Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump the patch-dependencies group with 16 updates #693

Merged

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 28, 2024

Bumps the patch-dependencies group with 16 updates:

Package From To
thiserror 1.0.50 1.0.55
async-trait 0.1.74 0.1.76
x25519-dalek 2.0.0 2.0.1
futures 0.3.29 0.3.30
snow 0.9.4 0.9.6
getrandom 0.2.10 0.2.12
serde_json 1.0.108 1.0.109
wasm-bindgen 0.2.87 0.2.92
js-sys 0.3.64 0.3.69
anyhow 1.0.75 1.0.81
parity-scale-codec 3.6.3 3.6.9
tracing-subscriber 0.3.17 0.3.18
blake3 1.5.0 1.5.1
log 0.4.19 0.4.21
pallet-staking 25.0.0 25.0.1
pallet-nomination-pools 22.0.0 22.0.2

Updates thiserror from 1.0.50 to 1.0.55

Release notes

Sourced from thiserror's releases.

1.0.55

  • Work around improperly cached build script result by sccache – second attempt (#280)

1.0.54

  • Work around improperly cached build script result by sccache – first attempt (#279)

1.0.53

  • Reduce spurious rebuilds under RustRover IDE when using a nightly toolchain (#270)

1.0.52

  • Fix interaction with RUSTC_BOOTSTRAP (#269)

1.0.51

  • Improve diagnostics when an invalid attribute previously caused thiserror to generate no Error impl (#266)
Commits
  • 6089273 Release 1.0.55
  • 322a2ae Merge pull request #280 from dtolnay/depinfo
  • fd7d7a5 Emit dep-info for probe.rs in case sccache needs it
  • 447c328 Release 1.0.54
  • 4619db8 Merge pull request #279 from dtolnay/depinfo
  • 7b53bff Make env-dep:RUSTC_BOOTSTRAP get listed in probe's dep-info
  • e0500ad Merge pull request #277 from dtolnay/nightlyci
  • 48cea47 Make CI verify that error_generic_member_access works in latest nightly
  • fe40a50 Merge pull request #276 from dtolnay/optionifletelse
  • b97654a Remove option_if_let_else clippy suppression
  • Additional commits viewable in compare view

Updates async-trait from 0.1.74 to 0.1.76

Release notes

Sourced from async-trait's releases.

0.1.76

  • Documentation improvements

0.1.75

  • Documentation improvements
Commits
  • 627124b Release 0.1.76
  • f8aa269 Merge pull request #256 from dtolnay/miritracing
  • 48e29e4 Re-enable tracing integration test under Miri
  • 3c656d3 Merge pull request #255 from dtolnay/asyncblock
  • 381fd75 Update explanation to show async block expansion
  • 3caf301 Merge pull request #254 from dtolnay/doc
  • c1576be Update documentation to discuss object safety in Rust 1.75+
  • 034d8db Release 0.1.75
  • 0d469fc Add a funding file
  • b4a3886 Update ui test suite to nightly-2023-11-20
  • Additional commits viewable in compare view

Updates x25519-dalek from 2.0.0 to 2.0.1

Commits

Updates futures from 0.3.29 to 0.3.30

Release notes

Sourced from futures's releases.

0.3.30

  • Add {BiLock,SplitStream,SplitSink,ReadHalf,WriteHalf}::is_pair_of (#2797)
  • Fix panic in FuturesUnordered::clear (#2809)
  • Fix panic in AsyncBufReadExt::fill_buf (#2801, #2812)
  • Improve support for targets without atomic CAS (#2811)
  • Remove build scripts (#2811)
Changelog

Sourced from futures's changelog.

0.3.30 - 2023-12-24

  • Add {BiLock,SplitStream,SplitSink,ReadHalf,WriteHalf}::is_pair_of (#2797)
  • Fix panic in FuturesUnordered::clear (#2809)
  • Fix panic in AsyncBufReadExt::fill_buf (#2801, #2812)
  • Improve support for targets without atomic CAS (#2811)
  • Remove build scripts (#2811)
Commits
  • de1a0fd Release 0.3.30
  • 68d2845 Remove a redundant space in example (#2816)
  • fdd2ce7 Fix broken link in CopyBufAbortable docs (#2815)
  • 272a3c7 Use cfg(target_has_atomic) on no-std targets
  • c179201 FillBuf: Do not call poll_fill_buf twice
  • e6735f3 FuturesUnordered: Fix clear implementation
  • 04d01a0 FuturesOrdered: Use 64-bit index
  • e4aa659 remove redundant impl Unpin
  • 17851c1 provide a mechanism to determine if io read/write halves are from the same st...
  • 4910799 provide a non-destructive mechanism to determine if a sink/stream are paired
  • Additional commits viewable in compare view

Updates snow from 0.9.4 to 0.9.6

Release notes

Sourced from snow's releases.

v0.9.6

  • Validate invalid PSK positions when building a Noise protocol.
  • Raise errors in various typos/mistakes in Noise patterns when parsing.
  • Deprecate the sodiumoxide backend, as that crate is no longer maintained. We may eventually migrate it to a maintaned version of the crate, but for now it's best to warn users.
  • Set a hard limit in read_message() in transport mode to 65535 to be fully compliant with the Noise specification.

Full Changelog: mcginty/snow@v0.9.5...v0.9.6

v0.9.5

This is a security release that fixes a logic flaw in decryption in TransportState (i.e. the stateful one), where the nonce could increase even when decryption failed, which can cause a desync between the sender and receiver, opening this up as a denial of service vector if the attacker has the ability to inject packets in the channel Noise is talking over.

More details can be found in the advisory: GHSA-7g9j-g5jg-3vv3

All users are encouraged to update.

Commits
  • a4be73f meta: v0.9.6 release
  • 9e53dcf TransportState: limit read_message size to 65535
  • faf0560 Deprecate sodiumoxide resolver
  • 308a24d Add warnings about multiple calls to same method in Builder
  • f280991 Error when extraneous parameters are included in string to parse
  • dbdcc48 Error on duplicate modifiers in parameter string
  • 8b1a819 Validate PSK index in pattern to avoid panic
  • 74e30cf meta: v0.9.5 release
  • 12e8ae5 Stateful nonce desync fix
  • 02c26b7 Remove clap from simple example
  • See full diff in compare view

Updates getrandom from 0.2.10 to 0.2.12

Changelog

Sourced from getrandom's changelog.

[0.2.12] - 2024-01-09

Fixed

  • Custom backend for targets without atomics #385

Changed

  • Improve robustness of the Hermit backend and sys_fill_exact #386
  • Raise minimum supported Apple OS versions to macOS 10.12 and iOS 10 #388

Added

  • Document platform support policy #387

#385: rust-random/getrandom#385 #386: rust-random/getrandom#386 #387: rust-random/getrandom#387 #388: rust-random/getrandom#388

[0.2.11] - 2023-11-08

Added

  • GNU/Hurd support #370

Changed

  • Renamed __getrandom_internal to __GETRANDOM_INTERNAL #369
  • Updated link to Hermit docs #374

#369: rust-random/getrandom#369 #370: rust-random/getrandom#370 #374: rust-random/getrandom#374

Commits

Updates serde_json from 1.0.108 to 1.0.109

Release notes

Sourced from serde_json's releases.

v1.0.109

  • Documentation improvements
Commits
  • f88bf1f Release 1.0.109
  • bb62c73 Merge pull request #1097 from serde-rs/doccfg
  • df36d10 Restore doc cfg on re-exports
  • c367091 Merge pull request #1095 from dtolnay/hashtest
  • b328ee7 Eliminate hash closure in favor of calling hash_one directly
  • b9bcbad Use BuildHasher::hash_one
  • 7ff6c9e Use random hasher state for number hashing test
  • fe031cd Delete trace_macros! functionality from test
  • 05196ca Update ui test suite to nightly-2023-11-19
  • See full diff in compare view

Updates wasm-bindgen from 0.2.87 to 0.2.92

Changelog

Sourced from wasm-bindgen's changelog.

0.2.92

Released 2024-03-04

Added

  • Add bindings for RTCPeerConnectionIceErrorEvent. #3835

  • Add bindings for CanvasState.reset(), affecting CanvasRenderingContext2D and OffscreenCanvasRenderingContext2D. #3844

  • Add TryFrom implementations for Number, that allow losslessly converting from 64- and 128-bits numbers. #3847

  • Add support for Option<*const T>, Option<*mut T> and NonNull<T>. #3852 #3857

  • Allow overriding the URL used for headless tests by setting WASM_BINDGEN_TEST_ADDRESS. #3861

Fixed

  • Make .wasm output deterministic when using --reference-types. #3851

  • Don't allow invalid Unicode scalar values in char. #3866


0.2.91

Released 2024-02-06

Added

  • Added bindings for the RTCRtpTransceiver.setCodecPreferences() and unstable bindings for the RTCRtpEncodingParameters.scalabilityMode. #3828

  • Add unstable bindings for the FileSystemAccess API #3810

  • Added support for running tests in shared and service workers with wasm_bindgen_test_configure! run_in_shared_worker and run_in_service_worker. #3804

  • Accept the --skip flag with wasm-bindgen-test-runner. #3803

... (truncated)

Commits

Updates js-sys from 0.3.64 to 0.3.69

Commits

Updates anyhow from 1.0.75 to 1.0.81

Release notes

Sourced from anyhow's releases.

1.0.81

  • Make backtrace support available when using -Dwarnings (#354)

1.0.80

  • Fix unused_imports warnings when compiled by rustc 1.78

1.0.79

  • Work around improperly cached build script result by sccache (#340)

1.0.78

  • Reduce spurious rebuilds under RustRover IDE when using a nightly toolchain (#337)

1.0.77

1.0.76

  • Opt in to unsafe_op_in_unsafe_fn lint (#329)
Commits
  • 4aad4ed Release 1.0.81
  • 8be9091 Merge pull request #354 from dtolnay/deadcode
  • a2eb7dd Make compatible with -Dwarnings
  • 5443719 Release 1.0.80
  • dfc7bc0 Work around prelude redundant import warnings
  • 6e4f86b Import from alloc not std, where possible
  • f885a13 Ignore incompatible_msrv clippy false positives in test
  • fefbcbc Ignore incompatible_msrv clippy lint
  • 78f2d81 Update ui test suite to nightly-2024-02-08
  • edd88d3 Update ui test suite to nightly-2024-01-31
  • Additional commits viewable in compare view

Updates parity-scale-codec from 3.6.3 to 3.6.9

Changelog

Sourced from parity-scale-codec's changelog.

Changelog

All notable changes to this crate are documented in this file.

The format is based on Keep a Changelog, and this crate adheres to Semantic Versioning.

[3.6.4] - 2023-07-14

Added

  • Now #[derive(Encode)] implements the size_hint() method for structures and enumerations. This improves the performance of the encode() method by pre-allocating memory.
Commits

Updates tracing-subscriber from 0.3.17 to 0.3.18

Release notes

Sourced from tracing-subscriber's releases.

tracing-subscriber 0.3.18

This release of tracing-subscriber adds support for the NO_COLOR environment variable (an informal standard to disable emitting ANSI color escape codes) in fmt::Layer, reintroduces support for the chrono crate, and increases the minimum supported Rust version (MSRV) to Rust 1.63.0.

It also introduces several minor API improvements.

Added

  • chrono: Add chrono implementations of FormatTime (#2690)
  • subscriber: Add support for the NO_COLOR environment variable in fmt::Layer (#2647)
  • fmt: make format::Writer::new() public (#2680)
  • filter: Implement layer::Filter for Option<Filter> (#2407)

Changed

  • log: bump version of tracing-log to 0.2 (#2772)
  • Increased minimum supported Rust version (MSRV) to 1.63.0+.

#2690: tokio-rs/tracing#2690 #2647: tokio-rs/tracing#2647 #2680: tokio-rs/tracing#2680 #2407: tokio-rs/tracing#2407 #2772: tokio-rs/tracing#2772

Thanks to @​shayne-fletcher, @​dmlary, @​kaifastromai, and @​jsgf for contributing!

Commits

Updates blake3 from 1.5.0 to 1.5.1

Release notes

Sourced from blake3's releases.

1.5.1

version 1.5.1

Changes since 1.5.0:

  • The Rust crate is now compatible with Miri.
  • ~1% performance improvement on Arm NEON contributed by @​divinity76 (#384).
  • Various fixes and improvements in the CMake build.
  • The MSRV of b3sum is now 1.74.1. (The MSRV of the library crate is unchanged, 1.66.1.)
Commits

Updates log from 0.4.19 to 0.4.21

Changelog

Sourced from log's changelog.

