Bump git2 from 0.18.1 to 0.18.3

[dependabot[bot]]

Bumps git2 from 0.18.1 to 0.18.3.

Changelog

Sourced from git2's changelog.

0.18.3 - 2024-03-18

0.18.2...0.18.3

Added

• Added opts:: functions to get / set libgit2 mwindow options #1035

Changed

• Updated examples to use clap instead of structopt #1007

0.18.2 - 2024-02-06

0.18.1...0.18.2

Added

• Added opts::set_ssl_cert_file and opts::set_ssl_cert_dir for setting Certificate Authority file locations. #997
• Added TreeIter::nth which makes jumping ahead in the iterator more efficient. #1004
• Added Repository::find_commit_by_prefix to find a commit by a shortened hash. #1011
• Added Repository::find_tag_by_prefix to find a tag by a shortened hash. #1015
• Added Repository::find_object_by_prefix to find an object by a shortened hash. #1014

Changed

• ❗ Updated to libgit2 1.7.2. This fixes CVE-2024-24575 and CVE-2024-24577. #1017

Commits

• 04427a3 Merge pull request #1037 from ehuss/fix-publish
• 389a06f Fix publish not following redirect
• a7f2ac4 Merge pull request #1036 from rpelliard/release-0.19.0
• 1456fcd Release 0.18.3
• 3778952 Merge pull request #1035 from rpelliard/mwindow-opts
• 68880b2 make functions unsafe
• a75e007 Merge pull request #1007 from tamird/clap
• 1e6524e use libc::size_t as param type
• 8d18374 Add bindings for mwindow opts
• 3da58f3 Merge pull request #1023 from ehuss/ctest2
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note Automatic rebases have been disabled on this pull request as it has been open for over 30 days.