chore(deps): bump the patch group with 12 updates

[dependabot[bot]]

Bumps the patch group with 12 updates:

Package	From	To
thiserror	1.0.58	1.0.59
async-trait	0.1.79	0.1.80
axum	0.7.4	0.7.5
cln-plugin	0.1.7	0.1.8
lightning	0.0.118	0.0.122
clap_complete	4.5.1	4.5.2
backon	0.4.3	0.4.4
jsonrpsee-wasm-client	0.22.2	0.22.4
getrandom	0.2.12	0.2.14
proc-macro2	1.0.79	1.0.81
syn	2.0.52	2.0.60
async-channel	2.2.0	2.2.1

Updates thiserror from 1.0.58 to 1.0.59

Release notes

Sourced from thiserror's releases.

1.0.59

• Unblock testing of rustc debug-fmt-detail option (#297)

Commits

• e7ad85e Release 1.0.59
• af477ec Merge pull request #297 from dtolnay/traitident
• f3fbd99 Implement ToTokens without reliance on {:?}
• 508ece8 Revert "Temporarily disable miri on doctests"
• c8c804c Explicitly install a Rust toolchain for cargo-outdated job
• 6969595 Merge pull request #293 from dtolnay/workspacewrapper
• 488d52f Apply RUSTC_WORKSPACE_WRAPPER
• ba33438 Temporarily disable miri on doctests
• See full diff in compare view

Updates async-trait from 0.1.79 to 0.1.80

Release notes

Sourced from async-trait's releases.

0.1.80

• Fix unreachable code warning for async functions that return ! (#265, thanks @​de-vri-es)

Commits

• d528b5a Release 0.1.80
• 10b5c99 Drop support for compilers older than 1.47
• 83a5422 Drop support for compilers older than 1.45
• 22d017e Build script no longer looks at $DOCS_RS
• b64d041 Move never_type test under issue266
• b683da8 Merge pull request #265 from de-vri-es/fix-unreachable-code-warning
• c8d958d Fix unreachable code warning for functions that return !
• 4f0b72e Explicitly install a Rust toolchain for cargo-outdated job
• See full diff in compare view

Updates axum from 0.7.4 to 0.7.5

Release notes

Sourced from axum's releases.

axum-extra - v0.7.5

• fixed: Remove explicit auto deref from PrivateCookieJar example (#2028)

#2028: tokio-rs/axum#2028

axum - v0.7.5

• fixed: Fixed layers being cloned when calling axum::serve directly with a Router or MethodRouter (#2586)
• fixed: h2 is no longer pulled as a dependency unless the http2 feature is enabled (#2605)

#2586: tokio-rs/axum#2586 #2605: tokio-rs/axum#2605

Commits

• ef8a9e8 Release axum and axum-extra (#2676)
• c6fd852 Update sync_wrapper to 1.0.0 from 0.1.1
• 2ec68d6 Add rejection tracing to all extractors (#2584)
• 2ce382f Remove h2 from dependencies when http2 feature is off (#2605)
• 8b13d4c Add axum-typed-routing to ECOSYSTEM.md (#2608)
• 19f6f79 Fix layers being cloned for each request (#2586)
• 3569950 Make nightly_error_messages feature compatible with latest nightly
• b6b203b fix typo in prometheus_metrics_example (#2627)
• b03f6c1 Fix typo in CONTRIBUTING.md (#2612)
• 4d65ba0 ci: Unbreak cargo-deny action (#2613)
• Additional commits viewable in compare view

Updates cln-plugin from 0.1.7 to 0.1.8

Release notes

Sourced from cln-plugin's releases.

v0.12.0 - Web 8.0 init

We're pleased to announce the 0.12.0 release of core-lightning, named by @​adi2011.

Developers: please note the Great Msat Migration in the APIs!

