Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(deps): update all dependencies #894

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

fix(deps): update all dependencies #894

wants to merge 1 commit into from

Conversation

platform-engineering-bot
Copy link
Collaborator

@platform-engineering-bot platform-engineering-bot commented Nov 11, 2024
edited
Loading

This PR contains the following updates:

Package Type Update Change
EmbarkStudios/cargo-deny-action action major v1 -> v2
actions/checkout action major v3 -> v4
flate2 dependencies minor 1.0.35 -> 1.1.0
indexmap dependencies minor 2.6.0 -> 2.7.1
indoc dev-dependencies pin 2.0.5 -> =2.0.5
mandown (source) dependencies major 0.1.3 -> 1.0.0
quay.io/fedora/fedora-bootc container major 41 -> 43
quickcheck dev-dependencies pin 1 -> =1.0.3
rustix workspace.dependencies major 0.38.34 -> 1.0.0
similar-asserts dependencies minor 1.6.1 -> 1.7.0
similar-asserts workspace.dependencies minor 1.6.1 -> 1.7.0
tempfile (source) workspace.dependencies minor 3.14.0 -> 3.18.0
tokio (source) workspace.dependencies minor 1.41.1 -> 1.44.0
uuid dependencies minor 1.11.1 -> 1.15.1

Release Notes

EmbarkStudios/cargo-deny-action (EmbarkStudios/cargo-deny-action)

v2

Compare Source

actions/checkout (actions/checkout)

v4

Compare Source

rust-lang/flate2-rs (flate2)

v1.1.0

Compare Source

What's Changed

New Contributors

Full Changelog: rust-lang/flate2-rs@1.0.35...1.1.0

indexmap-rs/indexmap (indexmap)

v2.7.1

Compare Source

  • Added #[track_caller] to functions that may panic.
  • Improved memory reservation for insert_entry.

v2.7.0

Compare Source

  • Added methods Entry::insert_entry and VacantEntry::insert_entry, returning
    an OccupiedEntry after insertion.
kornelski/mandown (mandown)

v1.0.0

Compare Source

bytecodealliance/rustix (rustix)

v1.0.1

Compare Source

v1.0.0: 1.0.0

Compare Source

This release introduces the [Buffer trait][Buffer trait], which is used in [read][read], [pread][pread], [recv][recv], [recvfrom][recvfrom], [getrandom][getrandom], [readlinkat_raw][readlinkat_raw], [epoll::wait][epoll::wait], [kevent][kevent], [port::getn][port::getn], [getxattr][getxattr], [lgetxattr][lgetxattr], [fgetxattr][fgetxattr], [listxattr][listxattr], [llistxattr][llistxattr], and [flistxattr][flistxattr], and adds support for reading data into uninitialized buffers, as well as safely reading data into the spare capacity of Vecs.

This release also simplifies the way network addresses are handled. Instead of having separate functions with _v4, _v6, _unix, _xdp, and now _netlink suffixes, rustix now uses a [SocketAddrArg trait][SocketAddrArg trait] so that functions such as [bind][bind], [connect][connect], [sendto][sendto], and [sendmsg_addr][sendmsg_addr] can accept any type of address, and are easier to extend to new address types in the future.

And, this release simplifies the ioctl API, replacing opcode wrapper types with const generics.

This updates several APIs to add Linux 6.13 features, and raw linux-raw-sys types are no longer exposed in the public API, so it should be easier to stay up to date with new Linux releases.

And many more new features, bug fixes, and cleanups. See the CHANGES.md file for the full list of breaking changes.

mitsuhiko/similar-asserts (similar-asserts)

v1.7.0

Compare Source

  • Added support for SIMILAR_ASSERTS_CONTEXT_SIZE. #​13
Stebalien/tempfile (tempfile)

v3.18.0

Compare Source

  • Update rustix to 1.0.0.
  • Make NamedTempFile::persist_noclobber atomic on Apple operating systems. It's now atomic on MacOS, Windows, and Linux (depending on the OS version and filesystem used).

v3.17.1

Compare Source

  • Fix build with windows-sys 0.52. Unfortunately, we have no CI for older windows-sys versions at the moment...

v3.17.0

Compare Source

  • Make sure to use absolute paths in when creating unnamed temporary files (avoids a small race in the "immediate unlink" logic) and in Builder::make_in (when creating temporary files of arbitrary types).
  • Prevent a theoretical crash that could (maybe) happen when a temporary file is created from a drop function run in a TLS destructor. Nobody has actually reported a case of this happening in practice and I have been unable to create this scenario in a test.
  • When reseeding with getrandom, use platform (e.g., CPU) specific randomness sources where possible.
  • Clarify some documentation.
  • Unlink unnamed temporary files on windows immediately when possible instead of waiting for the handle to be closed. We open files with "Unix" semantics, so this is generally possible.

v3.16.0

Compare Source

  • Update getrandom to 0.3.0 (thanks to @​paolobarbolini).
  • Allow windows-sys versions 0.59.x in addition to 0.59.0 (thanks @​ErichDonGubler).
  • Improved security documentation (thanks to @​n0toose for collaborating with me on this).

v3.15.0

Compare Source

Re-seed the per-thread RNG from system randomness when we repeatedly fail to create temporary files (#​314). This resolves a potential DoS vector (#​178) while avoiding getrandom in the common case where it's necessary. The feature is optional but enabled by default via the getrandom feature.

For libc-free builds, you'll either need to disable this feature or opt-in to a different getrandom backend.

tokio-rs/tokio (tokio)

v1.44.0: Tokio v1.44.0

Compare Source

1.44.0 (March 7th, 2025)

This release changes the from_std method on sockets to panic if a blocking socket is provided. We determined this change is not a breaking change as Tokio is not intended to operate using blocking sockets. Doing so results in runtime hangs and should be considered a bug. Accidentally passing a blocking socket to Tokio is one of the most common user mistakes. If this change causes an issue for you, please comment on #​7172.

Added
  • coop: add task::coop module (#​7116)
  • process: add Command::get_kill_on_drop() (#​7086)
  • sync: add broadcast::Sender::closed (#​6685, #​7090)
  • sync: add broadcast::WeakSender (#​7100)
  • sync: add oneshot::Receiver::is_empty() (#​7153)
  • sync: add oneshot::Receiver::is_terminated() (#​7152)
Fixed
  • fs: empty reads on File should not start a background read (#​7139)
  • process: calling start_kill on exited child should not fail (#​7160)
  • signal: fix CTRL_CLOSE, CTRL_LOGOFF, CTRL_SHUTDOWN on windows (#​7122)
  • sync: properly handle panic during mpsc drop (#​7094)
Changes
  • runtime: clean up magic number in registration set (#​7112)
  • coop: make coop yield using waker defer strategy (#​7185)
  • macros: make select! budget-aware (#​7164)
  • net: panic when passing a blocking socket to from_std (#​7166)
  • io: clean up buffer casts (#​7142)
Changes to unstable APIs
  • rt: add before and after task poll callbacks (#​7120)
  • tracing: make the task tracing API unstable public (#​6972)
Documented
  • docs: fix nesting of sections in top-level docs (#​7159)
  • fs: rename symlink and hardlink parameter names (#​7143)
  • io: swap reader/writer in simplex doc test (#​7176)
  • macros: docs about select! alternatives (#​7110)
  • net: rename the argument for send_to (#​7146)
  • process: add example for reading Child stdout (#​7141)
  • process: clarify Child::kill behavior (#​7162)
  • process: fix grammar of the ChildStdin struct doc comment (#​7192)
  • runtime: consistently use worker_threads instead of core_threads (#​7186)

v1.43.0: Tokio v1.43.0

Compare Source

1.43.0 (Jan 8th, 2025)

Added
  • net: add UdpSocket::peek methods (#​7068)
  • net: add support for Haiku OS (#​7042)
  • process: add Command::into_std() (#​7014)
  • signal: add SignalKind::info on illumos (#​6995)
  • signal: add support for realtime signals on illumos (#​7029)
Fixed
  • io: don't call set_len before initializing vector in Blocking (#​7054)
  • macros: suppress clippy::needless_return in #[tokio::main] (#​6874)
  • runtime: fix thread parking on WebAssembly (#​7041)
Changes
  • chore: use unsync loads for unsync_load (#​7073)
  • io: use Buf::put_bytes in Repeat read impl (#​7055)
  • task: drop the join waker of a task eagerly (#​6986)
Changes to unstable APIs
  • metrics: improve flexibility of H2Histogram Configuration (#​6963)
  • taskdump: add accessor methods for backtrace (#​6975)
Documented
  • io: clarify ReadBuf::uninit allows initialized buffers as well (#​7053)
  • net: fix ambiguity in TcpStream::try_write_vectored docs (#​7067)
  • runtime: fix LocalRuntime doc links (#​7074)
  • sync: extend documentation for watch::Receiver::wait_for (#​7038)
  • sync: fix typos in OnceCell docs (#​7047)

v1.42.0: Tokio v1.42.0

Compare Source

1.42.0 (Dec 3rd, 2024)

Added
  • io: add AsyncFd::{try_io, try_io_mut} (#​6967)
Fixed
  • io: avoid ptr->ref->ptr roundtrip in RegistrationSet (#​6929)
  • runtime: do not defer yield_now inside block_in_place (#​6999)
Changes
  • io: simplify io readiness logic (#​6966)
Documented
  • net: fix docs for tokio::net::unix::{pid_t, gid_t, uid_t} (#​6791)
  • time: fix a typo in Instant docs (#​6982)
uuid-rs/uuid (uuid)

v1.15.1

Compare Source

What's Changed

Full Changelog: uuid-rs/uuid@v1.15.0...v1.15.1

v1.15.0

Compare Source

What's Changed

New Contributors

Full Changelog: uuid-rs/uuid@v1.14.0...v1.15.0

v1.14.0

Compare Source

What's Changed

New Contributors

Full Changelog: uuid-rs/uuid@v1.13.2...v1.14.0

v1.13.2

Compare Source

What's Changed

Full Changelog: uuid-rs/uuid@1.13.1...v1.13.2

v1.13.1

Compare Source

What's Changed

New Contributors

Full Changelog: uuid-rs/uuid@1.13.0...1.13.1

v1.13.0

Compare Source

⚠️ Potential Breakage

This release updates our version of getrandom to 0.3 and rand to 0.9. It is a potentially breaking change for the following users:

no-std users who enable the rng feature

uuid still uses getrandom by default on these platforms. Upgrade your version of getrandom and follow its new docs on configuring a custom backend.

wasm32-unknown-unknown users who enable the rng feature without the js feature

Upgrade your version of getrandom and follow its new docs on configuring a backend.

You'll also need to enable the rng-getrandom or rng-rand feature of uuid to force it to use getrandom as its backend:

[dependencies.uuid]
version = "1.13.0"
- features = ["v4"]
+ features = ["v4", "rng-getrandom"]

[dependencies.getrandom]
version = "0.3"

If you're on wasm32-unknown-unknown and using the js feature of uuid you shouldn't see any breakage. We've kept this behavior by vendoring in getrandom's web-based backend when the js feature is enabled.

What's Changed

Full Changelog: uuid-rs/uuid@1.12.1...1.13.0

v1.12.1

Compare Source

What's Changed

New Contributors

Full Changelog: uuid-rs/uuid@1.12.0...1.12.1

v1.12.0

Compare Source

⚠️ Possible Breakage

This release includes additional PartialEq implementations on Uuid, which can break inference in some cases.

What's Changed

New Contributors

Full Changelog: uuid-rs/uuid@1.11.1...1.12.0

Configuration

📅 Schedule: Branch creation - "* 0-3 * * 1" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

@cgwalters
Copy link
Collaborator

Hmm this is a big mix of stuff...including things we don't want for now such as bumping fedora:41 -> fedora:42 (need to figure out how to teach renovate about pre-release versions there).

The biggest problem here is at least our renovate config doesn't understand Rust semver compatibility rules; the indexmap, uuid etc. bumps should have gone in with the other PR type.

Digging in I think we're inheriting from this global config
https://github.com/platform-engineering-org/.github/blob/main/default.json

@platform-engineering-bot platform-engineering-bot force-pushed the renovate/all branch 2 times, most recently from 4e66595 to 5e9001b Compare November 11, 2024 18:38
@platform-engineering-bot platform-engineering-bot force-pushed the renovate/all branch 10 times, most recently from e24dc01 to 3638a4d Compare November 22, 2024 19:15
@platform-engineering-bot platform-engineering-bot force-pushed the renovate/all branch 7 times, most recently from 83e091a to 8e64751 Compare December 3, 2024 13:57
@platform-engineering-bot platform-engineering-bot force-pushed the renovate/all branch 10 times, most recently from d958b2f to dfc9f90 Compare December 7, 2024 15:45
@platform-engineering-bot platform-engineering-bot force-pushed the renovate/all branch 16 times, most recently from 2385ed5 to 2971d13 Compare March 3, 2025 13:26
@platform-engineering-bot platform-engineering-bot force-pushed the renovate/all branch 5 times, most recently from 4826025 to ea77d51 Compare March 6, 2025 18:36
@platform-engineering-bot
Copy link
Collaborator Author

platform-engineering-bot commented Mar 6, 2025
edited
Loading

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

  • any of the package files in this branch needs updating, or
  • the branch becomes conflicted, or
  • you click the rebase/retry checkbox if found above, or
  • you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: Cargo.lock
Command failed: cargo update --config net.git-fetch-with-cli=true --manifest-path Cargo.toml --package [email protected] --precise 1.0.1
    Updating crates.io index
error: failed to select a version for the requirement `rustix = "^0.38"`
candidate versions found which didn't match: 1.0.1
location searched: crates.io index
required by package `cap-std-ext v4.0.5`
    ... which satisfies dependency `cap-std-ext = "^4.0.3"` (locked to 4.0.5) of package `bootc-lib v1.1.6 (/builds/platform-engineering-org/renovate-runners/github-com/renovate/repos/github/containers/bootc/lib)`
    ... which satisfies path dependency `bootc-lib` (locked to 1.1.6) of package `bootc v0.1.9 (/builds/platform-engineering-org/renovate-runners/github-com/renovate/repos/github/containers/bootc/cli)`

@cgwalters
Copy link
Collaborator

Hmm, dependabot shouldn't be trying to roll in a semver-incompat version of rustix here (though it's cool they bumped to 1.0!)

@platform-engineering-bot platform-engineering-bot force-pushed the renovate/all branch 5 times, most recently from 5df9310 to 37142d6 Compare March 7, 2025 14:56
@platform-engineering-bot
fix(deps): update all dependencies
e354451 
Signed-off-by: Platform Engineering Bot <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@platform-engineering-bot @cgwalters