cargo: bump the cargo-dependencies group across 1 directory with 12 updates

[dependabot]

Bumps the cargo-dependencies group with 11 updates in the / directory:

Package	From	To
anyhow	1.0.99	1.0.100
camino	1.1.12	1.2.1
cargo_metadata	0.22.0	0.23.0
clap	4.5.47	4.5.51
fs-err	3.1.1	3.1.3
semver	1.0.26	1.0.27
toml_edit	0.23.4	0.23.7
assert_cmd	2.0.17	2.1.1
insta	1.41.1	1.43.2
serde_json	1.0.143	1.0.145
tempfile	3.22.0	3.23.0

Updates anyhow from 1.0.99 to 1.0.100

Release notes

Sourced from anyhow's releases.

1.0.100

• Teach clippy to lint formatting arguments in bail!, ensure!, anyhow! (#426)

Commits

• 18c2598 Release 1.0.100
• f271988 Merge pull request #426 from dtolnay/clippyfmt
• 52f2115 Mark macros with clippy::format_args
• da5fd9d Raise minimum tested compiler to rust 1.76
• 211e409 Opt in to generate-macro-expansion when building on docs.rs
• b48fc02 Enforce trybuild >= 1.0.108
• d5f59fb Update ui test suite to nightly-2025-09-07
• 238415d Update ui test suite to nightly-2025-08-24
• 3bab070 Update actions/checkout@v4 -> v5
• 4249254 Order cap-lints flag in the same order as thiserror build script
• See full diff in compare view

Updates camino from 1.1.12 to 1.2.1

Release notes

Sourced from camino's releases.

camino 1.2.1

Fixed

Replaced obsolete doc_auto_cfg with doc_cfg, to fix Rust nightly builds with the doc_cfg flag enabled.

camino 1.2.0

Changed

• MSRV updated to Rust 1.61 to support the switch to serde_core.
• camino now depends on serde_core rather than serde. This allows camino's compilation to be parallelized with serde_derive.
• serde and proptest are no longer available as features. This is technically a breaking change, but these features were already no-ops. Instead, use serde1 and proptest1 respectively.

Changelog

Sourced from camino's changelog.

[1.2.1] - 2025-09-29

Fixed

Replaced obsolete doc_auto_cfg with doc_cfg, to fix Rust nightly builds with the doc_cfg flag enabled.

[1.2.0] - 2025-09-14

Changed

• MSRV updated to Rust 1.61 to support the switch to serde_core.
• camino now depends on serde_core rather than serde. This allows camino's compilation to be parallelized with serde_derive.
• serde and proptest are no longer available as features. This is technically a breaking change, but these features were already no-ops. Instead, use serde1 and proptest1 respectively.

Commits

• 28e15db [camino] version 1.2.1
• f32d994 prepare release
• ea187e4 remove doc_auto_cfg (#114)
• b0c8086 remove references to dead features from README
• 62ddbaa [camino] version 1.2.0
• b525ad9 changelog + minor doc updates
• 0150dc9 switch to serde_core
• a2a7da0 switch to dep: for optional dependencies
• f16b48f update edition to 2021
• 8540bc3 update MSRV to Rust 1.61
• Additional commits viewable in compare view

Updates cargo_metadata from 0.22.0 to 0.23.0

Changelog

Sourced from cargo_metadata's changelog.

[0.23.0] - 2025-09-27

Added

• Added FeatureName and PackageName newtype wrappers.

Commits

• 2af44df Merge pull request #307 from smoelius/bump-version
• 33cf6da Try to get CI to pass
• 790de54 Bump version
• 8af4dc4 Merge pull request #304 from smoelius/newtype-wrapper
• fa89e0f Make documentation specific to wrapped types
• c114948 Add newtype wrapper
• 7363e58 Add date of last release
• 3692abf Merge pull request #305 from smoelius/build-dir
• aae754b Fix Cargo error message breakage
• d64b6e0 Proposed -Zbuild-dir fix
• See full diff in compare view

Updates clap from 4.5.47 to 4.5.51

Release notes

Sourced from clap's releases.

v4.5.51

[4.5.51] - 2025-10-29

Fixes

• (help) Correctly calculate padding for short flags that take a value
• (help) Don't panic on short flags using ArgAction::Count

v4.5.50

[4.5.50] - 2025-10-20

Features

• Accept Cow where String and &str are accepted

v4.5.48

[4.5.48] - 2025-09-19

Documentation

• Add a new CLI Concepts document as another way of framing clap
• Expand the typed_derive cookbook entry

Changelog

Sourced from clap's changelog.

