Skip to content

Update all dependencies#59

Merged
nikstur merged 3 commits into
mainfrom
renovate/all
Apr 22, 2026
Merged

Update all dependencies#59
nikstur merged 3 commits into
mainfrom
renovate/all

Conversation

@renovate
Copy link
Copy Markdown
Contributor

@renovate renovate Bot commented Feb 1, 2026
edited
Loading

This PR contains the following updates:

Package Type Update Change
assert_cmd dev-dependencies patch 2.2.02.2.1
clap dependencies patch 4.6.04.6.1
nix-compat dependencies digest 43d5cc6e952b5a
reqwest dependencies minor 0.120.13
samueldr/lix-gha-installer-action action major v2025-10-27v2026-02-16
serde_qs dependencies major 0.15.01.0.0
sha2 build-dependencies minor 0.10.90.11.0
sha2 dependencies minor 0.10.90.11.0

Release Notes

assert-rs/assert_cmd (assert_cmd)

v2.2.1

Compare Source

Internal
  • Dependency update
clap-rs/clap (clap)

v4.6.1

Compare Source

Fixes
  • (derive) Ensure rebuilds happen when an read env variable is changed
seanmonstar/reqwest (reqwest)

v0.13.2

Compare Source

  • Fix HTTP/2 and native-tls ALPN feature combinations.
  • Fix HTTP/3 to send h3 ALPN.
  • (wasm) fix RequestBuilder::json() from override previously set content-type.

v0.13.1

Compare Source

  • Fixes compiling with rustls on Android targets.

v0.13.0

Compare Source

  • Breaking changes:
    • rustls is now the default TLS backend, instead of native-tls.
    • rustls crypto provider defaults to aws-lc instead of ring. (rustls-no-provider exists if you want a different crypto provider)
    • rustls-tls has been renamed to rustls.
    • rustls roots features removed, rustls-platform-verifier is used by default.
      • To use different roots, call tls_certs_only(your_roots).
    • native-tls now includes ALPN. To disable, use native-tls-no-alpn.
    • query and form are now crate features, disabled by default.
    • Long-deprecated methods and crate features have been removed (such as trust-dns, which was renamed hickory-dns a while ago).
  • Many TLS-related methods renamed to improve autocompletion and discovery, but previous name left in place with a "soft" deprecation. (just documented, no warnings)
    • For example, prefer tls_backend_rustls() over use_rustls_tls().

v0.12.28

  • Fix compiling on Windows if TLS and SOCKS features are not enabled.

v0.12.27

  • Add ClientBuilder::windows_named_pipe(name) option that will force all requests over that Windows Named Piper.

v0.12.26

  • Fix sending Accept-Encoding header only with values configured with reqwest, regardless of underlying tower-http config.

v0.12.25

  • Add Error::is_upgrade() to determine if the error was from an HTTP upgrade.
  • Fix sending Proxy-Authorization if only username is configured.
  • Fix sending Proxy-Authorization to HTTPS proxies when the target is HTTP.
  • Refactor internal decompression handling to use tower-http.

v0.12.24

  • Refactor cookie handling to an internal middleware.
  • Refactor internal random generator.
  • Refactor base64 encoding to reduce a copy.
  • Documentation updates.

v0.12.23

  • Add ClientBuilder::unix_socket(path) option that will force all requests over that Unix Domain Socket.
  • Add ClientBuilder::retry(policy) and reqwest::retry::Builder to configure automatic retries.
  • Add ClientBuilder::dns_resolver2() with more ergonomic argument bounds, allowing more resolver implementations.
  • Add http3_* options to blocking::ClientBuilder.
  • Fix default TCP timeout values to enabled and faster.
  • Fix SOCKS proxies to default to port 1080
  • (wasm) Add cache methods to RequestBuilder.

v0.12.22

  • Fix socks proxies when resolving IPv6 destinations.

v0.12.21

  • Fix socks proxy to use socks4a:// instead of socks4h://.
  • Fix Error::is_timeout() to check for hyper and IO timeouts too.
  • Fix request Error to again include URLs when possible.
  • Fix socks connect error to include more context.
  • (wasm) implement Default for Body.

v0.12.20

  • Add ClientBuilder::tcp_user_timeout(Duration) option to set TCP_USER_TIMEOUT.
  • Fix proxy headers only using the first matched proxy.
  • (wasm) Fix re-adding Error::is_status().

v0.12.19

  • Fix redirect that changes the method to GET should remove payload headers.
  • Fix redirect to only check the next scheme if the policy action is to follow.
  • (wasm) Fix compilation error if cookies feature is enabled (by the way, it's a noop feature in wasm).

v0.12.18

  • Fix compilation when socks enabled without TLS.

v0.12.17

  • Fix compilation on macOS.

v0.12.16

  • Add ClientBuilder::http3_congestion_bbr() to enable BBR congestion control.
  • Add ClientBuilder::http3_send_grease() to configure whether to send use QUIC grease.
  • Add ClientBuilder::http3_max_field_section_size() to configure the maximum response headers.
  • Add ClientBuilder::tcp_keepalive_interval() to configure TCP probe interval.
  • Add ClientBuilder::tcp_keepalive_retries() to configure TCP probe count.
  • Add Proxy::headers() to add extra headers that should be sent to a proxy.
  • Fix redirect::Policy::limit() which had an off-by-1 error, allowing 1 more redirect than specified.
  • Fix HTTP/3 to support streaming request bodies.
  • (wasm) Fix null bodies when calling Response::bytes_stream().

v0.12.15

  • Fix Windows to support both ProxyOverride and NO_PROXY.
  • Fix http3 to support streaming response bodies.
  • Fix http3 dependency from public API misuse.

v0.12.14

  • Fix missing fetch_mode_no_cors(), marking as deprecated when not on WASM.

v0.12.13

  • Add Form::into_reader() for blocking multipart forms.
  • Add Form::into_stream() for async multipart forms.
  • Add support for SOCKS4a proxies.
  • Fix decoding responses with multiple zstd frames.
  • Fix RequestBuilder::form() from overwriting a previously set Content-Type header, like the other builder methods.
  • Fix cloning of request timeout in blocking::Request.
  • Fix http3 synchronization of connection creation, reducing unneccesary extra connections.
  • Fix Windows system proxy to use ProxyOverride as a NO_PROXY value.
  • Fix blocking read to correctly reserve and zero read buffer.
  • (wasm) Add support for request timeouts.
  • (wasm) Fix Error::is_timeout() to return true when from a request timeout.

v0.12.12

  • (wasm) Fix compilation by not compiler tokio/time on WASM.

v0.12.11

  • Fix decompression returning an error when HTTP/2 ends with an empty data frame.

v0.12.10

  • Add ClientBuilder::connector_layer() to allow customizing the connector stack.
  • Add ClientBuilder::http2_max_header_list_size() option.
  • Fix propagating body size hint (content-length) information when wrapping bodies.
  • Fix decompression of chunked bodies so the connections can be reused more often.

v0.12.9

  • Add tls::CertificateRevocationLists support.
  • Add crate features to enable webpki roots without selecting a rustls provider.
  • Fix connection_verbose() to output read logs.
  • Fix multipart::Part::file() to automatically include content-length.
  • Fix proxy to internally no longer cache system proxy settings.

v0.12.8

  • Add support for SOCKS4 proxies.
  • Add multipart::Form::file() method for adding files easily.
  • Add Body::wrap() to wrap any http_body::Body type.
  • Fix the pool configuration to use a timer to remove expired connections.

v0.12.7

  • Revert adding impl Service<http::Request<_>> for Client.

v0.12.6

  • Add support for danger_accept_invalid_hostnames for rustls.
  • Add impl Service<http::Request<Body>> for Client and &'_ Client.
  • Add support for !Sync bodies in Body::wrap_stream().
  • Enable happy eyeballs when hickory-dns is used.
  • Fix Proxy so that HTTP(S)_PROXY values take precedence over ALL_PROXY.
  • Fix blocking::RequestBuilder::header() from unsetting sensitive on passed header values.

v0.12.5

  • Add blocking::ClientBuilder::dns_resolver() method to change DNS resolver in blocking client.
  • Add http3 feature back, still requiring reqwest_unstable.
  • Add rustls-tls-no-provider Cargo feature to use rustls without a crypto provider.
  • Fix Accept-Encoding header combinations.
  • Fix http3 resolving IPv6 addresses.
  • Internal: upgrade to rustls 0.23.

v0.12.4

  • Add zstd support, enabled with zstd Cargo feature.
  • Add ClientBuilder::read_timeout(Duration), which applies the duration for each read operation. The timeout resets after a successful read.

v0.12.3

  • Add FromStr for dns::Name.
  • Add ClientBuilder::built_in_webpki_certs(bool) to enable them separately.
  • Add ClientBuilder::built_in_native_certs(bool) to enable them separately.
  • Fix sending content-length: 0 for GET requests.
  • Fix response body content_length() to return value when timeout is configured.
  • Fix ClientBuilder::resolve() to use lowercase domain names.

v0.12.2

  • Fix missing ALPN when connecting to socks5 proxy with rustls.
  • Fix TLS version limits with rustls.
  • Fix not detected ALPN h2 from server with native-tls.

v0.12.1

  • Fix ClientBuilder::interface() when no TLS is enabled.
  • Fix TlsInfo::peer_certificate() being truncated with rustls.
  • Fix panic if http2 feature disabled but TLS negotiated h2 in ALPN.
  • Fix Display for Error to not include its source error.
samueldr/lix-gha-installer-action (samueldr/lix-gha-installer-action)

v2026-02-16

Compare Source

Not much in term of changes, one bugfix regarding kvm access, which ended-up not being specifically tagged earlier, and just now adding some more useful output in the action's log, to better identify the Lix version at play.

As always, you should prefer pinning the action using a revision hash rather than an identifier (like a tag) which could be changed!

Changes:

  • Ensure kvm is usable by the builder(#​12)
  • Output more information after install (#​15)

Commits:

v2026-02-22

Compare Source

A single PR merged:

This warrants a release tag since it (reportedly) solves an issue where this action being used outside of GitHub (e.g. Forgejo Actions) would be given a token that is wrong for GitHub, which would break any place where the extra-access-tokens is involved within Lix.

samscott89/serde_qs (serde_qs)

v1.1.1

Compare Source

Other
  • Cargo feature / dependency cleanup (#​165)

v1.1.0

Compare Source

Added
  • add DuplicateKeyBehavior config option (#​162)

v1.0.0

Compare Source

Other
  • fix typos and improve clarity in documentation comments (#​157)
RustCrypto/hashes (sha2)

v0.11.0

Compare Source

Configuration

📅 Schedule: (UTC)

  • Branch creation
    • Between 12:00 AM and 03:59 AM, on day 1 of the month (* 0-3 1 * *)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate

This comment was marked as outdated.

Sign in to view
@renovate renovate Bot force-pushed the renovate/all branch 4 times, most recently from 3bf2c09 to 564a027 Compare February 5, 2026 14:35
@renovate renovate Bot force-pushed the renovate/all branch 6 times, most recently from bf66040 to 70a2d3c Compare February 15, 2026 22:02
@renovate renovate Bot force-pushed the renovate/all branch 6 times, most recently from 78c2263 to 7cd9366 Compare February 23, 2026 18:37
@renovate renovate Bot force-pushed the renovate/all branch 6 times, most recently from 428dd03 to b358556 Compare March 1, 2026 00:51
@renovate renovate Bot force-pushed the renovate/all branch 7 times, most recently from 5f2597c to b956232 Compare March 8, 2026 21:12
@renovate renovate Bot force-pushed the renovate/all branch 6 times, most recently from f1707a5 to 098016d Compare March 22, 2026 21:30
@renovate renovate Bot force-pushed the renovate/all branch 4 times, most recently from b9c688d to 9267cbc Compare March 28, 2026 08:49
@renovate renovate Bot force-pushed the renovate/all branch 4 times, most recently from aea8edf to 113b235 Compare April 8, 2026 21:39
@renovate renovate Bot force-pushed the renovate/all branch 5 times, most recently from 065624b to aa09cf7 Compare April 15, 2026 19:13
@renovate renovate Bot force-pushed the renovate/all branch 4 times, most recently from a735fe8 to 261a4fc Compare April 22, 2026 17:54
@renovate

This comment was marked as outdated.

Sign in to view
nikstur and others added 3 commits April 22, 2026 21:01
@nikstur
flake.lock: Update
61f87d9 
Flake lock file updates:

• Updated input 'nixpkgs':
    'github:NixOS/nixpkgs/fe416aaedd397cacb33a610b33d60ff2b431b127' (2026-03-12)
  → 'github:NixOS/nixpkgs/b12141ef619e0a9c1c84dc8c684040326f27cdcc' (2026-04-18)
@renovate @nikstur
Update all dependencies
8ba1978
@nikstur
Revert "nix: use nix-compat::nixhash instead of nix-hash cli"
74fb32a 
This reverts commit a8517c9.

Cannot use nix-compat right now because it includes references to real
Nix store paths which make the FOD fetcher fail.

I'll reconsider using nix-compat once it's published on crates.io.
@nikstur nikstur enabled auto-merge April 22, 2026 19:18
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@nikstur