Skip to content

build(deps): bump the patch group across 1 directory with 9 updates #1577

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

build(deps): bump the patch group across 1 directory with 9 updates #1577

wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 17, 2025

Bumps the patch group with 9 updates in the / directory:

Package From To
axum 0.8.6 0.8.7
hyper-util 0.1.17 0.1.18
libsql 0.9.24 0.9.29
smol_str 0.3.2 0.3.4
tokio-util 0.7.16 0.7.17
reqwest 0.12.22 0.12.24
picky 7.0.0-rc.15 7.0.0-rc.20
rustls 0.23.33 0.23.35
openssl 0.10.74 0.10.75

Updates axum from 0.8.6 to 0.8.7

Release notes

Sourced from axum's releases.

axum v0.8.7

  • Relax implicit Send / Sync bounds on RouterAsService, RouterIntoService (#3555)
  • Make it easier to visually scan for default features (#3550)
  • Fix some documentation typos

#3550: tokio-rs/axum#3550 #3555: tokio-rs/axum#3555

Commits

Updates hyper-util from 0.1.17 to 0.1.18

Release notes

Sourced from hyper-util's releases.

v0.1.18

Highlights

  • Fix rt::TokioTimer to support Tokio's paused time.
  • Fix client::proxy::match::Matcher to parse auth without passwords.

What's Changed

New Contributors

Thanks

Full Changelog: hyperium/hyper-util@v0.1.17...v0.1.18

Changelog

Sourced from hyper-util's changelog.

0.1.18 (2025-11-13)

  • Fix rt::TokioTimer to support Tokio's paused time.
  • Fix client::proxy::match::Matcher to parse auth without passwords.
Commits
  • 203c956 v0.1.18
  • d91ea8e fix(rt): support fake time in legacy client and TokioTimer (#238)
  • dde14d3 fix(client): Proxy Matcher to handle proxy auth without password (#241)
  • b9dc3d2 chore(ci): update to actions/checkout@v5 (#240)
  • d4f5706 ci: fix msrv on windows and macos target (#239)
  • 3c8dbe4 chore: bump windows-registry to 0.6 (#236)
  • 72bbd22 perf(client): avoid redundant memory copies of Host header (#235)
  • 1c8f7c6 docs: replace auto_doc_cfg (#237)
  • 66afc93 chore(ci): use auto pr ref in rustdoc-preview workflow
  • faf5ca2 chore(ci): fix rustdoc preview workflow typo (#232)
  • Additional commits viewable in compare view

Updates libsql from 0.9.24 to 0.9.29

Commits
  • 6702c3d 0.9.29
  • 571a1ce Add new Connection API to install SQLite update hooks. (#1839)
  • 9c76991 Add new Connection API to install SQLite update hooks.
  • 19b1c7a 0.9.28
  • 8753185 libsql-sqlite3: Fix missing hasCodec argument in test2.c
  • 49842d1 libsql-sqlite3: Optimize pager codec check more (#2189)
  • 0555bdd libsql-sqlite3: Optimize pager codec check more
  • 5379778 0.9.26
  • 84146a1 libsql-sqlite3: Optimize libsql_pager_has_codec() function (#2185)
  • 6d6ba1e libsql-sqlite3: Optimize libsql_pager_has_codec() function
  • Additional commits viewable in compare view

Updates smol_str from 0.3.2 to 0.3.4

Changelog

Sourced from smol_str's changelog.

0.3.4 - 2025-10-23

  • Added rust-version field to Cargo.toml

0.3.3 - 2025-10-23

  • Optimise StrExt::to_ascii_lowercase_smolstr, StrExt::to_ascii_uppercase_smolstr ~2x speedup inline, ~4-22x for heap.
  • Optimise StrExt::to_lowercase_smolstr, StrExt::to_uppercase_smolstr ~2x speedup inline, ~5-50x for heap.
  • Optimise StrExt::replace_smolstr, StrExt::replacen_smolstr for single ascii replace, ~3x speedup inline & heap.
Commits
  • 02336c5 Publish 0.3.4
  • bf2e3d7 Publish 0.3.3
  • 8f4deab Update changelog
  • 97ef5f3 Mark replacen_1_ascii as unsafe
  • 026103b Optimise replacen 1-ascii when count >= len
  • 104784a Optimise replacen_smolstr for single ascii replace
  • 08a9dc8 Add test from_buf_and_chars_size_hinted_heap & fix
  • 22feb5f Update changelog
  • 3122a9a Optimise to_{lower,upper}case_smolstr
  • 81c8790 CI: Add TEST_BENCHES
  • Additional commits viewable in compare view

