Conversation
Bumps [regex](https://github.com/rust-lang/regex) from 1.7.3 to 1.8.1. - [Release notes](https://github.com/rust-lang/regex/releases) - [Changelog](https://github.com/rust-lang/regex/blob/master/CHANGELOG.md) - [Commits](rust-lang/regex@1.7.3...1.8.1) --- updated-dependencies: - dependency-name: regex dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
This is currently incompatible with our MSRV (1.58). If we want to land this, we could bump the MSRV as per https://matrix-org.github.io/synapse/latest/deprecation_policy.html. |
I'm personally in favour of not worrying too much about MSRV if we bump to a Rust version over a year old |
The team has a slight desire to do land this so that we don't find ourselves suddenly with a need to deal with this problem in the future if there was an urgent fix to this library; though there isn't anything in particular from this update that we want per se. |
A newer version of regex exists, but since this PR has been edited by someone other than Dependabot I haven't updated it. You'll get a PR for the updated version as normal once this PR is merged. |
What's the next step here then? How do we make a decision? |
@dependabot rebase |
Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry! If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request |
@dependabot recreate |
Superseded by #15769. |
Bumps regex from 1.7.3 to 1.8.1.
Changelog
Sourced from regex's changelog.
... (truncated)
Commits
4e29fce
1.8.18a7cb64
deps: bump regex-syntax to 0.7.131c8452
regex-syntax-0.7.1960aade
changelog: 1.8.1f003d72
impl: fix prefix literal matching bug93316a3
doc: update MSRV in README070374f
release: 1.8.0a73c61c
fuzz: get rid of 'named-profiles' feature7cd75d2
changelog: tweaks to 1.8 release entry33898de
syntax: fix bug in new alternation literal analysisYou can trigger a rebase of this PR by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)