[0.4.21] - 2024-02-27

What's Changed

New Contributors

[0.4.20] - 2023-07-11

Commits
  • 3ccdc28 Merge pull request #617 from rust-lang/cargo/0.4.21
  • 6153cb2 prepare for 0.4.21 release
  • f0f7494 Merge pull request #613 from rust-lang/feat/kv-cleanup
  • 2b220bf clean up structured logging example
  • 646e9ab use original Visitor name for VisitValue
  • cf85c38 add needed subfeatures to kv_unstable
  • 73e9539 fix up capturing of :err
  • 31bb4b0 move error macros together
  • ad91711 support field shorthand in macros
  • 90a347b restore removed APIs as deprecated
  • Additional commits viewable in compare view

Updates pallet-staking from 25.0.0 to 25.0.1

Commits

Updates pallet-nomination-pools from 22.0.0 to 22.0.2

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the patch-dependencies group with 16 updates:

| Package | From | To |
| --- | --- | --- |
| [thiserror](https://github.com/dtolnay/thiserror) | `1.0.50` | `1.0.55` |
| [async-trait](https://github.com/dtolnay/async-trait) | `0.1.74` | `0.1.76` |
| [x25519-dalek](https://github.com/dalek-cryptography/curve25519-dalek) | `2.0.0` | `2.0.1` |
| [futures](https://github.com/rust-lang/futures-rs) | `0.3.29` | `0.3.30` |
| [snow](https://github.com/mcginty/snow) | `0.9.4` | `0.9.6` |
| [getrandom](https://github.com/rust-random/getrandom) | `0.2.10` | `0.2.12` |
| [serde_json](https://github.com/serde-rs/json) | `1.0.108` | `1.0.109` |
| [wasm-bindgen](https://github.com/rustwasm/wasm-bindgen) | `0.2.87` | `0.2.92` |
| [js-sys](https://github.com/rustwasm/wasm-bindgen) | `0.3.64` | `0.3.69` |
| [anyhow](https://github.com/dtolnay/anyhow) | `1.0.75` | `1.0.81` |
| [parity-scale-codec](https://github.com/paritytech/parity-scale-codec) | `3.6.3` | `3.6.9` |
| [tracing-subscriber](https://github.com/tokio-rs/tracing) | `0.3.17` | `0.3.18` |
| [blake3](https://github.com/BLAKE3-team/BLAKE3) | `1.5.0` | `1.5.1` |
| [log](https://github.com/rust-lang/log) | `0.4.19` | `0.4.21` |
| [pallet-staking](https://github.com/paritytech/polkadot-sdk) | `25.0.0` | `25.0.1` |
| [pallet-nomination-pools](https://github.com/paritytech/polkadot-sdk) | `22.0.0` | `22.0.2` |


Updates `thiserror` from 1.0.50 to 1.0.55
- [Release notes](https://github.com/dtolnay/thiserror/releases)
- [Commits](dtolnay/thiserror@1.0.50...1.0.55)

Updates `async-trait` from 0.1.74 to 0.1.76
- [Release notes](https://github.com/dtolnay/async-trait/releases)
- [Commits](dtolnay/async-trait@0.1.74...0.1.76)

Updates `x25519-dalek` from 2.0.0 to 2.0.1
- [Release notes](https://github.com/dalek-cryptography/curve25519-dalek/releases)
- [Commits](dalek-cryptography/curve25519-dalek@2.0.0...x25519-2.0.1)

Updates `futures` from 0.3.29 to 0.3.30
- [Release notes](https://github.com/rust-lang/futures-rs/releases)
- [Changelog](https://github.com/rust-lang/futures-rs/blob/master/CHANGELOG.md)
- [Commits](rust-lang/futures-rs@0.3.29...0.3.30)

Updates `snow` from 0.9.4 to 0.9.6
- [Release notes](https://github.com/mcginty/snow/releases)
- [Commits](mcginty/snow@v0.9.4...v0.9.6)

Updates `getrandom` from 0.2.10 to 0.2.12
- [Changelog](https://github.com/rust-random/getrandom/blob/master/CHANGELOG.md)
- [Commits](rust-random/getrandom@v0.2.10...v0.2.12)

Updates `serde_json` from 1.0.108 to 1.0.109
- [Release notes](https://github.com/serde-rs/json/releases)
- [Commits](serde-rs/json@v1.0.108...v1.0.109)

Updates `wasm-bindgen` from 0.2.87 to 0.2.92
- [Release notes](https://github.com/rustwasm/wasm-bindgen/releases)
- [Changelog](https://github.com/rustwasm/wasm-bindgen/blob/main/CHANGELOG.md)
- [Commits](rustwasm/wasm-bindgen@0.2.87...0.2.92)

Updates `js-sys` from 0.3.64 to 0.3.69
- [Release notes](https://github.com/rustwasm/wasm-bindgen/releases)
- [Changelog](https://github.com/rustwasm/wasm-bindgen/blob/main/CHANGELOG.md)
- [Commits](https://github.com/rustwasm/wasm-bindgen/commits)

Updates `anyhow` from 1.0.75 to 1.0.81
- [Release notes](https://github.com/dtolnay/anyhow/releases)
- [Commits](dtolnay/anyhow@1.0.75...1.0.81)

Updates `parity-scale-codec` from 3.6.3 to 3.6.9
- [Release notes](https://github.com/paritytech/parity-scale-codec/releases)
- [Changelog](https://github.com/paritytech/parity-scale-codec/blob/master/CHANGELOG.md)
- [Commits](paritytech/parity-scale-codec@v3.6.3...v3.6.9)

Updates `tracing-subscriber` from 0.3.17 to 0.3.18
- [Release notes](https://github.com/tokio-rs/tracing/releases)
- [Commits](tokio-rs/tracing@tracing-subscriber-0.3.17...tracing-subscriber-0.3.18)

Updates `blake3` from 1.5.0 to 1.5.1
- [Release notes](https://github.com/BLAKE3-team/BLAKE3/releases)
- [Commits](BLAKE3-team/BLAKE3@1.5.0...1.5.1)

Updates `log` from 0.4.19 to 0.4.21
- [Release notes](https://github.com/rust-lang/log/releases)
- [Changelog](https://github.com/rust-lang/log/blob/master/CHANGELOG.md)
- [Commits](rust-lang/log@0.4.19...0.4.21)

Updates `pallet-staking` from 25.0.0 to 25.0.1
- [Release notes](https://github.com/paritytech/polkadot-sdk/releases)
- [Changelog](https://github.com/paritytech/polkadot-sdk/blob/master/docs/RELEASE.md)
- [Commits](https://github.com/paritytech/polkadot-sdk/commits)

Updates `pallet-nomination-pools` from 22.0.0 to 22.0.2
- [Release notes](https://github.com/paritytech/polkadot-sdk/releases)
- [Changelog](https://github.com/paritytech/polkadot-sdk/blob/master/docs/RELEASE.md)
- [Commits](https://github.com/paritytech/polkadot-sdk/commits)

---
updated-dependencies:
- dependency-name: thiserror
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch-dependencies
- dependency-name: async-trait
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch-dependencies
- dependency-name: x25519-dalek
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch-dependencies
- dependency-name: futures
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch-dependencies
- dependency-name: snow
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch-dependencies
- dependency-name: getrandom
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch-dependencies
- dependency-name: serde_json
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch-dependencies
- dependency-name: wasm-bindgen
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch-dependencies
- dependency-name: js-sys
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch-dependencies
- dependency-name: anyhow
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch-dependencies
- dependency-name: parity-scale-codec
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch-dependencies
- dependency-name: tracing-subscriber
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch-dependencies
- dependency-name: blake3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch-dependencies
- dependency-name: log
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch-dependencies
- dependency-name: pallet-staking
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch-dependencies
- dependency-name: pallet-nomination-pools
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file rust Pull requests that update Rust code labels Mar 28, 2024
Copy link

vercel bot commented Mar 28, 2024

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name Status Preview Comments Updated (UTC)
entropy-core ✅ Ready (Inspect) Visit Preview 💬 Add feedback Mar 29, 2024 0:41am

@github-actions github-actions bot merged commit 5ed5c82 into master Mar 28, 2024
4 of 8 checks passed
@github-actions github-actions bot deleted the dependabot/cargo/patch-dependencies-03c9bded8d branch March 28, 2024 22:27
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file rust Pull requests that update Rust code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants