{"id":3538,"name":"bytes","ecosystem":"cargo","repository_url":"https://github.com/tokio-rs/bytes","issues_count":1723,"created_at":"2025-06-06T16:30:12.334Z","updated_at":"2025-06-06T16:30:12.334Z","purl":"pkg:cargo/bytes","metadata":{"id":3690691,"name":"bytes","ecosystem":"cargo","description":"Types and traits for working with bytes","homepage":null,"licenses":"MIT","normalized_licenses":["MIT"],"repository_url":"https://github.com/tokio-rs/bytes","keywords_array":["zero-copy","io","buffers"],"namespace":null,"versions_count":55,"first_release_published_at":"2015-01-30T08:04:59.465Z","latest_release_published_at":"2025-03-05T12:12:14.708Z","latest_release_number":"1.10.1","last_synced_at":"2025-06-06T08:31:03.497Z","created_at":"2022-04-11T11:27:57.467Z","updated_at":"2025-06-06T08:32:57.566Z","registry_url":"https://crates.io/crates/bytes/","install_command":"cargo install bytes","documentation_url":"https://docs.rs/bytes/","metadata":{"categories":["data-structures","network-programming"]},"repo_metadata":{"id":26607447,"uuid":"30062547","full_name":"tokio-rs/bytes","owner":"tokio-rs","description":"Utilities for working with bytes","archived":false,"fork":false,"pushed_at":"2025-05-28T11:13:25.000Z","size":2396,"stargazers_count":2062,"open_issues_count":86,"forks_count":311,"subscribers_count":37,"default_branch":"master","last_synced_at":"2025-06-05T03:50:17.694Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Rust","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/tokio-rs.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2015-01-30T08:05:46.000Z","updated_at":"2025-06-05T02:15:17.000Z","dependencies_parsed_at":"2023-07-14T08:53:15.044Z","dependency_job_id":"aa799835-8191-469e-840b-72e7aa33fa73","html_url":"https://github.com/tokio-rs/bytes","commit_stats":{"total_commits":509,"total_committers":120,"mean_commits":4.241666666666666,"dds":0.6227897838899803,"last_synced_commit":"4cd8969e850d0a66b181c388ead281c37d360621"},"previous_names":["carllerche/bytes"],"tags_count":40,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/tokio-rs","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":258371474,"owners_count":22690559,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"},"owner_record":{"login":"tokio-rs","name":"Tokio","uuid":"20248544","kind":"organization","description":"Rust's asynchronous runtime.","email":null,"website":null,"location":null,"twitter":null,"company":null,"icon_url":"https://avatars.githubusercontent.com/u/20248544?v=4","repositories_count":46,"last_synced_at":"2025-06-05T03:49:45.404Z","metadata":{"has_sponsors_listing":true},"html_url":"https://github.com/tokio-rs","funding_links":["https://github.com/sponsors/tokio-rs"],"total_stars":91485,"followers":2280,"following":0,"created_at":"2022-11-02T16:27:21.792Z","updated_at":"2025-06-05T03:49:45.405Z","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/tokio-rs","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/tokio-rs/repositories"},"tags":[{"name":"v1.10.1","sha":"19d1427c971f6b619356966163459e43f797de2f","kind":"commit","published_at":"2025-03-05T12:11:49.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v1.10.1","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v1.10.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.10.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.10.1/manifests"},{"name":"v1.10.0","sha":"e0f3a25faeca8babae5b4c5a810b8655adbcb96e","kind":"commit","published_at":"2025-02-03T11:49:49.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v1.10.0","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v1.10.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.10.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.10.0/manifests"},{"name":"v1.9.0","sha":"d0a14deeb5d94839f101a02cc650a3a14949305b","kind":"commit","published_at":"2024-11-28T12:43:45.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v1.9.0","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v1.9.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.9.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.9.0/manifests"},{"name":"v1.8.0","sha":"c45697ce4230777aa8467db7ef91e89f282a539f","kind":"commit","published_at":"2024-10-21T19:54:34.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v1.8.0","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v1.8.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.8.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.8.0/manifests"},{"name":"v1.7.2","sha":"d7c1d658d90c922eeee1dbc29bc6f6fd9a1a1a66","kind":"commit","published_at":"2024-09-18T05:39:32.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v1.7.2","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v1.7.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.7.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.7.2/manifests"},{"name":"v1.7.1","sha":"dc4fb3e8f45650500187f8cdbad5ac8ffdb7df0a","kind":"commit","published_at":"2024-08-01T20:55:24.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v1.7.1","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v1.7.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.7.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.7.1/manifests"},{"name":"v1.7.0","sha":"03fdde9dcfe69caf681ecaa1d97f8105a9c9a6c1","kind":"commit","published_at":"2024-07-31T11:33:47.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v1.7.0","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v1.7.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.7.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.7.0/manifests"},{"name":"v1.6.1","sha":"fd13c7dcdb840653bf81294d141da77d3f1f9e1f","kind":"commit","published_at":"2024-07-13T07:45:33.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v1.6.1","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v1.6.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.6.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.6.1/manifests"},{"name":"v1.6.0","sha":"ce8d8a0a029c0d296ade752ecc8c3e1ce9eee47f","kind":"commit","published_at":"2024-03-22T19:55:20.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v1.6.0","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v1.6.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.6.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.6.0/manifests"},{"name":"v1.5.0","sha":"74e6e200fd671340d4d4a874f83776def04f6c7b","kind":"commit","published_at":"2023-09-07T08:52:15.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v1.5.0","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v1.5.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.5.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.5.0/manifests"},{"name":"v1.4.0","sha":"21ed3328364716fa30a4bf7502c913bbf0a90f45","kind":"commit","published_at":"2023-01-31T19:38:32.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v1.4.0","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v1.4.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.4.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.4.0/manifests"},{"name":"v1.3.0","sha":"9b227220dfeb5d176b807c9bf27e1ee438935f78","kind":"commit","published_at":"2022-11-21T07:06:49.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v1.3.0","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v1.3.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.3.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.3.0/manifests"},{"name":"v1.2.1","sha":"b7249149a926f0d5f9f89897853eb7dc7506d27b","kind":"commit","published_at":"2022-07-30T09:35:26.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v1.2.1","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v1.2.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.2.1/manifests"},{"name":"v1.2.0","sha":"38fd42acbaced11ff19f0a4ca2af44a308af5063","kind":"commit","published_at":"2022-07-19T11:39:58.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v1.2.0","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v1.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.2.0/manifests"},{"name":"v1.1.0","sha":"ebc61e5af14cd9b436ba880cf19e849b05a04c29","kind":"commit","published_at":"2021-08-25T15:48:41.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v1.1.0","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v1.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.1.0/manifests"},{"name":"v1.0.1","sha":"7b18c1c076adf9dff4dca28ffc1bbd8759860798","kind":"commit","published_at":"2021-01-11T17:07:46.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v1.0.1","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v1.0.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.0.1/manifests"},{"name":"v1.0.0","sha":"064ad9a1a07e3fb62fb0e8ec17a637f45c0890ed","kind":"commit","published_at":"2020-12-22T23:30:20.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v1.0.0","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v1.0.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v1.0.0/manifests"},{"name":"v0.6.0","sha":"b7f75829ab521663b8906ae5bdfeadf47427d7b5","kind":"commit","published_at":"2020-10-20T23:08:25.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v0.6.0","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v0.6.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.6.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.6.0/manifests"},{"name":"v0.5.6","sha":"6fdb7391ce83dc71ccaeda6a54211ce723e5d9a5","kind":"commit","published_at":"2020-07-14T00:58:36.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v0.5.6","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v0.5.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.5.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.5.6/manifests"},{"name":"v0.5.5","sha":"008d3e508e2247dbfbf5a73918e2fe999a4e9158","kind":"commit","published_at":"2020-06-18T21:30:11.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v0.5.5","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v0.5.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.5.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.5.5/manifests"},{"name":"v0.5.4","sha":"fe6e67386451715c5d609c90a41e98ef80f0e1d1","kind":"commit","published_at":"2020-01-23T18:41:50.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v0.5.4","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v0.5.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.5.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.5.4/manifests"},{"name":"v0.5.3","sha":"8ae3bb2104fda9a02d55ac5635974ca1b5a49ebb","kind":"commit","published_at":"2019-12-12T20:00:21.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v0.5.3","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v0.5.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.5.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.5.3/manifests"},{"name":"v0.5.2","sha":"98951ba26cccb0d613edf0286976aebf48257af0","kind":"commit","published_at":"2019-11-27T20:59:28.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v0.5.2","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v0.5.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.5.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.5.2/manifests"},{"name":"v0.5.1","sha":"3cf91283f8b4019d84d9b57674cb788179f40f58","kind":"commit","published_at":"2019-11-26T22:15:57.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v0.5.1","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v0.5.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.5.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.5.1/manifests"},{"name":"v0.5.0","sha":"b7c1f2a1357f7f9cdf2eb0187398fc80aaf7e28d","kind":"commit","published_at":"2019-11-25T19:19:30.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v0.5.0","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v0.5.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.5.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.5.0/manifests"},{"name":"v0.4.12","sha":"4948b1053b1af8f474a107b958dd0086ada06b17","kind":"commit","published_at":"2019-03-06T20:42:20.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v0.4.12","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v0.4.12","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.12","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.12/manifests"},{"name":"v0.4.11","sha":"b3248c8807684dbc3996d61fff47f9a630511662","kind":"commit","published_at":"2018-11-17T22:33:25.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v0.4.11","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v0.4.11","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.11","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.11/manifests"},{"name":"v0.4.10","sha":"456221d16521cf54cea0e6569669e47120a1b738","kind":"commit","published_at":"2018-09-04T20:31:26.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v0.4.10","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v0.4.10","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.10","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.10/manifests"},{"name":"v0.4.9","sha":"ed244d3b548d44d6bdc9d0fec5d0c21f9f898753","kind":"commit","published_at":"2018-07-23T02:30:41.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v0.4.9","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v0.4.9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.9/manifests"},{"name":"v0.4.8","sha":"406b048ae6f60237f71881c34eee441af035a275","kind":"commit","published_at":"2018-05-25T23:50:42.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v0.4.8","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v0.4.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.8/manifests"},{"name":"v0.4.7","sha":"ef09e98fbcdad09d49b84b67f1584c3e64bbd508","kind":"commit","published_at":"2018-04-27T17:51:09.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v0.4.7","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v0.4.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.7/manifests"},{"name":"v0.4.6","sha":"e5c4c6028d5e33bd472dcba5f4ef4c4e1e5d4bbc","kind":"commit","published_at":"2018-01-08T17:11:42.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v0.4.6","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v0.4.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.6/manifests"},{"name":"v0.4.5","sha":"c8c46d8513a9641fc2cf480a998db4fd837ef113","kind":"commit","published_at":"2017-08-12T17:59:31.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v0.4.5","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v0.4.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.5/manifests"},{"name":"v0.4.4","sha":"3240fb9cd9566c6713a131e467fb51b0f7f43d60","kind":"commit","published_at":"2017-05-26T17:09:43.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v0.4.4","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v0.4.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.4/manifests"},{"name":"v0.4.3","sha":"e5c7ef3b867b862395eaa53f999da26487111dcc","kind":"commit","published_at":"2017-04-30T23:25:54.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v0.4.3","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v0.4.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.3/manifests"},{"name":"v0.4.2","sha":"1a6901cdcd58f7353e3841dc9c37fde889f7702b","kind":"commit","published_at":"2017-04-05T19:12:05.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v0.4.2","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v0.4.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.2/manifests"},{"name":"v0.4.1","sha":"dcd6c184e43ca1617114cfb76b4b29d01626e4f4","kind":"commit","published_at":"2017-03-15T16:36:52.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v0.4.1","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v0.4.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.1/manifests"},{"name":"v0.4.0","sha":"9eb5bd50b8254d34b7e4d64ca283992d6c541833","kind":"commit","published_at":"2017-02-24T18:35:53.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v0.4.0","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v0.4.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.4.0/manifests"},{"name":"v0.3.0","sha":"12dfc417ce3de87ca0ae867636fcb9faeccdb242","kind":"commit","published_at":"2015-12-04T04:40:52.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v0.3.0","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v0.3.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.3.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.3.0/manifests"},{"name":"v0.1.0","sha":"053b97a6e785103f95ad6780ba20883920250635","kind":"commit","published_at":"2015-02-10T07:36:43.000Z","download_url":"https://codeload.github.com/tokio-rs/bytes/tar.gz/v0.1.0","html_url":"https://github.com/tokio-rs/bytes/releases/tag/v0.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tokio-rs%2Fbytes/tags/v0.1.0/manifests"}]},"repo_metadata_updated_at":"2025-06-06T08:32:57.566Z","dependent_packages_count":6245,"downloads":366211527,"downloads_period":"total","dependent_repos_count":57682,"rankings":{"downloads":0.026798874447273215,"dependent_repos_count":0.03455644336622073,"dependent_packages_count":0.014809904299808881,"stargazers_count":3.7729994287608344,"forks_count":2.996537303327997,"docker_downloads_count":0.07122858734669986,"average":1.1528217569248056},"purl":"pkg:cargo/bytes","advisories":[],"docker_usage_url":"https://docker.ecosyste.ms/usage/cargo/bytes","docker_dependents_count":875,"docker_downloads_count":52211283,"usage_url":"https://repos.ecosyste.ms/usage/cargo/bytes","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/cargo/bytes/dependencies","status":null,"funding_links":["https://github.com/sponsors/tokio-rs"],"critical":true,"versions_url":"https://packages.ecosyste.ms/api/v1/registries/crates.io/packages/bytes/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/crates.io/packages/bytes/version_numbers","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/crates.io/packages/bytes/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/crates.io/packages/bytes/related_packages","maintainers":[{"uuid":"10","login":"carllerche","name":"Carl Lerche","email":null,"url":"https://github.com/carllerche","packages_count":289,"html_url":"https://crates.io/users/carllerche","role":null,"created_at":"2022-11-07T17:23:55.533Z","updated_at":"2022-11-07T17:23:55.533Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/crates.io/maintainers/carllerche/packages"},{"uuid":"6741","login":"Darksonn","name":"Alice Ryhl","email":null,"url":"https://github.com/Darksonn","packages_count":59,"html_url":"https://crates.io/users/Darksonn","role":null,"created_at":"2023-03-24T09:15:32.781Z","updated_at":"2023-03-24T09:15:32.781Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/crates.io/maintainers/Darksonn/packages"}],"registry":{"name":"crates.io","url":"https://crates.io","ecosystem":"cargo","default":true,"packages_count":192379,"maintainers_count":47566,"namespaces_count":0,"keywords_count":49276,"github":"rust-lang","metadata":{"funded_packages_count":18725},"icon_url":"https://github.com/rust-lang.png","created_at":"2022-04-04T15:19:22.689Z","updated_at":"2025-06-06T05:11:10.487Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/crates.io/packages","maintainers_url":"https://packages.ecosyste.ms/api/v1/registries/crates.io/maintainers","namespaces_url":"https://packages.ecosyste.ms/api/v1/registries/crates.io/namespaces"}},"unique_repositories_count":1142,"unique_repositories_count_past_30_days":25,"recent_issues":[{"uuid":"4585116259","node_id":"PR_kwDOR2YRTc7ifcuv","number":14,"state":"open","title":"chore(deps): bump the all-dependencies group across 1 directory with 164 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-06-04T01:57:15.000Z","updated_at":"2026-06-04T01:57:16.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"all-dependencies","update_count":164,"packages":[{"name":"anyhow","old_version":"1.0.100","new_version":"1.0.102","repository_url":"https://github.com/dtolnay/anyhow"},{"name":"build_html","old_version":"2.7.0","new_version":"2.8.0","repository_url":"https://github.com/skubalj/build_html"},{"name":"chrono","old_version":"0.4.42","new_version":"0.4.44","repository_url":"https://github.com/chronotope/chrono"},{"name":"clap","old_version":"4.5.53","new_version":"4.5.60","repository_url":"https://github.com/clap-rs/clap"},{"name":"ctrlc","old_version":"3.5.1","new_version":"3.5.2","repository_url":"https://github.com/Detegr/rust-ctrlc"},{"name":"env_logger","old_version":"0.11.8","new_version":"0.11.10","repository_url":"https://github.com/rust-cli/env_logger"},{"name":"indexmap","old_version":"2.12.1","new_version":"2.14.0","repository_url":"https://github.com/indexmap-rs/indexmap"},{"name":"indicatif","old_version":"0.18.3","new_version":"0.18.4","repository_url":"https://github.com/console-rs/indicatif"},{"name":"log","old_version":"0.4.29","new_version":"0.4.30","repository_url":"https://github.com/rust-lang/log"},{"name":"once_cell","old_version":"1.21.3","new_version":"1.21.4","repository_url":"https://github.com/matklad/once_cell"},{"name":"openssl","old_version":"0.10.75","new_version":"0.10.80","repository_url":"https://github.com/rust-openssl/rust-openssl"},{"name":"rand","old_version":"0.9.2","new_version":"0.10.1","repository_url":"https://github.com/rust-random/rand"},{"name":"rand_regex","old_version":"0.18.1","new_version":"0.19.0","repository_url":"https://github.com/kennytm/rand_regex"},{"name":"regex","old_version":"1.12.2","new_version":"1.12.3","repository_url":"https://github.com/rust-lang/regex"},{"name":"reqwest","old_version":"0.12.28","new_version":"0.13.4","repository_url":"https://github.com/seanmonstar/reqwest"},{"name":"reqwest_cookie_store","old_version":"0.9.0","new_version":"0.10.0","repository_url":"https://github.com/pfernie/reqwest_cookie_store"},{"name":"serde_json","old_version":"1.0.148","new_version":"1.0.150","repository_url":"https://github.com/serde-rs/json"},{"name":"tempfile","old_version":"3.24.0","new_version":"3.27.0","repository_url":"https://github.com/Stebalien/tempfile"},{"name":"strum","old_version":"0.27.2","new_version":"0.28.0","repository_url":"https://github.com/Peternator7/strum"},{"name":"unicode-truncate","old_version":"2.0.0","new_version":"2.0.1","repository_url":"https://github.com/Aetf/unicode-truncate"},{"name":"url","old_version":"2.5.7","new_version":"2.5.8","repository_url":"https://github.com/servo/rust-url"},{"name":"z3","old_version":"0.19.7","new_version":"0.19.15","repository_url":"https://github.com/prove-rs/z3.rs"},{"name":"anstyle","old_version":"1.0.13","new_version":"1.0.14","repository_url":"https://github.com/rust-cli/anstyle"},{"name":"autocfg","old_version":"1.5.0","new_version":"1.5.1","repository_url":"https://github.com/cuviper/autocfg"},{"name":"bitflags","old_version":"2.10.0","new_version":"2.11.1","repository_url":"https://github.com/bitflags/bitflags"},{"name":"bumpalo","old_version":"3.19.1","new_version":"3.20.3","repository_url":"https://github.com/fitzgen/bumpalo"},{"name":"bytemuck","old_version":"1.24.0","new_version":"1.25.0","repository_url":"https://github.com/Lokathor/bytemuck"},{"name":"bytes","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"cc","old_version":"1.2.51","new_version":"1.2.62","repository_url":"https://github.com/rust-lang/cc-rs"},{"name":"cmake","old_version":"0.1.57","new_version":"0.1.58","repository_url":"https://github.com/rust-lang/cmake-rs"},{"name":"colorchoice","old_version":"1.0.4","new_version":"1.0.5","repository_url":"https://github.com/rust-cli/anstyle"},{"name":"console","old_version":"0.16.2","new_version":"0.16.3","repository_url":"https://github.com/console-rs/console"},{"name":"const_format","old_version":"0.2.35","new_version":"0.2.36","repository_url":"https://github.com/rodrimati1992/const_format_crates"},{"name":"cookie_store","old_version":"0.22.0","new_version":"0.22.1","repository_url":"https://github.com/pfernie/cookie_store"},{"name":"deflate64","old_version":"0.1.10","new_version":"0.1.12","repository_url":"https://github.com/anatawa12/deflate64-rs"},{"name":"deranged","old_version":"0.5.5","new_version":"0.5.8","repository_url":"https://github.com/jhpratt/deranged"},{"name":"dispatch2","old_version":"0.3.0","new_version":"0.3.1","repository_url":"https://github.com/madsmtm/objc2"},{"name":"displaydoc","old_version":"0.2.5","new_version":"0.2.6","repository_url":"https://github.com/yaahc/displaydoc"},{"name":"either","old_version":"1.15.0","new_version":"1.16.0","repository_url":"https://github.com/rayon-rs/either"},{"name":"erased-serde","old_version":"0.4.9","new_version":"0.4.10","repository_url":"https://github.com/dtolnay/erased-serde"},{"name":"fastbloom","old_version":"0.14.0","new_version":"0.14.1","repository_url":"https://github.com/tomtomwombat/fastbloom"},{"name":"fastrand","old_version":"2.3.0","new_version":"2.4.1","repository_url":"https://github.com/smol-rs/fastrand"},{"name":"flate2","old_version":"1.1.5","new_version":"1.1.9","repository_url":"https://github.com/rust-lang/flate2-rs"},{"name":"futures-core","old_version":"0.3.31","new_version":"0.3.32","repository_url":"https://github.com/rust-lang/futures-rs"},{"name":"futures-io","old_version":"0.3.31","new_version":"0.3.32","repository_url":"https://github.com/rust-lang/futures-rs"},{"name":"futures-sink","old_version":"0.3.31","new_version":"0.3.32","repository_url":"https://github.com/rust-lang/futures-rs"},{"name":"futures-task","old_version":"0.3.31","new_version":"0.3.32","repository_url":"https://github.com/rust-lang/futures-rs"},{"name":"futures-util","old_version":"0.3.31","new_version":"0.3.32","repository_url":"https://github.com/rust-lang/futures-rs"},{"name":"getrandom","old_version":"0.2.16","new_version":"0.2.17","repository_url":"https://github.com/rust-random/getrandom"},{"name":"h2","old_version":"0.4.12","new_version":"0.4.14","repository_url":"https://github.com/hyperium/h2"},{"name":"http","old_version":"1.4.0","new_version":"1.4.1","repository_url":"https://github.com/hyperium/http"},{"name":"hyper","old_version":"1.8.1","new_version":"1.10.0","repository_url":"https://github.com/hyperium/hyper"},{"name":"hyper-rustls","old_version":"0.27.7","new_version":"0.27.9","repository_url":"https://github.com/rustls/hyper-rustls"},{"name":"hyper-util","old_version":"0.1.19","new_version":"0.1.20","repository_url":"https://github.com/hyperium/hyper-util"},{"name":"iana-time-zone","old_version":"0.1.64","new_version":"0.1.65","repository_url":"https://github.com/strawlab/iana-time-zone"},{"name":"icu_locale_core","old_version":"2.1.1","new_version":"2.2.0","repository_url":"https://github.com/unicode-org/icu4x"},{"name":"icu_normalizer","old_version":"2.1.1","new_version":"2.2.0","repository_url":"https://github.com/unicode-org/icu4x"},{"name":"idna_adapter","old_version":"1.2.1","new_version":"1.2.2","repository_url":"https://github.com/hsivonen/idna_adapter"},{"name":"ipnet","old_version":"2.11.0","new_version":"2.12.0","repository_url":"https://github.com/krisprice/ipnet"},{"name":"iri-string","old_version":"0.7.10","new_version":"0.7.12","repository_url":"https://github.com/lo48576/iri-string"},{"name":"itoa","old_version":"1.0.17","new_version":"1.0.18","repository_url":"https://github.com/dtolnay/itoa"},{"name":"libbz2-rs-sys","old_version":"0.2.2","new_version":"0.2.5","repository_url":"https://github.com/trifectatechfoundation/libbzip2-rs"},{"name":"libm","old_version":"0.2.15","new_version":"0.2.16","repository_url":"https://github.com/rust-lang/compiler-builtins"},{"name":"litemap","old_version":"0.8.1","new_version":"0.8.2","repository_url":"https://github.com/unicode-org/icu4x"},{"name":"memchr","old_version":"2.7.6","new_version":"2.8.1","repository_url":"https://github.com/BurntSushi/memchr"},{"name":"mio","old_version":"1.1.1","new_version":"1.2.0","repository_url":"https://github.com/tokio-rs/mio"},{"name":"num_enum","old_version":"0.7.5","new_version":"0.7.6","repository_url":"https://github.com/illicitonion/num_enum"},{"name":"objc2","old_version":"0.6.3","new_version":"0.6.4","repository_url":"https://github.com/madsmtm/objc2"},{"name":"openssl-src","old_version":"300.5.4+3.5.4","new_version":"300.6.0+3.6.2","repository_url":"https://github.com/alexcrichton/openssl-src-rs"},{"name":"pin-project-lite","old_version":"0.2.16","new_version":"0.2.17","repository_url":"https://github.com/taiki-e/pin-project-lite"},{"name":"pkg-config","old_version":"0.3.32","new_version":"0.3.33","repository_url":"https://github.com/rust-lang/pkg-config-rs"},{"name":"portable-atomic","old_version":"1.13.0","new_version":"1.13.1","repository_url":"https://github.com/taiki-e/portable-atomic"},{"name":"portable-atomic-util","old_version":"0.2.4","new_version":"0.2.7","repository_url":"https://github.com/taiki-e/portable-atomic-util"},{"name":"potential_utf","old_version":"0.1.4","new_version":"0.1.5","repository_url":"https://github.com/unicode-org/icu4x"},{"name":"proc-macro2","old_version":"1.0.104","new_version":"1.0.106","repository_url":"https://github.com/dtolnay/proc-macro2"},{"name":"quinn-proto","old_version":"0.11.13","new_version":"0.11.14","repository_url":"https://github.com/quinn-rs/quinn"},{"name":"rand_core","old_version":"0.9.3","new_version":"0.9.5","repository_url":"https://github.com/rust-random/rand_core"},{"name":"regex-automata","old_version":"0.4.13","new_version":"0.4.14","repository_url":"https://github.com/rust-lang/regex"},{"name":"rustc-demangle","old_version":"0.1.26","new_version":"0.1.27","repository_url":"https://github.com/rust-lang/rustc-demangle"},{"name":"rustc-hash","old_version":"2.1.1","new_version":"2.1.2","repository_url":"https://github.com/rust-lang/rustc-hash"},{"name":"rustls","old_version":"0.23.35","new_version":"0.23.40","repository_url":"https://github.com/rustls/rustls"},{"name":"rustls-pki-types","old_version":"1.13.2","new_version":"1.14.1","repository_url":"https://github.com/rustls/pki-types"},{"name":"rustls-webpki","old_version":"0.103.8","new_version":"0.103.13","repository_url":"https://github.com/rustls/webpki"},{"name":"ryu","old_version":"1.0.22","new_version":"1.0.23","repository_url":"https://github.com/dtolnay/ryu"},{"name":"schannel","old_version":"0.1.28","new_version":"0.1.29","repository_url":"https://github.com/steffengy/schannel-rs"},{"name":"security-framework-sys","old_version":"2.15.0","new_version":"2.17.0","repository_url":"https://github.com/kornelski/rust-security-framework"},{"name":"semver","old_version":"1.0.27","new_version":"1.0.28","repository_url":"https://github.com/dtolnay/semver"},{"name":"serial_test","old_version":"3.2.0","new_version":"3.4.0","repository_url":"https://github.com/palfrey/serial_test"},{"name":"simd-adler32","old_version":"0.3.8","new_version":"0.3.9","repository_url":"https://github.com/mcountryman/simd-adler32"},{"name":"siphasher","old_version":"1.0.1","new_version":"1.0.3","repository_url":"https://github.com/jedisct1/rust-siphash"},{"name":"slab","old_version":"0.4.11","new_version":"0.4.12","repository_url":"https://github.com/tokio-rs/slab"},{"name":"socket2","old_version":"0.6.1","new_version":"0.6.3","repository_url":"https://github.com/rust-lang/socket2"},{"name":"syn","old_version":"2.0.111","new_version":"2.0.117","repository_url":"https://github.com/dtolnay/syn"},{"name":"tinyvec","old_version":"1.10.0","new_version":"1.11.0","repository_url":"https://github.com/Lokathor/tinyvec"},{"name":"tokio","old_version":"1.48.0","new_version":"1.52.3","repository_url":"https://github.com/tokio-rs/tokio"},{"name":"tokio-util","old_version":"0.7.17","new_version":"0.7.18","repository_url":"https://github.com/tokio-rs/tokio"},{"name":"toml_parser","old_version":"1.0.6+spec-1.1.0","new_version":"1.1.2+spec-1.1.0","repository_url":"https://github.com/toml-rs/toml"},{"name":"toml_writer","old_version":"1.0.6+spec-1.1.0","new_version":"1.1.1+spec-1.1.0","repository_url":"https://github.com/toml-rs/toml"},{"name":"tower","old_version":"0.5.2","new_version":"0.5.3","repository_url":"https://github.com/tower-rs/tower"},{"name":"tower-http","old_version":"0.6.8","new_version":"0.6.11","repository_url":"https://github.com/tower-rs/tower-http"},{"name":"typewit","old_version":"1.14.2","new_version":"1.15.2","repository_url":"https://github.com/rodrimati1992/typewit"},{"name":"unicode-ident","old_version":"1.0.22","new_version":"1.0.24","repository_url":"https://github.com/dtolnay/unicode-ident"},{"name":"unicode-segmentation","old_version":"1.12.0","new_version":"1.13.2","repository_url":"https://github.com/unicode-rs/unicode-segmentation"},{"name":"uuid","old_version":"1.19.0","new_version":"1.23.1","repository_url":"https://github.com/uuid-rs/uuid"},{"name":"wasip2","old_version":"1.0.1+wasi-0.2.4","new_version":"1.0.3+wasi-0.2.9","repository_url":"https://github.com/bytecodealliance/wasi-rs"},{"name":"webpki-roots","old_version":"1.0.5","new_version":"1.0.7","repository_url":"https://github.com/rustls/webpki-roots"},{"name":"winnow","old_version":"0.7.14","new_version":"0.7.15","repository_url":"https://github.com/winnow-rs/winnow"},{"name":"writeable","old_version":"0.6.2","new_version":"0.6.3","repository_url":"https://github.com/unicode-org/icu4x"},{"name":"zerocopy","old_version":"0.8.31","new_version":"0.8.49","repository_url":"https://github.com/google/zerocopy"},{"name":"zerofrom","old_version":"0.1.6","new_version":"0.1.8","repository_url":"https://github.com/unicode-org/icu4x"},{"name":"zerofrom-derive","old_version":"0.1.6","new_version":"0.1.7","repository_url":"https://github.com/unicode-org/icu4x"},{"name":"zmij","old_version":"1.0.10","new_version":"1.0.21","repository_url":"https://github.com/dtolnay/zmij"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the all-dependencies group with 112 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [anyhow](https://github.com/dtolnay/anyhow) | `1.0.100` | `1.0.102` |\n| [build_html](https://github.com/skubalj/build_html) | `2.7.0` | `2.8.0` |\n| [chrono](https://github.com/chronotope/chrono) | `0.4.42` | `0.4.44` |\n| [clap](https://github.com/clap-rs/clap) | `4.5.53` | `4.5.60` |\n| [ctrlc](https://github.com/Detegr/rust-ctrlc) | `3.5.1` | `3.5.2` |\n| [env_logger](https://github.com/rust-cli/env_logger) | `0.11.8` | `0.11.10` |\n| [indexmap](https://github.com/indexmap-rs/indexmap) | `2.12.1` | `2.14.0` |\n| [indicatif](https://github.com/console-rs/indicatif) | `0.18.3` | `0.18.4` |\n| [log](https://github.com/rust-lang/log) | `0.4.29` | `0.4.30` |\n| [once_cell](https://github.com/matklad/once_cell) | `1.21.3` | `1.21.4` |\n| [openssl](https://github.com/rust-openssl/rust-openssl) | `0.10.75` | `0.10.80` |\n| [rand](https://github.com/rust-random/rand) | `0.9.2` | `0.10.1` |\n| [rand_regex](https://github.com/kennytm/rand_regex) | `0.18.1` | `0.19.0` |\n| [regex](https://github.com/rust-lang/regex) | `1.12.2` | `1.12.3` |\n| [reqwest](https://github.com/seanmonstar/reqwest) | `0.12.28` | `0.13.4` |\n| [reqwest_cookie_store](https://github.com/pfernie/reqwest_cookie_store) | `0.9.0` | `0.10.0` |\n| [serde_json](https://github.com/serde-rs/json) | `1.0.148` | `1.0.150` |\n| [tempfile](https://github.com/Stebalien/tempfile) | `3.24.0` | `3.27.0` |\n| [strum](https://github.com/Peternator7/strum) | `0.27.2` | `0.28.0` |\n| [unicode-truncate](https://github.com/Aetf/unicode-truncate) | `2.0.0` | `2.0.1` |\n| [url](https://github.com/servo/rust-url) | `2.5.7` | `2.5.8` |\n| [z3](https://github.com/prove-rs/z3.rs) | `0.19.7` | `0.19.15` |\n| [anstyle](https://github.com/rust-cli/anstyle) | `1.0.13` | `1.0.14` |\n| [autocfg](https://github.com/cuviper/autocfg) | `1.5.0` | `1.5.1` |\n| [bitflags](https://github.com/bitflags/bitflags) | `2.10.0` | `2.11.1` |\n| [bumpalo](https://github.com/fitzgen/bumpalo) | `3.19.1` | `3.20.3` |\n| [bytemuck](https://github.com/Lokathor/bytemuck) | `1.24.0` | `1.25.0` |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.11.0` | `1.11.1` |\n| [cc](https://github.com/rust-lang/cc-rs) | `1.2.51` | `1.2.62` |\n| [cmake](https://github.com/rust-lang/cmake-rs) | `0.1.57` | `0.1.58` |\n| [colorchoice](https://github.com/rust-cli/anstyle) | `1.0.4` | `1.0.5` |\n| [console](https://github.com/console-rs/console) | `0.16.2` | `0.16.3` |\n| [const_format](https://github.com/rodrimati1992/const_format_crates) | `0.2.35` | `0.2.36` |\n| [cookie_store](https://github.com/pfernie/cookie_store) | `0.22.0` | `0.22.1` |\n| [deflate64](https://github.com/anatawa12/deflate64-rs) | `0.1.10` | `0.1.12` |\n| [deranged](https://github.com/jhpratt/deranged) | `0.5.5` | `0.5.8` |\n| [dispatch2](https://github.com/madsmtm/objc2) | `0.3.0` | `0.3.1` |\n| [displaydoc](https://github.com/yaahc/displaydoc) | `0.2.5` | `0.2.6` |\n| [either](https://github.com/rayon-rs/either) | `1.15.0` | `1.16.0` |\n| [erased-serde](https://github.com/dtolnay/erased-serde) | `0.4.9` | `0.4.10` |\n| [fastbloom](https://github.com/tomtomwombat/fastbloom) | `0.14.0` | `0.14.1` |\n| [fastrand](https://github.com/smol-rs/fastrand) | `2.3.0` | `2.4.1` |\n| [flate2](https://github.com/rust-lang/flate2-rs) | `1.1.5` | `1.1.9` |\n| [futures-core](https://github.com/rust-lang/futures-rs) | `0.3.31` | `0.3.32` |\n| [futures-io](https://github.com/rust-lang/futures-rs) | `0.3.31` | `0.3.32` |\n| [futures-sink](https://github.com/rust-lang/futures-rs) | `0.3.31` | `0.3.32` |\n| [futures-task](https://github.com/rust-lang/futures-rs) | `0.3.31` | `0.3.32` |\n| [futures-util](https://github.com/rust-lang/futures-rs) | `0.3.31` | `0.3.32` |\n| [getrandom](https://github.com/rust-random/getrandom) | `0.2.16` | `0.2.17` |\n| [h2](https://github.com/hyperium/h2) | `0.4.12` | `0.4.14` |\n| [http](https://github.com/hyperium/http) | `1.4.0` | `1.4.1` |\n| [hyper](https://github.com/hyperium/hyper) | `1.8.1` | `1.10.0` |\n| [hyper-rustls](https://github.com/rustls/hyper-rustls) | `0.27.7` | `0.27.9` |\n| [hyper-util](https://github.com/hyperium/hyper-util) | `0.1.19` | `0.1.20` |\n| [iana-time-zone](https://github.com/strawlab/iana-time-zone) | `0.1.64` | `0.1.65` |\n| [icu_locale_core](https://github.com/unicode-org/icu4x) | `2.1.1` | `2.2.0` |\n| [icu_normalizer](https://github.com/unicode-org/icu4x) | `2.1.1` | `2.2.0` |\n| [idna_adapter](https://github.com/hsivonen/idna_adapter) | `1.2.1` | `1.2.2` |\n| [ipnet](https://github.com/krisprice/ipnet) | `2.11.0` | `2.12.0` |\n| [iri-string](https://github.com/lo48576/iri-string) | `0.7.10` | `0.7.12` |\n| [itoa](https://github.com/dtolnay/itoa) | `1.0.17` | `1.0.18` |\n| [libbz2-rs-sys](https://github.com/trifectatechfoundation/libbzip2-rs) | `0.2.2` | `0.2.5` |\n| [libm](https://github.com/rust-lang/compiler-builtins) | `0.2.15` | `0.2.16` |\n| [litemap](https://github.com/unicode-org/icu4x) | `0.8.1` | `0.8.2` |\n| [memchr](https://github.com/BurntSushi/memchr) | `2.7.6` | `2.8.1` |\n| [mio](https://github.com/tokio-rs/mio) | `1.1.1` | `1.2.0` |\n| [num_enum](https://github.com/illicitonion/num_enum) | `0.7.5` | `0.7.6` |\n| [objc2](https://github.com/madsmtm/objc2) | `0.6.3` | `0.6.4` |\n| [openssl-src](https://github.com/alexcrichton/openssl-src-rs) | `300.5.4+3.5.4` | `300.6.0+3.6.2` |\n| [pin-project-lite](https://github.com/taiki-e/pin-project-lite) | `0.2.16` | `0.2.17` |\n| [pkg-config](https://github.com/rust-lang/pkg-config-rs) | `0.3.32` | `0.3.33` |\n| [portable-atomic](https://github.com/taiki-e/portable-atomic) | `1.13.0` | `1.13.1` |\n| [portable-atomic-util](https://github.com/taiki-e/portable-atomic-util) | `0.2.4` | `0.2.7` |\n| [potential_utf](https://github.com/unicode-org/icu4x) | `0.1.4` | `0.1.5` |\n| [proc-macro2](https://github.com/dtolnay/proc-macro2) | `1.0.104` | `1.0.106` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.13` | `0.11.14` |\n| [rand_core](https://github.com/rust-random/rand_core) | `0.9.3` | `0.9.5` |\n| [regex-automata](https://github.com/rust-lang/regex) | `0.4.13` | `0.4.14` |\n| [rustc-demangle](https://github.com/rust-lang/rustc-demangle) | `0.1.26` | `0.1.27` |\n| [rustc-hash](https://github.com/rust-lang/rustc-hash) | `2.1.1` | `2.1.2` |\n| [rustls](https://github.com/rustls/rustls) | `0.23.35` | `0.23.40` |\n| [rustls-pki-types](https://github.com/rustls/pki-types) | `1.13.2` | `1.14.1` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.103.8` | `0.103.13` |\n| [ryu](https://github.com/dtolnay/ryu) | `1.0.22` | `1.0.23` |\n| [schannel](https://github.com/steffengy/schannel-rs) | `0.1.28` | `0.1.29` |\n| [security-framework-sys](https://github.com/kornelski/rust-security-framework) | `2.15.0` | `2.17.0` |\n| [semver](https://github.com/dtolnay/semver) | `1.0.27` | `1.0.28` |\n| [serial_test](https://github.com/palfrey/serial_test) | `3.2.0` | `3.4.0` |\n| [simd-adler32](https://github.com/mcountryman/simd-adler32) | `0.3.8` | `0.3.9` |\n| [siphasher](https://github.com/jedisct1/rust-siphash) | `1.0.1` | `1.0.3` |\n| [slab](https://github.com/tokio-rs/slab) | `0.4.11` | `0.4.12` |\n| [socket2](https://github.com/rust-lang/socket2) | `0.6.1` | `0.6.3` |\n| [syn](https://github.com/dtolnay/syn) | `2.0.111` | `2.0.117` |\n| [tinyvec](https://github.com/Lokathor/tinyvec) | `1.10.0` | `1.11.0` |\n| [tokio](https://github.com/tokio-rs/tokio) | `1.48.0` | `1.52.3` |\n| [tokio-util](https://github.com/tokio-rs/tokio) | `0.7.17` | `0.7.18` |\n| [toml_parser](https://github.com/toml-rs/toml) | `1.0.6+spec-1.1.0` | `1.1.2+spec-1.1.0` |\n| [toml_writer](https://github.com/toml-rs/toml) | `1.0.6+spec-1.1.0` | `1.1.1+spec-1.1.0` |\n| [tower](https://github.com/tower-rs/tower) | `0.5.2` | `0.5.3` |\n| [tower-http](https://github.com/tower-rs/tower-http) | `0.6.8` | `0.6.11` |\n| [typewit](https://github.com/rodrimati1992/typewit) | `1.14.2` | `1.15.2` |\n| [unicode-ident](https://github.com/dtolnay/unicode-ident) | `1.0.22` | `1.0.24` |\n| [unicode-segmentation](https://github.com/unicode-rs/unicode-segmentation) | `1.12.0` | `1.13.2` |\n| [uuid](https://github.com/uuid-rs/uuid) | `1.19.0` | `1.23.1` |\n| [wasip2](https://github.com/bytecodealliance/wasi-rs) | `1.0.1+wasi-0.2.4` | `1.0.3+wasi-0.2.9` |\n| [webpki-roots](https://github.com/rustls/webpki-roots) | `1.0.5` | `1.0.7` |\n| [winnow](https://github.com/winnow-rs/winnow) | `0.7.14` | `0.7.15` |\n| [writeable](https://github.com/unicode-org/icu4x) | `0.6.2` | `0.6.3` |\n| [zerocopy](https://github.com/google/zerocopy) | `0.8.31` | `0.8.49` |\n| [zerofrom](https://github.com/unicode-org/icu4x) | `0.1.6` | `0.1.8` |\n| [zerofrom-derive](https://github.com/unicode-org/icu4x) | `0.1.6` | `0.1.7` |\n| [zmij](https://github.com/dtolnay/zmij) | `1.0.10` | `1.0.21` |\n\n\nUpdates `anyhow` from 1.0.100 to 1.0.102\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dtolnay/anyhow/releases\"\u003eanyhow's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.0.102\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove backtrace dependency (\u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/438\"\u003e#438\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/439\"\u003e#439\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/440\"\u003e#440\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/441\"\u003e#441\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.0.101\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd #[inline] to anyhow::Ok helper (\u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/437\"\u003e#437\u003c/a\u003e, thanks \u003ca href=\"https://github.com/Ibitier\"\u003e\u003ccode\u003e@​Ibitier\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/5c657b32522023a9f7ef883fb08582fd8e656b1a\"\u003e\u003ccode\u003e5c657b3\u003c/code\u003e\u003c/a\u003e Release 1.0.102\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/e737fb63918e8c71a3d0a968004a9c7ed7942283\"\u003e\u003ccode\u003ee737fb6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/442\"\u003e#442\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/7fe62b51c62804f8b84443affeacfb3810ed2516\"\u003e\u003ccode\u003e7fe62b5\u003c/code\u003e\u003c/a\u003e Further simply backtrace conditional compilation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/c8cb5cae23e57a2dbb87bf05cba04f1df1f1660b\"\u003e\u003ccode\u003ec8cb5ca\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/441\"\u003e#441\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/de27df7e0f510d543c18e50a0736566b66e62baf\"\u003e\u003ccode\u003ede27df7\u003c/code\u003e\u003c/a\u003e Delete CI use of --features=backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/9b67e5dd608658d805640cf1b6f6c9d091686ec1\"\u003e\u003ccode\u003e9b67e5d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/440\"\u003e#440\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/efdb11a259ca58a2e505ef50486cf2d6b5ddc42a\"\u003e\u003ccode\u003eefdb11a\u003c/code\u003e\u003c/a\u003e Simplify \u003ccode\u003estd_backtrace\u003c/code\u003e conditional code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/b8a9a707838969721a86b28e3c45ce27e279e981\"\u003e\u003ccode\u003eb8a9a70\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/439\"\u003e#439\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/a42fc2c21846ba459df43a3f8b4996a2074909cb\"\u003e\u003ccode\u003ea42fc2c\u003c/code\u003e\u003c/a\u003e Remove \u003ccode\u003efeature = \u0026quot;backtrace\u0026quot;\u003c/code\u003e conditional code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/2a2a3ceb4cbc409fd99613ab5744b21e825e7908\"\u003e\u003ccode\u003e2a2a3ce\u003c/code\u003e\u003c/a\u003e Re-word backtrace feature comment\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dtolnay/anyhow/compare/1.0.100...1.0.102\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `build_html` from 2.7.0 to 2.8.