From 89b9ec593dd5b037ff968c72de8af9b5ad0a005e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 3 Mar 2025 16:02:39 -0800
Subject: [PATCH] Build(deps): Bump serde_json from 1.0.139 to 1.0.140 (#3566)
Bumps [serde_json](https://github.com/serde-rs/json) from 1.0.139 to
1.0.140.
Release notes
Sourced from serde_json's
releases.
v1.0.140
- Documentation improvements
Commits
7627834
Release 1.0.140d77a498
Merge pull request #1245
from serde-rs/powerpcb34d317
Delete unused gcc installationf7200c3
Ignore unbuffered_bytes clippy lint76cd4fb
Ignore elidable_lifetime_names pedantic clippy lint400eaa9
Point standard library links to stable- See full diff in compare
view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
Cargo.lock | 4 ++--
src/core/Cargo.toml | 2 +-
2 files changed, 3 insertions(+), 3 deletions(-)
diff --git a/Cargo.lock b/Cargo.lock
index 4e4233dc5..954bd7d2a 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -1555,9 +1555,9 @@ dependencies = [
[[package]]
name = "serde_json"
-version = "1.0.139"
+version = "1.0.140"
source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "44f86c3acccc9c65b153fe1b85a3be07fe5515274ec9f0653b4a0875731c72a6"
+checksum = "20068b6e96dc6c9bd23e01df8827e6c7e1f2fddd43c21810382803c136b99373"
dependencies = [
"itoa",
"memchr",
diff --git a/src/core/Cargo.toml b/src/core/Cargo.toml
index 698647e43..65f24d31c 100644
--- a/src/core/Cargo.toml
+++ b/src/core/Cargo.toml
@@ -56,7 +56,7 @@ rkyv = { version = "0.7.45", optional = true }
roaring = "0.10.10"
roots = "0.0.8"
serde = { version = "1.0.218", features = ["derive"] }
-serde_json = "1.0.139"
+serde_json = "1.0.140"
statrs = "0.18.0"
streaming-stats = "0.2.3"
thiserror = "2.0"