Skip to content

chore(deps): bump serde_json from 1.0.149 to 1.0.150#15

Open
dependabot[bot] wants to merge 5 commits into
mainfrom
dependabot/cargo/serde_json-1.0.150
Open

chore(deps): bump serde_json from 1.0.149 to 1.0.150#15
dependabot[bot] wants to merge 5 commits into
mainfrom
dependabot/cargo/serde_json-1.0.150

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 23, 2026

Copy link
Copy Markdown
Contributor

Bumps serde_json from 1.0.149 to 1.0.150.

Release notes

Sourced from serde_json's releases.

v1.0.150

Commits
  • a1ae73a Release 1.0.150
  • 1a360b0 Merge pull request #1324 from puneetdixit200/reject-non-string-enum-keys
  • 2037b63 Reject non-string enum object keys
  • 5d30df6 Resolve manual_assert_eq pedantic clippy lint
  • dc8003a Raise required compiler for preserve_order feature to 1.85
  • a42fa98 Unpin CI miri toolchain
  • 684a60e Pin CI miri to nightly-2026-02-11
  • 7c7da33 Raise required compiler to Rust 1.71
  • acf4850 Simplify Number::is_f64
  • 6b8ceab Resolve unnecessary_map_or clippy lint
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Jun 23, 2026
spidy and others added 3 commits June 28, 2026 12:54
- Shared: RunCommandResponse fields for truncated/timed_out/duration_ms
- Agent: bounded capture with PGID tracking and output limit
- Server: RunCommand-based API exec with output collection
bump server: sanitize command string before writing to audit log.
Strip control characters, truncate to 512 chars to prevent log injection.
Require explicit trusted-proxy configuration, remove the example administrator login, and build the Kubernetes agent from the committed workspace lock. Helm now refuses implicit default service accounts and drops unused ConfigMap privileges. Update component pointers and prune vulnerable or unmaintained dependency paths.
@dependabot dependabot Bot force-pushed the dependabot/cargo/serde_json-1.0.150 branch from 30df629 to 49d4b48 Compare June 30, 2026 18:13
sppidy and others added 2 commits July 1, 2026 00:06
Use the default GitHub token for public recursive submodules so Dependabot pull requests can run without repository secrets. Include the server workspace member in the Kubernetes agent image checkout and trigger paths because its manifest is required by the hardened Docker build.
Bumps [serde_json](https://github.com/serde-rs/json) from 1.0.149 to 1.0.150.
- [Release notes](https://github.com/serde-rs/json/releases)
- [Commits](serde-rs/json@v1.0.149...v1.0.150)

---
updated-dependencies:
- dependency-name: serde_json
  dependency-version: 1.0.150
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@sppidy sppidy force-pushed the dependabot/cargo/serde_json-1.0.150 branch from 49d4b48 to 53f447d Compare June 30, 2026 23:44
@sppidy sppidy force-pushed the main branch 2 times, most recently from 5c59612 to ef35864 Compare July 3, 2026 18:28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update rust code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant