Bump regex from 1.11.1 to 1.11.3 in /ql

Open

Number: #20527
Type: Pull Request
State: Open

Author:

dependabot[bot]
Association: Contributor
Comments: 0

Created: September 26, 2025 at 03:06 AM UTC
(5 months ago)

Updated: September 26, 2025 at 03:06 AM UTC
(5 months ago)

Labels:
dependencies Rust

Description:

Bumps regex from 1.11.1 to 1.11.3.

Changelog

Sourced from regex's changelog.

1.11.3 (2025-09-25)

This is a small patch release with an improvement in memory usage in some cases.

Improvements:

[BUG #1297](rust-lang/regex#1297): Improve memory usage by trimming excess memory capacity in some spots.

1.11.2 (2025-08-24)

This is a new patch release of regex with some minor fixes. A larger number of typo or lint fix patches were merged. Also, we now finally recommend using std::sync::LazyLock.

Improvements:

[BUG #1217](rust-lang/regex#1217): Switch recommendation from once_cell to std::sync::LazyLock.

[BUG #1225](rust-lang/regex#1225): Add DFA::set_prefilter to regex-automata.

Bug fixes:

[BUG #1165](rust-lang/regex#1150): Remove std dependency from perf-literal-multisubstring crate feature.

[BUG #1165](rust-lang/regex#1165): Clarify the meaning of (?R)$ in the documentation.

[BUG #1281](rust-lang/regex#1281): Remove fuzz/ and record/ directories from published crate on crates.io.

Commits

ef1c2c3 1.11.3
ad5cd6c deps: bump regex-automata
ee69d9e changelog: 1.11.3
159fa3e regex-automata-0.4.11
02a62ba automata: call Vec::shrink_to_fit in a few strategic places
a76e0a0 cargo: exclude tests/fuzz from the package
19172cc style: inline formatting arguments
2695e29 ci: fix cross testing
d0aa586 1.11.2
a3bf4ad regex-cli-0.2.2
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Pull Request Statistics

Commits:
1

Files Changed:
3

Additions:
+88

Deletions:
-84

Package Dependencies

Package:
regex

Ecosystem:
cargo

Version Change:
1.11.1 → 1.11.3

Update Type:
Patch

Path:
/ql

Actions

View on GitHub View Repository All Dependabot PRs

Technical Details

ID:	`8464601`
UUID:	`2862418803`
Node ID:	`PR_kwDOCIafrM6qnQtz`
Host:	GitHub
Repository:	github/codeql
Merge State:	Unknown

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Dependabot

Bump regex from 1.11.1 to 1.11.3 in /ql

1.11.3 (2025-09-25)

1.11.2 (2025-08-24)

Pull Request Statistics

Package Dependencies

Actions

Technical Details