Update Rust crate bump-scope to v2

[hash-worker]

This PR contains the following updates:

Package	Type	Update	Change
bump-scope	workspace.dependencies	major	1.5.1 → 2.0.0

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

bluurryy/bump-scope (bump-scope)

v2.3.0

Compare Source

Added

• Add {BumpVec, BumpString}::shrink_to

Changed

• Improve performance of retain (using std's new implementation)
• Improve performance of alloc_iter*, alloc_fmt* and shrink_to_fit (by making shrink_to_fit exit early when capacity and length are the same)
• Improve documentation

Fixed

• Fix compilation with feature "nightly-clone-to-uninit" and without "panic-on-alloc"

v2.2.0

Compare Source

Added

• Add BumpPool::reset_to_start

Changed

• Improve documentation of reset, reset_to_start, by_value and crate

v2.1.0

Compare Source

Added

• Add Bump::reset_to_start to reset the bump allocator without deallocating chunks
• Add (try_)push_mut(_with) method to vector types
• Add (try_)insert_mut method to vector types

Changed

• Improve documentation

Deprecated

• Deprecate push_with_unchecked, use push_unchecked instead

v2.0.0

Compare Source

Added

• Add claim api that allows you to enter scopes from a shared reference
• Add SHRINKS setting, to toggle shrinking for the allocation api, DEALLOCATES no longer affects shrinking
• Add MINIMUM_CHUNK_SIZE setting
• Add (try_)by_value to turn a &mut BumpScope into a BumpScope
• Made scope_guard, scoped(_aligned) available for non-guaranteed-allocated allocators
• Made most of the api of Bump(Scope) now also available via traits in the new traits module

Changed

• Breaking: Replace generic const parameters with a single Settings parameter
• Breaking: Change scoped, scoped_aligned and aligned to take a closure with &mut BumpScope instead of BumpScope (you can get the bump scope by value using by_value)
• Breaking: Replace allocator settings configuration methods with new (borrow_(mut_)with_settings methods
• Breaking: Implement bytemuck and zerocopy allocator extension traits for all T: BumpAllocatorTypedScope and name them BumpAllocatorTypedScopeExt
• Breaking: Rename reserve_bytes to reserve
• Breaking: Move and rename bump allocator traits:
  • (Mut)BumpAllocator -> traits::(Mut)BumpAllocatorCore
  • (Mut)BumpAllocatorScope -> traits::(Mut)BumpAllocatorCoreScope
  • (Mut)BumpAllocatorTypedScopeExt -> traits::(Mut)BumpAllocatorTyped
  • (Mut)BumpAllocatorScopeExt -> traits::(Mut)BumpAllocatorTypedScope
• Breaking: Change BumpAllocatorCore trait safety invariants
• Breaking: Add prepare_allocation_rev and require it for allocate_prepared_rev, safety invariants for the prepare allocation api changed
• Change Default implementation of Bump(Scope)s which are !GUARANTEED_ALLOCATED to not allocate
• Remove branch when allocating on a non-guaranteed-allocated Bump(Scope), checking for a layout of 0
• Depend on serde_core instead of serde
• Improve documentation

Removed

• Breaking: Remove into_aligned, use with_settings
• Breaking: Remove as_mut_aligned, use borrow_mut_with_settings
• Breaking: Remove {as, as_mut, into}_guaranteed_allocated, use reserve + *with_settings
• Breaking: Remove alloc_layout (allocate_layout provides the same functionality)
• Breaking: Remove deprecated api

Fixed

• Breaking: Fix no_std builds with "serde" feature by depending on serde without default features
• Fix remaining capacity calculation in Bump(Scope)::reserve_bytes

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • "before 4am every weekday,every weekend"
• Automerge
  • "before 4am every weekday,every weekend"

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
hash	Ready	Preview, Comment	May 4, 2026 10:53am
hashdotdesign-tokens	Ready	Preview, Comment	May 4, 2026 10:53am
petrinaut	Ready	Preview, Comment	May 4, 2026 10:53am

[cursor]

PR Summary

Medium Risk
Major-version dependency bump that may introduce API/behavior changes for any crates using bump-scope, potentially causing build or runtime regressions. No application code changes are included beyond dependency/version resolution.

Overview
Updates the workspace dependency on bump-scope from 1.5.1 to 2.0.0 in Cargo.toml.

Regenerates Cargo.lock to resolve bump-scope to 2.3.0 (new checksum), with no other functional changes in the diff.

^{Reviewed by Cursor Bugbot for commit 404c318. Bugbot is set up for automated code reviews on this repo. Configure here.}

[augmentcode]

Review completed. 1 suggestion posted.

Comment augment review to trigger a new review at any time.

[augmentcode]

bump-scope v2 changed scoped to call the closure with &mut BumpScope (instead of an owned BumpScope), but libs/@local/hashql/core/src/heap/allocator.rs currently appears to assume an owned scope (AllocatorScope(scope)), so this bump may break hashql-core’s allocator wrappers.
Please double-check those wrappers against the v2 API (e.g., whether converting via by_value() is required) before merging.

Severity: high

_{🤖 Was this useful? React with 👍 or 👎, or 🚀 if it prevented an incident/outage.}

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 62.08%. Comparing base (1b02fbf) to head (404c318).
⚠️ Report is 10 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #8695   +/-   ##
=======================================
  Coverage   62.08%   62.08%           
=======================================
  Files        1341     1341           
  Lines      135072   135072           
  Branches     5744     5744           
=======================================
+ Hits        83854    83856    +2     
+ Misses      50310    50308    -2     
  Partials      908      908           

Flag	Coverage Δ
apps.hash-ai-worker-ts	1.41% <ø> (ø)
apps.hash-api	0.00% <ø> (ø)
blockprotocol.type-system	40.84% <ø> (ø)
local.claude-hooks	0.00% <ø> (ø)
local.harpc-client	51.24% <ø> (ø)
local.hash-backend-utils	0.00% <ø> (ø)
local.hash-graph-sdk	9.63% <ø> (ø)
local.hash-isomorphic-utils	0.00% <ø> (ø)
rust.antsi	0.00% <ø> (ø)
rust.error-stack	90.87% <ø> (ø)
rust.harpc-codec	84.70% <ø> (ø)
rust.harpc-net	96.22% <ø> (+0.03%)	⬆️
rust.harpc-tower	67.03% <ø> (ø)
rust.harpc-types	0.00% <ø> (ø)
rust.harpc-wire-protocol	92.23% <ø> (ø)
rust.hash-codec	72.76% <ø> (ø)
rust.hash-graph-authorization	62.34% <ø> (ø)
rust.hash-graph-postgres-store	26.38% <ø> (ø)
rust.hash-graph-store	37.76% <ø> (ø)
rust.hash-graph-temporal-versioning	47.95% <ø> (ø)
rust.hash-graph-types	0.00% <ø> (ø)
rust.hash-graph-validation	83.45% <ø> (ø)
rust.hashql-diagnostics	72.43% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.