chore(deps): bump the rust-minor group with 3 updates#236
Merged
Conversation
Bumps the rust-minor group with 3 updates: [tokio](https://github.com/tokio-rs/tokio), [clap_complete](https://github.com/clap-rs/clap) and [assert_cmd](https://github.com/assert-rs/assert_cmd). Updates `tokio` from 1.52.2 to 1.52.3 - [Release notes](https://github.com/tokio-rs/tokio/releases) - [Commits](tokio-rs/tokio@tokio-1.52.2...tokio-1.52.3) Updates `clap_complete` from 4.6.3 to 4.6.5 - [Release notes](https://github.com/clap-rs/clap/releases) - [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md) - [Commits](clap-rs/clap@clap_complete-v4.6.3...clap_complete-v4.6.5) Updates `assert_cmd` from 2.2.1 to 2.2.2 - [Changelog](https://github.com/assert-rs/assert_cmd/blob/master/CHANGELOG.md) - [Commits](assert-rs/assert_cmd@v2.2.1...v2.2.2) --- updated-dependencies: - dependency-name: tokio dependency-version: 1.52.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rust-minor - dependency-name: clap_complete dependency-version: 4.6.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rust-minor - dependency-name: assert_cmd dependency-version: 2.2.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rust-minor ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
Bot
added
dependencies
dependabot
Bot
added
dependencies
hyperpolymath
approved these changes
May 14, 2026
Merged
3 tasks
hyperpolymath
added a commit
that referenced
this pull request
May 14, 2026
…icate auto-merge workflow (#237) ## Summary Two unrelated CI breakages were combining to block every Dependabot PR (e.g. #235, #236): 1. **Broken committed escript binary** — the tracked `hypatia` (and stale `hypatia-v2`) escript fails immediately with `escript: exception error: undefined function nil_escript:main/1`. The `hypatia-scan` workflow guards the build step with `[ ! -f hypatia ]`, so the broken binary is used as-is and the scan step exits 1 before producing valid JSON. Deleting the binaries causes the workflow to build a fresh escript on every run (the existing build step already handles this path); added `/hypatia` to `.gitignore` so it stays untracked. 2. **Duplicate auto-merge workflow with non-existent action SHA** — `dependabot-auto-merge.yml` pinned `dependabot/fetch-metadata` to `d7267f607e9d3fb96fc2fbe83e0af444e2d3ffac` which does not exist (real `v2.4.0` is `08eff52bf64351f401fb50d4972fa95b9f2c2d1b`). The repo already has `dependabot-automerge.yml` (note missing hyphen) with a valid SHA and a stricter security-only policy gate. Deleted the duplicate. ## Test plan - [x] Reproduced the binary failure locally: \`./hypatia-cli.sh scan .\` exits 127 with \`nil_escript:main/1\` - [ ] CI on this branch builds fresh escript and Hypatia scan passes - [ ] Once merged, #235 and #236 unblock 🤖 Generated with [Claude Code](https://claude.com/claude-code) --------- Co-authored-by: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps the rust-minor group with 3 updates: tokio, clap_complete and assert_cmd.
Updates
tokiofrom 1.52.2 to 1.52.3Release notes
Sourced from tokio's releases.
Commits
d875691chore: prepare Tokio v1.52.3 (#8130)e1aebb0Merge 'tokio-1.51.3' into 'tokio-1.52.x' (#8129)fd63094chore: prepare Tokio v1.51.3 (#8127)8c600d0Merge 'tokio-1.47.5' into 'tokio-1.51.x' (#8123)11bfc13chore: prepare Tokio v1.47.5 (#8122)f085b62sync: notify receivers in mpscOwnedPermit::release()method (#8075)30d25ccsync: require that anRwLockhasmax_readers != 0(#8076)9fccf53sync: returnEmptyfromtry_recv()when mpsc is closed with outstanding p...ebf61b4sync: fix underflow in mpsc channellen()(#8062)Updates
clap_completefrom 4.6.3 to 4.6.5Commits
c8c9355chore: Releaseaf74defdocs: Update changelogc96f222Merge pull request #6368 from truffle-dev/fix/fish-env-escaping49a05cdfix(complete): Two-pass quote fish env-completere791004test(complete): Snapshot fish env quoting cases87ec1adchore: Release78f2529docs: Update changelogb61f270Merge pull request #6369 from Metbcy/fix/zsh-completion-ordering74c6666fix(complete): Keep zsh candidate orderd142d8fMerge pull request #6360 from epage/stringUpdates
assert_cmdfrom 2.2.1 to 2.2.2Changelog
Sourced from assert_cmd's changelog.
Commits
feece89chore: Release assert_cmd version 2.2.2367cdf7docs: Update changeloga98cc85Merge pull request #289 from marcospb19/track_callercd2e167fix: .success() not reporting panic location45a1c74chore(deps): Update Prek to v0.3.13 (#293)f1d9b5bchore(deps): Update Prek to v0.3.12 (#292)1d34babMerge pull request #291 from epage/templated9a70adstyle: Make clippy happy4f5b5afchore: Update from _rust template1e1d586chore(renovate): Fix the tagDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditions