Bump the dependencies group across 1 directory with 17 updates#235
Conversation
Bumps the dependencies group with 14 updates in the / directory: | Package | From | To | | --- | --- | --- | | [log](https://github.com/rust-lang/log) | `0.4.30` | `0.4.33` | | [chrono](https://github.com/chronotope/chrono) | `0.4.44` | `0.4.45` | | [regex](https://github.com/rust-lang/regex) | `1.12.3` | `1.12.4` | | [bytes](https://github.com/tokio-rs/bytes) | `1.11.1` | `1.12.0` | | [aws-config](https://github.com/smithy-lang/smithy-rs) | `1.8.17` | `1.8.18` | | [aws-runtime](https://github.com/smithy-lang/smithy-rs) | `1.7.4` | `1.7.5` | | [aws-sdk-secretsmanager](https://github.com/awslabs/aws-sdk-rust) | `1.106.0` | `1.108.0` | | [arc-swap](https://github.com/vorner/arc-swap) | `1.9.1` | `1.9.2` | | [rand](https://github.com/rust-random/rand) | `0.10.1` | `0.10.2` | | [serde_with](https://github.com/jonasbb/serde_with) | `3.20.0` | `3.21.0` | | [rustls](https://github.com/rustls/rustls) | `0.23.40` | `0.23.41` | | [aws-sdk-acm](https://github.com/awslabs/aws-sdk-rust) | `1.104.0` | `1.107.0` | | [aws-lc-rs](https://github.com/aws/aws-lc-rs) | `1.17.0` | `1.17.1` | | [zeroize](https://github.com/RustCrypto/utils) | `1.8.2` | `1.9.0` | Updates `log` from 0.4.30 to 0.4.33 - [Release notes](https://github.com/rust-lang/log/releases) - [Changelog](https://github.com/rust-lang/log/blob/master/CHANGELOG.md) - [Commits](rust-lang/log@0.4.30...0.4.33) Updates `chrono` from 0.4.44 to 0.4.45 - [Release notes](https://github.com/chronotope/chrono/releases) - [Changelog](https://github.com/chronotope/chrono/blob/main/CHANGELOG.md) - [Commits](chronotope/chrono@v0.4.44...v0.4.45) Updates `regex` from 1.12.3 to 1.12.4 - [Release notes](https://github.com/rust-lang/regex/releases) - [Changelog](https://github.com/rust-lang/regex/blob/master/CHANGELOG.md) - [Commits](rust-lang/regex@1.12.3...1.12.4) Updates `bytes` from 1.11.1 to 1.12.0 - [Release notes](https://github.com/tokio-rs/bytes/releases) - [Changelog](https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md) - [Commits](tokio-rs/bytes@v1.11.1...v1.12.0) Updates `aws-config` from 1.8.17 to 1.8.18 - [Release notes](https://github.com/smithy-lang/smithy-rs/releases) - [Changelog](https://github.com/smithy-lang/smithy-rs/blob/main/CHANGELOG.md) - [Commits](https://github.com/smithy-lang/smithy-rs/commits) Updates `aws-runtime` from 1.7.4 to 1.7.5 - [Release notes](https://github.com/smithy-lang/smithy-rs/releases) - [Changelog](https://github.com/smithy-lang/smithy-rs/blob/main/CHANGELOG.md) - [Commits](https://github.com/smithy-lang/smithy-rs/commits) Updates `aws-sdk-secretsmanager` from 1.106.0 to 1.108.0 - [Release notes](https://github.com/awslabs/aws-sdk-rust/releases) - [Commits](https://github.com/awslabs/aws-sdk-rust/commits) Updates `aws-smithy-runtime-api` from 1.12.1 to 1.12.3 - [Release notes](https://github.com/smithy-lang/smithy-rs/releases) - [Changelog](https://github.com/smithy-lang/smithy-rs/blob/main/CHANGELOG.md) - [Commits](https://github.com/smithy-lang/smithy-rs/commits) Updates `aws-sdk-sts` from 1.105.0 to 1.106.0 - [Release notes](https://github.com/awslabs/aws-sdk-rust/releases) - [Commits](https://github.com/awslabs/aws-sdk-rust/commits) Updates `arc-swap` from 1.9.1 to 1.9.2 - [Changelog](https://github.com/vorner/arc-swap/blob/master/CHANGELOG.md) - [Commits](https://github.com/vorner/arc-swap/commits) Updates `rand` from 0.10.1 to 0.10.2 - [Release notes](https://github.com/rust-random/rand/releases) - [Changelog](https://github.com/rust-random/rand/blob/master/CHANGELOG.md) - [Commits](rust-random/rand@0.10.1...0.10.2) Updates `aws-smithy-types` from 1.4.8 to 1.5.0 - [Release notes](https://github.com/smithy-lang/smithy-rs/releases) - [Changelog](https://github.com/smithy-lang/smithy-rs/blob/main/CHANGELOG.md) - [Commits](https://github.com/smithy-lang/smithy-rs/commits) Updates `serde_with` from 3.20.0 to 3.21.0 - [Release notes](https://github.com/jonasbb/serde_with/releases) - [Commits](jonasbb/serde_with@v3.20.0...v3.21.0) Updates `rustls` from 0.23.40 to 0.23.41 - [Release notes](https://github.com/rustls/rustls/releases) - [Changelog](https://github.com/rustls/rustls/blob/main/CHANGELOG.md) - [Commits](rustls/rustls@v/0.23.40...v/0.23.41) Updates `aws-sdk-acm` from 1.104.0 to 1.107.0 - [Release notes](https://github.com/awslabs/aws-sdk-rust/releases) - [Commits](https://github.com/awslabs/aws-sdk-rust/commits) Updates `aws-lc-rs` from 1.17.0 to 1.17.1 - [Release notes](https://github.com/aws/aws-lc-rs/releases) - [Commits](aws/aws-lc-rs@v1.17.0...v1.17.1) Updates `zeroize` from 1.8.2 to 1.9.0 - [Commits](RustCrypto/utils@zeroize-v1.8.2...zeroize-v1.9.0) --- updated-dependencies: - dependency-name: log dependency-version: 0.4.33 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: chrono dependency-version: 0.4.45 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: regex dependency-version: 1.12.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: bytes dependency-version: 1.12.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: aws-config dependency-version: 1.8.18 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: aws-runtime dependency-version: 1.7.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: aws-sdk-secretsmanager dependency-version: 1.108.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: aws-smithy-runtime-api dependency-version: 1.12.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: aws-sdk-sts dependency-version: 1.106.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: arc-swap dependency-version: 1.9.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: rand dependency-version: 0.10.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: aws-smithy-types dependency-version: 1.5.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: serde_with dependency-version: 3.21.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: rustls dependency-version: 0.23.41 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: aws-sdk-acm dependency-version: 1.107.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: aws-lc-rs dependency-version: 1.17.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: zeroize dependency-version: 1.9.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies ... Signed-off-by: dependabot[bot] <support@github.com>
Codecov Report✅ All modified and coverable lines are covered by tests. Additional details and impacted files@@ Coverage Diff @@
## main #235 +/- ##
=======================================
Coverage 86.27% 86.27%
=======================================
Files 34 34
Lines 9331 9331
Branches 9331 9331
=======================================
Hits 8050 8050
Misses 1148 1148
Partials 133 133 ☔ View full report in Codecov by Harness. 🚀 New features to boost your workflow:
|
|
Claude finished @reyhankoyun's task in 1m 23s —— View job Dependency bump review
This is a lockfile-only change ( Notable points🔒 Security-relevant fixes — good to pull in for a credentials provider:
🔐 Crypto stack bumps (verify a clean build, which CI confirms):
📦 Transitive bumps not in the PR summary table (resolver pulled them in):
Nit (non-blocking)The PR title says 17 updates and the body says 14; the discrepancy is just direct-vs-transitive counting from Dependabot's grouping. Cosmetic only. Verdict✅ LGTM. Routine grouped dependency update, lockfile-only, all constraints satisfied, CI green, and it happens to bring in two meaningful security patches ( |
Bumps the dependencies group with 14 updates in the / directory:
0.4.300.4.330.4.440.4.451.12.31.12.41.11.11.12.01.8.171.8.181.7.41.7.51.106.01.108.01.9.11.9.20.10.10.10.23.20.03.21.00.23.400.23.411.104.01.107.01.17.01.17.11.8.21.9.0Updates
logfrom 0.4.30 to 0.4.33Release notes
Sourced from log's releases.
Changelog
Sourced from log's changelog.
Commits
f405739Merge pull request #734 from rust-lang/cargo/0.4.336a24abfprepare for 0.4.33 release87e0621Merge pull request #732 from matteo-zeggiotti-ok/fix-key-comparisona9b5711Review: fallback to the &str hashcc89cc6Review: fixed other comparisons920e7dcReview: fixed comparison onMaybeStaticStr0d71d3cFixed key comparisona5b5b21Merge pull request #730 from rust-lang/cargo/0.4.32c8d3b12prepare for 0.4.32 releasece6cd9fMerge pull request #729 from tisonkun/kv-std-supportUpdates
chronofrom 0.4.44 to 0.4.45Release notes
Sourced from chrono's releases.
Commits
1703382Prepare 0.4.45 release881f9abtz_data: fix tzdata locations on Androidf14ead4fix(tz): reject TZ offset hour of 24 to avoid FixedOffset overflowc6063e6Update similar-asserts requirement from 1.6.1 to 2.0.0120686cBump codecov/codecov-action from 5 to 6Updates
regexfrom 1.12.3 to 1.12.4Changelog
Sourced from regex's changelog.
Commits
7b96fdc1.12.47b89cf0deps: update to regex-syntax 0.8.111401679regex-syntax-0.8.11d709000changelog: 1.12.49825c74syntax: avoid re-canonicalizing the entire IntervalSet on push (#1308)a7f2ff6docs: clarify regex-lite word boundaries2c7b172docs: clarify unsupported Anchored::Pattern searches839d16bregex-syntax-0.8.10c4865a0syntax: fix negation handling in HIR translationd8761c0cargo: also includebenchesUpdates
bytesfrom 1.11.1 to 1.12.0Release notes
Sourced from bytes's releases.
Changelog
Sourced from bytes's changelog.
Commits
91402ceRelease bytes v1.12.0 (#831)2256e6dchore: add safety comments on unsafe blocks (#827)245adffPass vtable data by value (#826)00cc5ffImplementBytesMut::extend_from_within(#818)5b79d31Merge tag 'v1.11.1'804ee6dMake try_unsplit method public (#746)fd426caExclude development scripts from published package (#810)b4ed70dAdd test for copy_to_bytes() -> BytesMut avoiding clone (#809)94e4291Document thatBytesMut::{reserve,try_reserve}doesn't preserve unused capac...acd1e0fFixget_intifnbytesis zero (#806)Updates
aws-configfrom 1.8.17 to 1.8.18Commits
Updates
aws-runtimefrom 1.7.4 to 1.7.5Commits
Updates
aws-sdk-secretsmanagerfrom 1.106.0 to 1.108.0Commits
Updates
aws-smithy-runtime-apifrom 1.12.1 to 1.12.3Commits
Updates
aws-sdk-stsfrom 1.105.0 to 1.106.0Commits
Updates
arc-swapfrom 1.9.1 to 1.9.2Changelog
Sourced from arc-swap's changelog.
Commits
Updates
randfrom 0.10.1 to 0.10.2Changelog
Sourced from rand's changelog.
Commits
1540ea3Prepare rand 0.10.2 (#1800)a29964aBump chacha20 from 0.10.0 to 0.10.1 in the all-deps group (#1801)ced9491Tweak docs for RngExt::random_range and SampleRange (#1798)db14664Check UniformChar validity on deser (#1790)bea8620Bump the all-deps group with 2 updates (#1796)4f44932Bump actions/cache from 5 to 6 (#1795)b999a13Bump actions/checkout from 6 to 7 (#1794)aeab810Avoid unsafe where safety depends on non-local values (#1791)1896d7cAdd typos CI job (#1789)43eddeeBump the all-deps group with 2 updates (#1788)Updates
aws-smithy-typesfrom 1.4.8 to 1.5.0Commits
Updates
serde_withfrom 3.20.0 to 3.21.0Release notes
Sourced from serde_with's releases.
Commits
0f4ca67Update changelog for 3.21.0 (#967)7654841Update changelog for 3.21.0c8a1d82Protect all collection creations against capacity overflow by using `size_hin...6ad5fa5Properly feature gate thevec_with_capacity_cautiousfunctionef7d141Protect all collection creations against capacity overflow by using `size_hin...a348da3Add serde_as deserialize_as explain (#958)2e5bc20Bump the github-actions group with 3 updates (#965)927a3d6Bump the github-actions group with 3 updates62d14ecEnable link-to-definition on docs.rs again, after the upstream issue was reso...4584d94Enable link-to-definition on docs.rs again, after the upstream issue was reso...Updates
rustlsfrom 0.23.40 to 0.23.41Commits
642a103ci: drop Taplo job752c144Drop nightly clippy tests8d8611aFix newclippy::useless-borrows-in-formattingebf3297Fix newclippy::manual_clear46808e7ci: sync cargo-check-external-types nightly041a8d2Cargo deny: allow RUSTSEC-2026-017362e220eTake semver-compatible dependency updates3c14696Upgrade to hickory-resolver 0.26848a2ccconnect-tests: delete ech.rs5ce9cacBump version to 0.23.41Updates
aws-sdk-acmfrom 1.104.0 to 1.107.0Commits
Updates
aws-lc-rsfrom 1.17.0 to 1.17.1Release notes
Sourced from aws-lc-rs's releases.
... (truncated)
Commits
741dbf5Prepare aws-lc-rs v1.17.1 (#1164)e6d42b8Prepare aws-lc-sys v0.42.0 (#1162)bd7abf5Harden GitHub Actions workflows against script injection (#1161)93b0123Addwasm32-unknown-emscriptenbuild and test support (#1059)7b8a0e7feat(system-lib): auto-detect system AWS-LC from OPENSSL_* and pkg-config (#1...a95c524Prepare aws-lc-fips-sys v0.13.15 (#1158)00e016aBump actions/checkout from 6 to 7 (#1157)e7568defix(system-lib): gate system AWS-LC on a declared minimum version (#1152)dfe4525fix(builder): select flag dialect by compiler driver mode, not target ABI (#1...26838darsa: report specific key rejection for invalid sizes (#1153)Updates
zeroizefrom 1.8.2 to 1.9.0Commits
0b71573zeroize v1.9.0 (#1494)3e3f18czeroize: always enable AVX-512 support (#1493)1ea42bbzeroize_derive v1.5.0 (#1492)8d785d1zeroize: rustdoc improvements (#1491)d844f36zeroize: incorporate README.md into rustdoc (#1490)c65c09dctutils: usereasoninstead of comment inforbidattribute (#1489)cbd0963Release block-buffer v0.12.1 (#1488)9aa541dblock-buffer: fix exception safety (#1487)5c7e4f9cmov v0.5.4 (#1485)87cadbccmov: fix clippy (#1484)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditions