search

palantir / conjure-rust-runtime

Rust implementation of the Conjure runtime
10 stars 7 forks source link

Update rustls requirement from 0.21.5 to 0.23.8 #216

Closed dependabot[bot] closed 5 months ago

dependabot[bot] commented 5 months ago

Updates the requirements on rustls to permit the latest version.

Commits
  • 99abca5 Prepare 0.23.8
  • 06c777b Hide internals from documentation
  • 091587b Derive Clone for ServerConfig & ClientConfig
  • 9664833 Refactor construction of CertificatePayloadTls13
  • 45c8a54 Remove PayloadU24::new
  • 04ef27c api.rs: format imports
  • 572f970 Add test for CRL expiration
  • 8da3530 Add support for enforcing CRL expiration
  • c570793 Cover HandshakeMessagePayload::into_owned()
  • 125d641 Test theoretical support for OCSP pinning
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
changelog-app[bot] commented 5 months ago

Generate changelog in changelog-dir>`changelog/@unreleased`</changelog-dir

What do the change types mean? - `feature`: A new feature of the service. - `improvement`: An incremental improvement in the functionality or operation of the service. - `fix`: Remedies the incorrect behaviour of a component of the service in a backwards-compatible way. - `break`: Has the potential to break consumers of this service's API, inclusive of both Palantir services and external consumers of the service's API (e.g. customer-written software or integrations). - `deprecation`: Advertises the intention to remove service functionality without any change to the operation of the service itself. - `manualTask`: Requires the possibility of manual intervention (running a script, eyeballing configuration, performing database surgery, ...) at the time of upgrade for it to succeed. - `migration`: A fully automatic upgrade migration task with no engineer input required. _Note: only one type should be chosen._
How are new versions calculated? - ❗The `break` and `manual task` changelog types will result in a major release! - 🐛 The `fix` changelog type will result in a minor release in most cases, and a patch release version for patch branches. This behaviour is configurable in autorelease. - ✨ All others will result in a minor version release.

Type

- [ ] Feature - [ ] Improvement - [ ] Fix - [ ] Break - [ ] Deprecation - [ ] Manual task - [ ] Migration

Description

Update rustls requirement from 0.21.5 to 0.23.8 **Check the box to generate changelog(s)** - [ ] Generate changelog entry
dependabot[bot] commented 5 months ago

Looks like rustls is no longer updatable, so this is no longer needed.