Highlights for Users

• NEW Built-in bookkeeper plugin! This plugin tracks all movements of msats for your node, gives you a better idea of your costs and revenues, prints out CSVs that are uploadable to Koinly and CoinTracker, lets you inspect the on-chain footprint of a channel (useful when it goes to chain). Check out the new bkpr- prefixed commands.
• NEW Built-in commando plugin! This lets you create runes to allow access to your node from a commando client, which will let you send and receive RPC commands over the lightning network.
• NEW Emergency channel backup ("static backup")! Keep track of what peers you have channels with, and in case of node failure ask those peers to close the channel.
• NEW zeroconf channels are possible for whitelisted peers.
• hsmtool has a new command, checkhsm, which will let you check a BIP30 passphrase against the hsm_secret.
• Multiple log-file options will open multiple files for logging.
• Various crashes and issues fixed in connectd including crash on peer reconnect and large memory usage when many concurrent peers.
• PSBT: fixes signature encoding to comply with BIP-0174.
• We added dynamically detected public IP addresses to getinfo.
• Due to dependency issues on some platforms, a tarball of pre-generated manual pages is included with this release.

Highlights for the Network

• We prefer IPv6 connections when available.
• We now accept spam gossip and use it for routing, but don't relay it.
• We no longer create gossip messages with zlib encoding (but still understand them).
• We treat LND "internal error" as warnings, not force close events (reverts to v0.10.0 behavior).

Highlights for Developers

• _msat fields are added wherever they were missing in the API: they're still currently an "msat"-suffixed string, but will soon bean integer value. Test with deprecated_apis=false.
• The channel_state_changed notification now fires when a channel moves into state CHANNELD_AWAITING_LOCKIN.
• htlc_accepted_hook will now expose the short_channel_id and the per-channel HTLC id.
• pyln-testing now includes utilities to read and parse the gossip_store.
• startup_regtest.sh script now includes a fund_ln method.
• Rust binaries such as cln-grpc now included in our reproducible builds.
• Updated the bolts implementation for pyln-spec.
• Plugins no longer hang indefinitely if lightningd closes their connection.
• M1 architecture support.
• Upgrade docker base image from Debian buster to bullseye, works with glibc 2.29+.
• Docker images now built with rust plugin cln-grpc.

Since v0.11.1 we've had 508 commits from 31 different contributors over 80 days.

A special thanks goes to 9 first time contributors:

• Aditya Sharma
• Alex Myers
• Igor Bubelov
• Justin Moon

... (truncated)

Commits

• See full diff in compare view

Updates lightning from 0.0.118 to 0.0.122

Release notes

Sourced from lightning's releases.

v0.0.122

0.0.122 - Apr 09, 2024 - "That Which Is Untested Is Broken"

Bug Fixes

• Route objects did not successfully round-trip through de/serialization since LDK 0.0.117, which has now been fixed (#2897).
• Correct deserialization of unknown future enum variants. This ensures downgrades from future versions of LDK do not result in read failures or corrupt reads in cases where enums are written (#2969).
• When hitting lnd bug 6039, our workaround previously resulted in ChannelManager persistences on every round-trip with our peer. These useless persistences are now skipped (#2937).

In total, this release features 4 files changed, 99 insertions, 55 deletions in 6 commits from 1 author, in alphabetical order:

• Matt Corallo

v0.0.121

0.0.121 - Jan 22, 2024 - "Unwraps are Bad"

Bug Fixes

• Fix a deadlock when calling batch_funding_transaction_generated with invalid input (#2841).

Security

0.0.121 fixes a denial-of-service vulnerability which is reachable from untrusted input from peers in rare cases if we have a public channel or in common cases if P2PGossipSync is used.

• A peer that failed to complete its handshake would cause a reachable unwrap in LDK since 0.0.119 when LDK attempts to broadcast gossip to all peers (#2842).

In total, this release features 4 files changed, 52 insertions, 10 deletions in 4 commits from 2 authors, in alphabetical order:

• Jeffrey Czyz
• Matt Corallo

v0.0.120 - Jan 17, 2024 - "Unblinded Fuzzers"

API Updates

• The PeerManager bound on UtxoLookup was removed entirely. This enables use of UtxoLookup in cases broken in 0.0.119 by #2773 (#2822).
• LDK now exposes and fully implements the route blinding feature (#2812).
• The lightning-transaction-sync crate no longer relies on system time without the time feature (#2799, #2817).
• lightning::onion_message's module layout has changed (#2821).
• Event::ChannelClosed now includes the channel_funding_txo (#2800).
• CandidateRouteHop variants were destructured into individual structs, hiding some fields which were not generally consumable (#2802).

... (truncated)

Changelog

Sourced from lightning's changelog.

0.0.122 - Apr 09, 2024 - "That Which Is Untested Is Broken"

Bug Fixes

• Route objects did not successfully round-trip through de/serialization since LDK 0.0.117, which has now been fixed (#2897).
• Correct deserialization of unknown future enum variants. This ensures downgrades from future versions of LDK do not result in read failures or corrupt reads in cases where enums are written (#2969).
• When hitting lnd bug 6039, our workaround previously resulted in ChannelManager persistences on every round-trip with our peer. These useless persistences are now skipped (#2937).

In total, this release features 4 files changed, 99 insertions, 55 deletions in 6 commits from 1 author, in alphabetical order:

• Matt Corallo

0.0.121 - Jan 22, 2024 - "Unwraps are Bad"

Bug Fixes

• Fix a deadlock when calling batch_funding_transaction_generated with invalid input (#2841).

Security

0.0.121 fixes a denial-of-service vulnerability which is reachable from untrusted input from peers in rare cases if we have a public channel or in common cases if P2PGossipSync is used.

• A peer that failed to complete its handshake would cause a reachable unwrap in LDK since 0.0.119 when LDK attempts to broadcast gossip to all peers (#2842).

In total, this release features 4 files changed, 52 insertions, 10 deletions in 4 commits from 2 authors, in alphabetical order:

• Jeffrey Czyz
• Matt Corallo

0.0.120 - Jan 17, 2024 - "Unblinded Fuzzers"

API Updates

• The PeerManager bound on UtxoLookup was removed entirely. This enables use of UtxoLookup in cases broken in 0.0.119 by #2773 (#2822).
• LDK now exposes and fully implements the route blinding feature (#2812).
• The lightning-transaction-sync crate no longer relies on system time without the time feature (#2799, #2817).
• lightning::onion_message's module layout has changed (#2821).
• Event::ChannelClosed now includes the channel_funding_txo (#2800).
• CandidateRouteHop variants were destructured into individual structs, hiding some fields which were not generally consumable (#2802).

... (truncated)

Commits

• 27e5519 Merge pull request #2985 from TheBlueMatt/2024-03-fix-upgradable-enum-121
• 66ebe7e Bump LDK to 0.0.122/invoice 0.30
• bcea4fa Keep newlines between releases in CHANGELOG consistent
• 84bc535 Add release note for 0.0.122 with just one PR.
• 271103d Avoid writing ChannelManager when hitting lnd bug 6039
• 72c4eb8 Fix Route serialization round-trip
• d429065 Fix blinded path serialization in Route
• f8b0800 Allow MaybeReadable to not fully read in upgradable_option
• bdf5a6f Ensure we read the full TLV stream length when maybe-reading None
• 499ca93 Fix unknown handling in impl_writeable_tlv_based_enum_upgradable
• Additional commits viewable in compare view

Updates clap_complete from 4.5.1 to 4.5.2

Release notes

Sourced from clap_complete's releases.

v4.5.2

[4.5.2] - 2024-03-06

Fixes

• (macros) Silence a warning

Changelog

Sourced from clap_complete's changelog.

[4.5.2] - 2024-03-06

Fixes

• (macros) Silence a warning

Commits

• 3092aa4 chore: Release
• dc33328 docs: Update changelog
• a78b953 Merge pull request #5444 from sudotac/fix-broken-completion-on-bash-4.0
• 93d4045 docs: Fix typo
• cd82f8c fix(complete): Avoid use of -v in bash completion
• 9d14f39 chore(deps): update compatible (dev) (#5438)
• 5e4facf chore: Release
• 8880b0a docs: Update changelog
• 132b5dd Merge pull request #5425 from epage/lit
• df915fe fix(derive): Re-allow expressions for id's
• Additional commits viewable in compare view

Updates backon from 0.4.3 to 0.4.4

Release notes

Sourced from backon's releases.

v0.4.4

What's Changed

• docs: Update README by @​Xuanwo in Xuanwo/backon#76
• chore(deps): update reqwest requirement from 0.11 to 0.12 by @​dependabot in Xuanwo/backon#78
• feat: Add blocking retry with context support by @​Xuanwo in Xuanwo/backon#80
• Bump backon to 0.4.4 by @​Xuanwo in Xuanwo/backon#81

Full Changelog: https://github.com/Xuanwo/backon/compare/v0.4.3...v0.4.4

Commits

• 7e90660 Bump backon to 0.4.4 (#81)
• 53fb634 feat: Add blocking retry with context support (#80)
• 9e90135 chore(deps): update reqwest requirement from 0.11 to 0.12 (#78)
• 4cd72bb docs: Update README (#76)
• See full diff in compare view

Updates jsonrpsee-wasm-client from 0.22.2 to 0.22.4

Release notes

Sourced from jsonrpsee-wasm-client's releases.

v0.22.4

[v0.22.4] - 2024-04-08

Yet another rather small release that fixes a cancel-safety issue that could cause an unexpected panic when reading disconnect reason from the background task.

Also this makes the API Client::disconnect_reason cancel-safe.

[Added]

• client: support batched notifications (#1327)
• client: support batched subscription notifs (#1332)

[Changed]

• client: downgrade logs from error/warn -> debug (#1343)

[Fixed]

• Update MSRV to 1.74.1 in Cargo.toml (#1338)
• client: disconnect_reason/read_error is now cancel-safe (#1347)

v0.22.3

[v0.22.3] - 2024-03-20

Another small release that adds a new API for RpcModule if one already has the state in an Arc and a couple of bug fixes.

[Added]

• add RpcModule::from_arc (#1324)

[Fixed]

• Revert "fix(server): return err on WS handshake err (#1288)" (#1326)
• export AlreadyStoppedError (#1325)

Thanks to the external contributors @​mattsse and @​aatifsyed who contributed to this release.

Changelog

Sourced from jsonrpsee-wasm-client's changelog.

[v0.22.4] - 2024-04-08

Yet another rather small release that fixes a cancel-safety issue that could cause an unexpected panic when reading disconnect reason from the background task.

Also this makes the API Client::disconnect_reason cancel-safe.

[Added]

• client: support batched notifications (#1327)
• client: support batched subscription notifs (#1332)

[Changed]

• client: downgrade logs from error/warn -> debug (#1343)

[Fixed]

• Update MSRV to 1.74.1 in Cargo.toml (#1338)
• client: disconnect_reason/read_error is now cancel-safe (#1347)

[v0.22.3] - 2024-03-20

Another small release that adds a new API for RpcModule if one already has the state in an Arc and a couple of bug fixes.

[Added]

• add RpcModule::from_arc (#1324)

[Fixed]

• Revert "fix(server): return err on WS handshake err (#1288)" (#1326)
• export AlreadyStoppedError (#1325)

Thanks to the external contributors @​mattsse and @​aatifsyed who contributed to this release.

Commits

• 5134502 chore: release v0.22.4
• eea811e fix(client): disconnect_reason/read_error is cancel-safe (#1347)
• 1a02a59 client: downgrade logs from error/warn -> debug (#1343)
• 8b8ca01 fix: change MSRV to 1.74.1 (#1338)
• e7c4091 client: support batched subscription notifs (#1332)
• 27d15dc chore: update tests for rustc v1.77 (#1331)
• fe654e4 fix(client): support batched notifications (#1327)
• 8c73cc6 chore: release v0.22.3
• e62f69d Revert "fix(server): return err on WS handshake err (#1288)" (#1326)
• 18204eb chore: export AlreadyStoppedError (#1325)
• Additional commits viewable in compare view

Updates getrandom from 0.2.12 to 0.2.14

Changelog

Sourced from getrandom's changelog.

[0.2.14] - 2024-04-08

Fixed

• Enable /dev/urandom fallback for MUSL-based Linux targets #408

#408: rust-random/getrandom#408

[0.2.13] - 2024-04-06

Added

• linux_disable_fallback crate feature to disable /dev/urandom-based fallback on Linux and Android targets. Enabling this feature bumps minimum supported Linux kernel version to 3.17 and Android API level to 23 (Marshmallow). #396

Changed

• Disable /dev/urandom fallback for Linux targets outside of the following target_arches: aarch64, arm, powerpc, powerpc64, s390x, x86, x86_64 #396
• Do not catch EPERM error code on Android while checking availability of the getrandom syscall #396

#396: rust-random/getrandom#396

Commits

• a39033a Enable /dev/urandom fallback for MUSL-based Linux targets (#408)
• 968dd48 Release v0.2.13 (#405)
• 8ffd43e Conditionally disable file fallback for Android and Linux (#396)
• 6b7bcb5 Replace man7.org links with manned.org (#404)
• 5f0701f CI: Run tests on aarch64-apple-darwin and aarch64-apple-ios-sim. (#398)
• 489eeee Fix nightly build by removing redundant use (#399)
• d102c36 Use doc_auto_cfg instead of doc_cfg (#392)
• 2e4bb4d Correct comments regarding LazyUsize (#391)
• See full diff in compare view

Updates proc-macro2 from 1.0.79 to 1.0.81

Release notes

Sourced from proc-macro2's releases.

1.0.81

• Documentation improvements

1.0.80

• Add Literal::byte_character constructor (#449)
• Add Literal::c_string constructor #450)

Commits

• fd2c998 Release 1.0.81
• f965e17 Merge pull request #453 from dtolnay/delimiternone
• 69fd060 Sync documentation of Delimiter::None
• da51f8d Release 1.0.80
• 392fa6c Ignore needless_pass_by_value pedantic clippy lint in test
• 1ff5c1f Ignore needless_raw_string_hashes pedantic clippy lint in test
• 0c9449e Import some Literal tests from libproc_macro
• 28c87ad Add tests of negative literal construction
• c61f5db Add some tests of cstr raw literals
• d50dcd9 Merge pull request #450 from dtolnay/cstr
• Additional commits viewable in compare view

Updates syn from 2.0.52 to 2.0.60

Release notes

Sourced from syn's releases.

2.0.60

• Improve how None-delimited groups are counted by peek (#1625)

2.0.59

• Parse c"…" and cr"…" C-string literal syntax as Lit::CStr (#1502)

2.0.58

• Support $ in custom_punctuation! macro (#1611)

2.0.57

• Eliminate dependency on quote when built with default-features disabled and the "proc-macro" feature enabled (#1608, thanks @​BD103)

2.0.56

• Apply RUSTC_WORKSPACE_WRAPPER when deciding whether to run nightly-only tests (#1605)

2.0.55

• Restore compatibility with rustc 1.56 through 1.59 (#1603)

2.0.54

• Fix dead code warning in generated code when using custom_keyword! with syn's "printing" feature disabled (#1602)

2.0.53

• Implement Copy, Clone, and ToTokens for syn::parse::Nothing (#1597)

Commits

• 7029b22 Release 2.0.60
• e978b98 Remove html_root_url & syn.json reminder from Cargo.toml
• 48f99b0 Merge pull request #1625 from dtolnay/peek
• 4b18c15 Improve how None-delimited groups are counted by peek
• 9f00b23 Merge pull request #1624 from dtolnay/peektest
• 990300a Add more extensive tests for ParseStream::peek
• 1431bd6 Update None-delimited group notation to use «∅ ∅»
• 54a1643 Fix empty-set symbol in comments
• 7307d29 Merge pull request #1623 from dtolnay/arrays
• 68d1cd9 Take advantage of the IntoIterator for [T; N]
• Additional commits viewable in compare view

Updates async-channel from 2.2.0 to 2.2.1

Release notes

Sourced from async-channel's releases.

v2.2.1

• Fix the CI badge in the crates.io page. (#84)

Changelog

Sourced from async-channel's changelog.

Version 2.2.1

• Fix the CI badge in the crates.io page. (#84)

Commits

• 790456a v2.2.1
• 68a14ae Fix CI badge in README.md (#84)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

[dpc]

Lightning dep doesn't semver. Merge #5066 and maybe the problem will go away.

[justinmoon]

Merge https://github.com/fedimint/fedimint/pull/5066 and maybe the problem will go away.

In merge queue

[dependabot[bot]]

Looks like these dependencies are no longer being updated by Dependabot, so this is no longer needed.