From 0754e5f7162520b6283cefd7339977b168bb00b8 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 14 Apr 2023 08:51:00 -0700
Subject: [PATCH] Bump serde_yaml from 0.9.19 to 0.9.21 in /packer (#4664)
Summary:
Bumps [serde_yaml](https://github.com/dtolnay/serde-yaml) from 0.9.19 to 0.9.21.
Release notes
Sourced from serde_yaml's releases.
0.9.21
- Make
Tag::new panic if given empty string, since YAML has no syntax for an empty tag
0.9.20
- Allow an empty YAML document to deserialize to
None or Value::Null, in addition to the previously supported empty vector, empty map, and struct with no required fields
Commits
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `dependabot rebase` will rebase this PR
- `dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `dependabot merge` will merge this PR after your CI passes on it
- `dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `dependabot cancel merge` will cancel a previously requested merge and block automerging
- `dependabot reopen` will reopen this PR if it is closed
- `dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Pull Request resolved: https://github.com/facebook/flipper/pull/4664
Reviewed By: ivanmisuno
Differential Revision: D44995834
Pulled By: passy
fbshipit-source-id: dca70186444985211f298b9c4769db2343694da3
---
packer/Cargo.lock | 4 ++--
packer/Cargo.toml | 2 +-
2 files changed, 3 insertions(+), 3 deletions(-)
diff --git a/packer/Cargo.lock b/packer/Cargo.lock
index 86795aed7..3d8311a7e 100644
--- a/packer/Cargo.lock
+++ b/packer/Cargo.lock
@@ -661,9 +661,9 @@ dependencies = [
[[package]]
name = "serde_yaml"
-version = "0.9.19"
+version = "0.9.21"
source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "f82e6c8c047aa50a7328632d067bcae6ef38772a79e28daf32f735e0e4f3dd10"
+checksum = "d9d684e3ec7de3bf5466b32bd75303ac16f0736426e5a4e0d6e489559ce1249c"
dependencies = [
"indexmap",
"itoa",
diff --git a/packer/Cargo.toml b/packer/Cargo.toml
index 239318171..94f2267e0 100644
--- a/packer/Cargo.toml
+++ b/packer/Cargo.toml
@@ -14,7 +14,7 @@ clap = { version = "^3", features = ["derive", "cargo"] }
shellexpand = "^2"
tar = "0.4.38"
serde = { version = "^1", features = ["derive"] }
-serde_yaml = "0.9.19"
+serde_yaml = "0.9.21"
anyhow = "^1"
sha2 = "0.10.6"
data-encoding = "^2"