Skip to content
This repository was archived by the owner on Mar 20, 2024. It is now read-only.

Bump the cargo group across 1 directories with 4 updates#10

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/cargo/cargo-security-group-a6e7aff68c
Open

Bump the cargo group across 1 directories with 4 updates#10
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/cargo/cargo-security-group-a6e7aff68c

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 1, 2024

Bumps the cargo group with 4 updates in the /. directory: h2, openssl, rustix and zerocopy.

Updates h2 from 0.3.21 to 0.3.24

Release notes

Sourced from h2's releases.

v0.3.24

Fixed

  • Limit error resets for misbehaving connections.

v0.3.23

What's Changed

v0.3.22

What's Changed

  • Add header_table_size(usize) option to client and server builders.
  • Improve throughput when vectored IO is not available.
  • Update indexmap to 2.

New Contributors

Changelog

Sourced from h2's changelog.

0.3.24 (January 17, 2024)

  • Limit error resets for misbehaving connections.

0.3.23 (January 10, 2024)

  • Backport fix from 0.4.1 for stream capacity assignment.

0.3.22 (November 15, 2023)

  • Add header_table_size(usize) option to client and server builders.
  • Improve throughput when vectored IO is not available.
  • Update indexmap to 2.
Commits

Updates openssl from 0.10.57 to 0.10.63

Release notes

Sourced from openssl's releases.

openssl-v0.10.63

What's Changed

Full Changelog: rust-openssl/rust-openssl@openssl-v0.10.62...openssl-v0.10.63

openssl-v0.10.62

What's Changed

New Contributors

Full Changelog: rust-openssl/rust-openssl@openssl-v0.10.61...openssl-v0.10.62

openssl v0.10.61

No release notes provided.

openssl-v0.10.60

What's Changed

Full Changelog: rust-openssl/rust-openssl@openssl-v0.10.59...openssl-v0.10.60

... (truncated)

Commits
  • cc2850f Merge pull request #2152 from alex/bump-for-release
  • fde3d03 Merge pull request #2138 from zh-jq/update-boringssl
  • 1951575 Release openssl v0.10.63 and openssl-sys v0.9.99
  • 951d771 Merge pull request #2111 from trail-of-forks/pkcs7-add-apis
  • fb57f9f Merge pull request #2150 from alex/brainpool-on-libressl
  • ca3f45d Expose brainpool NIDs on libressl
  • a14146f Merge pull request #2148 from botovq/fix_stack_from_pem
  • aa26e97 PEM parsing: check last error instead of first
  • 06143eb Merge pull request #2145 from botovq/opaque-purpose
  • bff0db7 Make X509_PURPOSE opaque for LibreSSL >= 3.9
  • Additional commits viewable in compare view

Updates rustix from 0.38.14 to 0.38.28

Commits
  • 5ff2b62 chore: Release rustix version 0.38.28
  • 3758947 Fix c_char vs u8 errors in the linux_raw backend. (#971)
  • b1f8c8f chore: Release rustix version 0.38.27
  • 07767ad Use prlimit64 unconditionally in the linux_raw backend. (#968)
  • 704611a Miscellaneous documentation cleanups. (#967)
  • 287509b Fix compilation on macOS and FreeBSD with --no-default-features. (#966)
  • 748a828 Add methods for reading into unitialized buffers (#944)
  • 56acc55 Fix compilation on non-x86 with linux_latest. (#961)
  • cb1ffab Fix compilation under wasm32-wasi under various feature combinations. (#960)
  • 90513bc Fix the return type of fsmount. (#962)
  • Additional commits viewable in compare view

Updates zerocopy from 0.7.30 to 0.7.32

Release notes

Sourced from zerocopy's releases.

v0.7.32

What's Changed

Full Changelog: google/zerocopy@v0.7.31...v0.7.32

v0.7.31

This release fixes the soundness issue described in #716. The affected versions will soon be yanked.

This release is also described in security advisories RUSTSEC-2023-0074 and GHSA-3mv5-343c-w2qg.

What's Changed

Full Changelog: google/zerocopy@v0.7.30...v0.7.31

Changelog

Sourced from zerocopy's changelog.

Changelog

Releases

We track releases and release notes using GitHub Releases.

Yanks and Regressions

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump the cargo group across 1 directories with 4 updates
e437728 
Bumps the cargo group with 4 updates in the /. directory: [h2](https://github.com/hyperium/h2), [openssl](https://github.com/sfackler/rust-openssl), [rustix](https://github.com/bytecodealliance/rustix) and [zerocopy](https://github.com/google/zerocopy).


Updates `h2` from 0.3.21 to 0.3.24
- [Release notes](https://github.com/hyperium/h2/releases)
- [Changelog](https://github.com/hyperium/h2/blob/v0.3.24/CHANGELOG.md)
- [Commits](hyperium/h2@v0.3.21...v0.3.24)

Updates `openssl` from 0.10.57 to 0.10.63
- [Release notes](https://github.com/sfackler/rust-openssl/releases)
- [Commits](rust-openssl/rust-openssl@openssl-v0.10.57...openssl-v0.10.63)

Updates `rustix` from 0.38.14 to 0.38.28
- [Release notes](https://github.com/bytecodealliance/rustix/releases)
- [Commits](bytecodealliance/rustix@v0.38.14...v0.38.28)

Updates `zerocopy` from 0.7.30 to 0.7.32
- [Release notes](https://github.com/google/zerocopy/releases)
- [Changelog](https://github.com/google/zerocopy/blob/main/CHANGELOG.md)
- [Commits](google/zerocopy@v0.7.30...v0.7.32)

---
updated-dependencies:
- dependency-name: h2
  dependency-type: indirect
  dependency-group: cargo-security-group
- dependency-name: openssl
  dependency-type: indirect
  dependency-group: cargo-security-group
- dependency-name: rustix
  dependency-type: indirect
  dependency-group: cargo-security-group
- dependency-name: zerocopy
  dependency-type: indirect
  dependency-group: cargo-security-group
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Feb 1, 2024
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants