Skip to content

Bump the dependencies group across 1 directory with 17 updates#235

Merged
simonmarty merged 2 commits into
mainfrom
dependabot/cargo/dependencies-989459aaa5
Jul 7, 2026
Merged

Bump the dependencies group across 1 directory with 17 updates#235
simonmarty merged 2 commits into
mainfrom
dependabot/cargo/dependencies-989459aaa5

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 6, 2026

Copy link
Copy Markdown
Contributor

Bumps the dependencies group with 14 updates in the / directory:

Package From To
log 0.4.30 0.4.33
chrono 0.4.44 0.4.45
regex 1.12.3 1.12.4
bytes 1.11.1 1.12.0
aws-config 1.8.17 1.8.18
aws-runtime 1.7.4 1.7.5
aws-sdk-secretsmanager 1.106.0 1.108.0
arc-swap 1.9.1 1.9.2
rand 0.10.1 0.10.2
serde_with 3.20.0 3.21.0
rustls 0.23.40 0.23.41
aws-sdk-acm 1.104.0 1.107.0
aws-lc-rs 1.17.0 1.17.1
zeroize 1.8.2 1.9.0

Updates log from 0.4.30 to 0.4.33

Release notes

Sourced from log's releases.

0.4.32

What's Changed

Full Changelog: rust-lang/log@0.4.31...0.4.32

0.4.31

What's Changed

New Contributors

Full Changelog: rust-lang/log@0.4.30...0.4.31

Changelog

Sourced from log's changelog.

[0.4.33] - 2026-06-20

What's Changed

New Contributors

Full Changelog: rust-lang/log@0.4.32...0.4.33

[0.4.32] - 2026-06-04

What's Changed

Full Changelog: rust-lang/log@0.4.31...0.4.32

[0.4.31] - 2026-06-02

What's Changed

New Contributors

Full Changelog: rust-lang/log@0.4.30...0.4.31

Commits
  • f405739 Merge pull request #734 from rust-lang/cargo/0.4.33
  • 6a24abf prepare for 0.4.33 release
  • 87e0621 Merge pull request #732 from matteo-zeggiotti-ok/fix-key-comparison
  • a9b5711 Review: fallback to the &str hash
  • cc89cc6 Review: fixed other comparisons
  • 920e7dc Review: fixed comparison on MaybeStaticStr
  • 0d71d3c Fixed key comparison
  • a5b5b21 Merge pull request #730 from rust-lang/cargo/0.4.32
  • c8d3b12 prepare for 0.4.32 release
  • ce6cd9f Merge pull request #729 from tisonkun/kv-std-support
  • Additional commits viewable in compare view

Updates chrono from 0.4.44 to 0.4.45

Release notes

Sourced from chrono's releases.

0.4.45

What's Changed

Commits
  • 1703382 Prepare 0.4.45 release
  • 881f9ab tz_data: fix tzdata locations on Android
  • f14ead4 fix(tz): reject TZ offset hour of 24 to avoid FixedOffset overflow
  • c6063e6 Update similar-asserts requirement from 1.6.1 to 2.0.0
  • 120686c Bump codecov/codecov-action from 5 to 6
  • See full diff in compare view

Updates regex from 1.12.3 to 1.12.4

Changelog

Sourced from regex's changelog.

1.12.4 (2025-06-09)

This release includes a performance optimization for compilation of regexes with very large character classes.

Improvements:

  • #1308: Avoid re-canonicalizing the entire interval set when pushing new class ranges.
Commits
  • 7b96fdc 1.12.4
  • 7b89cf0 deps: update to regex-syntax 0.8.11
  • 1401679 regex-syntax-0.8.11
  • d709000 changelog: 1.12.4
  • 9825c74 syntax: avoid re-canonicalizing the entire IntervalSet on push (#1308)
  • a7f2ff6 docs: clarify regex-lite word boundaries
  • 2c7b172 docs: clarify unsupported Anchored::Pattern searches
  • 839d16b regex-syntax-0.8.10
  • c4865a0 syntax: fix negation handling in HIR translation
  • d8761c0 cargo: also include benches
  • Additional commits viewable in compare view

Updates bytes from 1.11.1 to 1.12.0

Release notes

Sourced from bytes's releases.

Bytes v1.12.0

1.12.0 (June 18th, 2026)

Added

  • Add BytesMut::extend_from_within() (#818)
  • Add BytesMut::try_unsplit() (#746)

Fixed

  • Fix panic in get_int if nbytes is zero (#806)

Changed

  • Pass vtable data by value (#826)
  • Exclude development scripts from published package (#810)

Documented

  • Document that BytesMut::{reserve,try_reserve} doesn't preserve unused capacity (#808)
Changelog

Sourced from bytes's changelog.

1.12.0 (June 18th, 2026)

Added

  • Add BytesMut::extend_from_within() (#818)
  • Add BytesMut::try_unsplit() (#746)

Fixed

  • Fix panic in get_int if nbytes is zero (#806)

Changed

  • Pass vtable data by value (#826)
  • Exclude development scripts from published package (#810)

Documented

  • Document that BytesMut::{reserve,try_reserve} doesn't preserve unused capacity (#808)
Commits

Updates aws-config from 1.8.17 to 1.8.18

Commits

Updates aws-runtime from 1.7.4 to 1.7.5

Commits

Updates aws-sdk-secretsmanager from 1.106.0 to 1.108.0

Commits

Updates aws-smithy-runtime-api from 1.12.1 to 1.12.3

Commits

Updates aws-sdk-sts from 1.105.0 to 1.106.0

Commits

Updates arc-swap from 1.9.1 to 1.9.2

Changelog

Sourced from arc-swap's changelog.

1.9.2

  • Document RefCnt must not panic (#208).
Commits

Updates rand from 0.10.1 to 0.10.2

Changelog

Sourced from rand's changelog.

[0.10.2] — 2026-07-02

Fixes

  • Fix possible memory safety violation due to deserialization of UniformChar from bad source (#1790)

Changes

  • Document required output order of fn partial_shuffle and apply #[must_use] (#1769)
  • Avoid usage of unsafe in contexts where non-local memory corruption could invalidate contract (#1791)

#1769: rust-random/rand#1769 #1790: rust-random/rand#1790 #1791: rust-random/rand#1791

Commits

Updates aws-smithy-types from 1.4.8 to 1.5.0

Commits

Updates serde_with from 3.20.0 to 3.21.0

Release notes

Sourced from serde_with's releases.

serde_with v3.21.0

Security

  • GHSA-7gcf-g7xr-8hxj: KeyValueMap serialization panics on empty sequence or map entries Bad or attacker controlled values could cause a panic while allocating too large values. Fixed in #966 by setting a maximum allocation size during the creation of collections like Vec or sets.

    Thanks to @​7thParkk for reporting the issue.

Added

  • Add NoneAsZero adapter that maps Option<NonZero*> to a plain integer, encoding None as 0 by @​SAY-5 (#486)

Changed

  • Re-enable link-to-definition on docs.rs (#964)

Fixed

  • Fix some doc links to point to the correct types (#963)
  • Re-enable unused_qualifications and fix the resulting findings by @​lms0806 (#962)
Commits
  • 0f4ca67 Update changelog for 3.21.0 (#967)
  • 7654841 Update changelog for 3.21.0
  • c8a1d82 Protect all collection creations against capacity overflow by using `size_hin...
  • 6ad5fa5 Properly feature gate the vec_with_capacity_cautious function
  • ef7d141 Protect all collection creations against capacity overflow by using `size_hin...
  • a348da3 Add serde_as deserialize_as explain (#958)
  • 2e5bc20 Bump the github-actions group with 3 updates (#965)
  • 927a3d6 Bump the github-actions group with 3 updates
  • 62d14ec Enable link-to-definition on docs.rs again, after the upstream issue was reso...
  • 4584d94 Enable link-to-definition on docs.rs again, after the upstream issue was reso...
  • Additional commits viewable in compare view

Updates rustls from 0.23.40 to 0.23.41

Commits
  • 642a103 ci: drop Taplo job
  • 752c144 Drop nightly clippy tests
  • 8d8611a Fix new clippy::useless-borrows-in-formatting
  • ebf3297 Fix new clippy::manual_clear
  • 46808e7 ci: sync cargo-check-external-types nightly
  • 041a8d2 Cargo deny: allow RUSTSEC-2026-0173
  • 62e220e Take semver-compatible dependency updates
  • 3c14696 Upgrade to hickory-resolver 0.26
  • 848a2cc connect-tests: delete ech.rs
  • 5ce9cac Bump version to 0.23.41
  • Additional commits viewable in compare view

Updates aws-sdk-acm from 1.104.0 to 1.107.0

Commits

Updates aws-lc-rs from 1.17.0 to 1.17.1

Release notes

Sourced from aws-lc-rs's releases.

aws-lc-rs v1.17.1

🎉 AWS-LC FIPS v3 Module Has Been Validated

The AWS-LC FIPS v3 module has been awarded FIPS 140-3 validation by NIST's CMVP:

Seek guidance from a local FIPS compliance expert regarding requirements for your deployment environments. Please consult the Security Policies associated with our certificates if you have questions.

aws-lc-fips-sys (utilized via the fips feature of aws-lc-rs) currently uses the validated FIPS v3 module.

  • In the upcoming aws-lc-rs v1.18.0 release, we plan to switch aws-lc-fips-sys to our FIPS v4 branch.

What's Changed

Upstream AWS-LC (v5.1.0)

aws-lc-sys now aligns with AWS-LC v5.1.0 (previously v1.73.0). Notable upstream changes include:

Build Improvements

Issues Being Closed

Other Merged PRs

... (truncated)

Commits
  • 741dbf5 Prepare aws-lc-rs v1.17.1 (#1164)
  • e6d42b8 Prepare aws-lc-sys v0.42.0 (#1162)
  • bd7abf5 Harden GitHub Actions workflows against script injection (#1161)
  • 93b0123 Add wasm32-unknown-emscripten build and test support (#1059)
  • 7b8a0e7 feat(system-lib): auto-detect system AWS-LC from OPENSSL_* and pkg-config (#1...
  • a95c524 Prepare aws-lc-fips-sys v0.13.15 (#1158)
  • 00e016a Bump actions/checkout from 6 to 7 (#1157)
  • e7568de fix(system-lib): gate system AWS-LC on a declared minimum version (#1152)
  • dfe4525 fix(builder): select flag dialect by compiler driver mode, not target ABI (#1...
  • 26838da rsa: report specific key rejection for invalid sizes (#1153)
  • Additional commits viewable in compare view

Updates zeroize from 1.8.2 to 1.9.0

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the dependencies group with 14 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [log](https://github.com/rust-lang/log) | `0.4.30` | `0.4.33` |
| [chrono](https://github.com/chronotope/chrono) | `0.4.44` | `0.4.45` |
| [regex](https://github.com/rust-lang/regex) | `1.12.3` | `1.12.4` |
| [bytes](https://github.com/tokio-rs/bytes) | `1.11.1` | `1.12.0` |
| [aws-config](https://github.com/smithy-lang/smithy-rs) | `1.8.17` | `1.8.18` |
| [aws-runtime](https://github.com/smithy-lang/smithy-rs) | `1.7.4` | `1.7.5` |
| [aws-sdk-secretsmanager](https://github.com/awslabs/aws-sdk-rust) | `1.106.0` | `1.108.0` |
| [arc-swap](https://github.com/vorner/arc-swap) | `1.9.1` | `1.9.2` |
| [rand](https://github.com/rust-random/rand) | `0.10.1` | `0.10.2` |
| [serde_with](https://github.com/jonasbb/serde_with) | `3.20.0` | `3.21.0` |
| [rustls](https://github.com/rustls/rustls) | `0.23.40` | `0.23.41` |
| [aws-sdk-acm](https://github.com/awslabs/aws-sdk-rust) | `1.104.0` | `1.107.0` |
| [aws-lc-rs](https://github.com/aws/aws-lc-rs) | `1.17.0` | `1.17.1` |
| [zeroize](https://github.com/RustCrypto/utils) | `1.8.2` | `1.9.0` |



Updates `log` from 0.4.30 to 0.4.33
- [Release notes](https://github.com/rust-lang/log/releases)
- [Changelog](https://github.com/rust-lang/log/blob/master/CHANGELOG.md)
- [Commits](rust-lang/log@0.4.30...0.4.33)

Updates `chrono` from 0.4.44 to 0.4.45
- [Release notes](https://github.com/chronotope/chrono/releases)
- [Changelog](https://github.com/chronotope/chrono/blob/main/CHANGELOG.md)
- [Commits](chronotope/chrono@v0.4.44...v0.4.45)

Updates `regex` from 1.12.3 to 1.12.4
- [Release notes](https://github.com/rust-lang/regex/releases)
- [Changelog](https://github.com/rust-lang/regex/blob/master/CHANGELOG.md)
- [Commits](rust-lang/regex@1.12.3...1.12.4)

Updates `bytes` from 1.11.1 to 1.12.0
- [Release notes](https://github.com/tokio-rs/bytes/releases)
- [Changelog](https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md)
- [Commits](tokio-rs/bytes@v1.11.1...v1.12.0)

Updates `aws-config` from 1.8.17 to 1.8.18
- [Release notes](https://github.com/smithy-lang/smithy-rs/releases)
- [Changelog](https://github.com/smithy-lang/smithy-rs/blob/main/CHANGELOG.md)
- [Commits](https://github.com/smithy-lang/smithy-rs/commits)

Updates `aws-runtime` from 1.7.4 to 1.7.5
- [Release notes](https://github.com/smithy-lang/smithy-rs/releases)
- [Changelog](https://github.com/smithy-lang/smithy-rs/blob/main/CHANGELOG.md)
- [Commits](https://github.com/smithy-lang/smithy-rs/commits)

Updates `aws-sdk-secretsmanager` from 1.106.0 to 1.108.0
- [Release notes](https://github.com/awslabs/aws-sdk-rust/releases)
- [Commits](https://github.com/awslabs/aws-sdk-rust/commits)

Updates `aws-smithy-runtime-api` from 1.12.1 to 1.12.3
- [Release notes](https://github.com/smithy-lang/smithy-rs/releases)
- [Changelog](https://github.com/smithy-lang/smithy-rs/blob/main/CHANGELOG.md)
- [Commits](https://github.com/smithy-lang/smithy-rs/commits)

Updates `aws-sdk-sts` from 1.105.0 to 1.106.0
- [Release notes](https://github.com/awslabs/aws-sdk-rust/releases)
- [Commits](https://github.com/awslabs/aws-sdk-rust/commits)

Updates `arc-swap` from 1.9.1 to 1.9.2
- [Changelog](https://github.com/vorner/arc-swap/blob/master/CHANGELOG.md)
- [Commits](https://github.com/vorner/arc-swap/commits)

Updates `rand` from 0.10.1 to 0.10.2
- [Release notes](https://github.com/rust-random/rand/releases)
- [Changelog](https://github.com/rust-random/rand/blob/master/CHANGELOG.md)
- [Commits](rust-random/rand@0.10.1...0.10.2)

Updates `aws-smithy-types` from 1.4.8 to 1.5.0
- [Release notes](https://github.com/smithy-lang/smithy-rs/releases)
- [Changelog](https://github.com/smithy-lang/smithy-rs/blob/main/CHANGELOG.md)
- [Commits](https://github.com/smithy-lang/smithy-rs/commits)

Updates `serde_with` from 3.20.0 to 3.21.0
- [Release notes](https://github.com/jonasbb/serde_with/releases)
- [Commits](jonasbb/serde_with@v3.20.0...v3.21.0)

Updates `rustls` from 0.23.40 to 0.23.41
- [Release notes](https://github.com/rustls/rustls/releases)
- [Changelog](https://github.com/rustls/rustls/blob/main/CHANGELOG.md)
- [Commits](rustls/rustls@v/0.23.40...v/0.23.41)

Updates `aws-sdk-acm` from 1.104.0 to 1.107.0
- [Release notes](https://github.com/awslabs/aws-sdk-rust/releases)
- [Commits](https://github.com/awslabs/aws-sdk-rust/commits)

Updates `aws-lc-rs` from 1.17.0 to 1.17.1
- [Release notes](https://github.com/aws/aws-lc-rs/releases)
- [Commits](aws/aws-lc-rs@v1.17.0...v1.17.1)

Updates `zeroize` from 1.8.2 to 1.9.0
- [Commits](RustCrypto/utils@zeroize-v1.8.2...zeroize-v1.9.0)

---
updated-dependencies:
- dependency-name: log
  dependency-version: 0.4.33
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: chrono
  dependency-version: 0.4.45
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: regex
  dependency-version: 1.12.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: bytes
  dependency-version: 1.12.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: aws-config
  dependency-version: 1.8.18
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: aws-runtime
  dependency-version: 1.7.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: aws-sdk-secretsmanager
  dependency-version: 1.108.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: aws-smithy-runtime-api
  dependency-version: 1.12.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: aws-sdk-sts
  dependency-version: 1.106.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: arc-swap
  dependency-version: 1.9.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: rand
  dependency-version: 0.10.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: aws-smithy-types
  dependency-version: 1.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: serde_with
  dependency-version: 3.21.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: rustls
  dependency-version: 0.23.41
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: aws-sdk-acm
  dependency-version: 1.107.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: aws-lc-rs
  dependency-version: 1.17.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: zeroize
  dependency-version: 1.9.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update Rust code labels Jul 6, 2026
@dependabot dependabot Bot requested a review from a team as a code owner July 6, 2026 20:38
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update Rust code labels Jul 6, 2026
@codecov

codecov Bot commented Jul 6, 2026

Copy link
Copy Markdown

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 86.27%. Comparing base (02ac9c7) to head (35ee714).

Additional details and impacted files
@@           Coverage Diff           @@
##             main     #235   +/-   ##
=======================================
  Coverage   86.27%   86.27%           
=======================================
  Files          34       34           
  Lines        9331     9331           
  Branches     9331     9331           
=======================================
  Hits         8050     8050           
  Misses       1148     1148           
  Partials      133      133           

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

@reyhankoyun reyhankoyun added the safe-to-test Maintainer approval to run integration tests for external contributor PRs. label Jul 7, 2026
@github-actions github-actions Bot removed the safe-to-test Maintainer approval to run integration tests for external contributor PRs. label Jul 7, 2026
@secrets-manager-ai-code-review

secrets-manager-ai-code-review Bot commented Jul 7, 2026

Copy link
Copy Markdown

Claude finished @reyhankoyun's task in 1m 23s —— View job


Dependency bump review

  • Read repo guidelines
  • Analyze the Cargo.lock changes
  • Check Cargo.toml constraints for compatibility
  • Assess security/breaking-change implications
  • Post review

This is a lockfile-only change (Cargo.lock +68/-58). No Cargo.toml manifests are touched, and every affected dependency is declared with a broad semver range (chrono = "0.4", zeroize = "1", rand = "0.10", aws-smithy-types = "1", bytes = "1", …), so all of these bumps resolve within the existing constraints — no manifest edits required. All four functional CI checks (Rust, Docker, Integration Tests, Benchmarks) are ✅ green.

Notable points

🔒 Security-relevant fixes — good to pull in for a credentials provider:

  • serde_with 3.20.0 → 3.21.0 patches GHSA-7gcf-g7xr-8hxj: KeyValueMap could panic on attacker-controlled input via oversized allocation. This crate is on the SecretsManager caching path, so the fix is worth having.
  • rand 0.10.1 → 0.10.2 fixes a potential memory-safety violation from deserializing UniformChar from a bad source, plus reduces unsafe usage. rand is used in both aws_secretsmanager_caching and aws_secretsmanager_provider (jitter/refresh timing), though not in a deserialization context here.

🔐 Crypto stack bumps (verify a clean build, which CI confirms):

  • aws-lc-rs 1.17.0 → 1.17.1 pulls aws-lc-sys 0.41.0 → 0.42.0 (upstream AWS-LC v5.1.0, previously v1.73.0 — a large upstream jump). This adds a new pkg-config build-dependency to enable optional system-AWS-LC linking; it does not change the default vendored build. Since this crate compiles native C, the passing Docker + Rust builds are the meaningful signal.
  • rustls 0.23.40 → 0.23.41 — patch, no behavioral changes.
  • zeroize 1.8.2 → 1.9.0 — minor bump; the notable change is always-enabling AVX-512 support. Relevant since this provider zeroizes secret material.

📦 Transitive bumps not in the PR summary table (resolver pulled them in): aws-sdk-sso, aws-sdk-ssooidc, aws-sigv4, aws-smithy-json, regex-syntax. Expected side-effects of the direct AWS SDK/runtime updates.

⚠️ aws-smithy-types 1.4.8 → 1.5.0 is the only minor bump among the smithy crates. It still satisfies aws-smithy-types = "1" and the SDK crates were co-bumped, so it's consistent — no action needed.

Nit (non-blocking)

The PR title says 17 updates and the body says 14; the discrepancy is just direct-vs-transitive counting from Dependabot's grouping. Cosmetic only.

Verdict

LGTM. Routine grouped dependency update, lockfile-only, all constraints satisfied, CI green, and it happens to bring in two meaningful security patches (serde_with, rand). No code changes needed. The one thing worth a human eyeball is the large aws-lc-sys upstream jump (0.41 → 0.42 / AWS-LC v5.1.0) — but the green Docker/Rust builds cover the compile-and-link risk there.

@simonmarty simonmarty merged commit fdfc8af into main Jul 7, 2026
10 checks passed
@simonmarty simonmarty deleted the dependabot/cargo/dependencies-989459aaa5 branch July 7, 2026 22:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update Rust code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants