Skip to content

deps(cargo): bump the cargo-dependencies group with 2 updates#45

Merged
eikendev merged 1 commit into
mainfrom
dependabot-cargo-cargo-dependencies-29366de290
May 30, 2026
Merged

deps(cargo): bump the cargo-dependencies group with 2 updates#45
eikendev merged 1 commit into
mainfrom
dependabot-cargo-cargo-dependencies-29366de290

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 30, 2026

Copy link
Copy Markdown
Contributor

Bumps the cargo-dependencies group with 2 updates: reqwest and oxilangtag.

Updates reqwest from 0.13.3 to 0.13.4

Release notes

Sourced from reqwest's releases.

v0.13.4

tl;dr

  • Add ClientBuilder::tls_sslkeylogfile(bool) option to allow using the related environment variable.
  • Add ClientBuilder::http2_keep_alive_* options for the blocking client.
  • Add TLS 1.3 support when using native-tls backend.
  • Fix redirect handling to strip sensitive headers when the scheme changes.
  • Fix HTTP/3 happy-eyeball connection creation.
  • Upgrade hickory-resolver to 0.26.

What's Changed

New Contributors

Full Changelog: seanmonstar/reqwest@v0.13.3...v0.13.4

Changelog

Sourced from reqwest's changelog.

v0.13.4

  • Add ClientBuilder::tls_sslkeylogfile(bool) option to allow using the related environment variable.
  • Add ClientBuilder::http2_keep_alive_* options for the blocking client.
  • Add TLS 1.3 support when using native-tls backend.
  • Fix redirect handling to strip sensitive headers when the scheme changes.
  • Fix HTTP/3 happy-eyeball connection creation.
  • Upgrade hickory-resolver to 0.26.
Commits
  • 11489b3 v0.13.4
  • d31ffbb feat: Expose HTTP2 keep alive configurations in blocking client (#3043)
  • 79ed0d7 feat: support TLS 1.3 as min version under native-tls 🎉 (#2975)
  • fb7bf6a fix: remove unwrap in hickory initialization (#3041)
  • 3da616f fix: update hickory-resolver to 0.26 and adjust code accordingly (#3040)
  • c77e7b2 fix(http3): use happy eyeballs for h3 connect (#3030)
  • 9cbb65b chore: clean up minimal-versions CI job (#3039)
  • 17a7dc5 chore: upgrade MSRV to 1.85 (#3038)
  • 03db63a fix(redirect): strip sensitive headers on scheme change across redirects (#3034)
  • 4b813a8 feat: add tls_sslkeylogfile builder method (#2923)
  • Additional commits viewable in compare view

Updates oxilangtag from 0.1.5 to 0.1.6

Release notes

Sourced from oxilangtag's releases.

v0.1.6

  • Fixes parsing of private use tag (the full tag is considered as "private used" and not as "language").
  • Validate properly private use tags (x-- is not considered valid anymore).
Changelog

Sourced from oxilangtag's changelog.

[0.1.6] - 2026-05-23

Changed

  • Fixes parsing of private use tag (the full tag is considered as "private used" and not as "language").
  • Validate properly private use tags (x-- is not considered valid anymore).
Commits
  • ce52043 Releases v0.1.6
  • 9abc05d chore(deps): bump rust-lang/crates-io-auth-action from 1.0.3 to 1.0.4
  • d9de706 chore(deps): bump actions/checkout from 5.0.1 to 6.0.2
  • ac21224 Setup zizmor
  • 296578a Fix privateuse parsing
  • a7a7185 Add publishing to the CI
  • c16868c chore(deps): bump codecov/codecov-action from 5 to 6
  • 56a15b9 chore(deps): bump actions/upload-artifact from 6 to 7
  • cf6d5b6 chore(deps): bump actions/upload-artifact from 5 to 6
  • 27282e1 chore(deps): bump actions/cache from 4 to 5
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the cargo-dependencies group with 2 updates: [reqwest](https://github.com/seanmonstar/reqwest) and [oxilangtag](https://github.com/oxigraph/oxilangtag).


Updates `reqwest` from 0.13.3 to 0.13.4
- [Release notes](https://github.com/seanmonstar/reqwest/releases)
- [Changelog](https://github.com/seanmonstar/reqwest/blob/master/CHANGELOG.md)
- [Commits](seanmonstar/reqwest@v0.13.3...v0.13.4)

Updates `oxilangtag` from 0.1.5 to 0.1.6
- [Release notes](https://github.com/oxigraph/oxilangtag/releases)
- [Changelog](https://github.com/oxigraph/oxilangtag/blob/main/CHANGELOG.md)
- [Commits](oxigraph/oxilangtag@v0.1.5...v0.1.6)

---
updated-dependencies:
- dependency-name: reqwest
  dependency-version: 0.13.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: cargo-dependencies
- dependency-name: oxilangtag
  dependency-version: 0.1.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: cargo-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the area:deps label May 30, 2026
@dependabot dependabot Bot requested a review from eikendev as a code owner May 30, 2026 09:03
@eikendev eikendev merged commit f4a4df1 into main May 30, 2026
2 checks passed
@eikendev eikendev deleted the dependabot-cargo-cargo-dependencies-29366de290 branch May 30, 2026 10:10
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant