Update Cargo Dependencies (minor)

[renovate]

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Type	Update	Change
config	dependencies	minor	0.13.1 → 0.15.0
handlebars	dependencies	minor	4.3.3 → 4.5.0
once_cell	dependencies	minor	1.16.0 → 1.21.4
regex	dependencies	minor	1.7.0 → 1.12.3
rstest	dev-dependencies	minor	0.15.0 → 0.26.0
rust-ini	dependencies	minor	0.18.0 → 0.21.0
skim	dependencies	minor	0.10.2 → 0.20.0
tempfile (source)	dev-dependencies	minor	3.3.0 → 3.27.0

---

Release Notes

rust-cli/config-rs (config)

v0.15.22

Compare Source

Documentation

• Polish examples

Internal

• Update winnow

v0.15.21

Compare Source

Compatibility

• Bump MSRV to 1.85

v0.15.20

Compare Source

Fixes

• Serialize the full u64 range

Internal

• (toml) Update to 1.0

v0.15.19

Compare Source

Internal

• (ron) Update to 0.12

v0.15.18

Compare Source

Fixes

• Improve consistency between missing field error messages

v0.15.17

Compare Source

Features

• corn file format support

v0.15.16

Compare Source

Performance

• Allow more build parallelism by depending on serde_core

v0.15.15

Compare Source

Fixes

• (json5) Correctly deserialize null (regressed in 0.15.14)

v0.15.14

Compare Source

Performance

• (json5) Reduce overhead when loading json5 files

v0.15.13

Compare Source

Fixes

• Skip UTF-8 BOMs when reading files

v0.15.12

Compare Source

Performance

• Upgrade to toml v0.9

v0.15.11

Compare Source

Features

• Deserialize YAML real keys as strings

v0.15.10

Compare Source

Features

• Deserialize YAML boolean keys as strings

Fixes

• Don't panic on non-string YAML keys

v0.15.9

Compare Source

Compatibility

• Upgrade to yaml-rust2 0.10

Documentation

• Provided more jumping off points in the documentation

v0.15.8

Compare Source

Fix

• Don't panic on non-unicode env variable names and values

v0.15.7

Compare Source

Internal

• Update a dependency

v0.15.6

Compare Source

Fixes

• Fix regression from 0.15.3 with reading a table from an empty config

v0.15.5

Compare Source

Fixes

• Include the key on all serde errors

Performance

• Don't clone when merging sources

v0.15.4

Compare Source

Performance

• Reduce TOML build times

v0.15.3

Compare Source

Fixes

• Fix regression from 0.15.3 with reading a table from an empty config

v0.15.2

Compare Source

Fixes

• Provide an error message on path parsing errors (regression from 0.15.0)
• Improve quality of path parsing error messages

v0.15.1

Compare Source

Internal

• (ron) Update to 0.12

v0.15.0

Compare Source

Compatibility

• ConfigError is no longer exhaustive
• ConfigError::Parses type changed
• FileFormat is no longer exhaustive
• Deprecated functions removed
• Case insensitivity from 0.14.0 was reverted

Fixes

• Struct fields, variants, and lookup paths with uppercase letters can be used again (regression from 0.14.0)

v0.14.1

Compare Source

Compatibility

• MSRV is now 1.75

Internal

• Remove dependency on lazy_static
• Update rust-ini from 0.19 to 0.20
• Switch from yaml-rust to yaml-rust2

v0.14.0

Compare Source

This is a maintenance release, mostly to get some dependency updates out, but
also with some fixes and changes that have piled up over a rather long time.

Features

• #​100 Fix #​99: expose file::source::FileSource
• #​318 Add Value::origin()
• #​379 Add clone to builder state types
• #​381 env: add a 'convert_case' field to ease dealing with kebab-case
• #​402 Gate async-traits behind a feature
• #​413 Attach key to type error generated from Config::get_()
• #​480 Hide and deprecate AsyncConfigBuilder

Fixes

• #​306 fix: dot in config name
• #​334 errors: clarify names of integer types
• #​343 fix yaml to parse int keys
• #​353 Use TryInto for more permissive deserialization for integers
• #​354 Fix uppercase lowercase issues
• #​374 Fix FIXME in de.rs and value.rs
• #​395 Fix: Do not use deprecated function
• #​429 Make the parse list key to lowercase when insert the keys
• #​465 Fix nested arrays (by reworking array handling)
• #​481 Fix docs warnings

Dependency updates

• #​271 Update warp requirement from =0.3.1 to =0.3.2
• #​316 test: Adopt test-env to fix random test failure
• #​335 Update MSRV: 1.56.0 -> 1.56.1
• #​350 Bump actions/checkout from 2.4.0 to 3.0.2
• #​367 Update ron requirement from 0.7 to 0.8
• #​373 Update notify (4.0.0 -> 5.0.0)
• #​375 Update temp-env requirement from 0.2.0 to 0.3.0
• #​378 Update warp requirement from =0.3.2 to =0.3.3
• #​382 Bump actions/checkout from 3.0.2 to 3.1.0
• #​389 Update MSRV: 1.56.1 -> 1.59.0
• #​403 Bump actions/checkout from 3.1.0 to 3.2.0
• #​411 Bump actions/checkout from 3.2.0 to 3.3.0
• #​420 Update MSRV: 1.59.0 -> 1.60.0
• #​421 Update toml requirement from 0.5 to 0.7
• #​422 Update MSRV in cron workflow
• #​425 Bump actions/checkout from 3.3.0 to 3.4.0
• #​426 Update MSRV: 1.60.0 -> 1.64.0
• #​427 Bump actions/checkout from 3.4.0 to 3.5.0
• #​430 Update warp requirement from =0.3.3 to =0.3.4
• #​433 Bump actions/checkout from 3.5.0 to 3.5.1
• #​434 Bump actions/checkout from 3.5.1 to 3.5.2
• #​436 Update warp requirement from =0.3.4 to =0.3.5
• #​437 Update rust-ini requirement from 0.18 to 0.19
• #​438 Update notify requirement from ^5.0.0 to ^6.0.0
• #​440 Bump actions/checkout from 3.5.2 to 3.5.3
• #​441 Update indexmap requirement from 1.7.0 to 2.0.0
• #​451 Bump actions/checkout from 3.5.3 to 3.6.0
• #​453 Bump actions/checkout from 3.6.0 to 4.0.0
• #​455 MSRV: 1.64.0 -> 1.66.0
• #​456 Update toml requirement from 0.7 to 0.8
• #​458 Update MSRV in cron job
• #​459 Bump actions/checkout from 4.0.0 to 4.1.0
• #​462 Update warp requirement from =0.3.5 to =0.3.6
• #​477 Bump actions/checkout from 4.1.0 to 4.1.1
• #​483 Update MSRV: 1.66.0 -> 1.70.0
• #​503 Bump actions/setup-python from 4 to 5

Misc

• #​188 Add test for log::Level deserialization
• #​274 move 'must_use' attribute to struct for 'builder' types
• #​283 Add cron job
• #​299 docs(builder): fix typo in doc comment
• #​344 Fix clippy: Derive Eq as well
• #​347 Fix clippy: use first() instead of get(0)
• #​348 actions: Remove "minimal" setting, as workflow does not support this key
• #​356 refactoring deserialize-any in config
• #​359 Add test to deserialize unsigned int
• #​360 Duplicate test for type conversion with unsigned int
• #​362 Run clippy only on MSRV
• #​363 Backport CHANGELOG entry for 0.13.2
• #​388 Add documentation to File required setter
• #​392 Add simple example using lazy_static
• #​393 More clippy fixes
• #​396 Replace actions rs
• #​401 Backport changelog
• #​404 Replace fixupmerge with gitlint
• #​406 Fix clippy: Remove unnecessary cast
• #​410 Copy member docs to builder functions
• #​416 Replace actions-rs with run scripts
• #​423 Fix clippy: Remove needless borrowed reference
• #​445 Update license field following SPDX 2.1 license expression standard
• #​460 Use weak features for preserve_order
• #​469 chore: Use a common method in parsers to check root is a table
• #​471 Clippy exact toolchains
• #​479 docs: Example for conditionally loading sources
• #​485 Add DCO
• #​488 Unify deser impl (redux)
• #​489 deserialize: strings: Introduce string_serialize_via_display macro
• #​507 Check external types
• #​511 Fix: cargo-check-external-types must use nightly 2023-10-10

v0.13.4

Compare Source

v0.13.3

Compare Source

Please note that we had to update the MSRV for this crate from 1.56.0 to 1.59.0
for this patch release being possible, because a transitive dependency did
update its MSRV.

• Backport of commit d54986c54091e4620c199d3dfadde80b82958bb3 from #​362 for
  using float_cmp for testing floats
• Backport of #​379 adding Clone trait derive to builder states

v0.13.2

Compare Source

• Backport of #​316 to be testing with temp_env. The backport was necessary to
  be able to backport the next change. This change shouldn't be user-visible.
• Backport of #​353 to use TryInto for more permissive deserialization of
  integers
• Backport of commit 518a3cafa1e62ba7405709e5c508247e328e0a18 from #​362 to
  fix tests

sunng87/handlebars-rust (handlebars)

v4.5.0

Compare Source

v4.4.0

Compare Source

v4.3.7

Compare Source

• [Fixed] Use fully qualified name of Result in handlebars_helper macro [#​578]
• [Fixed] Allow single-quote JSON literal [#​577]

v4.3.6

Compare Source

[Fixed] Loading template files with multiple extensions, a bug introduced in 4.3.0 when refactoring directory source.

v4.3.5

Compare Source

v4.3.4

Compare Source

• [Added] New write_fmt function for Output [#​522]
• [Added] reason() method for TemplateError to access underlying reason,
  this replaces original direct .reason access.
• [Changed] Direct access to TemplateError's reason field is depreacted will
  be removed in future.

matklad/once_cell (once_cell)

v1.21.4

Compare Source

• Fix unsoundness in OnceCell::wait under --features=parking_lot, #​295.

  If thread A calls wait, while thread B calls get_or_try_init(f), and, furthermore, f panics,
  the wait incorrectly returns and thread A observes uninitialized memory.

  Kudos to @​meng-xu-cs for a nice find!

v1.21.3

Compare Source

• Outline more initialization in race: #​284,
  #​285.

v1.21.2

Compare Source

• Relax success ordering from AcqRel to Release in race: #​278.

v1.21.1

Compare Source

• Reduce MSRV to 1.65: #​277.

v1.21.0

Compare Source

• Outline initialization in race: #​273.
• Add OnceNonZereUsize::get_unchecked: #​274.
• Add OnceBox::clone and OnceBox::with_value: #​275.
• Increase MSRV to 1.70

v1.20.3

Compare Source

v1.20.2

Compare Source

• Remove portable_atomic from Cargo.lock if it is not, in fact, used: #​267
  This is a work-around for this cargo bug: rust-lang/cargo#10801.

v1.20.1

Compare Source

• Allow using race module using just portable_atomic, without critical_section and provide
  better error messages on targets without atomic CAS instruction,
  #​265.

v1.20.0

Compare Source

v1.19.0

Compare Source

• Use portable-atomic instead of atomic-polyfill, #​251.

v1.18.0

Compare Source

• MSRV is updated to 1.60.0 to take advantage of dep: syntax for cargo features,
  removing "implementation details" from publicly visible surface.

v1.17.2

Compare Source

• Avoid unnecessary synchronization in Lazy::{force,deref}_mut(), #​231.

v1.17.1

Compare Source

• Make OnceRef implementation compliant with strict provenance.

v1.17.0

Compare Source

• Add race::OnceRef for storing a &'a T.

rust-lang/regex (regex)

v1.12.3

Compare Source

===================
This release excludes some unnecessary things from the archive published to
crates.io. Specifically, fuzzing data and various shell scripts are now
excluded. If you run into problems, please file an issue.

Improvements:

• #​1319:
  Switch from a Cargo exclude list to an include list, and exclude some
  unnecessary stuff.

v1.12.2

Compare Source

===================
This release fixes a cargo doc breakage on nightly when --cfg docsrs is
enabled. This caused documentation to fail to build on docs.rs.

Bug fixes:

• BUG #​1305:
  Switches the doc_auto_cfg feature to doc_cfg on nightly for docs.rs builds.

v1.12.1

Compare Source

===================
This release makes a bug fix in the new regex::Captures::get_match API
introduced in 1.12.0. There was an oversight with the lifetime parameter
for the Match returned. This is technically a breaking change, but given
that it was caught almost immediately and I've yanked the 1.12.0 release,
I think this is fine.

v1.12.0

Compare Source

===================
This release contains a smattering of bug fixes, a fix for excessive memory
consumption in some cases and a new regex::Captures::get_match API.

Improvements:

• FEATURE #​1146:
  Add Capture::get_match for returning the overall match without unwrap().

Bug fixes:

• BUG #​1083:
  Fixes a panic in the lazy DFA (can only occur for especially large regexes).
• BUG #​1116:
  Fixes a memory usage regression for large regexes (introduced in regex 1.9).
• BUG #​1195:
  Fix universal start states in sparse DFA.
• BUG #​1295:
  Fixes a panic when deserializing a corrupted dense DFA.
• BUG 8f5d9479:
  Make regex_automata::meta::Regex::find consistently return None when
  WhichCaptures::None is used.

v1.11.3

Compare Source

===================
This is a small patch release with an improvement in memory usage in some
cases.

Improvements:

• BUG #​1297:
  Improve memory usage by trimming excess memory capacity in some spots.

v1.11.2

Compare Source

===================
This is a new patch release of regex with some minor fixes. A larger number
of typo or lint fix patches were merged. Also, we now finally recommend using
std::sync::LazyLock.

Improvements:

• BUG #​1217:
  Switch recommendation from once_cell to std::sync::LazyLock.
• BUG #​1225:
  Add DFA::set_prefilter to regex-automata.

Bug fixes:

• BUG #​1165:
  Remove std dependency from perf-literal-multisubstring crate feature.
• BUG #​1165:
  Clarify the meaning of (?R)$ in the documentation.
• BUG #​1281:
  Remove fuzz/ and record/ directories from published crate on crates.io.

v1.11.1

Compare Source

===================
This is a new patch release of regex that fixes compilation on nightly
Rust when the unstable pattern crate feature is enabled. Users on nightly
Rust without this feature enabled are unaffected.

Bug fixes:

• BUG #​1231:
  Fix the Pattern trait implementation as a result of nightly API breakage.

v1.11.0

Compare Source

===================
This is a new minor release of regex that brings in an update to the
Unicode Character Database. Specifically, this updates the Unicode data
used by regex internally to the version 16 release.

New features:

• FEATURE #​1228:
  Add new regex::SetMatches::matched_all method.
• FEATURE #​1229:
  Update to Unicode Character Database (UCD) version 16.

v1.10.6

Compare Source

===================
This is a new patch release with a fix for the unstable crate feature that
enables std::str::Pattern trait integration.

Bug fixes:

• BUG #​1219:
  Fix the Pattern trait implementation as a result of nightly API breakage.

v1.10.5

Compare Source

===================
This is a new patch release with some minor fixes.

Bug fixes:

• BUG #​1203:
  Escape invalid UTF-8 when in the Debug impl of regex::bytes::Match.

v1.10.4

Compare Source

===================
This is a new patch release with some minor fixes.

• BUG #​1169:
  Fixes a bug with compiling a reverse NFA automaton in regex-automata.
• BUG #​1178:
  Clarifies that when Cow::Borrowed is returned from replace APIs, it is
  equivalent to the input.

v1.10.3

Compare Source

===================
This is a new patch release that fixes the feature configuration of optional
dependencies, and fixes an unsound use of bounds check elision.

Bug fixes:

• BUG #​1147:
  Set default-features=false for the memchr and aho-corasick dependencies.
• BUG #​1154:
  Fix unsound bounds check elision.

v1.10.2

Compare Source

===================
This is a new patch release that fixes a search regression where incorrect
matches could be reported.

Bug fixes:

• BUG #​1110:
  Revert broadening of reverse suffix literal optimization introduced in 1.10.1.

v1.10.1

Compare Source

===================
This is a new patch release with a minor increase in the number of valid
patterns and a broadening of some literal optimizations.

New features:

• FEATURE 04f5d7be:
  Loosen ASCII-compatible rules such that regexes like (?-u:☃) are now allowed.

Performance improvements:

• PERF 8a8d599f:
  Broader the reverse suffix optimization to apply in more cases.

v1.10.0

Compare Source

===================
This is a new minor release of regex that adds support for start and end
word boundary assertions. That is, \< and \>. The minimum supported Rust
version has also been raised to 1.65, which was released about one year ago.

The new word boundary assertions are:

• \< or \b{start}: a Unicode start-of-word boundary (\W|\A on the left,
  \w on the right).
• \> or \b{end}: a Unicode end-of-word boundary (\w on the left, \W|\z
  on the right).
• \b{start-half}: half of a Unicode start-of-word boundary (\W|\A on the
  left).
• \b{end-half}: half of a Unicode end-of-word boundary (\W|\z on the
  right).

The \< and \> are GNU extensions to POSIX regexes. They have been added
to the regex crate because they enjoy somewhat broad support in other regex
engines as well (for example, vim). The \b{start} and \b{end} assertions
are aliases for \< and \>, respectively.

The \b{start-half} and \b{end-half} assertions are not found in any
other regex engine (although regex engines with general look-around support
can certainly express them). They were added principally to support the
implementation of word matching in grep programs, where one generally wants to
be a bit more flexible in what is considered a word boundary.

New features:

• FEATURE #​469:
  Add support for \< and \> word boundary assertions.
• FEATURE(regex-automata) #​1031:
  DFAs now have a start_state method that doesn't use an Input.

Performance improvements:

• PERF #​1051:
  Unicode character class operations have been optimized in regex-syntax.
• PERF #​1090:
  Make patterns containing lots of literal characters use less memory.

Bug fixes:

• BUG #​1046:
  Fix a bug that could result in incorrect match spans when using a Unicode word
  boundary and searching non-ASCII strings.
• BUG(regex-syntax) #​1047:
  Fix panics that can occur in Ast->Hir translation (not reachable from regex
  crate).
• BUG(regex-syntax) #​1088:
  Remove guarantees in the API that connect the u flag with a specific HIR
  representation.

regex-automata breaking change release:

This release includes a regex-automata 0.4.0 breaking change release, which
was necessary in order to support the new word boundary assertions. For
example, the Look enum has new variants and the LookSet type now uses u32
instead of u16 to represent a bitset of look-around assertions. These are
overall very minor changes, and most users of regex-automata should be able
to move to 0.4 from 0.3 without any changes at all.

regex-syntax breaking change release:

This release also includes a regex-syntax 0.8.0 breaking change release,
which, like regex-automata, was necessary in order to support the new word
boundary assertions. This release also includes some changes to the Ast
type to reduce heap usage in some cases. If you are using the Ast type
directly, your code may require some minor modifications. Otherwise, users of
regex-syntax 0.7 should be able to migrate to 0.8 without any code changes.

regex-lite release:

The regex-lite 0.1.1 release contains support for the new word boundary
assertions. There are no breaking changes.

v1.9.6

Compare Source

==================
This is a patch release that fixes a panic that can occur when the default
regex size limit is increased to a large number.

• BUG aa4e4c71:
  Fix a bug where computing the maximum haystack length for the bounded
  backtracker could result underflow and thus provoke a panic later in a search
  due to a broken invariant.

v1.9.5

Compare Source

==================
This is a patch release that hopefully mostly fixes a performance bug that
occurs when sharing a regex across multiple threads.

Issue #​934
explains this in more detail. It is also noted in the crate
documentation.
The bug can appear when sharing a regex across multiple threads simultaneously,
as might be the case when using a regex from a OnceLock, lazy_static or
similar primitive. Usually high contention only results when using many threads
to execute searches on small haystacks.

One can avoid the contention problem entirely through one of two methods.
The first is to use lower level APIs from regex-automata that require passing
state explicitly, such as meta::Regex::search_with.
The second is to clone a regex and send it to other threads explicitly. This
will not use any additional memory usage compared to sharing the regex. The
only downside of this approach is that it may be less convenient, for example,
it won't work with things like OnceLock or lazy_static or once_cell.

With that said, as of this release, the contention performance problems have
been greatly reduced. This was achieved by changing the free-list so that it
was sharded across threads, and that ensuring each sharded mutex occupies a
single cache line to mitigate false sharing. So while contention may still
impact performance in some cases, it should be a lot better now.

Because of the changes to how the free-list works, please report any issues you
find with this release. That not only includes search time regressions but also
significant regressions in memory usage. Reporting improvements is also welcome
as well! If possible, provide a reproduction.

Bug fixes:

• BUG #​934:
  Fix a performance bug where high contention on a single regex led to massive
  slow-downs.

v1.9.4

Compare Source

==================
This is a patch release that fixes a bug where RegexSet::is_match(..) could
incorrectly return false (even when RegexSet::matches(..).matched_any()
returns true).

Bug fixes:

• BUG #​1070:
  Fix a bug where a prefilter was incorrectly configured for a RegexSet.

v1.9.3

Compare Source

==================
This is a patch release that fixes a bug where some searches could result in
incorrect match offsets being reported. It is difficult to characterize the
types of regexes susceptible to this bug. They generally involve patterns
that contain no prefix or suffix literals, but have an inner literal along with
a regex prefix that can conditionally match.

Bug fixes:

• BUG #​1060:
  Fix a bug with the reverse inner literal optimization reporting incorrect match
  offsets.

v1.9.2

Compare Source

==================
This is a patch release that fixes another memory usage regression. This
particular regression occurred only when using a RegexSet. In some cases,
much more heap memory (by one or two orders of magnitude) was allocated than in
versions prior to 1.9.0.

Bug fixes:

• BUG #​1059:
  Fix a memory usage regression when using a RegexSet.

v1.9.1

Compare Source

==================
This is a patch release which fixes a memory usage regression. In the regex
1.9 release, one of the internal engines used a more aggressive allocation
strategy than what was done previously. This patch release reverts to the
prior on-demand strategy.

Bug fixes:

• BUG #​1027:
  Change the allocation strategy for the backtracker to be less aggressive.

v1.9.0

Compare Source

==================
This release marks the end of a years long rewrite of the regex crate
internals. Since this is
such a big release, please report any issues or regressions you find. We would
also love to hear about improvements as well.

In addition to many internal improvements that should hopefully result in
"my regex searches are faster," there have also been a few API additions:

• A new Captures::extract method for quickly accessing the substrings
  that match each capture group in a regex.
• A new inline flag, R, which enables CRLF mode. This makes . match any
  Unicode scalar value except for \r and \n, and also makes (?m:^) and
  (?m:$) match after and before both \r and \n, respectively, but never
  between a \r and \n.
• RegexBuilder::line_terminator was added to further customize the line
  terminator used by (?m:^) and (?m:$) to be any arbitrary byte.
• The std Cargo feature is now actually optional. That is, the regex crate
  can be used without the standard library.
• Because regex 1.9 may make binary size and compile times even worse, a
  new experimental crate called regex-lite has been published. It prioritizes
  binary size and compile times over functionality (like Unicode) and
  performance. It shares no code with the regex crate.

New features:

• FEATURE #​244:
  One can opt into CRLF mode via the R flag.
  e.g., (?mR:$) matches just before \r\n.
• FEATURE #​259:
  Multi-pattern searches with offsets can be done with regex-automata 0.3.
• FEATURE #​476:
  std is now an optional feature. regex may be used with only alloc.
• FEATURE #​644:
  RegexBuilder::line_terminator configures how (?m:^) and (?m:$) behave.
• FEATURE #​675:
  Anchored search APIs are now available in regex-automata 0.3.
• FEATURE #​824:
  Add new Captures::extract method for easier capture group access.
• FEATURE #​961:
  Add regex-lite crate with smaller binary sizes and faster compile times.
• FEATURE #​1022:
  Add TryFrom implementations for the Regex type.

Performance improvements:

• PERF #​68:
  Added a one-pass DFA engine for faster capture group matching.
• PERF #​510:
  Inner literals are now used to accelerate searches, e.g., \w+@​\w+ will scan
  for @.
• PERF #​787,
  PERF #​891:
  Makes literal optimizations apply to regexes of the form \b(foo|bar|quux)\b.

(There are many more performance improvements as well, but not all of them have
specific issues devoted to them.)

Bug fixes:

• BUG #​429:
  Fix matching bugs related to \B and inconsistencies across internal engines.
• BUG #​517:
  Fix matching bug with capture groups.
• BUG #​579:
  Fix matching bug with word boundaries.
• BUG #​779:
  Fix bug where some regexes like (re)+ were not equivalent to (re)(re)*.
• BUG #​850:
  Fix matching bug inconsistency between NFA and DFA engines.
• BUG #​921:
  Fix matching bug where literal extraction got confused by $.
• BUG #​976:
  Add documentation to replacement routines about dealing with fallibility.
• BUG #​1002:
  Use corpus rejection in fuzz testing.

v1.8.4

Compare Source

==================
This is a patch release that fixes a bug where (?-u:\B) was allowed in
Unicode regexes, despite the fact that the current matching engines can report
match offsets between the code units of a single UTF-8 encoded codepoint. That
in turn means that match offsets that split a codepoint could be reported,
which in turn results in panicking when one uses them to slice a &str.

This bug occurred in the transition to regex 1.8 because the underlying
syntactical error that prevented this regex from compiling was intentionally
removed. That's because (?-u:\B) will be permitted in Unicode regexes in
regex 1.9, but the matching engines will guarantee to never report match
offsets that split a codepoint. When the underlying syntactical error was
removed, no code was added to ensure that (?-u:\B) didn't compile in the
regex 1.8 transition release. This release, regex 1.8.4, adds that code
such that Regex::new(r"(?-u:\B)") returns to the regex <1.8 behavior of
not compiling. (A bytes::Regex can still of course compile it.)

Bug fixes:

• BUG #​1006:
  Fix a bug where (?-u:\B) was allowed in Unicode regexes, and in turn could
  lead to match offsets that split a codepoint in &str.

v1.8.3

Compare Source

==================
This is a patch release that fixes a bug where the regex would report a
match at every position even when it shouldn't. This could occur in a very
small subset of regexes, usually an alternation of simple literals that
have particular properties. (See the issue linked below for a more precise
description.)

Bug fixes:

• BUG #​999:
  Fix a bug where a match at every position is erroneously reported.

v1.8.2

Compare Source

==================
This is a patch release that fixes a bug where regex compilation could panic
in debug mode for regexes with large counted repetitions. For example,
a{2147483516}{2147483416}{5} resulted in an integer overflow that wrapped
in release mode but panicking in debug mode. Despite the unintended wrapping
arithmetic in release mode, it didn't cause any other logical bugs since the
errant code was for new analysis that wasn't used yet.

Bug fixes:

• BUG #​995:
  Fix a bug where regex compilation with large counted repetitions could panic.

v1.8.1

Compare Source

==================
This is a patch release that fixes a bug where a regex match could be reported
where none was found. Specifically, the bug occurs when a pattern contains some
literal prefixes that could be extracted and an optional word boundary in the
prefix.

Bug fixes:

• BUG #​981:
  Fix a bug where a word boundary could interact with prefix literal
  optimizations and lead to a false positive match.

v1.8.0

Compare Source

==================
This is a sizeable release that will be soon followed by another sizeable
release. Both of them will combined close over 40 existing issues and PRs.

This first release, despite its size, essentially represents preparatory work
for the second release, which will be even bigger. Namely, this release:

• Increases the MSRV to Rust 1.60.0, which was released about 1 year ago.
• Upgrades its dependency on aho-corasick to the recently released 1.0
  version.
• Upgrades its dependency on regex-syntax to the simultaneously released
  0.7 version. The changes to regex-syntax principally revolve around a
  rewrite of its literal extraction code and a number of simplifications and
  optimizations to its high-level intermediate representation (HIR).

The second release, which will follow ~shortly after the release above, will
contain a soup-to-nuts rewrite of every regex engine. This will be done by
bringing regex-automata into
this repository, and then changing the regex crate to be nothing but an API
shim layer on top of regex-automata's API.

These tandem releases are the culmination of about 3
years of on-and-off work that began in earnest in March
2020.

Because of the scale of changes involved in these releases, I would love to
hear about your experience. Especially if you notice undocumented changes in
behavior or performance changes (positive or negative).

Most changes in the first release are listed below. For more details, please
see the commit log, which reflects a linear and decently documented history
of all changes.

New features:

• FEATURE #​501:
  Perm

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 46.92%. Comparing base (ccc4067) to head (cecb539).

❗ Current head cecb539 differs from pull request most recent head 02c011d

Please upload reports for the commit 02c011d to get more accurate results.

Additional details and impacted files

@@            Coverage Diff             @@
##             main      #62      +/-   ##
==========================================
+ Coverage   46.60%   46.92%   +0.31%     
==========================================
  Files           6        6              
  Lines         339      341       +2     
==========================================
+ Hits          158      160       +2     
  Misses        181      181              

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.