Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

build(deps): bump the prod group with 7 updates #8977

Closed
wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 28, 2024

Bumps the prod group with 7 updates:

Package From To
tower 0.4.13 0.5.1
sentry 0.32.3 0.34.0
hyper-util 0.1.9 0.1.10
insta 1.40.0 1.41.0
primitive-types 0.12.2 0.13.1
elasticsearch 8.5.0-alpha.1 8.15.0-alpha.1
reqwest 0.11.27 0.12.8

Updates tower from 0.4.13 to 0.5.1

Release notes

Sourced from tower's releases.

tower 0.5.1

  • Fix minimum version of tower-layer dependency (#787)

#787: tower-rs/tower#787

tower 0.5.0

Fixed

  • util: BoxService is now Sync (#702)

Changed

  • util: Removed deprecated ServiceExt::ready_and method and ReadyAnd future (#652)
  • retry: Breaking Change retry::Policy::retry now accepts &mut Req and &mut Res instead of the previous mutable versions. This increases the flexibility of the retry policy. To update, update your method signature to include mut for both parameters. (#584)
  • retry: Breaking Change Change Policy to accept &mut self (#681)
  • retry: Add generic backoff utilities (#685)
  • retry: Add Budget trait. This allows end-users to implement their own budget and bucket implementations. (#703)
  • reconnect: Breaking Change Remove unused generic parameter from Reconnect::new (#755)
  • ready-cache: Allow iteration over ready services (#700)
  • discover: Implement Clone for Change (#701)
  • util: Add a BoxCloneServiceLayer (#708)
  • rng: use a simpler random 2-sampler (#716)
  • filter: Derive Clone for AsyncFilterLayer (#731)
  • general: Update IndexMap (#741)
  • MSRV: Increase MSRV to 1.63.0 (#741)

#702: tower-rs/tower#702 #652: tower-rs/tower#652 #584: tower-rs/tower#584 #681: tower-rs/tower#681 #685: tower-rs/tower#685 #703: tower-rs/tower#703 #755: tower-rs/tower#755 #700: tower-rs/tower#700 #701: tower-rs/tower#701 #708: tower-rs/tower#708 #716: tower-rs/tower#716 #731: tower-rs/tower#731 #741: tower-rs/tower#741

Commits
  • 7155101 Prepare release of v0.5.1 (#791)
  • b2c48b4 Bump dependency on tower-layer (#787)
  • fec9e55 tower-layer: drop versions from dev dependencies (#782)
  • 646804d chore: prepare to release tower-0.5.0, tower-layer-0.3.3, tower-service-0.3.3...
  • 7202cfe chore: fix a few typos (#780)
  • 85080a5 use workspace dependencies for tower (#778)
  • 88a7d3e fix warnings found when running check/doc commands (#779)
  • a6e98a7 chore: update GitHub Actions CI (#740)
  • 74e925d chore: fix spelling errors (#775)
  • 89ac74f feat: Make new functions const when possible (#760)
  • Additional commits viewable in compare view

Updates sentry from 0.32.3 to 0.34.0

Release notes

Sourced from sentry's releases.

0.34.0

Features:

  • Renamed the UNSTABLE_metrics and UNSTABLE_cadence feature flags to metrics and metrics-cadence1 respectively.

0.33.0

Various fixes & improvements

  • ref(metrics): Add normalization and update set metrics hashing (#658) by @​elramen
  • feat: add embedded-svc based http transport (#654) by @​madmo
Changelog

Sourced from sentry's changelog.

0.34.0

Features:

  • Renamed the UNSTABLE_metrics and UNSTABLE_cadence feature flags to metrics and metrics-cadence1 respectively.

0.33.0

Various fixes & improvements

  • ref(metrics): Add normalization and update set metrics hashing (#658) by @​elramen
  • feat: add embedded-svc based http transport (#654) by @​madmo
Commits

Updates hyper-util from 0.1.9 to 0.1.10

Release notes

Sourced from hyper-util's releases.

v0.1.10

What's Changed

  • Add http2_max_header_list_size(num) option to legacy client builder.
  • Add set_tcp_user_timeout(dur) option to legacy HttpConnector.

New Contributors

Full Changelog: hyperium/hyper-util@v0.1.9...v0.1.10

Changelog

Sourced from hyper-util's changelog.

0.1.10 (2024-10-28)

  • Add http2_max_header_list_size(num) option to legacy client builder.
  • Add set_tcp_user_timeout(dur) option to legacy HttpConnector.
Commits
  • a636037 v0.1.10
  • 05b13f4 chore: Fix test warning (#155)
  • 30f38c8 feat(client): Expose http2::builder::max_header_list_size in the client bui...
  • aa90ce5 refactor: allow resolve span to be disabled (#153)
  • 4dda024 feat(client): Add a new config to set TCP_USER_TIMEOUT (#152)
  • See full diff in compare view

Updates insta from 1.40.0 to 1.41.0

Release notes

Sourced from insta's releases.

1.41.0

  • Experimental support for binary snapshots. #610 (Florian Plattner)

  • --force-update-snapshots now causes cargo-insta to write every snapshot, regardless of whether snapshots fully match, and now implies --accept. This allows for --force-update-snapshots to update inline snapshots' delimiters and indentation.

    For the previous behavior of --force-update-snapshots, which limited writes to snapshots which didn't fully match, use --require-full-match. The main difference between --require-full-match and the existing behavior of --force-update-snapshots is a non-zero exit code on any snapshots which don't fully match.

    Like the previous behavior or --force-update-snapshots, --require-full-match doesn't track inline snapshots' delimiters or indentation, so can't update if those don't match. #644

  • Inline snapshots only use # characters as delimiters when required. #603

  • Warnings for undiscovered snapshots are more robust, and include files with custom snapshot extensions. #637

  • Insta runs correctly on packages which reference rust files in a parent path. #626

  • Warnings are printed when any snapshot uses a legacy format. #599

  • cargo insta --version now prints a version. #665

  • insta now internally uses INSTA_UPDATE=force rather than INSTA_FORCE_UPDATE=1. (This doesn't affect users of cargo-insta, which handles this internally.) #482

  • cargo-insta's integration tests continue to grow over the past couple of versions, and now offer coverage of most of cargo-insta's interface.

Changelog

Sourced from insta's changelog.

1.41.0

  • Experimental support for binary snapshots. #610 (Florian Plattner)

  • --force-update-snapshots now causes cargo-insta to write every snapshot, regardless of whether snapshots fully match, and now implies --accept. This allows for --force-update-snapshots to update inline snapshots' delimiters and indentation.

    For the previous behavior of --force-update-snapshots, which limited writes to snapshots which didn't fully match, use --require-full-match. The main difference between --require-full-match and the existing behavior of --force-update-snapshots is a non-zero exit code on any snapshots which don't fully match.

    Like the previous behavior or --force-update-snapshots, --require-full-match doesn't track inline snapshots' delimiters or indentation, so can't update if those don't match. #644

  • Inline snapshots only use # characters as delimiters when required. #603

  • Warnings for undiscovered snapshots are more robust, and include files with custom snapshot extensions. #637

  • Insta runs correctly on packages which reference rust files in a parent path. #626

  • Warnings are printed when any snapshot uses a legacy format. #599

  • cargo insta --version now prints a version. #665

  • insta now internally uses INSTA_UPDATE=force rather than INSTA_FORCE_UPDATE=1. (This doesn't affect users of cargo-insta, which handles this internally.) #482

  • cargo-insta's integration tests continue to grow over the past couple of versions, and now offer coverage of most of cargo-insta's interface.

Commits

Updates primitive-types from 0.12.2 to 0.13.1

Commits

Updates elasticsearch from 8.5.0-alpha.1 to 8.15.0-alpha.1

Release notes

Sourced from elasticsearch's releases.

v8.15.0-alpha.1

What's Changed

Full Changelog: elastic/elasticsearch-rs@v8.5.0-alpha.1...v8.15.0-alpha.1

Commits
  • e6e2f02 Update README
  • bcade94 Allow running on wasm32 targets using fetch() for http requests (#200)
  • baa023d Update xtask dependencies, run CI only with platinum (https) config
  • 756eec2 Add credential using a base64 encoded API key (#238)
  • 52c74a4 Fix doctests
  • 2fbcdd1 feature: Add multi-node connection pool (#189)
  • b70057b Escape HTML characters in docs (#209)
  • 144f586 Add documentation for msearch (#204)
  • bcc4c0f Derive Clone on Bulk request structs (#202)
  • 0c92c3a Extract credentials passed in Url (#147)
  • Additional commits viewable in compare view

Updates reqwest from 0.11.27 to 0.12.8

Release notes

Sourced from reqwest's releases.

v0.12.8

What's Changed

  • Add support for SOCKS4 proxies.
  • Add multipart::Form::file() method for adding files easily.
  • Add Body::wrap() to wrap any http_body::Body type.
  • Fix the pool configuration to use a timer to remove expired connections.

New Contributors

Full Changelog: seanmonstar/reqwest@v0.12.7...v0.12.8

v0.12.7

What's Changed

  • Revert adding impl Service<http::Request<_>> for Client.

Full Changelog: seanmonstar/reqwest@v0.12.6...v0.12.7

v0.12.6

What's Changed

  • Add support for danger_accept_invalid_hostnames for rustls.
  • Add impl Service<http::Request<Body>> for Client and &'_ Client.
  • Add support for !Sync bodies in Body::wrap_stream().
  • Enable happy eyeballs when hickory-dns is used.
  • Fix Proxy so that HTTP(S)_PROXY values take precendence over ALL_PROXY.
  • Fix blocking::RequestBuilder::header() from unsetting sensitive on passed header values.

New Contributors

Thanks again

... (truncated)

Changelog

Sourced from reqwest's changelog.

v0.12.8

  • Add support for SOCKS4 proxies.
  • Add multipart::Form::file() method for adding files easily.
  • Add Body::wrap() to wrap any http_body::Body type.
  • Fix the pool configuration to use a timer to remove expired connections.

v0.12.7

  • Revert adding impl Service<http::Request<_>> for Client.

v0.12.6

  • Add support for danger_accept_invalid_hostnames for rustls.
  • Add impl Service<http::Request<Body>> for Client and &'_ Client.
  • Add support for !Sync bodies in Body::wrap_stream().
  • Enable happy eyeballs when hickory-dns is used.
  • Fix Proxy so that HTTP(S)_PROXY values take precendence over ALL_PROXY.
  • Fix blocking::RequestBuilder::header() from unsetting sensitive on passed header values.

v0.12.5

  • Add blocking::ClientBuilder::dns_resolver() method to change DNS resolver in blocking client.
  • Add http3 feature back, still requiring reqwest_unstable.
  • Add rustls-tls-no-provider Cargo feature to use rustls without a crypto provider.
  • Fix Accept-Encoding header combinations.
  • Fix http3 resolving IPv6 addresses.
  • Internal: upgrade to rustls 0.23.

v0.12.4

  • Add zstd support, enabled with zstd Cargo feature.
  • Add ClientBuilder::read_timeout(Duration), which applies the duration for each read operation. The timeout resets after a successful read.

v0.12.3

  • Add FromStr for dns::Name.
  • Add ClientBuilder::built_in_webpki_certs(bool) to enable them separately.
  • Add ClientBuilder::built_in_native_certs(bool) to enable them separately.
  • Fix sending content-length: 0 for GET requests.
  • Fix response body content_length() to return value when timeout is configured.
  • Fix ClientBuilder::resolve() to use lowercase domain names.

v0.12.2

  • Fix missing ALPN when connecting to socks5 proxy with rustls.
  • Fix TLS version limits with rustls.
  • Fix not detected ALPN h2 from server with native-tls.

... (truncated)

Commits

Most Recent Ignore Conditions Applied to This Pull Request
Dependency Name Ignore Conditions
sentry [>= 0.24.a, < 0.25]
sentry [>= 0.25.a, < 0.26]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the prod group with 7 updates:

| Package | From | To |
| --- | --- | --- |
| [tower](https://github.com/tower-rs/tower) | `0.4.13` | `0.5.1` |
| [sentry](https://github.com/getsentry/sentry-rust) | `0.32.3` | `0.34.0` |
| [hyper-util](https://github.com/hyperium/hyper-util) | `0.1.9` | `0.1.10` |
| [insta](https://github.com/mitsuhiko/insta) | `1.40.0` | `1.41.0` |
| [primitive-types](https://github.com/paritytech/parity-common) | `0.12.2` | `0.13.1` |
| [elasticsearch](https://github.com/elastic/elasticsearch-rs) | `8.5.0-alpha.1` | `8.15.0-alpha.1` |
| [reqwest](https://github.com/seanmonstar/reqwest) | `0.11.27` | `0.12.8` |


Updates `tower` from 0.4.13 to 0.5.1
- [Release notes](https://github.com/tower-rs/tower/releases)
- [Commits](tower-rs/tower@tower-0.4.13...tower-0.5.1)

Updates `sentry` from 0.32.3 to 0.34.0
- [Release notes](https://github.com/getsentry/sentry-rust/releases)
- [Changelog](https://github.com/getsentry/sentry-rust/blob/master/CHANGELOG.md)
- [Commits](getsentry/sentry-rust@0.32.3...0.34.0)

Updates `hyper-util` from 0.1.9 to 0.1.10
- [Release notes](https://github.com/hyperium/hyper-util/releases)
- [Changelog](https://github.com/hyperium/hyper-util/blob/master/CHANGELOG.md)
- [Commits](hyperium/hyper-util@v0.1.9...v0.1.10)

Updates `insta` from 1.40.0 to 1.41.0
- [Release notes](https://github.com/mitsuhiko/insta/releases)
- [Changelog](https://github.com/mitsuhiko/insta/blob/master/CHANGELOG.md)
- [Commits](mitsuhiko/insta@1.40.0...1.41.0)

Updates `primitive-types` from 0.12.2 to 0.13.1
- [Commits](https://github.com/paritytech/parity-common/commits/primitive-types-v0.13.1)

Updates `elasticsearch` from 8.5.0-alpha.1 to 8.15.0-alpha.1
- [Release notes](https://github.com/elastic/elasticsearch-rs/releases)
- [Commits](elastic/elasticsearch-rs@v8.5.0-alpha.1...v8.15.0-alpha.1)

Updates `reqwest` from 0.11.27 to 0.12.8
- [Release notes](https://github.com/seanmonstar/reqwest/releases)
- [Changelog](https://github.com/seanmonstar/reqwest/blob/master/CHANGELOG.md)
- [Commits](seanmonstar/reqwest@v0.11.27...v0.12.8)

---
updated-dependencies:
- dependency-name: tower
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod
- dependency-name: sentry
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod
- dependency-name: hyper-util
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod
- dependency-name: insta
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod
- dependency-name: primitive-types
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod
- dependency-name: elasticsearch
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod
- dependency-name: reqwest
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot requested review from a team as code owners October 28, 2024 15:48
@dependabot dependabot bot added A-dependencies Area: Dependency file updates A-rust Area: Updates to Rust code C-trivial Category: A trivial change that is not worth mentioning in the CHANGELOG P-Low ❄️ labels Oct 28, 2024
@dependabot dependabot bot requested review from oxarbitrage and removed request for a team October 28, 2024 15:48
Copy link
Contributor Author

dependabot bot commented on behalf of github Oct 29, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Oct 29, 2024
@dependabot dependabot bot deleted the dependabot/cargo/prod-a818a7c5f6 branch October 29, 2024 23:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
A-dependencies Area: Dependency file updates A-rust Area: Updates to Rust code C-trivial Category: A trivial change that is not worth mentioning in the CHANGELOG P-Low ❄️
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants