Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): bump the sidecar-minor group across 1 directory with 8 updates #729

Open
wants to merge 1 commit into
base: unstable
Choose a base branch
from
Open

chore(deps): bump the sidecar-minor group across 1 directory with 8 updates #729

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 22, 2025
edited
Loading

Bumps the sidecar-minor group with 8 updates in the /bolt-sidecar directory:

Package From To
axum-extra 0.10.0 0.11.0
tower-http 0.5.2 0.6.2
tokio-tungstenite 0.24.0 0.26.1
tree_hash_derive 0.8.0 0.9.0
secp256k1 0.29.1 0.30.0
uuid 1.11.0 1.12.1
metrics-exporter-prometheus 0.15.3 0.16.1
metrics 0.23.0 0.24.1

Updates axum-extra from 0.10.0 to 0.11.0

Release notes

Sourced from axum-extra's releases.

axum-extra v0.11.0

  • breaking: Remove unused async-stream feature, which was accidentally introduced as an implicit feature through an optional dependency which was no longer being used (#3145)
  • fixed: Fix a broken link in the documentation of ErasedJson (#3186)
  • changed: Make the status function of rejections a const function, such as FormRejection, QueryRejection and MultipartRejection (#3168)

#3145: tokio-rs/axum#3145 #3168: tokio-rs/axum#3168 #3186: tokio-rs/axum#3186

Commits

Updates tower-http from 0.5.2 to 0.6.2

Release notes

Sourced from tower-http's releases.

tower-http-0.6.2

Changed:

  • CompressionBody<B> now propagates B's size hint in its http_body::Body implementation, if compression is disabled (#531)
    • this allows a content-length to be included in an HTTP message with this body for those cases

#531: tower-rs/tower-http#531

New Contributors

Full Changelog: tower-rs/tower-http@tower-http-0.6.1...tower-http-0.6.2

v0.6.1

Fixed

  • decompression: reuse scratch buffer to significantly reduce allocations and improve performance (#521)

#521: tower-rs/tower-http#521

New Contributors

v0.6.0

Changed:

  • body module is disabled except for catch-panic, decompression-*, fs, or limit features (BREAKING) (#477)
  • Update to tower 0.5 (#503)

Fixed

  • fs: Precompression of static files now supports files without a file extension (#507)

#477: tower-rs/tower-http#477 #503: tower-rs/tower-http#503 #507: tower-rs/tower-http#507

Commits

Updates tokio-tungstenite from 0.24.0 to 0.26.1

Changelog

Sourced from tokio-tungstenite's changelog.

0.26.1

  • Update tungstenite to address an issue that might cause UB in certain cases.

0.26.0

0.25.0

Commits

Updates tree_hash_derive from 0.8.0 to 0.9.0

Release notes

Sourced from tree_hash_derive's releases.

Release v0.9.0

What's Changed

Full Changelog: sigp/tree_hash@v0.8.0...v0.9.0

Commits

Updates secp256k1 from 0.29.1 to 0.30.0

Changelog

Sourced from secp256k1's changelog.

0.30.0 - 2024-10-08

  • Allow signing variable-length messages #706
  • Bump MSRV to 1.63 #709
  • Deprecate Message::from_digest_slice in favor of Message::from_digest #712
  • Truncate debug output of SecretKey; tighten bitcoin_hashes dependency version #722
  • Simplify and improve consistency of secret key types' debug output #726
  • Simplify and improve consistency of public key types' debug output #745
  • Feature-gate KeyPair::from_str on global-context or alloc #728
  • Add infallible constructors for schnorr::Signature from byteslices #730
  • Deprecate slice-parsing methods in favor of array-parsing ones #737
  • Make RecoveryId an enum rather than integer #743

0.29.0 - 2024-04-02

  • Deprecate ThirtyTwoByteHash #686

    This trait turned out to be problematic during upgrade because we support a ranged dependency for bitcoin_hashes. Consider implementing From<T> for Message for your type iff your type is a 32 byte hash (ie, output from a hash algorithm that produces a 32 byte digest like sha256). When using the impl, consider using Message::from instead of hash.into() because we will be introducing generics in a future version and the compiler will not be able to work out the target type.

  • Bump MSRV to Rust v1.56.1 #693

  • Upgrade hashes using range dependency version = ">= 0.12, <= 0.14" #690

  • Depend on latest secp256k1-sys (vendors secp256k1 v0.4.1) #688

0.28.2 - 2024-01-30

  • Implement Hash for Scalar #674
  • Implement Ord and PartialOrd for RecoverableSignature #611
  • Add byte accessors to ElligatorSwiftSharedSecret #676

0.28.1 - 2024-01-03

  • Update secp265k1-sys to 0.9.2 (contains some fixes for WASM and a FFI binding fix)
  • Various improvements to the SerializedSignature type #658 #659

0.28.0 - 2023-10-23

  • Add bindings to the ElligatorSwift implementation #627
  • Depend on recent release of bitcoin_hashes v0.13.0 #621
  • Add a verify function to PublicKey #618
  • Add serialize function for schnorr::Signature #607
  • Bump MSRV to 1.48 #595
  • Remove implementations of PartialEq, Eq, PartialOrd, Ord, and Hash from the impl_array_newtype macro. Users will now need to derive these traits if they are wanted.

0.27.0 - 2023-03-15

... (truncated)

Commits

Updates uuid from 1.11.0 to 1.12.1

Release notes

Sourced from uuid's releases.

1.12.1

What's Changed

New Contributors

Full Changelog: uuid-rs/uuid@1.12.0...1.12.1

1.12.0

⚠️ Possible Breakage

This release includes additional PartialEq implementations on Uuid, which can break inference in some cases.

What's Changed

New Contributors

Full Changelog: uuid-rs/uuid@1.11.1...1.12.0

1.11.1

What's Changed

New Contributors

Full Changelog: uuid-rs/uuid@1.11.0...1.11.1

Commits
  • 70831d2 Merge pull request #791 from uuid-rs/cargo/1.12.1
  • ddb8785 prepare for 1.12.1 release
  • 3a0a378 Merge pull request #790 from uuid-rs/chore/fewer-shifts
  • 62da97b remove sketchy benches
  • 7a96ae2 restore parens
  • cfc627b reduce bitshifts in from_u64_pair
  • 4c785e5 Merge pull request #788 from Vrtgs/main
  • 70efa18 Merge pull request #789 from cstyles/fix-links-to-namespaces
  • 2a28bc5 Fix links to namespaces in documentation
  • 5d629ce use inherint to_be_bytes and to_le_bytes methods, rather than reimplementing ...
  • Additional commits viewable in compare view

Updates metrics-exporter-prometheus from 0.15.3 to 0.16.1

Commits
  • f056b19 chore: Release
  • d9eae32 chore: Release
  • 241aa3c update CHANGELOGs
  • 16aeeac remove erroneously committed KeyName::into_inner
  • c15fed2 enhancement: add a new DogStatsD-specific exporter (#548)
  • e6cf124 chore: Release
  • f289050 chore: improve Level and update changelog
  • deaa359 chore: update crate docs around metadata
  • ed64fb6 Add units to prometheus metric lines (#535)
  • d97f801 util: change some layers to require recorders that are Sync (#538)
  • Additional commits viewable in compare view

Updates metrics from 0.23.0 to 0.24.1

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added the T: security Type: Security label Jan 22, 2025
@dependabot
chore(deps): bump the sidecar-minor group across 1 directory with 8 u…
13bcbb5 
…pdates

Bumps the sidecar-minor group with 8 updates in the /bolt-sidecar directory:

| Package | From | To |
| --- | --- | --- |
| [axum-extra](https://github.com/tokio-rs/axum) | `0.10.0` | `0.11.0` |
| [tower-http](https://github.com/tower-rs/tower-http) | `0.5.2` | `0.6.2` |
| [tokio-tungstenite](https://github.com/snapview/tokio-tungstenite) | `0.24.0` | `0.26.1` |
| [tree_hash_derive](https://github.com/sigp/tree_hash) | `0.8.0` | `0.9.0` |
| [secp256k1](https://github.com/rust-bitcoin/rust-secp256k1) | `0.29.1` | `0.30.0` |
| [uuid](https://github.com/uuid-rs/uuid) | `1.11.0` | `1.12.1` |
| [metrics-exporter-prometheus](https://github.com/metrics-rs/metrics) | `0.15.3` | `0.16.1` |
| [metrics](https://github.com/metrics-rs/metrics) | `0.23.0` | `0.24.1` |



Updates `axum-extra` from 0.10.0 to 0.11.0
- [Release notes](https://github.com/tokio-rs/axum/releases)
- [Changelog](https://github.com/tokio-rs/axum/blob/main/CHANGELOG.md)
- [Commits](tokio-rs/axum@axum-extra-v0.10.0...axum-extra-v0.11.0)

Updates `tower-http` from 0.5.2 to 0.6.2
- [Release notes](https://github.com/tower-rs/tower-http/releases)
- [Commits](tower-rs/tower-http@tower-http-0.5.2...tower-http-0.6.2)

Updates `tokio-tungstenite` from 0.24.0 to 0.26.1
- [Changelog](https://github.com/snapview/tokio-tungstenite/blob/master/CHANGELOG.md)
- [Commits](snapview/tokio-tungstenite@v0.24.0...v0.26.1)

Updates `tree_hash_derive` from 0.8.0 to 0.9.0
- [Release notes](https://github.com/sigp/tree_hash/releases)
- [Commits](sigp/tree_hash@v0.8.0...v0.9.0)

Updates `secp256k1` from 0.29.1 to 0.30.0
- [Changelog](https://github.com/rust-bitcoin/rust-secp256k1/blob/master/CHANGELOG.md)
- [Commits](rust-bitcoin/rust-secp256k1@secp256k1-0.29.1...secp257k1-0.30.0)

Updates `uuid` from 1.11.0 to 1.12.1
- [Release notes](https://github.com/uuid-rs/uuid/releases)
- [Commits](uuid-rs/uuid@1.11.0...1.12.1)

Updates `metrics-exporter-prometheus` from 0.15.3 to 0.16.1
- [Changelog](https://github.com/metrics-rs/metrics/blob/main/release.toml)
- [Commits](metrics-rs/metrics@metrics-exporter-prometheus-v0.15.3...metrics-exporter-prometheus-v0.16.1)

Updates `metrics` from 0.23.0 to 0.24.1
- [Changelog](https://github.com/metrics-rs/metrics/blob/main/release.toml)
- [Commits](metrics-rs/metrics@metrics-v0.23.0...metrics-v0.24.1)

---
updated-dependencies:
- dependency-name: axum-extra
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sidecar-minor
- dependency-name: tower-http
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sidecar-minor
- dependency-name: tokio-tungstenite
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sidecar-minor
- dependency-name: tree_hash_derive
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sidecar-minor
- dependency-name: secp256k1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sidecar-minor
- dependency-name: uuid
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sidecar-minor
- dependency-name: metrics-exporter-prometheus
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sidecar-minor
- dependency-name: metrics
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sidecar-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/cargo/bolt-sidecar/sidecar-minor-35e06c5a9b branch from babd8a4 to 13bcbb5 Compare January 22, 2025 13:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
T: security Type: Security
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants