Skip to content

chore(deps): bump similar-asserts from 1.7.0 to 2.0.0#25295

Open
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/cargo/similar-asserts-2.0.0
Open

chore(deps): bump similar-asserts from 1.7.0 to 2.0.0#25295
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/cargo/similar-asserts-2.0.0

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 27, 2026
edited
Loading

Bumps similar-asserts from 1.7.0 to 2.0.0.

Changelog

Sourced from similar-asserts's changelog.

2.0.0

  • Raised the crate edition to Rust 2024 and updated the MSRV to Rust 1.85.
  • Upgraded the similar dependency to 3.0.0.
  • Modernized CI workflows to current GitHub Actions and added PR runs.
  • Replaced atomic env-var caching with OnceLock.
  • Minor documentation and wording fixes.
Commits
  • 4eff50b chore(release): 2.0.0
  • 265c6e7 chore(ci): add trusted publishing workflow
  • 7700317 chore(rust): modernize toolchain, deps, and CI
  • See full diff in compare view

@dependabot dependabot Bot added domain: deps Anything related to Vector's dependencies no-changelog Changes in this PR do not need user-facing explanations in the release changelog labels Apr 27, 2026
@dependabot dependabot Bot requested a review from a team as a code owner April 27, 2026 15:30
@github-actions github-actions Bot added the domain: core Anything related to core crates i.e. vector-core, core-common, etc label Apr 27, 2026
@dependabot dependabot Bot force-pushed the dependabot/cargo/similar-asserts-2.0.0 branch 6 times, most recently from 81cd584 to 3055a76 Compare May 5, 2026 00:09
@dependabot dependabot Bot force-pushed the dependabot/cargo/similar-asserts-2.0.0 branch from 3055a76 to f7d0cdd Compare May 6, 2026 16:15
@chatgpt-codex-connector
Copy link
Copy Markdown

chatgpt-codex-connector Bot commented May 6, 2026

💡 Codex Review

vector/Cargo.lock

Line 10710 in f7d0cdd

version = "2.0.0"

P1 Badge Update the root similar-asserts requirement

This lockfile now has the only similar-asserts package pinned to 2.0.0, but the workspace root Cargo.toml still declares the root crate's dev-dependency as similar-asserts = "1.7.0". When CI or developers build/test the root package with locked dependencies, Cargo cannot satisfy that ^1.7.0 requirement from a lockfile containing only 2.0.0, so the root tests will fail dependency resolution unless the root manifest is bumped too or both versions are kept in Cargo.lock.

ℹ️ About Codex in GitHub

Codex has been enabled to automatically review pull requests in this repo. Reviews are triggered when you

  • Open a pull request for review
  • Mark a draft as ready
  • Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

When you sign up for Codex through ChatGPT, Codex can also answer questions or update the PR, like "@codex address that feedback".

@dependabot
chore(deps): bump similar-asserts from 1.7.0 to 2.0.0
a681b1f 
Bumps [similar-asserts](https://github.com/mitsuhiko/similar-asserts) from 1.7.0 to 2.0.0.
- [Changelog](https://github.com/mitsuhiko/similar-asserts/blob/main/CHANGELOG.md)
- [Commits](mitsuhiko/similar-asserts@1.7.0...2.0.0)

---
updated-dependencies:
- dependency-name: similar-asserts
  dependency-version: 2.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/cargo/similar-asserts-2.0.0 branch from f7d0cdd to a681b1f Compare May 6, 2026 18:41
chatgpt-codex-connector[bot]
chatgpt-codex-connector Bot reviewed May 6, 2026
View reviewed changes
Copy link
Copy Markdown

@chatgpt-codex-connector chatgpt-codex-connector Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: a681b1f8fb

ℹ️ About Codex in GitHub

Codex has been enabled to automatically review pull requests in this repo. Reviews are triggered when you

  • Open a pull request for review
  • Mark a draft as ready
  • Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

When you sign up for Codex through ChatGPT, Codex can also answer questions or update the PR, like "@codex address that feedback".

Comment thread Cargo.lock
[[package]]
name = "similar-asserts"
version = "1.7.0"
version = "2.0.0"
Copy link
Copy Markdown

@chatgpt-codex-connector chatgpt-codex-connector Bot May 6, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

P1 Badge Keep the root similar-asserts requirement in sync

The workspace root package still declares similar-asserts = "1.7.0" in its dev-dependencies (Cargo.toml:498), but this lockfile now contains only similar-asserts 2.0.0. When the root package's dev-dependencies are resolved (for example by root/workspace test or check commands, especially under locked CI), the ^1.7.0 requirement cannot be satisfied by 2.0.0, so Cargo has to rewrite Cargo.lock or fail. Please bump the root dev-dependency as well, or keep a 1.7.x lock entry for the root package.

Useful? React with 👍 / 👎.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@chatgpt-codex-connector chatgpt-codex-connector[bot] chatgpt-codex-connector[bot] left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

domain: core Anything related to core crates i.e. vector-core, core-common, etc domain: deps Anything related to Vector's dependencies no-changelog Changes in this PR do not need user-facing explanations in the release changelog

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants