build(deps): bump the cargo-minor group across 1 directory with 4 updates

[dependabot]

Bumps the cargo-minor group with 4 updates in the / directory: soroban-spec-tools, clap, indexmap and syn.

Updates soroban-spec-tools from 23.1.4 to 23.2.1

Release notes

Sourced from soroban-spec-tools's releases.

23.2.1

🐛 Bug Fixes

• 🔧 Fix argument parsing for some types: Fixed invalid hash argument parsing for bytes, bytesn, timepoint, and duration types when invoking contracts. This resolves issues where certain data types weren't being parsed correctly from command-line arguments. (#2295) by @​mootz12

• 🔐 Fix Soroban auth signing for secure store keys: Resolved authentication signing issues when using secure store keys, improving the reliability of contract invocations with stored credentials. (#2230) by @​elizabethengelman

• 📝 Fix TypeScript bindings transaction option type: Corrected the transaction option type in generated TypeScript client bindings, ensuring proper type safety in JavaScript/TypeScript projects. (#2283) by @​chadoh

✨ Features & Enhancements

• 📦 Add contract instance to ledger entry fetch: Introduced new --instance flag for the ledger entry fetch contract-data command, making it easier to retrieve a contract's WASM hash based on its contract ID or alias. This simplifies contract inspection workflows. (#2269) by @​elizabethengelman

---

Full Changelog: stellar/stellar-cli@v23.2.0...v23.2.1

23.2.0

🆕 New Features

New Commands & Capabilities

• 📡 stellar tx fetch events — Fetch and inspect events from transactions with ease
• 🔑 ledger entry fetch — Retrieve ledger entries directly from the network
• 📚 Improved Help Documentation — CLI options are now organized into logical sections for better discoverability

🛠️ Enhanced Developer Experience

Contract Building & Optimization

• 🎯 Better Contract Optimization — Use stellar contract build --optimize for streamlined contract building
• 🏷️ CLI Version Injection — Automatically inject CLI version metadata into contracts during build
• ⚙️ Instruction Leeway Parameter — New --instruction-leeway option added across multiple commands for finer control

Network Configuration

• 🌐 Network-Aware TTL Settings — Max TTL extension now respects your network settings
• 📋 RPC Header Documentation — Learn how to pass the --rpc-header option for advanced configurations

Debugging & Diagnostics

• 🔍 Transaction Envelope Tracing — Enhanced simulation tracing for better debugging insights
• 🏥 Improved stellar doctor — Now includes data directory information for better diagnostics
• ⚠️ Better Error Messages — Container error messaging is more helpful and actionable
• 💬 Clearer Deprecation Warnings — Users are now better informed about deprecated commands and switches

🔐 Security & Data Integrity

• 🛡️ Key Management Safety — stellar keys add no longer overwrites existing keys unless explicitly requested with --overwrite

... (truncated)

Commits

• 496ac35 Bump version to 23.2.1 (#2296)
• 496dbcf Set soroban-sdk version to major only in new contracts (#2297)
• 0cd62ad Fix soroban auth signing updated for secure store keys
• 96e6d7a Patch invoke arg parsing for bytes, bytesn, timepoint, and duration (#2295)
• 9bcec7f fix(ts-bindings): client transaction option type (#2283)
• f99d62b Add contract instance to ledger entry fetch (#2269)
• 33f652b Force install innosetup. (#2289)
• 8c559e8 Bump version to 23.2.0 (#2287)
• d8bda44 Remove git dependency check. (#2286)
• 2f6b95e Add ledger entry fetch implementation (#2012)
• Additional commits viewable in compare view

Updates clap from 4.5.51 to 4.5.53

Release notes

Sourced from clap's releases.

v4.5.53

[4.5.53] - 2025-11-19

Features

• Add default_values_if, default_values_ifs

v4.5.52

[4.5.52] - 2025-11-17

Fixes

• Don't panic when args_conflicts_with_subcommands conflicts with an ArgGroup

Changelog

Sourced from clap's changelog.

[4.5.53] - 2025-11-19

Features

• Add default_values_if, default_values_ifs

[4.5.52] - 2025-11-17

Fixes

• Don't panic when args_conflicts_with_subcommands conflicts with an ArgGroup

Commits

• 3716f9f chore: Release
• 613b69a docs: Update changelog
• d117f7a Merge pull request #6028 from epage/arg
• cb8255d feat(builder): Allow quoted id's for arg macro
• 1036060 Merge pull request #6025 from AldaronLau/typos-in-faq
• 2fcafc0 docs: Fix minor grammar issues in FAQ
• a380b65 Merge pull request #6023 from epage/template
• 4d7ab14 chore: Update from _rust/main template
• b8a7ea4 chore(deps): Update Rust Stable to v1.87 (#18)
• f9842b3 chore: Avoid MSRV problems out of the box
• Additional commits viewable in compare view

Updates indexmap from 2.12.0 to 2.12.1

Changelog

Sourced from indexmap's changelog.

2.12.1 (2025-11-20)

• Simplified a lot of internals using hashbrown's new bucket API.

Commits

• cfad758 Merge pull request #424 from cuviper/buckets
• a96b9c7 Release 2.12.1
• 6245ee5 Use the bucket API from hashbrown v0.16.1
• See full diff in compare view

Updates syn from 2.0.110 to 2.0.111

Release notes

Sourced from syn's releases.

2.0.111

• Allow first argument of braced!, bracketed!, parenthesized! to be an otherwise unused variable (#1946)

Commits

• 4e50867 Release 2.0.111
• c57334b Merge pull request #1946 from dtolnay/unusedgroup
• 6a43384 Suppress unused variable warning on variables used in group macro
• 7ff6c86 Update actions/checkout@v5 -> v6
• 59ce6bb Update test suite to nightly-2025-11-20
• 3d91b8c Update test suite to nightly-2025-11-11
• 2d87fca Delete version requirement from readme
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions