Skip to content

build(deps): bump the http group across 1 directory with 6 updates #1321

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

build(deps): bump the http group across 1 directory with 6 updates #1321

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 5, 2025

Bumps the http group with 6 updates in the / directory:

Package From To
axum 0.8.3 0.8.4
hyper 0.14.32 1.6.0
tower-http 0.5.2 0.6.2
tower 0.3.1 0.5.2
rustls-cng 0.5.3 0.6.0
rustls 0.23.25 0.23.27

Updates axum from 0.8.3 to 0.8.4

Release notes

Sourced from axum's releases.

axum v0.8.4

  • added: Router::reset_fallback (#3320)
  • added: WebSocketUpgrade::selected_protocol (#3248)
  • fixed: Panic location for overlapping method routes (#3319)
  • fixed: Don't leak a tokio task when using serve without graceful shutdown (#3129)

#3319: tokio-rs/axum#3319 #3320: tokio-rs/axum#3320 #3248: tokio-rs/axum#3248 #3129: tokio-rs/axum#3129

Commits
  • 8762520 Release axum 0.8.4
  • ac75e2f Split up serve functions for Serve and WithGracefulShutdown again
  • c1162d3 Extract handle_connection out of do_serve
  • c251845 Simplify do_serve a bit
  • ba4327e Stop implementing IntoFuture for Serve via with_graceful_shutdown
  • 085be69 Move serve implementation out of WithGracefulShutdown
  • 6587b65 Replace futures_util::pin_mut with std::pin::pin
  • 80c4ead Improve documentation about sharing state with handlers (#3333)
  • 53631b2 refactor(axum): Refactor json module (#3332)
  • 7b04b17 axum-extra: Pre-allocate right sized buffer when encoding protobuf response (...
  • Additional commits viewable in compare view

Updates hyper from 0.14.32 to 1.6.0

Release notes

Sourced from hyper's releases.

v1.6.0

Features

  • ext: add ext::on_informational() callback extension (#3818) (8ce1fcfa, closes #2565)
  • server: add http1::Builder::ignore_invalid_headers(bool) option (#3824) (3817a79b)

Bug Fixes

Breaking Changes

  • http2::Builder::max_local_error_reset_streams() now takes &mut self and returns &mut Self. In practice, this shouldn't break almost anyone. It was the wrong receiver and return types. (e981a91e)

New Contributors

Thanks

Full Changelog: hyperium/hyper@v1.5.2...v1.6.0

v1.5.2

Bug Fixes

Features

New Contributors

Thanks

Full Changelog: hyperium/hyper@v1.5.1...v1.5.2

... (truncated)

Changelog

Sourced from hyper's changelog.

v1.6.0 (2025-01-28)

Bug Fixes

Features

  • ext: add ext::on_informational() callback extension (#3818) (8ce1fcfa, closes #2565)
  • server: add http1::Builder::ignore_invalid_headers(bool) option (#3824) (3817a79b)

Breaking Changes

  • http2::Builder::max_local_error_reset_streams() now takes &mut self and returns &mut Self. In practice, this shouldn't break almost anyone. It was the wrong receiver and return types. (e981a91e)

v1.5.2 (2024-12-16)

Bug Fixes

Features

v1.5.1 (2024-11-19)

Bug Fixes

  • http2:
    • pass proper value to h2 max_local_error_reset_streams (4a20147a)
    • improve graceful shutdown during handshake (#3729) (13b05943)

v1.5.0 (2024-10-15)

... (truncated)

Commits
  • 621d8e4 v1.6.0
  • 83f4588 chore(LICENSE): update copyright year
  • 10b09ff fix(server): start http1 header read timeout when conn is idle (#3828)
  • 8ce1fcf feat(ext): add ext::on_informational() callback extension (#3818)
  • de28b0e chore(ci): use msrv aware dependency resolver (#3831)
  • 5baf537 chore(ci): use yq to get rust-version in manifest (#3829)
  • 3817a79 feat(server): add http1::Builder::ignore_invalid_headers(bool) option (#3824)
  • e981a91 fix(server): change max_local_error_reset_streams function to &mut self (...
  • 30f2961 v1.5.2
  • a131111 fix(http1): fix intermitent panic parsing partial headers (#3812)
  • Additional commits viewable in compare view

