chore(deps): Bump regex from 1.8.3 to 1.8.4 (#17601)

Bumps [regex](https://github.com/rust-lang/regex) from 1.8.3 to 1.8.4. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/rust-lang/regex/blob/master/CHANGELOG.md">regex's changelog</a>.</em></p> <blockquote> <h1>1.8.4 (2023-06-05)</h1> <p>This is a patch release that fixes a bug where <code>(?-u:\B)</code> was allowed in Unicode regexes, despite the fact that the current matching engines can report match offsets between the code units of a single UTF-8 encoded codepoint. That in turn means that match offsets that split a codepoint could be reported, which in turn results in panicking when one uses them to slice a <code>&str</code>.</p> <p>This bug occurred in the transition to <code>regex 1.8</code> because the underlying syntactical error that prevented this regex from compiling was intentionally removed. That's because <code>(?-u:\B)</code> will be permitted in Unicode regexes in <code>regex 1.9</code>, but the matching engines will guarantee to never report match offsets that split a codepoint. When the underlying syntactical error was removed, no code was added to ensure that <code>(?-u:\B)</code> didn't compile in the <code>regex 1.8</code> transition release. This release, <code>regex 1.8.4</code>, adds that code such that <code>Regex::new(r"(?-u:\B)")</code> returns to the <code>regex <1.8</code> behavior of not compiling. (A <code>bytes::Regex</code> can still of course compile it.)</p> <p>Bug fixes:</p> <ul> <li>[BUG <a href="https://redirect.github.com/rust-lang/regex/issues/1006">#1006</a>](<a href="https://redirect.github.com/rust-lang/regex/issues/1006">rust-lang/regex#1006</a>): Fix a bug where <code>(?-u:\B)</code> was allowed in Unicode regexes, and in turn could lead to match offsets that split a codepoint in <code>&str</code>.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/rust-lang/regex/commit/5a34a39b72d85730065d3ffe4ce3715f2731e49a"><code>5a34a39</code></a> 1.8.4</li> <li><a href="https://github.com/rust-lang/regex/commit/407f6d3254525823a0981e00f5922940c28818ab"><code>407f6d3</code></a> changelog: 1.8.4</li> <li><a href="https://github.com/rust-lang/regex/commit/b2ca9c16dab559697ef152913a75479d7382efc1"><code>b2ca9c1</code></a> compile: make Regex::new(r"(?-u:\B)") fail again</li> <li>See full diff in <a href="https://github.com/rust-lang/regex/compare/1.8.3...1.8.4">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=regex&package-manager=cargo&previous-version=1.8.3&new-version=1.8.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
vectordotdev · Jun 5, 2023 · 657758d · 657758d
1 parent 7a55210
commit 657758d
Show file tree

Hide file tree

Showing 5 changed files with 6 additions and 6 deletions.
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/Cargo.toml b/Cargo.toml
@@ -293,7 +293,7 @@ rand = { version = "0.8.5", default-features = false, features = ["small_rng"] }
 rand_distr = { version = "0.4.3", default-features = false }
 rdkafka = { version = "0.31.0", default-features = false, features = ["tokio", "libz", "ssl", "zstd"], optional = true }
 redis = { version = "0.23.0", default-features = false, features = ["connection-manager", "tokio-comp", "tokio-native-tls-comp"], optional = true }
-regex = { version = "1.8.3", default-features = false, features = ["std", "perf"] }
+regex = { version = "1.8.4", default-features = false, features = ["std", "perf"] }
 roaring = { version = "0.10.1", default-features = false, optional = true }
 seahash = { version = "4.1.0", default-features = false }
 semver = { version = "1.0.17", default-features = false, features = ["serde", "std"], optional = true }

diff --git a/lib/codecs/Cargo.toml b/lib/codecs/Cargo.toml
@@ -17,7 +17,7 @@ memchr = { version = "2", default-features = false }
 once_cell = { version = "1.18", default-features = false }
 ordered-float = { version = "3.7.0", default-features = false }
 prost = { version = "0.11.8", default-features = false, features = ["std"] }
-regex = { version = "1.8.3", default-features = false, features = ["std", "perf"] }
+regex = { version = "1.8.4", default-features = false, features = ["std", "perf"] }
 serde = { version = "1", default-features = false, features = ["derive"] }
 serde_json = { version = "1", default-features = false }
 smallvec = { version = "1", default-features = false, features = ["union"] }

diff --git a/lib/vector-core/Cargo.toml b/lib/vector-core/Cargo.toml
@@ -38,7 +38,7 @@ proptest = { version = "1.2", optional = true }
 prost-types = { version = "0.11", default-features = false }
 prost = { version = "0.11", default-features = false, features = ["std"] }
 quanta = { version = "0.11.1", default-features = false }
-regex = { version = "1.8.3", default-features = false, features = ["std", "perf"] }
+regex = { version = "1.8.4", default-features = false, features = ["std", "perf"] }
 ryu = { version = "1", default-features = false }
 serde = { version = "1.0.163", default-features = false, features = ["derive", "rc"] }
 serde_json = { version = "1.0.96", default-features = false }

diff --git a/vdev/Cargo.toml b/vdev/Cargo.toml
@@ -30,7 +30,7 @@ os_info = { version = "3.7.0", default-features = false }
 # watch https://github.com/epage/anstyle for official interop with Clap
 owo-colors = { version = "3.5.0", features = ["supports-colors"] }
 paste = "1.0.12"
-regex = { version = "1.8.3", default-features = false, features = ["std", "perf"] }
+regex = { version = "1.8.4", default-features = false, features = ["std", "perf"] }
 reqwest = { version = "0.11", features = ["json", "blocking"] }
 serde = { version = "1.0", features = ["derive"] }
 serde_json = "1.0.96"