Bump zip from 2.4.2 to 8.6.0 in /codex-rs#21612
Conversation
dependabot
Bot
added
dependencies
![chatgpt-codex-connector[bot]](https://avatars.githubusercontent.com/in/1144995?s=60&v=4){kind=small}
There was a problem hiding this comment.
💡 Codex Review
Here are some automated review suggestions for this pull request.
Reviewed commit: 592345f43f
ℹ️ About Codex in GitHub
Codex has been enabled to automatically review pull requests in this repo. Reviews are triggered when you
- Open a pull request for review
- Mark a draft as ready
- Comment "@codex review".
If Codex has suggestions, it will comment; otherwise it will react with 👍.
When you sign up for Codex through ChatGPT, Codex can also answer questions or update the PR, like "@codex address that feedback".
| wildmatch = "2.6.1" | ||
| winapi-util = "0.1.11" | ||
| zip = "2.4.2" | ||
| zip = "8.6.0" |
There was a problem hiding this comment.
This dependency bump changes the Cargo workspace lock to zip 8.6.0, but the Bazel module lockfile was not committed alongside it. I checked MODULE.bazel, which imports //codex-rs:Cargo.lock via crate.from_cargo, and scripts/check-module-bazel-lock.sh reports: MODULE.bazel.lock is out of date. Run 'just bazel-lock-update' and commit the updated lockfile. As-is, the Bazel lock check will fail for this dependency-only PR until MODULE.bazel.lock is refreshed.
Useful? React with 👍 / 👎.
dependabot
Bot
force-pushed
the
dependabot/cargo/codex-rs/zip-8.6.0
branch
from
592345f to
90b7ca5
Compare
dependabot
Bot
changed the title
dependabot
Bot
force-pushed
the
dependabot/cargo/codex-rs/zip-8.6.0
branch
from
90b7ca5 to
096acde
Compare
Bumps [zip](https://github.com/zip-rs/zip2) from 2.4.2 to 8.6.0. - [Release notes](https://github.com/zip-rs/zip2/releases) - [Changelog](https://github.com/zip-rs/zip2/blob/master/CHANGELOG.md) - [Commits](zip-rs/zip2@v2.4.2...v8.6.0) --- updated-dependencies: - dependency-name: zip dependency-version: 8.6.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
Bot
force-pushed
the
dependabot/cargo/codex-rs/zip-8.6.0
branch
from
096acde to
4eb5833
Compare
Bumps zip from 2.4.2 to 8.6.0.
Release notes
Sourced from zip's releases.
... (truncated)
Changelog
Sourced from zip's changelog.
... (truncated)
Commits
771dfc5chore: release v8.6.0 (#781)8e480ccchore(deps): update sha1 requirement from 0.10 to 0.11 (#767)2513bbechore(deps): update aes requirement from 0.8 to 0.9 (#787)957e240ci(deps): bump actions/cache from 5.0.4 to 5.0.5 (#786)0329d9dfix: allow for[u8]as filename (#775)ddcf854ci(deps): bump github/codeql-action from 4.35.1 to 4.35.2 (#788)42323a8ci(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1 (#785)901014aci(deps): bump crate-ci/typos from 1.45.0 to 1.45.1 (#784)07702d4feat: addcompression not supportedas enum error (#774)2d0c46bci(deps): bump actions/upload-artifact from 7.0.0 to 7.0.1 (#783)