Updates tokio-util from 0.7.16 to 0.7.17

Commits
  • 454fd8c chore: prepare tokio-util v0.7.17 (#7719)
  • 4421022 codec: remove unnecessary trait bounds on all Framed constructors (#7716)
  • 5a709e3 io_uring: change Completable to not return io::Result (#7702)
  • 5efb1c3 io: doc that AsyncWrite does not inherit from Write (#7705)
  • f490029 runtime: revert "replace manual vtable definitions with Wake" (#7699)
  • d25778f task: add tests for task::Builder::spawn_local (#7697)
  • b8318fa task: add tests for spawn_local in panic scenarios (#7694)
  • acfdb87 task: use #[tokio::test] explicitly in tests/task_builder.rs (#7698)
  • d060401 sync: return TryRecvError::Disconnected from Receiver::try_recv after `Re...
  • 5dacc2e task: add tests for spawn_local and spawn_local_on (#7609)
  • Additional commits viewable in compare view

Updates reqwest from 0.12.22 to 0.12.24

Release notes

Sourced from reqwest's releases.

v0.12.24

Highlights

  • Refactor cookie handling to an internal middleware.
  • Refactor internal random generator.
  • Refactor base64 encoding to reduce a copy.
  • Documentation updates.

What's Changed

New Contributors

Full Changelog: seanmonstar/reqwest@v0.12.23...v0.12.24

v0.12.23

tl;dr

  • 🇺🇩🇸 Add ClientBuilder::unix_socket(path) option that will force all requests over that Unix Domain Socket.
  • 🔁 Add ClientBuilder::retries(policy) and reqwest::retry::Builder to configure automatic retries.
  • Add ClientBuilder::dns_resolver2() with more ergonomic argument bounds, allowing more resolver implementations.
  • Add http3_* options to blocking::ClientBuilder.
  • Fix default TCP timeout values to enabled and faster.
  • Fix SOCKS proxies to default to port 1080
  • (wasm) Add cache methods to RequestBuilder.

What's Changed

... (truncated)

Changelog

Sourced from reqwest's changelog.

v0.12.24

  • Refactor cookie handling to an internal middleware.
  • Refactor internal random generator.
  • Refactor base64 encoding to reduce a copy.
  • Documentation updates.

v0.12.23

  • Add ClientBuilder::unix_socket(path) option that will force all requests over that Unix Domain Socket.
  • Add ClientBuilder::retry(policy) and reqwest::retry::Builder to configure automatic retries.
  • Add ClientBuilder::dns_resolver2() with more ergonomic argument bounds, allowing more resolver implementations.
  • Add http3_* options to blocking::ClientBuilder.
  • Fix default TCP timeout values to enabled and faster.
  • Fix SOCKS proxies to default to port 1080
  • (wasm) Add cache methods to RequestBuilder.
Commits
  • b126ca4 v0.12.24
  • 4023493 refactor: change fast_random from xorshift to siphash a counter
  • fd61bc9 refactor(cookie): avoid duplicate cookie insertion (#2834)
  • 0bfa526 test(multipart): fix build failure with no-default-features (#2801)
  • 994b8a0 docs: typo in retry max_retries_per_request (#2824)
  • da0702b refactor(cookie): de-duplicate cookie support as CookieService middleware (...
  • 7ebddea chore: align internal name usage of TotalTimeout (#2657)
  • b540a4e chore(readme): use correct CI status badge
  • e4550c4 docs: fix method name in changelog entry (#2807)
  • f4694a2 perf(util): avoid extra copy when base64 encoding (#2805)
  • Additional commits viewable in compare view

Updates picky from 7.0.0-rc.15 to 7.0.0-rc.20

Commits
  • 628bbca chore(release): prepare for publishing (#431)
  • 0fe43da fix(picky): pin leftover pre-release crypto crates (#430)
  • 9829751 ci(npm): migrate publishing to OIDC authentication (#429)
  • 68c0b0f refactor(picky-asn1-der): remove num-bigint-dig (#427)
  • 14abf7e chore(release): prepare for publishing (#426)
  • 9081890 build(deps): get rid of num-bigint-dig (#425)
  • d96e761 build(deps): remove lazy_static (#424)
  • 24caa6f chore(release): prepare for publishing (#420)
  • abc63dd feat: support parsing certs with MLDSA public keys (#411)
  • 4edf52b build(deps): bump thiserror from 1.0.69 to 2.0.17 (#409)
  • Additional commits viewable in compare view

Updates rustls from 0.23.33 to 0.23.35

Commits
  • 7768cd2 Bump version to 0.23.35
  • 6ed925e Address nightly clippy::derivable_impls lints
  • 645095f Pass through attributes for enum_builder!
  • 90e28d6 fix: only add ocsp in ConfigBuilder::with_single_cert_with_ocsp if
  • 4cee226 Cargo: rustls v0.23.33 -> v0.23.34
  • 278391e Remove use of doc_auto_cfg
  • 31ca6af Avoid use of docsrs cfg
  • See full diff in compare view

Updates openssl from 0.10.74 to 0.10.75

Release notes

Sourced from openssl's releases.

openssl-v0.10.75

What's Changed

New Contributors

Full Changelog: rust-openssl/rust-openssl@openssl-v0.10.74...openssl-v0.10.75

Commits
  • 09b90d0 Merge pull request #2518 from alex/bump-for-release
  • 26533f3 Release openssl v0.10.75 and openssl-sys v0.9.111
  • 395ecca Merge pull request #2517 from alex/claude/fix-ocsp-find-status-011CUqcGFNKeKJ...
  • cc26867 Fix unsound OCSP find_status handling of optional next_update field
  • 95aa8e8 Merge pull request #2513 from botovq/libressl-stable
  • e735a32 CI: bump LibreSSL 4.x branches to latest releases
  • 21ab91d Merge pull request #2510 from huwcbjones/huw/sys/evp-mac
  • d9161dc sys/evp: add EVP_MAC symbols
  • 3fd4bf2 Merge pull request #2508 from goffrie/oaep-label
  • 52022fd Implement set_rsa_oaep_label for AWS-LC/BoringSSL
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump the patch group across 1 directory with 9 updates
189bbb4 
Bumps the patch group with 9 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [axum](https://github.com/tokio-rs/axum) | `0.8.6` | `0.8.7` |
| [hyper-util](https://github.com/hyperium/hyper-util) | `0.1.17` | `0.1.18` |
| [libsql](https://github.com/tursodatabase/libsql) | `0.9.24` | `0.9.29` |
| [smol_str](https://github.com/rust-analyzer/smol_str) | `0.3.2` | `0.3.4` |
| [tokio-util](https://github.com/tokio-rs/tokio) | `0.7.16` | `0.7.17` |
| [reqwest](https://github.com/seanmonstar/reqwest) | `0.12.22` | `0.12.24` |
| [picky](https://github.com/Devolutions/picky-rs) | `7.0.0-rc.15` | `7.0.0-rc.20` |
| [rustls](https://github.com/rustls/rustls) | `0.23.33` | `0.23.35` |
| [openssl](https://github.com/rust-openssl/rust-openssl) | `0.10.74` | `0.10.75` |



Updates `axum` from 0.8.6 to 0.8.7
- [Release notes](https://github.com/tokio-rs/axum/releases)
- [Changelog](https://github.com/tokio-rs/axum/blob/main/CHANGELOG.md)
- [Commits](tokio-rs/axum@axum-v0.8.6...axum-v0.8.7)

Updates `hyper-util` from 0.1.17 to 0.1.18
- [Release notes](https://github.com/hyperium/hyper-util/releases)
- [Changelog](https://github.com/hyperium/hyper-util/blob/master/CHANGELOG.md)
- [Commits](hyperium/hyper-util@v0.1.17...v0.1.18)

Updates `libsql` from 0.9.24 to 0.9.29
- [Release notes](https://github.com/tursodatabase/libsql/releases)
- [Commits](tursodatabase/libsql@libsql-0.9.24...libsql-0.9.29)

Updates `smol_str` from 0.3.2 to 0.3.4
- [Changelog](https://github.com/rust-analyzer/smol_str/blob/master/CHANGELOG.md)
- [Commits](rust-analyzer/smol_str@v0.3.2...v0.3.4)

Updates `tokio-util` from 0.7.16 to 0.7.17
- [Release notes](https://github.com/tokio-rs/tokio/releases)
- [Commits](tokio-rs/tokio@tokio-util-0.7.16...tokio-util-0.7.17)

Updates `reqwest` from 0.12.22 to 0.12.24
- [Release notes](https://github.com/seanmonstar/reqwest/releases)
- [Changelog](https://github.com/seanmonstar/reqwest/blob/master/CHANGELOG.md)
- [Commits](seanmonstar/reqwest@v0.12.22...v0.12.24)

Updates `picky` from 7.0.0-rc.15 to 7.0.0-rc.20
- [Changelog](https://github.com/Devolutions/picky-rs/blob/master/release.toml)
- [Commits](Devolutions/picky-rs@picky-v7.0.0-rc.15...picky-v7.0.0-rc.20)

Updates `rustls` from 0.23.33 to 0.23.35
- [Release notes](https://github.com/rustls/rustls/releases)
- [Changelog](https://github.com/rustls/rustls/blob/main/CHANGELOG.md)
- [Commits](rustls/rustls@v/0.23.33...v/0.23.35)

Updates `openssl` from 0.10.74 to 0.10.75
- [Release notes](https://github.com/rust-openssl/rust-openssl/releases)
- [Commits](rust-openssl/rust-openssl@openssl-v0.10.74...openssl-v0.10.75)

---
updated-dependencies:
- dependency-name: axum
  dependency-version: 0.8.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch
- dependency-name: hyper-util
  dependency-version: 0.1.18
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch
- dependency-name: libsql
  dependency-version: 0.9.29
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch
- dependency-name: smol_str
  dependency-version: 0.3.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch
- dependency-name: tokio-util
  dependency-version: 0.7.17
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch
- dependency-name: reqwest
  dependency-version: 0.12.24
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch
- dependency-name: picky
  dependency-version: 7.0.0-rc.20
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch
- dependency-name: rustls
  dependency-version: 0.23.35
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch
- dependency-name: openssl
  dependency-version: 0.10.75
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file rust Pull requests that update Rust code labels Nov 17, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@CBenoit CBenoit

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update Rust code

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@CBenoit