graphql-rust / juniper

GraphQL server library for Rust
Other
5.72k stars 425 forks source link

Update tokio-tungstenite requirement from 0.20 to 0.21 #1231

Closed dependabot[bot] closed 11 months ago

dependabot[bot] commented 11 months ago

Updates the requirements on tokio-tungstenite to permit the latest version.

Changelog

Sourced from tokio-tungstenite's changelog.

0.20.1

  • Fix RUSTSEC-2023-0053.
  • Fix transitive CVE-2023-43669 from tungstenite.

0.20.0

0.19.0

  • Allow users to enable/disable Nagle algorithm when using connect() helpers.
  • Improve the behavior of the Sink for the WebSocketStream, so it does not return an error when it’s not necessary (when poll_flush() is called on a connection that has just been closed).
  • Workaround an issue where rustls TLS backend expected domain in a certain format and reject IPv6 addresses if they contained square brackets in them.
  • Update dependencies and remove unused errors.

0.18.0

  • Update dependencies (underlying tungstenite core).

0.17.2

  • Make Origin header case-sensitive (to keep compatibility with poorely-written servers that don't accept lowercase Origin header).
  • Make semantics of the reading form the WebSocketStream more reasonable (return None instead of an error when the stream is normally closed).
  • Imrpove the way poll_close() works by properly driving the close of the stream till completion.

0.17.1

0.17.0

0.16.1

  • Fix feature selection problem when using TLS.

0.16.0

  • Add a function to allow to specify the TLS connector when using connect() like logic.
  • Add support for choosing the right root certificates for the TLS.
  • Change the behavior of the connect() so that it fails when using TLS without TLS feature.
  • Do not project with Unpin.
  • Update the dependencies with important implications / improvements.

0.15.0

... (truncated)

Commits
  • 52e59dd Release version 0.21.0
  • 7b2cf20 Update rustls to 0.22 and tokio-rustls to 0.25
  • ecf7a7e Update webpki-roots to 0.26
  • 27b9830 Prepare a new release, bump version
  • e36abf8 Merge pull request #298 from lightydo/master
  • 9be8881 fix rustls-tls-webpki-roots build
  • e79e2f2 update webpki-roots
  • 4570995 update tokio-rustls to fix RUSTSEC-2023-0053
  • 4c7e39b update rustls to fix RUSTSEC-2023-0053
  • 71d06d4 Merge pull request #294 from oskgo/patch-1
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)