
passterm	2.0.1	2.0.6
rmcp	1.1.1	1.2.0
serde_with	3.17.0	3.18.0
tempfile	3.26.0	3.27.0
tracing-subscriber	0.3.22	0.3.23

Updates assert_cmd from 2.1.2 to 2.2.0

Changelog

Sourced from assert_cmd's changelog.

[2.2.0] - 2026-03-10

Compatibility

• Change cargo_bin bad paths to panics

[2.1.3] - 2026-03-10

Fixes

• Un-deprecate cargo_bin

Commits

• d935ff8 chore: Release assert_cmd version 2.2.0
• 1631cf4 docs: Changelog
• 3137b55 Merge pull request #283 from epage/panic
• ebd79f1 fix(cargo): Panic, rather than return bad path
• 79c9b0d chore: Release assert_cmd version 2.1.3
• 90cb0dd docs: Update changelog
• 7af59b9 Merge pull request #282 from epage/deprecated
• 80fe94c docs(cargo): Specify support for different versions
• 0246aa6 test: Close markdown quotes
• cb3b590 Revert "fix: Deprecate cargo_bin (runtime version)"
• Additional commits viewable in compare view

Updates bon from 3.9.0 to 3.9.1

Release notes

Sourced from bon's releases.

v3.9.1

This is purely a minutiae update with zero changes to the Rust API. Enjoy the stability 🍸.

Fixed

• Redistribute license files with the crates sources (#376)

Internal

• Regular maintenance (#377)

Commits

• 1f427d0 chore: release v3.9.1 (#378)
• 814078a Maintenance tests and dependencies update (#377)
• e82f087 Redistribute license files with the crates sources (#376)
• See full diff in compare view

Updates clap from 4.5.60 to 4.6.0

Changelog

Sourced from clap's changelog.

[4.6.0] - 2026-03-12

Compatibility

• Update MSRV to 1.85

[4.5.61] - 2026-03-12

Internal

• Update dependencies

Commits

• 9ab6dee chore: Release
• 374a30d docs: Update changelog
• d0c8aab Merge pull request #6306 from epage/update
• 686ce2f chore: Upgrade compatible
• 8203238 Merge pull request #6305 from epage/msrv
• c774a89 docs: Reduce main's in doctests
• 73534f6 chore: Upgrade to 2025 edition
• dfe05a9 chore: Bump MSRV to 1.85
• 8b41d0b chore: Release
• 518220f docs: Update changelog
• Additional commits viewable in compare view

Updates clap_complete from 4.5.66 to 4.6.0

Changelog

Sourced from clap_complete's changelog.

[4.6.0] - 2026-03-12

Compatibility

• Update MSRV to 1.85

[4.5.61] - 2026-03-12

Internal

• Update dependencies

[4.5.60] - 2026-02-19

Fixes

• (help) Quote empty default values, possible values

[4.5.59] - 2026-02-16

Fixes

• Command::ignore_errors no longer masks help/version on subcommands

[4.5.58] - 2026-02-11

[4.5.57] - 2026-02-03

Fixes

• Regression from 4.5.55 where having an argument with .value_terminator("--") caused problems with an argument with .last(true)

[4.5.56] - 2026-01-29

Fixes

• On conflict error, don't show conflicting arguments in the usage

[4.5.55] - 2026-01-27

Fixes

• Fix inconsistency in precedence between positionals with a value_terminator("--") and escapes (--) where ./foo -- bar means the first arg is empty, rather than escaping future args

[4.5.54] - 2026-01-02

Fixes

• (help) Move [default] to its own paragraph when PossibleValue::help is present in --help

... (truncated)

Commits

• 9ab6dee chore: Release
• 374a30d docs: Update changelog
• d0c8aab Merge pull request #6306 from epage/update
• 686ce2f chore: Upgrade compatible
• 8203238 Merge pull request #6305 from epage/msrv
• c774a89 docs: Reduce main's in doctests
• 73534f6 chore: Upgrade to 2025 edition
• dfe05a9 chore: Bump MSRV to 1.85
• 8b41d0b chore: Release
• 518220f docs: Update changelog
• Additional commits viewable in compare view

Updates cyper from 0.8.2 to 0.8.3

Commits

• See full diff in compare view

Updates once_cell from 1.21.3 to 1.21.4

Changelog

Sourced from once_cell's changelog.

1.21.4

• Fix unsoundness in OnceCell::wait under --features=parking_lot, #295.

  If thread A calls wait, while thread B calls get_or_try_init(f), and, furthermore, f panics, the wait incorrectly returns and thread A observes uninitialized memory.

  Kudos to @​meng-xu-cs for a nice find!

Commits

• 80fe900 Merge pull request #296 from matklad/matklad/plfix
• a5e09c9 release 1.21.4
• 2426d45 Merge pull request #295 from matklad/matklad/plfix
• a144121 Merge pull request #290 from alexanderkjall/run-tests-with-no-default-features
• 232a1a4 Merge pull request #292 from phil-opp/doc-fix
• d31767b fix OnceCell::wait with features=parking_lot
• 28d29ae Fix: sync::OnceCell::try_insert docs should import sync variant
• 0f78fb0 make the command 'cargo test --no-default-features' work
• fda60a6 Merge pull request #287 from AbeZbm/add-tests
• b5b98c0 Add tests for OnceRef
• See full diff in compare view

Updates passterm from 2.0.1 to 2.0.6

Changelog

Sourced from passterm's changelog.

Version 2.0.6

2025-02-01

• Switch to windows-link for windows linking

Version 2.0.5

2024-12-07

• Fix extraneous newline being printed on windows
• Open tty with O_NOCTTY on unix systems to prevent the prompt from becoming the controlling terminal
• Fix stdin password prompt to always attempt to disable echo even if stdin is not a tty

Version 2.0.4

2024-10-27

• Various windows fixes. Add check for null stdin handle, and avoid closing it
• Upgrade zeroize version

Version 2.0.3

2023-12-15

• Remove usage of windows-sys

Version 2.0.2

2023-12-15

• Upgrade dependencies

Commits

• fe55ce8 Fix windows-link macro call
• f1a851a passterm v2.0.6
• 4fc1d4c Update CHANGELOG
• 2f4bcc5 Fix tty prompt to use O_CNOTTY
• d38759b Fix extraneous newline on windows pass prompts
• 6d677ab Version 2.0.4
• 8f1388d Various Windows fixes
• 79ee0fe Version 2.0.3
• 064cca7 Remove windows-sys dependency
• 21a47e6 Upgrade deps
• See full diff in compare view

Updates rmcp from 1.1.1 to 1.2.0

Release notes

Sourced from rmcp's releases.

rmcp-macros-v1.2.0

Fixed

• (rmcp-macros) use re-exported serde_json path in task_handler (#735)

rmcp-v1.2.0

Added

• add missing constructors for non-exhaustive model types (#739)
• include granted scopes in OAuth refresh token request (#731)

Fixed

• handle ping requests sent before initialize handshake (#745)
• allow deserializing notifications without params field (#729)

Other

• (deps) update jsonwebtoken requirement from 9 to 10 (#737)

Commits

• 3bd7522 chore: release v1.2.0 (#736)
• 27b0096 feat: transparent session re-init on HTTP 404 (#743)
• 5322430 fix: handle ping requests sent before initialize handshake (#745)
• 3d2c951 feat: add missing constructors for non-exhaustive model types (#739)
• 656a09a chore(deps): update rig-core requirement from 0.31.0 to 0.32.0 (#738)
• 9fbf91e chore(deps): update jsonwebtoken requirement from 9 to 10 (#737)
• 54bb522 feat: include granted scopes in OAuth refresh token request (#731)
• be24898 fix(rmcp-macros): use re-exported serde_json path in task_handler (#735)
• fc757d4 fix: allow deserializing notifications without params field (#729)
• See full diff in compare view

Updates serde_with from 3.17.0 to 3.18.0

Release notes

Sourced from serde_with's releases.

serde_with v3.18.0

Added

• Support OneOrMany with more sequence and set types (#929)

Changed

• Bump MSRV to 1.88 due to the darling dependency

Commits

• d50ec96 Bump version to 3.18.0 (#931)
• 984fe32 Bump version to 3.18.0
• 4ba41c7 Bump actions/upload-artifact from 6 to 7 in the github-actions group (#927)
• 8fb2468 Bump actions/upload-artifact from 6 to 7 in the github-actions group
• aec0a23 Bump MSRV to 1.88 (#930)
• 25c15a2 Update time dependency to 0.3.47
• 93bd3f4 Update test output after darling update
• f825dbf Upgrade darling to 0.23.0
• 65cbd73 Bump MSRV to 1.88
• daff02e Extend OneOrMany implementation to more collection types (#929)
• Additional commits viewable in compare view

Updates tempfile from 3.26.0 to 3.27.0

Changelog

Sourced from tempfile's changelog.

3.27.0

This release adds TempPath::try_from_path and deprecates TempPath::from_path.

Prior to this release, TempPath::from_path made no attempts to convert relative paths into absolute paths. The following code would have deleted the wrong file:

let tmp_path = TempPath::from_path("foo")
std::env::set_current_dir("/some/other/path").unwrap();
drop(tmp_path);

Now:

1. TempPath::from_path will attempt to convert relative paths into absolute paths. However, this isn't always possible as we need to call std::env::current_dir, which can fail. If we fail to convert the relative path to an absolute path, we simply keep the relative path.
2. The TempPath::try_from_path behaves exactly like TempPath::from_path, except that it returns an error if we fail to convert a relative path into an absolute path (or if the passed path is empty).

Neither function attempt to verify the existence of the file in question.

Thanks to @​meng-xu-cs for reporting this issue.

Commits

• 5c8fa12 chore: release 3.27.0
• e34e574 test: disable uds conflict test on redox
• 772c795 test: add CWD guards
• 2632fb9 fix: resolve relative paths when constructing TempPath
• See full diff in compare view

Updates tracing-subscriber from 0.3.22 to 0.3.23

Release notes

Sourced from tracing-subscriber's releases.

tracing-subscriber 0.3.23

Fixed

• Allow ansi sanitization to be disabled (#3484)

#3484: tokio-rs/tracing#3484

Commits

• 54ede4d chore: prepare tracing-subscriber 0.3.23 (#3490)
• 37558d5 subscriber: allow ansi sanitization to be disabled (#3484)
• efc690f core: add missing const (#3449)
• 0c32367 core: Use const initializers instead of once_cell
• 9feb241 docs: add arcswap reload crate to related (#3442)
• 2d55f6f chore: prepare tracing 0.1.44 (#3439)
• 10a9e83 chore: prepare tracing-core 0.1.36 (#3440)
• ee82cf9 tracing: fix record_all panic (#3432)
• 9978c36 chore: prepare tracing-mock 0.1.0-beta.3 (#3429)
• See full diff in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Assignees

The following users could not be added as assignees: apache/iggy-committers. Either the username does not exist or it does not have the correct permissions to be added as an assignee.

Please fix the above issues or remove invalid values from dependabot.yml.

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml