Skip to content

Bump the mycelium group across 1 directory with 11 updates#851

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/mycelium-87c22a474e
Open

Bump the mycelium group across 1 directory with 11 updates#851
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/mycelium-87c22a474e

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 6, 2026

Copy link
Copy Markdown
Contributor

Bumps the mycelium group with 11 updates in the / directory:

Package From To
rand 0.10.1 0.10.2
bytes 1.11.1 1.12.0
x25519-dalek 2.0.1 3.0.0
aes-gcm 0.10.3 0.11.0
etherparse 0.20.2 0.20.3
quinn 0.11.9 0.11.11
rustls 0.23.40 0.23.41
netdev 0.44.0 0.45.0
arc-swap 1.9.1 1.9.2
redis 1.2.3 1.3.0
byte-unit 5.2.0 5.2.5

Updates rand from 0.10.1 to 0.10.2

Changelog

Sourced from rand's changelog.

[0.10.2] — 2026-07-02

Fixes

  • Fix possible memory safety violation due to deserialization of UniformChar from bad source (#1790)

Changes

  • Document required output order of fn partial_shuffle and apply #[must_use] (#1769)
  • Avoid usage of unsafe in contexts where non-local memory corruption could invalidate contract (#1791)

#1769: rust-random/rand#1769 #1790: rust-random/rand#1790 #1791: rust-random/rand#1791

Commits

Updates bytes from 1.11.1 to 1.12.0

Release notes

Sourced from bytes's releases.

Bytes v1.12.0

1.12.0 (June 18th, 2026)

Added

  • Add BytesMut::extend_from_within() (#818)
  • Add BytesMut::try_unsplit() (#746)

Fixed

  • Fix panic in get_int if nbytes is zero (#806)

Changed

  • Pass vtable data by value (#826)
  • Exclude development scripts from published package (#810)

Documented

  • Document that BytesMut::{reserve,try_reserve} doesn't preserve unused capacity (#808)
Changelog

Sourced from bytes's changelog.

1.12.0 (June 18th, 2026)

Added

  • Add BytesMut::extend_from_within() (#818)
  • Add BytesMut::try_unsplit() (#746)

Fixed

  • Fix panic in get_int if nbytes is zero (#806)

Changed

  • Pass vtable data by value (#826)
  • Exclude development scripts from published package (#810)

Documented

  • Document that BytesMut::{reserve,try_reserve} doesn't preserve unused capacity (#808)
Commits

Updates x25519-dalek from 2.0.1 to 3.0.0

Changelog

Sourced from x25519-dalek's changelog.

3.0.0

  • Update the digest dependency to 0.9. This requires a major version because the digest traits are part of the public API, but there are otherwise no changes to the API.

2.1.0

  • Make Scalar::from_bits a const fn, allowing its use in const contexts.

2.0.0

  • Fix a data modeling error in the serde feature pointed out by Trevor Perrin which caused points and scalars to be serialized with length fields rather than as fixed-size 32-byte arrays. This is a breaking change, but it fixes compatibility with serde-json and ensures that the serde-bincode encoding matches the conventional encoding for X/Ed25519.
  • Update rand_core to 0.5, allowing use with new rand versions.
  • Switch from clear_on_drop to zeroize (by Tony Arcieri).
  • Require subtle = ^2.2.1 and remove the note advising nightly Rust, which is no longer required as of that version of subtle. See the subtle changelog for more details.
  • Update README.md for 2.x series.
  • Remove the build.rs hack which loaded the entire crate into its own build.rs to generate constants, and keep the constants in the source code.

The only significant change is the data model change to the serde feature; besides the rand_core version bump, there are no other user-visible changes.

1.2.4

  • Specify a semver bound for clear_on_drop rather than an exact version, addressing an issue where changes to inline assembly in rustc prevented clear_on_drop from working without an update.

1.2.3

  • Fix an issue identified by a Quarkslab audit (and Jack Grigg), where manually constructing unreduced Scalar values, as needed for X/Ed25519, and then performing scalar/scalar arithmetic could compute incorrect results.
  • Switch to upstream Rust intrinsics for the IFMA backend now that they exist in Rust and don't need to be defined locally.
  • Ensure that the NAF computation works correctly, even for parameters never used elsewhere in the codebase.
  • Minor refactoring to EdwardsPoint decompression.
  • Fix broken links in documentation.
  • Fix compilation on nightly broken due to changes to the #[doc(include)] path root (not quite correctly done in 1.2.2).

1.2.2

... (truncated)

Commits
  • 6d96eb7 Bump version to 3.0.0.
  • c68b30f Merge pull request #330 from isislovecruft/fix/move-coc
  • 2ee6193 Merge pull request #327 from huitseeker/digests-0.9
  • 91a0fae Move CoC section from CONTRIBUTING.md to new file.
  • 5038fcf Merge pull request #308 from isislovecruft/fix/pippenger-typo
  • 6afd8ff Update sha2, digest to 0.9
  • 3cc13a7 Merge branch 'master' into develop
  • c4824e1 Merge branch 'release/2.1.0'
  • 3fc47ef Bump version to 2.1.0
  • f04b830 Merge branch 'master' into develop
  • Additional commits viewable in compare view

Updates aes-gcm from 0.10.3 to 0.11.0

Commits

Updates etherparse from 0.20.2 to 0.20.3

Release notes

Sourced from etherparse's releases.

v0.20.3 Fix bug in UDP checksum test

What's Changed

Full Changelog: JulianSchmid/etherparse@v0.20.2...v0.20.3

Commits
  • 752f96a Merge pull request #158 from JulianSchmid/release-0-20-inc-verison
  • 35752fd Increment version to 0.20.3
  • b3d7438 Merge pull request #157 from JulianSchmid/udp-big-endian-test-fix-release-20
  • 17362ea Activate ci on release-20
  • e3dcaae Reduce proptest cases for cross builds
  • c8fe735 Switch to ppc64 for big endian ci test
  • 4ee350c Add linux-s390x-stable to ci as big endian system
  • 44c8586 Fix bug in udp header checksum tests
  • See full diff in compare view

Updates quinn from 0.11.9 to 0.11.11

Release notes

Sourced from quinn's releases.

quinn-proto 0.11.11

What's Changed

Commits
  • a7499b8 Bump versions for release
  • 7c1970f proto: yield error on too many gaps in assembler
  • fe5ac49 congestion: avoid double-reducing CUBIC fast convergence
  • c1e903b fix(quinn): handle overdue timers without polling the async timer
  • b3b20e1 quinn-udp: allow to use windows-sys 0.61
  • 6f03ca3 quinn-proto: drop Initials silently when saturated
  • 41c8527 quinn: fix ref count logic for ConnectionRef and EndpointRef
  • 73ea1dd Remove RecvStreams from blocked_readers on stop
  • cf16bfd Early return in RecvStream::drop()
  • af2e4e5 Fix the (pre-existing) rightward drift by inverting conditions
  • Additional commits viewable in compare view

Updates rustls from 0.23.40 to 0.23.41

Commits
  • 642a103 ci: drop Taplo job
  • 752c144 Drop nightly clippy tests
  • 8d8611a Fix new clippy::useless-borrows-in-formatting
  • ebf3297 Fix new clippy::manual_clear
  • 46808e7 ci: sync cargo-check-external-types nightly
  • 041a8d2 Cargo deny: allow RUSTSEC-2026-0173
  • 62e220e Take semver-compatible dependency updates
  • 3c14696 Upgrade to hickory-resolver 0.26
  • 848a2cc connect-tests: delete ech.rs
  • 5ce9cac Bump version to 0.23.41
  • Additional commits viewable in compare view

Updates netdev from 0.44.0 to 0.45.0

Release notes

Sourced from netdev's releases.

v0.45.0

What's Changed

New Contributors

Full Changelog: shellrow/netdev@v0.44.0...v0.45.0

Commits
  • 02a6f10 Merge pull request #173 from shellrow/chore/release
  • a62836c chore: bump version to 0.45.0
  • f348eb7 Merge pull request #172 from shellrow/fix/freebsd-arch-portability
  • dd77167 fix: add FreeBSD armv7 SIOCGIFXMEDIA support
  • 91687e4 Merge pull request #171 from Frando/update-netlink-packet-route-031
  • e67a9e6 deps: update netlink-packet-route to 0.31
  • a752ad3 Merge pull request #169 from pkubaj/patch-1
  • d56dac9 Merge pull request #168 from Frando/update-netlink-030
  • ad9d3b9 link_speed.rs: fix build on 64-bit besides amd64 on FreeBSD
  • 810057f fixup android
  • Additional commits viewable in compare view

Updates arc-swap from 1.9.1 to 1.9.2

Changelog

Sourced from arc-swap's changelog.

1.9.2

  • Document RefCnt must not panic (#208).
Commits

Updates redis from 1.2.3 to 1.3.0

Release notes

Sourced from redis's releases.

redis-1.3.0

Changes & Bug fixes

Add numbered databases support for the cluster client (redis-rs/redis-rs#2146 by @​virratanasangpunth) fix(cluster): clamp retry backoff upper bound after min-wait floor (redis-rs/redis-rs#2158 by @​nihohit) docs/ci: add wasm32-wasip2 build support for tokio-comp (redis-rs/redis-rs#2153 by @​Prashantsinghchouhan) Add Bloom filter support (redis-rs/redis-rs#2117 by @​somechris)

CI & operational improvements

tests/version: Parse all available versions (Valkey, modules, ...) (Version refactor 6/10) (redis-rs/redis-rs#2143 by @​somechris) tests/version: Add disjunctive (OR) and conjunctive (AND) matchers (Version refactor 7/10) (redis-rs/redis-rs#2144 by @​somechris) tests/version: Drop Redis binary version parsing (Version refactor 8/10) (redis-rs/redis-rs#2145 by @​somechris) tests: Drop VERSION from version constants (version refactor 9/10) (redis-rs/redis-rs#2147 by @​somechris) Fix flakey object tests (redis-rs/redis-rs#2160 by @​nihohit) tests: Add test guards for Valkey servers (Version refactor 10/10) (redis-rs/redis-rs#2148 by @​somechris)

New Contributors

Full Changelog: redis-rs/redis-rs@redis-1.2.4...redis-1.3.0

redis-1.2.4

Changes & Bug fixes

  • cluster: refresh topology and retry on READONLY errors (#2115 by @​alexcole)
  • fix(aio): bound permit allocation by concurrency limit, not pipeline length (#2151 by @​Ali2Arslan)

CI & operational improvements

  • tests/cluster_async: Switch to positive version checking (Version refactor 1/8) (#2138 by @​somechris)
  • tests/basic: Switch version checks to constant (Version refactor 2/8) (#2139 by @​somechris)
  • tests: Split off version code into dedicated module (Version refactor 3/10) (#2140 by @​somechris)
  • tests/version: Add TestClusterVersioning trait for version handling (Version refactor 4/10) (#2141 by @​somechris)
  • tests: Delegate version comparison to TestClusterVersioning (Version refactor 5/10) (#2142 by @​somechris)
  • tests/version: Require ownership to check version support (Version refactor 5b/10) (#2152 by @​somechris)
  • tests: Use server binary from env to detect major version (#2149 by @​somechris)

New Contributors

Full Changelog: redis-rs/redis-rs@redis-1.2.3...redis-1.2.4

Commits
  • 207cc89 Prepare version (#2166)
  • c34fb33 Add redisbloom's Bloom filter support (#2117)
  • 5c6ca0a tests: Add test guards for Valkey servers (#2148)
  • e891f7f docs/ci: add wasm32-wasip2 build support for tokio-comp (#2153)
  • 7d066c6 Fix flakey object tests (#2160)
  • b571eb1 tests: Clean up version constants (#2147)
  • b9249f6 tests/version: Drop Redis binary version parsing (#2145)
  • 406ad76 tests/version: Add disjunctive (OR) and conjunctive (AND) matchers (#2144)
  • 1372807 feat(redis_test): add new commands after mock redis connection is instantiate...
  • 201d1be fix(cluster): clamp retry backoff upper bound after min-wait floor (#2158)
  • Additional commits viewable in compare view

Updates byte-unit from 5.2.0 to 5.2.5

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the mycelium group with 11 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [rand](https://github.com/rust-random/rand) | `0.10.1` | `0.10.2` |
| [bytes](https://github.com/tokio-rs/bytes) | `1.11.1` | `1.12.0` |
| [x25519-dalek](https://github.com/dalek-cryptography/curve25519-dalek) | `2.0.1` | `3.0.0` |
| [aes-gcm](https://github.com/RustCrypto/AEADs) | `0.10.3` | `0.11.0` |
| [etherparse](https://github.com/JulianSchmid/etherparse) | `0.20.2` | `0.20.3` |
| [quinn](https://github.com/quinn-rs/quinn) | `0.11.9` | `0.11.11` |
| [rustls](https://github.com/rustls/rustls) | `0.23.40` | `0.23.41` |
| [netdev](https://github.com/shellrow/netdev) | `0.44.0` | `0.45.0` |
| [arc-swap](https://github.com/vorner/arc-swap) | `1.9.1` | `1.9.2` |
| [redis](https://github.com/redis-rs/redis-rs) | `1.2.3` | `1.3.0` |
| [byte-unit](https://github.com/magiclen/byte-unit) | `5.2.0` | `5.2.5` |



Updates `rand` from 0.10.1 to 0.10.2
- [Release notes](https://github.com/rust-random/rand/releases)
- [Changelog](https://github.com/rust-random/rand/blob/master/CHANGELOG.md)
- [Commits](rust-random/rand@0.10.1...0.10.2)

Updates `bytes` from 1.11.1 to 1.12.0
- [Release notes](https://github.com/tokio-rs/bytes/releases)
- [Changelog](https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md)
- [Commits](tokio-rs/bytes@v1.11.1...v1.12.0)

Updates `x25519-dalek` from 2.0.1 to 3.0.0
- [Release notes](https://github.com/dalek-cryptography/curve25519-dalek/releases)
- [Changelog](https://github.com/dalek-cryptography/curve25519-dalek/blob/3.0.0/CHANGELOG.md)
- [Commits](dalek-cryptography/curve25519-dalek@x25519-2.0.1...3.0.0)

Updates `aes-gcm` from 0.10.3 to 0.11.0
- [Commits](RustCrypto/AEADs@aes-gcm-v0.10.3...aes-gcm-v0.11.0)

Updates `etherparse` from 0.20.2 to 0.20.3
- [Release notes](https://github.com/JulianSchmid/etherparse/releases)
- [Changelog](https://github.com/JulianSchmid/etherparse/blob/master/changelog.md)
- [Commits](JulianSchmid/etherparse@v0.20.2...v0.20.3)

Updates `quinn` from 0.11.9 to 0.11.11
- [Release notes](https://github.com/quinn-rs/quinn/releases)
- [Commits](quinn-rs/quinn@quinn-0.11.9...quinn-0.11.11)

Updates `rustls` from 0.23.40 to 0.23.41
- [Release notes](https://github.com/rustls/rustls/releases)
- [Changelog](https://github.com/rustls/rustls/blob/main/CHANGELOG.md)
- [Commits](rustls/rustls@v/0.23.40...v/0.23.41)

Updates `netdev` from 0.44.0 to 0.45.0
- [Release notes](https://github.com/shellrow/netdev/releases)
- [Commits](shellrow/netdev@v0.44.0...v0.45.0)

Updates `arc-swap` from 1.9.1 to 1.9.2
- [Changelog](https://github.com/vorner/arc-swap/blob/master/CHANGELOG.md)
- [Commits](https://github.com/vorner/arc-swap/commits)

Updates `redis` from 1.2.3 to 1.3.0
- [Release notes](https://github.com/redis-rs/redis-rs/releases)
- [Commits](redis-rs/redis-rs@redis-1.2.3...redis-1.3.0)

Updates `byte-unit` from 5.2.0 to 5.2.5
- [Commits](magiclen/Byte-Unit@v5.2.0...v5.2.5)

---
updated-dependencies:
- dependency-name: rand
  dependency-version: 0.10.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: mycelium
- dependency-name: bytes
  dependency-version: 1.12.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: mycelium
- dependency-name: x25519-dalek
  dependency-version: 3.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: mycelium
- dependency-name: aes-gcm
  dependency-version: 0.11.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: mycelium
- dependency-name: etherparse
  dependency-version: 0.20.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: mycelium
- dependency-name: quinn
  dependency-version: 0.11.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: mycelium
- dependency-name: rustls
  dependency-version: 0.23.41
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: mycelium
- dependency-name: netdev
  dependency-version: 0.45.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: mycelium
- dependency-name: arc-swap
  dependency-version: 1.9.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: mycelium
- dependency-name: redis
  dependency-version: 1.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: mycelium
- dependency-name: byte-unit
  dependency-version: 5.2.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: mycelium
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Jul 6, 2026
@dependabot dependabot Bot requested a review from LeeSmet as a code owner July 6, 2026 23:16
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Jul 6, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update rust code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants