Skip to content

Bump the rust-dependencies group with 14 updates#1733

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/rust-dependencies-b6541369d2
Closed

Bump the rust-dependencies group with 14 updates#1733
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/rust-dependencies-b6541369d2

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 6, 2026

Copy link
Copy Markdown
Contributor

Bumps the rust-dependencies group with 14 updates:

Package From To
openssl-probe 0.1.6 0.2.0
windows-sys 0.60.2 0.61.0
time 0.3.51 0.3.53
indicatif 0.18.4 0.18.6
aws-lc-rs 1.17.0 1.17.1
aws-lc-sys 0.41.0 0.42.0
cc 1.2.65 1.2.66
console 0.16.3 0.16.4
jobserver 0.1.34 0.1.35
quinn-proto 0.11.15 0.11.16
quinn-udp 0.5.14 0.5.15
rustc-hash 2.1.2 2.1.3
rustls-pki-types 1.14.1 1.15.0
time-macros 0.2.30 0.2.31

Updates openssl-probe from 0.1.6 to 0.2.0

Release notes

Sourced from openssl-probe's releases.

0.2.0 is the first release after openssl-probe maintenance has been handed over to the rustls team. Thanks to @​alexcrichton for creating and maintaining it for the past 9 years. We're happy to address any feedback you have for this crate.

Breaking changes

  • ProbeResult::cert_dir is now a Vec<PathBuf> rather than an Option<PathBuf>, allowing the library to yield multiple suggestions for directories which may contain certificate files.
  • Rather than using a single list of locations for certificate files and certificate directories, openssl-probe now uses much shorter per-platform lists. This should make the API faster and make it less likely to accidentally pick up locations that are unidiomatic for the platform.
  • Removed deprecated API

What's Changed

Commits
  • a03745e Yield multiple certificate directories
  • 994e183 Use platform-specific directories
  • 0e10789 Use per-platform definitions of CERTIFICATE_FILE_NAMES
  • a0ae1a2 Use full paths for CERTIFICATE_FILE_NAMES
  • c1c80e6 Extract consts for file and directory lists
  • 96e19a8 Move probe_from_env() to ProbeResult::from_env()
  • f2d158e Use top-down item ordering
  • d4c29ef Remove trivial wrapper function
  • 4645a45 Bump version to 0.2.0
  • 3fcf47a Remove deprecated functions
  • See full diff in compare view

Updates windows-sys from 0.60.2 to 0.61.0

Release notes

Sourced from windows-sys's releases.

61

Major crate updates:

  • windows 0.59.0
  • windows-core 0.59.0
    • windows-implement 0.59.0
    • windows-interface 0.59.0
  • windows-targets 0.53.0
    • windows_i686_msvc 0.53.0
    • windows_x86_64_msvc 0.53.0
    • windows_aarch64_msvc 0.53.0
    • windows_i686_gnu 0.53.0
    • windows_x86_64_gnu 0.53.0
    • windows_i686_gnullvm 0.53.0
    • windows_x86_64_gnullvm 0.53.0
    • windows_aarch64_gnullvm 0.53.0
  • windows-bindgen 0.59.0
  • windows-registry 0.4.0
  • windows-result 0.3.0
  • windows-strings 0.3.0
  • cppwinrt 0.2.0

Minor crate updates:

  • windows-version 0.1.2

Excluded:

  • windows-sys 0.59.0

Things to keep in mind:

  • The tag/release names no longer map directly to the crate versions, so to find samples for a particular release requires looking at the releases page and finding the release that most recently updated a particular crate.

  • The windows-bindgen crate includes the major code generation overhaul that brings many improvements - be sure to check out the PR description for more information. The resulting code gen depends on the new version of windows-core and its dependencies, unless you include the --sys option. #3359

  • The cppwinrt crate constitutes a major update due to streamlining the error handling. #3415

  • The windows-registry, windows-strings, and windows-result crates are also major version updates since they include small breaking changes.

  • The windows-targets crate finally receives a major version update, the first in over a year. This is due to #3359 and #3342 potentially introducing breaking changes. Although unlikely, these updates introduced sufficient changes that make it hard to ensure that the windows-targets libs don't break existing code. As we're updating windows-targets anyway, I took the liberty to bump the MSRV to 1.60 - to match the latest version of windows-sys - and remove the old but unused doc macro feature. Both remained for compatibility with very old dependents of the windows-targets crate.

  • The windows-version crate receives a minor update to update its dependency on the windows-targets crate.

  • Beyond these specifics, this update is the culmination of around 6 months worth of work on the windows-rs project. The biggest improvements comes from the new code generation engine, but many other improvements are now also available for production. This includes support for many new lints, warnings, and suggestions provided by the Rust toolchain; much smaller code gen thanks to deriving many more traits; more efficient code gen; major improvements to WinRT type system and implementation support; more robust and consistent error handling; stock collection and async support; improved support for class hierarchies; and much more!

In addition to "what's changed" below, check out what's changed for notes for 0.60.0 and 0.59.0 for additional changes that roll up to the crates published as part of this release.

What's Changed

... (truncated)

Commits

Updates time from 0.3.51 to 0.3.53

Release notes

Sourced from time's releases.

v0.3.53

See the changelog for details.

v0.3.52

See the changelog for details.

Changelog

Sourced from time's changelog.

0.3.53 [2026-07-01]

There are no publicly-facing changes in this release. It solely works around the cookie crate relying on an implementation detail of time that was never part of the public API (and thus subject to semver guarantees). The internal API has been reverted to the extent necessary for cookie to compile. This measure is temporary; the internal change will be re-applied in an yet-to-be-determined future release.

0.3.52 [2026-06-30]

Fixed

  • Subsecond values in the time! macro are parsed using the textual representation, ensuring accuracy. Previously, they were parsed using the floating point representation, which could result in a loss of precision and even invalid values.
  • The date! macro could previously create an invalid value that would then panic at compile time. The macro now emits a proper error instead.
  • When parsing an invalid format description, an edge case would inadvertently panic. This now returns an error as intended.

Added

  • Support default values when parsing
Commits
  • 0ae2f84 v0.3.53 release
  • cea8c96 Avoid issue with cookie crate temporarily
  • 55e1f2b Require private type to properly seal traits
  • 7cf4780 v0.3.52 release
  • 0e5b04f Fix trusted publishing workflow
  • 6e4140a Support default values when parsing
  • 10ac36a Add more doctests to Timestamp
  • 6b0d468 Restore lexer depth on the unclosed-bracket error path
  • 0abc06d Add trusted publishing
  • 43cf0c0 Preferentially group shards by target
  • Additional commits viewable in compare view

Updates indicatif from 0.18.4 to 0.18.6

Release notes

Sourced from indicatif's releases.

0.18.6

What's Changed

0.18.5

What's Changed

Commits
  • e4d49d8 Bump version to 0.18.6
  • 582727e fix: correctly detect dumb terminal on Windows
  • 90156ec Drop screenshots from MultiProgress documentation
  • 4dbd0d5 Bump version to 0.18.5
  • 24973aa Take semver-compatible dependency versions
  • a575ef7 style: inline Template::from_str_with_tab_width()
  • 0b94aa2 style: replace from_str() method with FromStr impl
  • 398ac69 style: move helper functions to the bottom
  • 692705d Fix HumanFloatCount dropping rounding at precision 0
  • cbd070d Fix stray comma after minus sign in HumanFloatCount
  • Additional commits viewable in compare view

Updates aws-lc-rs from 1.17.0 to 1.17.1

Release notes

Sourced from aws-lc-rs's releases.

aws-lc-rs v1.17.1

🎉 AWS-LC FIPS v3 Module Has Been Validated

The AWS-LC FIPS v3 module has been awarded FIPS 140-3 validation by NIST's CMVP:

Seek guidance from a local FIPS compliance expert regarding requirements for your deployment environments. Please consult the Security Policies associated with our certificates if you have questions.

aws-lc-fips-sys (utilized via the fips feature of aws-lc-rs) currently uses the validated FIPS v3 module.

  • In the upcoming aws-lc-rs v1.18.0 release, we plan to switch aws-lc-fips-sys to our FIPS v4 branch.

What's Changed

Upstream AWS-LC (v5.1.0)

aws-lc-sys now aligns with AWS-LC v5.1.0 (previously v1.73.0). Notable upstream changes include:

Build Improvements

Issues Being Closed

Other Merged PRs

... (truncated)

Commits
  • 741dbf5 Prepare aws-lc-rs v1.17.1 (#1164)
  • e6d42b8 Prepare aws-lc-sys v0.42.0 (#1162)
  • bd7abf5 Harden GitHub Actions workflows against script injection (#1161)
  • 93b0123 Add wasm32-unknown-emscripten build and test support (#1059)
  • 7b8a0e7 feat(system-lib): auto-detect system AWS-LC from OPENSSL_* and pkg-config (#1...
  • a95c524 Prepare aws-lc-fips-sys v0.13.15 (#1158)
  • 00e016a Bump actions/checkout from 6 to 7 (#1157)
  • e7568de fix(system-lib): gate system AWS-LC on a declared minimum version (#1152)
  • dfe4525 fix(builder): select flag dialect by compiler driver mode, not target ABI (#1...
  • 26838da rsa: report specific key rejection for invalid sizes (#1153)
  • Additional commits viewable in compare view

Updates aws-lc-sys from 0.41.0 to 0.42.0

Commits
  • 741dbf5 Prepare aws-lc-rs v1.17.1 (#1164)
  • e6d42b8 Prepare aws-lc-sys v0.42.0 (#1162)
  • bd7abf5 Harden GitHub Actions workflows against script injection (#1161)
  • 93b0123 Add wasm32-unknown-emscripten build and test support (#1059)
  • 7b8a0e7 feat(system-lib): auto-detect system AWS-LC from OPENSSL_* and pkg-config (#1...
  • a95c524 Prepare aws-lc-fips-sys v0.13.15 (#1158)
  • 00e016a Bump actions/checkout from 6 to 7 (#1157)
  • e7568de fix(system-lib): gate system AWS-LC on a declared minimum version (#1152)
  • dfe4525 fix(builder): select flag dialect by compiler driver mode, not target ABI (#1...
  • 26838da rsa: report specific key rejection for invalid sizes (#1153)
  • Additional commits viewable in compare view

Updates cc from 1.2.65 to 1.2.66

Release notes

Sourced from cc's releases.

cc-v1.2.66

Other

  • Fix target parsing for aarch64-unknown-linux-pauthtest (#1779)
  • Support new QNX targets (#1775)
  • Add kache to the supported compiler wrappers (#1770)
Changelog

Sourced from cc's changelog.

1.2.66 - 2026-07-05

Other

  • Fix target parsing for aarch64-unknown-linux-pauthtest (#1779)
  • Support new QNX targets (#1775)
  • Add kache to the supported compiler wrappers (#1770)
Commits

Updates console from 0.16.3 to 0.16.4

Release notes

Sourced from console's releases.

0.16.4

What's Changed

Commits
  • 598eca9 Bump version to 0.16.4
  • 0f22c35 feat: add is_dumb public function
  • 1426649 Bump actions/checkout from 3 to 7
  • d2d89ad ignore non-ascii input in Style::from_dotted_str
  • 6cff3e0 document current panic in Style::from_dotted_str via test cases
  • dd4334f Apply suggestions from clippy 1.95
  • 586efad Remove redundant as_handle helper
  • be20e85 Add TermInner::new constructors
  • See full diff in compare view

Updates jobserver from 0.1.34 to 0.1.35

Commits
  • 85ba04e chore: bump to 0.1.35
  • 89f2303 Merge pull request #122 from weihanglo/nix-0.31.3
  • c539363 chore: bump to nix@0.31.3
  • 6753b4d Merge pull request #120 from kpcyrd/getrandom-0.4
  • 922f23b chore: bump MSRV to 1.85
  • c28a13d Merge pull request #121 from weihanglo/ci-native-make
  • d51b4bb ci: use native GNU Make instead of building from source
  • 2195928 test: exercise both jobserver styles in make-as-server tests
  • 18d138c Update getrandom to 0.4
  • See full diff in compare view

Updates quinn-proto from 0.11.15 to 0.11.16

Release notes

Sourced from quinn-proto's releases.

