robjtede / actix-web-lab

Experimental extractors, middleware, and other extras for possible inclusion in Actix Web.
Apache License 2.0
98 stars 14 forks source link

build(deps): update http requirement from 0.2.7 to 1.1.0 #81

Closed dependabot[bot] closed 8 months ago

dependabot[bot] commented 8 months ago

Updates the requirements on http to permit the latest version.

Release notes

Sourced from http's releases.

v1.1.0

What's Changed

  • Add methods to allow trying to allocate in the HeaderMap, returning an error if oversize instead of panicking.
  • Add Extensions::get_or_insert() method.
  • Implement From<Uri> for uri::Builder.
  • Fix HeaderName::from_lowercase that could allow NUL bytes in some cases.

New Contributors

Full Changelog: https://github.com/hyperium/http/compare/v1.0.0...v1.1.0

Changelog

Sourced from http's changelog.

1.1.0 (March 4, 2024)

  • Add methods to allow trying to allocate in the HeaderMap, returning an error if oversize instead of panicking.
  • Add Extensions::get_or_insert() method.
  • Implement From<Uri> for uri::Builder.
  • Fix HeaderName::from_lowercase that could allow NUL bytes in some cases.

1.0.0 (November 15, 2023)

  • Implement Clone for Request, Response, and Extensions. This breaking change requires that all extensions now implement Clone.
  • Add a default-on std feature. Disabling it currently is not supported.
  • Fix MIRI warnings in HeaderMap::iter().

0.2.10 (November 10, 2023)

  • Fix parsing of Authority to handle square brackets in incorrect order.
  • Fix HeaderMap::with_capacity() to handle arithmetic overflow.

0.2.9 (February 17, 2023)

  • Add HeaderName constants for cache-status and cdn-cache-control.
  • Implement Hash for PathAndQuery.
  • Re-export HeaderName at crate root.

0.2.8 (June 6, 2022)

  • Fix internal usage of uninitialized memory to use MaybeUninit inside HeaderName.

0.2.7 (April 28, 2022)

  • MSRV bumped to 1.49.
  • Add extend() method to Extensions.
  • Add From<Authority> and From<PathAndQuery> impls for Uri.
  • Make HeaderName::from_static a const fn.

0.2.6 (December 30, 2021)

  • Upgrade internal itoa dependency to 1.0.

0.2.5 (September 21, 2021)

  • Add is_empty() and len() methods to Extensions.
  • Add version_ref() method to request::Builder.
  • Implement TryFrom<Vec<u8>> and TryFrom<String> for Authority, Uri, PathAndQuery, and HeaderName.
  • Make HeaderValue::from_static a const fn.

0.2.4 (April 4, 2021)

  • Fix Uri parsing to allow {, ", and } in paths.

... (truncated)

Commits
  • 3fe7267 v1.1.0
  • 96dc52f fix: HeaderName::from_lowercase allowing NUL bytes in some cases
  • caa8b4f feat: add HeaderMap::try_ methods to handle capacity overflow
  • 63102bc chore(lib): remove importing prelude AsRef trait
  • c03cc8b chore(header): allow clippy::should_implement_trait rule for HeaderValue::fro...
  • 4785cdd refactor(header): rename method to follow naming convention
  • 63e7d63 doc(header): add panics and safety section to document
  • b8ddea7 refactor(header): add comment and lint allowing to panic in const context wor...
  • fe1932d refactor(status): remove redundant static lifetime
  • 79f8da5 refactor(header): ownership is not needed to iterate
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 8 months ago

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.