Updates tower-http from 0.5.2 to 0.6.2

Release notes

Sourced from tower-http's releases.

tower-http-0.6.2

Changed:

  • CompressionBody<B> now propagates B's size hint in its http_body::Body implementation, if compression is disabled (#531)
    • this allows a content-length to be included in an HTTP message with this body for those cases

#531: tower-rs/tower-http#531

New Contributors

Full Changelog: tower-rs/tower-http@tower-http-0.6.1...tower-http-0.6.2

v0.6.1

Fixed

  • decompression: reuse scratch buffer to significantly reduce allocations and improve performance (#521)

#521: tower-rs/tower-http#521

New Contributors

v0.6.0

Changed:

  • body module is disabled except for catch-panic, decompression-*, fs, or limit features (BREAKING) (#477)
  • Update to tower 0.5 (#503)

Fixed

  • fs: Precompression of static files now supports files without a file extension (#507)

#477: tower-rs/tower-http#477 #503: tower-rs/tower-http#503 #507: tower-rs/tower-http#507

Commits

Updates tower from 0.3.1 to 0.5.2

Release notes

Sourced from tower's releases.

tower 0.5.2

Added

  • util: Add BoxCloneSyncService which is a Clone + Send + Sync boxed Service (#777)
  • util: Add BoxCloneSyncServiceLayer which is a Clone + Send + Sync boxed Layer (#802)

tower 0.5.1

  • Fix minimum version of tower-layer dependency (#787)

#787: tower-rs/tower#787

tower 0.5.0

Fixed

  • util: BoxService is now Sync (#702)

Changed

  • util: Removed deprecated ServiceExt::ready_and method and ReadyAnd future (#652)
  • retry: Breaking Change retry::Policy::retry now accepts &mut Req and &mut Res instead of the previous mutable versions. This increases the flexibility of the retry policy. To update, update your method signature to include mut for both parameters. (#584)
  • retry: Breaking Change Change Policy to accept &mut self (#681)
  • retry: Add generic backoff utilities (#685)
  • retry: Add Budget trait. This allows end-users to implement their own budget and bucket implementations. (#703)
  • reconnect: Breaking Change Remove unused generic parameter from Reconnect::new (#755)
  • ready-cache: Allow iteration over ready services (#700)
  • discover: Implement Clone for Change (#701)
  • util: Add a BoxCloneServiceLayer (#708)
  • rng: use a simpler random 2-sampler (#716)
  • filter: Derive Clone for AsyncFilterLayer (#731)
  • general: Update IndexMap (#741)
  • MSRV: Increase MSRV to 1.63.0 (#741)

#702: tower-rs/tower#702 #652: tower-rs/tower#652 #584: tower-rs/tower#584 #681: tower-rs/tower#681 #685: tower-rs/tower#685 #703: tower-rs/tower#703 #755: tower-rs/tower#755 #700: tower-rs/tower#700 #701: tower-rs/tower#701 #708: tower-rs/tower#708 #716: tower-rs/tower#716 #731: tower-rs/tower#731 #741: tower-rs/tower#741

tower 0.4.13

Added

... (truncated)

Commits
  • 7dc533e tower v0.5.2
  • a09fd97 chore: fix dead code warning for 'Sealed' trait and 'sample_floyd2' func (#799)
  • f57e31b Add util::BoxCloneSyncServiceLayer (#802)
  • da24532 Add util::BoxCloneSyncService (#777)
  • 6283f3a Upgrade http and sync_wrapper dependencies (#788)
  • 7155101 Prepare release of v0.5.1 (#791)
  • b2c48b4 Bump dependency on tower-layer (#787)
  • fec9e55 tower-layer: drop versions from dev dependencies (#782)
  • 646804d chore: prepare to release tower-0.5.0, tower-layer-0.3.3, tower-service-0.3.3...
  • 7202cfe chore: fix a few typos (#780)
  • Additional commits viewable in compare view

Updates rustls-cng from 0.5.3 to 0.6.0

Commits

Updates rustls from 0.23.25 to 0.23.27

Commits
  • 2601909 Bump version to 0.23.27
  • a70b0e6 Handle webpki RequiredEkuNotFoundContext errors
  • 06a704e Update to webpki 0.103.2
  • 9509626 Deprecate dangerous_extract_secrets on unbuffered connections
  • bf9e874 Add test cases for KernelConnection key updates
  • 5a12171 Add kernel connection API
  • 35c44d2 Extract tls13 expand_secret function out of extract_secrets
  • 47ed0c6 ci: enable triggering CI workflow manually
  • 26b8ee3 ci: skip push triggers for most branches
  • 70ed532 Update Rust crate nix to 0.30
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump the http group across 1 directory with 6 updates
89288be 
Bumps the http group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [axum](https://github.com/tokio-rs/axum) | `0.8.3` | `0.8.4` |
| [hyper](https://github.com/hyperium/hyper) | `0.14.32` | `1.6.0` |
| [tower-http](https://github.com/tower-rs/tower-http) | `0.5.2` | `0.6.2` |
| [tower](https://github.com/tower-rs/tower) | `0.3.1` | `0.5.2` |
| [rustls-cng](https://github.com/rustls/rustls-cng) | `0.5.3` | `0.6.0` |
| [rustls](https://github.com/rustls/rustls) | `0.23.25` | `0.23.27` |



Updates `axum` from 0.8.3 to 0.8.4
- [Release notes](https://github.com/tokio-rs/axum/releases)
- [Changelog](https://github.com/tokio-rs/axum/blob/main/CHANGELOG.md)
- [Commits](tokio-rs/axum@axum-v0.8.3...axum-v0.8.4)

Updates `hyper` from 0.14.32 to 1.6.0
- [Release notes](https://github.com/hyperium/hyper/releases)
- [Changelog](https://github.com/hyperium/hyper/blob/master/CHANGELOG.md)
- [Commits](hyperium/hyper@v0.14.32...v1.6.0)

Updates `tower-http` from 0.5.2 to 0.6.2
- [Release notes](https://github.com/tower-rs/tower-http/releases)
- [Commits](tower-rs/tower-http@tower-http-0.5.2...tower-http-0.6.2)

Updates `tower` from 0.3.1 to 0.5.2
- [Release notes](https://github.com/tower-rs/tower/releases)
- [Commits](tower-rs/tower@tower-0.3.1...tower-0.5.2)

Updates `rustls-cng` from 0.5.3 to 0.6.0
- [Commits](rustls/rustls-cng@v0.5.3...v0.6.0)

Updates `rustls` from 0.23.25 to 0.23.27
- [Release notes](https://github.com/rustls/rustls/releases)
- [Changelog](https://github.com/rustls/rustls/blob/main/CHANGELOG.md)
- [Commits](rustls/rustls@v/0.23.25...v/0.23.27)

---
updated-dependencies:
- dependency-name: axum
  dependency-version: 0.8.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: http
- dependency-name: hyper
  dependency-version: 1.6.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: http
- dependency-name: tower-http
  dependency-version: 0.6.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: http
- dependency-name: tower
  dependency-version: 0.5.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: http
- dependency-name: rustls-cng
  dependency-version: 0.6.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: http
- dependency-name: rustls
  dependency-version: 0.23.27
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: http
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file rust Pull requests that update Rust code labels May 5, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@CBenoit CBenoit

Labels
dependencies Pull requests that update a dependency file rust Pull requests that update Rust code
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@CBenoit