quinn-proto-0.11.16

What's Changed

Commits
  • a96949f Take semver-compatible update for anyhow
  • 5429f60 udp: bump version to 0.5.15
  • 262a493 proto: bump version to 0.11.16
  • c19b63a Upgrade rustls-platform-verifier to 0.7
  • aff3652 Disable default features for fastbloom
  • 01b2eee Upgrade fastbloom to 0.17
  • 2c82013 Switch BBR RNG to PCG
  • 544dd9e Upgrade to rand 0.10.1
  • See full diff in compare view

Updates quinn-udp from 0.5.14 to 0.5.15

Release notes

Sourced from quinn-udp's releases.

quinn-udp 0.5.15

What's Changed

Commits
  • a96949f Take semver-compatible update for anyhow
  • 5429f60 udp: bump version to 0.5.15
  • 262a493 proto: bump version to 0.11.16
  • c19b63a Upgrade rustls-platform-verifier to 0.7
  • aff3652 Disable default features for fastbloom
  • 01b2eee Upgrade fastbloom to 0.17
  • 2c82013 Switch BBR RNG to PCG
  • 544dd9e Upgrade to rand 0.10.1
  • a7499b8 Bump versions for release
  • 7c1970f proto: yield error on too many gaps in assembler
  • Additional commits viewable in compare view

Updates rustc-hash from 2.1.2 to 2.1.3

Changelog

Sourced from rustc-hash's changelog.

2.1.3

Commits

Updates rustls-pki-types from 1.14.1 to 1.15.0

Release notes

Sourced from rustls-pki-types's releases.

v/1.15.0

New feature: add a constructor for FipsStatus::Certified.

What's Changed

Full Changelog: rustls/pki-types@v/1.14.1...v/1.15.0

Commits

Updates time-macros from 0.2.30 to 0.2.31

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the rust-dependencies group with 14 updates:

| Package | From | To |
| --- | --- | --- |
| [openssl-probe](https://github.com/rustls/openssl-probe) | `0.1.6` | `0.2.0` |
| [windows-sys](https://github.com/microsoft/windows-rs) | `0.60.2` | `0.61.0` |
| [time](https://github.com/time-rs/time) | `0.3.51` | `0.3.53` |
| [indicatif](https://github.com/console-rs/indicatif) | `0.18.4` | `0.18.6` |
| [aws-lc-rs](https://github.com/aws/aws-lc-rs) | `1.17.0` | `1.17.1` |
| [aws-lc-sys](https://github.com/aws/aws-lc-rs) | `0.41.0` | `0.42.0` |
| [cc](https://github.com/rust-lang/cc-rs) | `1.2.65` | `1.2.66` |
| [console](https://github.com/console-rs/console) | `0.16.3` | `0.16.4` |
| [jobserver](https://github.com/rust-lang/jobserver-rs) | `0.1.34` | `0.1.35` |
| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.15` | `0.11.16` |
| [quinn-udp](https://github.com/quinn-rs/quinn) | `0.5.14` | `0.5.15` |
| [rustc-hash](https://github.com/rust-lang/rustc-hash) | `2.1.2` | `2.1.3` |
| [rustls-pki-types](https://github.com/rustls/pki-types) | `1.14.1` | `1.15.0` |
| [time-macros](https://github.com/time-rs/time) | `0.2.30` | `0.2.31` |


Updates `openssl-probe` from 0.1.6 to 0.2.0
- [Release notes](https://github.com/rustls/openssl-probe/releases)
- [Commits](rustls/openssl-probe@0.1.6...0.2.0)

Updates `windows-sys` from 0.60.2 to 0.61.0
- [Release notes](https://github.com/microsoft/windows-rs/releases)
- [Commits](https://github.com/microsoft/windows-rs/commits/0.61.0)

Updates `time` from 0.3.51 to 0.3.53
- [Release notes](https://github.com/time-rs/time/releases)
- [Changelog](https://github.com/time-rs/time/blob/main/CHANGELOG.md)
- [Commits](time-rs/time@v0.3.51...v0.3.53)

Updates `indicatif` from 0.18.4 to 0.18.6
- [Release notes](https://github.com/console-rs/indicatif/releases)
- [Commits](console-rs/indicatif@0.18.4...0.18.6)

Updates `aws-lc-rs` from 1.17.0 to 1.17.1
- [Release notes](https://github.com/aws/aws-lc-rs/releases)
- [Commits](aws/aws-lc-rs@v1.17.0...v1.17.1)

Updates `aws-lc-sys` from 0.41.0 to 0.42.0
- [Release notes](https://github.com/aws/aws-lc-rs/releases)
- [Commits](aws/aws-lc-rs@aws-lc-sys/v0.41.0...aws-lc-sys/v0.42.0)

Updates `cc` from 1.2.65 to 1.2.66
- [Release notes](https://github.com/rust-lang/cc-rs/releases)
- [Changelog](https://github.com/rust-lang/cc-rs/blob/main/CHANGELOG.md)
- [Commits](rust-lang/cc-rs@cc-v1.2.65...cc-v1.2.66)

Updates `console` from 0.16.3 to 0.16.4
- [Release notes](https://github.com/console-rs/console/releases)
- [Changelog](https://github.com/console-rs/console/blob/main/CHANGELOG.md)
- [Commits](console-rs/console@0.16.3...0.16.4)

Updates `jobserver` from 0.1.34 to 0.1.35
- [Commits](rust-lang/jobserver-rs@0.1.34...0.1.35)

Updates `quinn-proto` from 0.11.15 to 0.11.16
- [Release notes](https://github.com/quinn-rs/quinn/releases)
- [Commits](quinn-rs/quinn@quinn-proto-0.11.15...quinn-proto-0.11.16)

Updates `quinn-udp` from 0.5.14 to 0.5.15
- [Release notes](https://github.com/quinn-rs/quinn/releases)
- [Commits](quinn-rs/quinn@quinn-udp-0.5.14...quinn-udp-0.5.15)

Updates `rustc-hash` from 2.1.2 to 2.1.3
- [Changelog](https://github.com/rust-lang/rustc-hash/blob/main/CHANGELOG.md)
- [Commits](rust-lang/rustc-hash@v2.1.2...v2.1.3)

Updates `rustls-pki-types` from 1.14.1 to 1.15.0
- [Release notes](https://github.com/rustls/pki-types/releases)
- [Commits](rustls/pki-types@v/1.14.1...v/1.15.0)

Updates `time-macros` from 0.2.30 to 0.2.31
- [Release notes](https://github.com/time-rs/time/releases)
- [Changelog](https://github.com/time-rs/time/blob/main/CHANGELOG.md)
- [Commits](https://github.com/time-rs/time/commits)

---
updated-dependencies:
- dependency-name: openssl-probe
  dependency-version: 0.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: rust-dependencies
- dependency-name: windows-sys
  dependency-version: 0.61.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: rust-dependencies
- dependency-name: time
  dependency-version: 0.3.53
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-dependencies
- dependency-name: indicatif
  dependency-version: 0.18.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-dependencies
- dependency-name: aws-lc-rs
  dependency-version: 1.17.1
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: rust-dependencies
- dependency-name: aws-lc-sys
  dependency-version: 0.42.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: rust-dependencies
- dependency-name: cc
  dependency-version: 1.2.66
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: rust-dependencies
- dependency-name: console
  dependency-version: 0.16.4
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: rust-dependencies
- dependency-name: jobserver
  dependency-version: 0.1.35
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: rust-dependencies
- dependency-name: quinn-proto
  dependency-version: 0.11.16
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: rust-dependencies
- dependency-name: quinn-udp
  dependency-version: 0.5.15
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: rust-dependencies
- dependency-name: rustc-hash
  dependency-version: 2.1.3
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: rust-dependencies
- dependency-name: rustls-pki-types
  dependency-version: 1.15.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: rust-dependencies
- dependency-name: time-macros
  dependency-version: 0.2.31
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: rust-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Jul 6, 2026
@dependabot
dependabot Bot requested a review from a team as a code owner July 6, 2026 08:34
@dependabot
dependabot Bot requested a review from abr-egn July 6, 2026 08:34
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Jul 6, 2026
@abr-egn

abr-egn commented Jul 7, 2026

Copy link
Copy Markdown
Contributor

@dependabot rebase

@dependabot @github

dependabot Bot commented on behalf of github Jul 7, 2026

Copy link
Copy Markdown
Contributor Author

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot Bot closed this Jul 7, 2026
@dependabot
dependabot Bot deleted the dependabot/cargo/rust-dependencies-b6541369d2 branch July 7, 2026 09:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update rust code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant