chore(deps): bump the rust-dependencies group in /packages/analysisloom/src-tauri with 9 updates

[dependabot]

Bumps the rust-dependencies group in /packages/analysisloom/src-tauri with 9 updates:

Package	From	To
chrono	0.4.44	0.4.45
rusqlite	0.31.0	0.40.1
sha2	0.10.9	0.11.0
sha1	0.10.6	0.11.0
md-5	0.10.6	0.11.0
printpdf	0.7.0	0.9.1
rand	0.8.6	0.9.4
zip	7.2.0	8.6.0
ts-rs	10.1.0	12.0.1

Updates chrono from 0.4.44 to 0.4.45

Release notes

Sourced from chrono's releases.

0.4.45

What's Changed

• fix(tz): reject TZ offset hour of 24 to avoid FixedOffset overflow by @​SAY-5 in chronotope/chrono#1787
• tz_data: fix tzdata locations on Android by @​caruschalalamove in chronotope/chrono#1789

Commits

• 1703382 Prepare 0.4.45 release
• 881f9ab tz_data: fix tzdata locations on Android
• f14ead4 fix(tz): reject TZ offset hour of 24 to avoid FixedOffset overflow
• c6063e6 Update similar-asserts requirement from 1.6.1 to 2.0.0
• 120686c Bump codecov/codecov-action from 5 to 6
• See full diff in compare view

Updates rusqlite from 0.31.0 to 0.40.1

Release notes

Sourced from rusqlite's releases.

0.40.1

What's Changed

• Fix clippy warnings #1852
• Bump bundled SQLite version to 3.53.2 #1853
• Bump hashlink version #1855
• Fix SQL injection when SAVEPOINT name is tainted #1854

Full Changelog: rusqlite/rusqlite@v0.40.0...v0.40.1

0.40.0

What's Changed

• Breaking changes: Replace VTab macros by constructors #1823
• Breaking changes: Fix VTab::best_index #1824
• Asserts on VTab::connect aux and args #1825
• Breaking changes: Fix VTab::connect / create #1826
• Breaking changes: Allow opting out of using sqlite-wasm-rs on wasm32-unknown-unknown #1828, #1829
• Derive Default for SeriesTabCursor/ArrayTabCursor #1830
• Update link to pre-update hook #1831
• Breaking changes: Fix VTab::connect #1832
• impl From for FromSqlError #1833
• Breaking changes: Fix vtab::dequote #1835
• Bump bundled SQLCipher to version 4.14.0 #1837
• sqlite3_set_errmsg #1752
• Bump sqlite3-parser version #1838
• Fix UB in ToSqlOutput::from_rc #1839
• Ensure miri doesn't complain #1840
• Bump to actions/checkout@v6 #1842
• Add support to UtcDateTime #1843, #1844
• Bump bundled SQLite version to 3.53.1 #1848
• Replace some cfg(not by cfg_select #1850

Full Changelog: rusqlite/rusqlite@v0.39.0...v0.40.0

0.39.0

What's Changed

• Fix constraints on VTab Aux data #1778, #1771
• Fix docs.rs generation #1779
• Fix a small typo in rollback_hook docstring #1780
• Fix some warnings from Intellij #1781
• Minimal doc for features #1783
• Clear hooks only for owning connections #1785, #1784
• Fix link to SQLite C Interface, Prepare Flags #1787
• Comment functions which are not usable from a loadable extension #1789
• Factorize code #1792
• Update getrandom to 0.4 #1798
• Update Cargo.toml #1800
• Fix appveyor #1807
• Add support to unix timestamp for chrono, jiff and time #1808, #1803
• fix(trace): check that the sql string pointer is not NULL #1805
• Bump bundled SQLite version to 3.51.3 #1818

... (truncated)

Commits

• 6d3c282 Merge pull request #1856 from gwenn/0.40.1
• 2ba28b7 Prepare next release
• a021dc7 Merge pull request #1854 from gwenn/savepoint
• 534a149 Merge pull request #1855 from gwenn/hashlink
• 6d9764f Bump hashlink version
• fa574eb Use sqlite3_keyword_check
• 15385cc Fix SQL injection when SAVEPOINT name is tainted
• e5e48f2 Merge pull request #1853 from gwenn/3.53.2
• ac22292 Bump bundled SQLite version to 3.53.2
• c5f8828 Merge pull request #1852 from gwenn/clippy
• Additional commits viewable in compare view

