Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): bump the sidecar-non-breaking group in /bolt-sidecar with 11 updates #710

Closed
wants to merge 1 commit into from
Closed

chore(deps): bump the sidecar-non-breaking group in /bolt-sidecar with 11 updates #710

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 20, 2025

Bumps the sidecar-non-breaking group in /bolt-sidecar with 11 updates:

Package From To
clap 4.5.23 4.5.26
tower-http 0.5.2 0.6.2
reqwest 0.12.9 0.12.12
tokio-tungstenite 0.24.0 0.26.1
tree_hash_derive 0.8.0 0.9.0
secp256k1 0.29.1 0.30.0
uuid 1.11.0 1.12.0
serde_json 1.0.135 1.0.137
thiserror 2.0.9 2.0.11
metrics-exporter-prometheus 0.15.3 0.16.1
metrics 0.23.0 0.24.1

Updates clap from 4.5.23 to 4.5.26

Release notes

Sourced from clap's releases.

v4.5.26

[4.5.26] - 2025-01-09

Fixes

  • (error) Reduce binary size with the suggestions feature

v4.5.25

[4.5.25] - 2025-01-09

Fixes

  • (help) Reduce binary size

v4.5.24

[4.5.24] - 2025-01-07

Fixes

  • (parser) Correctly handle defaults with ignore_errors(true) and when a suggestion is provided for an unknown argument
Changelog

Sourced from clap's changelog.

[4.5.26] - 2025-01-09

Fixes

  • (error) Reduce binary size with the suggestions feature

[4.5.25] - 2025-01-09

Fixes

  • (help) Reduce binary size

[4.5.24] - 2025-01-07

Fixes

  • (parser) Correctly handle defaults with ignore_errors(true) and when a suggestion is provided for an unknown argument
Commits
  • df1efca chore: Release
  • d48bef6 docs: Update changelog
  • 6b7aa3d Merge pull request #5628 from mart-mihkel/complete_hyphen
  • 57b6cb8 refactor(complete): Simplify engine::complete
  • fbec05e refactor(complete): Fix typo in hyhpen
  • b7cfbdc feat(complete): Native support for hyphen values
  • 1d97c29 test(complete): Test cases for allow_hyphen_values
  • 64e3790 chore: Release
  • 1cf50c7 docs: Update changelog
  • 085143d Merge pull request #5722 from epage/sort
  • Additional commits viewable in compare view

Updates tower-http from 0.5.2 to 0.6.2

Release notes

Sourced from tower-http's releases.

tower-http-0.6.2

Changed:

  • CompressionBody<B> now propagates B's size hint in its http_body::Body implementation, if compression is disabled (#531)
    • this allows a content-length to be included in an HTTP message with this body for those cases

#531: tower-rs/tower-http#531

New Contributors

Full Changelog: tower-rs/tower-http@tower-http-0.6.1...tower-http-0.6.2

v0.6.1

Fixed

  • decompression: reuse scratch buffer to significantly reduce allocations and improve performance (#521)

#521: tower-rs/tower-http#521

New Contributors

v0.6.0

Changed:

  • body module is disabled except for catch-panic, decompression-*, fs, or limit features (BREAKING) (#477)
  • Update to tower 0.5 (#503)

Fixed

  • fs: Precompression of static files now supports files without a file extension (#507)

#477: tower-rs/tower-http#477 #503: tower-rs/tower-http#503 #507: tower-rs/tower-http#507

Commits

Updates reqwest from 0.12.9 to 0.12.12

Release notes

Sourced from reqwest's releases.

v0.12.11

What's Changed

Full Changelog: seanmonstar/reqwest@v0.12.10...v0.12.11

v0.12.10

What's Changed

New Contributors

Thanks

Full Changelog: seanmonstar/reqwest@v0.12.9...v0.12.10

Changelog

Sourced from reqwest's changelog.

v0.12.12

  • (wasm) Fix compilation by not compiler tokio/time on WASM.

v0.12.11

  • Fix decompression returning an error when HTTP/2 ends with an empty data frame.

v0.12.10

  • Add ClientBuilder::connector_layer() to allow customizing the connector stack.
  • Add ClientBuilder::http2_max_header_list_size() option.
  • Fix propagating body size hint (content-length) information when wrapping bodies.
  • Fix decompression of chunked bodies so the connections can be reused more often.
Commits

Updates tokio-tungstenite from 0.24.0 to 0.26.1

Changelog

Sourced from tokio-tungstenite's changelog.

0.26.1

  • Update tungstenite to address an issue that might cause UB in certain cases.

0.26.0

0.25.0

Commits

Updates tree_hash_derive from 0.8.0 to 0.9.0

Release notes

Sourced from tree_hash_derive's releases.

Release v0.9.0

What's Changed

Full Changelog: sigp/tree_hash@v0.8.0...v0.9.0

Commits

Updates secp256k1 from 0.29.1 to 0.30.0

Changelog

Sourced from secp256k1's changelog.

0.30.0 - 2024-10-08

  • Allow signing variable-length messages #706
  • Bump MSRV to 1.63 #709
  • Deprecate Message::from_digest_slice in favor of Message::from_digest #712
  • Truncate debug output of SecretKey; tighten bitcoin_hashes dependency version #722
  • Simplify and improve consistency of secret key types' debug output #726
  • Simplify and improve consistency of public key types' debug output #745
  • Feature-gate KeyPair::from_str on global-context or alloc #728
  • Add infallible constructors for schnorr::Signature from byteslices #730
  • Deprecate slice-parsing methods in favor of array-parsing ones #737
  • Make RecoveryId an enum rather than integer #743

0.29.0 - 2024-04-02

  • Deprecate ThirtyTwoByteHash #686

    This trait turned out to be problematic during upgrade because we support a ranged dependency for bitcoin_hashes. Consider implementing From<T> for Message for your type iff your type is a 32 byte hash (ie, output from a hash algorithm that produces a 32 byte digest like sha256). When using the impl, consider using Message::from instead of hash.into() because we will be introducing generics in a future version and the compiler will not be able to work out the target type.

  • Bump MSRV to Rust v1.56.1 #693

  • Upgrade hashes using range dependency version = ">= 0.12, <= 0.14" #690

  • Depend on latest secp256k1-sys (vendors secp256k1 v0.4.1) #688

0.28.2 - 2024-01-30

  • Implement Hash for Scalar #674
  • Implement Ord and PartialOrd for RecoverableSignature #611
  • Add byte accessors to ElligatorSwiftSharedSecret #676

0.28.1 - 2024-01-03

  • Update secp265k1-sys to 0.9.2 (contains some fixes for WASM and a FFI binding fix)
  • Various improvements to the SerializedSignature type #658 #659

0.28.0 - 2023-10-23

  • Add bindings to the ElligatorSwift implementation #627
  • Depend on recent release of bitcoin_hashes v0.13.0 #621
  • Add a verify function to PublicKey #618
  • Add serialize function for schnorr::Signature #607
  • Bump MSRV to 1.48 #595
  • Remove implementations of PartialEq, Eq, PartialOrd, Ord, and Hash from the impl_array_newtype macro. Users will now need to derive these traits if they are wanted.

0.27.0 - 2023-03-15

... (truncated)

Commits

Updates uuid from 1.11.0 to 1.12.0

Release notes

Sourced from uuid's releases.

1.12.0

⚠️ Possible Breakage

This release includes additional PartialEq implementations on Uuid, which can break inference in some cases.

What's Changed

New Contributors

Full Changelog: uuid-rs/uuid@1.11.1...1.12.0

1.11.1

What's Changed

New Contributors

Full Changelog: uuid-rs/uuid@1.11.0...1.11.1

Commits
  • c5f1d02 Merge pull request #784 from uuid-rs/cargo/1.12.0
  • 4cfbd83 fix deprecation versions
  • 8f76175 prepare for 1.12.0 release
  • 358eb34 Merge pull request #783 from uuid-rs/feat/non-nil
  • 6c5099e also remove borsh from NonNilUuid for now
  • b12c690 fix up non nil docs
  • 38df005 remove zerocopy from NonNilUuid for now
  • 4021daa fix up zerocopy derives
  • f570b57 support equality between NonNilUuid and Uuid
  • 4ffd872 add a few missing derives
  • Additional commits viewable in compare view

Updates serde_json from 1.0.135 to 1.0.137

Release notes

Sourced from serde_json's releases.

v1.0.137

  • Turn on "float_roundtrip" and "unbounded_depth" features for serde_json in play.rust-lang.org (#1231)

v1.0.136

  • Optimize serde_json::value::Serializer::serialize_map by using Map::with_capacity (#1230, thanks @​goffrie)
Commits
  • eb49e28 Release 1.0.137
  • 51c48ab Merge pull request #1231 from dtolnay/playground
  • 7d8f15b Enable "float_roundtrip" and "unbounded_depth" features in playground
  • a46f14c Release 1.0.136
  • eb9f3f6 Merge pull request #1230 from goffrie/patch-1
  • 513e5b2 Use Map::with_capacity in value::Serializer::serialize_map
  • See full diff in compare view

Updates thiserror from 2.0.9 to 2.0.11

Release notes

Sourced from thiserror's releases.

2.0.11

2.0.10

  • Support errors containing a generic type parameter's associated type in a field (#408)
Commits
  • 0f532e3 Release 2.0.11
  • 3d15543 Merge pull request #410 from dtolnay/testnostd
  • 1a226ae Disable two more integration tests in no-std mode
  • 8b5f2d7 Fix unused import in test when built without std
  • eecd247 Add CI step to test with "std" disabled
  • 8f2a76b Merge pull request #409 from Maytha8/std-tests
  • 693a6cd Add feature gate to tests that use std
  • 349f696 Release 2.0.10
  • 6cd87bc Merge pull request #408 from dtolnay/assoctype
  • 6b3e1e5 Generate trait bounds on associated types
  • Additional commits viewable in compare view

Updates metrics-exporter-prometheus from 0.15.3 to 0.16.1

Commits
  • f056b19 chore: Release
  • d9eae32 chore: Release
  • 241aa3c update CHANGELOGs
  • 16aeeac remove erroneously committed KeyName::into_inner
  • c15fed2 enhancement: add a new DogStatsD-specific exporter (#548)
  • e6cf124 chore: Release
  • f289050 chore: improve Level and update changelog
  • deaa359 chore: update crate docs around metadata
  • ed64fb6 Add units to prometheus metric lines (#535)
  • d97f801 util: change some layers to require recorders that are Sync (#538)
  • Additional commits viewable in compare view

Updates metrics from 0.23.0 to 0.24.1

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the sidecar-non-breaking group
f04431b 
Bumps the sidecar-non-breaking group in /bolt-sidecar with 11 updates:

| Package | From | To |
| --- | --- | --- |
| [clap](https://github.com/clap-rs/clap) | `4.5.23` | `4.5.26` |
| [tower-http](https://github.com/tower-rs/tower-http) | `0.5.2` | `0.6.2` |
| [reqwest](https://github.com/seanmonstar/reqwest) | `0.12.9` | `0.12.12` |
| [tokio-tungstenite](https://github.com/snapview/tokio-tungstenite) | `0.24.0` | `0.26.1` |
| [tree_hash_derive](https://github.com/sigp/tree_hash) | `0.8.0` | `0.9.0` |
| [secp256k1](https://github.com/rust-bitcoin/rust-secp256k1) | `0.29.1` | `0.30.0` |
| [uuid](https://github.com/uuid-rs/uuid) | `1.11.0` | `1.12.0` |
| [serde_json](https://github.com/serde-rs/json) | `1.0.135` | `1.0.137` |
| [thiserror](https://github.com/dtolnay/thiserror) | `2.0.9` | `2.0.11` |
| [metrics-exporter-prometheus](https://github.com/metrics-rs/metrics) | `0.15.3` | `0.16.1` |
| [metrics](https://github.com/metrics-rs/metrics) | `0.23.0` | `0.24.1` |


Updates `clap` from 4.5.23 to 4.5.26
- [Release notes](https://github.com/clap-rs/clap/releases)
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md)
- [Commits](clap-rs/clap@clap_complete-v4.5.23...clap_complete-v4.5.26)

Updates `tower-http` from 0.5.2 to 0.6.2
- [Release notes](https://github.com/tower-rs/tower-http/releases)
- [Commits](tower-rs/tower-http@tower-http-0.5.2...tower-http-0.6.2)

Updates `reqwest` from 0.12.9 to 0.12.12
- [Release notes](https://github.com/seanmonstar/reqwest/releases)
- [Changelog](https://github.com/seanmonstar/reqwest/blob/master/CHANGELOG.md)
- [Commits](seanmonstar/reqwest@v0.12.9...v0.12.12)

Updates `tokio-tungstenite` from 0.24.0 to 0.26.1
- [Changelog](https://github.com/snapview/tokio-tungstenite/blob/master/CHANGELOG.md)
- [Commits](snapview/tokio-tungstenite@v0.24.0...v0.26.1)

Updates `tree_hash_derive` from 0.8.0 to 0.9.0
- [Release notes](https://github.com/sigp/tree_hash/releases)
- [Commits](sigp/tree_hash@v0.8.0...v0.9.0)

Updates `secp256k1` from 0.29.1 to 0.30.0
- [Changelog](https://github.com/rust-bitcoin/rust-secp256k1/blob/master/CHANGELOG.md)
- [Commits](rust-bitcoin/rust-secp256k1@secp256k1-0.29.1...secp257k1-0.30.0)

Updates `uuid` from 1.11.0 to 1.12.0
- [Release notes](https://github.com/uuid-rs/uuid/releases)
- [Commits](uuid-rs/uuid@1.11.0...1.12.0)

Updates `serde_json` from 1.0.135 to 1.0.137
- [Release notes](https://github.com/serde-rs/json/releases)
- [Commits](serde-rs/json@v1.0.135...v1.0.137)

Updates `thiserror` from 2.0.9 to 2.0.11
- [Release notes](https://github.com/dtolnay/thiserror/releases)
- [Commits](dtolnay/thiserror@2.0.9...2.0.11)

Updates `metrics-exporter-prometheus` from 0.15.3 to 0.16.1
- [Changelog](https://github.com/metrics-rs/metrics/blob/main/release.toml)
- [Commits](metrics-rs/metrics@metrics-exporter-prometheus-v0.15.3...metrics-exporter-prometheus-v0.16.1)

Updates `metrics` from 0.23.0 to 0.24.1
- [Changelog](https://github.com/metrics-rs/metrics/blob/main/release.toml)
- [Commits](metrics-rs/metrics@metrics-v0.23.0...metrics-v0.24.1)

---
updated-dependencies:
- dependency-name: clap
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: sidecar-non-breaking
- dependency-name: tower-http
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sidecar-non-breaking
- dependency-name: reqwest
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: sidecar-non-breaking
- dependency-name: tokio-tungstenite
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sidecar-non-breaking
- dependency-name: tree_hash_derive
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sidecar-non-breaking
- dependency-name: secp256k1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sidecar-non-breaking
- dependency-name: uuid
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sidecar-non-breaking
- dependency-name: serde_json
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: sidecar-non-breaking
- dependency-name: thiserror
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: sidecar-non-breaking
- dependency-name: metrics-exporter-prometheus
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sidecar-non-breaking
- dependency-name: metrics
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sidecar-non-breaking
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the T: security Type: Security label Jan 20, 2025
@estensen estensen mentioned this pull request Jan 20, 2025
Closed
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Jan 22, 2025

The group that created this PR has been removed from your configuration.

@dependabot dependabot bot closed this Jan 22, 2025
@dependabot dependabot bot deleted the dependabot/cargo/bolt-sidecar/sidecar-non-breaking-4f1b54fe13 branch January 22, 2025 12:47
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
T: security Type: Security
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants