e262ade74e
Update MSRV to 1.77.2
...
Prior to this version, `Command` didn't properly escape command line
arguments on windows.
Although, the risk of attacker controlled arguments passed through fd is
relatively small, I think it is best to upgrade to a version that fixes
this.
The biggest risk for users is probably running fd with `--exec` or
`--exec-batch` on directories that contain files with names controlled
by another party (for example a git repo that you cloned).
See: https://blog.rust-lang.org/2024/04/09/cve-2024-24576.html
Security: CVE-2024-24576
2024-04-11 21:14:11 -06:00
11069e284a
Merge pull request #1530 from sharkdp/dependabot/cargo/lscolors-0.17.0
...
build(deps): bump lscolors from 0.16.0 to 0.17.0
2024-04-01 15:22:35 -06:00
6e2e86decb
Merge pull request #1529 from sharkdp/dependabot/cargo/aho-corasick-1.1.3
...
build(deps): bump aho-corasick from 1.1.2 to 1.1.3
2024-04-01 15:22:15 -06:00
453577651e
build(deps): bump crossbeam-channel from 0.5.11 to 0.5.12
...
Bumps [crossbeam-channel](https://github.com/crossbeam-rs/crossbeam ) from 0.5.11 to 0.5.12.
- [Release notes](https://github.com/crossbeam-rs/crossbeam/releases )
- [Changelog](https://github.com/crossbeam-rs/crossbeam/blob/master/CHANGELOG.md )
- [Commits](https://github.com/crossbeam-rs/crossbeam/compare/crossbeam-channel-0.5.11...crossbeam-channel-0.5.12 )
---
updated-dependencies:
- dependency-name: crossbeam-channel
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-04-01 17:31:12 +00:00
39c07b7b4c
build(deps): bump lscolors from 0.16.0 to 0.17.0
...
Bumps [lscolors](https://github.com/sharkdp/lscolors ) from 0.16.0 to 0.17.0.
- [Release notes](https://github.com/sharkdp/lscolors/releases )
- [Commits](https://github.com/sharkdp/lscolors/compare/0.16.0...v0.17.0 )
---
updated-dependencies:
- dependency-name: lscolors
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-04-01 17:31:06 +00:00
5910285db0
build(deps): bump aho-corasick from 1.1.2 to 1.1.3
...
Bumps [aho-corasick](https://github.com/BurntSushi/aho-corasick ) from 1.1.2 to 1.1.3.
- [Commits](https://github.com/BurntSushi/aho-corasick/compare/1.1.2...1.1.3 )
---
updated-dependencies:
- dependency-name: aho-corasick
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-04-01 17:31:00 +00:00
3b2fd158b5
Merge pull request #1502 from sharkdp/dependabot/cargo/tempfile-3.10.1
...
build(deps): bump tempfile from 3.9.0 to 3.10.1
2024-03-01 11:16:34 -07:00
7f74cd9e56
build(deps): bump chrono from 0.4.31 to 0.4.34
...
Bumps [chrono](https://github.com/chronotope/chrono ) from 0.4.31 to 0.4.34.
- [Release notes](https://github.com/chronotope/chrono/releases )
- [Changelog](https://github.com/chronotope/chrono/blob/main/CHANGELOG.md )
- [Commits](https://github.com/chronotope/chrono/compare/v0.4.31...v0.4.34 )
---
updated-dependencies:
- dependency-name: chrono
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-03-01 17:42:05 +00:00
6ae8da6a39
build(deps): bump tempfile from 3.9.0 to 3.10.1
...
Bumps [tempfile](https://github.com/Stebalien/tempfile ) from 3.9.0 to 3.10.1.
- [Changelog](https://github.com/Stebalien/tempfile/blob/master/CHANGELOG.md )
- [Commits](https://github.com/Stebalien/tempfile/compare/v3.9.0...v3.10.1 )
---
updated-dependencies:
- dependency-name: tempfile
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-03-01 17:41:57 +00:00
a4aed14337
build(deps): bump nu-ansi-term from 0.49.0 to 0.50.0
...
Bumps [nu-ansi-term](https://github.com/nushell/nu-ansi-term ) from 0.49.0 to 0.50.0.
- [Release notes](https://github.com/nushell/nu-ansi-term/releases )
- [Changelog](https://github.com/nushell/nu-ansi-term/blob/main/CHANGELOG.md )
- [Commits](https://github.com/nushell/nu-ansi-term/compare/v0.49.0...v0.50.0 )
---
updated-dependencies:
- dependency-name: nu-ansi-term
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-02-01 20:50:41 +00:00
9cde3c12a2
Merge pull request #1490 from sharkdp/dependabot/cargo/clap_complete-4.4.9
...
build(deps): bump clap_complete from 4.4.6 to 4.4.9
2024-02-01 13:50:25 -07:00
077d28d13a
build(deps): bump ignore from 0.4.21 to 0.4.22
...
Bumps [ignore](https://github.com/BurntSushi/ripgrep ) from 0.4.21 to 0.4.22.
- [Release notes](https://github.com/BurntSushi/ripgrep/releases )
- [Changelog](https://github.com/BurntSushi/ripgrep/blob/master/CHANGELOG.md )
- [Commits](https://github.com/BurntSushi/ripgrep/compare/ignore-0.4.21...ignore-0.4.22 )
---
updated-dependencies:
- dependency-name: ignore
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-02-01 18:34:09 +00:00
b55bb1e9be
build(deps): bump clap_complete from 4.4.6 to 4.4.9
...
Bumps [clap_complete](https://github.com/clap-rs/clap ) from 4.4.6 to 4.4.9.
- [Release notes](https://github.com/clap-rs/clap/releases )
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md )
- [Commits](https://github.com/clap-rs/clap/compare/clap_complete-v4.4.6...clap_complete-v4.4.9 )
---
updated-dependencies:
- dependency-name: clap_complete
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-02-01 18:33:20 +00:00
7a6cc92d6d
Merge pull request #1486 from sharkdp/dependabot/cargo/regex-1.10.3
...
build(deps): bump regex from 1.10.2 to 1.10.3
2024-02-01 11:33:08 -07:00
17895538a0
build(deps): bump crossbeam-channel from 0.5.10 to 0.5.11
...
Bumps [crossbeam-channel](https://github.com/crossbeam-rs/crossbeam ) from 0.5.10 to 0.5.11.
- [Release notes](https://github.com/crossbeam-rs/crossbeam/releases )
- [Changelog](https://github.com/crossbeam-rs/crossbeam/blob/master/CHANGELOG.md )
- [Commits](https://github.com/crossbeam-rs/crossbeam/compare/crossbeam-channel-0.5.10...crossbeam-channel-0.5.11 )
---
updated-dependencies:
- dependency-name: crossbeam-channel
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-02-01 17:54:58 +00:00
72ff1f9a87
build(deps): bump regex from 1.10.2 to 1.10.3
...
Bumps [regex](https://github.com/rust-lang/regex ) from 1.10.2 to 1.10.3.
- [Release notes](https://github.com/rust-lang/regex/releases )
- [Changelog](https://github.com/rust-lang/regex/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rust-lang/regex/compare/1.10.2...1.10.3 )
---
updated-dependencies:
- dependency-name: regex
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-02-01 17:54:48 +00:00
c66fc812ac
Update clap version
...
Fixes : #1407
2024-01-08 02:03:39 -07:00
58284b8dbe
Merge pull request #1470 from sharkdp/dependabot/cargo/crossbeam-channel-0.5.10
...
build(deps): bump crossbeam-channel from 0.5.8 to 0.5.10
2024-01-01 23:38:31 -05:00
7e19bad0a4
build(deps): bump tempfile from 3.8.1 to 3.9.0
...
Bumps [tempfile](https://github.com/Stebalien/tempfile ) from 3.8.1 to 3.9.0.
- [Changelog](https://github.com/Stebalien/tempfile/blob/master/CHANGELOG.md )
- [Commits](https://github.com/Stebalien/tempfile/compare/v3.8.1...v3.9.0 )
---
updated-dependencies:
- dependency-name: tempfile
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-01-01 18:07:49 +00:00
03e19a1ad2
build(deps): bump crossbeam-channel from 0.5.8 to 0.5.10
...
Bumps [crossbeam-channel](https://github.com/crossbeam-rs/crossbeam ) from 0.5.8 to 0.5.10.
- [Release notes](https://github.com/crossbeam-rs/crossbeam/releases )
- [Changelog](https://github.com/crossbeam-rs/crossbeam/blob/master/CHANGELOG.md )
- [Commits](https://github.com/crossbeam-rs/crossbeam/compare/crossbeam-channel-0.5.8...crossbeam-channel-0.5.10 )
---
updated-dependencies:
- dependency-name: crossbeam-channel
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-01-01 18:04:12 +00:00
24bb5216bb
build(deps): bump clap_complete from 4.4.4 to 4.4.5
...
Bumps [clap_complete](https://github.com/clap-rs/clap ) from 4.4.4 to 4.4.5.
- [Release notes](https://github.com/clap-rs/clap/releases )
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md )
- [Commits](https://github.com/clap-rs/clap/compare/clap_complete-v4.4.4...clap_complete-v4.4.5 )
---
updated-dependencies:
- dependency-name: clap_complete
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-01-01 17:33:45 +00:00
e3b40208d5
Preprations for fd 9 release
2023-12-19 11:28:59 +01:00
74b850a642
Merge pull request #1436 from sharkdp/dependabot/cargo/clap-4.4.10
...
build(deps): bump clap from 4.4.7 to 4.4.10
2023-12-01 11:18:35 -07:00
4202f3939e
build(deps): bump test-case from 3.2.1 to 3.3.1
...
Bumps [test-case](https://github.com/frondeus/test-case ) from 3.2.1 to 3.3.1.
- [Release notes](https://github.com/frondeus/test-case/releases )
- [Changelog](https://github.com/frondeus/test-case/blob/master/CHANGELOG.md )
- [Commits](https://github.com/frondeus/test-case/compare/v3.2.1...v3.3.1 )
---
updated-dependencies:
- dependency-name: test-case
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-12-01 18:39:13 +01:00
e1ecba2ce4
build(deps): bump lscolors from 0.15.0 to 0.16.0
...
Bumps [lscolors](https://github.com/sharkdp/lscolors ) from 0.15.0 to 0.16.0.
- [Release notes](https://github.com/sharkdp/lscolors/releases )
- [Commits](https://github.com/sharkdp/lscolors/compare/v0.15.0...0.16.0 )
---
updated-dependencies:
- dependency-name: lscolors
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-12-01 18:38:29 +01:00
4b4a74c988
build(deps): bump clap from 4.4.7 to 4.4.10
...
Bumps [clap](https://github.com/clap-rs/clap ) from 4.4.7 to 4.4.10.
- [Release notes](https://github.com/clap-rs/clap/releases )
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md )
- [Commits](https://github.com/clap-rs/clap/compare/v4.4.7...v4.4.10 )
---
updated-dependencies:
- dependency-name: clap
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-12-01 17:25:38 +00:00
571ebb349b
Bump ignore to 0.4.21
...
This includes all the patches from #1420 , so switch back to the official
release.
2023-11-26 14:39:25 -05:00
66c0637c90
Use a patched version of ignore for perf improvements
...
- d938e955afhttps://github.com/BurntSushi/ripgrep/pull/2624
- https://github.com/BurntSushi/ripgrep/pull/2642
2023-11-01 21:20:54 +01:00
c9df4296f9
Merge pull request #1419 from sharkdp/dependabot/cargo/clap_complete-4.4.4
...
build(deps): bump clap_complete from 4.4.3 to 4.4.4
2023-11-01 14:07:43 -04:00
7c5cf28ace
Merge pull request #1418 from sharkdp/dependabot/cargo/clap-4.4.7
...
build(deps): bump clap from 4.4.6 to 4.4.7
2023-11-01 14:07:26 -04:00
51002c842d
Merge pull request #1417 from sharkdp/dependabot/cargo/nix-0.27.1
...
build(deps): bump nix from 0.26.4 to 0.27.1
2023-11-01 13:40:57 -04:00
8e582971fa
Merge pull request #1416 from sharkdp/dependabot/cargo/regex-syntax-0.8.2
...
build(deps): bump regex-syntax from 0.7.5 to 0.8.2
2023-11-01 13:36:58 -04:00
8355d78359
build(deps): bump clap_complete from 4.4.3 to 4.4.4
...
Bumps [clap_complete](https://github.com/clap-rs/clap ) from 4.4.3 to 4.4.4.
- [Release notes](https://github.com/clap-rs/clap/releases )
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md )
- [Commits](https://github.com/clap-rs/clap/compare/clap_complete-v4.4.3...clap_complete-v4.4.4 )
---
updated-dependencies:
- dependency-name: clap_complete
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-11-01 17:20:14 +00:00
dbc1818073
build(deps): bump clap from 4.4.6 to 4.4.7
...
Bumps [clap](https://github.com/clap-rs/clap ) from 4.4.6 to 4.4.7.
- [Release notes](https://github.com/clap-rs/clap/releases )
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md )
- [Commits](https://github.com/clap-rs/clap/compare/v4.4.6...v4.4.7 )
---
updated-dependencies:
- dependency-name: clap
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-11-01 17:20:06 +00:00
e57ce7f2a4
build(deps): bump nix from 0.26.4 to 0.27.1
...
Bumps [nix](https://github.com/nix-rust/nix ) from 0.26.4 to 0.27.1.
- [Changelog](https://github.com/nix-rust/nix/blob/master/CHANGELOG.md )
- [Commits](https://github.com/nix-rust/nix/compare/v0.26.4...v0.27.1 )
---
updated-dependencies:
- dependency-name: nix
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-11-01 17:19:59 +00:00
d8f89fa59e
build(deps): bump regex-syntax from 0.7.5 to 0.8.2
...
Bumps [regex-syntax](https://github.com/rust-lang/regex ) from 0.7.5 to 0.8.2.
- [Release notes](https://github.com/rust-lang/regex/releases )
- [Changelog](https://github.com/rust-lang/regex/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rust-lang/regex/compare/regex-syntax-0.7.5...regex-syntax-0.8.2 )
---
updated-dependencies:
- dependency-name: regex-syntax
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-11-01 17:19:54 +00:00
350003d8da
build(deps): bump tempfile from 3.8.0 to 3.8.1
...
Bumps [tempfile](https://github.com/Stebalien/tempfile ) from 3.8.0 to 3.8.1.
- [Changelog](https://github.com/Stebalien/tempfile/blob/master/CHANGELOG.md )
- [Commits](https://github.com/Stebalien/tempfile/commits )
---
updated-dependencies:
- dependency-name: tempfile
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-11-01 17:19:49 +00:00
325d419e39
Replace num_cpus with std: 🧵 :available_parallelism
...
I think this might help startup time a little bit, since it looks like
on linux at least the std implementation uses syscalls to determine the
parallelism, whereas num_cpus was processing the /proc/cpuinfo file.
It also removes another dependency.
2023-10-25 02:00:31 -06:00
054bae01ef
maint: Remove use of unmaintained users crate
...
The users crate is no longer maintained. There is a maintained fork
called uzers, but we already have a dependency on nix, and that has the
functionality we need.
2023-10-21 23:37:32 -06:00
d9b69c8405
feat: Add a way to escape { and }in exec templates.
...
fixes #1303
2023-10-21 22:16:15 +02:00
a11f8426d4
Fix deprecation warning from chrono
...
Also change logic to use the latest time if the local time is ambiguous
(for example due to daylight savings)
2023-10-21 14:07:50 +02:00
7c39fff969
Prepare for 8.7.1 release
2023-10-18 21:44:34 -06:00
e6b5a4ef9d
bug: Update clap to 4.4.6
...
This also fixes a couple of problems that are now errors:
- Remove use of unstable-grouped feature flag that no longer exists
- Fix some conflicts rules with non-existant options
* has_results should have been quiet
* count doesn't exist. I'm not sure where it came from
Fixes : #1397
2023-10-17 23:12:03 -06:00
93cdb2628e
Merge pull request #1391 from sharkdp/dependabot/cargo/jemallocator-0.5.4
...
Bump jemallocator from 0.5.0 to 0.5.4
2023-10-01 21:28:57 -06:00
e2a298a84f
Bump jemallocator from 0.5.0 to 0.5.4
...
Bumps [jemallocator](https://github.com/tikv/jemallocator ) from 0.5.0 to 0.5.4.
- [Release notes](https://github.com/tikv/jemallocator/releases )
- [Changelog](https://github.com/tikv/jemallocator/blob/main/CHANGELOG.md )
- [Commits](https://github.com/tikv/jemallocator/compare/0.5.0...0.5.4 )
---
updated-dependencies:
- dependency-name: jemallocator
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-10-01 17:23:38 +00:00
d36c59920d
Bump regex from 1.9.1 to 1.9.6
...
Bumps [regex](https://github.com/rust-lang/regex ) from 1.9.1 to 1.9.6.
- [Release notes](https://github.com/rust-lang/regex/releases )
- [Changelog](https://github.com/rust-lang/regex/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rust-lang/regex/compare/1.9.1...1.9.6 )
---
updated-dependencies:
- dependency-name: regex
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-10-01 17:23:14 +00:00
32504fa3d5
Bump clap_complete to 4.4.1
...
This fixes an issue with fish shell completions that was causing
problems for fd.
2023-09-09 12:46:43 -07:00
9ffd57f4ef
Merge pull request #1373 from sharkdp/dependabot/cargo/chrono-0.4.28
...
Bump chrono from 0.4.26 to 0.4.28
2023-09-01 12:29:15 -06:00
d7e5dcf9d2
Bump chrono from 0.4.26 to 0.4.28
...
Bumps [chrono](https://github.com/chronotope/chrono ) from 0.4.26 to 0.4.28.
- [Release notes](https://github.com/chronotope/chrono/releases )
- [Changelog](https://github.com/chronotope/chrono/blob/main/CHANGELOG.md )
- [Commits](https://github.com/chronotope/chrono/compare/v0.4.26...v0.4.28 )
---
updated-dependencies:
- dependency-name: chrono
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-09-01 17:05:17 +00:00
b38ba68ccc
Bump clap_complete from 4.3.1 to 4.4.0
...
Bumps [clap_complete](https://github.com/clap-rs/clap ) from 4.3.1 to 4.4.0.
- [Release notes](https://github.com/clap-rs/clap/releases )
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md )
- [Commits](https://github.com/clap-rs/clap/compare/clap_complete-v4.3.1...clap_complete-v4.4.0 )
---
updated-dependencies:
- dependency-name: clap_complete
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-09-01 17:05:08 +00:00
Thayne McCombs
dependabot[bot]
Tavian Barnes
David Peter
Collin Styles