Skip to content

chore(deps): bump strum from 0.26.3 to 0.28.0#1365

Open
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/cargo/strum-0.28.0
Open

chore(deps): bump strum from 0.26.3 to 0.28.0#1365
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/cargo/strum-0.28.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 17, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps strum from 0.26.3 to 0.28.0.

Release notes

Sourced from strum's releases.

v0.28.0

What's Changed

New Contributors

Full Changelog: Peternator7/strum@v0.27.2...v0.28.0

v0.27.2

What's Changed

New Contributors

Full Changelog: Peternator7/strum@v0.27.1...v0.27.2

v0.27.1

What's Changed

... (truncated)

Changelog

Sourced from strum's changelog.

0.28.0

  • #461: Allow any kind of passthrough attributes on EnumDiscriminants.

    • Previously only list-style attributes (e.g. #[strum_discriminants(derive(...))]) were supported. Now path-only (e.g. #[strum_discriminants(non_exhaustive)]) and name/value (e.g. #[strum_discriminants(doc = "foo")]) attributes are also supported.

  • #462: Add missing #[automatically_derived] to generated impls not covered by #444.

  • #466: Bump MSRV to 1.71, required to keep up with updated syn and windows-sys dependencies. This is a breaking change if you're on an old version of rust.

  • #469: Use absolute paths in generated proc macro code to avoid potential name conflicts.

  • #465: Upgrade phf dependency to v0.13.

  • #473: Fix cargo fmt / clippy issues and add GitHub Actions CI.

  • #477: strum::ParseError now implements core::fmt::Display instead std::fmt::Display to make it #[no_std] compatible. Note the Error trait wasn't available in core until 1.81 so strum::ParseError still only implements that in std.

  • #476: Breaking Change - EnumString now implements From<&str> (infallible) instead of TryFrom<&str> when the enum has a #[strum(default)] variant. This more accurately reflects that parsing cannot fail in that case. If you need the old TryFrom behavior, you can opt back in using parse_error_ty and parse_error_fn:

    #[derive(EnumString)]
#[strum(parse_error_ty = strum::ParseError, parse_error_fn = make_error)]
pub enum Color {
    Red,
    #[strum(default)]
    Other(String),
}
fn make_error(x: &str) -> strum::ParseError {
strum::ParseError::VariantNotFound
}

  • #431: Fix bug where EnumString ignored the parse_err_ty attribute when the enum had a #[strum(default)] variant.

  • #474: EnumDiscriminants will now copy default over from the original enum to the Discriminant enum.

    #[derive(Debug, Default, EnumDiscriminants)]
#[strum_discriminants(derive(Default))] // <- Remove this in 0.28.
enum MyEnum {
    #[default] // <- Will be the #[default] on the MyEnumDiscriminant
    #[strum_discriminants(default)] // <- Remove this in 0.28
    Variant0,
    Variant1 { a: NonDefault },
}

... (truncated)

Commits
  • 7376771 Peternator7/0.28 (#475)
  • 26e63cd Display exists in core (#477)
  • 9334c72 Make TryFrom and FromStr infallible if there's a default (#476)
  • 0ccbbf8 Honor parse_err_ty attribute when the enum has a default variant (#431)
  • 2c9e5a9 Automatically add Default implementation to EnumDiscriminant if it exists on ...
  • e241243 Fix existing cargo fmt + clippy issues and add GH actions (#473)
  • 639b67f feat: allow any kind of passthrough attributes on EnumDiscriminants (#461)
  • 0ea1e2d docs: Fix typo (#463)
  • 36c051b Upgrade phf to v0.13 (#465)
  • 9328b38 Use absolute paths in proc macro (#469)
  • Additional commits viewable in compare view

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels May 17, 2026
@dependabot
chore(deps): bump strum from 0.26.3 to 0.28.0
a808c1c 
Bumps [strum](https://github.com/Peternator7/strum) from 0.26.3 to 0.28.0.
- [Release notes](https://github.com/Peternator7/strum/releases)
- [Changelog](https://github.com/Peternator7/strum/blob/master/CHANGELOG.md)
- [Commits](Peternator7/strum@v0.26.3...v0.28.0)

---
updated-dependencies:
- dependency-name: strum
  dependency-version: 0.28.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/cargo/strum-0.28.0 branch from c0bcac0 to a808c1c Compare June 10, 2026 00:32
@chainTe

chainTe commented Jun 11, 2026

Copy link
Copy Markdown

Security Review

Result: No reportable findings
Reviewed range: 4255b04cd0c27688cbc32bb9f819b1d0d8a39722..a808c1cd68b6c9902ecab3e4735f9ffd26185d8d

Validation:

  • Existing broad tests were not run locally; CI is expected to cover them.
  • Reviewed the lockfile-only dependency bump from strum 0.26.3 to strum 0.28.0; no Fiber source, manifest, protocol, RPC, channel, payment, watchtower, or CKB transaction code changed.
  • cargo metadata --locked --no-deps --format-version 1 completed successfully.
  • cargo tree -i strum@0.28.0 --locked and cargo tree -i strum_macros@0.28.0 --locked failed because Cargo wanted to update Cargo.lock while --locked was set.

Notes:

  • No security issue was identified in the dependency bump itself, but please refresh or validate Cargo.lock so locked dependency inspection works cleanly.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update rust code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@chainTe