Updates sha2 from 0.10.9 to 0.11.0

Commits

• ffe0939 Release sha2 0.11.0 (#806)
• 8991b65 Use the standard order of the [package] section fields (#807)
• 3d2bc57 sha2: refactor backends (#802)
• faa55fb sha3: bump keccak to v0.2 (#803)
• d3e6489 sha3 v0.11.0-rc.9 (#801)
• bbf6f51 sha2: tweak backend docs (#800)
• 155dbbf sha3: add default value for the DS generic parameter on TurboShake128/256...
• ed514f2 Use published version of keccak v0.2 (#799)
• 702bcd8 Migrate to closure-based keccak (#796)
• 827c043 sha3 v0.11.0-rc.8 (#794)
• Additional commits viewable in compare view

Updates sha1 from 0.10.6 to 0.11.0

Commits

• 2f00175 Release sha1 v0.11.0 (#810)
• 07d370c sha1: refactor backends selection (#808)
• 7c7cb76 Fix md5 project link in README (#809)
• ffe0939 Release sha2 0.11.0 (#806)
• 8991b65 Use the standard order of the [package] section fields (#807)
• 3d2bc57 sha2: refactor backends (#802)
• faa55fb sha3: bump keccak to v0.2 (#803)
• d3e6489 sha3 v0.11.0-rc.9 (#801)
• bbf6f51 sha2: tweak backend docs (#800)
• 155dbbf sha3: add default value for the DS generic parameter on TurboShake128/256...
• Additional commits viewable in compare view

Updates md-5 from 0.10.6 to 0.11.0

Commits

• b5051e5 Cut new releases (#812)
• 451c446 md5: replace force-soft crate feature with md5_backend configuration flag...
• 2f00175 Release sha1 v0.11.0 (#810)
• 07d370c sha1: refactor backends selection (#808)
• 7c7cb76 Fix md5 project link in README (#809)
• ffe0939 Release sha2 0.11.0 (#806)
• 8991b65 Use the standard order of the [package] section fields (#807)
• 3d2bc57 sha2: refactor backends (#802)
• faa55fb sha3: bump keccak to v0.2 (#803)
• d3e6489 sha3 v0.11.0-rc.9 (#801)
• Additional commits viewable in compare view

Updates printpdf from 0.7.0 to 0.9.1

Commits

• See full diff in compare view

Updates rand from 0.8.6 to 0.9.4

Changelog

Sourced from rand's changelog.

[0.9.4] — 2026-04-13

Fixes

• Fix doc build (#1766)

#1766: rust-random/rand#1766

[0.9.3] — 2026-04-11

This release back-ports a fix from v0.10. See also #1763.

Changes

• Deprecate feature log (#1764)
• Replace usages of doc_auto_cfg (#1764)

#1763: rust-random/rand#1763

[0.9.2] — 2025-07-20

Deprecated

• Deprecate rand::rngs::mock module and StepRng generator (#1634)

Additions

• Enable WeightedIndex<usize> (de)serialization (#1646)

[0.9.1] - 2025-04-17

Security and unsafe

• Revise "not a crypto library" policy again (#1565)
• Remove zerocopy dependency from rand (#1579)

Fixes

• Fix feature simd_support for recent nightly rust (#1586)

Changes

• Allow fn rand::seq::index::sample_weighted and fn IndexedRandom::choose_multiple_weighted to return fewer than amount results (#1623), reverting an undocumented change (#1382) to the previous release.

Additions

• Add rand::distr::Alphabetic distribution. (#1587)
• Re-export rand_core (#1604)

[0.9.0] - 2025-01-27

Security and unsafe

• Policy: "rand is not a crypto library" (#1514)
• Remove fork-protection from ReseedingRng and ThreadRng. Instead, it is recommended to call ThreadRng::reseed on fork. (#1379)
• Use zerocopy to replace some unsafe code (#1349, #1393, #1446, #1502)

Dependencies

• Bump the MSRV to 1.63.0 (#1207, #1246, #1269, #1341, #1416, #1536); note that 1.60.0 may work for dependents when using --ignore-rust-version
• Update to rand_core v0.9.0 (#1558)

Features

• Support std feature without getrandom or rand_chacha (#1354)
• Enable feature small_rng by default (#1455)

... (truncated)

Commits

• ba4c4c6 Prepare v0.9.4: fix doc build (#1766)
• 4b8b686 Document new error-handling behaviour for ReseedingRng
• 6c25c6d Prepare v0.9.4: fix doc build
• 1aeee9f Prepare v0.9.3: deprecate feature log (#1764)
• 98473ee Prepare rand 0.9.2 (#1648)
• 031a1f5 examples/print-next.rs (#1647)
• 6cb75ee Make UniformUsize serializable (#1646)
• 0c955c5 Add some tests for BlockRng, BlockRng64 and Xoshiro RNGs (#1639)
• 204084a Fix: Remove accidental editor swap file (#1636)
• 86262ac Deprecate rand::rngs::mock module and StepRng (#1634)
• Additional commits viewable in compare view

Updates zip from 7.2.0 to 8.6.0

Release notes

Sourced from zip's releases.

v8.6.0

🚀 Features

• add compression not supported as enum error (#774)

🐛 Bug Fixes

• allow for [u8] as filename (#775)

🚜 Refactor

• mark ZipFlags as non-exhaustive and add test for HasZipMetadata (#777)
• use and simplify is_dir (#776)

v8.5.1

🚜 Refactor

• change magic finder to stack buffer (#763)
• simplify extra field parsing (#764)

v8.5.0

🐛 Bug Fixes

• remove zip64 comment and add zip64 extensible data sector (#747)

🚜 Refactor

• remove useless magic in struct (#730)
• change extra_field from Arc<Vec> to Arc<[u8]> (#741)

⚙️ Miscellaneous Tasks

• cleanup README (#758)

v8.4.0

🚀 Features

• add a check for building benches (#748)

🚜 Refactor

• split part of read.rs for code readability (#744)
• remove unused allow (#745)

⚡ Performance

• skip BufReader for Stored files in make_reader (#739)

⚙️ Miscellaneous Tasks

... (truncated)

Changelog

Sourced from zip's changelog.

8.6.0 - 2026-04-25

🚀 Features

• add compression not supported as enum error (#774)

🐛 Bug Fixes

• allow for [u8] as filename (#775)

🚜 Refactor

• mark ZipFlags as non-exhaustive and add test for HasZipMetadata (#777)
• use and simplify is_dir (#776)

8.5.1 - 2026-04-06

🚜 Refactor

• change magic finder to stack buffer (#763)
• simplify extra field parsing (#764)

8.5.0 - 2026-04-01

🐛 Bug Fixes

• remove zip64 comment and add zip64 extensible data sector (#747)

🚜 Refactor

• remove useless magic in struct (#730)
• change extra_field from Arc<Vec> to Arc<[u8]> (#741)

⚙️ Miscellaneous Tasks

• cleanup README (#758)

8.4.0 - 2026-03-23

🚀 Features

• add a check for building benches (#748)

🚜 Refactor

• split part of read.rs for code readability (#744)
• remove unused allow (#745)

⚡ Performance

... (truncated)

Commits

• 771dfc5 chore: release v8.6.0 (#781)
• 8e480cc chore(deps): update sha1 requirement from 0.10 to 0.11 (#767)
• 2513bbe chore(deps): update aes requirement from 0.8 to 0.9 (#787)
• 957e240 ci(deps): bump actions/cache from 5.0.4 to 5.0.5 (#786)
• 0329d9d fix: allow for [u8] as filename (#775)
• ddcf854 ci(deps): bump github/codeql-action from 4.35.1 to 4.35.2 (#788)
• 42323a8 ci(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1 (#785)
• 901014a ci(deps): bump crate-ci/typos from 1.45.0 to 1.45.1 (#784)
• 07702d4 feat: add compression not supported as enum error (#774)
• 2d0c46b ci(deps): bump actions/upload-artifact from 7.0.0 to 7.0.1 (#783)
• Additional commits viewable in compare view

Updates ts-rs from 10.1.0 to 12.0.1

Release notes

Sourced from ts-rs's releases.

v12.0.0

Hello again! Today, we're excited to announce v12 of ts-rs! 🥳

While this is a breaking release, we expect a seamless upgrade for most users.
Even though we adjusted the representation of two types, their new and improved bindings should be less restrictive in most cases and therefore require minimal intervention.
Besides that, only code that interacts directly with the TS trait should be affected and easily fixed.

Changes to HashMap & friends (again)

With v12, we once again changed how HashMap, BTreeMap, etc. are represented in TypeScript.
As a result, bindings are more flexible, work in more scenarios, and better match the expectations of TypeScript developers.

With this change, HashMap<K, V> will result in { [key in K]: V }. The exception to this is when K is an enum - only then we generate { [key in K]?: V } instead.