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/skubalj/build_html/releases\"\u003ebuild_html's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.8.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eFromStr\u003c/code\u003e implementation for \u003ccode\u003eHtmlTag\u003c/code\u003e, courtesy of \u003ca href=\"https://github.com/PNys\"\u003e\u003ccode\u003e@​PNys\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded HTMLTag for various tags (\u003ccode\u003emeter\u003c/code\u003e, \u003ccode\u003ekbd\u003c/code\u003e, \u003ccode\u003eaudio\u003c/code\u003e, ...), including inputs (\u003ccode\u003ebutton\u003c/code\u003e, \u003ccode\u003einput\u003c/code\u003e, \u003ccode\u003etextarea\u003c/code\u003e, and \u003ccode\u003elabel\u003c/code\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/skubalj/build_html/blob/main/CHANGELOG.md\"\u003ebuild_html's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eVersion 2.8.0 (2026-04-29)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eFromStr\u003c/code\u003e implementation for \u003ccode\u003eHtmlTag\u003c/code\u003e, courtesy of \u003ca href=\"https://github.com/PNys\"\u003e\u003ccode\u003e@​PNys\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded HTMLTag for various tags (\u003ccode\u003emeter\u003c/code\u003e, \u003ccode\u003ekbd\u003c/code\u003e, \u003ccode\u003eaudio\u003c/code\u003e, ...), including inputs\n(\u003ccode\u003ebutton\u003c/code\u003e, \u003ccode\u003einput\u003c/code\u003e, \u003ccode\u003etextarea\u003c/code\u003e, and \u003ccode\u003elabel\u003c/code\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/skubalj/build_html/commit/e3979fcfd4fcf4526c47452bf9ffb5c23c7d31e9\"\u003e\u003ccode\u003ee3979fc\u003c/code\u003e\u003c/a\u003e remove unneeded reference\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/skubalj/build_html/commit/b8e4b22432ec16ee66e62616b6217986ec31b7b0\"\u003e\u003ccode\u003eb8e4b22\u003c/code\u003e\u003c/a\u003e add additinal elements, add 'impl Error for UnknownTagError'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/skubalj/build_html/commit/9af7dd81b729c5a68c7bda857c29327aa23fee76\"\u003e\u003ccode\u003e9af7dd8\u003c/code\u003e\u003c/a\u003e Adding parsing From String to HtmlTag (\u003ca href=\"https://redirect.github.com/skubalj/build_html/issues/23\"\u003e#23\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/skubalj/build_html/compare/v2.7.0...v2.8.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `chrono` from 0.4.42 to 0.4.44\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/chronotope/chrono/releases\"\u003echrono's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.44\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: match MSRV with \u003ccode\u003eCargo.toml\u003c/code\u003e contents by \u003ca href=\"https://github.com/coryan\"\u003e\u003ccode\u003e@​coryan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1772\"\u003echronotope/chrono#1772\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd track_caller to non-deprecated functions by \u003ca href=\"https://github.com/svix-jplatte\"\u003e\u003ccode\u003e@​svix-jplatte\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1774\"\u003echronotope/chrono#1774\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.4.43\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eInstall extra components for lint workflow by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1741\"\u003echronotope/chrono#1741\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade windows-bindgen to 0.64 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1742\"\u003echronotope/chrono#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove windows-bindgen setup by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1744\"\u003echronotope/chrono#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop stabilized feature doc_auto_cfg by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1745\"\u003echronotope/chrono#1745\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFaster RFC 3339 parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1748\"\u003echronotope/chrono#1748\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate windows-bindgen requirement from 0.64 to 0.65 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1751\"\u003echronotope/chrono#1751\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd \u003ccode\u003eNaiveDate::abs_diff\u003c/code\u003e by \u003ca href=\"https://github.com/Kinrany\"\u003e\u003ccode\u003e@​Kinrany\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1752\"\u003echronotope/chrono#1752\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd feature gated defmt support. by \u003ca href=\"https://github.com/pebender\"\u003e\u003ccode\u003e@​pebender\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1747\"\u003echronotope/chrono#1747\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop deny lints, eager Debug impls are a mixed blessing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1753\"\u003echronotope/chrono#1753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: minor improvement for docs by \u003ca href=\"https://github.com/spuradage\"\u003e\u003ccode\u003e@​spuradage\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1756\"\u003echronotope/chrono#1756\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded doctest for the NaiveDate years_since function by \u003ca href=\"https://github.com/LucasBou\"\u003e\u003ccode\u003e@​LucasBou\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1755\"\u003echronotope/chrono#1755\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.4.43 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1765\"\u003echronotope/chrono#1765\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate copyright year to 2026 in LICENSE.txt by \u003ca href=\"https://github.com/taozui472\"\u003e\u003ccode\u003e@​taozui472\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1767\"\u003echronotope/chrono#1767\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/c14b4599d07ef36ffa1f8a531fb0bc7eb3b42464\"\u003e\u003ccode\u003ec14b459\u003c/code\u003e\u003c/a\u003e Bump version to 0.4.44\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/ea832c5090369eefa2cb6a47d643e2f7ade7ffa7\"\u003e\u003ccode\u003eea832c5\u003c/code\u003e\u003c/a\u003e Add track_caller to non-deprecated functions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/cfae889a3a23507acf49b605794abba17effd2d7\"\u003e\u003ccode\u003ecfae889\u003c/code\u003e\u003c/a\u003e Fix panic message in to_rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/f8900b5a44228a7f6282c65e8c407d3ecb6dcb7b\"\u003e\u003ccode\u003ef8900b5\u003c/code\u003e\u003c/a\u003e docs: match MSRV with \u003ccode\u003eCargo.toml\u003c/code\u003e contents\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/45caaa970ce443b11106a710ee24bd2480e5ff99\"\u003e\u003ccode\u003e45caaa9\u003c/code\u003e\u003c/a\u003e Update copyright year to 2026 in LICENSE.txt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/1c0b8f011ab2f2e53c195df1866a1fb4c7fd193a\"\u003e\u003ccode\u003e1c0b8f0\u003c/code\u003e\u003c/a\u003e Bump version to 0.4.43\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/a03e43b1c3ef3aea77f12200d84144f275560aa9\"\u003e\u003ccode\u003ea03e43b\u003c/code\u003e\u003c/a\u003e Upgrade windows-bindgen to 0.66\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/4fedaba2a214aa560e1c6a70d0a09e6955ed3ff4\"\u003e\u003ccode\u003e4fedaba\u003c/code\u003e\u003c/a\u003e Ignore bincode advisory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/f4b7bbda679199e7509da813849a10242b2f7aa1\"\u003e\u003ccode\u003ef4b7bbd\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 5 to 6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/db129730e8f21ca66b3808c133b7147cbc62fc41\"\u003e\u003ccode\u003edb12973\u003c/code\u003e\u003c/a\u003e Added doctest for the NaiveDate years_since function (\u003ca href=\"https://redirect.github.com/chronotope/chrono/issues/1755\"\u003e#1755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/chronotope/chrono/compare/v0.4.42...v0.4.44\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `clap` from 4.5.53 to 4.5.60\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/clap-rs/clap/releases\"\u003eclap's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.5.60\u003c/h2\u003e\n\u003ch2\u003e[4.5.60] - 2026-02-19\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(help)\u003c/em\u003e Quote empty default values, possible values\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.59\u003c/h2\u003e\n\u003ch2\u003e[4.5.59] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eCommand::ignore_errors\u003c/code\u003e no longer masks help/version on subcommands\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.58\u003c/h2\u003e\n\u003ch2\u003e[4.5.58] - 2026-02-11\u003c/h2\u003e\n\u003ch2\u003ev4.5.57\u003c/h2\u003e\n\u003ch2\u003e[4.5.57] - 2026-02-03\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegression from 4.5.55 where having an argument with \u003ccode\u003e.value_terminator(\u0026quot;--\u0026quot;)\u003c/code\u003e caused problems with an argument with \u003ccode\u003e.last(true)\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.56\u003c/h2\u003e\n\u003ch2\u003e[4.5.56] - 2026-01-29\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOn conflict error, don't show conflicting arguments in the usage\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.55\u003c/h2\u003e\n\u003ch2\u003e[4.5.55] - 2026-01-27\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix inconsistency in precedence between positionals with a \u003ccode\u003evalue_terminator(\u0026quot;--\u0026quot;)\u003c/code\u003e and escapes (\u003ccode\u003e--\u003c/code\u003e) where \u003ccode\u003e./foo -- bar\u003c/code\u003e means the first arg is empty, rather than escaping future args\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.54\u003c/h2\u003e\n\u003ch2\u003e[4.5.54] - 2026-01-02\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(help)\u003c/em\u003e Move \u003ccode\u003e[default]\u003c/code\u003e to its own paragraph when \u003ccode\u003ePossibleValue::help\u003c/code\u003e is present in \u003ccode\u003e--help\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/clap-rs/clap/blob/master/CHANGELOG.md\"\u003eclap's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.5.60] - 2026-02-19\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(help)\u003c/em\u003e Quote empty default values, possible values\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.59] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eCommand::ignore_errors\u003c/code\u003e no longer masks help/version on subcommands\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.58] - 2026-02-11\u003c/h2\u003e\n\u003ch2\u003e[4.5.57] - 2026-02-03\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegression from 4.5.55 where having an argument with \u003ccode\u003e.value_terminator(\u0026quot;--\u0026quot;)\u003c/code\u003e caused problems with an argument with \u003ccode\u003e.last(true)\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.56] - 2026-01-29\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOn conflict error, don't show conflicting arguments in the usage\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.55] - 2026-01-27\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix inconsistency in precedence between positionals with a \u003ccode\u003evalue_terminator(\u0026quot;--\u0026quot;)\u003c/code\u003e and escapes (\u003ccode\u003e--\u003c/code\u003e) where \u003ccode\u003e./foo -- bar\u003c/code\u003e means the first arg is empty, rather than escaping future args\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.54] - 2026-01-02\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(help)\u003c/em\u003e Move \u003ccode\u003e[default]\u003c/code\u003e to its own paragraph when \u003ccode\u003ePossibleValue::help\u003c/code\u003e is present in \u003ccode\u003e--help\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/33d24d844b11c0e926ae132e1af338ff070bdf4a\"\u003e\u003ccode\u003e33d24d8\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/9332409f4a6c1d5c22064e839ec8e9bc040f3be7\"\u003e\u003ccode\u003e9332409\u003c/code\u003e\u003c/a\u003e docs: Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/b7adce5a17089596eecb2af6985e6503f2ffcd38\"\u003e\u003ccode\u003eb7adce5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6166\"\u003e#6166\u003c/a\u003e from fabalchemy/fix-dynamic-powershell-completion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/009bba44ec3d182028ec3a72f5b6f3e507827768\"\u003e\u003ccode\u003e009bba4\u003c/code\u003e\u003c/a\u003e fix(clap_complete): Improve powershell registration\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/d89d57dfb4bdd18930a40c6d7f4fadb23ee9c5b3\"\u003e\u003ccode\u003ed89d57d\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/f18b67ec3d4ce6ac1acf115adaab2f16ab2ed3c7\"\u003e\u003ccode\u003ef18b67e\u003c/code\u003e\u003c/a\u003e docs: Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/9d218eb418526143c9110f734f78a608b8cf6440\"\u003e\u003ccode\u003e9d218eb\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6165\"\u003e#6165\u003c/a\u003e from epage/shirt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/126440ca846613671e1dac98198b2ceb17dab2b0\"\u003e\u003ccode\u003e126440c\u003c/code\u003e\u003c/a\u003e fix(help): Correctly calculate padding for short-only args\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/9e3c05ef3800a3e638b8224a7881a81517a4f4db\"\u003e\u003ccode\u003e9e3c05e\u003c/code\u003e\u003c/a\u003e test(help): Show panic with short, valueless arg\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/c9898d0fece98d8520d3dd954cf457b685b3308f\"\u003e\u003ccode\u003ec9898d0\u003c/code\u003e\u003c/a\u003e test(help): Verify short with value\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/clap-rs/clap/compare/clap_complete-v4.5.53...clap_complete-v4.5.60\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ctrlc` from 3.5.1 to 3.5.2\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Detegr/rust-ctrlc/commit/0aed47c35355ab7de53fa281201b8b924c2cfcb3\"\u003e\u003ccode\u003e0aed47c\u003c/code\u003e\u003c/a\u003e Release 3.5.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Detegr/rust-ctrlc/commit/369ffb7da44d404837c952d05a58e9a4b7947005\"\u003e\u003ccode\u003e369ffb7\u003c/code\u003e\u003c/a\u003e Remove cargo.lock introduced with the previous PR\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Detegr/rust-ctrlc/commit/97d3e27d98f5baa9ce500ac23f914d7446c90101\"\u003e\u003ccode\u003e97d3e27\u003c/code\u003e\u003c/a\u003e bump nix\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/Detegr/rust-ctrlc/compare/3.5.1...3.5.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `env_logger` from 0.11.8 to 0.11.10\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-cli/env_logger/releases\"\u003eenv_logger's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.11.10\u003c/h2\u003e\n\u003ch2\u003e[0.11.10] - 2026-03-23\u003c/h2\u003e\n\u003ch3\u003eInternal\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.11.9\u003c/h2\u003e\n\u003ch2\u003e[0.11.9] - 2026-02-11\u003c/h2\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-cli/env_logger/blob/main/CHANGELOG.md\"\u003eenv_logger's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.11.10] - 2026-03-23\u003c/h2\u003e\n\u003ch3\u003eInternal\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.11.9] - 2026-02-11\u003c/h2\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/41320bf391e3d62cc0171f83403c6d684686ac98\"\u003e\u003ccode\u003e41320bf\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/de8c74f47cb137541ac3c740b1fa77f46554dc25\"\u003e\u003ccode\u003ede8c74f\u003c/code\u003e\u003c/a\u003e docs: Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/d550741cdcd1d64f8a564158d9d0b2554f5d900d\"\u003e\u003ccode\u003ed550741\u003c/code\u003e\u003c/a\u003e docs(gh): Add sponsor link\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/458b07544b86495075418e4d81cc048c98f362b6\"\u003e\u003ccode\u003e458b075\u003c/code\u003e\u003c/a\u003e chore(deps): Update Rust Stable to v1.94 (\u003ca href=\"https://redirect.github.com/rust-cli/env_logger/issues/401\"\u003e#401\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/8bc3fc3e1db40d82a40b485e4c7971ac257d17a2\"\u003e\u003ccode\u003e8bc3fc3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-cli/env_logger/issues/400\"\u003e#400\u003c/a\u003e from epage/update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/143fa647ab33ed3acc9f160dfa3cb075cc62b5a3\"\u003e\u003ccode\u003e143fa64\u003c/code\u003e\u003c/a\u003e chore: Upgrade incompatible\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/b687a2418ab8eeb031a55f561be50742ede27baf\"\u003e\u003ccode\u003eb687a24\u003c/code\u003e\u003c/a\u003e chore: Upgrade compatible\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/8cf1ba99129eeccc9914f9c3059ac6acc0686ba4\"\u003e\u003ccode\u003e8cf1ba9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-cli/env_logger/issues/397\"\u003e#397\u003c/a\u003e from rust-cli/renovate/crate-ci-typos-1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/094ecf7a8adbf013877f7e0883774008a95dbe3d\"\u003e\u003ccode\u003e094ecf7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-cli/env_logger/issues/396\"\u003e#396\u003c/a\u003e from rust-cli/renovate/crate-ci-committed-1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/34ad62679742adceb156ce5a59b0a277a8b67771\"\u003e\u003ccode\u003e34ad626\u003c/code\u003e\u003c/a\u003e chore(deps): Update pre-commit hook crate-ci/typos to v1.44.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-cli/env_logger/compare/v0.11.8...v0.11.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `indexmap` from 2.12.1 to 2.14.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/indexmap-rs/indexmap/blob/main/RELEASES.md\"\u003eindexmap's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.14.0 (2026-04-09)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eMSRV\u003c/strong\u003e: Rust 1.85.0 or later is now required.\u003c/li\u003e\n\u003cli\u003eUpdated the \u003ccode\u003ehashbrown\u003c/code\u003e dependency to 0.17.\u003c/li\u003e\n\u003cli\u003eMade more \u003ccode\u003emap::Slice\u003c/code\u003e methods \u003ccode\u003econst\u003c/code\u003e: \u003ccode\u003enew_mut\u003c/code\u003e, \u003ccode\u003efirst_mut\u003c/code\u003e, \u003ccode\u003elast_mut\u003c/code\u003e,\n\u003ccode\u003esplit_at_mut\u003c/code\u003e, \u003ccode\u003esplit_at_mut_checked\u003c/code\u003e, \u003ccode\u003esplit_first_mut\u003c/code\u003e, \u003ccode\u003esplit_last_mut\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.13.1 (2026-04-02)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMade some \u003ccode\u003eSlice\u003c/code\u003e methods \u003ccode\u003econst\u003c/code\u003e:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003emap::Slice::{first,last,split_at,split_at_checked,split_first,split_last}\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eset::Slice::{first,last,split_at,split_at_checked,split_first,split_last}\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.13.0 (2026-01-07)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImplemented \u003ccode\u003eClone\u003c/code\u003e for \u003ccode\u003eIntoKeys\u003c/code\u003e and \u003ccode\u003eIntoValues\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003emap::Slice::split_at_checked\u003c/code\u003e and \u003ccode\u003esplit_at_mut_checked\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eset::Slice::split_at_checked\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/bcd165baeb12bdf6e57a31d9869e9839e25679c6\"\u003e\u003ccode\u003ebcd165b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/indexmap-rs/indexmap/issues/439\"\u003e#439\u003c/a\u003e from cuviper/release-2.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/4ef06a729e0af095d2f39ec4bda5e0882054726e\"\u003e\u003ccode\u003e4ef06a7\u003c/code\u003e\u003c/a\u003e Release 2.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/d21826ca9351e968e7c5cff4f818e7a5e3cc481b\"\u003e\u003ccode\u003ed21826c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/indexmap-rs/indexmap/issues/438\"\u003e#438\u003c/a\u003e from cuviper/hashbrown-0.17\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/2566bec20dfbca0fa037939e67df4938c0f60f01\"\u003e\u003ccode\u003e2566bec\u003c/code\u003e\u003c/a\u003e Upgrade to \u003ccode\u003ehashbrown v0.17\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/4b62776c3f7dec98a5b89f907c3add5c603343b0\"\u003e\u003ccode\u003e4b62776\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/indexmap-rs/indexmap/issues/437\"\u003e#437\u003c/a\u003e from cuviper/disjoint-panic\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/478fba2eb0594f0fdc70b6b93e90fae820bdf82e\"\u003e\u003ccode\u003e478fba2\u003c/code\u003e\u003c/a\u003e Normalize the panic doc of \u003ccode\u003eget_disjoint_mut\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/fb6dafda4ee443864c88b61a4dfc8982012d3d39\"\u003e\u003ccode\u003efb6dafd\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/indexmap-rs/indexmap/issues/436\"\u003e#436\u003c/a\u003e from cuviper/const-slice-mut\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/5c237a2ab7db4017b057f6b52e28c78dd427cd94\"\u003e\u003ccode\u003e5c237a2\u003c/code\u003e\u003c/a\u003e Make \u003ccode\u003eSlice::{first,last,split_*}_mut\u003c/code\u003e methods \u003ccode\u003econst\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/48ff9ce2e3a2a464e4f599691df62dff178d655b\"\u003e\u003ccode\u003e48ff9ce\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/indexmap-rs/indexmap/issues/435\"\u003e#435\u003c/a\u003e from cuviper/edition-2024\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/648be98a3112278e1aea7c5b7d3c3a4f77e1eddb\"\u003e\u003ccode\u003e648be98\u003c/code\u003e\u003c/a\u003e \u003ccode\u003ecargo fmt\u003c/code\u003e with edition 2024\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/indexmap-rs/indexmap/compare/2.12.1...2.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `indicatif` from 0.18.3 to 0.18.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/console-rs/indicatif/releases\"\u003eindicatif's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.18.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einitial draft oft hold_max with heuristic by \u003ca href=\"https://github.com/djugei\"\u003e\u003ccode\u003e@​djugei\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/657\"\u003econsole-rs/indicatif#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix duration after finish by \u003ca href=\"https://github.com/luolong\"\u003e\u003ccode\u003e@​luolong\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/748\"\u003econsole-rs/indicatif#748\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd refresh rate warning for ProgressDrawTarget::term_like() by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/750\"\u003econsole-rs/indicatif#750\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSeeking heuristic tweaks by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/751\"\u003econsole-rs/indicatif#751\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose the current tab width by \u003ca href=\"https://github.com/alexisfontaine\"\u003e\u003ccode\u003e@​alexisfontaine\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/754\"\u003econsole-rs/indicatif#754\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake WASM support optional via a feature flag by \u003ca href=\"https://github.com/SvenFinn\"\u003e\u003ccode\u003e@​SvenFinn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/761\"\u003econsole-rs/indicatif#761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: respect NO_COLOR and TERM=dumb environment variables by \u003ca href=\"https://github.com/shaanmajid\"\u003e\u003ccode\u003e@​shaanmajid\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/764\"\u003econsole-rs/indicatif#764\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/4de2f604c3f5af5556db0a1d15e296102879c8d9\"\u003e\u003ccode\u003e4de2f60\u003c/code\u003e\u003c/a\u003e Bump version to 0.18.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/8e0ab0e6b2b098afa68e62a9b41c6c9d6f74811d\"\u003e\u003ccode\u003e8e0ab0e\u003c/code\u003e\u003c/a\u003e fix: respect NO_COLOR and TERM=dumb environment variables\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/781b2d045bfecc61880ac7dbc171b72cc92eebab\"\u003e\u003ccode\u003e781b2d0\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/34aee0740c59ad5ba5688328aec122b05b3c2dea\"\u003e\u003ccode\u003e34aee07\u003c/code\u003e\u003c/a\u003e Introduce unicode-width feature\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/51d284f25dc6fa2b4d5b25b6d13201f683119c9a\"\u003e\u003ccode\u003e51d284f\u003c/code\u003e\u003c/a\u003e Introduce wasmbind feature\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/ee057e542d0c587c57871aa1487b3f828dd99bbf\"\u003e\u003ccode\u003eee057e5\u003c/code\u003e\u003c/a\u003e Bump tokio from 1.48.0 to 1.49.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/31bcea3a68acc00363c5be5d69d5f7c8b3a27ed5\"\u003e\u003ccode\u003e31bcea3\u003c/code\u003e\u003c/a\u003e Bump portable-atomic from 1.11.1 to 1.12.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/dbd26eb18157e5fad18c79e1933ad5f249165d6c\"\u003e\u003ccode\u003edbd26eb\u003c/code\u003e\u003c/a\u003e Bump console from 0.16.1 to 0.16.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/7ac4a0d1b8bb698619f9880105dc9d27799a3d55\"\u003e\u003ccode\u003e7ac4a0d\u003c/code\u003e\u003c/a\u003e Expose the current tab width\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/95088ffd980a6f0cdd6571418fd9c6d6fd1603d1\"\u003e\u003ccode\u003e95088ff\u003c/code\u003e\u003c/a\u003e iter: clean up variable names, casting\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/console-rs/indicatif/compare/0.18.3...0.18.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `log` from 0.4.29 to 0.4.30\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/log/releases\"\u003elog's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.30\u003c/h2\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport capturing of \u003ccode\u003estd::net\u003c/code\u003e types by \u003ca href=\"https://github.com/KodrAus\"\u003e\u003ccode\u003e@​KodrAus\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-lang/log/pull/724\"\u003erust-lang/log#724\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eNew Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/V0ldek\"\u003e\u003ccode\u003e@​V0ldek\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rust-lang/log/pull/720\"\u003erust-lang/log#720\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/woodruffw\"\u003e\u003ccode\u003e@​woodruffw\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rust-lang/log/pull/723\"\u003erust-lang/log#723\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-lang/log/compare/0.4.29...0.4.30\"\u003ehttps://github.com/rust-lang/log/compare/0.4.29...0.4.30\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eNotable Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMSRV is bumped to 1.71.0 in \u003ca href=\"https://redirect.github.com/rust-lang/log/pull/723\"\u003erust-lang/log#723\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/log/blob/master/CHANGELOG.md\"\u003elog's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.4.30] - 2026-05-21\u003c/h2\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport capturing of \u003ccode\u003estd::net\u003c/code\u003e types by \u003ca href=\"https://github.com/KodrAus\"\u003e\u003ccode\u003e@​KodrAus\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-lang/log/pull/724\"\u003erust-lang/log#724\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eNew Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/V0ldek\"\u003e\u003ccode\u003e@​V0ldek\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rust-lang/log/pull/720\"\u003erust-lang/log#720\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/woodruffw\"\u003e\u003ccode\u003e@​woodruffw\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rust-lang/log/pull/723\"\u003erust-lang/log#723\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-lang/log/compare/0.4.29...0.4.30\"\u003ehttps://github.com/rust-lang/log/compare/0.4.29...0.4.30\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eNotable Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMSRV is bumped to 1.71.0 in \u003ca href=\"https://redirect.github.com/rust-lang/log/pull/723\"\u003erust-lang/log#723\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/log/commit/9c55760b499b18e81de7df5f3c13a67d5661131d\"\u003e\u003ccode\u003e9c55760\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-lang/log/issues/725\"\u003e#725\u003c/a\u003e from rust-lang/cargo/0.4.30\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/log/commit/d1acb0585c0f6af5dc466eb255187cd6d3b7359e\"\u003e\u003ccode\u003ed1acb05\u003c/code\u003e\u003c/a\u003e update docs on current MSRV and note latest bump in changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/log/commit/50682937b0d9ec9a18c4c9b0510d889762e20e34\"\u003e\u003ccode\u003e5068293\u003c/code\u003e\u003c/a\u003e prepare for 0.4.30 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/log/commit/7ccd873cb50de97690d46f69d8744a61f0b87c46\"\u003e\u003ccode\u003e7ccd873\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-lang/log/issues/724\"\u003e#724\u003c/a\u003e from rust-lang/feat/net-to-value\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/log/commit/923dfaaf00dca352efe45930ae009d9a22526597\"\u003e\u003ccode\u003e923dfaa\u003c/code\u003e\u003c/a\u003e fix up test cfgs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/log/commit/ecb7de8daf7feec9dcf0d31cecc8523b31a8d104\"\u003e\u003ccode\u003eecb7de8\u003c/code\u003e\u003c/a\u003e gate net value impls on std\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/log/commit/67bb4f6d2e377b0008b740631124f292e80d4e5d\"\u003e\u003ccode\u003e67bb4f6\u003c/code\u003e\u003c/a\u003e run fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/log/commit/25f49fe3d31e7a0797652ad4bacaff633f7237cd\"\u003e\u003ccode\u003e25f49fe\u003c/code\u003e\u003c/a\u003e rework net type capturing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/log/commit/7087dcb95cb925364b4ba1da0d7c0eead9356dfc\"\u003e\u003ccode\u003e7087dcb\u003c/code\u003e\u003c/a\u003e feat: impl ToValue for core::net types\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/log/commit/67bc7e32c68a4a8908d1016693418f12b43bab90\"\u003e\u003ccode\u003e67bc7e3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-lang/log/issues/723\"\u003e#723\u003c/a\u003e from woodruffw-forks/ww/ci\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-lang/log/compare/0.4.29...0.4.30\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `once_cell` from 1.21.3 to 1.21.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/matklad/once_cell/blob/master/CHANGELOG.md\"\u003eonce_cell's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.21.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix unsoundness in \u003ccode\u003eOnceCell::wait\u003c/code\u003e under \u003ccode\u003e--features=parking_lot\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/matklad/once_cell/pull/295\"\u003e#295\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eIf thread A calls \u003ccode\u003ewait\u003c/code\u003e, while thread B calls \u003ccode\u003eget_or_try_init(f)\u003c/code\u003e, and, furthermore, \u003ccode\u003ef\u003c/code\u003e panics,\nthe \u003ccode\u003ewait\u003c/code\u003e incorrectly returns and thread A observes uninitialized memory.\u003c/p\u003e\n\u003cp\u003eKudos to \u003ca href=\"https://github.com/meng-xu-cs\"\u003e\u003ccode\u003e@​meng-xu-cs\u003c/code\u003e\u003c/a\u003e for a nice find!\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/80fe900b21f6d76c1a2ed74d3343e8a3a88c46d0\"\u003e\u003ccode\u003e80fe900\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/matklad/once_cell/issues/296\"\u003e#296\u003c/a\u003e from matklad/matklad/plfix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/a5e09c971c23afb1a3be8ae32794e2dca940ccd4\"\u003e\u003ccode\u003ea5e09c9\u003c/code\u003e\u003c/a\u003e release 1.21.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/2426d45d85841879e71a880af543fd3d2be78db1\"\u003e\u003ccode\u003e2426d45\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/matklad/once_cell/issues/295\"\u003e#295\u003c/a\u003e from matklad/matklad/plfix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/a1441215db85adb6a47b0aa1062d1eea7c5fba65\"\u003e\u003ccode\u003ea144121\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/matklad/once_cell/issues/290\"\u003e#290\u003c/a\u003e from alexanderkjall/run-tests-with-no-default-features\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/232a1a49b55154c0b6f12d662619000efd3aecd8\"\u003e\u003ccode\u003e232a1a4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/matklad/once_cell/issues/292\"\u003e#292\u003c/a\u003e from phil-opp/doc-fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/d31767bbcd33b03ee3360a9112eba41d1b278d3a\"\u003e\u003ccode\u003ed31767b\u003c/code\u003e\u003c/a\u003e fix OnceCell::wait with features=parking_lot\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/28d29ae1c1eb082617efb4eddb6dae3d0c607fdd\"\u003e\u003ccode\u003e28d29ae\u003c/code\u003e\u003c/a\u003e Fix: \u003ccode\u003esync::OnceCell::try_insert\u003c/code\u003e docs should import \u003ccode\u003esync\u003c/code\u003e variant\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/0f78fb0d6d6a634fd76548f33fa38b250390e982\"\u003e\u003ccode\u003e0f78fb0\u003c/code\u003e\u003c/a\u003e make the command 'cargo test --no-default-features' work\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/fda60a6c70eb2e25a0c73bf515ec4779df3d2e6c\"\u003e\u003ccode\u003efda60a6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/matklad/once_cell/issues/287\"\u003e#287\u003c/a\u003e from AbeZbm/add-tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/b5b98c09eb9c95376e150eb6bda8c7637bba5aa4\"\u003e\u003ccode\u003eb5b98c0\u003c/code\u003e\u003c/a\u003e Add tests for OnceRef\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/matklad/once_cell/compare/v1.21.3...v1.21.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openssl` from 0.10.75 to 0.10.80\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-openssl/rust-openssl/releases\"\u003eopenssl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eopenssl-v0.10.80\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrefer Homebrew openssl@4 and stop looking for openssl@1.1 by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2633\"\u003erust-openssl/rust-openssl#2633\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix output buffer overflow in cipher_update_inplace for AES key-wrap-with-padding by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2638\"\u003erust-openssl/rust-openssl#2638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl 0.10.80 and openssl-sys 0.9.116 by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2639\"\u003erust-openssl/rust-openssl#2639\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.79...openssl-v0.10.80\"\u003ehttps://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.79...openssl-v0.10.80\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eopenssl-v0.10.79\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/cache from 5.0.4 to 5.0.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2610\"\u003erust-openssl/rust-openssl#2610\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTry to fix OpenSSL 1.1.0l download by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2614\"\u003erust-openssl/rust-openssl#2614\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRequire \u0026amp;mut BigNumContextRef for EcPointRef mul/invert by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2615\"\u003erust-openssl/rust-openssl#2615\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix UB in EcGroupRef::generator on groups without a generator by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2617\"\u003erust-openssl/rust-openssl#2617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace \u003ccode\u003euse libc::*;\u003c/code\u003e with targeted imports in openssl-sys by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2618\"\u003erust-openssl/rust-openssl#2618\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKeyRef::is_a and KeyType for name-based key identification by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2619\"\u003erust-openssl/rust-openssl#2619\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKey::{public,private}_key_from_raw_bytes_ex by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2620\"\u003erust-openssl/rust-openssl#2620\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump MSRV to 1.80 by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2622\"\u003erust-openssl/rust-openssl#2622\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop once_cell in favor of std::sync::{LazyLock, OnceLock} by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2623\"\u003erust-openssl/rust-openssl#2623\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKey::private_key_from_seed for ML-DSA/ML-KEM key import by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2621\"\u003erust-openssl/rust-openssl#2621\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eparallelize more builds in CI for cold caches by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2625\"\u003erust-openssl/rust-openssl#2625\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2626\"\u003erust-openssl/rust-openssl#2626\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix process abort when verify/PSK callbacks fire after SSL_CTX swap by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2624\"\u003erust-openssl/rust-openssl#2624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBind OSSL_PARAM_modified and use it for seed_into by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2628\"\u003erust-openssl/rust-openssl#2628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PkeyCtxRef::set_context_string for ML-DSA by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2629\"\u003erust-openssl/rust-openssl#2629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2631\"\u003erust-openssl/rust-openssl#2631\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix output buffer overflow for AES key-wrap-with-padding ciphers by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2630\"\u003erust-openssl/rust-openssl#2630\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl 0.10.79 and openssl-sys 0.9.115 by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2632\"\u003erust-openssl/rust-openssl#2632\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.78...openssl-v0.10.79\"\u003ehttps://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.78...openssl-v0.10.79\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eopenssl-v0.10.78\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix Suite B flag assignments in verify.rs by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2592\"\u003erust-openssl/rust-openssl#2592\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse cvt_p for OPENSSL_malloc error handling by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2593\"\u003erust-openssl/rust-openssl#2593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMark BIO_get_mem_data on AWS-LC to be unsafe by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2594\"\u003erust-openssl/rust-openssl#2594\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSet timeout for package installation step by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2595\"\u003erust-openssl/rust-openssl#2595\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePanic in Crypter::new when IV is required but not provided by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2596\"\u003erust-openssl/rust-openssl#2596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eopenssl 4 support by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2591\"\u003erust-openssl/rust-openssl#2591\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid panic for overlong OIDs by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2598\"\u003erust-openssl/rust-openssl#2598\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix dangling stack pointer in custom extension add callback by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2599\"\u003erust-openssl/rust-openssl#2599\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for LibreSSL 4.3.x by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2603\"\u003erust-openssl/rust-openssl#2603\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix inverted bounds assertion in AES key unwrap by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2604\"\u003erust-openssl/rust-openssl#2604\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject oversized length returns from password callback trampoline by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2605\"\u003erust-openssl/rust-openssl#2605\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eValidate callback-returned lengths in PSK and cookie trampolines by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2607\"\u003erust-openssl/rust-openssl#2607\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eError for short out in MdCtxRef::digest_final() by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2608\"\u003erust-openssl/rust-openssl#2608\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck derive output buffer length on OpenSSL 1.1.x by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2606\"\u003erust-openssl/rust-openssl#2606\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl v0.10.78 and openssl-sys v0.9.114 by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2609\"\u003erust-openssl/rust-openssl#2609\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/35be7ae43b207fc0448a648a21e9156bc360c9af\"\u003e\u003ccode\u003e35be7ae\u003c/code\u003e\u003c/a\u003e Release openssl 0.10.80 and openssl-sys 0.9.116 (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2639\"\u003e#2639\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/19eceb26f2404aae187e5444e65c404ebc1348a7\"\u003e\u003ccode\u003e19eceb2\u003c/code\u003e\u003c/a\u003e Fix output buffer overflow in cipher_update_inplace for AES key-wrap-with-pad...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/b460eb378c335610df5395a251408ad70bb60d42\"\u003e\u003ccode\u003eb460eb3\u003c/code\u003e\u003c/a\u003e Prefer Homebrew openssl@4 and stop looking for openssl@1.1 (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2633\"\u003e#2633\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/649f2d9e37f3aa701e20bd8ab5cd7eb5afa0a90f\"\u003e\u003ccode\u003e649f2d9\u003c/code\u003e\u003c/a\u003e Release openssl 0.10.79 and openssl-sys 0.9.115 (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2632\"\u003e#2632\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/257f9b20c001b888986f93579f118fa2a57d4f45\"\u003e\u003ccode\u003e257f9b2\u003c/code\u003e\u003c/a\u003e Fix output buffer overflow for AES key-wrap-with-padding ciphers (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2630\"\u003e#2630\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/d43e9179b1885fc66269a42361cc7a80f631ac8f\"\u003e\u003ccode\u003ed43e917\u003c/code\u003e\u003c/a\u003e Reject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2631\"\u003e#2631\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/f46519c8694a3e121091dafe38aab77c2f756546\"\u003e\u003ccode\u003ef46519c\u003c/code\u003e\u003c/a\u003e Add PkeyCtxRef::set_context_string for ML-DSA (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2629\"\u003e#2629\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/ad9ae312771f898749a9471549519d45eba6a033\"\u003e\u003ccode\u003ead9ae31\u003c/code\u003e\u003c/a\u003e Bind OSSL_PARAM_modified and use it for seed_into (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2628\"\u003e#2628\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/4e25c9be20dae1e78f1a3815950cd0973addae82\"\u003e\u003ccode\u003e4e25c9b\u003c/code\u003e\u003c/a\u003e Fix process abort when verify/PSK callbacks fire after SSL_CTX swap (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2624\"\u003e#2624\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/3dd8f425ef34a069b5bec46f3971b67db1c295c7\"\u003e\u003ccode\u003e3dd8f42\u003c/code\u003e\u003c/a\u003e Add PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2626\"\u003e#2626\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.75...openssl-v0.10.80\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.9.2 to 0.10.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/master/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.10.1] — 2026-02-11\u003c/h2\u003e\n\u003cp\u003eThis release includes a fix for a soundness bug; see \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDocument panic behavior of \u003ccode\u003emake_rng\u003c/code\u003e and add \u003ccode\u003e#[track_caller]\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1761\"\u003e#1761\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1761\"\u003e#1761\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1761\"\u003erust-random/rand#1761\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e[0.10.0] - 2026-02-08\u003c/h2\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe dependency on \u003ccode\u003erand_chacha\u003c/code\u003e has been replaced with a dependency on \u003ccode\u003echacha20\u003c/code\u003e. This changes the implementation behind \u003ccode\u003eStdRng\u003c/code\u003e, but the output remains the same. There may be some API breakage when using the ChaCha-types directly as these are now the ones in \u003ccode\u003echacha20\u003c/code\u003e instead of \u003ccode\u003erand_chacha\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1642\"\u003e#1642\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eRename fns \u003ccode\u003eIndexedRandom::choose_multiple\u003c/code\u003e -\u0026gt; \u003ccode\u003esample\u003c/code\u003e, \u003ccode\u003echoose_multiple_array\u003c/code\u003e -\u0026gt; \u003ccode\u003esample_array\u003c/code\u003e, \u003ccode\u003echoose_multiple_weighted\u003c/code\u003e -\u0026gt; \u003ccode\u003esample_weighted\u003c/code\u003e, struct \u003ccode\u003eSliceChooseIter\u003c/code\u003e -\u0026gt; \u003ccode\u003eIndexedSamples\u003c/code\u003e and fns \u003ccode\u003eIteratorRandom::choose_multiple\u003c/code\u003e -\u0026gt; \u003ccode\u003esample\u003c/code\u003e, \u003ccode\u003echoose_multiple_fill\u003c/code\u003e -\u0026gt; \u003ccode\u003esample_fill\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1632\"\u003e#1632\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse Edition 2024 and MSRV 1.85 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1653\"\u003e#1653\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLet \u003ccode\u003eFill\u003c/code\u003e be implemented for element types, not sliceable types (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1652\"\u003e#1652\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eOsError::raw_os_error\u003c/code\u003e on UEFI targets by returning \u003ccode\u003eOption\u0026lt;usize\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1665\"\u003e#1665\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReplace fn \u003ccode\u003eTryRngCore::read_adapter(..) -\u0026gt; RngReadAdapter\u003c/code\u003e with simpler struct \u003ccode\u003eRngReader\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1669\"\u003e#1669\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove fns \u003ccode\u003eSeedableRng::from_os_rng\u003c/code\u003e, \u003ccode\u003etry_from_os_rng\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1674\"\u003e#1674\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove \u003ccode\u003eClone\u003c/code\u003e support for \u003ccode\u003eStdRng\u003c/code\u003e, \u003ccode\u003eReseedingRng\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1677\"\u003e#1677\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003epostcard\u003c/code\u003e instead of \u003ccode\u003ebincode\u003c/code\u003e to test the serde feature (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1693\"\u003e#1693\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAvoid excessive allocation in \u003ccode\u003eIteratorRandom::sample\u003c/code\u003e when \u003ccode\u003eamount\u003c/code\u003e is much larger than iterator size (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1695\"\u003e#1695\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eos_rng\u003c/code\u003e -\u0026gt; \u003ccode\u003esys_rng\u003c/code\u003e, \u003ccode\u003eOsRng\u003c/code\u003e -\u0026gt; \u003ccode\u003eSysRng\u003c/code\u003e, \u003ccode\u003eOsError\u003c/code\u003e -\u0026gt; \u003ccode\u003eSysError\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eRng\u003c/code\u003e -\u0026gt; \u003ccode\u003eRngExt\u003c/code\u003e as upstream \u003ccode\u003erand_core\u003c/code\u003e has renamed \u003ccode\u003eRngCore\u003c/code\u003e -\u0026gt; \u003ccode\u003eRng\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1717\"\u003e#1717\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdditions\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd fns \u003ccode\u003eIndexedRandom::choose_iter\u003c/code\u003e, \u003ccode\u003echoose_weighted_iter\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1632\"\u003e#1632\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePub export \u003ccode\u003eXoshiro128PlusPlus\u003c/code\u003e, \u003ccode\u003eXoshiro256PlusPlus\u003c/code\u003e prngs (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1649\"\u003e#1649\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePub export \u003ccode\u003eChaCha8Rng\u003c/code\u003e, \u003ccode\u003eChaCha12Rng\u003c/code\u003e, \u003ccode\u003eChaCha20Rng\u003c/code\u003e behind \u003ccode\u003echacha\u003c/code\u003e feature (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1659\"\u003e#1659\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFn \u003ccode\u003erand::make_rng() -\u0026gt; R where R: SeedableRng\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1734\"\u003e#1734\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRemovals\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemoved \u003ccode\u003eReseedingRng\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1722\"\u003e#1722\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemoved unused feature \u0026quot;nightly\u0026quot; (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1732\"\u003e#1732\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemoved feature \u003ccode\u003esmall_rng\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1732\"\u003e#1732\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1632\"\u003e#1632\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1632\"\u003erust-random/rand#1632\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1642\"\u003e#1642\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1642\"\u003erust-random/rand#1642\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1649\"\u003e#1649\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1649\"\u003erust-random/rand#1649\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1652\"\u003e#1652\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1652\"\u003erust-random/rand#1652\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1653\"\u003e#1653\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1653\"\u003erust-random/rand#1653\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1659\"\u003e#1659\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1659\"\u003erust-random/rand#1659\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1665\"\u003e#1665\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1665\"\u003erust-random/rand#1665\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1669\"\u003e#1669\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1669\"\u003erust-random/rand#1669\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1674\"\u003e#1674\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1674\"\u003erust-random/rand#1674\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1677\"\u003e#1677\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1677\"\u003erust-random/rand#1677\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1693\"\u003e#1693\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1693\"\u003erust-random/rand#1693\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1695\"\u003e#1695\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1695\"\u003erust-random/rand#1695\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1697\"\u003e#1697\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1697\"\u003erust-random/rand#1697\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/27ff4cb7ced3122a1f677fc248c1a07e59ddc8cd\"\u003e\u003ccode\u003e27ff4cb\u003c/code\u003e\u003c/a\u003e Prepare v0.10.1: deprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/98d06386dc4e1d1c89a91f4e483d571921c29ecf\"\u003e\u003ccode\u003e98d0638\u003c/code\u003e\u003c/a\u003e make_rng: document panic and add #[track_caller] (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1761\"\u003e#1761\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/54e5eaaa7ac11af3aa60b5ccc486182189e6f9ef\"\u003e\u003ccode\u003e54e5eaa\u003c/code\u003e\u003c/a\u003e Fix doc error (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1758\"\u003e#1758\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1ce4c080186730595a8d464591d17aac22a42252\"\u003e\u003ccode\u003e1ce4c08\u003c/code\u003e\u003c/a\u003e Bump itoa from 1.0.17 to 1.0.18 in the all-deps group (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1756\"\u003e#1756\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/ccb734b9c22891a19f11be125c2f09a43809b08e\"\u003e\u003ccode\u003eccb734b\u003c/code\u003e\u003c/a\u003e docs: fix typo in doc comment (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1754\"\u003e#1754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/357eb7de9c9c80184449e8b515c821e48cf4df74\"\u003e\u003ccode\u003e357eb7d\u003c/code\u003e\u003c/a\u003e Bump libc from 0.2.182 to 0.2.183 in the all-deps group (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1753\"\u003e#1753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e77fe5d61b886988cae67b6d8fb09e405845c63\"\u003e\u003ccode\u003e5e77fe5\u003c/code\u003e\u003c/a\u003e Fix trait references in documentation (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1752\"\u003e#1752\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/da891850ab2b38f4322ec140ae29d305dfb162c3\"\u003e\u003ccode\u003eda89185\u003c/code\u003e\u003c/a\u003e Bump the all-deps group with 3 updates (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1751\"\u003e#1751\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/50516ff45c3675d9c2d247e70bc8db691ed8366d\"\u003e\u003ccode\u003e50516ff\u003c/code\u003e\u003c/a\u003e Bump the all-deps group with 2 updates (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1749\"\u003e#1749\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/fd71de97fdc7050b9a2d8384f5f8afce7d991ca3\"\u003e\u003ccode\u003efd71de9\u003c/code\u003e\u003c/a\u003e Bump the all-deps group with 2 updates (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1747\"\u003e#1747\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/rand_core-0.9.2...0.10.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand_regex` from 0.18.1 to 0.19.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kennytm/rand_regex/releases\"\u003erand_regex's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.19.0\u003c/h2\u003e\n\u003cp\u003eUpdated \u003ccode\u003erand\u003c/code\u003e dependency.\u003c/p\u003e\n\u003cp\u003eDepends on \u003ccode\u003erand 0.10\u003c/code\u003e and \u003ccode\u003eregex-syntax 0.8\u003c/code\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e...\n\n_Description has been truncated_","html_url":"https://github.com/yamashita-spce/WuppieFuzz/pull/14","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/yamashita-spce%2FWuppieFuzz/issues/14","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/14/packages"},{"uuid":"4551801584","node_id":"PR_kwDORApVfc7g0L1t","number":25,"state":"open","title":"Bump the cargo group across 1 directory with 2 updates","user":"dependabot[bot]","labels":["dependencies","rust"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-29T21:42:14.000Z","updated_at":"2026-05-29T21:43:56.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"cargo","update_count":2,"packages":[{"name":"bytes","old_version":"1.4.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"tar","old_version":"0.4.38","new_version":"0.4.46","repository_url":"https://github.com/composefs/tar-rs"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 2 updates in the /packages/compositor directory: [bytes](https://github.com/tokio-rs/bytes) and [tar](https://github.com/composefs/tar-rs).\n\nUpdates `bytes` from 1.4.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.10.1\u003c/h2\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/bytes/pull/773\"\u003etokio-rs/bytes#773\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eBytes v1.10.0\u003c/h2\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.9.0 (November 27, 2024)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eBytes::from_owner\u003c/code\u003e to enable externally-allocated memory (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/742\"\u003e#742\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumented\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.4.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 0.4.38 to 0.4.46\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/composefs/tar-rs/releases\"\u003etar's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.46\u003c/h2\u003e\n\u003ch2\u003eSecurity\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003earchive: Fix another PAX header desync (GHSA-3cv2-h65g-fgmm) by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/454\"\u003ecomposefs/tar-rs#454\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee also \u003ca href=\"https://github.com/astral-sh/tokio-tar/security/advisories/GHSA-3cv2-h65g-fgmm\"\u003ehttps://github.com/astral-sh/tokio-tar/security/advisories/GHSA-3cv2-h65g-fgmm\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eOther changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eci: Fix and re-enable reverse dependency testing by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/444\"\u003ecomposefs/tar-rs#444\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate astral-tokio-tar requirement from 0.5 to 0.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/446\"\u003ecomposefs/tar-rs#446\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate some links by \u003ca href=\"https://github.com/atouchet\"\u003e\u003ccode\u003e@​atouchet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/445\"\u003ecomposefs/tar-rs#445\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support of absolute paths by \u003ca href=\"https://github.com/zxvfc\"\u003e\u003ccode\u003e@​zxvfc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/426\"\u003ecomposefs/tar-rs#426\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Expand notes on concurrent mutations and following symlinks by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/453\"\u003ecomposefs/tar-rs#453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate repo links by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/451\"\u003ecomposefs/tar-rs#451\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Add crates.io trusted publishing workflow by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/456\"\u003ecomposefs/tar-rs#456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease 0.4.46 by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/455\"\u003ecomposefs/tar-rs#455\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/446\"\u003ecomposefs/tar-rs#446\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/atouchet\"\u003e\u003ccode\u003e@​atouchet\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/445\"\u003ecomposefs/tar-rs#445\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zxvfc\"\u003e\u003ccode\u003e@​zxvfc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/426\"\u003ecomposefs/tar-rs#426\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/composefs/tar-rs/compare/0.4.45...0.4.46\"\u003ehttps://github.com/composefs/tar-rs/compare/0.4.45...0.4.46\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/fc459c149f83bf4daceaa52e17d351989002e1a9\"\u003e\u003ccode\u003efc459c1\u003c/code\u003e\u003c/a\u003e Release 0.4.46\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/43e05a85e053d5e64eeda0b04e279be8686419b6\"\u003e\u003ccode\u003e43e05a8\u003c/code\u003e\u003c/a\u003e ci: Add crates.io trusted publishing workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/bba5666997d95dcd89a9d38235709a1d5e44565b\"\u003e\u003ccode\u003ebba5666\u003c/code\u003e\u003c/a\u003e Update repo links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/cd94c46e0d74fbcc50eea3f30665a1b1159254cc\"\u003e\u003ccode\u003ecd94c46\u003c/code\u003e\u003c/a\u003e docs: Document TOCTOU / concurrent-mutation threat model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/1b4997cf5ef115f8d82680016c28490b5645b9c7\"\u003e\u003ccode\u003e1b4997c\u003c/code\u003e\u003c/a\u003e builder: Expand docs for follow_symlinks and append_dir_all\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/bab14dd84b411ac16ecb56d4f2d2f7bfb88a9838\"\u003e\u003ccode\u003ebab14dd\u003c/code\u003e\u003c/a\u003e archive: Fix another PAX header desync (GHSA-3cv2-h65g-fgmm)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/2349b494827807791473f3c6ca9b2fc5ef274cdb\"\u003e\u003ccode\u003e2349b49\u003c/code\u003e\u003c/a\u003e Add support of absolute paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/39d031184127427bd9a740b7e20afd31deead928\"\u003e\u003ccode\u003e39d0311\u003c/code\u003e\u003c/a\u003e Update some links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/59d803e2f1ed39272c4c1d1cdb04d799280b3335\"\u003e\u003ccode\u003e59d803e\u003c/code\u003e\u003c/a\u003e Update astral-tokio-tar requirement from 0.5 to 0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/8296b9a88cfcdbdd1e3b59cd820899b35e6151e1\"\u003e\u003ccode\u003e8296b9a\u003c/code\u003e\u003c/a\u003e ci: Fix and re-enable reverse dependency testing (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/444\"\u003e#444\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/composefs/tar-rs/compare/0.4.38...0.4.46\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/ahump20/remotion/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/ahump20/remotion/pull/25","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ahump20%2Fremotion/issues/25","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/25/packages"},{"uuid":"4551762377","node_id":"PR_kwDOQKReU87g0DlB","number":10,"state":"open","title":"chore(deps): bump the cargo group across 1 directory with 5 updates","user":"dependabot[bot]","labels":["dependencies","needs:compliance","needs:issue","rust"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-29T21:35:00.000Z","updated_at":"2026-05-29T21:35:11.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"cargo","update_count":5,"packages":[{"name":"bytes","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"quinn-proto","old_version":"0.11.13","new_version":"0.11.14","repository_url":"https://github.com/quinn-rs/quinn"},{"name":"rustls-webpki","old_version":"0.103.8","new_version":"0.103.13","repository_url":"https://github.com/rustls/webpki"},{"name":"tar","old_version":"0.4.44","new_version":"0.4.46","repository_url":"https://github.com/composefs/tar-rs"},{"name":"time","old_version":"0.3.44","new_version":"0.3.47","repository_url":"https://github.com/time-rs/time"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 5 updates in the /packages/desktop/src-tauri directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.11.0` | `1.11.1` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.13` | `0.11.14` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.103.8` | `0.103.13` |\n| [tar](https://github.com/composefs/tar-rs) | `0.4.44` | `0.4.46` |\n| [time](https://github.com/time-rs/time) | `0.3.44` | `0.3.47` |\n\n\nUpdates `bytes` from 1.11.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.11.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `quinn-proto` from 0.11.13 to 0.11.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quinn-rs/quinn/releases\"\u003equinn-proto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003equinn-proto 0.11.14\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jxs\"\u003e\u003ccode\u003e@​jxs\u003c/code\u003e\u003c/a\u003e reported a denial of service issue in quinn-proto 5 days ago:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\"\u003ehttps://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eWe coordinated with them to release this version to patch the issue. Unfortunately the maintainers missed these issues during code review and we did not have enough fuzzing coverage -- we regret the oversight and have added an additional fuzzing target.\u003c/p\u003e\n\u003cp\u003eOrganizations that want to participate in coordinated disclosure can contact us privately to discuss terms.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix over-permissive proto dependency edge by \u003ca href=\"https://github.com/Ralith\"\u003e\u003ccode\u003e@​Ralith\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2385\"\u003equinn-rs/quinn#2385\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e0.11.x: avoid unwrapping VarInt decoding during parameter parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2559\"\u003equinn-rs/quinn#2559\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/2c315aa7f9c2a6c1db87f8f51f40623a427c78fd\"\u003e\u003ccode\u003e2c315aa\u003c/code\u003e\u003c/a\u003e proto: bump version to 0.11.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8ad47f431e7deb82c08b09c2e33ef85aa88fd212\"\u003e\u003ccode\u003e8ad47f4\u003c/code\u003e\u003c/a\u003e Use newer rustls-pki-types PEM parser API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c81c0289abe30d8437ccbf9b6304e2bc9c707cea\"\u003e\u003ccode\u003ec81c028\u003c/code\u003e\u003c/a\u003e ci: fix workflow syntax\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/0050172969f7e69e136c433181330da7790d8d73\"\u003e\u003ccode\u003e0050172\u003c/code\u003e\u003c/a\u003e ci: pin wasm-bindgen-cli version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8a6f82c58d1c565eab78f986e614223e6ed76a85\"\u003e\u003ccode\u003e8a6f82c\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/e52db4ad8df0f9720e7b0e32ecc0e48c9a93de0f\"\u003e\u003ccode\u003ee52db4a\u003c/code\u003e\u003c/a\u003e Apply suggestions from clippy 1.91\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/6df7275c582ca9b7225e0ccf9f9871a55eb73155\"\u003e\u003ccode\u003e6df7275\u003c/code\u003e\u003c/a\u003e chore: Fix \u003ccode\u003eunnecessary_unwrap\u003c/code\u003e clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c8eefa07e087b06d8f2b78ff262ce8ac952994f1\"\u003e\u003ccode\u003ec8eefa0\u003c/code\u003e\u003c/a\u003e proto: avoid unwrapping varint decoding during parameters parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/9723a977754c8662001b0fef97aab8f3ddf1df92\"\u003e\u003ccode\u003e9723a97\u003c/code\u003e\u003c/a\u003e fuzz: add fuzzing target for parsing transport parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/eaf0ef30252cef4acec21f150427e604cd4271c9\"\u003e\u003ccode\u003eeaf0ef3\u003c/code\u003e\u003c/a\u003e Fix over-permissive proto dependency edge (\u003ca href=\"https://redirect.github.com/quinn-rs/quinn/issues/2385\"\u003e#2385\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quinn-rs/quinn/compare/quinn-proto-0.11.13...quinn-proto-0.11.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls-webpki` from 0.103.8 to 0.103.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rustls/webpki/releases\"\u003erustls-webpki's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.103.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix reachable panic in parsing a CRL\u003c/strong\u003e. This was reported to us as \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-82j2-j2ch-gfr8\"\u003eGHSA-82j2-j2ch-gfr8\u003c/a\u003e. Users who don't use CRLs are not affected.\u003c/li\u003e\n\u003cli\u003eFor name constraints on URI names, we incorrectly processed excluded subtrees in a way which inverted the desired meaning. See \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/471\"\u003erustls/webpki#471\u003c/a\u003e. This was a case missing in the fix for \u003ca href=\"https://github.com/advisories/GHSA-965h-392x-2mh5\"\u003ehttps://github.com/advisories/GHSA-965h-392x-2mh5\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eActually fail closed for URI matching against excluded subtrees by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/473\"\u003erustls/webpki#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.13 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/474\"\u003erustls/webpki#474\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.12\u003c/h2\u003e\n\u003cp\u003eThis release fixes two bugs in name constraint enforcement:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-965h-392x-2mh5\u003c/strong\u003e: name constraints for URI names were ignored and therefore accepted. URI name constraints are now rejected unconditionally. Note this library does not provide an API for asserting URI names, and URI name constraints are otherwise not implemented.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-xgp8-3hg3-c2mh\u003c/strong\u003e: permitted subtree name constraints for DNS names were accepted for certificates asserting a wildcard name. This was incorrect because, given a name constraint of \u003ccode\u003eaccept.example.com\u003c/code\u003e, \u003ccode\u003e*.example.com\u003c/code\u003e could feasibly allow a name of \u003ccode\u003ereject.example.com\u003c/code\u003e which is outside the constraint. This is very similar to \u003ca href=\"https://go.dev/issue/76442\"\u003eCVE-2025-61727\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSince name constraints are restrictions on otherwise properly-issued certificates, these bugs are reachable only after signature verification and require misissuance to exploit.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrepare 0.103.12 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/470\"\u003erustls/webpki#470\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.11\u003c/h2\u003e\n\u003cp\u003eIn response to \u003ca href=\"https://redirect.github.com/rustls/webpki/issues/464\"\u003e#464\u003c/a\u003e, we've slightly relaxed requirements for \u003ccode\u003eanchor_from_trust_cert()\u003c/code\u003e to ignore unknown extensions even if they're marked as critical. This only affects parsing a \u003ccode\u003eTrustAnchor\u003c/code\u003e from DER, for which most extensions are ignored anyway.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport parsing trust anchors with unknown critical extensions to 0.103 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/466\"\u003erustls/webpki#466\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.103.10\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eCorrect selection of candidate CRLs by Distribution Point and Issuing Distribution Point\u003c/strong\u003e. If a certificate had more than one \u003ccode\u003edistributionPoint\u003c/code\u003e, then only the first \u003ccode\u003edistributionPoint\u003c/code\u003e would be considered against each CRL's \u003ccode\u003eIssuingDistributionPoint\u003c/code\u003e \u003ccode\u003edistributionPoint\u003c/code\u003e, and then the certificate's subsequent \u003ccode\u003edistributionPoint\u003c/code\u003es would be ignored.\u003c/p\u003e\n\u003cp\u003eThe impact was that correctly provided CRLs would not be consulted to check revocation. With \u003ccode\u003eUnknownStatusPolicy::Deny\u003c/code\u003e (the default) this would lead to incorrect but safe \u003ccode\u003eError::UnknownRevocationStatus\u003c/code\u003e. With \u003ccode\u003eUnknownStatusPolicy::Allow\u003c/code\u003e this would lead to inappropriate acceptance of revoked certificates.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is thought to be of limited impact. This is because both the certificate and CRL are signed -- an attacker would need to compromise a trusted issuing authority to trigger this bug.  An attacker with such capabilities could likely bypass revocation checking through other more impactful means (such as publishing a valid, empty CRL.)\u003c/p\u003e\n\u003cp\u003eMore likely, this bug would be latent in normal use, and an attacker could leverage faulty revocation checking to continue using a revoked credential.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is identified by \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-pwjx-qhcg-rvj4\"\u003eGHSA-pwjx-qhcg-rvj4\u003c/a\u003e. Thank you to \u003ca href=\"https://github.com/1seal\"\u003e\u003ccode\u003e@​1seal\u003c/code\u003e\u003c/a\u003e for the report.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFreshen up rel-0.103 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/455\"\u003erustls/webpki#455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.10 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/458\"\u003erustls/webpki#458\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2879b2ce7a476181ac3050f73fe0835f04728e86\"\u003e\u003ccode\u003e2879b2c\u003c/code\u003e\u003c/a\u003e Prepare 0.103.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2c49773d823f48c87db30db7a66c25993c847007\"\u003e\u003ccode\u003e2c49773\u003c/code\u003e\u003c/a\u003e Improve tests for padding of \u003ccode\u003eBitStringFlags\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/4e3c0b393a7bfb9cbe6dcdc8309cbadf8ee00c51\"\u003e\u003ccode\u003e4e3c0b3\u003c/code\u003e\u003c/a\u003e Correct validation of BIT STRING constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/39c91d2525a542a7f651a1a62c3462e8115cc39e\"\u003e\u003ccode\u003e39c91d2\u003c/code\u003e\u003c/a\u003e Actually fail closed for URI matching against excluded subtrees\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/27131d476e2b68a537e629d6d012bef8dad6efd3\"\u003e\u003ccode\u003e27131d4\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/6ecb8769cde2246e761e058709421c14a7dee6b1\"\u003e\u003ccode\u003e6ecb876\u003c/code\u003e\u003c/a\u003e Clean up stuttery enum variant names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/318b3e6e03ca2bc21600ca6bb0d0c6439b9e6aeb\"\u003e\u003ccode\u003e318b3e6\u003c/code\u003e\u003c/a\u003e Ignore wildcard labels when matching name constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/12196229a327d3d670798688254bd3ea24aba24b\"\u003e\u003ccode\u003e1219622\u003c/code\u003e\u003c/a\u003e Rewrite constraint matching to avoid permissive catch-all branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/57bc62ce538c2d0d31d44b3eb8c58e6a0a764b47\"\u003e\u003ccode\u003e57bc62c\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/d0fa01ee0a76b7585c13ec43de5854955146ffef\"\u003e\u003ccode\u003ed0fa01e\u003c/code\u003e\u003c/a\u003e Allow parsing trust anchors with unknown criticial extensions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.8...v/0.103.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 0.4.44 to 0.4.46\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/composefs/tar-rs/releases\"\u003etar's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.46\u003c/h2\u003e\n\u003ch2\u003eSecurity\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003earchive: Fix another PAX header desync (GHSA-3cv2-h65g-fgmm) by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/454\"\u003ecomposefs/tar-rs#454\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee also \u003ca href=\"https://github.com/astral-sh/tokio-tar/security/advisories/GHSA-3cv2-h65g-fgmm\"\u003ehttps://github.com/astral-sh/tokio-tar/security/advisories/GHSA-3cv2-h65g-fgmm\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eOther changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eci: Fix and re-enable reverse dependency testing by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/444\"\u003ecomposefs/tar-rs#444\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate astral-tokio-tar requirement from 0.5 to 0.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/446\"\u003ecomposefs/tar-rs#446\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate some links by \u003ca href=\"https://github.com/atouchet\"\u003e\u003ccode\u003e@​atouchet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/445\"\u003ecomposefs/tar-rs#445\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support of absolute paths by \u003ca href=\"https://github.com/zxvfc\"\u003e\u003ccode\u003e@​zxvfc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/426\"\u003ecomposefs/tar-rs#426\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Expand notes on concurrent mutations and following symlinks by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/453\"\u003ecomposefs/tar-rs#453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate repo links by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/451\"\u003ecomposefs/tar-rs#451\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Add crates.io trusted publishing workflow by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/456\"\u003ecomposefs/tar-rs#456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease 0.4.46 by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/455\"\u003ecomposefs/tar-rs#455\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/446\"\u003ecomposefs/tar-rs#446\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/atouchet\"\u003e\u003ccode\u003e@​atouchet\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/445\"\u003ecomposefs/tar-rs#445\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zxvfc\"\u003e\u003ccode\u003e@​zxvfc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/426\"\u003ecomposefs/tar-rs#426\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/composefs/tar-rs/compare/0.4.45...0.4.46\"\u003ehttps://github.com/composefs/tar-rs/compare/0.4.45...0.4.46\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/fc459c149f83bf4daceaa52e17d351989002e1a9\"\u003e\u003ccode\u003efc459c1\u003c/code\u003e\u003c/a\u003e Release 0.4.46\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/43e05a85e053d5e64eeda0b04e279be8686419b6\"\u003e\u003ccode\u003e43e05a8\u003c/code\u003e\u003c/a\u003e ci: Add crates.io trusted publishing workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/bba5666997d95dcd89a9d38235709a1d5e44565b\"\u003e\u003ccode\u003ebba5666\u003c/code\u003e\u003c/a\u003e Update repo links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/cd94c46e0d74fbcc50eea3f30665a1b1159254cc\"\u003e\u003ccode\u003ecd94c46\u003c/code\u003e\u003c/a\u003e docs: Document TOCTOU / concurrent-mutation threat model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/1b4997cf5ef115f8d82680016c28490b5645b9c7\"\u003e\u003ccode\u003e1b4997c\u003c/code\u003e\u003c/a\u003e builder: Expand docs for follow_symlinks and append_dir_all\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/bab14dd84b411ac16ecb56d4f2d2f7bfb88a9838\"\u003e\u003ccode\u003ebab14dd\u003c/code\u003e\u003c/a\u003e archive: Fix another PAX header desync (GHSA-3cv2-h65g-fgmm)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/2349b494827807791473f3c6ca9b2fc5ef274cdb\"\u003e\u003ccode\u003e2349b49\u003c/code\u003e\u003c/a\u003e Add support of absolute paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/39d031184127427bd9a740b7e20afd31deead928\"\u003e\u003ccode\u003e39d0311\u003c/code\u003e\u003c/a\u003e Update some links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/59d803e2f1ed39272c4c1d1cdb04d799280b3335\"\u003e\u003ccode\u003e59d803e\u003c/code\u003e\u003c/a\u003e Update astral-tokio-tar requirement from 0.5 to 0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/8296b9a88cfcdbdd1e3b59cd820899b35e6151e1\"\u003e\u003ccode\u003e8296b9a\u003c/code\u003e\u003c/a\u003e ci: Fix and re-enable reverse dependency testing (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/444\"\u003e#444\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/composefs/tar-rs/compare/0.4.44...0.4.46\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.44 to 0.3.47\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.47\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.46\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.45\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003etime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.47 [2026-02-05]\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eThe possibility of a stack exhaustion denial of service attack when parsing RFC 2822 has been\neliminated. Previously, it was possible to craft input that would cause unbounded recursion. Now,\nthe depth of the recursion is tracked, causing an error to be returned if it exceeds a reasonable\nlimit.\u003c/p\u003e\n\u003cp\u003eThis attack vector requires parsing user-provided input, with any type, using the RFC 2822 format.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCompatibility\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAttempting to format a value with a well-known format (i.e. RFC 3339, RFC 2822, or ISO 8601) will\nerror at compile time if the type being formatted does not provide sufficient information. This\nwould previously fail at runtime. Similarly, attempting to format a value with ISO 8601 that is\nonly configured for parsing (i.e. \u003ccode\u003eIso8601::PARSING\u003c/code\u003e) will error at compile time.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBuilder methods for format description modifiers, eliminating the need for verbose initialization\nwhen done manually.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edate!(2026-W01-2)\u003c/code\u003e is now supported. Previously, a space was required between \u003ccode\u003eW\u003c/code\u003e and \u003ccode\u003e01\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[end]\u003c/code\u003e now has a \u003ccode\u003etrailing_input\u003c/code\u003e modifier which can either be \u003ccode\u003eprohibit\u003c/code\u003e (the default) or\n\u003ccode\u003ediscard\u003c/code\u003e. When it is \u003ccode\u003ediscard\u003c/code\u003e, all remaining input is ignored. Note that if there are components\nafter \u003ccode\u003e[end]\u003c/code\u003e, they will still attempt to be parsed, likely resulting in an error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMore performance gains when parsing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIf manually formatting a value, the number of bytes written was one short for some components.\nThis has been fixed such that the number of bytes written is always correct.\u003c/li\u003e\n\u003cli\u003eThe possibility of integer overflow when parsing an owned format description has been effectively\neliminated. This would previously wrap when overflow checks were disabled. Instead of storing the\ndepth as \u003ccode\u003eu8\u003c/code\u003e, it is stored as \u003ccode\u003eu32\u003c/code\u003e. This would require multiple gigabytes of nested input to\noverflow, at which point we've got other problems and trivial mitigations are available by\ndownstream users.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.46 [2026-01-23]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAll possible panics are now documented for the relevant methods.\u003c/li\u003e\n\u003cli\u003eThe need to use \u003ccode\u003e#[serde(default)]\u003c/code\u003e when using custom \u003ccode\u003eserde\u003c/code\u003e formats is documented. This applies\nonly when deserializing an \u003ccode\u003eOption\u0026lt;T\u0026gt;\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDuration::nanoseconds_i128\u003c/code\u003e has been made public, mirroring\n\u003ccode\u003estd::time::Duration::from_nanos_u128\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/d5144cd2874862d46466c900910cd8577d066019\"\u003e\u003ccode\u003ed5144cd\u003c/code\u003e\u003c/a\u003e v0.3.47 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/f6206b050fd54817d8872834b4d61f605570e89b\"\u003e\u003ccode\u003ef6206b0\u003c/code\u003e\u003c/a\u003e Guard against integer overflow in release mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/1c63dc7985b8fa26bd8c689423cc56b7a03841ee\"\u003e\u003ccode\u003e1c63dc7\u003c/code\u003e\u003c/a\u003e Avoid denial of service when parsing Rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/5940df6e72efb63d246ca1ca59a0f836ad32ad8a\"\u003e\u003ccode\u003e5940df6\u003c/code\u003e\u003c/a\u003e Add builder methods to avoid verbose construction\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/00881a4da1bc5a6cb6313052e5017dbd7daa40f0\"\u003e\u003ccode\u003e00881a4\u003c/code\u003e\u003c/a\u003e Manually format macros everywhere\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/bb723b6d826e46c174d75cd08987061984b0ceb7\"\u003e\u003ccode\u003ebb723b6\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003etrailing_input\u003c/code\u003e modifier to \u003ccode\u003eend\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/31c4f8e0b56e6ae24fe0d6ef0e492b6741dda783\"\u003e\u003ccode\u003e31c4f8e\u003c/code\u003e\u003c/a\u003e Permit \u003ccode\u003eW12\u003c/code\u003e in \u003ccode\u003edate!\u003c/code\u003e macro\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/490a17bf306576850f33a86d3ca95d96db7b1dcd\"\u003e\u003ccode\u003e490a17b\u003c/code\u003e\u003c/a\u003e Mark error paths in well-known formats as cold\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6cb1896a600be1538ecfab8f233fe9cfe9fa8951\"\u003e\u003ccode\u003e6cb1896\u003c/code\u003e\u003c/a\u003e Optimize \u003ccode\u003eRfc2822\u003c/code\u003e parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6d264d59c25e3da0453c3defebf4640b0086a006\"\u003e\u003ccode\u003e6d264d5\u003c/code\u003e\u003c/a\u003e Remove erroneous \u003ccode\u003e#[inline(never)]\u003c/code\u003e attributes\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/time-rs/time/compare/v0.3.44...v0.3.47\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/iansherr/opencode/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/iansherr/opencode/pull/10","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/iansherr%2Fopencode/issues/10","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/10/packages"},{"uuid":"4551749764","node_id":"PR_kwDOP4vDYM7g0A5z","number":13,"state":"closed","title":"chore(deps): bump the cargo group across 1 directory with 5 updates","user":"dependabot[bot]","labels":["dependencies","needs:issue","rust"],"assignees":[],"locked":false,"comments_count":4,"pull_request":true,"closed_at":"2026-05-30T00:13:47.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-29T21:32:43.000Z","updated_at":"2026-05-30T00:13:56.000Z","time_to_close":9664,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"cargo","update_count":5,"packages":[{"name":"bytes","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"quinn-proto","old_version":"0.11.13","new_version":"0.11.14","repository_url":"https://github.com/quinn-rs/quinn"},{"name":"rustls-webpki","old_version":"0.103.8","new_version":"0.103.13","repository_url":"https://github.com/rustls/webpki"},{"name":"tar","old_version":"0.4.44","new_version":"0.4.46","repository_url":"https://github.com/composefs/tar-rs"},{"name":"time","old_version":"0.3.44","new_version":"0.3.47","repository_url":"https://github.com/time-rs/time"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 5 updates in the /packages/desktop/src-tauri directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.11.0` | `1.11.1` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.13` | `0.11.14` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.103.8` | `0.103.13` |\n| [tar](https://github.com/composefs/tar-rs) | `0.4.44` | `0.4.46` |\n| [time](https://github.com/time-rs/time) | `0.3.44` | `0.3.47` |\n\n\nUpdates `bytes` from 1.11.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.11.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `quinn-proto` from 0.11.13 to 0.11.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quinn-rs/quinn/releases\"\u003equinn-proto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003equinn-proto 0.11.14\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jxs\"\u003e\u003ccode\u003e@​jxs\u003c/code\u003e\u003c/a\u003e reported a denial of service issue in quinn-proto 5 days ago:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\"\u003ehttps://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eWe coordinated with them to release this version to patch the issue. Unfortunately the maintainers missed these issues during code review and we did not have enough fuzzing coverage -- we regret the oversight and have added an additional fuzzing target.\u003c/p\u003e\n\u003cp\u003eOrganizations that want to participate in coordinated disclosure can contact us privately to discuss terms.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix over-permissive proto dependency edge by \u003ca href=\"https://github.com/Ralith\"\u003e\u003ccode\u003e@​Ralith\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2385\"\u003equinn-rs/quinn#2385\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e0.11.x: avoid unwrapping VarInt decoding during parameter parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2559\"\u003equinn-rs/quinn#2559\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/2c315aa7f9c2a6c1db87f8f51f40623a427c78fd\"\u003e\u003ccode\u003e2c315aa\u003c/code\u003e\u003c/a\u003e proto: bump version to 0.11.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8ad47f431e7deb82c08b09c2e33ef85aa88fd212\"\u003e\u003ccode\u003e8ad47f4\u003c/code\u003e\u003c/a\u003e Use newer rustls-pki-types PEM parser API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c81c0289abe30d8437ccbf9b6304e2bc9c707cea\"\u003e\u003ccode\u003ec81c028\u003c/code\u003e\u003c/a\u003e ci: fix workflow syntax\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/0050172969f7e69e136c433181330da7790d8d73\"\u003e\u003ccode\u003e0050172\u003c/code\u003e\u003c/a\u003e ci: pin wasm-bindgen-cli version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8a6f82c58d1c565eab78f986e614223e6ed76a85\"\u003e\u003ccode\u003e8a6f82c\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/e52db4ad8df0f9720e7b0e32ecc0e48c9a93de0f\"\u003e\u003ccode\u003ee52db4a\u003c/code\u003e\u003c/a\u003e Apply suggestions from clippy 1.91\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/6df7275c582ca9b7225e0ccf9f9871a55eb73155\"\u003e\u003ccode\u003e6df7275\u003c/code\u003e\u003c/a\u003e chore: Fix \u003ccode\u003eunnecessary_unwrap\u003c/code\u003e clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c8eefa07e087b06d8f2b78ff262ce8ac952994f1\"\u003e\u003ccode\u003ec8eefa0\u003c/code\u003e\u003c/a\u003e proto: avoid unwrapping varint decoding during parameters parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/9723a977754c8662001b0fef97aab8f3ddf1df92\"\u003e\u003ccode\u003e9723a97\u003c/code\u003e\u003c/a\u003e fuzz: add fuzzing target for parsing transport parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/eaf0ef30252cef4acec21f150427e604cd4271c9\"\u003e\u003ccode\u003eeaf0ef3\u003c/code\u003e\u003c/a\u003e Fix over-permissive proto dependency edge (\u003ca href=\"https://redirect.github.com/quinn-rs/quinn/issues/2385\"\u003e#2385\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quinn-rs/quinn/compare/quinn-proto-0.11.13...quinn-proto-0.11.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls-webpki` from 0.103.8 to 0.103.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rustls/webpki/releases\"\u003erustls-webpki's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.103.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix reachable panic in parsing a CRL\u003c/strong\u003e. This was reported to us as \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-82j2-j2ch-gfr8\"\u003eGHSA-82j2-j2ch-gfr8\u003c/a\u003e. Users who don't use CRLs are not affected.\u003c/li\u003e\n\u003cli\u003eFor name constraints on URI names, we incorrectly processed excluded subtrees in a way which inverted the desired meaning. See \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/471\"\u003erustls/webpki#471\u003c/a\u003e. This was a case missing in the fix for \u003ca href=\"https://github.com/advisories/GHSA-965h-392x-2mh5\"\u003ehttps://github.com/advisories/GHSA-965h-392x-2mh5\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eActually fail closed for URI matching against excluded subtrees by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/473\"\u003erustls/webpki#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.13 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/474\"\u003erustls/webpki#474\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.12\u003c/h2\u003e\n\u003cp\u003eThis release fixes two bugs in name constraint enforcement:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-965h-392x-2mh5\u003c/strong\u003e: name constraints for URI names were ignored and therefore accepted. URI name constraints are now rejected unconditionally. Note this library does not provide an API for asserting URI names, and URI name constraints are otherwise not implemented.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-xgp8-3hg3-c2mh\u003c/strong\u003e: permitted subtree name constraints for DNS names were accepted for certificates asserting a wildcard name. This was incorrect because, given a name constraint of \u003ccode\u003eaccept.example.com\u003c/code\u003e, \u003ccode\u003e*.example.com\u003c/code\u003e could feasibly allow a name of \u003ccode\u003ereject.example.com\u003c/code\u003e which is outside the constraint. This is very similar to \u003ca href=\"https://go.dev/issue/76442\"\u003eCVE-2025-61727\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSince name constraints are restrictions on otherwise properly-issued certificates, these bugs are reachable only after signature verification and require misissuance to exploit.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrepare 0.103.12 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/470\"\u003erustls/webpki#470\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.11\u003c/h2\u003e\n\u003cp\u003eIn response to \u003ca href=\"https://redirect.github.com/rustls/webpki/issues/464\"\u003e#464\u003c/a\u003e, we've slightly relaxed requirements for \u003ccode\u003eanchor_from_trust_cert()\u003c/code\u003e to ignore unknown extensions even if they're marked as critical. This only affects parsing a \u003ccode\u003eTrustAnchor\u003c/code\u003e from DER, for which most extensions are ignored anyway.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport parsing trust anchors with unknown critical extensions to 0.103 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/466\"\u003erustls/webpki#466\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.103.10\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eCorrect selection of candidate CRLs by Distribution Point and Issuing Distribution Point\u003c/strong\u003e. If a certificate had more than one \u003ccode\u003edistributionPoint\u003c/code\u003e, then only the first \u003ccode\u003edistributionPoint\u003c/code\u003e would be considered against each CRL's \u003ccode\u003eIssuingDistributionPoint\u003c/code\u003e \u003ccode\u003edistributionPoint\u003c/code\u003e, and then the certificate's subsequent \u003ccode\u003edistributionPoint\u003c/code\u003es would be ignored.\u003c/p\u003e\n\u003cp\u003eThe impact was that correctly provided CRLs would not be consulted to check revocation. With \u003ccode\u003eUnknownStatusPolicy::Deny\u003c/code\u003e (the default) this would lead to incorrect but safe \u003ccode\u003eError::UnknownRevocationStatus\u003c/code\u003e. With \u003ccode\u003eUnknownStatusPolicy::Allow\u003c/code\u003e this would lead to inappropriate acceptance of revoked certificates.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is thought to be of limited impact. This is because both the certificate and CRL are signed -- an attacker would need to compromise a trusted issuing authority to trigger this bug.  An attacker with such capabilities could likely bypass revocation checking through other more impactful means (such as publishing a valid, empty CRL.)\u003c/p\u003e\n\u003cp\u003eMore likely, this bug would be latent in normal use, and an attacker could leverage faulty revocation checking to continue using a revoked credential.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is identified by \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-pwjx-qhcg-rvj4\"\u003eGHSA-pwjx-qhcg-rvj4\u003c/a\u003e. Thank you to \u003ca href=\"https://github.com/1seal\"\u003e\u003ccode\u003e@​1seal\u003c/code\u003e\u003c/a\u003e for the report.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFreshen up rel-0.103 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/455\"\u003erustls/webpki#455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.10 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/458\"\u003erustls/webpki#458\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2879b2ce7a476181ac3050f73fe0835f04728e86\"\u003e\u003ccode\u003e2879b2c\u003c/code\u003e\u003c/a\u003e Prepare 0.103.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2c49773d823f48c87db30db7a66c25993c847007\"\u003e\u003ccode\u003e2c49773\u003c/code\u003e\u003c/a\u003e Improve tests for padding of \u003ccode\u003eBitStringFlags\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/4e3c0b393a7bfb9cbe6dcdc8309cbadf8ee00c51\"\u003e\u003ccode\u003e4e3c0b3\u003c/code\u003e\u003c/a\u003e Correct validation of BIT STRING constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/39c91d2525a542a7f651a1a62c3462e8115cc39e\"\u003e\u003ccode\u003e39c91d2\u003c/code\u003e\u003c/a\u003e Actually fail closed for URI matching against excluded subtrees\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/27131d476e2b68a537e629d6d012bef8dad6efd3\"\u003e\u003ccode\u003e27131d4\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/6ecb8769cde2246e761e058709421c14a7dee6b1\"\u003e\u003ccode\u003e6ecb876\u003c/code\u003e\u003c/a\u003e Clean up stuttery enum variant names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/318b3e6e03ca2bc21600ca6bb0d0c6439b9e6aeb\"\u003e\u003ccode\u003e318b3e6\u003c/code\u003e\u003c/a\u003e Ignore wildcard labels when matching name constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/12196229a327d3d670798688254bd3ea24aba24b\"\u003e\u003ccode\u003e1219622\u003c/code\u003e\u003c/a\u003e Rewrite constraint matching to avoid permissive catch-all branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/57bc62ce538c2d0d31d44b3eb8c58e6a0a764b47\"\u003e\u003ccode\u003e57bc62c\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/d0fa01ee0a76b7585c13ec43de5854955146ffef\"\u003e\u003ccode\u003ed0fa01e\u003c/code\u003e\u003c/a\u003e Allow parsing trust anchors with unknown criticial extensions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.8...v/0.103.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 0.4.44 to 0.4.46\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/composefs/tar-rs/releases\"\u003etar's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.46\u003c/h2\u003e\n\u003ch2\u003eSecurity\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003earchive: Fix another PAX header desync (GHSA-3cv2-h65g-fgmm) by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/454\"\u003ecomposefs/tar-rs#454\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee also \u003ca href=\"https://github.com/astral-sh/tokio-tar/security/advisories/GHSA-3cv2-h65g-fgmm\"\u003ehttps://github.com/astral-sh/tokio-tar/security/advisories/GHSA-3cv2-h65g-fgmm\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eOther changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eci: Fix and re-enable reverse dependency testing by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/444\"\u003ecomposefs/tar-rs#444\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate astral-tokio-tar requirement from 0.5 to 0.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/446\"\u003ecomposefs/tar-rs#446\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate some links by \u003ca href=\"https://github.com/atouchet\"\u003e\u003ccode\u003e@​atouchet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/445\"\u003ecomposefs/tar-rs#445\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support of absolute paths by \u003ca href=\"https://github.com/zxvfc\"\u003e\u003ccode\u003e@​zxvfc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/426\"\u003ecomposefs/tar-rs#426\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Expand notes on concurrent mutations and following symlinks by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/453\"\u003ecomposefs/tar-rs#453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate repo links by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/451\"\u003ecomposefs/tar-rs#451\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Add crates.io trusted publishing workflow by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/456\"\u003ecomposefs/tar-rs#456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease 0.4.46 by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/455\"\u003ecomposefs/tar-rs#455\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/446\"\u003ecomposefs/tar-rs#446\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/atouchet\"\u003e\u003ccode\u003e@​atouchet\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/445\"\u003ecomposefs/tar-rs#445\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zxvfc\"\u003e\u003ccode\u003e@​zxvfc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/426\"\u003ecomposefs/tar-rs#426\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/composefs/tar-rs/compare/0.4.45...0.4.46\"\u003ehttps://github.com/composefs/tar-rs/compare/0.4.45...0.4.46\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/fc459c149f83bf4daceaa52e17d351989002e1a9\"\u003e\u003ccode\u003efc459c1\u003c/code\u003e\u003c/a\u003e Release 0.4.46\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/43e05a85e053d5e64eeda0b04e279be8686419b6\"\u003e\u003ccode\u003e43e05a8\u003c/code\u003e\u003c/a\u003e ci: Add crates.io trusted publishing workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/bba5666997d95dcd89a9d38235709a1d5e44565b\"\u003e\u003ccode\u003ebba5666\u003c/code\u003e\u003c/a\u003e Update repo links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/cd94c46e0d74fbcc50eea3f30665a1b1159254cc\"\u003e\u003ccode\u003ecd94c46\u003c/code\u003e\u003c/a\u003e docs: Document TOCTOU / concurrent-mutation threat model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/1b4997cf5ef115f8d82680016c28490b5645b9c7\"\u003e\u003ccode\u003e1b4997c\u003c/code\u003e\u003c/a\u003e builder: Expand docs for follow_symlinks and append_dir_all\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/bab14dd84b411ac16ecb56d4f2d2f7bfb88a9838\"\u003e\u003ccode\u003ebab14dd\u003c/code\u003e\u003c/a\u003e archive: Fix another PAX header desync (GHSA-3cv2-h65g-fgmm)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/2349b494827807791473f3c6ca9b2fc5ef274cdb\"\u003e\u003ccode\u003e2349b49\u003c/code\u003e\u003c/a\u003e Add support of absolute paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/39d031184127427bd9a740b7e20afd31deead928\"\u003e\u003ccode\u003e39d0311\u003c/code\u003e\u003c/a\u003e Update some links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/59d803e2f1ed39272c4c1d1cdb04d799280b3335\"\u003e\u003ccode\u003e59d803e\u003c/code\u003e\u003c/a\u003e Update astral-tokio-tar requirement from 0.5 to 0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/8296b9a88cfcdbdd1e3b59cd820899b35e6151e1\"\u003e\u003ccode\u003e8296b9a\u003c/code\u003e\u003c/a\u003e ci: Fix and re-enable reverse dependency testing (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/444\"\u003e#444\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/composefs/tar-rs/compare/0.4.44...0.4.46\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.44 to 0.3.47\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.47\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.46\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.45\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003etime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.47 [2026-02-05]\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eThe possibility of a stack exhaustion denial of service attack when parsing RFC 2822 has been\neliminated. Previously, it was possible to craft input that would cause unbounded recursion. Now,\nthe depth of the recursion is tracked, causing an error to be returned if it exceeds a reasonable\nlimit.\u003c/p\u003e\n\u003cp\u003eThis attack vector requires parsing user-provided input, with any type, using the RFC 2822 format.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCompatibility\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAttempting to format a value with a well-known format (i.e. RFC 3339, RFC 2822, or ISO 8601) will\nerror at compile time if the type being formatted does not provide sufficient information. This\nwould previously fail at runtime. Similarly, attempting to format a value with ISO 8601 that is\nonly configured for parsing (i.e. \u003ccode\u003eIso8601::PARSING\u003c/code\u003e) will error at compile time.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBuilder methods for format description modifiers, eliminating the need for verbose initialization\nwhen done manually.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edate!(2026-W01-2)\u003c/code\u003e is now supported. Previously, a space was required between \u003ccode\u003eW\u003c/code\u003e and \u003ccode\u003e01\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[end]\u003c/code\u003e now has a \u003ccode\u003etrailing_input\u003c/code\u003e modifier which can either be \u003ccode\u003eprohibit\u003c/code\u003e (the default) or\n\u003ccode\u003ediscard\u003c/code\u003e. When it is \u003ccode\u003ediscard\u003c/code\u003e, all remaining input is ignored. Note that if there are components\nafter \u003ccode\u003e[end]\u003c/code\u003e, they will still attempt to be parsed, likely resulting in an error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMore performance gains when parsing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIf manually formatting a value, the number of bytes written was one short for some components.\nThis has been fixed such that the number of bytes written is always correct.\u003c/li\u003e\n\u003cli\u003eThe possibility of integer overflow when parsing an owned format description has been effectively\neliminated. This would previously wrap when overflow checks were disabled. Instead of storing the\ndepth as \u003ccode\u003eu8\u003c/code\u003e, it is stored as \u003ccode\u003eu32\u003c/code\u003e. This would require multiple gigabytes of nested input to\noverflow, at which point we've got other problems and trivial mitigations are available by\ndownstream users.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.46 [2026-01-23]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAll possible panics are now documented for the relevant methods.\u003c/li\u003e\n\u003cli\u003eThe need to use \u003ccode\u003e#[serde(default)]\u003c/code\u003e when using custom \u003ccode\u003eserde\u003c/code\u003e formats is documented. This applies\nonly when deserializing an \u003ccode\u003eOption\u0026lt;T\u0026gt;\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDuration::nanoseconds_i128\u003c/code\u003e has been made public, mirroring\n\u003ccode\u003estd::time::Duration::from_nanos_u128\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/d5144cd2874862d46466c900910cd8577d066019\"\u003e\u003ccode\u003ed5144cd\u003c/code\u003e\u003c/a\u003e v0.3.47 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/f6206b050fd54817d8872834b4d61f605570e89b\"\u003e\u003ccode\u003ef6206b0\u003c/code\u003e\u003c/a\u003e Guard against integer overflow in release mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/1c63dc7985b8fa26bd8c689423cc56b7a03841ee\"\u003e\u003ccode\u003e1c63dc7\u003c/code\u003e\u003c/a\u003e Avoid denial of service when parsing Rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/5940df6e72efb63d246ca1ca59a0f836ad32ad8a\"\u003e\u003ccode\u003e5940df6\u003c/code\u003e\u003c/a\u003e Add builder methods to avoid verbose construction\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/00881a4da1bc5a6cb6313052e5017dbd7daa40f0\"\u003e\u003ccode\u003e00881a4\u003c/code\u003e\u003c/a\u003e Manually format macros everywhere\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/bb723b6d826e46c174d75cd08987061984b0ceb7\"\u003e\u003ccode\u003ebb723b6\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003etrailing_input\u003c/code\u003e modifier to \u003ccode\u003eend\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/31c4f8e0b56e6ae24fe0d6ef0e492b6741dda783\"\u003e\u003ccode\u003e31c4f8e\u003c/code\u003e\u003c/a\u003e Permit \u003ccode\u003eW12\u003c/code\u003e in \u003ccode\u003edate!\u003c/code\u003e macro\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/490a17bf306576850f33a86d3ca95d96db7b1dcd\"\u003e\u003ccode\u003e490a17b\u003c/code\u003e\u003c/a\u003e Mark error paths in well-known formats as cold\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6cb1896a600be1538ecfab8f233fe9cfe9fa8951\"\u003e\u003ccode\u003e6cb1896\u003c/code\u003e\u003c/a\u003e Optimize \u003ccode\u003eRfc2822\u003c/code\u003e parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6d264d59c25e3da0453c3defebf4640b0086a006\"\u003e\u003ccode\u003e6d264d5\u003c/code\u003e\u003c/a\u003e Remove erroneous \u003ccode\u003e#[inline(never)]\u003c/code\u003e attributes\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/time-rs/time/compare/v0.3.44...v0.3.47\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kooymansfinds/opencode/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/kooymansfinds/opencode/pull/13","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/kooymansfinds%2Fopencode/issues/13","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/13/packages"},{"uuid":"4542433697","node_id":"PR_kwDORg-oWs7gVcgU","number":9,"state":"closed","title":"build(deps): bump the cargo group across 2 directories with 14 updates","user":"dependabot[bot]","labels":["dependencies","rust"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-29T21:40:48.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-28T17:28:21.000Z","updated_at":"2026-05-29T21:40:50.000Z","time_to_close":101547,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"cargo","update_count":14,"packages":[{"name":"borsh","old_version":"0.10.3","new_version":"1.2.1","repository_url":"https://github.com/near/borsh-rs"},{"name":"bytes","old_version":"1.5.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"crossbeam-channel","old_version":"0.5.12","new_version":"0.5.15","repository_url":"https://github.com/crossbeam-rs/crossbeam"},{"name":"ed25519-dalek","old_version":"1.0.1","new_version":"2.0.0","repository_url":"https://github.com/dalek-cryptography/curve25519-dalek"},{"name":"openssl","old_version":"0.10.64","new_version":"0.10.80","repository_url":"https://github.com/rust-openssl/rust-openssl"},{"name":"rand","old_version":"0.7.3","new_version":"0.8.5","repository_url":"https://github.com/rust-random/rand"},{"name":"rpassword","old_version":"7.3.1","new_version":"7.5.0","repository_url":"https://github.com/conradkleinespel/rpassword"},{"name":"rustls","old_version":"0.21.10","new_version":"0.21.11","repository_url":"https://github.com/rustls/rustls"},{"name":"tar","old_version":"0.4.40","new_version":"0.4.45","repository_url":"https://github.com/composefs/tar-rs"},{"name":"h2","old_version":"0.3.24","new_version":"0.3.27","repository_url":"https://github.com/hyperium/h2"},{"name":"keccak","old_version":"0.1.5","new_version":"0.1.6","repository_url":"https://github.com/RustCrypto/sponges"},{"name":"time","old_version":"0.3.9","new_version":"0.3.44","repository_url":"https://github.com/time-rs/time"},{"name":"tracing-subscriber","old_version":"0.3.7","new_version":"0.3.19","repository_url":"https://github.com/tokio-rs/tracing"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 13 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [borsh](https://github.com/near/borsh-rs) | `0.10.3` | `1.2.1` |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.5.0` | `1.11.1` |\n| [crossbeam-channel](https://github.com/crossbeam-rs/crossbeam) | `0.5.12` | `0.5.15` |\n| [ed25519-dalek](https://github.com/dalek-cryptography/curve25519-dalek) | `1.0.1` | `2.0.0` |\n| [openssl](https://github.com/rust-openssl/rust-openssl) | `0.10.64` | `0.10.80` |\n| [rand](https://github.com/rust-random/rand) | `0.7.3` | `0.8.5` |\n| [rpassword](https://github.com/conradkleinespel/rpassword) | `7.3.1` | `7.5.0` |\n| [rustls](https://github.com/rustls/rustls) | `0.21.10` | `0.21.11` |\n| [tar](https://github.com/composefs/tar-rs) | `0.4.40` | `0.4.45` |\n| [h2](https://github.com/hyperium/h2) | `0.3.24` | `0.3.27` |\n| [keccak](https://github.com/RustCrypto/sponges) | `0.1.5` | `0.1.6` |\n| [time](https://github.com/time-rs/time) | `0.3.9` | `0.3.44` |\n| [tracing-subscriber](https://github.com/tokio-rs/tracing) | `0.3.7` | `0.3.19` |\n\nBumps the cargo group with 12 updates in the /programs/sbf directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.5.0` | `1.11.1` |\n| [crossbeam-channel](https://github.com/crossbeam-rs/crossbeam) | `0.5.12` | `0.5.15` |\n| [openssl](https://github.com/rust-openssl/rust-openssl) | `0.10.64` | `0.10.80` |\n| [rand](https://github.com/rust-random/rand) | `0.8.5` | `0.8.6` |\n| [rpassword](https://github.com/conradkleinespel/rpassword) | `7.3.1` | `7.5.0` |\n| [rustls](https://github.com/rustls/rustls) | `0.21.10` | `0.21.11` |\n| [tar](https://github.com/composefs/tar-rs) | `0.4.40` | `0.4.45` |\n| [h2](https://github.com/hyperium/h2) | `0.3.24` | `0.3.27` |\n| [keccak](https://github.com/RustCrypto/sponges) | `0.1.5` | `0.1.6` |\n| [time](https://github.com/time-rs/time) | `0.3.9` | `0.3.47` |\n| [tracing-subscriber](https://github.com/tokio-rs/tracing) | `0.3.11` | `0.3.19` |\n| [curve25519-dalek](https://github.com/dalek-cryptography/curve25519-dalek) | `3.2.1` | `4.1.3` |\n\n\nUpdates `borsh` from 0.10.3 to 1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/near/borsh-rs/releases\"\u003eborsh's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eborsh-derive-v1.2.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.2.1\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eoptimize \u003ccode\u003eBorshSerialize\u003c/code\u003e derive for enums with unit variants (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/262\"\u003e#262\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix \u003ccode\u003erelease-plz\u003c/code\u003e error; exclude \u003ccode\u003e*.snap\u003c/code\u003e from \u003ccode\u003eborsh-derive\u003c/code\u003e publish (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/263\"\u003e#263\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.2.0\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.2.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd support for types from \u003ccode\u003eascii\u003c/code\u003e crate (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/255\"\u003e#255\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.1.2\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.1.2\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump \u003ccode\u003eproc-macro-crate\u003c/code\u003e to 2.0.0 in \u003ccode\u003eborsh-derive\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/256\"\u003e#256\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.1.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.1.1\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003etest_schema_conflicts\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eaddressed warnings in docs generation (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esimplify discriminants handling in schema derives (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/241\"\u003e#241\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.1.0\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.1.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelax \u003ccode\u003eschema_container_of\u003c/code\u003e target requirement with \u003ccode\u003e?Sized\u003c/code\u003e to allow slices (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/245\"\u003e#245\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efully qualify \u003ccode\u003e#cratename::BorshSchema\u003c/code\u003e in derive-generated code to void function name collisions leading to compilation errors (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/244\"\u003e#244\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.0.0\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.0.0\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003eThe year is 2653 and the best yet-to-be citizens of the Terran Federation are fighting\nand mostly just dying in a relentless interstellar war against the Arachnids.\nYet the structure of our society has changed through the course of this confrontation.\u003c/p\u003e\n\u003cp\u003eThe members of the Arachnid brain caste and queens have infiltrated the circles of our\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/near/borsh-rs/blob/master/CHANGELOG.md\"\u003eborsh's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.2.0...borsh-v1.2.1\"\u003e1.2.1\u003c/a\u003e - 2023-12-06\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eoptimize \u003ccode\u003eBorshSerialize\u003c/code\u003e derive for enums with unit variants (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/262\"\u003e#262\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix \u003ccode\u003erelease-plz\u003c/code\u003e error; exclude \u003ccode\u003e*.snap\u003c/code\u003e from \u003ccode\u003eborsh-derive\u003c/code\u003e publish (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/263\"\u003e#263\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.1.2...borsh-v1.2.0\"\u003e1.2.0\u003c/a\u003e - 2023-11-13\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd support for types from \u003ccode\u003eascii\u003c/code\u003e crate (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/255\"\u003e#255\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.1.1...borsh-v1.1.2\"\u003e1.1.2\u003c/a\u003e - 2023-11-08\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump \u003ccode\u003eproc-macro-crate\u003c/code\u003e to 2.0.0 in \u003ccode\u003eborsh-derive\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/256\"\u003e#256\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.1.0...borsh-v1.1.1\"\u003e1.1.1\u003c/a\u003e - 2023-10-25\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003etest_schema_conflicts\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eaddressed warnings in docs generation (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esimplify discriminants handling in schema derives (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/241\"\u003e#241\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.0.0...borsh-v1.1.0\"\u003e1.1.0\u003c/a\u003e - 2023-10-13\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelax \u003ccode\u003eschema_container_of\u003c/code\u003e target requirement with \u003ccode\u003e?Sized\u003c/code\u003e to allow slices (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/245\"\u003e#245\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efully qualify \u003ccode\u003e#cratename::BorshSchema\u003c/code\u003e in derive-generated code to void function name collisions leading to compilation errors (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/244\"\u003e#244\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v0.10.3...borsh-v1.0.0\"\u003e1.0.0\u003c/a\u003e - 2023-10-03\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003eThe year is 2653 and the best yet-to-be citizens of the Terran Federation are fighting\nand mostly just dying in a relentless interstellar war against the Arachnids.\nYet the structure of our society has changed through the course of this confrontation.\u003c/p\u003e\n\u003cp\u003eThe members of the Arachnid brain caste and queens have infiltrated the circles of our\nmost influential political and industrial leaders. Either directly, or via the Arachnid technology\ncalled \u0026quot;Brain Bugs\u0026quot;. This tech alone can accomplish what the Arachnid starship paratroopers\nwill not ever be capable to do.\u003c/p\u003e\n\u003cp\u003eSimple, straightforward and performant serialization libraries can set us in course to remedy this dangerous\nstalemate situation by cleaning the minds of its users from even the tiniest of Brain Bugs.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch2\u003eRobert A. Heinlein, 1959 (a newspaper ad)\u003c/h2\u003e\n\u003ch3\u003e[Thanks]\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/2b1f6c93f3087ab7c987b0654fae75a26bc67723\"\u003e\u003ccode\u003e2b1f6c9\u003c/code\u003e\u003c/a\u003e chore: release (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/b7b2f70a6bebcea6648907defc91e07066641420\"\u003e\u003ccode\u003eb7b2f70\u003c/code\u003e\u003c/a\u003e ci: fix \u003ccode\u003erelease-plz\u003c/code\u003e error; exclude \u003ccode\u003e*.snap\u003c/code\u003e from \u003ccode\u003eborsh-derive\u003c/code\u003e publish (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/263\"\u003e#263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/73db73ed0c5e1774f9f93d65d572ec9ec1d2e87f\"\u003e\u003ccode\u003e73db73e\u003c/code\u003e\u003c/a\u003e chore: optimize \u003ccode\u003eBorshSerialize\u003c/code\u003e derive for enums with unit variants (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/262\"\u003e#262\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/903601b26a1fc11ead79a62c45b77faeedf7e6a1\"\u003e\u003ccode\u003e903601b\u003c/code\u003e\u003c/a\u003e chore: release (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/258\"\u003e#258\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/2d4cf209518554a42884c905b873a0321b3a6df3\"\u003e\u003ccode\u003e2d4cf20\u003c/code\u003e\u003c/a\u003e feat: add support for types from \u003ccode\u003eascii\u003c/code\u003e crate (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/255\"\u003e#255\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/df8c3cf37d4fcf46a40874daf4be32a3d5cbfd0b\"\u003e\u003ccode\u003edf8c3cf\u003c/code\u003e\u003c/a\u003e chore: release (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/2209e994f1e692094885db0207974e94f2e5047a\"\u003e\u003ccode\u003e2209e99\u003c/code\u003e\u003c/a\u003e chore: bump \u003ccode\u003eproc-macro-crate\u003c/code\u003e to 2.0.0 in \u003ccode\u003eborsh-derive\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/256\"\u003e#256\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/73f7d7fee703a9db9ffd4f6e5a8761d13dc653e4\"\u003e\u003ccode\u003e73f7d7f\u003c/code\u003e\u003c/a\u003e chore: release (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/c8259faaadbe195d64d2ced6bca506f723f64efb\"\u003e\u003ccode\u003ec8259fa\u003c/code\u003e\u003c/a\u003e test: add \u003ccode\u003etest_schema_conflicts\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/71a9d4d02f99db360ba8df18ed92d014a7f7bc5c\"\u003e\u003ccode\u003e71a9d4d\u003c/code\u003e\u003c/a\u003e chore!: simplify discriminants handling in schema derives (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/241\"\u003e#241\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v0.10.3...borsh-v1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.5.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.10.1\u003c/h2\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/bytes/pull/773\"\u003etokio-rs/bytes#773\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eBytes v1.10.0\u003c/h2\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.9.0 (November 27, 2024)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eBytes::from_owner\u003c/code\u003e to enable externally-allocated memory (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/742\"\u003e#742\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumented\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.5.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `crossbeam-channel` from 0.5.12 to 0.5.15\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/crossbeam-rs/crossbeam/releases\"\u003ecrossbeam-channel's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ecrossbeam-channel 0.5.15\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix regression introduced in 0.5.12 that can lead to a double free when dropping unbounded channel. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1187\"\u003e#1187\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ecrossbeam-channel 0.5.14\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix stack overflow when sending large value to unbounded channel. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1146\"\u003e#1146\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1147\"\u003e#1147\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eSelect::new_biased\u003c/code\u003e function. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1150\"\u003e#1150\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove inefficient spinning. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1154\"\u003e#1154\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSuppress buggy \u003ccode\u003eclippy::zero_repeat_side_effects\u003c/code\u003e lint in macro generated code. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1123\"\u003e#1123\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ecrossbeam-channel 0.5.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eselect_biased!\u003c/code\u003e macro. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1040\"\u003e#1040\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/d35ffde18a76ae9667f602d8c0127ff89ac2e4d4\"\u003e\u003ccode\u003ed35ffde\u003c/code\u003e\u003c/a\u003e Prepare for the next release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/6ec74ecae896df5fc239518b45a1bfd258c9db68\"\u003e\u003ccode\u003e6ec74ec\u003c/code\u003e\u003c/a\u003e crossbeam-channel: prevent double free on Drop (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1187\"\u003e#1187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/ccd83ac4108a2a1b41e9c6e79c87267167d18dfa\"\u003e\u003ccode\u003eccd83ac\u003c/code\u003e\u003c/a\u003e Prepare for the next release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/54988eb2399c889fb82926c1508bb0ec31bedba2\"\u003e\u003ccode\u003e54988eb\u003c/code\u003e\u003c/a\u003e Calculate layout in const context\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/761d0b67e2849479f7b376b4c02a191f6ed796aa\"\u003e\u003ccode\u003e761d0b6\u003c/code\u003e\u003c/a\u003e Port \u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1146\"\u003e#1146\u003c/a\u003e \u0026amp; \u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1147\"\u003e#1147\u003c/a\u003e to deque::Injector and queue::SegQueue\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/8144fbb41e67046d341034843887b0dd5963cddb\"\u003e\u003ccode\u003e8144fbb\u003c/code\u003e\u003c/a\u003e Remove optimistic spinning from Context::wait_until\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/a92f6c4fbb5527ef4f86239fd18df426b4e1d84f\"\u003e\u003ccode\u003ea92f6c4\u003c/code\u003e\u003c/a\u003e Bump peter-evans/create-pull-request from 5 to 7 (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1153\"\u003e#1153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/66d41a904f8f51d82d806b86856d72290202d491\"\u003e\u003ccode\u003e66d41a9\u003c/code\u003e\u003c/a\u003e channel: Add new_biased constructor for biased channel selection (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1150\"\u003e#1150\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/d0d0a80be89a976a66292ed7d3fb562f9d3d590b\"\u003e\u003ccode\u003ed0d0a80\u003c/code\u003e\u003c/a\u003e CachePadded: Use 128-byte alignment on arm64ec\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/f757eefca227f67cb9dc8b90c07500728151f501\"\u003e\u003ccode\u003ef757eef\u003c/code\u003e\u003c/a\u003e Add comment about fixed rustc bug\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/crossbeam-rs/crossbeam/compare/crossbeam-channel-0.5.12...crossbeam-channel-0.5.15\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ed25519-dalek` from 1.0.1 to 2.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dalek-cryptography/curve25519-dalek/blob/2.0.0/CHANGELOG.md\"\u003eed25519-dalek's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix a data modeling error in the \u003ccode\u003eserde\u003c/code\u003e feature pointed out by Trevor Perrin\nwhich caused points and scalars to be serialized with length fields rather\nthan as fixed-size 32-byte arrays.  This is a breaking change, but it fixes\ncompatibility with \u003ccode\u003eserde-json\u003c/code\u003e and ensures that the \u003ccode\u003eserde-bincode\u003c/code\u003e encoding\nmatches the conventional encoding for X/Ed25519.\u003c/li\u003e\n\u003cli\u003eUpdate \u003ccode\u003erand_core\u003c/code\u003e to \u003ccode\u003e0.5\u003c/code\u003e, allowing use with new \u003ccode\u003erand\u003c/code\u003e versions.\u003c/li\u003e\n\u003cli\u003eSwitch from \u003ccode\u003eclear_on_drop\u003c/code\u003e to \u003ccode\u003ezeroize\u003c/code\u003e (by Tony Arcieri).\u003c/li\u003e\n\u003cli\u003eRequire \u003ccode\u003esubtle = ^2.2.1\u003c/code\u003e and remove the note advising nightly Rust, which is\nno longer required as of that version of \u003ccode\u003esubtle\u003c/code\u003e.  See the \u003ccode\u003esubtle\u003c/code\u003e\nchangelog for more details.\u003c/li\u003e\n\u003cli\u003eUpdate \u003ccode\u003eREADME.md\u003c/code\u003e for \u003ccode\u003e2.x\u003c/code\u003e series.\u003c/li\u003e\n\u003cli\u003eRemove the \u003ccode\u003ebuild.rs\u003c/code\u003e hack which loaded the entire crate into its own\n\u003ccode\u003ebuild.rs\u003c/code\u003e to generate constants, and keep the constants in the source code.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThe only significant change is the data model change to the \u003ccode\u003eserde\u003c/code\u003e feature;\nbesides the \u003ccode\u003erand_core\u003c/code\u003e version bump, there are no other user-visible changes.\u003c/p\u003e\n\u003ch2\u003e1.2.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix an issue identified by a Quarkslab audit (and Jack Grigg), where manually\nconstructing unreduced \u003ccode\u003eScalar\u003c/code\u003e values, as needed for X/Ed25519, and then\nperforming scalar/scalar arithmetic could compute incorrect results.\u003c/li\u003e\n\u003cli\u003eSwitch to upstream Rust intrinsics for the IFMA backend now that they exist in\nRust and don't need to be defined locally.\u003c/li\u003e\n\u003cli\u003eEnsure that the NAF computation works correctly, even for parameters never\nused elsewhere in the codebase.\u003c/li\u003e\n\u003cli\u003eMinor refactoring to EdwardsPoint decompression.\u003c/li\u003e\n\u003cli\u003eFix broken links in documentation.\u003c/li\u003e\n\u003cli\u003eFix compilation on nightly broken due to changes to the \u003ccode\u003e#[doc(include)]\u003c/code\u003e path\nroot (not quite correctly done in 1.2.2).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.2.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix a typo in an internal doc-comment.\u003c/li\u003e\n\u003cli\u003eAdd the \u0026quot;crypto\u0026quot; tag to crate metadata.\u003c/li\u003e\n\u003cli\u003eFix compilation on nightly broken due to changes to the \u003ccode\u003e#[doc(include)]\u003c/code\u003e path\nroot.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.2.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix a bug in bucket index calculations in the Pippenger multiscalar algorithm\nfor very large input sizes.\u003c/li\u003e\n\u003cli\u003eAdd a more extensive randomized multiscalar multiplication consistency check\nto the test suite to prevent regressions.\u003c/li\u003e\n\u003cli\u003eEnsure that that multiscalar and NAF computations work correctly on extremal\n\u003ccode\u003eScalar\u003c/code\u003e values constructed via \u003ccode\u003efrom_bits\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.2.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dalek-cryptography/curve25519-dalek/commit/d889ac8a15c9b802f846b49f7f243e0a4fc5ffec\"\u003e\u003ccode\u003ed889ac8\u003c/code\u003e\u003c/a\u003e Finalize 2.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dalek-cryptography/curve25519-dalek/commit/db6a0b118769f59a3cadda3cc0dbd042a1613214\"\u003e\u003ccode\u003edb6a0b1\u003c/code\u003e\u003c/a\u003e Merge branch 'master' into develop\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dalek-cryptography/curve25519-dalek/commit/58d32ea27fc0b7d519f5fcde65a40d02346ba8eb\"\u003e\u003ccode\u003e58d32ea\u003c/code\u003e\u003c/a\u003e Merge branch 'release/2.0.0-alpha.2'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dalek-cryptography/curve25519-dalek/commit/69d72f92d60f8c59adb4bee036c5989061183918\"\u003e\u003ccode\u003e69d72f9\u003c/code\u003e\u003c/a\u003e Bump version to 2.0.0-alpha.2 and update changelog.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dalek-cryptography/curve25519-dalek/commit/0168816f04d0854abd8dd914a937a7e59d7bdb79\"\u003e\u003ccode\u003e0168816\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dalek-cryptography/curve25519-dalek/issues/307\"\u003e#307\u003c/a\u003e from dalek-cryptography/update-nightly-note-subtle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dalek-cryptography/curve25519-dalek/commit/2b51978553dcb3a9ff27e3bf895b59671b8bd9f7\"\u003e\u003ccode\u003e2b51978\u003c/code\u003e\u003c/a\u003e Remove nightly recommendation now that subtle has stable opt barriers.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dalek-cryptography/curve25519-dalek/commit/77203aa1cb87ac3a958c491b3976bfbfa49a1bf3\"\u003e\u003ccode\u003e77203aa\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dalek-cryptography/curve25519-dalek/issues/306\"\u003e#306\u003c/a\u003e from isislovecruft/feature/236-merge-rebase\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dalek-cryptography/curve25519-dalek/commit/4d1dfbaf035287f08f4b4cc0dc08f0ced2dd516a\"\u003e\u003ccode\u003e4d1dfba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dalek-cryptography/curve25519-dalek/issues/305\"\u003e#305\u003c/a\u003e from isislovecruft/fix/unused-tmp2-warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dalek-cryptography/curve25519-dalek/commit/4423394ed8d6c6aaad2249b29a6c8f62cdde18a0\"\u003e\u003ccode\u003e4423394\u003c/code\u003e\u003c/a\u003e Fix warning that a temporary value isn't used.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dalek-cryptography/curve25519-dalek/commit/57f19e018ff8315d144f74ff5d5a4ee6dae93e89\"\u003e\u003ccode\u003e57f19e0\u003c/code\u003e\u003c/a\u003e Merge remote-tracking branch 'DebugSteven/zeroize' into feature/236-merge-rebase\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dalek-cryptography/curve25519-dalek/compare/1.0.1...2.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openssl` from 0.10.64 to 0.10.80\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-openssl/rust-openssl/releases\"\u003eopenssl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eopenssl-v0.10.80\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrefer Homebrew openssl@4 and stop looking for openssl@1.1 by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2633\"\u003erust-openssl/rust-openssl#2633\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix output buffer overflow in cipher_update_inplace for AES key-wrap-with-padding by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2638\"\u003erust-openssl/rust-openssl#2638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl 0.10.80 and openssl-sys 0.9.116 by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2639\"\u003erust-openssl/rust-openssl#2639\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.79...openssl-v0.10.80\"\u003ehttps://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.79...openssl-v0.10.80\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eopenssl-v0.10.79\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/cache from 5.0.4 to 5.0.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2610\"\u003erust-openssl/rust-openssl#2610\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTry to fix OpenSSL 1.1.0l download by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2614\"\u003erust-openssl/rust-openssl#2614\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRequire \u0026amp;mut BigNumContextRef for EcPointRef mul/invert by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2615\"\u003erust-openssl/rust-openssl#2615\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix UB in EcGroupRef::generator on groups without a generator by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2617\"\u003erust-openssl/rust-openssl#2617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace \u003ccode\u003euse libc::*;\u003c/code\u003e with targeted imports in openssl-sys by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2618\"\u003erust-openssl/rust-openssl#2618\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKeyRef::is_a and KeyType for name-based key identification by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2619\"\u003erust-openssl/rust-openssl#2619\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKey::{public,private}_key_from_raw_bytes_ex by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2620\"\u003erust-openssl/rust-openssl#2620\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump MSRV to 1.80 by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2622\"\u003erust-openssl/rust-openssl#2622\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop once_cell in favor of std::sync::{LazyLock, OnceLock} by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2623\"\u003erust-openssl/rust-openssl#2623\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKey::private_key_from_seed for ML-DSA/ML-KEM key import by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2621\"\u003erust-openssl/rust-openssl#2621\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eparallelize more builds in CI for cold caches by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2625\"\u003erust-openssl/rust-openssl#2625\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2626\"\u003erust-openssl/rust-openssl#2626\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix process abort when verify/PSK callbacks fire after SSL_CTX swap by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2624\"\u003erust-openssl/rust-openssl#2624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBind OSSL_PARAM_modified and use it for seed_into by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2628\"\u003erust-openssl/rust-openssl#2628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PkeyCtxRef::set_context_string for ML-DSA by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2629\"\u003erust-openssl/rust-openssl#2629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2631\"\u003erust-openssl/rust-openssl#2631\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix output buffer overflow for AES key-wrap-with-padding ciphers by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2630\"\u003erust-openssl/rust-openssl#2630\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl 0.10.79 and openssl-sys 0.9.115 by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2632\"\u003erust-openssl/rust-openssl#2632\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.78...openssl-v0.10.79\"\u003ehttps://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.78...openssl-v0.10.79\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eopenssl-v0.10.78\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix Suite B flag assignments in verify.rs by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2592\"\u003erust-openssl/rust-openssl#2592\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse cvt_p for OPENSSL_malloc error handling by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2593\"\u003erust-openssl/rust-openssl#2593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMark BIO_get_mem_data on AWS-LC to be unsafe by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2594\"\u003erust-openssl/rust-openssl#2594\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSet timeout for package installation step by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2595\"\u003erust-openssl/rust-openssl#2595\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePanic in Crypter::new when IV is required but not provided by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2596\"\u003erust-openssl/rust-openssl#2596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eopenssl 4 support by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2591\"\u003erust-openssl/rust-openssl#2591\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid panic for overlong OIDs by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2598\"\u003erust-openssl/rust-openssl#2598\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix dangling stack pointer in custom extension add callback by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2599\"\u003erust-openssl/rust-openssl#2599\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for LibreSSL 4.3.x by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2603\"\u003erust-openssl/rust-openssl#2603\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix inverted bounds assertion in AES key unwrap by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2604\"\u003erust-openssl/rust-openssl#2604\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject oversized length returns from password callback trampoline by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2605\"\u003erust-openssl/rust-openssl#2605\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eValidate callback-returned lengths in PSK and cookie trampolines by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2607\"\u003erust-openssl/rust-openssl#2607\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eError for short out in MdCtxRef::digest_final() by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2608\"\u003erust-openssl/rust-openssl#2608\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck derive output buffer length on OpenSSL 1.1.x by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2606\"\u003erust-openssl/rust-openssl#2606\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl v0.10.78 and openssl-sys v0.9.114 by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2609\"\u003erust-openssl/rust-openssl#2609\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/35be7ae43b207fc0448a648a21e9156bc360c9af\"\u003e\u003ccode\u003e35be7ae\u003c/code\u003e\u003c/a\u003e Release openssl 0.10.80 and openssl-sys 0.9.116 (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2639\"\u003e#2639\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/19eceb26f2404aae187e5444e65c404ebc1348a7\"\u003e\u003ccode\u003e19eceb2\u003c/code\u003e\u003c/a\u003e Fix output buffer overflow in cipher_update_inplace for AES key-wrap-with-pad...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/b460eb378c335610df5395a251408ad70bb60d42\"\u003e\u003ccode\u003eb460eb3\u003c/code\u003e\u003c/a\u003e Prefer Homebrew openssl@4 and stop looking for openssl@1.1 (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2633\"\u003e#2633\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/649f2d9e37f3aa701e20bd8ab5cd7eb5afa0a90f\"\u003e\u003ccode\u003e649f2d9\u003c/code\u003e\u003c/a\u003e Release openssl 0.10.79 and openssl-sys 0.9.115 (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2632\"\u003e#2632\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/257f9b20c001b888986f93579f118fa2a57d4f45\"\u003e\u003ccode\u003e257f9b2\u003c/code\u003e\u003c/a\u003e Fix output buffer overflow for AES key-wrap-with-padding ciphers (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2630\"\u003e#2630\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/d43e9179b1885fc66269a42361cc7a80f631ac8f\"\u003e\u003ccode\u003ed43e917\u003c/code\u003e\u003c/a\u003e Reject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2631\"\u003e#2631\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/f46519c8694a3e121091dafe38aab77c2f756546\"\u003e\u003ccode\u003ef46519c\u003c/code\u003e\u003c/a\u003e Add PkeyCtxRef::set_context_string for ML-DSA (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2629\"\u003e#2629\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/ad9ae312771f898749a9471549519d45eba6a033\"\u003e\u003ccode\u003ead9ae31\u003c/code\u003e\u003c/a\u003e Bind OSSL_PARAM_modified and use it for seed_into (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2628\"\u003e#2628\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/4e25c9be20dae1e78f1a3815950cd0973addae82\"\u003e\u003ccode\u003e4e25c9b\u003c/code\u003e\u003c/a\u003e Fix process abort when verify/PSK callbacks fire after SSL_CTX swap (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2624\"\u003e#2624\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/3dd8f425ef34a069b5bec46f3971b67db1c295c7\"\u003e\u003ccode\u003e3dd8f42\u003c/code\u003e\u003c/a\u003e Add PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2626\"\u003e#2626\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.64...openssl-v0.10.80\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.7.3 to 0.8.5\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/master/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.5] - 2021-08-20\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix build on non-32/64-bit architectures (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1144\"\u003e#1144\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u0026quot;min_const_gen\u0026quot; feature for \u003ccode\u003eno_std\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1173\"\u003e#1173\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCheck \u003ccode\u003elibc::pthread_atfork\u003c/code\u003e return value with panic on error (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1178\"\u003e#1178\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMore robust reseeding in case \u003ccode\u003eReseedingRng\u003c/code\u003e is used from a fork handler (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1178\"\u003e#1178\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix nightly: remove unused \u003ccode\u003eslice_partition_at_index\u003c/code\u003e feature (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1215\"\u003e#1215\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix nightly + \u003ccode\u003esimd_support\u003c/code\u003e: update \u003ccode\u003epacked_simd\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1216\"\u003e#1216\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRngs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eStdRng\u003c/code\u003e: Switch from HC128 to ChaCha12 on emscripten (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1142\"\u003e#1142\u003c/a\u003e).\nWe now use ChaCha12 on all platforms.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded docs about rand's use of const generics (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1150\"\u003e#1150\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBetter random chars example (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1157\"\u003e#1157\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1142\"\u003e#1142\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1142\"\u003erust-random/rand#1142\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1144\"\u003e#1144\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1144\"\u003erust-random/rand#1144\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1150\"\u003e#1150\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1150\"\u003erust-random/rand#1150\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1157\"\u003e#1157\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1157\"\u003erust-random/rand#1157\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1173\"\u003e#1173\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1173\"\u003erust-random/rand#1173\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1178\"\u003e#1178\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1178\"\u003erust-random/rand#1178\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1215\"\u003e#1215\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1215\"\u003erust-random/rand#1215\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1216\"\u003e#1216\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1216\"\u003erust-random/rand#1216\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e[0.8.4] - 2021-06-15\u003c/h2\u003e\n\u003ch3\u003eAdditions\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUse const-generics to support arrays of all sizes (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1104\"\u003e#1104\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eClone\u003c/code\u003e and \u003ccode\u003eCopy\u003c/code\u003e for \u003ccode\u003eAlphanumeric\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1126\"\u003e#1126\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eDistribution::map\u003c/code\u003e to derive a distribution using a closure (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1129\"\u003e#1129\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eSlice\u003c/code\u003e distribution (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1107\"\u003e#1107\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eDistString\u003c/code\u003e trait with impls for \u003ccode\u003eStandard\u003c/code\u003e and \u003ccode\u003eAlphanumeric\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1133\"\u003e#1133\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReorder asserts in \u003ccode\u003eUniform\u003c/code\u003e float distributions for easier debugging of non-finite arguments (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1094\"\u003e#1094\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1108\"\u003e#1108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd range overflow check in \u003ccode\u003eUniform\u003c/code\u003e float distributions (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1108\"\u003e#1108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDeprecate \u003ccode\u003erngs::adapter::ReadRng\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1130\"\u003e#1130\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.8.3] - 2021-01-25\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003eno-std\u003c/code\u003e + \u003ccode\u003ealloc\u003c/code\u003e build by gating \u003ccode\u003echoose_multiple_weighted\u003c/code\u003e on \u003ccode\u003estd\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1088\"\u003e#1088\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.8.2] - 2021-01-12\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix panic in \u003ccode\u003eUniformInt::sample_single_inclusive\u003c/code\u003e and \u003ccode\u003eRng::gen_range\u003c/code\u003e when providing a full integer range (eg \u003ccode\u003e0..=MAX\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1087\"\u003e#1087\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/937320cbfeebd4352a23086d9c6e68f067f74644\"\u003e\u003ccode\u003e937320c\u003c/code\u003e\u003c/a\u003e Update CHANGELOG for 0.8.5 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1221\"\u003e#1221\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/2924af688d352b889322870d017356f12651866b\"\u003e\u003ccode\u003e2924af6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1183\"\u003e#1183\u003c/a\u003e from vks/fill-float-doc\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/dbbc1bf3176138c867f3d84c0c4d288119a5a84e\"\u003e\u003ccode\u003edbbc1bf\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1218\"\u003e#1218\u003c/a\u003e from Will-Low/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f20df04d88698c38515833d6db62d7eb50d8b80\"\u003e\u003ccode\u003e9f20df0\u003c/code\u003e\u003c/a\u003e Making distributions comparable by deriving PartialEq. Tests included\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/a407bdfa4563d0cfbf744049242926c8de079d3f\"\u003e\u003ccode\u003ea407bdf\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1216\"\u003e#1216\u003c/a\u003e from rust-random/work5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/d3ca11b0bcc1f42fe34ba4f90f99509b7eb4ff18\"\u003e\u003ccode\u003ed3ca11b\u003c/code\u003e\u003c/a\u003e Update to packed_simd_2 0.3.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/fa04c15d0bb5842fdbdbb73d7a53ead36f3fcf52\"\u003e\u003ccode\u003efa04c15\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1215\"\u003e#1215\u003c/a\u003e from Lantern-chat/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/73f8ffd16379390e624ac53cd6882dd679dd9a6f\"\u003e\u003ccode\u003e73f8ffd\u003c/code\u003e\u003c/a\u003e Remove unused \u003ccode\u003eslice_partition_at_index\u003c/code\u003e feature\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8f372500f05dfadcff6c35e773e81029ab7debad\"\u003e\u003ccode\u003e8f37250\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1208\"\u003e#1208\u003c/a\u003e from newpavlov/rand_distr/fix_no_std\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9ef737ba5b814f6ab36cebafb59ad29885d68a05\"\u003e\u003ccode\u003e9ef737b\u003c/code\u003e\u003c/a\u003e update changelog\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.7.3...0.8.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rpassword` from 7.3.1 to 7.5.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/conradkleinespel/rpassword/releases\"\u003erpassword's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.5.0\u003c/h2\u003e\n\u003cp\u003eThis release comes with lots of stuff. It should be fully backward compatible.\u003c/p\u003e\n\u003ch2\u003eNew features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for masking or partially masking a password as it's being typed. Thank you, \u003ca href=\"https://github.com/chipsenkbeil\"\u003e\u003ccode\u003e@​chipsenkbeil\u003c/code\u003e\u003c/a\u003e, for your contribution.\u003c/li\u003e\n\u003cli\u003eNew API. The documentation has been vastly improved to support this, see \u003ca href=\"https://docs.rs/rpassword/\"\u003ehttps://docs.rs/rpassword/\u003c/a\u003e. To sum up, you can now call \u003ccode\u003eread_password_with_config(config)\u003c/code\u003e and there is a \u003ccode\u003eConfigBuilder\u003c/code\u003e that allows you to configure how passwords should be read. This makes the library much more flexible and means new options will be added without breaking existing code.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix for CVE-2025-64170 which affects \u003ccode\u003erpassword\u003c/code\u003e on versions v7.4.0 and below. Thank you, \u003ca href=\"https://github.com/squell\"\u003e\u003ccode\u003e@​squell\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/DevLaTron\"\u003e\u003ccode\u003e@​DevLaTron\u003c/code\u003e\u003c/a\u003e, for reporting this.\u003c/li\u003e\n\u003cli\u003eBetter support for multibyte characters and more reliable handling of control characters and terminal escape sequences. Thank you again, \u003ca href=\"https://github.com/chipsenkbeil\"\u003e\u003ccode\u003e@​chipsenkbeil\u003c/code\u003e\u003c/a\u003e, for your contribution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDeprecations\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e_from_bufread\u003c/code\u003e functions have been deprecated. You are encouraged to migrate to \u003ccode\u003e_with_config\u003c/code\u003e functions. See \u003ca href=\"https://github.com/conradkleinespel/rpassword/blob/main/UPGRADE.md\"\u003eUPGRADE.md\u003c/a\u003e as well as the \u003ca href=\"https://docs.rs/rpassword/latest/rpassword/fn.read_password_from_bufread.html\"\u003edocumentation which has examples\u003c/a\u003e that you can most likely drop into your code without other changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eMisc\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate of the \u003ccode\u003ewindows-sys\u003c/code\u003e dependency.\u003c/li\u003e\n\u003cli\u003eUpdate Rust edition from 2018 to 2024.\u003c/li\u003e\n\u003cli\u003eBetter cross-platform testing, through more unit tests and a CI that runs Linux, Windows and Wasm.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFeedback is very much welcome.\u003c/p\u003e\n\u003ch2\u003ev7.4.0\u003c/h2\u003e\n\u003cp\u003eChanges and updates in this release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUpdates \u003ccode\u003ewindows-sys\u003c/code\u003e from \u003ccode\u003e0.52\u003c/code\u003e to \u003ccode\u003e0.59\u003c/code\u003e, see \u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/cb2244aba3e6b4358cf489e61c8e35c564e31952\"\u003ehttps://github.com/conradkleinespel/rpassword/commit/cb2244aba3e6b4358cf489e61c8e35c564e31952\u003c/a\u003e;\u003c/li\u003e\n\u003cli\u003eImproves Chinese character handling, the commit is in the \u003ccode\u003ertoolbox\u003c/code\u003e crate (\u003ca href=\"https://github.com/conradkleinespel/rtoolbox\"\u003ehttps://github.com/conradkleinespel/rtoolbox\u003c/a\u003e). Thank you \u003ca href=\"https://github.com/Jordan-Haidee\"\u003e\u003ccode\u003e@​Jordan-Haidee\u003c/code\u003e\u003c/a\u003e for providing a fix in \u003ca href=\"https://redirect.github.com/conradkleinespel/rpassword/issues/97\"\u003econradkleinespel/rpassword#97\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eI've noticed after publishing the release that the size of the crate on crates.io went from \u003ccode\u003e7KiB\u003c/code\u003e to \u003ccode\u003e121KiB\u003c/code\u003e. That's due to the addition of an image in the \u003ccode\u003eREADME.md\u003c/code\u003e, which I did not anticipate would be distributed to everyone. The fix (\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/7c30111dda0242967bd5ac494fbf3089d3d74dc6\"\u003ehttps://github.com/conradkleinespel/rpassword/commit/7c30111dda0242967bd5ac494fbf3089d3d74dc6\u003c/a\u003e) will be included in the next release.\u003c/p\u003e\n\u003cp\u003eNo functionality changes in this release. It is backwards compatible.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/2d9873eb198dd49dafef2e3263a035ac3614982c\"\u003e\u003ccode\u003e2d9873e\u003c/code\u003e\u003c/a\u003e release v7.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/e67e3b45673e51e7155d80970d2e4c80152324dc\"\u003e\u003ccode\u003ee67e3b4\u003c/code\u003e\u003c/a\u003e removes commented out code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/fdde958f1c4753ebc22509b73da9156952c86e33\"\u003e\u003ccode\u003efdde958\u003c/code\u003e\u003c/a\u003e remove .idea from .gitignore\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/d531c5992a5303fe418e95959a70459fb286c6b9\"\u003e\u003ccode\u003ed531c59\u003c/code\u003e\u003c/a\u003e allow reading from any Read and writing to any Write\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/205dfb2eb76d8b460f210a4541374a495a1974fa\"\u003e\u003ccode\u003e205dfb2\u003c/code\u003e\u003c/a\u003e differentiate Input and Output targets\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/6aa333a6513f3efa4b461659974a06426363447d\"\u003e\u003ccode\u003e6aa333a\u003c/code\u003e\u003c/a\u003e make PasswordFeedback internal though ConfigBuilder\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/aadeef20d93b5cc7dc20823c35b697caa5201d46\"\u003e\u003ccode\u003eaadeef2\u003c/code\u003e\u003c/a\u003e allow more flexible input/output\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/ff7be55fc47280cacd49f86dd188614157c03f77\"\u003e\u003ccode\u003eff7be55\u003c/code\u003e\u003c/a\u003e add support for Ctrl-W\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/c56fefad218ec00d5309e8ec1d2a52ef31f86693\"\u003e\u003ccode\u003ec56fefa\u003c/code\u003e\u003c/a\u003e format rust files with cargo fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/c6f4f19528553302a6d08f26d0f1daf8a9b94386\"\u003e\u003ccode\u003ec6f4f19\u003c/code\u003e\u003c/a\u003e handle character encodings more reliably\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/conradkleinespel/rpassword/compare/v7.3.1...v7.5.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls` from 0.21.10 to 0.21.11\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/7b8d1dbc1e666dc4d83640c64e96d257d39cfda4\"\u003e\u003ccode\u003e7b8d1db\u003c/code\u003e\u003c/a\u003e Prepare 0.21.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/ebcb4782f23b4edf9b10a7065d9e8d4362439d9c\"\u003e\u003ccode\u003eebcb478\u003c/code\u003e\u003c/a\u003e complete_io: bail out if progress is impossible\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/20f35dfb6d3c353294c562723d4cb6639a8bd01b\"\u003e\u003ccode\u003e20f35df\u003c/code\u003e\u003c/a\u003e Regression test for \u003ccode\u003ecomplete_io\u003c/code\u003e infinite loop bug\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/2f2aae15a4293639669291ab2b257835a2d4bdca\"\u003e\u003ccode\u003e2f2aae1\u003c/code\u003e\u003c/a\u003e Don't specially handle unauthenticated close_notify alerts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/e163587b985c894a6ce651992b91eb6897edde8b\"\u003e\u003ccode\u003ee163587\u003c/code\u003e\u003c/a\u003e Don't deny warnings from nightly clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/9f864874cff7d977cccd4204463ea34fd161a2fe\"\u003e\u003ccode\u003e9f86487\u003c/code\u003e\u003c/a\u003e server::handy: fix new nightly clippy lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/7e0e8ab599a19c2a733be294aaf91eeb6fdebaaa\"\u003e\u003ccode\u003e7e0e8ab\u003c/code\u003e\u003c/a\u003e Correct assorted clippy warnings in test code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/3587d98f4ea434495facc0688b8b07313cb02e4a\"\u003e\u003ccode\u003e3587d98\u003c/code\u003e\u003c/a\u003e Apply clippy suggestions from Rust 1.72\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/d082e837b34c0605b1851e45c421c91c1d15391c\"\u003e\u003ccode\u003ed082e83\u003c/code\u003e\u003c/a\u003e Address \u003ccode\u003eclippy::redundant_static_lifetimes\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/5e7a06ca457a6fe67dfbb57193f55138be7ef611\"\u003e\u003ccode\u003e5e7a06c\u003c/code\u003e\u003c/a\u003e Address \u003ccode\u003eclippy::slow_vector_initialization\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rustls/rustls/compare/v/0.21.10...v/0.21.11\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 0.4.40 to 0.4.45\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/096e3d16d14fefac51bc4d94d616b21546ea8bcc\"\u003e\u003ccode\u003e096e3d1\u003c/code\u003e\u003c/a\u003e Bump to 0.4.45 (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/443\"\u003e#443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/17b1fd84e632071cb8eef9d3709bf347bd266446\"\u003e\u003ccode\u003e17b1fd8\u003c/code\u003e\u003c/a\u003e archive: Prevent symlink-directory collision chmod attack (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/de1a5870e603758f430073688691165f21a33946\"\u003e\u003ccode\u003ede1a587\u003c/code\u003e\u003c/a\u003e archive: Unconditionally honor PAX size (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/441\"\u003e#441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/6071cbe74acefa8c8322809bfd43c825e5f16b60\"\u003e\u003ccode\u003e6071cbe\u003c/code\u003e\u003c/a\u003e ci: Consolidate workflows (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/439\"\u003e#439\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/ad1fde9edfb9657d17666bbec2933119ce527359\"\u003e\u003ccode\u003ead1fde9\u003c/code\u003e\u003c/a\u003e build-sys: Promote unused_code to an error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/c8cb250e8bc3f28bd69406b396bb8a92b40012c1\"\u003e\u003ccode\u003ec8cb250\u003c/code\u003e\u003c/a\u003e tests: Squash a warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/638c495a480d2a50099d55f445ece9e5f544b49d\"\u003e\u003ccode\u003e638c495\u003c/code\u003e\u003c/a\u003e ci: Add xtask infra + reverse dependency testing (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/435\"\u003e#435\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/32a9bbb26468cbdecbf73fe8eb249284d4a718ed\"\u003e\u003ccode\u003e32a9bbb\u003c/code\u003e\u003c/a\u003e tests: Add RandomReader to exercise partial-read resilience (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/436\"\u003e#436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/9c5df0bfd70d1b063516b90fca2cf2e0dbe8b758\"\u003e\u003ccode\u003e9c5df0b\u003c/code\u003e\u003c/a\u003e Fix GNU long-name extension stream corruption on validation error (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/88b1e3b0da65b0c5b9750d1a75516145488f4793\"\u003e\u003ccode\u003e88b1e3b\u003c/code\u003e\u003c/a\u003e Fix docs typo in header.rs (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/composefs/tar-rs/compare/0.4.40...0.4.45\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `h2` from 0.3.24 to 0.3.27\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hyperium/h2/releases\"\u003eh2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.26\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eLimit number of CONTINUATION frames for misbehaving connections.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://seanmonstar.com/blog/hyper-http2-continuation-flood/\"\u003ehttps://seanmonstar.com/blog/hyper-http2-continuation-flood/\u003c/a\u003e for more info.\u003c/p\u003e\n\u003ch2\u003ev0.3.25\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eperf: optimize header list size calculations by \u003ca href=\"https://github.com/Noah-Kennedy\"\u003e\u003ccode\u003e@​Noah-Kennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/h2/pull/750\"\u003ehyperium/h2#750\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hyperium/h2/compare/v0.3.24...v0.3.25\"\u003ehttps://github.com/hyperium/h2/compare/v0.3.24...v0.3.25\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hyperium/h2/blob/v0.3.27/CHANGELOG.md\"\u003eh2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e0.3.27 (July 11, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix notifying wakers when detecting local stream errors.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e0.3.26 (April 3, 2024)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eLimit number of CONTINUATION frames for misbehaving connections.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e0.3.25 (March 15, 2024)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eImprove performance decoding many headers.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/h2/commit/f6237accb3e37668a8d7fb2331f22eb7b808c1e8\"\u003e\u003ccode\u003ef6237ac\u003c/code\u003e\u003c/a\u003e v0.3.27\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/h2/commit/f61332ed4821ee9a5c2a6247bf5b56adb62013f6\"\u003e\u003ccode\u003ef61332e\u003c/code\u003e\u003c/a\u003e refactor: change local reset counter to use type system more\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/h2/commit/3f1a8e34cd3180c2787ce80d4b50100b74efc22c\"\u003e\u003ccode\u003e3f1a8e3\u003c/code\u003e\u003c/a\u003e style: fix anonymous lifetime syntax\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/h2/commit/778aa7eba9c480c48a498f866456fa7357ca9b96\"\u003e\u003ccode\u003e778aa7e\u003c/code\u003e\u003c/a\u003e fix: notify_recv after send_reset() in reset_on_recv_stream_err() to ensure l...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/h2/commit/be10b774f01707f9f8dc9e93bed653b52fd69b0c\"\u003e\u003ccode\u003ebe10b77\u003c/code\u003e\u003c/a\u003e ci: pin more deps for MSRV job (\u003ca href=\"https://redirect.github.com/hyperium/h2/issues/817\"\u003e#817\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/h2/commit/c0d9febc182d53d94ac43dabcf44c23aa1be4f75\"\u003e\u003ccode\u003ec0d9feb\u003c/code\u003e\u003c/a\u003e ci: pin deps for MSRV\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/h2/commit/5ccd9cfb1034e71b915e72dfcb197f773c6ac836\"\u003e\u003ccode\u003e5ccd9cf\u003c/code\u003e\u003c/a\u003e lints: fix unexpected cfgs warnings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/h2/commit/e6e3e9c87f89a86465d0889dea543d9bfe024e82\"\u003e\u003ccode\u003ee6e3e9c\u003c/code\u003e\u003c/a\u003e fix: return a WriteZero error if frames cannot be written (\u003ca href=\"https://redirect.github.com/hyperium/h2/issues/783\"\u003e#783\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/h2/commit/357127e279c06935830fe2140378312eac801494\"\u003e\u003ccode\u003e357127e\u003c/code\u003e\u003c/a\u003e v0.3.26\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/h2/commit/1a357aaefc7243fdfa9442f45d90be17794a4004\"\u003e\u003ccode\u003e1a357aa\u003c/code\u003e\u003c/a\u003e fix: limit number of CONTINUATION frames allowed\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hyperium/h2/compare/v0.3.24...v0.3.27\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `keccak` from 0.1.5 to 0.1.6\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/sponges/commit/a8936d9662ca92fd177d289580066ceabb937b0c\"\u003e\u003ccode\u003ea8936d9\u003c/code\u003e\u003c/a\u003e keccak v0.1.6\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/RustCrypto/sponges/compare/keccak-v0.1.5...keccak-v0.1.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.9 to 0.3.44\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.44\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.43\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.42\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.41\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.40\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.39\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.38\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.37\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.36\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.35\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.34\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.33\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.32\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.31\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.30\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.29\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.28\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c!-...\n\n_Description has been truncated_","html_url":"https://github.com/Shakacro/solana/pull/9","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Shakacro%2Fsolana/issues/9","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/9/packages"},{"uuid":"4536870460","node_id":"PR_kwDOSEcsO87gDSbt","number":13,"state":"open","title":"chore(deps): bump the cargo group across 13 directories with 15 updates","user":"dependabot[bot]","labels":["dependencies","rust"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-28T01:07:29.000Z","updated_at":"2026-05-28T01:10:42.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"cargo","update_count":15,"packages":[{"name":"bytes","old_version":"1.10.1","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"httpsig-hyper","old_version":"0.0.19","new_version":"0.0.20","repository_url":"https://github.com/junkurihara/httpsig-rs"},{"name":"rand","old_version":"0.8.5","new_version":"0.9.2","repository_url":"https://github.com/rust-random/rand"},{"name":"rmcp","old_version":"0.6.4","new_version":"0.10.0","repository_url":"https://github.com/modelcontextprotocol/rust-sdk"},{"name":"tar","old_version":"0.4.44","new_version":"0.4.45","repository_url":"https://github.com/composefs/tar-rs"},{"name":"time","old_version":"0.3.43","new_version":"0.3.47","repository_url":"https://github.com/time-rs/time"},{"name":"wasmtime","old_version":"35.0.0","new_version":"36.0.8","repository_url":"https://github.com/bytecodealliance/wasmtime"},{"name":"lz4_flex","old_version":"0.11.5","new_version":"0.11.6","repository_url":"https://github.com/pseitz/lz4_flex"},{"name":"rustls-webpki","old_version":"0.103.4","new_version":"0.103.13","repository_url":"https://github.com/rustls/webpki"},{"name":"oneshot","old_version":"0.1.11","new_version":"0.1.13","repository_url":"https://github.com/faern/oneshot"},{"name":"quinn-proto","old_version":"0.11.12","new_version":"0.11.14","repository_url":"https://github.com/quinn-rs/quinn"},{"name":"rsa","old_version":"0.9.8","new_version":"0.9.10","repository_url":"https://github.com/RustCrypto/RSA"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 12 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.10.1` | `1.11.1` |\n| [httpsig-hyper](https://github.com/junkurihara/httpsig-rs) | `0.0.19` | `0.0.20` |\n| [rand](https://github.com/rust-random/rand) | `0.8.5` | `0.9.2` |\n| [rmcp](https://github.com/modelcontextprotocol/rust-sdk) | `0.6.4` | `0.10.0` |\n| [tar](https://github.com/composefs/tar-rs) | `0.4.44` | `0.4.45` |\n| [time](https://github.com/time-rs/time) | `0.3.43` | `0.3.47` |\n| [wasmtime](https://github.com/bytecodealliance/wasmtime) | `35.0.0` | `36.0.8` |\n| [lz4_flex](https://github.com/pseitz/lz4_flex) | `0.11.5` | `0.11.6` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.103.4` | `0.103.13` |\n| [oneshot](https://github.com/faern/oneshot) | `0.1.11` | `0.1.13` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.12` | `0.11.14` |\n| [rsa](https://github.com/RustCrypto/RSA) | `0.9.8` | `0.9.10` |\n\nBumps the cargo group with 3 updates in the /cli/tests/integration/data directory: [bytes](https://github.com/tokio-rs/bytes), [rand](https://github.com/rust-random/rand) and [time](https://github.com/time-rs/time).\nBumps the cargo group with 4 updates in the /crates/integration-tests/data/mtls-subgraph directory: [bytes](https://github.com/tokio-rs/bytes), [rand](https://github.com/rust-random/rand), [rustls-webpki](https://github.com/rustls/webpki) and [quinn-proto](https://github.com/quinn-rs/quinn).\nBumps the cargo group with 3 updates in the /crates/wasi-component-loader/examples directory: [bytes](https://github.com/tokio-rs/bytes), [rand](https://github.com/rust-random/rand) and [time](https://github.com/time-rs/time).\nBumps the cargo group with 1 update in the /examples/authorization/auth-service directory: [bytes](https://github.com/tokio-rs/bytes).\nBumps the cargo group with 6 updates in the /examples/authorization/authz directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.10.1` | `1.11.1` |\n| [rand](https://github.com/rust-random/rand) | `0.9.2` | `0.10.1` |\n| [time](https://github.com/time-rs/time) | `0.3.44` | `0.3.47` |\n| [lz4_flex](https://github.com/pseitz/lz4_flex) | `0.11.5` | `0.11.6` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.103.8` | `0.103.13` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.13` | `0.11.14` |\n\nBumps the cargo group with 6 updates in the /examples/authorization/extensions directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.10.1` | `1.11.1` |\n| [rand](https://github.com/rust-random/rand) | `0.8.5` | `0.8.6` |\n| [time](https://github.com/time-rs/time) | `0.3.44` | `0.3.47` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.103.8` | `0.103.13` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.13` | `0.11.14` |\n| [rkyv](https://github.com/rkyv/rkyv) | `0.8.12` | `0.8.16` |\n\nBumps the cargo group with 2 updates in the /examples/authorization/subgraphs/users directory: [bytes](https://github.com/tokio-rs/bytes) and [rand](https://github.com/rust-random/rand).\nBumps the cargo group with 5 updates in the /examples/composite-rest/extensions/geo directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.10.1` | `1.11.1` |\n| [rand](https://github.com/rust-random/rand) | `0.8.5` | `0.8.6` |\n| [time](https://github.com/time-rs/time) | `0.3.41` | `0.3.47` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.103.3` | `0.103.13` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.12` | `0.11.14` |\n\nBumps the cargo group with 3 updates in the /examples/composite-rest/subgraphs/zendesk directory: [bytes](https://github.com/tokio-rs/bytes), [rand](https://github.com/rust-random/rand) and [time](https://github.com/time-rs/time).\nBumps the cargo group with 5 updates in the /examples/dynamic-schema-contracts/demo-hooks directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.10.1` | `1.11.1` |\n| [rand](https://github.com/rust-random/rand) | `0.8.5` | `0.8.6` |\n| [time](https://github.com/time-rs/time) | `0.3.41` | `0.3.47` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.103.4` | `0.103.13` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.12` | `0.11.14` |\n\nBumps the cargo group with 2 updates in the /examples/grpc-composite-schemas/services/locations-rust directory: [bytes](https://github.com/tokio-rs/bytes) and [rand](https://github.com/rust-random/rand).\nBumps the cargo group with 2 updates in the /examples/grpc-extension/server directory: [bytes](https://github.com/tokio-rs/bytes) and [rand](https://github.com/rust-random/rand).\n\nUpdates `bytes` from 1.10.1 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.10.1...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `httpsig-hyper` from 0.0.19 to 0.0.20\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/junkurihara/httpsig-rs/commit/afa6289a26efed97cee07e5fd0c6c865ac187691\"\u003e\u003ccode\u003eafa6289\u003c/code\u003e\u003c/a\u003e bump\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/junkurihara/httpsig-rs/commit/0d2c14c00df177796a80fd7c349e4c341bde9249\"\u003e\u003ccode\u003e0d2c14c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/junkurihara/httpsig-rs/issues/8\"\u003e#8\u003c/a\u003e from junkurihara/deps/sfv-0.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/junkurihara/httpsig-rs/commit/985566a93bb99fd7e5cd3a01f2ee2430f5a2abfc\"\u003e\u003ccode\u003e985566a\u003c/code\u003e\u003c/a\u003e deps: sfv-0.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/junkurihara/httpsig-rs/commit/806c3df2dcc134bc44cda02fa2d1b05b966fce34\"\u003e\u003ccode\u003e806c3df\u003c/code\u003e\u003c/a\u003e fix test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/junkurihara/httpsig-rs/commit/e21d89d443a3c3495b6f6109a37dbc96383d79c1\"\u003e\u003ccode\u003ee21d89d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/junkurihara/httpsig-rs/issues/7\"\u003e#7\u003c/a\u003e from divi255/develop\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/junkurihara/httpsig-rs/commit/30710dbf15b6e252fcb5603c140071e5873a8785\"\u003e\u003ccode\u003e30710db\u003c/code\u003e\u003c/a\u003e removed unmaintained fxhash crate\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/junkurihara/httpsig-rs/compare/0.0.19...0.0.20\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.8.5 to 0.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/master/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.9.2] - 2025-07-20\u003c/h2\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003erand::rngs::mock\u003c/code\u003e module and \u003ccode\u003eStepRng\u003c/code\u003e generator (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1634\"\u003e#1634\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdditions\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnable \u003ccode\u003eWeightedIndex\u0026lt;usize\u0026gt;\u003c/code\u003e (de)serialization (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1646\"\u003e#1646\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.9.1] - 2025-04-17\u003c/h2\u003e\n\u003ch3\u003eSecurity and unsafe\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevise \u0026quot;not a crypto library\u0026quot; policy again (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1565\"\u003e#1565\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove \u003ccode\u003ezerocopy\u003c/code\u003e dependency from \u003ccode\u003erand\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1579\"\u003e#1579\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix feature \u003ccode\u003esimd_support\u003c/code\u003e for recent nightly rust (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1586\"\u003e#1586\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAllow \u003ccode\u003efn rand::seq::index::sample_weighted\u003c/code\u003e and \u003ccode\u003efn IndexedRandom::choose_multiple_weighted\u003c/code\u003e to return fewer than \u003ccode\u003eamount\u003c/code\u003e results (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1623\"\u003e#1623\u003c/a\u003e), reverting an undocumented change (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1382\"\u003e#1382\u003c/a\u003e) to the previous release.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdditions\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003erand::distr::Alphabetic\u003c/code\u003e distribution. (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1587\"\u003e#1587\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRe-export \u003ccode\u003erand_core\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1604\"\u003e#1604\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1565\"\u003e#1565\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1565\"\u003erust-random/rand#1565\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1579\"\u003e#1579\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1579\"\u003erust-random/rand#1579\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1586\"\u003e#1586\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1586\"\u003erust-random/rand#1586\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1587\"\u003e#1587\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1587\"\u003erust-random/rand#1587\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1604\"\u003e#1604\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1604\"\u003erust-random/rand#1604\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1623\"\u003e#1623\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1623\"\u003erust-random/rand#1623\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1634\"\u003e#1634\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1634\"\u003erust-random/rand#1634\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1646\"\u003e#1646\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1646\"\u003erust-random/rand#1646\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e[0.9.0] - 2025-01-27\u003c/h2\u003e\n\u003ch3\u003eSecurity and unsafe\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePolicy: \u0026quot;rand is not a crypto library\u0026quot; (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1514\"\u003e#1514\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove fork-protection from \u003ccode\u003eReseedingRng\u003c/code\u003e and \u003ccode\u003eThreadRng\u003c/code\u003e. Instead, it is recommended to call \u003ccode\u003eThreadRng::reseed\u003c/code\u003e on fork. (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1379\"\u003e#1379\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003ezerocopy\u003c/code\u003e to replace some \u003ccode\u003eunsafe\u003c/code\u003e code (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1349\"\u003e#1349\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1393\"\u003e#1393\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1446\"\u003e#1446\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1502\"\u003e#1502\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump the MSRV to 1.63.0 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1207\"\u003e#1207\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1246\"\u003e#1246\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1269\"\u003e#1269\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1341\"\u003e#1341\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1416\"\u003e#1416\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1536\"\u003e#1536\u003c/a\u003e); note that 1.60.0 may work for dependents when using \u003ccode\u003e--ignore-rust-version\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to \u003ccode\u003erand_core\u003c/code\u003e v0.9.0 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1558\"\u003e#1558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport \u003ccode\u003estd\u003c/code\u003e feature without \u003ccode\u003egetrandom\u003c/code\u003e or \u003ccode\u003erand_chacha\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1354\"\u003e#1354\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnable feature \u003ccode\u003esmall_rng\u003c/code\u003e by default (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1455\"\u003e#1455\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove implicit feature \u003ccode\u003erand_chacha\u003c/code\u003e; use \u003ccode\u003estd_rng\u003c/code\u003e instead. (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1473\"\u003e#1473\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename feature \u003ccode\u003eserde1\u003c/code\u003e to \u003ccode\u003eserde\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1477\"\u003e#1477\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename feature \u003ccode\u003egetrandom\u003c/code\u003e to \u003ccode\u003eos_rng\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1537\"\u003e#1537\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/d3dd4157052e5431ce42e157b544968560a68b95\"\u003e\u003ccode\u003ed3dd415\u003c/code\u003e\u003c/a\u003e Prepare rand_core 0.9.2 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1605\"\u003e#1605\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/99fabd20e9b39d0af7c2ed6c31dbcad83a1703fd\"\u003e\u003ccode\u003e99fabd2\u003c/code\u003e\u003c/a\u003e Prepare rand_core 0.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/c7fe1c43b5ba53aacad5fbac94a8b88788564049\"\u003e\u003ccode\u003ec7fe1c4\u003c/code\u003e\u003c/a\u003e rand: re-export \u003ccode\u003erand_core\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1604\"\u003e#1604\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/db2b1e0bb41b0a1435b9fecaa1b7bdb531183204\"\u003e\u003ccode\u003edb2b1e0\u003c/code\u003e\u003c/a\u003e rand: re-export \u003ccode\u003erand_core\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/ee1d96f9f527dbe6f873c8a5ccf47d60a6b8f7b7\"\u003e\u003ccode\u003eee1d96f\u003c/code\u003e\u003c/a\u003e rand_core: implement reborrow for \u003ccode\u003eUnwrapMut\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1595\"\u003e#1595\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/e0eb2ee0fcc0b07afb901465f4a8ba7f07128f87\"\u003e\u003ccode\u003ee0eb2ee\u003c/code\u003e\u003c/a\u003e rand_core: implement reborrow for \u003ccode\u003eUnwrapMut\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/975f602f5dbbdab0a024e0c5e8b527907426bd8c\"\u003e\u003ccode\u003e975f602\u003c/code\u003e\u003c/a\u003e fixup clippy 1.85 warnings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/775b05be1b8a4fdef17c6601cd223551fbf67edc\"\u003e\u003ccode\u003e775b05b\u003c/code\u003e\u003c/a\u003e Relax \u003ccode\u003eSized\u003c/code\u003e requirements for blanket impls (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1593\"\u003e#1593\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/ec6d5c06a5384c14563a2164bb4a038100a5bb78\"\u003e\u003ccode\u003eec6d5c0\u003c/code\u003e\u003c/a\u003e Prepare rand_core v0.9.1 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1591\"\u003e#1591\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6a06056e8a892bfa181ec24a8ea16aa9f2fe97d3\"\u003e\u003ccode\u003e6a06056\u003c/code\u003e\u003c/a\u003e rand_core: introduce an UnwrapMut wrapper (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1589\"\u003e#1589\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...rand_core-0.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rmcp` from 0.6.4 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/modelcontextprotocol/rust-sdk/releases\"\u003ermcp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ermcp-macros-v0.10.0\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(shemars)\u003c/em\u003e use JSON Schema 2020-12 as Default Dialect (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/549\"\u003e#549\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ermcp-v0.10.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd support for custom client notifications (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/556\"\u003e#556\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ereplace paste with pastey for macros feature (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ermcp-macros-v0.9.1\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(shemars)\u003c/em\u003e use JSON Schema 2020-12 as Default Dialect (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/549\"\u003e#549\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ermcp-v0.9.1\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(streamable-http)\u003c/em\u003e support both SSE and JSON response formats (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/540\"\u003e#540\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edon't block on creating the SSE stream (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/553\"\u003e#553\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cem\u003e(shemars)\u003c/em\u003e use JSON Schema 2020-12 as Default Dialect (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/549\"\u003e#549\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cem\u003e(oauth)\u003c/em\u003e let OAuth discovery skip to next well-known URL candidate on JSON parse error. (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImplementation of SEP-986: Specify Format for Tool Names (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/551\"\u003e#551\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ermcp-macros-v0.9.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(tool)\u003c/em\u003e add _meta to tool definitions (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/534\"\u003e#534\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ermcp-v0.9.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(auth)\u003c/em\u003e implement CredentialStore trait (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/542\"\u003e#542\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cem\u003e(tool)\u003c/em\u003e add _meta to tool definitions (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/534\"\u003e#534\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ermcp-macros-v0.8.5\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(doc)\u003c/em\u003e add stakpak-agent to Built with rmcp section (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/500\"\u003e#500\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/modelcontextprotocol/rust-sdk/commits/rmcp-v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 0.4.44 to 0.4.45\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/096e3d16d14fefac51bc4d94d616b21546ea8bcc\"\u003e\u003ccode\u003e096e3d1\u003c/code\u003e\u003c/a\u003e Bump to 0.4.45 (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/443\"\u003e#443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/17b1fd84e632071cb8eef9d3709bf347bd266446\"\u003e\u003ccode\u003e17b1fd8\u003c/code\u003e\u003c/a\u003e archive: Prevent symlink-directory collision chmod attack (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/de1a5870e603758f430073688691165f21a33946\"\u003e\u003ccode\u003ede1a587\u003c/code\u003e\u003c/a\u003e archive: Unconditionally honor PAX size (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/441\"\u003e#441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/6071cbe74acefa8c8322809bfd43c825e5f16b60\"\u003e\u003ccode\u003e6071cbe\u003c/code\u003e\u003c/a\u003e ci: Consolidate workflows (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/439\"\u003e#439\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/ad1fde9edfb9657d17666bbec2933119ce527359\"\u003e\u003ccode\u003ead1fde9\u003c/code\u003e\u003c/a\u003e build-sys: Promote unused_code to an error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/c8cb250e8bc3f28bd69406b396bb8a92b40012c1\"\u003e\u003ccode\u003ec8cb250\u003c/code\u003e\u003c/a\u003e tests: Squash a warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/638c495a480d2a50099d55f445ece9e5f544b49d\"\u003e\u003ccode\u003e638c495\u003c/code\u003e\u003c/a\u003e ci: Add xtask infra + reverse dependency testing (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/435\"\u003e#435\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/32a9bbb26468cbdecbf73fe8eb249284d4a718ed\"\u003e\u003ccode\u003e32a9bbb\u003c/code\u003e\u003c/a\u003e tests: Add RandomReader to exercise partial-read resilience (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/436\"\u003e#436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/9c5df0bfd70d1b063516b90fca2cf2e0dbe8b758\"\u003e\u003ccode\u003e9c5df0b\u003c/code\u003e\u003c/a\u003e Fix GNU long-name extension stream corruption on validation error (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/88b1e3b0da65b0c5b9750d1a75516145488f4793\"\u003e\u003ccode\u003e88b1e3b\u003c/code\u003e\u003c/a\u003e Fix docs typo in header.rs (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/composefs/tar-rs/compare/0.4.44...0.4.45\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.43 to 0.3.47\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.47\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.46\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.45\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.44\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003etime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.47 [2026-02-05]\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eThe possibility of a stack exhaustion denial of service attack when parsing RFC 2822 has been\neliminated. Previously, it was possible to craft input that would cause unbounded recursion. Now,\nthe depth of the recursion is tracked, causing an error to be returned if it exceeds a reasonable\nlimit.\u003c/p\u003e\n\u003cp\u003eThis attack vector requires parsing user-provided input, with any type, using the RFC 2822 format.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCompatibility\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAttempting to format a value with a well-known format (i.e. RFC 3339, RFC 2822, or ISO 8601) will\nerror at compile time if the type being formatted does not provide sufficient information. This\nwould previously fail at runtime. Similarly, attempting to format a value with ISO 8601 that is\nonly configured for parsing (i.e. \u003ccode\u003eIso8601::PARSING\u003c/code\u003e) will error at compile time.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBuilder methods for format description modifiers, eliminating the need for verbose initialization\nwhen done manually.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edate!(2026-W01-2)\u003c/code\u003e is now supported. Previously, a space was required between \u003ccode\u003eW\u003c/code\u003e and \u003ccode\u003e01\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[end]\u003c/code\u003e now has a \u003ccode\u003etrailing_input\u003c/code\u003e modifier which can either be \u003ccode\u003eprohibit\u003c/code\u003e (the default) or\n\u003ccode\u003ediscard\u003c/code\u003e. When it is \u003ccode\u003ediscard\u003c/code\u003e, all remaining input is ignored. Note that if there are components\nafter \u003ccode\u003e[end]\u003c/code\u003e, they will still attempt to be parsed, likely resulting in an error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMore performance gains when parsing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIf manually formatting a value, the number of bytes written was one short for some components.\nThis has been fixed such that the number of bytes written is always correct.\u003c/li\u003e\n\u003cli\u003eThe possibility of integer overflow when parsing an owned format description has been effectively\neliminated. This would previously wrap when overflow checks were disabled. Instead of storing the\ndepth as \u003ccode\u003eu8\u003c/code\u003e, it is stored as \u003ccode\u003eu32\u003c/code\u003e. This would require multiple gigabytes of nested input to\noverflow, at which point we've got other problems and trivial mitigations are available by\ndownstream users.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.46 [2026-01-23]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAll possible panics are now documented for the relevant methods.\u003c/li\u003e\n\u003cli\u003eThe need to use \u003ccode\u003e#[serde(default)]\u003c/code\u003e when using custom \u003ccode\u003eserde\u003c/code\u003e formats is documented. This applies\nonly when deserializing an \u003ccode\u003eOption\u0026lt;T\u0026gt;\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDuration::nanoseconds_i128\u003c/code\u003e has been made public, mirroring\n\u003ccode\u003estd::time::Duration::from_nanos_u128\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/d5144cd2874862d46466c900910cd8577d066019\"\u003e\u003ccode\u003ed5144cd\u003c/code\u003e\u003c/a\u003e v0.3.47 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/f6206b050fd54817d8872834b4d61f605570e89b\"\u003e\u003ccode\u003ef6206b0\u003c/code\u003e\u003c/a\u003e Guard against integer overflow in release mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/1c63dc7985b8fa26bd8c689423cc56b7a03841ee\"\u003e\u003ccode\u003e1c63dc7\u003c/code\u003e\u003c/a\u003e Avoid denial of service when parsing Rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/5940df6e72efb63d246ca1ca59a0f836ad32ad8a\"\u003e\u003ccode\u003e5940df6\u003c/code\u003e\u003c/a\u003e Add builder methods to avoid verbose construction\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/00881a4da1bc5a6cb6313052e5017dbd7daa40f0\"\u003e\u003ccode\u003e00881a4\u003c/code\u003e\u003c/a\u003e Manually format macros everywhere\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/bb723b6d826e46c174d75cd08987061984b0ceb7\"\u003e\u003ccode\u003ebb723b6\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003etrailing_input\u003c/code\u003e modifier to \u003ccode\u003eend\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/31c4f8e0b56e6ae24fe0d6ef0e492b6741dda783\"\u003e\u003ccode\u003e31c4f8e\u003c/code\u003e\u003c/a\u003e Permit \u003ccode\u003eW12\u003c/code\u003e in \u003ccode\u003edate!\u003c/code\u003e macro\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/490a17bf306576850f33a86d3ca95d96db7b1dcd\"\u003e\u003ccode\u003e490a17b\u003c/code\u003e\u003c/a\u003e Mark error paths in well-known formats as cold\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6cb1896a600be1538ecfab8f233fe9cfe9fa8951\"\u003e\u003ccode\u003e6cb1896\u003c/code\u003e\u003c/a\u003e Optimize \u003ccode\u003eRfc2822\u003c/code\u003e parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6d264d59c25e3da0453c3defebf4640b0086a006\"\u003e\u003ccode\u003e6d264d5\u003c/code\u003e\u003c/a\u003e Remove erroneous \u003ccode\u003e#[inline(never)]\u003c/code\u003e attributes\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/time-rs/time/compare/v0.3.43...v0.3.47\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `wasmtime` from 35.0.0 to 36.0.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bytecodealliance/wasmtime/releases\"\u003ewasmtime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev36.0.8\u003c/h2\u003e\n\u003ch2\u003e36.0.8\u003c/h2\u003e\n\u003cp\u003eReleased 2026-04-30.\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePanic when allocating a table exceeding the size of the host's address space.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-p8xm-42r7-89xg\"\u003eGHSA-p8xm-42r7-89xg\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev36.0.7\u003c/h2\u003e\n\u003ch2\u003e36.0.7\u003c/h2\u003e\n\u003cp\u003eReleased 2026-04-09.\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eMiscompiled guest heap access enables sandbox escape on aarch64 Cranelift.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-jhxm-h53p-jm7w\"\u003eGHSA-jhxm-h53p-jm7w\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eWasmtime with Winch compiler backend may allow a sandbox-escaping memory\naccess.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-xx5w-cvp6-jv83\"\u003eGHSA-xx5w-cvp6-jv83\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eOut-of-bounds write or crash when transcoding component model strings.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-394w-hwhg-8vgm\"\u003eGHSA-394w-hwhg-8vgm\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eHost panic when Winch compiler executes \u003ccode\u003etable.fill\u003c/code\u003e.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-q49f-xg75-m9xw\"\u003eGHSA-q49f-xg75-m9xw\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eWasmtime segfault or unused out-of-sandbox load with \u003ccode\u003ef64x2.splat\u003c/code\u003e operator\non x86-64.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-qqfj-4vcm-26hv\"\u003eGHSA-qqfj-4vcm-26hv\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImproperly masked return value from \u003ccode\u003etable.grow\u003c/code\u003e with Winch compiler backend.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-f984-pcp8-v2p7\"\u003eGHSA-f984-pcp8-v2p7\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ePanic when transcoding misaligned utf-16 strings.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-jxhv-7h78-9775\"\u003eGHSA-jxhv-7h78-9775\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ePanic when lifting \u003ccode\u003eflags\u003c/code\u003e component value.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-m758-wjhj-p3jq\"\u003eGHSA-m758-wjhj-p3jq\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eHeap OOB read in component model UTF-16 to latin1+utf16 string transcoding.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-hx6p-xpx3-jvvv\"\u003eGHSA-hx6p-xpx3-jvvv\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eData leakage between pooling allocator instances.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-6wgr-89rj-399p\"\u003eGHSA-6wgr-89rj-399p\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eHost data leakage with 64-bit tables and Winch.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bytecodealliance/wasmtime/blob/v36.0.8/RELEASES.md\"\u003ewasmtime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e36.0.8\u003c/h2\u003e\n\u003cp\u003eReleased 2026-04-30.\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePanic when allocating a table exceeding the size of the host's address space.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-p8xm-42r7-89xg\"\u003eGHSA-p8xm-42r7-89xg\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003ch2\u003e36.0.7\u003c/h2\u003e\n\u003cp\u003eReleased 2026-04-09.\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eMiscompiled guest heap access enables sandbox escape on aarch64 Cranelift.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-jhxm-h53p-jm7w\"\u003eGHSA-jhxm-h53p-jm7w\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eWasmtime with Winch compiler backend may allow a sandbox-escaping memory\naccess.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-xx5w-cvp6-jv83\"\u003eGHSA-xx5w-cvp6-jv83\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eOut-of-bounds write or crash when transcoding component model strings.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-394w-hwhg-8vgm\"\u003eGHSA-394w-hwhg-8vgm\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eHost panic when Winch compiler executes \u003ccode\u003etable.fill\u003c/code\u003e.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-q49f-xg75-m9xw\"\u003eGHSA-q49f-xg75-m9xw\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eWasmtime segfault or unused out-of-sandbox load with \u003ccode\u003ef64x2.splat\u003c/code\u003e operator\non x86-64.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-qqfj-4vcm-26hv\"\u003eGHSA-qqfj-4vcm-26hv\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImproperly masked return value from \u003ccode\u003etable.grow\u003c/code\u003e with Winch compiler backend.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-f984-pcp8-v2p7\"\u003eGHSA-f984-pcp8-v2p7\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ePanic when transcoding misaligned utf-16 strings.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-jxhv-7h78-9775\"\u003eGHSA-jxhv-7h78-9775\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ePanic when lifting \u003ccode\u003eflags\u003c/code\u003e component value.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-m758-wjhj-p3jq\"\u003eGHSA-m758-wjhj-p3jq\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eHeap OOB read in component model UTF-16 to latin1+utf16 string transcoding.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-hx6p-xpx3-jvvv\"\u003eGHSA-hx6p-xpx3-jvvv\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eData leakage between pooling allocator instances.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-6wgr-89rj-399p\"\u003eGHSA-6wgr-89rj-399p\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eHost data leakage with 64-bit tables and Winch.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/wasmtime/commit/332e8ad2374e78adba1127f725d6603a4a5f96f3\"\u003e\u003ccode\u003e332e8ad\u003c/code\u003e\u003c/a\u003e Release Wasmtime 36.0.8 (\u003ca href=\"https://redirect.github.com/bytecodealliance/wasmtime/issues/13239\"\u003e#13239\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/wasmtime/commit/82baadae5f71f27f1d32090349316d27e8a5a9e1\"\u003e\u003ccode\u003e82baada\u003c/code\u003e\u003c/a\u003e Fix panicking overflow when calculating table sizes (\u003ca href=\"https://redirect.github.com/bytecodealliance/wasmtime/issues/13242\"\u003e#13242\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/wasmtime/commit/09539085b9b514b65d5c51e2905dc38f6eb414b9\"\u003e\u003ccode\u003e0953908\u003c/code\u003e\u003c/a\u003e Release Wasmtime 36.0.7 (\u003ca href=\"https://redirect.github.com/bytecodealliance/wasmtime/issues/12999\"\u003e#12999\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/wasmtime/commit/7c9130b33caa65015b17b275831be25e4fdcfe7d\"\u003e\u003ccode\u003e7c9130b\u003c/code\u003e\u003c/a\u003e [36.0.x] Combined backports for a 36.0.7 release (\u003ca href=\"https://redirect.github.com/bytecodealliance/wasmtime/issues/13003\"\u003e#13003\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/wasmtime/commit/f2054e0911f55af50686bee4da39d15308e14aec\"\u003e\u003ccode\u003ef2054e0\u003c/code\u003e\u003c/a\u003e Release Wasmtime 36.0.6 (\u003ca href=\"https://redirect.github.com/bytecodealliance/wasmtime/issues/12656\"\u003e#12656\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/wasmtime/commit/48b427bf000cfef29a101e543d5db42cde59ad53\"\u003e\u003ccode\u003e48b427b\u003c/code\u003e\u003c/a\u003e [36.0.x] Backport fixes for security advisories (\u003ca href=\"https://redirect.github.com/bytecodealliance/wasmtime/issues/12648\"\u003e#12648\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/wasmtime/commit/06ef14387760e52371fb68d4b30baf22fd576075\"\u003e\u003ccode\u003e06ef143\u003c/code\u003e\u003c/a\u003e Release Wasmtime 36.0.5 (\u003ca href=\"https://redirect.github.com/bytecodealliance/wasmtime/issues/12432\"\u003e#12432\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/wasmtime/commit/ac92d9bb729ad3a6d93f0724c4c33a0c4a9c0227\"\u003e\u003ccode\u003eac92d9b\u003c/code\u003e\u003c/a\u003e [36.0] Backport Cranelift: x64: fix incorrect load-sinking in \u003ccode\u003ecopysign\u003c/code\u003e oper...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/wasmtime/commit/0489f914c321e314edb4434bf94ffb3f85c5d656\"\u003e\u003ccode\u003e0489f91\u003c/code\u003e\u003c/a\u003e Release Wasmtime 36.0.4 (\u003ca href=\"https://redirect.github.com/bytecodealliance/wasmtime/issues/12348\"\u003e#12348\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/wasmtime/commit/5c1a5f65ad3b856dbffca3330e7d2a66d05de2ba\"\u003e\u003ccode\u003e5c1a5f6\u003c/code\u003e\u003c/a\u003e Cranelift: x64: fix user-controlled recursion in cmp emission. (\u003ca href=\"https://redirect.github.com/bytecodealliance/wasmtime/issues/12333\"\u003e#12333\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/bytecodealliance/wasmtime/issues/12338\"\u003e#12338\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bytecodealliance/wasmtime/compare/v35.0.0...v36.0.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lz4_flex` from 0.11.5 to 0.11.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/PSeitz/lz4_flex/blob/main/CHANGELOG.md\"\u003elz4_flex's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e0.11.6 (2026-03-14)\u003c/h1\u003e\n\u003ch3\u003eSecurity Fix\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix handling of invalid match offsets during decompression \u003ca href=\"https://github.com/PSeitz/lz4_flex/commit/84cdafb\"\u003e#84cdafb\u003c/a\u003e (thanks \u003ca href=\"https://github.com/Marcono1234\"\u003e\u003ccode\u003e@​Marcono1234\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre\u003e\u003ccode\u003eInvalid match offsets (offset == 0) during decompression were not properly\nhandled, which could lead to invalid memory reads on untrusted input.\nUsers on 0.11.x should upgrade to 0.11.6.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/PSeitz/lz4_flex/commit/6460047c0ba18bf4e3331894c8db220bc724a439\"\u003e\u003ccode\u003e6460047\u003c/code\u003e\u003c/a\u003e bump version to 0.11.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/PSeitz/lz4_flex/commit/84cdafba1fb00313b6da8fd7b3cdeaf8ad07e11a\"\u003e\u003ccode\u003e84cdafb\u003c/code\u003e\u003c/a\u003e fix handling of invalid match offsets during decompression\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/pseitz/lz4_flex/compare/0.11.5...0.11.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls-webpki` from 0.103.4 to 0.103.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rustls/webpki/releases\"\u003erustls-webpki's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.103.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix reachable panic in parsing a CRL\u003c/strong\u003e. This was reported to us as \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-82j2-j2ch-gfr8\"\u003eGHSA-82j2-j2ch-gfr8\u003c/a\u003e. Users who don't use CRLs are not affected.\u003c/li\u003e\n\u003cli\u003eFor name constraints on URI names, we incorrectly processed excluded subtrees in a way which inverted the desired meaning. See \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/471\"\u003erustls/webpki#471\u003c/a\u003e. This was a case missing in the fix for \u003ca href=\"https://github.com/advisories/GHSA-965h-392x-2mh5\"\u003ehttps://github.com/advisories/GHSA-965h-392x-2mh5\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eActually fail closed for URI matching against excluded subtrees by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/473\"\u003erustls/webpki#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.13 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/474\"\u003erustls/webpki#474\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.12\u003c/h2\u003e\n\u003cp\u003eThis release fixes two bugs in name constraint enforcement:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-965h-392x-2mh5\u003c/strong\u003e: name constraints for URI names were ignored and therefore accepted. URI name constraints are now rejected unconditionally. Note this library does not provide an API for asserting URI names, and URI name constraints are otherwise not implemented.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-xgp8-3hg3-c2mh\u003c/strong\u003e: permitted subtree name constraints for DNS names were accepted for certificates asserting a wildcard name. This was incorrect because, given a name constraint of \u003ccode\u003eaccept.example.com\u003c/code\u003e, \u003ccode\u003e*.example.com\u003c/code\u003e could feasibly allow a name of \u003ccode\u003ereject.example.com\u003c/code\u003e which is outside the constraint. This is very similar to \u003ca href=\"https://go.dev/issue/76442\"\u003eCVE-2025-61727\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSince name constraints are restrictions on otherwise properly-issued certificates, these bugs are reachable only after signature verification and require misissuance to exploit.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrepare 0.103.12 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/470\"\u003erustls/webpki#470\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.11\u003c/h2\u003e\n\u003cp\u003eIn response to \u003ca href=\"https://redirect.github.com/rustls/webpki/issues/464\"\u003e#464\u003c/a\u003e, we've slightly relaxed requirements for \u003ccode\u003eanchor_from_trust_cert()\u003c/code\u003e to ignore unknown extensions even if they're marked as critical. This only affects parsing a \u003ccode\u003eTrustAnchor\u003c/code\u003e from DER, for which most extensions are ignored anyway.