xmlserde icon indicating copy to clipboard operation
xmlserde copied to clipboard
verified publisher icon ImJeremyHe

build(deps): update quick-xml requirement from 0.37 to 0.38

Open dependabot[bot] opened this issue 10 months ago • 0 comments

Updates the requirements on quick-xml to permit the latest version.

Changelog

Sourced from quick-xml's changelog.

0.38.0 -- 2025-06-28

Significant changes

Now references to entities (as predefined, such as <, as user-defined) reported as a new Event::GeneralRef. Caller can parse the content of the entity and stream events from it as it is required by the XML specification. See the updated custom_entities example!

Implement whitespace behavior in the standard in Deserializer, which says string primitive types should preserve whitespace, while all other primitives have collapse behavior.

New Features

  • #863: Add Attributes::into_map_access(&str) and Attributes::into_deserializer() when serialize feature is enabled. This will allow do deserialize serde types right from attributes. Both methods returns the same type which implements serde's Deserializer and MapAccess traits.
  • #766: Allow to parse resolved entities as XML fragments and stream events from them.
  • #766: Added new event Event::GeneralRef with content of [general entity].
  • #766: Added new configuration option allow_dangling_amp which allows to have a & not followed by ; in the textual data which is required for some applications for compatibility reasons.
  • #285: Add ability to quick_xml::de::Text to access text with trimmed spaces

Bug Fixes

  • #868: Allow to have both $text and $value special fields in one struct. Previously any text will be recognized as $value field even when $text field is also presented.
  • #868: Skip text events when deserialize a sequence of items overlapped with text (including CDATA).
  • #841: Do not strip xml prefix from the attributes when map them to struct fields in Deserializer.

Misc Changes

  • #863: Remove From<QName<'a>> for BytesStart<'a> because now BytesStart stores the encoding in which its data is encoded, but QName is a simple wrapper around byte slice.
  • #766: BytesText::unescape and BytesText::unescape_with replaced by BytesText::decode. Now Text events does not contain escaped parts which are reported as Event::GeneralRef.

#285: tafia/quick-xml#285 #766: tafia/quick-xml#766 #841: tafia/quick-xml#841 #863: tafia/quick-xml#863 #868: tafia/quick-xml#868 [general entity]: https://www.w3.org/TR/xml11/#gen-entity

0.37.5 -- 2025-04-27

New Features

... (truncated)

Commits
  • e8806e0 Release 0.38.0
  • 7c4b702 Fix incorrect references in the documentation
  • 2cbb2b8 Merge pull request #873 from curatorsigma/serde_roundtrip_xml_attrs
  • bc18c57 serde: allow xml: attributes to roundtrip
  • 899d573 Skip unwanted text events in sequences
  • 5942a13 Add regression test for #868
  • f152aec Allow both &text and $value fields in the same struct
  • d6dfeed Merge pull request #872 from Mingun/update-compare
  • 6017acf Merge pull request #865 from ggodlewski/untrim
  • 15a3e86 compare: Put each group into its own file to be able to run them independentl...
  • Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

dependabot[bot] avatar Jul 01 '25 00:07 dependabot[bot]