Before, indexing into an object required dealing with undefined values. With this change, this is no longer forced onto users, which is the expected behavior for most TypeScript developers. If you want tsc to be pedantic about undefined values, enable noUncheckedIndexedAccess, which exists for this very purpose.

To aid migration, you can set the TS_RS_USE_V11_HASHMAP environment variable to revert to the previous behavior. However, we do intend on removing this flag in a future release.

Chunky Integers

By default, large integers that don't fit into a 64-bit float are exported as bigint.
With this release, this has now become configurable through environment variables and/or .cargo/config.toml.

Better Configuration!

Using environment variables, the generation and exporting of bindings can be configured. With v12, we now allow for the same level of control when exporting bindings programmatically.

The Type of Nothing

With this release, we altered the representation of unit structs and unit variants from Record<string, never> to Record<symbol, never>.
It is equally expressive, but avoids a quirk in the TS typesystem when contained within an enum variant.

What Else?

• Support for types from the arrayvec crate
• Support for types from the jiff crate
• More lenient handling of serde attributes, resulting in less warnings
• Improved documentation & README
• Bug fixes! 🙂

Changelog

• Ignore #[serde(crate = ...)] by @​gustavo-shigueo in Aleph-Alpha/ts-rs#447
• Add environment variable to configure binding for large integers by @​NyxCode in Aleph-Alpha/ts-rs#448
• refactor: fix clippy lints by @​sandr01d in Aleph-Alpha/ts-rs#455
• Add support for jiff v0.2 by @​demhadais in Aleph-Alpha/ts-rs#458
• Fix trait bound generation when using #[ts(optional)] on an Option<Generic> by @​gustavo-shigueo in Aleph-Alpha/ts-rs#454
• Fix skip until comma edge case by @​gustavo-shigueo in Aleph-Alpha/ts-rs#466
• Parse #[serde(borrow)] to not emit warnings by @​NyxCode in Aleph-Alpha/ts-rs#471
• Added support for arrayvec 0.6 & 0.7 by @​VirgileHenry in Aleph-Alpha/ts-rs#469
• Polish Docs & Release v12 by @​NyxCode in Aleph-Alpha/ts-rs#460

New Contributors

• @​sandr01d made their first contribution in Aleph-Alpha/ts-rs#455
• @​demhadais made their first contribution in Aleph-Alpha/ts-rs#458

... (truncated)

Changelog

Sourced from ts-rs's changelog.

master

Breaking

Features

Fixes

12.0.0

Breaking

• Change generated type of unit structs to Record<symbol, never> (#431)
• Change generated type of HashMap to { [key in K]: V } if K is not an enum (#446)
• Enable programmatic configuration of binding generation (#460)

Features

• Add TS_RS_LARGE_INT environment variable to configure binding for i64, u64, i128, etc. (#448)
• Add support for arrayvec (#469)
• Add support for jiff (#458)

Fixes

• Do not emit warning for #[serde(borrow)] (#471)
• Do not emit warning for #[serde(crate = "..")] (#447)
• Fix trait bound generation when using #[ts(optional)] on an Option<Generic> (#454)
• Fix parsing of comma-separated serde attributes (#466)

11.1.0

Features

• Add #[ts(repr(enum))] attribute (#425)
• Add support for #[ts(optional_fields)] in enums and enum variants (#432)
• Deprecate import-esm cargo feature in favour of RS_RS_IMPORT_EXTENSION (#423)

Fixes

• Fix bindings for chrono::Duration (#434)

11.0.1

Fixes

• Fix usage of #[ts(optional)] together with #[ts(type)]. (#416)

11.0.0

Breaking

• #[serde(skip_serializing)] and #[serde(skip_serializing_if = ..)] are no longer ignored when used together with #[serde(default)]. (#393)
• Changed return type of TS::output_path() from Option<&'static Path> to Option<PathBuf>. This will only break your code if you manually implement TS or directly interact with the TS trait.
• Replaced TS::DOCS with TS::docs(). This will only break your code if you manually implement TS or directly interact with the TS trait.
• Added OptionInnerType associated type to the TS trait. If you manually implement TS, you must set this associated type to Self in all of your implementations.
• Raised MSRV to 1.78.0 due to use of #[diagnostic::on_unimplemented] and let ... else { ... }

Features

• Add support for #[serde(skip_serializing)] and #[serde(skip_serializing_if = ..)] when used together with #[serde(default)]. Since these fields might be absent(#393)
• Add support for arbitrary expressions in doc attributes, e.g #[doc = concat!("defined in ", file!())].

... (truncated)

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml