search

shorebirdtech / updater

libupdater code for Shorebird
Other
65 stars 13 forks source link

chore(deps): bump the library-deps group in /library with 5 updates #135

Closed dependabot[bot] closed 3 months ago

dependabot[bot] commented 3 months ago

Updates the requirements on http, reqwest, mockall, serial_test and cbindgen to permit the latest version. Updates http to 1.1.0

Release notes

Sourced from http's releases.

v1.1.0

What's Changed

  • Add methods to allow trying to allocate in the HeaderMap, returning an error if oversize instead of panicking.
  • Add Extensions::get_or_insert() method.
  • Implement From<Uri> for uri::Builder.
  • Fix HeaderName::from_lowercase that could allow NUL bytes in some cases.

New Contributors

Full Changelog: https://github.com/hyperium/http/compare/v1.0.0...v1.1.0

Changelog

Sourced from http's changelog.

1.1.0 (March 4, 2024)

  • Add methods to allow trying to allocate in the HeaderMap, returning an error if oversize instead of panicking.
  • Add Extensions::get_or_insert() method.
  • Implement From<Uri> for uri::Builder.
  • Fix HeaderName::from_lowercase that could allow NUL bytes in some cases.

1.0.0 (November 15, 2023)

  • Implement Clone for Request, Response, and Extensions. This breaking change requires that all extensions now implement Clone.
  • Add a default-on std feature. Disabling it currently is not supported.
  • Fix MIRI warnings in HeaderMap::iter().

0.2.10 (November 10, 2023)

  • Fix parsing of Authority to handle square brackets in incorrect order.
  • Fix HeaderMap::with_capacity() to handle arithmetic overflow.

0.2.9 (February 17, 2023)

  • Add HeaderName constants for cache-status and cdn-cache-control.
  • Implement Hash for PathAndQuery.
  • Re-export HeaderName at crate root.

0.2.8 (June 6, 2022)

  • Fix internal usage of uninitialized memory to use MaybeUninit inside HeaderName.

0.2.7 (April 28, 2022)

  • MSRV bumped to 1.49.
  • Add extend() method to Extensions.
  • Add From<Authority> and From<PathAndQuery> impls for Uri.
  • Make HeaderName::from_static a const fn.

0.2.6 (December 30, 2021)

  • Upgrade internal itoa dependency to 1.0.

0.2.5 (September 21, 2021)

  • Add is_empty() and len() methods to Extensions.
  • Add version_ref() method to request::Builder.
  • Implement TryFrom<Vec<u8>> and TryFrom<String> for Authority, Uri, PathAndQuery, and HeaderName.
  • Make HeaderValue::from_static a const fn.

0.2.4 (April 4, 2021)

  • Fix Uri parsing to allow {, ", and } in paths.

... (truncated)

Commits
  • 3fe7267 v1.1.0
  • 96dc52f fix: HeaderName::from_lowercase allowing NUL bytes in some cases
  • caa8b4f feat: add HeaderMap::try_ methods to handle capacity overflow
  • 63102bc chore(lib): remove importing prelude AsRef trait
  • c03cc8b chore(header): allow clippy::should_implement_trait rule for HeaderValue::fro...
  • 4785cdd refactor(header): rename method to follow naming convention
  • 63e7d63 doc(header): add panics and safety section to document
  • b8ddea7 refactor(header): add comment and lint allowing to panic in const context wor...
  • fe1932d refactor(status): remove redundant static lifetime
  • 79f8da5 refactor(header): ownership is not needed to iterate
  • Additional commits viewable in compare view


Updates reqwest to 0.12.2

Release notes

Sourced from reqwest's releases.

v0.12.2

What's Changed

  • Fix missing ALPN when connecting to socks5 proxy with rustls.
  • Fix TLS version limits with rustls.
  • Fix not detected ALPN h2 from server with native-tls.

New Contributors

Full Changelog: https://github.com/seanmonstar/reqwest/compare/v0.12.1...v0.12.2

Changelog

Sourced from reqwest's changelog.

v0.12.2

  • Fix missing ALPN when connecting to socks5 proxy with rustls.
  • Fix TLS version limits with rustls.
  • Fix not detected ALPN h2 from server with native-tls.

v0.12.1

  • Fix ClientBuilder::interface() when no TLS is enabled.
  • Fix TlsInfo::peer_certificate() being truncated with rustls.
  • Fix panic if http2 feature disabled but TLS negotiated h2 in ALPN.
  • Fix Display for Error to not include its source error.

v0.12.0

  • Upgrade to hyper, http, and http-body v1.
  • Add better support for converting to and from http::Request and http::Response.
  • Add http2 optional cargo feature, default on.
  • Add charset optional cargo feature, default on.
  • Add macos-system-configuration cargo feature, default on.
  • Change all optional dependencies to no longer be exposed as implicit features.
  • Add ClientBuilder::interface(str) to specify the local interface to bind to.
  • Experimental: disables the http3 feature temporarily.

v0.11.27

  • Add hickory-dns feature, deprecating trust-dns.
  • (wasm) Fix Form::text() to not set octet-stream for plain text fields.

v0.11.26

  • Revert system-configuration upgrade, which broke MSRV on macOS.

v0.11.25

  • Fix Certificate::from_pem_bundle() parsing.
  • Fix Apple linker errors from detecting system proxies.

v0.11.24

  • Add Certificate::from_pem_bundle() to add a bundle.
  • Add http3_prior_knowledge() to blocking client builder.
  • Remove Sync bounds requirement for Body::wrap_stream().
  • Fix HTTP/2 to retry REFUSED_STREAM requests.
  • Fix instances of converting Url to Uri that could panic.

v0.11.23

  • Add Proxy::custom_http_auth(val) for setting the raw Proxy-Authorization header when connecting to proxies.
  • Fix redirect to reject locations that are not http:// or https://.

... (truncated)

Commits
  • 6768a8e v0.12.2
  • fff307b fix(connect): ALPN missed when using socks5 proxy with rustls backend (#2164)
  • 04bf45f fix: tls version limit for rustls (#2203)
  • 056f8c4 fix(connect): not negotiate h2 when using native-tls backend (#2165)
  • e0ea15b v0.12.1
  • 3d78fcb fix: Display for Error shouldn't include source (#2199)
  • c535724 Fix binding interface when no TLS is used (#2200)
  • d5adcba fix: rustls extraction of TlsInfo::peer_certificate() being truncated (#2195)
  • 7a5df21 fix: could panic if http2 disabled but TLS negotiated h2 (#2194)
  • d5051f9 Update version number in Readme
  • Additional commits viewable in compare view


Updates mockall to 0.12.1

Changelog

Sourced from mockall's changelog.

[ 0.12.1 ] - 2023-12-21

Fixed

  • Fixed using #[mockall::concretize] on functions whose generic types contain trait bounds, yet are still object safe. (#531)

  • Fixed mocking methods that use raw identifiers for their names. This was a regression in 0.12.0. (#534)

[ 0.12.0 ] - 2023-12-10

Added

  • Added #[mockall::concretize], which can be used to mock some generic methods that have non-'static generic parameters. It works by turning the generic arguments into trait objects for the expectation. (#408)

  • When mocking functions with a non-default ABI (Like extern "C"), the mock function will now use the same ABI as the original. Name mangling will also be disabled, so the mock function will be callable from external code. For example, from C functions. (#504)

Changed

  • Raised predicates, which is reexported, to 3.0.0. This may affect backwards compatibility for users who make use of predicates's "color" feature. (#467)

  • Raised MSRV to 1.64.0 because predicates-core and predicates-tree did. (#430) (#467)

  • Better "No matching expectation found" messages on stable. (#425)

Fixed

  • Fixed mocking non-private inherent methods that have attributes with syn version 2.0.9 and later. (#486)

  • Suppress clippy::too_many_arguments warnings in the generated code. This is most useful when mocking static functions with exactly 7 arguments. (#487)

... (truncated)

Commits
  • 51c4820 chore: Release
  • 20e1c6d chore: Release
  • 9406902 Merge pull request #534 from asomers/raw_identifier
  • b252265 Merge pull request #538 from asomers/mit-or-apache
  • 80fee05 [skip ci] Clarify license terms
  • 71823a3 Fix mocking functions that use raw identifiers for their names.
  • d4e0710 Merge pull request #531 from asomers/concretize-bounds
  • b1f0e78 Fix using #[concretize] on functions with bounded generic types
  • 7e4af04 chore: Release
  • d605f45 [skip ci] update version number in mockall_double/README.md
  • Additional commits viewable in compare view


Updates serial_test to 3.0.0

Release notes

Sourced from serial_test's releases.

v3.0.0

What's Changed

  • Multi key support palfrey/serial_test#102
    • Attributes like #[serial(one, two)] are now supported (for all attributes)
    • This is a breaking change, as file_serial paths now need to be done separately #[file_serial(key, path => "/tmp/foo")]
  • Attributes at a mod-level palfrey/serial_test#104
    • You can set any of the attributes on a mod and all #[test] fn's in that mod will have the attribute applied.

Full Changelog: https://github.com/palfrey/serial_test/compare/v2.0.0...v3.0.0

Commits
  • bba3db8 3.0.0
  • ae14645 Merge pull request #104 from palfrey/serial-for-mod
  • 0dec256 Merge branch 'main' into serial-for-mod
  • cee1dc1 Add testing and parallel to package keywords
  • 2a4b641 Merge branch 'main' into serial-for-mod
  • 288d933 Merge pull request #105 from palfrey/upgrade-rustix
  • cf9d7fe Upgrade rustix
  • a8d985d Replace a single-use match with if let
  • 67d22ff Fix some clippy issues
  • ff2890d Update docs for mod-level functionality
  • Additional commits viewable in compare view


Updates cbindgen to 0.26.0

Release notes

Sourced from cbindgen's releases.

0.26.0

  • Fix swapping of >>= and <<= in constants.
  • Add support for #[deprecated] (#860).
  • Built-in support for bitflags 2.0.
  • Support for "C-unwind" ABI.
  • Generate bindings for non-public extern items if they are #[no_mangle].
Changelog

Sourced from cbindgen's changelog.

0.26.0

  * Fix swapping of `>>=` and `<<=` in constants.
  * Add support for #[deprecated] ([#860](https://github.com/mozilla/cbindgen/issues/860)).
  * Built-in support for bitflags 2.0.
  * Support for "C-unwind" ABI.
  * Generate bindings for non-public extern items if they are #[no_mangle].

0.25.0

  * Re-release of yanked 0.24.6 as a major release
  * Update MSRV to 1.57
  * Support variadic arguments (`...`) ([#805](https://github.com/mozilla/cbindgen/issues/805))
  * Add --depfile option ([#820](https://github.com/mozilla/cbindgen/issues/820))
  * Breaking changes: The `Config` struct now has a private member.

0.24.6 (YANKED: depfile option was breaking, see #841)

  * Update MSRV to 1.57
  * Support variadic arguments (`...`) ([#805](https://github.com/mozilla/cbindgen/issues/805))
  * Add --depfile option ([#820](https://github.com/mozilla/cbindgen/issues/820))

0.24.5

  * Don't enforce tempfile version.

0.24.4

  * Move expand infinite recursion fix ([#799](https://github.com/mozilla/cbindgen/issues/799))
  * Add with_cpp_compat to the builder ([#796](https://github.com/mozilla/cbindgen/issues/796))
  * Handle never type in return position consistently ([#780](https://github.com/mozilla/cbindgen/issues/780))
  * Fix warnings ([#816](https://github.com/mozilla/cbindgen/issues/816), [#819](https://github.com/mozilla/cbindgen/issues/819))
  * Updated documentation ([#788](https://github.com/mozilla/cbindgen/issues/788), [#791](https://github.com/mozilla/cbindgen/issues/791), [#792](https://github.com/mozilla/cbindgen/issues/792), [#810](https://github.com/mozilla/cbindgen/issues/810), [#823](https://github.com/mozilla/cbindgen/issues/823))

0.24.3

  * Make struct expressions correctly generated through typedefs ([#768](https://github.com/mozilla/cbindgen/issues/768)).

0.24.2

  * Make bitfield operators use explicit constructors.

0.24.1

  * Add support for unary negation ([#765](https://github.com/mozilla/cbindgen/issues/765)).
  * Make more bitfield operators constexpr ([#765](https://github.com/mozilla/cbindgen/issues/765)).

0.24.0

  * Basic const generic support ([#759](https://github.com/mozilla/cbindgen/issues/759), [#760](https://github.com/mozilla/cbindgen/issues/760) [#762](https://github.com/mozilla/cbindgen/issues/762)).

... (truncated)

Commits
  • 703b53c v0.26.0
  • 56f0feb Update MSRV in Readme
  • 9b4a149 Add support for out-of-line bitfields declarations
  • 35f2e44 Update URLs
  • 85eb0f4 Bump clippy msrv to 1.64
  • 43af1eb Handle bitflags bits method calls
  • f72e447 CHANGES: Note #[deprecated] support.
  • 1473070 utilities: annotation: Clean-up deprecated parsing and getter.
  • 0fb5d07 Add support for #[deprecated].
  • d8355da Support "C-unwind" ABI
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
dependabot[bot] commented 3 months ago

Superseded by #137.