Bump the cargo-dependencies group with 5 updates

[dependabot]

Bumps the cargo-dependencies group with 5 updates:

Package	From	To
bytes	1.9.0	1.10.0
chrono	0.4.39	0.4.40
serde	1.0.217	1.0.218
serde_json	1.0.138	1.0.139
tempfile	3.16.0	3.17.1

Updates bytes from 1.9.0 to 1.10.0

Release notes

Sourced from bytes's releases.

Bytes v1.10.0

1.10.0 (February 3rd, 2025)

Added

• Add feature to support platforms without atomic CAS (#467)
• try_get_* methods for Buf trait (#753)
• Implement Buf::chunks_vectored for Take (#617)
• Implement Buf::chunks_vectored for VecDeque<u8> (#708)

Fixed

• Remove incorrect guarantee for chunks_vectored (#754)
• Ensure that tests pass under panic=abort (#749)

Changelog

Sourced from bytes's changelog.

1.10.0 (February 3rd, 2025)

Added

• Add feature to support platforms without atomic CAS (#467)
• try_get_* methods for Buf trait (#753)
• Implement Buf::chunks_vectored for Take (#617)
• Implement Buf::chunks_vectored for VecDeque<u8> (#708)

Fixed

• Remove incorrect guarantee for chunks_vectored (#754)
• Ensure that tests pass under panic=abort (#749)

Commits

• e0f3a25 chore: prepare bytes v1.10.0 (#766)
• 16fd473 Add feature to support platforms without atomic CAS (#467)
• 71824b0 ci: test AArch64 and run tests instead of build in cross job (#763)
• 7a87660 Use [lints] to address unexpected_cfgs lint (#762)
• 3ab876f Try get methods for Buf trait (#753)
• a1b1208 Disable test_bytes_vec_alloc test on miri (#755)
• aae4969 Add specialized Buf::chunks_vectored for Take (#617)
• 103d7bf Remove incorrect guarantee for chunks_vectored (#754)
• 16cc574 Implement Buf::chunks_vectored for VecDeque\<u8> (#708)
• 0e9e4fc Expand Buf tests (#747)
• Additional commits viewable in compare view

Updates chrono from 0.4.39 to 0.4.40

Release notes

Sourced from chrono's releases.

0.4.40

What's Changed

• Add Month::num_days() by @​djc in chronotope/chrono#1645
• Update Windows dependencies by @​kennykerr in chronotope/chrono#1646
• Feature/round_up method on DurationRound trait by @​MagnumTrader in chronotope/chrono#1651
• Expose write_to for DelayedFormat by @​tugtugtug in chronotope/chrono#1654
• Update LICENSE.txt by @​maximevtush in chronotope/chrono#1656
• docs: fix minor typo by @​samfolo in chronotope/chrono#1659
• Use NaiveDateTime for internal tz_info methods. by @​AVee in chronotope/chrono#1658
• Upgrade to windows-bindgen 0.60 by @​djc in chronotope/chrono#1665
• Add quarter (%q) date string specifier by @​drinkcat in chronotope/chrono#1666

Commits

• 2b7a28e Bump version to 0.4.40
• 6d29c8a Add quarter (%q) date string specifier
• 07216ae Upgrade to windows-bindgen 0.60
• bf1973c Use similar-asserts to show bindgen diff
• d0f8b59 Restrict MSRV to check --lib
• 1f345fd Switch to 2024 idiom
• 7f6cf5e Switch to 2024 style
• 11d227a Apply suggestions from clippy 1.85
• 15e287b Use NaiveDateTime for internal tz_info methods. (#1658)
• 8317e7c docs: fix minor typo
• Additional commits viewable in compare view

Updates serde from 1.0.217 to 1.0.218

Release notes

Sourced from serde's releases.

v1.0.218

• Documentation improvements

Commits

• 7bfd518 Release 1.0.218
• 723a949 Merge pull request #2895 from dtolnay/stabledoc
• 2b44efb Point standard library links to stable
• 03dc0fc Merge pull request #2894 from dtolnay/doclink
• 85cb0c4 Convert html links to intra-doc links
• abe7194 Update ui test suite to nightly-2025-02-12
• aaccac7 Unset doc-scrape-examples for lib target
• 7cd4d84 Update ui test suite to nightly-2025-02-07
• 04ff3e8 More precise gitignore patterns
• dc3031b Remove *.sw[po] from gitignore
• Additional commits viewable in compare view

Updates serde_json from 1.0.138 to 1.0.139

Release notes

Sourced from serde_json's releases.

v1.0.139

• Documentation improvements

Commits

• 4d4f53c Release 1.0.139
• 5d6b32f Merge pull request #1242 from dtolnay/writefloat
• e5bb8bd Document behavior of write_f32/f64 on non-finite floats
• 7a79781 Merge pull request #1241 from dtolnay/doclink
• 13591f1 Convert html links to intra-doc links
• 1d7378e Unset doc-scrape-examples for lib target
• 1174c5f Resolve unnecessary_semicolon pedantic clippy lint
• See full diff in compare view

Updates tempfile from 3.16.0 to 3.17.1

Changelog

Sourced from tempfile's changelog.

3.17.1

• Fix build with windows-sys 0.52. Unfortunately, we have no CI for older windows-sys versions at the moment...

3.17.0

• Make sure to use absolute paths in when creating unnamed temporary files (avoids a small race in the "immediate unlink" logic) and in Builder::make_in (when creating temporary files of arbitrary types).
• Prevent a theoretical crash that could (maybe) happen when a temporary file is created from a drop function run in a TLS destructor. Nobody has actually reported a case of this happening in practice and I have been unable to create this scenario in a test.
• When reseeding with getrandom, use platform (e.g., CPU) specific randomness sources where possible.
• Clarify some documentation.
• Unlink unnamed temporary files on windows immediately when possible instead of waiting for the handle to be closed. We open files with "Unix" semantics, so this is generally possible.

Commits

• 714a259 chore: release 3.17.1
• 78309ed fix: cast handle to the windows crate HANDLE (#332)
• 6e7d167 chore: release 3.17.0
• 3718075 doc: remove incorrect documentation about windows and open files
• 461369f feat: delete unnamed temporary files on windows immediately
• 78d30a2 doc: clarify "inner file will be deleted" documentation (#329)
• 0fe11c4 doc: document how to "keep" temporary files/dirs after creation (#328)
• 35e0629 feat: simplify getrandom call (#325)
• 1e5059f fix: handle TLS deallocation (#324)
• c7b2e1a chore: simplify reborrow
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions