Skip to content
Snippets Groups Projects
Unverified Commit ba39713d authored by bors[bot]'s avatar bors[bot] Committed by GitHub
Browse files

Merge #558 #559 #560 #561 #562

558: Bump goblin from 0.5.4 to 0.6.0 r=mkroening a=dependabot[bot]

Bumps [goblin](https://github.com/m4b/goblin) from 0.5.4 to 0.6.0.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/m4b/goblin/blob/master/CHANGELOG.md">goblin's changelog</a>.</em></p>
<blockquote>
<h2>[0.6.0] - 2022-10-23</h2>
<h3>Breaking</h3>
<p>macho: add support for archives in multi-arch binaries, big thanks to <a href="https://github.com/nick96"><code>`@​nick96</code></a>:` <a href="https://github-redirect.dependabot.com/m4b/goblin/pull/322">m4b/goblin#322</a></p>
<h3>Changed</h3>
<p>elf: only consider loadable segments for VM translation (this may semantically break someone, if they depended on older behavior), thanks <a href="https://github.com/lumag"><code>`@​lumag</code></a>:` <a href="https://github-redirect.dependabot.com/m4b/goblin/pull/329">m4b/goblin#329</a></p>
<h3>Fixed</h3>
<p>archive: fix potential panic in bsd filenames, thanks <a href="https://github.com/nathaniel-daniel"><code>`@​nathaniel-daniel</code></a>:`  <a href="https://github-redirect.dependabot.com/m4b/goblin/pull/335">m4b/goblin#335</a>
archive: fix subtract with overflow, thanks <a href="https://github.com/anfedotoff"><code>`@​anfedotoff</code></a>:` <a href="https://github-redirect.dependabot.com/m4b/goblin/pull/333">m4b/goblin#333</a>
pe: fix oob access, thanks <a href="https://github.com/anfedetoff"><code>`@​anfedetoff</code></a>:` <a href="https://github-redirect.dependabot.com/m4b/goblin/pull/330">m4b/goblin#330</a>
archive: fix oob access, thanks <a href="https://github.com/anfedetoff"><code>`@​anfedetoff</code></a>:` <a href="https://github-redirect.dependabot.com/m4b/goblin/pull/329">m4b/goblin#329</a></p>
<h3>Added</h3>
<p>pe: add machine_to_str utility function, thanks <a href="https://github.com/cgzones"><code>`@​cgzones</code></a>:` <a href="https://github-redirect.dependabot.com/m4b/goblin/pull/338">m4b/goblin#338</a>
fuzz: add debug info for line numbers, thanks <a href="https://github.com/SweetVishnya"><code>`@​SweetVishnya</code></a>:` <a href="https://github-redirect.dependabot.com/m4b/goblin/pull/336">m4b/goblin#336</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/m4b/goblin/commit/d035559b991e631eae7aa91d89cde5e5e03e9cc6"><code>d035559</code></a> build: bump version to 0.6.0</li>
<li><a href="https://github.com/m4b/goblin/commit/aa40ece136b5e28cd05b4897d5192bae080b6789"><code>aa40ece</code></a> docs: update changelog for 0.6.0; add 5!! new contributors to README.md</li>
<li><a href="https://github.com/m4b/goblin/commit/b275e75489301ffeae28af461c70afa4e8f878b7"><code>b275e75</code></a> fuzz: enable debug info in fuzz targets</li>
<li><a href="https://github.com/m4b/goblin/commit/9633205a2ab3f09d27f058fd4218caeb7f3e82da"><code>9633205</code></a> pe: add machine_to_str</li>
<li><a href="https://github.com/m4b/goblin/commit/b281e4ddd019b56ee4de5360ab37337bb5d0bcb3"><code>b281e4d</code></a> mach, tests: fix two rustc warnings</li>
<li><a href="https://github.com/m4b/goblin/commit/761ffd8bbcc20960c2141507be503f176ade0932"><code>761ffd8</code></a> archive: fix potential panic in bsd_filename_length (<a href="https://github-redirect.dependabot.com/m4b/goblin/issues/335">#335</a>)</li>
<li><a href="https://github.com/m4b/goblin/commit/6fdaffdc411bacd5dd7095dc93cec66302ca2575"><code>6fdaffd</code></a> archive: fix subtract with overflow for header.size</li>
<li><a href="https://github.com/m4b/goblin/commit/e2b5207a0d2dd4e8cc9111be1c1fb0a129c51632"><code>e2b5207</code></a> mach: support archive entries in fat binaries (fixes <a href="https://github-redirect.dependabot.com/m4b/goblin/issues/320">#320</a>)</li>
<li><a href="https://github.com/m4b/goblin/commit/a20ce47f4d129d8b91df66f59e05f56215b0c790"><code>a20ce47</code></a> elf.dynamic: only consider loadable segments for VM translation</li>
<li><a href="https://github.com/m4b/goblin/commit/cb19f3bd4d4ce8694460aa432180f85ad4f2efc1"><code>cb19f3b</code></a> pe: fix unbound access to bytes slice at im pe/debug.rs:172</li>
<li>Additional commits viewable in <a href="https://github.com/m4b/goblin/compare/0.5.4...0.6.0">compare view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=goblin&package-manager=cargo&previous-version=0.5.4&new-version=0.6.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

You can trigger a rebase of this PR by commenting ``@dependabot` rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- ``@dependabot` rebase` will rebase this PR
- ``@dependabot` recreate` will recreate this PR, overwriting any edits that have been made to it
- ``@dependabot` merge` will merge this PR after your CI passes on it
- ``@dependabot` squash and merge` will squash and merge this PR after your CI passes on it
- ``@dependabot` cancel merge` will cancel a previously requested merge and block automerging
- ``@dependabot` reopen` will reopen this PR if it is closed
- ``@dependabot` close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- ``@dependabot` ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- ``@dependabot` ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- ``@dependabot` ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)


</details>

559: Bump time from 0.3.15 to 0.3.16 r=mkroening a=dependabot[bot]

Bumps [time](https://github.com/time-rs/time) from 0.3.15 to 0.3.16.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/time-rs/time/releases">time's releases</a>.</em></p>
<blockquote>
<h2>v0.3.16</h2>
<p>See the <a href="https://github.com/time-rs/time/blob/main/CHANGELOG.md">changelog</a> for details.</p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/time-rs/time/blob/main/CHANGELOG.md">time's changelog</a>.</em></p>
<blockquote>
<h2>0.3.16 [2022-10-24]</h2>
<h3>Changed</h3>
<ul>
<li>The minimum supported Rust version is now 1.60.0.</li>
<li>The <code>serde-well-known</code> feature flag is deprecated. The necessary features for an item to be
enabled are indicated in documentation.</li>
<li>Feature gates have been loosened for well-known formats.</li>
</ul>
<h3>Added</h3>
<ul>
<li>
<p><code>const</code>s can now be provided as the format description for <code>time::serde::format_description!</code>. The
<code>const</code> must be of type <code>&amp;[FormatItem&lt;'_&gt;]</code>, which is what is returned by the
<code>time::macros::format_description!</code> macro.</p>
<pre lang="rust"><code>const TIME_FORMAT_ALT: &amp;[FormatItem&lt;'_&gt;] = time::macros::format_description!(&quot;[hour]:[minute]&quot;);
time::serde::format_description!(time_format_alt, Time, TIME_FORMAT_ALT);
</code></pre>
</li>
</ul>
<h3>Compatibility</h3>
<ul>
<li>Some feature flags have been removed. None of these have ever been documented as flags, so any use
was unsupported. These flags are:
<ul>
<li><code>js-sys</code></li>
<li><code>quickcheck-dep</code></li>
<li><code>itoa</code></li>
<li><code>time-macros</code></li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/time-rs/time/commit/05bdab8a70223eb1bc722b519093dfa7dd7c2b5f"><code>05bdab8</code></a> 0.3.16 release</li>
<li><a href="https://github.com/time-rs/time/commit/ad3ce25dd87427add05c407e6a3ef262299d40c0"><code>ad3ce25</code></a> Support passing <code>&amp;[FormatItem\&lt;'_&gt;]</code> to macro</li>
<li><a href="https://github.com/time-rs/time/commit/da719aa20faf5bcc607fa4c11231ea00eefe58f0"><code>da719aa</code></a> Fix powerset</li>
<li><a href="https://github.com/time-rs/time/commit/c22e000b7d91b4bd24a2716ebd193f0f25828bf8"><code>c22e000</code></a> Document dependencies in CI</li>
<li><a href="https://github.com/time-rs/time/commit/084e32dcb3d22de8cdb8121a7808309931b21c97"><code>084e32d</code></a> Fix powerset build</li>
<li><a href="https://github.com/time-rs/time/commit/e4c884704cf221714b804bc86a68e66f0ae24138"><code>e4c8847</code></a> Move some utility functions to <code>time-core</code></li>
<li><a href="https://github.com/time-rs/time/commit/f7a3e551083de61a203ddb54937588e18d1e52fa"><code>f7a3e55</code></a> Initialize <code>time-core</code> crate</li>
<li><a href="https://github.com/time-rs/time/commit/e7d132aeeee486e46d2dfde049451b482b1417bd"><code>e7d132a</code></a> Enable feature flags directly</li>
<li><a href="https://github.com/time-rs/time/commit/9b1c7550af405f7bd283d1e55d339e277b1dc608"><code>9b1c755</code></a> Add miri test to CI</li>
<li><a href="https://github.com/time-rs/time/commit/fcbad1dfd004db16b374d2a5edd23fedc94ba82c"><code>fcbad1d</code></a> Restructure repository</li>
<li>Additional commits viewable in <a href="https://github.com/time-rs/time/compare/v0.3.15...v0.3.16">compare view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=time&package-manager=cargo&previous-version=0.3.15&new-version=0.3.16)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

You can trigger a rebase of this PR by commenting ``@dependabot` rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- ``@dependabot` rebase` will rebase this PR
- ``@dependabot` recreate` will recreate this PR, overwriting any edits that have been made to it
- ``@dependabot` merge` will merge this PR after your CI passes on it
- ``@dependabot` squash and merge` will squash and merge this PR after your CI passes on it
- ``@dependabot` cancel merge` will cancel a previously requested merge and block automerging
- ``@dependabot` reopen` will reopen this PR if it is closed
- ``@dependabot` close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- ``@dependabot` ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- ``@dependabot` ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- ``@dependabot` ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)


</details>

560: Bump xflags from 0.3.0 to 0.3.1 r=mkroening a=dependabot[bot]

Bumps [xflags](https://github.com/matklad/xflags) from 0.3.0 to 0.3.1.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/matklad/xflags/commit/5b33711a3813e15564f7b7855d3c8406669f599f"><code>5b33711</code></a> Merge <a href="https://github-redirect.dependabot.com/matklad/xflags/issues/32">#32</a></li>
<li><a href="https://github.com/matklad/xflags/commit/a7e8fb215073ee538fef5031c43c4dc755bc9723"><code>a7e8fb2</code></a> publish 0.3.1</li>
<li><a href="https://github.com/matklad/xflags/commit/008836bb76eafcfcac036f0f763bf63aebf7f604"><code>008836b</code></a> handle -- to delimit positional arguments</li>
<li><a href="https://github.com/matklad/xflags/commit/db0d74c2145761e64c48cc26074f2fa4128b3185"><code>db0d74c</code></a> Add test for dash-valued option</li>
<li><a href="https://github.com/matklad/xflags/commit/f7c504054c993dd9393da775d2b566c0f6067271"><code>f7c5040</code></a> cleanup visibility</li>
<li>See full diff in <a href="https://github.com/matklad/xflags/compare/v0.3.0...v0.3.1">compare view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=xflags&package-manager=cargo&previous-version=0.3.0&new-version=0.3.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

You can trigger a rebase of this PR by commenting ``@dependabot` rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- ``@dependabot` rebase` will rebase this PR
- ``@dependabot` recreate` will recreate this PR, overwriting any edits that have been made to it
- ``@dependabot` merge` will merge this PR after your CI passes on it
- ``@dependabot` squash and merge` will squash and merge this PR after your CI passes on it
- ``@dependabot` cancel merge` will cancel a previously requested merge and block automerging
- ``@dependabot` reopen` will reopen this PR if it is closed
- ``@dependabot` close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- ``@dependabot` ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- ``@dependabot` ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- ``@dependabot` ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)


</details>

561: Bump anyhow from 1.0.65 to 1.0.66 r=mkroening a=dependabot[bot]

Bumps [anyhow](https://github.com/dtolnay/anyhow) from 1.0.65 to 1.0.66.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/dtolnay/anyhow/releases">anyhow's releases</a>.</em></p>
<blockquote>
<h2>1.0.66</h2>
<ul>
<li>Reduce unhelpful backtrace frames in backtraces captured during a <code>context</code> call (<a href="https://github-redirect.dependabot.com/dtolnay/anyhow/issues/279">#279</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/dtolnay/anyhow/commit/8de29aafd42a1881092d52aa3040455c9cd11373"><code>8de29aa</code></a> Release 1.0.66</li>
<li><a href="https://github.com/dtolnay/anyhow/commit/54fc81220915c3e6939b5ff6e168c5a713e729f8"><code>54fc812</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/dtolnay/anyhow/issues/279">#279</a> from dtolnay/contextbacktrace</li>
<li><a href="https://github.com/dtolnay/anyhow/commit/131249b11c0facb18d0aa5a6c677c1b9da08ef66"><code>131249b</code></a> Remove 2 frames of noise from 'context' backtraces</li>
<li><a href="https://github.com/dtolnay/anyhow/commit/f2123ab51b678272801c8fe4463ad70994c1ca3e"><code>f2123ab</code></a> Ui test changes for trybuild 1.0.66</li>
<li><a href="https://github.com/dtolnay/anyhow/commit/9bd74a15407da67b4c584434afe5f66da03a06c6"><code>9bd74a1</code></a> Restore pre-nightly-2022-10-05 behavior of test_path PhantomData tests</li>
<li><a href="https://github.com/dtolnay/anyhow/commit/77c4fa4566d5ab01914cc75960b80d6e51289c27"><code>77c4fa4</code></a> Update test suite to nightly-2022-10-05</li>
<li><a href="https://github.com/dtolnay/anyhow/commit/7b171d651d3b8d6442fc3fd53d3f9ca82f65e3a5"><code>7b171d6</code></a> Ignore bool_to_int_with_if clippy lint in test suite</li>
<li><a href="https://github.com/dtolnay/anyhow/commit/94ae34b0d556928a13413f5077b7b4c631d566ca"><code>94ae34b</code></a> Raise minimum tested toolchain to rust 1.56</li>
<li><a href="https://github.com/dtolnay/anyhow/commit/94f6f4df66b48c0082a3ebd6cf6b28097a69558c"><code>94f6f4d</code></a> Remove default package.readme metadata from Cargo.toml</li>
<li>See full diff in <a href="https://github.com/dtolnay/anyhow/compare/1.0.65...1.0.66">compare view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=anyhow&package-manager=cargo&previous-version=1.0.65&new-version=1.0.66)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

You can trigger a rebase of this PR by commenting ``@dependabot` rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- ``@dependabot` rebase` will rebase this PR
- ``@dependabot` recreate` will recreate this PR, overwriting any edits that have been made to it
- ``@dependabot` merge` will merge this PR after your CI passes on it
- ``@dependabot` squash and merge` will squash and merge this PR after your CI passes on it
- ``@dependabot` cancel merge` will cancel a previously requested merge and block automerging
- ``@dependabot` reopen` will reopen this PR if it is closed
- ``@dependabot` close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- ``@dependabot` ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- ``@dependabot` ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- ``@dependabot` ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)


</details>

562: Bump x86 from 0.51.0 to 0.52.0 r=mkroening a=dependabot[bot]

Bumps [x86](https://github.com/gz/rust-x86) from 0.51.0 to 0.52.0.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/gz/rust-x86/blob/master/CHANGELOG.md">x86's changelog</a>.</em></p>
<blockquote>
<h2>[0.52.0] - 2022-10-18</h2>
<ul>
<li>Add user-defined, hardware ignored bits to page-table flags.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a href="https://github.com/gz/rust-x86/commits/0.52.0">compare view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=x86&package-manager=cargo&previous-version=0.51.0&new-version=0.52.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores

)

You can trigger a rebase of this PR by commenting ``@dependabot` rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- ``@dependabot` rebase` will rebase this PR
- ``@dependabot` recreate` will recreate this PR, overwriting any edits that have been made to it
- ``@dependabot` merge` will merge this PR after your CI passes on it
- ``@dependabot` squash and merge` will squash and merge this PR after your CI passes on it
- ``@dependabot` cancel merge` will cancel a previously requested merge and block automerging
- ``@dependabot` reopen` will reopen this PR if it is closed
- ``@dependabot` close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- ``@dependabot` ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- ``@dependabot` ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- ``@dependabot` ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)


</details>

Co-authored-by: default avatardependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
No related branches found
No related tags found
Loading
Checking pipeline status
Loading
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment