Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(deps): update all dependencies #69

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

fix(deps): update all dependencies #69

wants to merge 1 commit into from
+252 −202

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Nov 4, 2024
edited
Loading

This PR contains the following updates:

Package Type Update Change
age dependencies minor 0.10.0 -> 0.11.0
clap dependencies patch 4.5.20 -> 4.5.31
dirs dependencies major ^5.0.1 -> ^6.0.0
keyring dependencies patch 3.6.1 -> 3.6.2
promkit dependencies minor 0.5.0 -> 0.7.0
rand (source) dependencies minor ^0.8.5 -> ^0.9.0
serde (source) dependencies patch 1.0.213 -> 1.0.218
serde_derive (source) dependencies patch 1.0.213 -> 1.0.218
serde_json dependencies patch 1.0.132 -> 1.0.140

Release Notes

str4d/rage (age)

v0.11.1: rage v0.11.1

Compare Source

Security

Fixed a security vulnerability that could allow an attacker to execute an arbitrary binary under certain conditions. See GHSA-4fg7-vxc8-qx5w. Plugin names are now required to only contain alphanumeric characters or the four special characters +-._. Thanks to ⬡-49016 for reporting this issue.

v0.11.0: rage v0.11.0

Compare Source

rage

Added
  • Partial French translation!
Fixed
  • [Unix] Files can now be encrypted with rage --passphrase when piped over stdin, without requiring an explicit - argument as INPUT.

age

Added
  • New streamlined APIs for use with a single recipient or identity and a small amount of data (that can fit entirely in memory):
    • age::encrypt
    • age::encrypt_and_armor
    • age::decrypt
  • age::Decryptor::{decrypt, decrypt_async, is_scrypt}
  • age::IdentityFile::to_recipients
  • age::IdentityFile::with_callbacks
  • age::IdentityFile::write_recipients_file
  • age::IdentityFileConvertError
  • age::NoCallbacks
  • age::scrypt, providing recipient and identity types for passphrase-based encryption.
  • Partial French translation!
Changed
  • Migrated to i18n-embed 0.15, secrecy 0.10.
  • age::Encryptor::with_recipients now takes recipients by reference instead of by value. This aligns it with age::Decryptor (which takes identities by reference), and also means that errors with recipients are reported earlier. This causes the following changes to the API:
    • Encryptor::with_recipients takes impl Iterator<Item = &'a dyn Recipient> instead of Vec<Box<dyn Recipient + Send>>.
    • Verification of recipients and generation of stanzas now happens in Encryptor::with_recipients instead of Encryptor::wrap_output and Encryptor::wrap_async_output.
    • Encryptor::with_recipients returns Result<Self, EncryptError> instead of Option<Self>, and Encryptor::{wrap_output, wrap_async_output} return io::Result<StreamWriter<W>> instead of Result<StreamWriter<W>, EncryptError>.
    • age::EncryptError has a new variant MissingRecipients, taking the place of the None that Encryptor::with_recipients could previously return.
  • age::Decryptor is now an opaque struct instead of an enum with Recipients and Passphrase variants.
  • age::IdentityFile now has a C: Callbacks generic parameter, which defaults to NoCallbacks.
  • age::IdentityFile::into_identities now returns Result<Vec<Box<dyn crate::Identity>>, DecryptError> instead of Vec<IdentityFileEntry>.
  • age::Recipient::wrap_file_key now returns (Vec<Stanza>, HashSet<String>): a tuple of the stanzas to be placed in an age file header, and labels that constrain how the stanzas may be combined with those from other recipients.
  • age::plugin::RecipientPluginV1 now supports the labels extension.
Fixed
  • age::cli_common::read_identities once again correctly parses identity files that are a single line without a trailing newline. This broke in 0.10.0 due to an unrelated refactor.
Removed
  • age::decryptor::PassphraseDecryptor (use age::Decryptor with age::scrypt::Identity instead).
  • age::decryptor::RecipientsDecryptor (use age::Decryptor instead).
  • age::IdentityFileEntry

age-plugin 0.6.0

Added
  • age_plugin::PluginHandler
  • impl age_plugin::identity::IdentityPluginV1 for std::convert::Infallible
  • impl age_plugin::recipient::RecipientPluginV1 for std::convert::Infallible
Changed
  • Migrated to age-core 0.11.
  • age_plugin::recipient::RecipientPluginV1 has a new labels method. Existing implementations of the trait should either return HashSet::new() to maintain existing compatibility, or return labels that apply the desired constraints.
  • age_plugin::run_state_machine now supports the recipient-v1 labels extension.
Fixed
  • age_plugin::run_state_machine now takes an impl age_plugin::PluginHandler argument, instead of its previous arguments.
    • This fixes the change from the previous release, because the type parameters were basically impossible to set correctly when attempting to pass None.

age-core

Added
  • age_core::format:
    • FileKey::new
    • FileKey::init_with_mut
    • FileKey::try_init_with_mut
    • is_arbitrary_string
Changed
  • Migrated to secrecy 0.10.
  • age::plugin::Connection::unidir_receive now takes an additional argument to enable handling an optional fourth command.

New Contributors

Full Changelog: str4d/rage@v0.10.0...v0.11.0

clap-rs/clap (clap)

v4.5.31

Compare Source

Features
  • Add ValueParserFactory for Saturating<T>

v4.5.30

Compare Source

Fixes
  • (assert) Allow num_args(0..=1) to be used with SetTrue
  • (assert) Clean up rendering of takes_values assertions

v4.5.29

Compare Source

Fixes
  • Change ArgMatches::args_present so not-present flags are considered not-present (matching the documentation)

v4.5.28

Compare Source

Features
  • (derive) Unstable support for full markdown syntax for doc comments, enabled with unstable-markdown

v4.5.27

Compare Source

Documentation
  • Iterate on tutorials and reference based on feedback

v4.5.26

Compare Source

Fixes
  • (error) Reduce binary size with the suggestions feature

v4.5.25

Compare Source

Fixes
  • (help) Reduce binary size

v4.5.24

Compare Source

Fixes
  • (parser) Correctly handle defaults with ignore_errors(true) and when a suggestion is provided for an unknown argument

v4.5.23

Compare Source

Fixes
  • (parser) When check allow_negative_numbers, allow E again

v4.5.22

Compare Source

Fixes
  • (assert) Catch bugs with arguments requiring themself

v4.5.21

Compare Source

Fixes
  • (parser) Ensure defaults are filled in on error with ignore_errors(true)
hwchen/keyring-rs (keyring)

v3.6.2

Compare Source

  • Have docs.rs build docs for all modules on all platforms (thanks to @​unkcpz - see #​235).
  • Switch to fastrand for tests (see #​237).
ynqa/promkit (promkit)

v0.7.0

Compare Source

What's Changed

New Contributors

Full Changelog: ynqa/promkit@v0.6.2...v0.7.0

v0.6.2

Compare Source

What's Changed

Full Changelog: ynqa/promkit@v0.6.1...v0.6.2

v0.6.1

Compare Source

What's Changed

Full Changelog: ynqa/promkit@v0.6.0...v0.6.1

v0.6.0

Compare Source

What's Changed

Full Changelog: ynqa/promkit@v0.5.1...v0.6.0

v0.5.1

Compare Source

What's Changed

Full Changelog: ynqa/promkit@v0.5.0...v0.5.1

rust-random/rand (rand)

v0.9.0

Compare Source

Security and unsafe
  • Policy: "rand is not a crypto library" (#​1514)
  • Remove fork-protection from ReseedingRng and ThreadRng. Instead, it is recommended to call ThreadRng::reseed on fork. (#​1379)
  • Use zerocopy to replace some unsafe code (#​1349, #​1393, #​1446, #​1502)
Dependencies
Features
  • Support std feature without getrandom or rand_chacha (#​1354)
  • Enable feature small_rng by default (#​1455)
  • Remove implicit feature rand_chacha; use std_rng instead. (#​1473)
  • Rename feature serde1 to serde (#​1477)
  • Rename feature getrandom to os_rng (#​1537)
  • Add feature thread_rng (#​1547)
API changes: rand_core traits
  • Add fn RngCore::read_adapter implementing std::io::Read (#​1267)
  • Add trait CryptoBlockRng: BlockRngCore; make trait CryptoRng: RngCore (#​1273)
  • Add traits TryRngCore, TryCryptoRng (#​1424, #​1499)
  • Rename fn SeedableRng::from_rng -> try_from_rng and add infallible variant fn from_rng (#​1424)
  • Rename fn SeedableRng::from_entropy -> from_os_rng and add fallible variant fn try_from_os_rng (#​1424)
  • Add bounds Clone and AsRef to associated type SeedableRng::Seed (#​1491)
API changes: Rng trait and top-level fns
  • Rename fn rand::thread_rng() to rand::rng() and remove from the prelude (#​1506)
  • Remove fn rand::random() from the prelude (#​1506)
  • Add top-level fns random_iter, random_range, random_bool, random_ratio, fill (#​1488)
  • Re-introduce fn Rng::gen_iter as random_iter (#​1305, #​1500)
  • Rename fn Rng::gen to random to avoid conflict with the new gen keyword in Rust 2024 (#​1438)
  • Rename fns Rng::gen_range to random_range, gen_bool to random_bool, gen_ratio to random_ratio (#​1505)
  • Annotate panicking methods with #[track_caller] (#​1442, #​1447)
API changes: RNGs
  • Fix <SmallRng as SeedableRng>::Seed size to 256 bits (#​1455)
  • Remove first parameter (rng) of ReseedingRng::new (#​1533)
API changes: Sequences
  • Split trait SliceRandom into IndexedRandom, IndexedMutRandom, SliceRandom (#​1382)
  • Add IndexedRandom::choose_multiple_array, index::sample_array (#​1453, #​1469)
API changes: Distributions: renames
  • Rename module rand::distributions to rand::distr (#​1470)
  • Rename distribution Standard to StandardUniform (#​1526)
  • Move distr::Slice -> distr::slice::Choose, distr::EmptySlice -> distr::slice::Empty (#​1548)
  • Rename trait distr::DistString -> distr::SampleString (#​1548)
  • Rename distr::DistIter -> distr::Iter, distr::DistMap -> distr::Map (#​1548)
API changes: Distributions
  • Relax Sized bound on Distribution<T> for &D (#​1278)
  • Remove impl of Distribution<Option<T>> for StandardUniform (#​1526)
  • Let distribution StandardUniform support all NonZero* types (#​1332)
  • Fns {Uniform, UniformSampler}::{new, new_inclusive} return a Result (instead of potentially panicking) (#​1229)
  • Distribution Uniform implements TryFrom instead of From for ranges (#​1229)
  • Add UniformUsize (#​1487)
  • Remove support for generating isize and usize values with StandardUniform, Uniform (except via UniformUsize) and Fill and usage as a WeightedAliasIndex weight (#​1487)
  • Add impl DistString for distributions Slice<char> and Uniform<char> (#​1315)
  • Add fn Slice::num_choices (#​1402)
  • Add fn p() for distribution Bernoulli to access probability (#​1481)
API changes: Weighted distributions
  • Add pub module rand::distr::weighted, moving WeightedIndex there (#​1548)
  • Add trait weighted::Weight, allowing WeightedIndex to trap overflow (#​1353)
  • Add fns weight, weights, total_weight to distribution WeightedIndex (#​1420)
  • Rename enum WeightedError to weighted::Error, revising variants (#​1382) and mark as #[non_exhaustive] (#​1480)
API changes: SIMD
  • Switch to std::simd, expand SIMD & docs (#​1239)
Reproducibility-breaking changes
  • Make ReseedingRng::reseed discard remaining data from the last block generated (#​1379)
  • Change fn SmallRng::seed_from_u64 implementation (#​1203)
  • Allow UniformFloat::new samples and UniformFloat::sample_single to yield high (#​1462)
  • Fix portability of distribution Slice (#​1469)
  • Make Uniform for usize portable via UniformUsize (#​1487)
  • Fix IndexdRandom::choose_multiple_weighted for very small seeds and optimize for large input length / low memory (#​1530)
Reproducibility-breaking optimisations
  • Optimize fn sample_floyd, affecting output of rand::seq::index::sample and rand::seq::SliceRandom::choose_multiple (#​1277)
  • New, faster algorithms for IteratorRandom::choose and choose_stable (#​1268)
  • New, faster algorithms for SliceRandom::shuffle and partial_shuffle (#​1272)
  • Optimize distribution Uniform: use Canon's method (single sampling) / Lemire's method (distribution sampling) for faster sampling (breaks value stability; #​1287)
  • Optimize fn sample_single_inclusive for floats (+~20% perf) (#​1289)
Other optimisations
  • Improve SmallRng initialization performance (#​1482)
  • Optimise SIMD widening multiply (#​1247)
Other
Documentation
  • Improve ThreadRng related docs (#​1257)
  • Docs: enable experimental --generate-link-to-definition feature (#​1327)
  • Better doc of crate features, use doc_auto_cfg (#​1411, #​1450)
serde-rs/serde (serde)

v1.0.218

Compare Source

  • Documentation improvements

v1.0.217

Compare Source

  • Support serializing externally tagged unit variant inside flattened field (#​2786, thanks @​Mingun)

v1.0.216

Compare Source

v1.0.215

Compare Source

v1.0.214

Compare Source

  • Implement IntoDeserializer for all Deserializers in serde::de::value module (#​2568, thanks @​Mingun)
serde-rs/json (serde_json)

v1.0.140

Compare Source

  • Documentation improvements

v1.0.139

Compare Source

  • Documentation improvements

v1.0.138

Compare Source

  • Documentation improvements

v1.0.137

Compare Source

  • Turn on "float_roundtrip" and "unbounded_depth" features for serde_json in play.rust-lang.org (#​1231)

v1.0.136

Compare Source

  • Optimize serde_json::value::Serializer::serialize_map by using Map::with_capacity (#​1230, thanks @​goffrie)

v1.0.135

Compare Source

v1.0.134

Compare Source

  • Add RawValue associated constants for literal null, true, false (#​1221, thanks @​bheylin)

v1.0.133

Compare Source

  • Implement From<[T; N]> for serde_json::Value (#​1215)

Configuration

📅 Schedule: Branch creation - "* 0-3 * * 1" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

Sorry, something went wrong.

@renovate renovate bot force-pushed the renovate/all branch 3 times, most recently from ad53dda to 7fe950a Compare November 17, 2024 03:37
@renovate renovate bot force-pushed the renovate/all branch 3 times, most recently from dda1971 to b544087 Compare December 5, 2024 21:29
@renovate renovate bot force-pushed the renovate/all branch 3 times, most recently from 4c15816 to 66c4da2 Compare December 15, 2024 15:31
@renovate renovate bot force-pushed the renovate/all branch 3 times, most recently from df9f670 to b14b72d Compare December 27, 2024 21:59
@renovate renovate bot force-pushed the renovate/all branch 4 times, most recently from 2e797a8 to 01f9179 Compare January 12, 2025 20:29
@renovate renovate bot force-pushed the renovate/all branch 3 times, most recently from e551d87 to 808002d Compare January 21, 2025 01:25
@renovate renovate bot force-pushed the renovate/all branch 2 times, most recently from bc4d23d to 3913fdf Compare January 28, 2025 21:27
@renovate renovate bot force-pushed the renovate/all branch 2 times, most recently from f414f36 to 96e21e4 Compare February 17, 2025 19:38
@renovate renovate bot force-pushed the renovate/all branch 2 times, most recently from 8ce60f6 to 09060f8 Compare February 24, 2025 16:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
0 participants