Skip to content

fix(deps): update rust crate comrak to 0.46.0 #2959

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Oct 29, 2025
Merged

fix(deps): update rust crate comrak to 0.46.0 #2959

merged 2 commits into from
Oct 29, 2025

Conversation

@renovate
Copy link
Contributor

@renovate renovate bot commented Oct 29, 2025
edited
Loading

This PR contains the following updates:

Package Type Update Change
comrak dependencies minor 0.44.0 -> 0.46.0

Release Notes

kivikakk/comrak (comrak)

v0.46.0

Compare Source

Please note the MSRV has been bumped from 1.65 to 1.70; see the pull request for more details. It's a kind of sticky and awkward situation — thanks to the inevitability of Progress — with no particularly clean solution. (wherein telling GCC 15 users "sorry it just won't build from source for you without messing with dependencies" is not a solution.)

Security:

  • Footnote resolution no longer recurses over the document tree; on documents with deeply nested elements, this could cause a stack overflow, with resultant denial of service. (by @​kivikakk in #​659)
  • Inline footnotes are restricted to a depth of 5 for similar reasons. An iterative rewrite here to avoid a limit is possible, but for now I'm hoping we can all pretend to be responsible adult human beings and limit our recursive inline footnote usage accordingly. (PRs welcome tho, non-human users are very welcome!) (by @​kivikakk in #​659)

Parser changes:

  • U+2069 POP DIRECTIONAL ISOLATE will be treated as terminating an autolink, rather than included as part of the link, making autolinks much easier to use correctly in RTL text. (by @​SethFalco in #​654)
  • HTML start condition 4 is correctly detected when non-capital letters follow "<!". (by @​kivikakk in #​658)

New APIs:

Bug fixes:

  • Source position information is corrected for description lists, HTML blocks, multiline block quotes, links with newlines following the destination, tables with leading indentation, and escaped character spans. (by @​Martin005 in #​646, #​651, #​652, #​653, #​656, #​657)
  • escaped_char_span users can now successfully format to CommonMark with debug assertions enabled. These ASTs previously did not validate, which currently is enabled experimentally only in CommonMark output in debug. (by @​kivikakk in #​659)

Build changes:

New Contributors

Diff: kivikakk/comrak@v0.45.0...v0.46.0

v0.45.0

Compare Source

Please note the MSRV has been bumped from 1.65 to 1.70; see the pull request for more details. It's a kind of sticky and awkward situation — thanks to the inevitability of Progress — with no particularly clean solution. (wherein telling GCC 15 users "sorry it just won't build from source for you without messing with dependencies" is not a solution.)

Security:

  • Footnote resolution no longer recurses over the document tree; on documents with deeply nested elements, this could cause a stack overflow, with resultant denial of service. (by @​kivikakk in #​659)
  • Inline footnotes are restricted to a depth of 5 for similar reasons. An iterative rewrite here to avoid a limit is possible, but for now I'm hoping we can all pretend to be responsible adult human beings and limit our recursive inline footnote usage accordingly. (PRs welcome tho, non-human users are very welcome!) (by @​kivikakk in #​659)

Parser changes:

  • U+2069 POP DIRECTIONAL ISOLATE will be treated as terminating an autolink, rather than included as part of the link, making autolinks much easier to use correctly in RTL text. (by @​SethFalco in #​654)
  • HTML start condition 4 is correctly detected when non-capital letters follow "<!". (by @​kivikakk in #​658)

New APIs:

Bug fixes:

  • Source position information is corrected for description lists, HTML blocks, multiline block quotes, links with newlines following the destination, tables with leading indentation, and escaped character spans. (by @​Martin005 in #​646, #​651, #​652, #​653, #​656, #​657)
  • escaped_char_span users can now successfully format to CommonMark with debug assertions enabled. These ASTs previously did not validate, which currently is enabled experimentally only in CommonMark output in debug. (by @​kivikakk in #​659)

Build changes:

New Contributors

Diff: kivikakk/comrak@v0.45.0...v0.46.0

Configuration

📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot requested a review from a team as a code owner October 29, 2025 11:27
@github-actions github-actions bot added the S-waiting-on-review Status: This pull request has been implemented and needs to be reviewed label Oct 29, 2025
@renovate renovate bot force-pushed the renovate/comrak-0.x branch from 66c950d to 7e7a50a Compare October 29, 2025 12:38
@syphar syphar closed this Oct 29, 2025
@syphar syphar deleted the renovate/comrak-0.x branch October 29, 2025 19:41
@syphar syphar restored the renovate/comrak-0.x branch October 29, 2025 19:42
@syphar syphar reopened this Oct 29, 2025
@syphar syphar self-assigned this Oct 29, 2025
@github-actions github-actions bot removed the S-waiting-on-review Status: This pull request has been implemented and needs to be reviewed label Oct 29, 2025
@syphar syphar force-pushed the renovate/comrak-0.x branch from e054b07 to 4bd723b Compare October 29, 2025 20:20
@syphar syphar merged commit e541433 into master Oct 29, 2025
10 checks passed
@github-actions github-actions bot added the S-waiting-on-deploy This PR is ready to be merged, but is waiting for an admin to have time to deploy it label Oct 29, 2025
@syphar syphar deleted the renovate/comrak-0.x branch October 29, 2025 20:33
@syphar syphar removed the S-waiting-on-deploy This PR is ready to be merged, but is waiting for an admin to have time to deploy it label Nov 4, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@syphar syphar syphar approved these changes

Assignees

@syphar syphar

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@syphar