• e76289f Release openssl v0.10.40
• 7d03994 Fix version constraint
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from serde_json's releases.

v1.0.81

• Work around indexmap/autocfg not always properly detecting whether a std sysroot crate is available (#885, thanks @​cuviper)

• a0ea937 Release 1.0.81
• 6c3dfe9 Make it clearer that preserve_order implies a std dependency
• f34ef95 Merge pull request #885 from cuviper/indexmap-std
• 27939bb Explicitly enable indexmap/std
• c0f9343 Ignore trait_duplication_in_bounds clippy false positives
• 048a64c Resolve type_repetition_in_bounds clippy lint
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from thiserror's releases.

1.0.37

• Documentation improvements

1.0.36

• Documentation improvements (#195, thanks @​matklad)

• 8a996a5 Release 1.0.37
• 3a0bac2 Merge pull request #197 from dtolnay/backtracedoc
• c2759ce Fix documentation mentioning 'backtrace()' method
• 7b226e3 Release 1.0.36
• f062061 Copy docs on struct error(transparent) into readme
• 5271eb3 Touch up PR 195
• 8e8e41d Merge pull request #195 from matklad/error-transparent
• c79b023 Update ui test suite to nightly-2022-09-25
• 765cd2a document that error(transparent) works with structs
• b37dc36 Raise minimum tested toolchain to rust 1.56
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• e43eb58 Release openssl v0.10.42
• 44528bb Release openssl-sys v0.9.76
• 0af10fb Merge pull request #1649 from maurer/boringssl
• c49476b Merge branch 'master' into boringssl
• 7ef9ab2 more build fixes
• aac4eb8 fix warnings
• 8e473dd Merge pull request #1694 from puzzlewolf/master
• f5cb751 Fix new clippy lints
• c26bdb3 Fix new compiler lints (explicit drop for Boxes)
• 46e9314 Add boringssl to CI
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from cached's changelog.

[0.37.0] / [cached_proc_macro[0.14.0]]

Added

Changed

• Mark the auto-generated "priming" functions with #[allow(dead_code)]
• Fix documentation typos
• Replace dev/build scripts with a Makefile

Removed

[0.36.0] / [cached_proc_macro[0.13.0]]

Added

• wasm support for non-io macros and stores

Changed

• Use instant crate for wasm compatible time

Removed

[0.35.0]

Added

• Added ExpiringValueCache for caching values that can themselves expire.
• Added COPYRIGHT file

Changed

Removed

• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from tower's releases.

tower 0.4.13

Added

• load_shed: Public constructor for Overloaded error (#661)

Fixed

• util: Fix hang with call_all when the Stream of requests is pending (#656)
• ready_cache: Ensure cancelation is observed by pending services (#668, fixes #415)
• docs: Fix a missing section header due to a typo (#646)
• docs: Fix broken links to Service trait (#659)

#661: tower-rs/tower#661 #656: tower-rs/tower#656 #668: tower-rs/tower#668 #415: tower-rs/tower#415 #646: tower-rs/tower#646 #659: tower-rs/tower#659

• 04527ae chore: prepare to release tower-service v0.3.2 (#673)
• 4cc7e7d chore: prepare to release tower v0.4.13 (#672)
• 051b094 ready-cache: Ensure cancelation can be observed (#668)
• a2305b3 ready_cache: just use pin_project for Pending (#667)
• b0e7a71 load_shed: make constructor for Overloaded error public (#661)
• 0feb182 service: clarify docs around shared resource consumption in poll_ready() (#662)
• c3d1607 fix: broken Service link (#659)
• d989a82 util: Fix call_all hang when stream is pending (#656)
• 7d81577 tower: fix docs typo (#646)
• d264bc7 ci: run MSRV checks with minimal dep versions (#670)
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from serde's releases.

v1.0.134

• Improve error messages on deserializing NonZero integers from a 0 value (#2158)

• 8932c85 Release 1.0.135
• 9f3dd3c Merge pull request #2163 from serde-rs/discord
• dd9b415 Add discord invite links
• 3bb4a5a Release 1.0.134
• 6164627 Merge pull request #2159 from serde-rs/nonzero
• 51aaf49 Write better Visitor for NonZero integers
• bc66aeb Add tests of deserializing NonZero
• 7e7044d Ignore clippy in number conversion tests
• 5498dc0 Add tests of num conversion errors
• ff04e8b Improve coverage of num conversion in test suite
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from simple_logger's releases.

v2.1.0

No release notes provided.

2.0.0

https://crates.io/crates/simple_logger/2.0.0

Version 2.0.0 changes the default from displaying timestamps in the local timezone to displaying timestamps in UTC. See issue #52 for more information.

This also introduces a timestamp display option using a static UTC offset via .with_utc_offset(...). See examples/timestamps_utc_offset.rs for an example. Be wary of using this in any long lived environment where daylight savings and other timezone changes might matter.

• 02a1a1d Merge branch 'colored2'
• 496d76a Constant width timestamps
• 6b3bb6d Merge pull request #53 from borntyping/feature/2.0.0
• ee4c93d Set required-features for examples
• 8dad754 Add an example for Timezones::None
• 63519f5 Add a timestamp option using a static UTC offset
• 36f984e Make UTC the default timestamps option, and change the output format to inclu...
• 2c6c7ec upgrade to colored 2.0
• 90db900 Run actions on release
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from tokio's releases.

Tokio v1.23.1

This release forward ports changes from 1.18.4.

Fixed

• net: fix Windows named pipe server builder to maintain option when toggling pipe mode (#5336).

#5336: tokio-rs/tokio#5336

Tokio v1.23.0

Fixed

• net: fix Windows named pipe connect (#5208)
• io: support vectored writes for ChildStdin (#5216)
• io: fix async fn ready() false positive for OS-specific events (#5231)

Changed

• runtime: yield_now defers task until after driver poll (#5223)
• runtime: reduce amount of codegen needed per spawned task (#5213)
• windows: replace winapi dependency with windows-sys (#5204)

#5208: tokio-rs/tokio#5208 #5216: tokio-rs/tokio#5216 #5213: tokio-rs/tokio#5213 #5204: tokio-rs/tokio#5204 #5223: tokio-rs/tokio#5223 #5231: tokio-rs/tokio#5231

Tokio v1.22.0

Added

• runtime: add Handle::runtime_flavor (#5138)
• sync: add Mutex::blocking_lock_owned (#5130)
• sync: add Semaphore::MAX_PERMITS (#5144)
• sync: add merge() to semaphore permits (#4948)
• sync: add mpsc::WeakUnboundedSender (#5189)

Added (unstable)

• process: add Command::process_group (#5114)
• runtime: export metrics about the blocking thread pool (#5161)
• task: add task::id() and task::try_id() (#5171)

Fixed

• macros: don't take ownership of futures in macros (#5087)
• runtime: fix Stacked Borrows violation in LocalOwnedTasks (#5099)
• runtime: mitigate ABA with 32-bit queue indices when possible (#5042)
• task: wake local tasks to the local queue when woken by the same thread (#5095)
• time: panic in release mode when mark_pending called illegally (#5093)
• runtime: fix typo in expect message (#5169)

... (truncated)

• 1a997ff chore: prepare Tokio v1.23.1 release
• a8fe333 Merge branch 'tokio-1.20.x' into tokio-1.23.x
• ba81945 chore: prepare Tokio 1.20.3 release
• 763bdc9 ci: run WASI tasks using latest Rust
• 9f98535 Merge remote-tracking branch 'origin/tokio-1.18.x' into fix-named-pipes-1.20
• 9241c3e chore: prepare Tokio v1.18.4 release
• 699573d net: fix named pipes server configuration builder
• 3ce5a26 chore: prepare Tokio v1.23 release (#5270)
• 644cb82 rt: fix *_closed false positives (#5231)
• a1316cd io: impl std::io::BufRead on SyncIoBridge\<T> (#5265)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• 7df5686 Release openssl v0.10.45
• f32af9f Release openssl-sys v0.9.80
• deac6b7 Merge pull request #1763 from CfirTsabari/cfirtsabari/deperecated-functions-1745
• 27edce9 Mark Openssl # deprecated functions
• f0ff8a7 Merge pull request #1762 from wiktor-k/fix-broken-relaxation
• 45e5dce Expose Cipher::cipher_final_unchecked
• 71013f7 Fix output buffer check introduced in #1733
• 64ba480 Merge pull request #1761 from vishwin/master
• 0d8d502 Expose EVP_PKEY_security_bits for LibreSSL 3.6.0 and later
• e01fbac openssl-sys: add LibreSSL 3.6.0 to cfgs
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from serde_json's releases.

v1.0.90

• Documentation improvements

v1.0.89

• Fix invalid JSON incorrectly accepted when a large number has no digits after decimal point (#953)

v1.0.88

• Optimize serde_json::Map's implementation of append and clone_from (#952, thanks @​Lucretiel)

• 26f147f Release 1.0.91
• d9cdb98 Opt out -Zrustdoc-scrape-examples on docs.rs
• 331511d Release 1.0.90
• 8753829 Replace ancient CI service provider in readme
• 0a43394 Update build status badge
• 8794844 Prevent build.rs rerunning unnecessarily on all source changes
• 0b54871 Time out workflows after 45 minutes
• ecad462 Fix renamed let_underscore_drop lint
• 9295c96 Resolve needless_borrowed_reference clippy lints
• d2f9368 Release 1.0.89
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from axum's releases.

axum - v0.6.1

• added: Expand the docs for Router::with_state (#1580)

#1580: tokio-rs/axum#1580

axum - v0.6.0

Routing

• fixed: Nested routers are now allowed to have fallbacks (#1521):

  let api_router = Router::new()
      .route("/users", get(|| { ... }))
      .fallback(api_fallback);
  let app = Router::new()
  // this would panic in 0.5 but in 0.6 it just works
  //
  // requests starting with /api but not handled by api_router
  // will go to /api_fallback
  .nest("/api", api_router);
  

  The outer router's fallback will still apply if a nested router doesn't have its own fallback:

  // this time without a fallback
  let api_router = Router::new().route("/users", get(|| { ... }));
  let app = Router::new()
  .nest("/api", api_router)
  // api_fallback will inherit this fallback
  .fallback(app_fallback);
  

• breaking: The request /foo/ no longer matches /foo/*rest. If you want to match /foo/ you have to add a route specifically for that (#1086)

  For example:

  use axum::{Router, routing::get, extract::Path};
  let app = Router::new()
  // this will match /foo/bar/baz
  .route("/foo/*rest", get(handler))
  // this will match /foo/
  .route("/foo/", get(handler))
  // if you want /foo to match you must also add an explicit route for it
  

... (truncated)

• 87a80ec axum v0.6.1 (#1588)
• 3279d64 Update to matchit 0.7 (#1582)
• 28f1996 Clarify nested outer fallbacks in CHANGELOG.md (#1581)
• eb2e933 Expand the docs for Router::with_state (#1580)
• 8d62697 add axum-http-auth-example to ECOSYSTEM.md (#1574)
• b984fec Remove notice about breaking changes from readme
• 834d4e5 docs: add axum-otel-metrics to axum ecosystem (#1573)
• 1b6780c axum 0.6 and friends 🎉 (#1570)
• 0b26411 Change Router::with_state and impl Service for Router\<()> (#1552)
• fde38f6 docs: Add axum-csrf-sync-pattern to ECOSYSTEM.md (#1567)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from bytes's changelog.

1.3.0 (November 20, 2022)

Added

• Rename and expose BytesMut::spare_capacity_mut (#572)
• Implement native-endian get and put functions for Buf and BufMut (#576)

Fixed

• Don't have important data in unused capacity when calling reserve (#563)

Documented

• Bytes::new etc should return Self not Bytes (#568)

• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)