[4.5.51] - 2025-10-29

Fixes

• (help) Correctly calculate padding for short flags that take a value
• (help) Don't panic on short flags using ArgAction::Count

[4.5.50] - 2025-10-20

Features

• Accept Cow where String and &str are accepted

[4.5.49] - 2025-10-13

Fixes

• (help) Correctly wrap when ANSI escape codes are present

[4.5.48] - 2025-09-19

Documentation

• Add a new CLI Concepts document as another way of framing clap
• Expand the typed_derive cookbook entry

Commits

• b49dae2 chore: Release
• d37b0b5 docs: Update changelog
• 3398b6a Merge pull request #6009 from gtema/complete_try_generate
• 21fc9e4 feat(clap-complete): Introduce fallible generator
• bd01bdc Merge pull request #6012 from epage/sub
• ed0c63d docs(derive): Specify arg_required_else_help is set for users
• e2188d9 chore(deps): Update Rust Stable to v1.87 (#6004)
• e01f2b7 docs: Cleanup unused links
• 6b12a81 chore: Release
• 8dd92a7 docs: Update changelog
• Additional commits viewable in compare view

Updates fs-err from 3.1.1 to 3.1.3

Changelog

Sourced from fs-err's changelog.

3.1.3

• Add wrappers for std::fs::exists and tokio::fs::try_exists (#77)

3.1.2

• Added wrappers for locking methods added to File in Rust 1.89 (#75)

Commits

• See full diff in compare view

Updates semver from 1.0.26 to 1.0.27

Release notes

Sourced from semver's releases.

1.0.27

• Switch serde dependency to serde_core (#333)

Commits

• 6ed8561 Release 1.0.27
• 6967bba Add serde version constraint
• 84d3057 Exclude build.rs from crates.io package
• b09aac9 Merge pull request #343 from dtolnay/up
• 49b8570 Delete backport module
• 9b04afe Merge pull request #342 from dtolnay/up
• 83a8e91 Delete no_nonzero_bitscan configuration
• e606a17 Merge pull request #341 from dtolnay/up
• ebe7cf1 Delete no_unsafe_op_in_unsafe_fn_lint configuration
• a381bff Merge pull request #340 from dtolnay/up
• Additional commits viewable in compare view

Updates serde from 1.0.219 to 1.0.228

Release notes

Sourced from serde's releases.

v1.0.228

• Allow building documentation with RUSTDOCFLAGS='--cfg=docsrs' set for the whole dependency graph (#2995)

v1.0.227

• Documentation improvements (#2991)

v1.0.226

• Deduplicate variant matching logic inside generated Deserialize impl for adjacently tagged enums (#2935, thanks @​Mingun)

v1.0.225

• Avoid triggering a deprecation warning in derived Serialize and Deserialize impls for a data structure that contains its own deprecations (#2879, thanks @​rcrisanti)

v1.0.224

• Remove private types being suggested in rustc diagnostics (#2979)

v1.0.223

• Fix serde_core documentation links (#2978)

v1.0.222

• Make serialize_with attribute produce code that works if respanned to 2024 edition (#2950, thanks @​aytey)

v1.0.221

• Documentation improvements (#2973)
• Deprecate serde_if_integer128! macro (#2975)

v1.0.220

• Add a way for data formats to depend on serde traits without waiting for serde_derive compilation: https://docs.rs/serde_core (#2608, thanks @​osiewicz)

Commits

• a866b33 Release 1.0.228
• 5adc9e8 Merge pull request #2995 from dtolnay/rustdocflags
• ab58178 Workaround for RUSTDOCFLAGS='--cfg=docsrs'
• 415d9fc Release 1.0.227
• 7c58427 Merge pull request #2991 from dtolnay/inlinecoredoc
• 9d3410e Merge pull request #2992 from dtolnay/inplaceseed
• 2fb6748 Remove InPlaceSeed public re-export
• f8137c7 Inline serde_core into serde in docsrs mode
• b7dbf7e Merge pull request #2990 from dtolnay/integer128
• 7c83691 No longer macro_use integer128 module
• Additional commits viewable in compare view

Updates toml_edit from 0.23.4 to 0.23.7

Commits

• 93e9146 chore: Release
• 7de1b4e docs: Update changelog
• 1b579c3 feat(serde): Support integer, bools, and chars as keys (#1050)
• ac1e077 feat(serde): Support chars as keys
• f3dec32 feat(serde): Support bools as keys
• 139b30a feat(serde): Support integer keys
• 2d65a88 test(serde): Show existing key behavior
• 80217f8 chore(deps): Update actions/checkout action to v5 (#1047)
• b36e351 chore(deps): Update actions/checkout action to v5
• 7d2c649 chore(deps): Update actions/setup-python action to v6 (#1048)
• Additional commits viewable in compare view

Updates assert_cmd from 2.0.17 to 2.1.1

Changelog

Sourced from assert_cmd's changelog.

[2.1.1] - 2025-10-29

[2.1.0] - 2025-10-28

Compatibility

• Deprecated crate_name!() in favor of pkg_name!()
• Deprecated Command::cargo_bin, CommandCargoExt::cargo_bin, cargo_bin in favor of cargo_bin!, cargo_bin_cmd!

Features

• Provide cargo_bin_cmd!()
• Use pkg_name!() as a default parameter to cargo_bin!()

Commits

• 68e4a2c chore: Release assert_cmd version 2.1.1
• b3cb5d6 Merge pull request #250 from epage/docs
• 1ddc1d6 docs: Correct examples for cargo_bin!
• ef752de chore: Release assert_cmd version 2.1.0
• 278df89 docs: Update changelog
• b84678b Merge pull request #248 from epage/dep
• b744e27 fix: Deprecate cargo_bin (runtime version)
• b8f7ded feat: Provide cargo_bin_cmd!
• e60035f docs: Prefer pkg_name over CARGO_PKG_NAME
• 069482b docs: Use a local example for cargo_bin!
• Additional commits viewable in compare view

Updates insta from 1.41.1 to 1.43.2

Release notes

Sourced from insta's releases.

1.43.2

Release Notes

• Fix panics when cargo metadata fails to execute or parse (e.g., when cargo is not in PATH or returns invalid output). Now falls back to using the manifest directory as the workspace root. #798 (@​adriangb)
• Fix clippy uninlined_format_args lint warnings. #801
• Changed diff line numbers to 1-based indexing. #799
• Preserve snapshot names with INSTA_GLOB_FILTER. #786
• Bumped libc crate to 0.2.174, fixing building on musl targets, and increasing the MSRV of insta to 1.64.0 (released Sept 2022). #784
• Fix clippy 1.88 errors. #783
• Fix source path in snapshots for non-child workspaces. #778
• Add lifetime to Selector in redaction iterator. #779

Install cargo-insta 1.43.2

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/mitsuhiko/insta/releases/download/1.43.2/cargo-insta-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy ByPass -c "irm https://github.com/mitsuhiko/insta/releases/download/1.43.2/cargo-insta-installer.ps1 | iex"

Download cargo-insta 1.43.2

File	Platform	Checksum
cargo-insta-aarch64-apple-darwin.tar.xz	Apple Silicon macOS	checksum
cargo-insta-x86_64-apple-darwin.tar.xz	Intel macOS	checksum
cargo-insta-x86_64-pc-windows-msvc.zip	x64 Windows	checksum
cargo-insta-x86_64-unknown-linux-gnu.tar.xz	x64 Linux	checksum
cargo-insta-x86_64-unknown-linux-musl.tar.xz	x64 MUSL Linux	checksum

1.43.1

Release Notes

This release in identical in rust code to 1.43.0, but reruns the GitHub Actions workflows, which failed to create a release within GitHub for 1.43.0.

Install cargo-insta 1.43.1

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/mitsuhiko/insta/releases/download/1.43.1/cargo-insta-installer.sh | sh

... (truncated)

Changelog

Sourced from insta's changelog.

1.43.2

• Fix panics when cargo metadata fails to execute or parse (e.g., when cargo is not in PATH or returns invalid output). Now falls back to using the manifest directory as the workspace root. #798 (@​adriangb)
• Fix clippy uninlined_format_args lint warnings. #801
• Changed diff line numbers to 1-based indexing. #799
• Preserve snapshot names with INSTA_GLOB_FILTER. #786
• Bumped libc crate to 0.2.174, fixing building on musl targets, and increasing the MSRV of insta to 1.64.0 (released Sept 2022). #784
• Fix clippy 1.88 errors. #783
• Fix source path in snapshots for non-child workspaces. #778
• Add lifetime to Selector in redaction iterator. #779

1.43.1

This release in identical in rust code to 1.43.0, but reruns the GitHub Actions workflows, which failed to create a release within GitHub for 1.43.0.

1.43.0

• Add uppercase keyboard shortcuts for bulk operations in cargo insta review: A to accept all, R to reject all, and S to skip all remaining snapshots. #745
• --unreferenced=auto (or other relevant values) no longer cleans up pending snapshots. A bug where cargo insta test --unreferenced=auto would incorrectly pass on new pending snapshots has been fixed.
• Support specifying cargo-nextest bin with INSTA_CARGO_NEXTEST_BIN. #721 (Louis Fruleux)
• Allow setting INSTA_WORKSPACE_ROOT at compile time. This is useful for reproducible binaries so they don't contain references to CARGO_MANIFEST_DIR. #726 (Pascal Bach)
• Qualify all references in macros to avoid name clashes. #729 (Austin Schey)
• Remove linked-hash-map and pin-project dependencies. #742, #741, #738
• cargo insta review fails with a helpful error message when run in a non-TTY environment.

1.42.2

• Support other indention characters than spaces in inline snapshots. #679
• Fix an issue where multiple targets with the same root would cause too many pending snapshots to be reported. #730
• Hide unseen option in CLI, as it's pending deprecation. #732
• Stop \t and \x1b (ANSI color escape) from causing snapshots to be escaped. #715
• Improved handling of inline snapshots within allow_duplicates! { .. }. #712

1.42.1

• Improved handling of control characters in inline snapshots. #713
• Add pending deprecation warning for --accept-unseen. We've left an issue open at mitsuhiko/insta#659 eliciting feedback on whether anyone uses this for a few months. A warning will now be printed when --accept-unseen is used, and we'll eventually remove the feature unless we get some feedback that it's useful. #668

1.42.0

... (truncated)

Commits

• 01fc57f Fix Windows runner configuration for releases
• 88c9a2f Prepare CHANGELOG for 1.43.2 release (#802)
• d03c2a6 Improve error handling for cargo workspace detection (#800)
• 55987ac Fix clippy uninlined_format_args lint warnings (#801)
• ae26e81 Change diff line numbers to 1-based indexing (#799)
• 26efb60 Release insta 1.43.2 (#791)
• 7793782 Preserve snapshot names with INSTA_GLOB_FILTER (#786)
• 1d6e0c7 chore: bump libc crate (#784)
• 1a17ea9 chore: fix clippy 1.88 errors (#783)
• 7d0de48 Fix source path in snapshots for non-child workspaces (#778)
• Additional commits viewable in compare view

Updates serde_json from 1.0.143 to 1.0.145

Release notes

Sourced from serde_json's releases.

v1.0.145

• Raise serde version requirement to >=1.0.220

v1.0.144

• Switch serde dependency to serde_core (#1285)

Commits

• efa66e3 Release 1.0.145
• 23679e2 Add serde version constraint
• fc27baf Release 1.0.144
• caef3c6 Ignore uninlined_format_args pedantic clippy lint
• 81ba3aa Merge pull request #1285 from dtolnay/serdecore
• d21e8ce Switch serde dependency to serde_core
• 6beb6cd Merge pull request #1286 from dtolnay/up
• 1dbc803 Raise required compiler to Rust 1.61
• 0bf5d87 Enforce trybuild >= 1.0.108
• d12e943 Update actions/checkout@v4 -> v5
• See full diff in compare view

Updates tempfile from 3.22.0 to 3.23.0

Changelog

Sourced from tempfile's changelog.

3.23.0

• Remove need for the "nightly" feature to compile with "wasip2".

Commits

• fe9f4a3 chore: release v3.23.0 (#381)
• 006c3fd fix: use std::os::fd instead of std::os::wasi (#380)
• b0e6309 doc: Update COPYRIGHT link (#377)
• 2d6fc3f Fix formatting in Builder::disable_cleanup documentation (#375)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions