deps: bump pdf_oxide from 0.3.45 to 0.3.46

[dependabot]

Bumps pdf_oxide from 0.3.45 to 0.3.46.

Release notes

Sourced from pdf_oxide's releases.

v0.3.46 | Pluggable cryptographic provider — FIPS 140-3 compliance for

Added

• Raw RGBA pixel buffer, SIMD downscaling, and thread-safe rendering (#446, #481) — page.render_pixmap() (Python), renderToPixmap() (Node.js / Go), and Page.RenderToRgba() (C#) expose the premultiplied RGBA8888 buffer directly from tiny_skia::Pixmap::data(), eliminating the encode→decode roundtrip for callers that need raw pixels (PIL, sharp, System.Drawing.Bitmap, image.RGBA). Downscaling is now SIMD-accelerated via fast_image_resize (ARM NEON, x86 AVX2), replacing the previous bilinear path. Concurrent render_* calls on the same PdfDocument are now safe: all rendering functions take &PdfDocument (shared reference) and all interior-mutable state is already guarded by per-field Mutex, so the FFI layer no longer produces aliased &mut references and concurrent renders run without a global serialisation bottleneck. Requested by @​mara004 and @​potatochipcoconut.

• ConversionOptions::exclude_regions / include_region (#484) — New spatial filtering fields allow callers to exclude rectangular regions from extraction output or restrict extraction to a single bounding rectangle. Backed by SpatialCollectionFiltering trait methods filter_by_rect / exclude_rects.

• PageFontStats (#484) — New layout::PageFontStats struct computed in O(n) over spans; exposes dominant_em, dominant_line_height, dominant_char_width, and body_font_name. All layout heuristics now derive absolute thresholds from these measurements instead of hardcoded constants, improving correctness across a wider range of font sizes.

Fixed

• JBIG2-compressed scanner PDFs render as blank pages (#332) — The pass-through Jbig2Decoder returned compressed bytes unchanged, causing a dimension mismatch and a silent image drop. Integrates hayro-jbig2 v0.3 (pure-Rust, Apache-2.0 OR MIT); embedded JBIG2 bitstreams are decoded via hayro_jbig2::Image::new_embedded, with JBIG2Globals loaded from /DecodeParms when present. BitsPerComponent is overridden to 8 post-decode so to_dynamic_image() does not attempt CCITT bilevel decompression of already-decoded pixels. Reported by @​frederikhors, who also confirmed the original vertical-flip / glyph-substitution symptom is resolved in v0.3.45.

... (truncated)

Changelog

Sourced from pdf_oxide's changelog.

[0.3.46] - 2026-05-10

Added

• Raw RGBA pixel buffer, SIMD downscaling, and thread-safe rendering (#446, #481) — page.render_pixmap() (Python), renderToPixmap() (Node.js / Go), and Page.RenderToRgba() (C#) expose the premultiplied RGBA8888 buffer directly from tiny_skia::Pixmap::data(), eliminating the encode→decode roundtrip for callers that need raw pixels (PIL, sharp, System.Drawing.Bitmap, image.RGBA). Downscaling is now SIMD-accelerated via fast_image_resize (ARM NEON, x86 AVX2), replacing the previous bilinear path. Concurrent render_* calls on the same PdfDocument are now safe: all rendering functions take &PdfDocument (shared reference) and all interior-mutable state is already guarded by per-field Mutex, so the FFI layer no longer produces aliased &mut references and concurrent renders run without a global serialisation bottleneck. Requested by @​mara004 and @​potatochipcoconut.

• ConversionOptions::exclude_regions / include_region (#484) — New spatial filtering fields allow callers to exclude rectangular regions from extraction output or restrict extraction to a single bounding rectangle. Backed by SpatialCollectionFiltering trait methods filter_by_rect / exclude_rects.

• PageFontStats (#484) — New layout::PageFontStats struct computed in O(n) over spans; exposes dominant_em, dominant_line_height, dominant_char_width, and body_font_name. All layout heuristics now derive absolute thresholds from these measurements instead of hardcoded constants, improving correctness across a wider range of font sizes.

Fixed

• JBIG2-compressed scanner PDFs render as blank pages (#332) — The pass-through Jbig2Decoder returned compressed bytes unchanged, causing a dimension mismatch and a silent image drop. Integrates hayro-jbig2 v0.3 (pure-Rust, Apache-2.0 OR MIT); embedded JBIG2 bitstreams are decoded via hayro_jbig2::Image::new_embedded, with JBIG2Globals loaded from /DecodeParms when present. BitsPerComponent is overridden to 8 post-decode so to_dynamic_image() does not attempt CCITT bilevel decompression of already-decoded pixels. Reported by @​frederikhors, who also confirmed the original vertical-flip / glyph-substitution symptom is resolved in v0.3.45.

... (truncated)

Commits

• a6c5120 fix(release): v0.3.46 CI hardening, FIPS npm, signatures, and review fixes
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Labels

The following labels could not be found: dependencies. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.