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport parsing trust anchors with unknown critical extensions to 0.103 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/466\"\u003erustls/webpki#466\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.103.10\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eCorrect selection of candidate CRLs by Distribution Point and Issuing Distribution Point\u003c/strong\u003e. If a certificate had more than one \u003ccode\u003edistributionPoint\u003c/code\u003e, then only the first \u003ccode\u003edistributionPoint\u003c/code\u003e would be considered against each CRL's \u003ccode\u003eIssuingDistributionPoint\u003c/code\u003e \u003ccode\u003edistributionPoint\u003c/code\u003e, and then the certificate's subsequent \u003ccode\u003edistributionPoint\u003c/code\u003es would be ignored.\u003c/p\u003e\n\u003cp\u003eThe impact was that correctly provided CRLs would not be consulted to check revocation. With \u003ccode\u003eUnknownStatusPolicy::Deny\u003c/code\u003e (the default) this would lead to incorrect but safe \u003ccode\u003eError::UnknownRevocationStatus\u003c/code\u003e. With \u003ccode\u003eUnknownStatusPolicy::Allow\u003c/code\u003e this would lead to inappropriate acceptance of revoked certificates.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is thought to be of limited impact. This is because both the certificate and CRL are signed -- an attacker would need to compromise a trusted issuing authority to trigger this bug.  An attacker with such capabilities could likely bypass revocation checking through other more impactful means (such as publishing a valid, empty CRL.)\u003c/p\u003e\n\u003cp\u003eMore likely, this bug would be latent in normal use, and an attacker could leverage faulty revocation checking to continue using a revoked credential.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is identified by \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-pwjx-qhcg-rvj4\"\u003eGHSA-pwjx-qhcg-rvj4\u003c/a\u003e. Thank you to \u003ca href=\"https://github.com/1seal\"\u003e\u003ccode\u003e@​1seal\u003c/code\u003e\u003c/a\u003e for the report.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFreshen up rel-0.103 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/455\"\u003erustls/webpki#455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.10 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/458\"\u003erustls/webpki#458\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2879b2ce7a476181ac3050f73fe0835f04728e86\"\u003e\u003ccode\u003e2879b2c\u003c/code\u003e\u003c/a\u003e Prepare 0.103.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2c49773d823f48c87db30db7a66c25993c847007\"\u003e\u003ccode\u003e2c49773\u003c/code\u003e\u003c/a\u003e Improve tests for padding of \u003ccode\u003eBitStringFlags\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/4e3c0b393a7bfb9cbe6dcdc8309cbadf8ee00c51\"\u003e\u003ccode\u003e4e3c0b3\u003c/code\u003e\u003c/a\u003e Correct validation of BIT STRING constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/39c91d2525a542a7f651a1a62c3462e8115cc39e\"\u003e\u003ccode\u003e39c91d2\u003c/code\u003e\u003c/a\u003e Actually fail closed for URI matching against excluded subtrees\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/27131d476e2b68a537e629d6d012bef8dad6efd3\"\u003e\u003ccode\u003e27131d4\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/6ecb8769cde2246e761e058709421c14a7dee6b1\"\u003e\u003ccode\u003e6ecb876\u003c/code\u003e\u003c/a\u003e Clean up stuttery enum variant names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/318b3e6e03ca2bc21600ca6bb0d0c6439b9e6aeb\"\u003e\u003ccode\u003e318b3e6\u003c/code\u003e\u003c/a\u003e Ignore wildcard labels when matching name constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/12196229a327d3d670798688254bd3ea24aba24b\"\u003e\u003ccode\u003e1219622\u003c/code\u003e\u003c/a\u003e Rewrite constraint matching to avoid permissive catch-all branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/57bc62ce538c2d0d31d44b3eb8c58e6a0a764b47\"\u003e\u003ccode\u003e57bc62c\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/d0fa01ee0a76b7585c13ec43de5854955146ffef\"\u003e\u003ccode\u003ed0fa01e\u003c/code\u003e\u003c/a\u003e Allow parsing trust anchors with unknown criticial extensions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.4...v/0.103.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `aws-lc-sys` from 0.30.0 to 0.41.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-lc-rs/commit/2201001603bde2dbe326ba47ad77c43a1b29c47c\"\u003e\u003ccode\u003e2201001\u003c/code\u003e\u003c/a\u003e Fix rustfmt (\u003ca href=\"https://redirect.github.com/aws/aws-lc-rs/issues/1123\"\u003e#1123\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-lc-rs/commit/1ed08baf0bd08df02200bee97c004bff1770dcae\"\u003e\u003ccode\u003e1ed08ba\u003c/code\u003e\u003c/a\u003e Add single DES support and rename legacy-3des feature to legacy-des (\u003ca href=\"https://redirect.github.com/aws/aws-lc-rs/issues/1122\"\u003e#1122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-lc-rs/commit/889047e9e90190a0382648e5da5fbe7f024f6296\"\u003e\u003ccode\u003e889047e\u003c/code\u003e\u003c/a\u003e Prepare aws-lc-rs v1.17.0 (\u003ca href=\"https://redirect.github.com/aws/aws-lc-rs/issues/1121\"\u003e#1121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-lc-rs/commit/4fdf6722e2669368af1a03a34b2eff60f0da5883\"\u003e\u003ccode\u003e4fdf672\u003c/code\u003e\u003c/a\u003e fix: support building with MinGW on Windows 7 (\u003ca href=\"https://redirect.github.com/aws/aws-lc-rs/issues/1120\"\u003e#1120\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-lc-rs/commit/1cbe889cafb9841fef2f0c9c9e6c13379975d4de\"\u003e\u003ccode\u003e1cbe889\u003c/code\u003e\u003c/a\u003e Adds \u003ccode\u003eLessSafeKey::open_in_place_separate_tag\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/aws/aws-lc-rs/issues/1116\"\u003e#1116\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-lc-rs/commit/ce8bccc4f6d4b7b4e6c0594201f11106cca601ff\"\u003e\u003ccode\u003ece8bccc\u003c/code\u003e\u003c/a\u003e Bump actions/dependency-review-action from 4 to 5 (\u003ca href=\"https://redirect.github.com/aws/aws-lc-rs/issues/1118\"\u003e#1118\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-lc-rs/commit/aac6ebd377ad769c4bef3171299dd6cbb611a77d\"\u003e\u003ccode\u003eaac6ebd\u003c/code\u003e\u003c/a\u003e Prepare aws lc sys 0.41.0 (\u003ca href=\"https://redirect.github.com/aws/aws-lc-rs/issues/1117\"\u003e#1117\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-lc-rs/commit/3cb6cfd7cd6f2c494daa192ef4bf798d36944bac\"\u003e\u003ccode\u003e3cb6cfd\u003c/code\u003e\u003c/a\u003e Add AsDer and ParsedPublicKey conversion for RSA PublicKeyComponents (\u003ca href=\"https://redirect.github.com/aws/aws-lc-rs/issues/1105\"\u003e#1105\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-lc-rs/commit/54a222f41a5d0e4f84f3530e6727b6f2a68f4426\"\u003e\u003ccode\u003e54a222f\u003c/code\u003e\u003c/a\u003e Fix clippy warnings: inline format args, remove redundant borrows, use assert...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-lc-rs/commit/c9c9bc6e291671692c6f0550517d9636a9c746af\"\u003e\u003ccode\u003ec9c9bc6\u003c/code\u003e\u003c/a\u003e Add opt-in 2TDEA and 3TDEA cipher support behind a \u003ccode\u003elegacy-3des\u003c/code\u003e feature (\u003ca href=\"https://redirect.github.com/aws/aws-lc-rs/issues/1109\"\u003e#1109\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-lc-rs/compare/aws-lc-sys/v0.30.0...aws-lc-sys/v0.41.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `oneshot` from 0.1.11 to 0.1.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/faern/oneshot/releases\"\u003eoneshot's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.1.13\u003c/h2\u003e\n\u003ch2\u003e[0.1.13] - 2026-01-26\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix documentation building on docs.rs by not using removed \u003ccode\u003edoc_auto_cfg\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/faern/oneshot/blob/main/CHANGELOG.md\"\u003eoneshot's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.1.13] - 2026-01-26\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix documentation building on docs.rs by not using removed \u003ccode\u003edoc_auto_cfg\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.1.12] - 2026-01-25\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix race condition that could lead to use-after-free if the \u003ccode\u003eReceiver\u003c/code\u003e was polled asynchronously,\nbut then dropped before completion. \u003ca href=\"https://redirect.github.com/faern/oneshot/pull/74\"\u003efaern/oneshot#74\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix race conditions/UB around atomic memory orderings. These were found by running tests under\nmiri. \u003ca href=\"https://redirect.github.com/faern/oneshot/pull/72\"\u003efaern/oneshot#72\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/a6a03981ec4d9aa3abb4445f0b90919d08a746ad\"\u003e\u003ccode\u003ea6a0398\u003c/code\u003e\u003c/a\u003e Bump version to 0.1.13 and fix changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/7615d9e008a36396f84202b23f4a5caa36722e22\"\u003e\u003ccode\u003e7615d9e\u003c/code\u003e\u003c/a\u003e Stop using removed doc_auto_cfg feature when building for docs.rs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/537d5de4b6a8e1f2cb8224a2a7c91b851f0226d0\"\u003e\u003ccode\u003e537d5de\u003c/code\u003e\u003c/a\u003e Bump version to 0.1.12 and fix changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/9cc3153a7d1bd577644b04978f30f2761ebdeb44\"\u003e\u003ccode\u003e9cc3153\u003c/code\u003e\u003c/a\u003e Merge branch 'improve-start_recv_ref'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/cc3d6a2b962c87012448af83644ee13b300cebaa\"\u003e\u003ccode\u003ecc3d6a2\u003c/code\u003e\u003c/a\u003e Improve start_recv_ref to be more like regular recv method\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/78c74769797a404100c675cd11ff685e91e871f8\"\u003e\u003ccode\u003e78c7476\u003c/code\u003e\u003c/a\u003e Merge branch 'update-documentation'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/38d7f6f2cd3b1e8676ee7761c08f962e517cfdf1\"\u003e\u003ccode\u003e38d7f6f\u003c/code\u003e\u003c/a\u003e Add clarifying documentation on sender observing RECEIVING state\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/21e03100742110fe61b87c0350dafa2254c70d11\"\u003e\u003ccode\u003e21e0310\u003c/code\u003e\u003c/a\u003e Synchronize readme with crate documentation in lib.rs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/def74fc6fe2f7aa9dccb67214896e2bd0173baa1\"\u003e\u003ccode\u003edef74fc\u003c/code\u003e\u003c/a\u003e Fix spelling and grammar errors in documentation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/70031a4282ac78ccb412bdb9163c8f185e13a519\"\u003e\u003ccode\u003e70031a4\u003c/code\u003e\u003c/a\u003e Add documentation about how send and receive are synchronized\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/faern/oneshot/compare/v0.1.11...v0.1.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `quinn-proto` from 0.11.12 to 0.11.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quinn-rs/quinn/releases\"\u003equinn-proto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003equinn-proto 0.11.14\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jxs\"\u003e\u003ccode\u003e@​jxs\u003c/code\u003e\u003c/a\u003e reported a denial of service issue in quinn-proto 5 days ago:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\"\u003ehttps://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eWe coordinated with them to release this version to patch the issue. Unfortunately the maintainers missed these issues during code review and we did not have enough fuzzing coverage -- we regret the oversight and have added an additional fuzzing target.\u003c/p\u003e\n\u003cp\u003eOrganizations that want to participate in coordinated disclosure can contact us privately to discuss terms.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix over-permissive proto dependency edge by \u003ca href=\"https://github.com/Ralith\"\u003e\u003ccode\u003e@​Ralith\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2385\"\u003equinn-rs/quinn#2385\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e0.11.x: avoid unwrapping VarInt decoding during parameter parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2559\"\u003equinn-rs/quinn#2559\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/2c315aa7f9c2a6c1db87f8f51f40623a427c78fd\"\u003e\u003ccode\u003e2c315aa\u003c/code\u003e\u003c/a\u003e proto: bump version to 0.11.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8ad47f431e7deb82c08b09c2e33ef85aa88fd212\"\u003e\u003ccode\u003e8ad47f4\u003c/code\u003e\u003c/a\u003e Use newer rustls-pki-types PEM parser API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c81c0289abe30d8437ccbf9b6304e2bc9c707cea\"\u003e\u003ccode\u003ec81c028\u003c/code\u003e\u003c/a\u003e ci: fix workflow syntax\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/0050172969f7e69e136c433181330da7790d8d73\"\u003e\u003ccode\u003e0050172\u003c/code\u003e\u003c/a\u003e ci: pin wasm-bindgen-cli version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8a6f82c58d1c565eab78f986e614223e6ed76a85\"\u003e\u003ccode\u003e8a6f82c\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/e52db4ad8df0f9720e7b0e32ecc0e48c9a93de0f\"\u003e\u003ccode\u003ee52db4a\u003c/code\u003e\u003c/a\u003e Apply suggestions from clippy 1.91\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/6df7275c582ca9b7225e0ccf9f9871a55eb73155\"\u003e\u003ccode\u003e6df7275\u003c/code\u003e\u003c/a\u003e chore: Fix \u003ccode\u003eunnecessary_unwrap\u003c/code\u003e clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c8eefa07e087b06d8f2b78ff262ce8ac952994f1\"\u003e\u003ccode\u003ec8eefa0\u003c/code\u003e\u003c/a\u003e proto: avoid unwrapping varint decoding during parameters parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/9723a977754c8662001b0fef97aab8f3ddf1df92\"\u003e\u003ccode\u003e9723a97\u003c/code\u003e\u003c/a\u003e fuzz: add fuzzing target for parsing transport parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/eaf0ef30252cef4acec21f150427e604cd4271c9\"\u003e\u003ccode\u003eeaf0ef3\u003c/code\u003e\u003c/a\u003e Fix over-permissive proto dependency edge (\u003ca href=\"https://redirect.github.com/quinn-rs/quinn/issues/2385\"\u003e#2385\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quinn-rs/quinn/compare/quinn-proto-0.11.12...quinn-proto-0.11.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rsa` from 0.9.8 to 0.9.10\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/RustCrypto/RSA/blob/v0.9.10/CHANGELOG.md\"\u003ersa's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.9.10 (2026-01-06)\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edo not panic on a prime being 1 when loading a secret key (\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/624\"\u003e#624\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/624\"\u003e#624\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/RustCrypto/RSA/pull/624\"\u003eRustCrypto/RSA#624\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.9.9 (2025-11-13)\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for cryptographic operations with larger keys (\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/594\"\u003e#594\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/594\"\u003e#594\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/RustCrypto/RSA/pull/594\"\u003eRustCrypto/RSA#594\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/da2af9a0ff814762957c428460e4098720f394a6\"\u003e\u003ccode\u003eda2af9a\u003c/code\u003e\u003c/a\u003e chore: release v0.9.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/2926c91bef7cb14a7ccd42220a698cf4b1b692f7\"\u003e\u003ccode\u003e2926c91\u003c/code\u003e\u003c/a\u003e fix: do not panic on a prime being 1 when loading a secret key (\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/624\"\u003e#624\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/488d2ad6090e54b5125dfeefeda53a1adb4b67c0\"\u003e\u003ccode\u003e488d2ad\u003c/code\u003e\u003c/a\u003e chore: release 0.9.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/c1f00a32c5ef97ca2bc121ee28b7ea907b6f936d\"\u003e\u003ccode\u003ec1f00a3\u003c/code\u003e\u003c/a\u003e Support for cryptographic operations with larger keys (\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/594\"\u003e#594\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/RustCrypto/RSA/compare/v0.9.8...v0.9.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.10.1 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca...\n\n_Description has been truncated_","html_url":"https://github.com/pantheon-systems/grafbase/pull/13","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/pantheon-systems%2Fgrafbase/issues/13","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/13/packages"},{"uuid":"4534066244","node_id":"PR_kwDOIQsw1s7f6Jco","number":1926,"state":"closed","title":"Bump the all-dependencies group with 60 updates","user":"dependabot[bot]","labels":["size/XXL","needs-ok-to-test","dependencies","rust"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-05-27T23:17:00.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-27T16:40:02.000Z","updated_at":"2026-05-27T23:17:04.000Z","time_to_close":23818,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"all-dependencies","update_count":60,"packages":[{"name":"boring","old_version":"4.16.0","new_version":"4.22.0","repository_url":"https://github.com/cloudflare/boring"},{"name":"boring-sys","old_version":"4.16.0","new_version":"4.22.0","repository_url":"https://github.com/cloudflare/boring"},{"name":"rustls-openssl","old_version":"0.2.1","new_version":"0.3.1","repository_url":"https://github.com/tofay/rustls-openssl"},{"name":"openssl","old_version":"0.10.72","new_version":"0.10.80","repository_url":"https://github.com/rust-openssl/rust-openssl"},{"name":"anyhow","old_version":"1.0.97","new_version":"1.0.102","repository_url":"https://github.com/dtolnay/anyhow"},{"name":"async-trait","old_version":"0.1.88","new_version":"0.1.89","repository_url":"https://github.com/dtolnay/async-trait"},{"name":"bytes","old_version":"1.10.1","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"chrono","old_version":"0.4.40","new_version":"0.4.44","repository_url":"https://github.com/chronotope/chrono"},{"name":"duration-str","old_version":"0.17.0","new_version":"0.21.0","repository_url":"https://github.com/baoyachi/duration-str"},{"name":"futures","old_version":"0.3.31","new_version":"0.3.32","repository_url":"https://github.com/rust-lang/futures-rs"},{"name":"futures-core","old_version":"0.3.31","new_version":"0.3.32","repository_url":"https://github.com/rust-lang/futures-rs"},{"name":"futures-util","old_version":"0.3.31","new_version":"0.3.32","repository_url":"https://github.com/rust-lang/futures-rs"},{"name":"jemalloc_pprof","old_version":"0.6.0","new_version":"0.8.2","repository_url":"https://github.com/polarsignals/rust-jemalloc-pprof"},{"name":"hashbrown","old_version":"0.15.2","new_version":"0.17.1","repository_url":"https://github.com/rust-lang/hashbrown"},{"name":"hickory-client","old_version":"0.25.1","new_version":"0.25.2","repository_url":"https://github.com/hickory-dns/hickory-dns"},{"name":"hickory-proto","old_version":"0.25.1","new_version":"0.25.2","repository_url":"https://github.com/hickory-dns/hickory-dns"},{"name":"hickory-resolver","old_version":"0.25.1","new_version":"0.25.2","repository_url":"https://github.com/hickory-dns/hickory-dns"},{"name":"hickory-server","old_version":"0.25.1","new_version":"0.25.2","repository_url":"https://github.com/hickory-dns/hickory-dns"},{"name":"hyper","old_version":"1.6.0","new_version":"1.10.0","repository_url":"https://github.com/hyperium/hyper"},{"name":"hyper-rustls","old_version":"0.27.5","new_version":"0.27.9","repository_url":"https://github.com/rustls/hyper-rustls"},{"name":"hyper-util","old_version":"0.1.11","new_version":"0.1.20","repository_url":"https://github.com/hyperium/hyper-util"},{"name":"ipnet","old_version":"2.11.0","new_version":"2.12.0","repository_url":"https://github.com/krisprice/ipnet"},{"name":"libc","old_version":"0.2.171","new_version":"0.2.186","repository_url":"https://github.com/rust-lang/libc"},{"name":"log","old_version":"0.4.27","new_version":"0.4.30","repository_url":"https://github.com/rust-lang/log"},{"name":"nix","old_version":"0.29.0","new_version":"0.31.3","repository_url":"https://github.com/nix-rust/nix"},{"name":"once_cell","old_version":"1.21.3","new_version":"1.21.4","repository_url":"https://github.com/matklad/once_cell"},{"name":"num_cpus","old_version":"1.16.0","new_version":"1.17.0","repository_url":"https://github.com/seanmonstar/num_cpus"},{"name":"prometheus-client","old_version":"0.23.1","new_version":"0.24.1","repository_url":"https://github.com/prometheus/client_rust"},{"name":"prost","old_version":"0.13.5","new_version":"0.14.3","repository_url":"https://github.com/tokio-rs/prost"},{"name":"prost-types","old_version":"0.13.5","new_version":"0.14.3","repository_url":"https://github.com/tokio-rs/prost"},{"name":"rand","old_version":"0.9.0","new_version":"0.9.4","repository_url":"https://github.com/rust-random/rand"},{"name":"rcgen","old_version":"0.13.3","new_version":"0.14.7","repository_url":"https://github.com/rustls/rcgen"},{"name":"rustls","old_version":"0.23.26","new_version":"0.23.28","repository_url":"https://github.com/rustls/rustls"},{"name":"rustls-native-certs","old_version":"0.8.1","new_version":"0.8.3","repository_url":"https://github.com/rustls/rustls-native-certs"},{"name":"serde","old_version":"1.0.219","new_version":"1.0.228","repository_url":"https://github.com/serde-rs/serde"},{"name":"serde_json","old_version":"1.0.140","new_version":"1.0.150","repository_url":"https://github.com/serde-rs/json"},{"name":"socket2","old_version":"0.5.9","new_version":"0.6.3","repository_url":"https://github.com/rust-lang/socket2"},{"name":"thiserror","old_version":"2.0.12","new_version":"2.0.18","repository_url":"https://github.com/dtolnay/thiserror"},{"name":"tls-listener","old_version":"0.11.0","new_version":"0.11.2","repository_url":"https://github.com/tmccombs/tls-listener"},{"name":"tokio","old_version":"1.44.2","new_version":"1.52.3","repository_url":"https://github.com/tokio-rs/tokio"},{"name":"tokio-rustls","old_version":"0.26.2","new_version":"0.26.4","repository_url":"https://github.com/rustls/tokio-rustls"},{"name":"tokio-stream","old_version":"0.1.17","new_version":"0.1.18","repository_url":"https://github.com/tokio-rs/tokio"},{"name":"tonic","old_version":"0.13.0","new_version":"0.13.1","repository_url":"https://github.com/hyperium/tonic"},{"name":"tower","old_version":"0.5.2","new_version":"0.5.3","repository_url":"https://github.com/tower-rs/tower"},{"name":"tracing","old_version":"0.1.41","new_version":"0.1.44","repository_url":"https://github.com/tokio-rs/tracing"},{"name":"tracing-subscriber","old_version":"0.3.19","new_version":"0.3.23","repository_url":"https://github.com/tokio-rs/tracing"},{"name":"x509-parser","old_version":"0.17.0","new_version":"0.18.1","repository_url":"https://github.com/rusticata/x509-parser"},{"name":"pin-project-lite","old_version":"0.2.16","new_version":"0.2.17","repository_url":"https://github.com/taiki-e/pin-project-lite"},{"name":"pingora-pool","old_version":"0.4.0","new_version":"0.8.0","repository_url":"https://github.com/cloudflare/pingora"},{"name":"h2","old_version":"0.4.8","new_version":"0.4.14","repository_url":"https://github.com/hyperium/h2"},{"name":"http","old_version":"1.3.1","new_version":"1.4.1","repository_url":"https://github.com/hyperium/http"},{"name":"tracing-core","old_version":"0.1.33","new_version":"0.1.36","repository_url":"https://github.com/tokio-rs/tracing"},{"name":"tracing-appender","old_version":"0.2.3","new_version":"0.2.5","repository_url":"https://github.com/tokio-rs/tracing"},{"name":"tokio-util","old_version":"0.7.14","new_version":"0.7.18","repository_url":"https://github.com/tokio-rs/tokio"},{"name":"netns-rs","old_version":"0.1.0","new_version":"0.2.0","repository_url":"https://github.com/wllenyj/netns-rs"},{"name":"pprof","old_version":"0.14.0","new_version":"0.15.0","repository_url":"https://github.com/tikv/pprof-rs"},{"name":"local-ip-address","old_version":"0.6.3","new_version":"0.6.13","repository_url":"https://github.com/LeoBorai/local-ip-address"},{"name":"ctor","old_version":"0.4.1","new_version":"1.0.6","repository_url":"https://github.com/mmastrac/linktime"},{"name":"tonic-build","old_version":"0.13.0","new_version":"0.13.1","repository_url":"https://github.com/hyperium/tonic"},{"name":"prost-build","old_version":"0.13.5","new_version":"0.14.3","repository_url":"https://github.com/tokio-rs/prost"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the all-dependencies group with 60 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [boring](https://github.com/cloudflare/boring) | `4.16.0` | `4.22.0` |\n| [boring-sys](https://github.com/cloudflare/boring) | `4.16.0` | `4.22.0` |\n| [rustls-openssl](https://github.com/tofay/rustls-openssl) | `0.2.1` | `0.3.1` |\n| [openssl](https://github.com/rust-openssl/rust-openssl) | `0.10.72` | `0.10.80` |\n| [anyhow](https://github.com/dtolnay/anyhow) | `1.0.97` | `1.0.102` |\n| [async-trait](https://github.com/dtolnay/async-trait) | `0.1.88` | `0.1.89` |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.10.1` | `1.11.1` |\n| [chrono](https://github.com/chronotope/chrono) | `0.4.40` | `0.4.44` |\n| [duration-str](https://github.com/baoyachi/duration-str) | `0.17.0` | `0.21.0` |\n| [futures](https://github.com/rust-lang/futures-rs) | `0.3.31` | `0.3.32` |\n| [futures-core](https://github.com/rust-lang/futures-rs) | `0.3.31` | `0.3.32` |\n| [futures-util](https://github.com/rust-lang/futures-rs) | `0.3.31` | `0.3.32` |\n| [jemalloc_pprof](https://github.com/polarsignals/rust-jemalloc-pprof) | `0.6.0` | `0.8.2` |\n| [hashbrown](https://github.com/rust-lang/hashbrown) | `0.15.2` | `0.17.1` |\n| [hickory-client](https://github.com/hickory-dns/hickory-dns) | `0.25.1` | `0.25.2` |\n| [hickory-proto](https://github.com/hickory-dns/hickory-dns) | `0.25.1` | `0.25.2` |\n| [hickory-resolver](https://github.com/hickory-dns/hickory-dns) | `0.25.1` | `0.25.2` |\n| [hickory-server](https://github.com/hickory-dns/hickory-dns) | `0.25.1` | `0.25.2` |\n| [hyper](https://github.com/hyperium/hyper) | `1.6.0` | `1.10.0` |\n| [hyper-rustls](https://github.com/rustls/hyper-rustls) | `0.27.5` | `0.27.9` |\n| [hyper-util](https://github.com/hyperium/hyper-util) | `0.1.11` | `0.1.20` |\n| [ipnet](https://github.com/krisprice/ipnet) | `2.11.0` | `2.12.0` |\n| [libc](https://github.com/rust-lang/libc) | `0.2.171` | `0.2.186` |\n| [log](https://github.com/rust-lang/log) | `0.4.27` | `0.4.30` |\n| [nix](https://github.com/nix-rust/nix) | `0.29.0` | `0.31.3` |\n| [once_cell](https://github.com/matklad/once_cell) | `1.21.3` | `1.21.4` |\n| [num_cpus](https://github.com/seanmonstar/num_cpus) | `1.16.0` | `1.17.0` |\n| [prometheus-client](https://github.com/prometheus/client_rust) | `0.23.1` | `0.24.1` |\n| [prost](https://github.com/tokio-rs/prost) | `0.13.5` | `0.14.3` |\n| [prost-types](https://github.com/tokio-rs/prost) | `0.13.5` | `0.14.3` |\n| [rand](https://github.com/rust-random/rand) | `0.9.0` | `0.9.4` |\n| [rcgen](https://github.com/rustls/rcgen) | `0.13.3` | `0.14.7` |\n| [rustls](https://github.com/rustls/rustls) | `0.23.26` | `0.23.28` |\n| [rustls-native-certs](https://github.com/rustls/rustls-native-certs) | `0.8.1` | `0.8.3` |\n| [serde](https://github.com/serde-rs/serde) | `1.0.219` | `1.0.228` |\n| [serde_json](https://github.com/serde-rs/json) | `1.0.140` | `1.0.150` |\n| [socket2](https://github.com/rust-lang/socket2) | `0.5.9` | `0.6.3` |\n| [thiserror](https://github.com/dtolnay/thiserror) | `2.0.12` | `2.0.18` |\n| [tls-listener](https://github.com/tmccombs/tls-listener) | `0.11.0` | `0.11.2` |\n| [tokio](https://github.com/tokio-rs/tokio) | `1.44.2` | `1.52.3` |\n| [tokio-rustls](https://github.com/rustls/tokio-rustls) | `0.26.2` | `0.26.4` |\n| [tokio-stream](https://github.com/tokio-rs/tokio) | `0.1.17` | `0.1.18` |\n| [tonic](https://github.com/hyperium/tonic) | `0.13.0` | `0.13.1` |\n| [tower](https://github.com/tower-rs/tower) | `0.5.2` | `0.5.3` |\n| [tracing](https://github.com/tokio-rs/tracing) | `0.1.41` | `0.1.44` |\n| [tracing-subscriber](https://github.com/tokio-rs/tracing) | `0.3.19` | `0.3.23` |\n| [x509-parser](https://github.com/rusticata/x509-parser) | `0.17.0` | `0.18.1` |\n| [pin-project-lite](https://github.com/taiki-e/pin-project-lite) | `0.2.16` | `0.2.17` |\n| [pingora-pool](https://github.com/cloudflare/pingora) | `0.4.0` | `0.8.0` |\n| [h2](https://github.com/hyperium/h2) | `0.4.8` | `0.4.14` |\n| [http](https://github.com/hyperium/http) | `1.3.1` | `1.4.1` |\n| [tracing-core](https://github.com/tokio-rs/tracing) | `0.1.33` | `0.1.36` |\n| [tracing-appender](https://github.com/tokio-rs/tracing) | `0.2.3` | `0.2.5` |\n| [tokio-util](https://github.com/tokio-rs/tokio) | `0.7.14` | `0.7.18` |\n| [netns-rs](https://github.com/wllenyj/netns-rs) | `0.1.0` | `0.2.0` |\n| [pprof](https://github.com/tikv/pprof-rs) | `0.14.0` | `0.15.0` |\n| [local-ip-address](https://github.com/LeoBorai/local-ip-address) | `0.6.3` | `0.6.13` |\n| [ctor](https://github.com/mmastrac/linktime) | `0.4.1` | `1.0.6` |\n| [tonic-build](https://github.com/hyperium/tonic) | `0.13.0` | `0.13.1` |\n| [prost-build](https://github.com/tokio-rs/prost) | `0.13.5` | `0.14.3` |\n\nUpdates `boring` from 4.16.0 to 4.22.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/boring/releases\"\u003eboring's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.21.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecated APIs that were \u003ca href=\"https://github.com/cloudflare/boring/releases/tag/v5.0.0-alpha.1\"\u003eremoved in v5\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eFixed docs.rs build\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.21.0\u003c/h2\u003e\n\u003cp\u003eDeprecated APIs that were \u003ca href=\"https://github.com/cloudflare/boring/releases/tag/v5.0.0-alpha.1\"\u003eremoved in v5\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev4.20.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd a more reliable \u003ccode\u003eError::library_reason()\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix string data conversion in \u003ccode\u003eErrorStack::put()\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eCStr vs UTF-8 improvements in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/371\"\u003ecloudflare/boring#371\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix swapped host/target args and support TARGET_CC and CC_{target} in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/375\"\u003ecloudflare/boring#375\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable bindgen layout tests on all Rust versions 3116032a83a891f9495698bf0692ccc59ceef6e2\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/boring/compare/v4.19.0...v4.20.0\"\u003ehttps://github.com/cloudflare/boring/compare/v4.19.0...v4.20.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.19.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eError improvements by \u003ca href=\"https://github.com/kornelski\"\u003e\u003ccode\u003e@​kornelski\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/372\"\u003ecloudflare/boring#372\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd binding for X509_check_ip_asc by \u003ca href=\"https://github.com/evanrittenhouse\"\u003e\u003ccode\u003e@​evanrittenhouse\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/381\"\u003ecloudflare/boring#381\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/boring/compare/v4.18.0...v4.19.0\"\u003ehttps://github.com/cloudflare/boring/compare/v4.18.0...v4.19.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd set_verify_param by \u003ca href=\"https://github.com/semaj-cf\"\u003e\u003ccode\u003e@​semaj-cf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/357\"\u003ecloudflare/boring#357\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for X509_STORE_CTX_get0_untrusted by \u003ca href=\"https://github.com/semaj-cf\"\u003e\u003ccode\u003e@​semaj-cf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/356\"\u003ecloudflare/boring#356\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd X509VerifyParamRef::copy_from by \u003ca href=\"https://github.com/nox\"\u003e\u003ccode\u003e@​nox\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/361\"\u003ecloudflare/boring#361\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix X509VerifyContextRef::set_verify_param by \u003ca href=\"https://github.com/nox\"\u003e\u003ccode\u003e@​nox\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/358\"\u003ecloudflare/boring#358\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnsure we call X509_STORE_CTX_cleanup on error path too by \u003ca href=\"https://github.com/nox\"\u003e\u003ccode\u003e@​nox\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/360\"\u003ecloudflare/boring#360\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove X509StoreContext initialization API by \u003ca href=\"https://github.com/nox\"\u003e\u003ccode\u003e@​nox\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/359\"\u003ecloudflare/boring#359\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDon't unwrap when Result can be returned instead by \u003ca href=\"https://github.com/kornelski\"\u003e\u003ccode\u003e@​kornelski\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/367\"\u003ecloudflare/boring#367\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake X509Store shareable between contexts by \u003ca href=\"https://github.com/kornelski\"\u003e\u003ccode\u003e@​kornelski\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/366\"\u003ecloudflare/boring#366\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSprinkle #[must_use] by \u003ca href=\"https://github.com/kornelski\"\u003e\u003ccode\u003e@​kornelski\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/368\"\u003ecloudflare/boring#368\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose SSL_set1_groups to Efficiently Set Curves on SSL Session by \u003ca href=\"https://github.com/Justin-Kwan\"\u003e\u003ccode\u003e@​Justin-Kwan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/346\"\u003ecloudflare/boring#346\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade bindgen to v0.72.0 by \u003ca href=\"https://github.com/akonradi-signal\"\u003e\u003ccode\u003e@​akonradi-signal\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/369\"\u003ecloudflare/boring#369\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose PKey::raw_{private,public}_key by \u003ca href=\"https://github.com/jrose-signal\"\u003e\u003ccode\u003e@​jrose-signal\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/364\"\u003ecloudflare/boring#364\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDon't compile binaries for docs.rs by \u003ca href=\"https://github.com/kornelski\"\u003e\u003ccode\u003e@​kornelski\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/370\"\u003ecloudflare/boring#370\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove some comments referring to OpenSSL by \u003ca href=\"https://github.com/hcstern\"\u003e\u003ccode\u003e@​hcstern\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/374\"\u003ecloudflare/boring#374\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Justin-Kwan\"\u003e\u003ccode\u003e@​Justin-Kwan\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/346\"\u003ecloudflare/boring#346\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/akonradi-signal\"\u003e\u003ccode\u003e@​akonradi-signal\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/369\"\u003ecloudflare/boring#369\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hcstern\"\u003e\u003ccode\u003e@​hcstern\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/374\"\u003ecloudflare/boring#374\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/boring/compare/v4.17.0...v4.18.0\"\u003ehttps://github.com/cloudflare/boring/compare/v4.17.0...v4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eX509_STORE_CTX_get0_cert\u003c/code\u003e interface by \u003ca href=\"https://github.com/semaj-cf\"\u003e\u003ccode\u003e@​semaj-cf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/349\"\u003ecloudflare/boring#349\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/boring/blob/master/RELEASE_NOTES\"\u003eboring's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e5.1.0\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e2026-04-13 Add EVP_AEAD-based detached AEAD module\u003c/li\u003e\n\u003cli\u003e2026-04-13 Add generic PKey private key generation API\u003c/li\u003e\n\u003cli\u003e2026-04-13 Add TLS 1.2 PRF module and bindings\u003c/li\u003e\n\u003cli\u003e2026-03-25 Add used_hello_retry_request\u003c/li\u003e\n\u003cli\u003e2026-03-28 Prebuilt lib export option\u003c/li\u003e\n\u003cli\u003e2026-03-27 Display sys crate errors using cargo::error\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e5.0.2\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e2026-02-13 Re-add fips-precompiled for v4 compat\u003c/li\u003e\n\u003cli\u003e2026-02-12 Don't add build/ to non-FIPS pre-built path\u003c/li\u003e\n\u003cli\u003e2026-02-13 Expose load_verify_locations like rust-openssl\u003c/li\u003e\n\u003cli\u003e2026-02-12 Support static MSVC runtime\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e5.0.1\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e2026-02-03 Make SslCredential optional\u003c/li\u003e\n\u003cli\u003e2026-02-10 Make ML-KEM optional\u003c/li\u003e\n\u003cli\u003e2026-02-10 Don't always require all headers from all versions of BoringSSL\u003c/li\u003e\n\u003cli\u003e2026-02-10 Ensure we don't leave unit memory if generate_key fails\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e5.0.0\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e2025-12-19 Update vendored boring to a newer version (2023.11 to 2025.11)\u003c/li\u003e\n\u003cli\u003e2025-12-20 Rework RPK/SslMethod (c2f063cf4711f15b8b417b6926496fbf1c2a03ac)\u003c/li\u003e\n\u003cli\u003e2025-09-29 Remove \u003ccode\u003eSslCurve\u003c/code\u003e API\u003c/li\u003e\n\u003cli\u003e2025-09-30 Remove the \u0026quot;kx-*\u0026quot; features\u003c/li\u003e\n\u003cli\u003e2025-09-25 Remove legacy FIPS options (they're controlled via \u003ccode\u003eBORING_BSSL_\u003c/code\u003e env vars instead)\u003c/li\u003e\n\u003cli\u003e2026-01-05 Remove deprecated X509CheckFlags flag\u003c/li\u003e\n\u003cli\u003e2025-09-30 Remove \u0026quot;pq-experimental\u0026quot; Cargo feature, apply PQ patch by default + P256Kyber768Draft00\u003c/li\u003e\n\u003cli\u003e2026-01-05 Safe clone for X509Store\u003c/li\u003e\n\u003cli\u003e2025-03-08 Add set_ticket_key_callback (SSL_CTX_set_tlsext_ticket_key_cb)\u003c/li\u003e\n\u003cli\u003e2025-09-30 Add SslRef::curve_name()\u003c/li\u003e\n\u003cli\u003e2025-09-30 Expose a safe Rust interface for the session resumption callback\u003c/li\u003e\n\u003cli\u003e2026-01-05 Fix leaky set_ex_data() API\u003c/li\u003e\n\u003cli\u003e2025-12-12 Add boring specific api set_strict_cipher_list to SslContextBuilder\u003c/li\u003e\n\u003cli\u003e2025-11-20 Introduce SslCipherRef::protocol_id\u003c/li\u003e\n\u003cli\u003e2023-05-11 fix: BIO_set_retry_write when BIO_CTRL_FLUSH to allow writer returns WouldBlock on flush\u003c/li\u003e\n\u003cli\u003e2025-11-14 Remove blanket Eq from FFI types\u003c/li\u003e\n\u003cli\u003e2025-12-20 Never use the debug CRT on Windows\u003c/li\u003e\n\u003cli\u003e2025-02-19 X509Builder::append_extension2 -\u0026gt; X509Builder::append_extension\u003c/li\u003e\n\u003cli\u003e2025-02-19 \u003ccode\u003eSsl::new_from_ref\u003c/code\u003e -\u0026gt; \u003ccode\u003eSsl::new()\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e2025-02-19 Align SslStream APIs with upstream\u003c/li\u003e\n\u003cli\u003e2025-09-26 Remove support for Hyper v0\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e4.21.0\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e2026-01-05 Warn about set_curves() removal\u003c/li\u003e\n\u003cli\u003e2026-01-05 Deprecate set_ex_data()\u003c/li\u003e\n\u003cli\u003e2026-01-05 Fix build with --no-default-features\u003c/li\u003e\n\u003cli\u003e2026-01-05 Make set_curves_list always available\u003c/li\u003e\n\u003cli\u003e2026-01-19 Use fips-build-compatible ERR_add_error_data\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/467cb51c987fbb0041b2f31bd56b697a956e5cea\"\u003e\u003ccode\u003e467cb51\u003c/code\u003e\u003c/a\u003e Clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/cb3e7ddc87420af3f3a4db637c5180a1179816ae\"\u003e\u003ccode\u003ecb3e7dd\u003c/code\u003e\u003c/a\u003e Bump\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/ee5974cde2c6051d759ca10a0beefc5a6d4fc062\"\u003e\u003ccode\u003eee5974c\u003c/code\u003e\u003c/a\u003e Expose load_verify_locations like rust-openssl\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/f5b444832c7158d8140e9aca593be4b2221b2767\"\u003e\u003ccode\u003ef5b4448\u003c/code\u003e\u003c/a\u003e Introduce SslCipherRef::protocol_id\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/d1384338e1cd7452683f6ce9c4facb497bc63d29\"\u003e\u003ccode\u003ed138433\u003c/code\u003e\u003c/a\u003e Add SslRef::curve_name()\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/3a930a31f6696b571594a26c072a9969105d7358\"\u003e\u003ccode\u003e3a930a3\u003c/code\u003e\u003c/a\u003e Don't add build/ to non-FIPS pre-built path\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/fec5ccfdcba8ce71ad352414cdef5012334beb9e\"\u003e\u003ccode\u003efec5ccf\u003c/code\u003e\u003c/a\u003e More robust int conversion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/395f57810bfbe50ce76d3aaf4233fdacb4220283\"\u003e\u003ccode\u003e395f578\u003c/code\u003e\u003c/a\u003e v4.21.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/64b3e149767323ece99ceda6f83cfeb52f736987\"\u003e\u003ccode\u003e64b3e14\u003c/code\u003e\u003c/a\u003e Fix docs.rs build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/33b36ab7a10655468170b4a7242af04fe9186563\"\u003e\u003ccode\u003e33b36ab\u003c/code\u003e\u003c/a\u003e Release 4.21.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cloudflare/boring/compare/v4.16.0...v4.22.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `boring-sys` from 4.16.0 to 4.22.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/boring/releases\"\u003eboring-sys's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.21.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecated APIs that were \u003ca href=\"https://github.com/cloudflare/boring/releases/tag/v5.0.0-alpha.1\"\u003eremoved in v5\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eFixed docs.rs build\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.21.0\u003c/h2\u003e\n\u003cp\u003eDeprecated APIs that were \u003ca href=\"https://github.com/cloudflare/boring/releases/tag/v5.0.0-alpha.1\"\u003eremoved in v5\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev4.20.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd a more reliable \u003ccode\u003eError::library_reason()\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix string data conversion in \u003ccode\u003eErrorStack::put()\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eCStr vs UTF-8 improvements in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/371\"\u003ecloudflare/boring#371\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix swapped host/target args and support TARGET_CC and CC_{target} in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/375\"\u003ecloudflare/boring#375\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable bindgen layout tests on all Rust versions 3116032a83a891f9495698bf0692ccc59ceef6e2\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/boring/compare/v4.19.0...v4.20.0\"\u003ehttps://github.com/cloudflare/boring/compare/v4.19.0...v4.20.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.19.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eError improvements by \u003ca href=\"https://github.com/kornelski\"\u003e\u003ccode\u003e@​kornelski\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/372\"\u003ecloudflare/boring#372\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd binding for X509_check_ip_asc by \u003ca href=\"https://github.com/evanrittenhouse\"\u003e\u003ccode\u003e@​evanrittenhouse\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/381\"\u003ecloudflare/boring#381\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/boring/compare/v4.18.0...v4.19.0\"\u003ehttps://github.com/cloudflare/boring/compare/v4.18.0...v4.19.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd set_verify_param by \u003ca href=\"https://github.com/semaj-cf\"\u003e\u003ccode\u003e@​semaj-cf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/357\"\u003ecloudflare/boring#357\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for X509_STORE_CTX_get0_untrusted by \u003ca href=\"https://github.com/semaj-cf\"\u003e\u003ccode\u003e@​semaj-cf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/356\"\u003ecloudflare/boring#356\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd X509VerifyParamRef::copy_from by \u003ca href=\"https://github.com/nox\"\u003e\u003ccode\u003e@​nox\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/361\"\u003ecloudflare/boring#361\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix X509VerifyContextRef::set_verify_param by \u003ca href=\"https://github.com/nox\"\u003e\u003ccode\u003e@​nox\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/358\"\u003ecloudflare/boring#358\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnsure we call X509_STORE_CTX_cleanup on error path too by \u003ca href=\"https://github.com/nox\"\u003e\u003ccode\u003e@​nox\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/360\"\u003ecloudflare/boring#360\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove X509StoreContext initialization API by \u003ca href=\"https://github.com/nox\"\u003e\u003ccode\u003e@​nox\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/359\"\u003ecloudflare/boring#359\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDon't unwrap when Result can be returned instead by \u003ca href=\"https://github.com/kornelski\"\u003e\u003ccode\u003e@​kornelski\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/367\"\u003ecloudflare/boring#367\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake X509Store shareable between contexts by \u003ca href=\"https://github.com/kornelski\"\u003e\u003ccode\u003e@​kornelski\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/366\"\u003ecloudflare/boring#366\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSprinkle #[must_use] by \u003ca href=\"https://github.com/kornelski\"\u003e\u003ccode\u003e@​kornelski\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/368\"\u003ecloudflare/boring#368\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose SSL_set1_groups to Efficiently Set Curves on SSL Session by \u003ca href=\"https://github.com/Justin-Kwan\"\u003e\u003ccode\u003e@​Justin-Kwan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/346\"\u003ecloudflare/boring#346\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade bindgen to v0.72.0 by \u003ca href=\"https://github.com/akonradi-signal\"\u003e\u003ccode\u003e@​akonradi-signal\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/369\"\u003ecloudflare/boring#369\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose PKey::raw_{private,public}_key by \u003ca href=\"https://github.com/jrose-signal\"\u003e\u003ccode\u003e@​jrose-signal\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/364\"\u003ecloudflare/boring#364\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDon't compile binaries for docs.rs by \u003ca href=\"https://github.com/kornelski\"\u003e\u003ccode\u003e@​kornelski\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/370\"\u003ecloudflare/boring#370\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove some comments referring to OpenSSL by \u003ca href=\"https://github.com/hcstern\"\u003e\u003ccode\u003e@​hcstern\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/374\"\u003ecloudflare/boring#374\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Justin-Kwan\"\u003e\u003ccode\u003e@​Justin-Kwan\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/346\"\u003ecloudflare/boring#346\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/akonradi-signal\"\u003e\u003ccode\u003e@​akonradi-signal\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/369\"\u003ecloudflare/boring#369\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hcstern\"\u003e\u003ccode\u003e@​hcstern\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/374\"\u003ecloudflare/boring#374\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/boring/compare/v4.17.0...v4.18.0\"\u003ehttps://github.com/cloudflare/boring/compare/v4.17.0...v4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eX509_STORE_CTX_get0_cert\u003c/code\u003e interface by \u003ca href=\"https://github.com/semaj-cf\"\u003e\u003ccode\u003e@​semaj-cf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/349\"\u003ecloudflare/boring#349\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/boring/blob/master/RELEASE_NOTES\"\u003eboring-sys's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e5.1.0\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e2026-04-13 Add EVP_AEAD-based detached AEAD module\u003c/li\u003e\n\u003cli\u003e2026-04-13 Add generic PKey private key generation API\u003c/li\u003e\n\u003cli\u003e2026-04-13 Add TLS 1.2 PRF module and bindings\u003c/li\u003e\n\u003cli\u003e2026-03-25 Add used_hello_retry_request\u003c/li\u003e\n\u003cli\u003e2026-03-28 Prebuilt lib export option\u003c/li\u003e\n\u003cli\u003e2026-03-27 Display sys crate errors using cargo::error\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e5.0.2\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e2026-02-13 Re-add fips-precompiled for v4 compat\u003c/li\u003e\n\u003cli\u003e2026-02-12 Don't add build/ to non-FIPS pre-built path\u003c/li\u003e\n\u003cli\u003e2026-02-13 Expose load_verify_locations like rust-openssl\u003c/li\u003e\n\u003cli\u003e2026-02-12 Support static MSVC runtime\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e5.0.1\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e2026-02-03 Make SslCredential optional\u003c/li\u003e\n\u003cli\u003e2026-02-10 Make ML-KEM optional\u003c/li\u003e\n\u003cli\u003e2026-02-10 Don't always require all headers from all versions of BoringSSL\u003c/li\u003e\n\u003cli\u003e2026-02-10 Ensure we don't leave unit memory if generate_key fails\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e5.0.0\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e2025-12-19 Update vendored boring to a newer version (2023.11 to 2025.11)\u003c/li\u003e\n\u003cli\u003e2025-12-20 Rework RPK/SslMethod (c2f063cf4711f15b8b417b6926496fbf1c2a03ac)\u003c/li\u003e\n\u003cli\u003e2025-09-29 Remove \u003ccode\u003eSslCurve\u003c/code\u003e API\u003c/li\u003e\n\u003cli\u003e2025-09-30 Remove the \u0026quot;kx-*\u0026quot; features\u003c/li\u003e\n\u003cli\u003e2025-09-25 Remove legacy FIPS options (they're controlled via \u003ccode\u003eBORING_BSSL_\u003c/code\u003e env vars instead)\u003c/li\u003e\n\u003cli\u003e2026-01-05 Remove deprecated X509CheckFlags flag\u003c/li\u003e\n\u003cli\u003e2025-09-30 Remove \u0026quot;pq-experimental\u0026quot; Cargo feature, apply PQ patch by default + P256Kyber768Draft00\u003c/li\u003e\n\u003cli\u003e2026-01-05 Safe clone for X509Store\u003c/li\u003e\n\u003cli\u003e2025-03-08 Add set_ticket_key_callback (SSL_CTX_set_tlsext_ticket_key_cb)\u003c/li\u003e\n\u003cli\u003e2025-09-30 Add SslRef::curve_name()\u003c/li\u003e\n\u003cli\u003e2025-09-30 Expose a safe Rust interface for the session resumption callback\u003c/li\u003e\n\u003cli\u003e2026-01-05 Fix leaky set_ex_data() API\u003c/li\u003e\n\u003cli\u003e2025-12-12 Add boring specific api set_strict_cipher_list to SslContextBuilder\u003c/li\u003e\n\u003cli\u003e2025-11-20 Introduce SslCipherRef::protocol_id\u003c/li\u003e\n\u003cli\u003e2023-05-11 fix: BIO_set_retry_write when BIO_CTRL_FLUSH to allow writer returns WouldBlock on flush\u003c/li\u003e\n\u003cli\u003e2025-11-14 Remove blanket Eq from FFI types\u003c/li\u003e\n\u003cli\u003e2025-12-20 Never use the debug CRT on Windows\u003c/li\u003e\n\u003cli\u003e2025-02-19 X509Builder::append_extension2 -\u0026gt; X509Builder::append_extension\u003c/li\u003e\n\u003cli\u003e2025-02-19 \u003ccode\u003eSsl::new_from_ref\u003c/code\u003e -\u0026gt; \u003ccode\u003eSsl::new()\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e2025-02-19 Align SslStream APIs with upstream\u003c/li\u003e\n\u003cli\u003e2025-09-26 Remove support for Hyper v0\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e4.21.0\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e2026-01-05 Warn about set_curves() removal\u003c/li\u003e\n\u003cli\u003e2026-01-05 Deprecate set_ex_data()\u003c/li\u003e\n\u003cli\u003e2026-01-05 Fix build with --no-default-features\u003c/li\u003e\n\u003cli\u003e2026-01-05 Make set_curves_list always available\u003c/li\u003e\n\u003cli\u003e2026-01-19 Use fips-build-compatible ERR_add_error_data\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/467cb51c987fbb0041b2f31bd56b697a956e5cea\"\u003e\u003ccode\u003e467cb51\u003c/code\u003e\u003c/a\u003e Clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/cb3e7ddc87420af3f3a4db637c5180a1179816ae\"\u003e\u003ccode\u003ecb3e7dd\u003c/code\u003e\u003c/a\u003e Bump\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/ee5974cde2c6051d759ca10a0beefc5a6d4fc062\"\u003e\u003ccode\u003eee5974c\u003c/code\u003e\u003c/a\u003e Expose load_verify_locations like rust-openssl\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/f5b444832c7158d8140e9aca593be4b2221b2767\"\u003e\u003ccode\u003ef5b4448\u003c/code\u003e\u003c/a\u003e Introduce SslCipherRef::protocol_id\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/d1384338e1cd7452683f6ce9c4facb497bc63d29\"\u003e\u003ccode\u003ed138433\u003c/code\u003e\u003c/a\u003e Add SslRef::curve_name()\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/3a930a31f6696b571594a26c072a9969105d7358\"\u003e\u003ccode\u003e3a930a3\u003c/code\u003e\u003c/a\u003e Don't add build/ to non-FIPS pre-built path\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/fec5ccfdcba8ce71ad352414cdef5012334beb9e\"\u003e\u003ccode\u003efec5ccf\u003c/code\u003e\u003c/a\u003e More robust int conversion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/395f57810bfbe50ce76d3aaf4233fdacb4220283\"\u003e\u003ccode\u003e395f578\u003c/code\u003e\u003c/a\u003e v4.21.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/64b3e149767323ece99ceda6f83cfeb52f736987\"\u003e\u003ccode\u003e64b3e14\u003c/code\u003e\u003c/a\u003e Fix docs.rs build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/33b36ab7a10655468170b4a7242af04fe9186563\"\u003e\u003ccode\u003e33b36ab\u003c/code\u003e\u003c/a\u003e Release 4.21.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cloudflare/boring/compare/v4.16.0...v4.22.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls-openssl` from 0.2.1 to 0.3.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tofay/rustls-openssl/releases\"\u003erustls-openssl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd post-quantum support by \u003ca href=\"https://github.com/tofay\"\u003e\u003ccode\u003e@​tofay\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/tofay/rustls-openssl/pull/29\"\u003etofay/rustls-openssl#29\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003erustls_openssl::ALL_KX_GROUPS\u003c/code\u003e has been removed in favour of \u003ccode\u003erustls_openssl::kx_group::DEFAULT_KX_GROUPS\u003c/code\u003e and \u003ccode\u003erustls_openssl::kx_group::ALL_KX_GROUPS\u003c/code\u003e.\n\u003cul\u003e\n\u003cli\u003ethe latter contains MLKEM768 which isn't enabled by default.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/tofay/rustls-openssl/compare/0.2.1...0.3.0\"\u003ehttps://github.com/tofay/rustls-openssl/compare/0.2.1...0.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tofay/rustls-openssl/commit/0e871fc159b5dba59390ce1f97b5d95d1e6bea4a\"\u003e\u003ccode\u003e0e871fc\u003c/code\u003e\u003c/a\u003e release 0.3.1 (\u003ca href=\"https://redirect.github.com/tofay/rustls-openssl/issues/33\"\u003e#33\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tofay/rustls-openssl/commit/a21035c0ff42c78cfbce4ba15f8c1e0dd3c09660\"\u003e\u003ccode\u003ea21035c\u003c/code\u003e\u003c/a\u003e add_hkdf_info: use patched version if fips is enabled (\u003ca href=\"https://redirect.github.com/tofay/rustls-openssl/issues/30\"\u003e#30\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tofay/rustls-openssl/commit/c32b266599b3192b39e35876fb479808631695fc\"\u003e\u003ccode\u003ec32b266\u003c/code\u003e\u003c/a\u003e Add post-quantum support (\u003ca href=\"https://redirect.github.com/tofay/rustls-openssl/issues/29\"\u003e#29\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tofay/rustls-openssl/compare/0.2.1...0.3.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openssl` from 0.10.72 to 0.10.80\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-openssl/rust-openssl/releases\"\u003eopenssl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eopenssl-v0.10.80\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrefer Homebrew openssl@4 and stop looking for openssl@1.1 by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2633\"\u003erust-openssl/rust-openssl#2633\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix output buffer overflow in cipher_update_inplace for AES key-wrap-with-padding by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2638\"\u003erust-openssl/rust-openssl#2638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl 0.10.80 and openssl-sys 0.9.116 by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2639\"\u003erust-openssl/rust-openssl#2639\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.79...openssl-v0.10.80\"\u003ehttps://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.79...openssl-v0.10.80\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eopenssl-v0.10.79\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/cache from 5.0.4 to 5.0.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2610\"\u003erust-openssl/rust-openssl#2610\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTry to fix OpenSSL 1.1.0l download by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2614\"\u003erust-openssl/rust-openssl#2614\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRequire \u0026amp;mut BigNumContextRef for EcPointRef mul/invert by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2615\"\u003erust-openssl/rust-openssl#2615\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix UB in EcGroupRef::generator on groups without a generator by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2617\"\u003erust-openssl/rust-openssl#2617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace \u003ccode\u003euse libc::*;\u003c/code\u003e with targeted imports in openssl-sys by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2618\"\u003erust-openssl/rust-openssl#2618\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKeyRef::is_a and KeyType for name-based key identification by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2619\"\u003erust-openssl/rust-openssl#2619\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKey::{public,private}_key_from_raw_bytes_ex by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2620\"\u003erust-openssl/rust-openssl#2620\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump MSRV to 1.80 by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2622\"\u003erust-openssl/rust-openssl#2622\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop once_cell in favor of std::sync::{LazyLock, OnceLock} by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2623\"\u003erust-openssl/rust-openssl#2623\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKey::private_key_from_seed for ML-DSA/ML-KEM key import by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2621\"\u003erust-openssl/rust-openssl#2621\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eparallelize more builds in CI for cold caches by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2625\"\u003erust-openssl/rust-openssl#2625\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2626\"\u003erust-openssl/rust-openssl#2626\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix process abort when verify/PSK callbacks fire after SSL_CTX swap by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2624\"\u003erust-openssl/rust-openssl#2624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBind OSSL_PARAM_modified and use it for seed_into by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2628\"\u003erust-openssl/rust-openssl#2628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PkeyCtxRef::set_context_string for ML-DSA by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2629\"\u003erust-openssl/rust-openssl#2629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2631\"\u003erust-openssl/rust-openssl#2631\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix output buffer overflow for AES key-wrap-with-padding ciphers by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2630\"\u003erust-openssl/rust-openssl#2630\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl 0.10.79 and openssl-sys 0.9.115 by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2632\"\u003erust-openssl/rust-openssl#2632\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.78...openssl-v0.10.79\"\u003ehttps://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.78...openssl-v0.10.79\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eopenssl-v0.10.78\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix Suite B flag assignments in verify.rs by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2592\"\u003erust-openssl/rust-openssl#2592\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse cvt_p for OPENSSL_malloc error handling by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2593\"\u003erust-openssl/rust-openssl#2593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMark BIO_get_mem_data on AWS-LC to be unsafe by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2594\"\u003erust-openssl/rust-openssl#2594\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSet timeout for package installation step by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2595\"\u003erust-openssl/rust-openssl#2595\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePanic in Crypter::new when IV is required but not provided by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2596\"\u003erust-openssl/rust-openssl#2596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eopenssl 4 support by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2591\"\u003erust-openssl/rust-openssl#2591\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid panic for overlong OIDs by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2598\"\u003erust-openssl/rust-openssl#2598\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix dangling stack pointer in custom extension add callback by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2599\"\u003erust-openssl/rust-openssl#2599\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for LibreSSL 4.3.x by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2603\"\u003erust-openssl/rust-openssl#2603\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix inverted bounds assertion in AES key unwrap by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2604\"\u003erust-openssl/rust-openssl#2604\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject oversized length returns from password callback trampoline by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2605\"\u003erust-openssl/rust-openssl#2605\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eValidate callback-returned lengths in PSK and cookie trampolines by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2607\"\u003erust-openssl/rust-openssl#2607\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eError for short out in MdCtxRef::digest_final() by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2608\"\u003erust-openssl/rust-openssl#2608\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck derive output buffer length on OpenSSL 1.1.x by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2606\"\u003erust-openssl/rust-openssl#2606\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl v0.10.78 and openssl-sys v0.9.114 by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2609\"\u003erust-openssl/rust-openssl#2609\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/35be7ae43b207fc0448a648a21e9156bc360c9af\"\u003e\u003ccode\u003e35be7ae\u003c/code\u003e\u003c/a\u003e Release openssl 0.10.80 and openssl-sys 0.9.116 (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2639\"\u003e#2639\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/19eceb26f2404aae187e5444e65c404ebc1348a7\"\u003e\u003ccode\u003e19eceb2\u003c/code\u003e\u003c/a\u003e Fix output buffer overflow in cipher_update_inplace for AES key-wrap-with-pad...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/b460eb378c335610df5395a251408ad70bb60d42\"\u003e\u003ccode\u003eb460eb3\u003c/code\u003e\u003c/a\u003e Prefer Homebrew openssl@4 and stop looking for openssl@1.1 (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2633\"\u003e#2633\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/649f2d9e37f3aa701e20bd8ab5cd7eb5afa0a90f\"\u003e\u003ccode\u003e649f2d9\u003c/code\u003e\u003c/a\u003e Release openssl 0.10.79 and openssl-sys 0.9.115 (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2632\"\u003e#2632\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/257f9b20c001b888986f93579f118fa2a57d4f45\"\u003e\u003ccode\u003e257f9b2\u003c/code\u003e\u003c/a\u003e Fix output buffer overflow for AES key-wrap-with-padding ciphers (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2630\"\u003e#2630\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/d43e9179b1885fc66269a42361cc7a80f631ac8f\"\u003e\u003ccode\u003ed43e917\u003c/code\u003e\u003c/a\u003e Reject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2631\"\u003e#2631\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/f46519c8694a3e121091dafe38aab77c2f756546\"\u003e\u003ccode\u003ef46519c\u003c/code\u003e\u003c/a\u003e Add PkeyCtxRef::set_context_string for ML-DSA (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2629\"\u003e#2629\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/ad9ae312771f898749a9471549519d45eba6a033\"\u003e\u003ccode\u003ead9ae31\u003c/code\u003e\u003c/a\u003e Bind OSSL_PARAM_modified and use it for seed_into (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2628\"\u003e#2628\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/4e25c9be20dae1e78f1a3815950cd0973addae82\"\u003e\u003ccode\u003e4e25c9b\u003c/code\u003e\u003c/a\u003e Fix process abort when verify/PSK callbacks fire after SSL_CTX swap (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2624\"\u003e#2624\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/3dd8f425ef34a069b5bec46f3971b67db1c295c7\"\u003e\u003ccode\u003e3dd8f42\u003c/code\u003e\u003c/a\u003e Add PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2626\"\u003e#2626\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.72...openssl-v0.10.80\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `anyhow` from 1.0.97 to 1.0.102\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dtolnay/anyhow/releases\"\u003eanyhow's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.0.102\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove backtrace dependency (\u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/438\"\u003e#438\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/439\"\u003e#439\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/440\"\u003e#440\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/441\"\u003e#441\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.0.101\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd #[inline] to anyhow::Ok helper (\u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/437\"\u003e#437\u003c/a\u003e, thanks \u003ca href=\"https://github.com/Ibitier\"\u003e\u003ccode\u003e@​Ibitier\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.0.100\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTeach clippy to lint formatting arguments in \u003ccode\u003ebail!\u003c/code\u003e, \u003ccode\u003eensure!\u003c/code\u003e, \u003ccode\u003eanyhow!\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/426\"\u003e#426\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.0.99\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAllow build-script cleanup failure with NFSv3 output directory to be non-fatal (\u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/420\"\u003e#420\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.0.98\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ca href=\"https://docs.rs/anyhow/1/anyhow/struct.Error.html#method.into_boxed_dyn_error\"\u003e\u003ccode\u003eself.into_boxed_dyn_error()\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://docs.rs/anyhow/1/anyhow/struct.Error.html#method.reallocate_into_boxed_dyn_error_without_backtrace\"\u003e\u003ccode\u003eself.reallocate_into_boxed_dyn_error_without_backtrace()\u003c/code\u003e\u003c/a\u003e methods for anyhow::Error (\u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/415\"\u003e#415\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/5c657b32522023a9f7ef883fb08582fd8e656b1a\"\u003e\u003ccode\u003e5c657b3\u003c/code\u003e\u003c/a\u003e Release 1.0.102\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/e737fb63918e8c71a3d0a968004a9c7ed7942283\"\u003e\u003ccode\u003ee737fb6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/442\"\u003e#442\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/7fe62b51c62804f8b84443affeacfb3810ed2516\"\u003e\u003ccode\u003e7fe62b5\u003c/code\u003e\u003c/a\u003e Further simply backtrace conditional compilation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/c8cb5cae23e57a2dbb87bf05cba04f1df1f1660b\"\u003e\u003ccode\u003ec8cb5ca\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/441\"\u003e#441\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/de27df7e0f510d543c18e50a0736566b66e62baf\"\u003e\u003ccode\u003ede27df7\u003c/code\u003e\u003c/a\u003e Delete CI use of --features=backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/9b67e5dd608658d805640cf1b6f6c9d091686ec1\"\u003e\u003ccode\u003e9b67e5d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/440\"\u003e#440\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/efdb11a259ca58a2e505ef50486cf2d6b5ddc42a\"\u003e\u003ccode\u003eefdb11a\u003c/code\u003e\u003c/a\u003e Simplify \u003ccode\u003estd_backtrace\u003c/code\u003e conditional code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/b8a9a707838969721a86b28e3c45ce27e279e981\"\u003e\u003ccode\u003eb8a9a70\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/439\"\u003e#439\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/a42fc2c21846ba459df43a3f8b4996a2074909cb\"\u003e\u003ccode\u003ea42fc2c\u003c/code\u003e\u003c/a\u003e Remove \u003ccode\u003efeature = \u0026quot;backtrace\u0026quot;\u003c/code\u003e conditional code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/2a2a3ceb4cbc409fd99613ab5744b21e825e7908\"\u003e\u003ccode\u003e2a2a3ce\u003c/code\u003e\u003c/a\u003e Re-word backtrace feature comment\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dtolnay/anyhow/compare/1.0.97...1.0.102\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `async-trait` from 0.1.88 to 0.1.89\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dtolnay/async-trait/releases\"\u003easync-trait's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.1.89\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImprove IDE functionality (\u003ca href=\"https://redirect.github.com/dtolnay/async-trait/issues/293\"\u003e#293\u003c/a\u003e, thanks \u003ca href=\"https://github.com/Veykril\"\u003e\u003ccode\u003e@​Veykril\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/async-trait/commit/a7e91e98a5d2de2ceae52d9459eed309939a98bf\"\u003e\u003ccode\u003ea7e91e9\u003c/code\u003e\u003c/a\u003e Release 0.1.89\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/async-trait/commit/fbcfcaca022197e20a3f70b448a2615ae49d3701\"\u003e\u003ccode\u003efbcfcac\u003c/code\u003e\u003c/a\u003e Merge pull request 293 from Veykril/lw/quote_spanned\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/async-trait/commit/fd93990620ba8d1af6089ac286120b71adc26c06\"\u003e\u003ccode\u003efd93990\u003c/code\u003e\u003c/a\u003e Improve use of spans in \u003ccode\u003equote_spanned\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/async-trait/commit/a5093fe762a8a38cb41aba7fd40d1051386a8fb5\"\u003e\u003ccode\u003ea5093fe\u003c/code\u003e\u003c/a\u003e Add type-mismatch ui test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/async-trait/commit/6d12b441162c8c688cbb39bfc87829083ccbc1a9\"\u003e\u003ccode\u003e6d12b44\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;Pin nightly toolchain used for miri job\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/async-trait/commit/dd9e4bad1b9465706366689551df978a39bf4390\"\u003e\u003ccode\u003edd9e4ba\u003c/code\u003e\u003c/a\u003e Hide unused_variables warning in consider-restricting.rs ui test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/async-trait/commit/b454fc869a32a2410adc405ffb030be78246de8b\"\u003e\u003ccode\u003eb454fc8\u003c/code\u003e\u003c/a\u003e Update ui test suite to nightly-2025-08-03\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/async-trait/commit/9c880e85d885eb20426222d5462286f1dab09d5a\"\u003e\u003ccode\u003e9c880e8\u003c/code\u003e\u003c/a\u003e Update ui test suite to nightly-2025-07-30\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/async-trait/commit/7ca751d0b3c62dfbd39699f8d32a09f7b7a70800\"\u003e\u003ccode\u003e7ca751d\u003c/code\u003e\u003c/a\u003e Ignore unused_parens warning in test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/async-trait/commit/2bccfeb461b0c92964fdee816896e9f8f6f291b8\"\u003e\u003ccode\u003e2bccfeb\u003c/code\u003e\u003c/a\u003e Update ui test suite to nightly-2025-05-28\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dtolnay/async-trait/compare/0.1.88...0.1.89\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.10.1 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.10.1...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `chrono` from 0.4.40 to 0.4.44\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/chronotope/chrono/releases\"\u003echrono's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.44\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: match MSRV with \u003ccode\u003eCargo.toml\u003c/code\u003e contents by \u003ca href=\"https://github.com/coryan\"\u003e\u003ccode\u003e@​coryan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1772\"\u003echronotope/chrono#1772\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd track_caller to non-deprecated functions by \u003ca href=\"https://github.com/svix-jplatte\"\u003e\u003ccode\u003e@​svix-jplatte\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1774\"\u003echronotope/chrono#1774\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.4.43\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eInstall extra components for lint workflow by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1741\"\u003echronotope/chrono#1741\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade windows-bindgen to 0.64 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1742\"\u003echronotope/chrono#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove windows-bindgen setup by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1744\"\u003echronotope/chrono#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop stabilized feature doc_auto_cfg by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1745\"\u003echronotope/chrono#1745\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFaster RFC 3339 parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1748\"\u003echronotope/chrono#1748\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate windows-bindgen requirement from 0.64 to 0.65 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1751\"\u003echronotope/chrono#1751\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd \u003ccode\u003eNaiveDate::abs_diff\u003c/code\u003e by \u003ca href=\"https://github.com/Kinrany\"\u003e\u003ccode\u003e@​Kinrany\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1752\"\u003echronotope/chrono#1752\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd feature gated defmt support. by \u003ca href=\"https://github.com/pebender\"\u003e\u003ccode\u003e@​pebender\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1747\"\u003echronotope/chrono#1747\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop deny lints, eager Debug impls are a mixed blessing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1753\"\u003echronotope/chrono#1753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: minor improvement for docs by \u003ca href=\"https://github.com/spuradage\"\u003e\u003ccode\u003e@​spuradage\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1756\"\u003echronotope/chrono#1756\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded doctest for the NaiveDate years_since function by \u003ca href=\"https://github.com/LucasBou\"\u003e\u003ccode\u003e@​LucasBou\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1755\"\u003echronotope/chrono#1755\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.4.43 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1765\"\u003echronotope/chrono#1765\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate copyright year to 2026 in LICENSE.txt by \u003ca href=\"https://github.com/taozui472\"\u003e\u003ccode\u003e@​taozui472\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1767\"\u003echronotope/chrono#1767\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.4.42\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd fuzzer for DateTime::parse_from_str by \u003ca href=\"https://github.com/tyler92\"\u003e\u003ccode\u003e@​tyler92\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1700\"\u003echronotope/chrono#1700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix wrong amount of micro/milliseconds by \u003ca href=\"https://github.com/nmlt\"\u003e\u003ccode\u003e@​nmlt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1703\"\u003echronotope/chrono#1703\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd warning about MappedLocalTime and wasm by \u003ca href=\"https://github.com/lutzky\"\u003e\u003ccode\u003e@​lutzky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1702\"\u003echronotope/chrono#1702\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix incorrect parsing of fixed-length second fractions by \u003ca href=\"https://github.com/chris-leach\"\u003e\u003ccode\u003e@​chris-leach\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1705\"\u003echronotope/chrono#1705\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix cfgs for \u003ccode\u003ewasm32-linux\u003c/code\u003e support by \u003ca href=\"https://github.com/arjunr2\"\u003e\u003ccode\u003e@​arjunr2\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1707\"\u003echronotope/chrono#1707\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix OpenHarmony's \u003ccode\u003etzdata\u003c/code\u003e parsing by \u003ca href=\"https://github.com/ldm0\"\u003e\u003ccode\u003e@​ldm0\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1679\"\u003echronotope/chrono#1679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eConvert NaiveDate to/from days since unix epoch by \u003ca href=\"https://github.com/findepi\"\u003e\u003ccode\u003e@​findepi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1715\"\u003echronotope/chrono#1715\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e?Sized\u003c/code\u003e bound to related methods of \u003ccode\u003eDelayedFormat::write_to\u003c/code\u003e by \u003ca href=\"https://github.com/Huliiiiii\"\u003e\u003ccode\u003e@​Huliiiiii\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1721\"\u003echronotope/chrono#1721\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003efrom_timestamp_secs\u003c/code\u003e method to \u003ccode\u003eDateTime\u003c/code\u003e by \u003ca href=\"https://github.com/jasonaowen\"\u003e\u003ccode\u003e@​jasonaowen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1719\"\u003echronotope/chrono#1719\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMigrate to core::error::Error by \u003ca href=\"https://github.com/benbrittain\"\u003e\u003ccode\u003e@​benbrittain\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1704\"\u003echronotope/chrono#1704\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to windows-bindgen 0.63 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1730\"\u003echronotope/chrono#1730\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estrftime: simplify error handling by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1731\"\u003echronotope/chrono#1731\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.4.41\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003esubsec_micros\u003c/code\u003e and \u003ccode\u003esubsec_millis\u003c/code\u003e methods to \u003ccode\u003eTimeDelta\u003c/code\u003e by \u003ca href=\"https://github.com/ggoetz\"\u003e\u003ccode\u003e@​ggoetz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1668\"\u003echronotope/chrono#1668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eNaiveDateTime::UNIX_EPOCH\u003c/code\u003e by \u003ca href=\"https://github.com/robertbastian\"\u003e\u003ccode\u003e@​robertbastian\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1670\"\u003echronotope/chrono#1670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eas_seconds_f32\u003c/code\u003e and \u003ccode\u003eas_seconds_f64\u003c/code\u003e for \u003ccode\u003eTimeDelta\u003c/code\u003e by \u003ca href=\"https://github.com/ggoetz\"\u003e\u003ccode\u003e@​ggoetz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1671\"\u003echronotope/chrono#1671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: fix some comments by \u003ca href=\"https://github.com/jimmycathy\"\u003e\u003ccode\u003e@​jimmycathy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1677\"\u003echronotope/chrono#1677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003enum_days_in_month\u003c/code\u003e method to \u003ccode\u003eDatelike\u003c/code\u003e trait by \u003ca href=\"https://github.com/aslilac\"\u003e\u003ccode\u003e@​aslilac\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1673\"\u003echronotope/chrono#1673\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd \u003ccode\u003eWeekdaySet\u003c/code\u003e, a collection of \u003ccode\u003eWeekday\u003c/code\u003e that is \u003ccode\u003eCopy\u003c/code\u003e by \u003ca href=\"https://github.com/Kinrany\"\u003e\u003ccode\u003e@​Kinrany\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1676\"\u003echronotope/chrono#1676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWeekdaySet tweaks by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1680\"\u003echronotope/chrono#1680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to windows-bindgen 0.61 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1682\"\u003echronotope/chrono#1682\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/c14b4599d07ef36ffa1f8a531fb0bc7eb3b42464\"\u003e\u003ccode\u003ec14b459\u003c/code\u003e\u003c/a\u003e Bump version to 0.4.44\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/ea832c5090369eefa2cb6a47d643e2f7ade7ffa7\"\u003e\u003ccode\u003eea832c5\u003c/code\u003e\u003c/a\u003e Add track_caller to non-deprecated functions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/cfae889a3a23507acf49b605794abba17effd2d7\"\u003e\u003ccode\u003ecfae889\u003c/code\u003e\u003c/a\u003e Fix panic message in to_rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/f8900b5a44228a7f6282c65e8c407d3ecb6dcb7b\"\u003e\u003ccode\u003ef8900b5\u003c/code\u003e\u003c/a\u003e docs: match MSRV with \u003ccode\u003eCargo.toml\u003c/code\u003e contents\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/45caaa970ce443b11106a710ee24bd2480e5ff99\"\u003e\u003ccode\u003e45caaa9\u003c/code\u003e\u003c/a\u003e Update copyright year to 2026 in LICENSE.txt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/1c0b8f011ab2f2e53c195df1866a1fb4c7fd193a\"\u003e\u003ccode\u003e1c0b8f0\u003c/code\u003e\u003c/a\u003e Bump version to 0.4.43\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/a03e43b1c3ef3aea77f12200d84144f275560aa9\"\u003e\u003ccode\u003ea03e43b\u003c/code\u003e\u003c/a\u003e Upgrade windows-bindgen to 0.66\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/4fedaba2a214aa560e1c6a70d0a09e6955ed3ff4\"\u003e\u003ccode\u003e4fedaba\u003c/code\u003e\u003c/a\u003e Ignore bincode advisory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/f4b7bbda679199e7509da813849a10242b2f7aa1\"\u003e\u003ccode\u003ef4b7bbd\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 5 to 6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/db129730e8f21ca66b3808c133b7147cbc62fc41\"\u003e\u003ccode\u003edb12973\u003c/code\u003e\u003c/a\u003e Added doctest for the NaiveDate years_since function (\u003ca href=\"https://redirect.github.com/chronotope/chrono/issues/1755\"\u003e#1755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/chronotope/chrono/compare/v0.4.40...v0.4.44\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `duration-str` from 0.17.0 to 0.21.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/baoyachi/duration-str/releases\"\u003eduration-str's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.21.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd vist_unit for struct flatten to work with null property for option deserialization by \u003ca href=\"https://github.com/sbuzzard\"\u003e\u003ccode\u003e@​sbuzzard\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/baoyachi/duration-str/pull/92\"\u003ebaoyachi/duration-str#92\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sbuzzard\"\u003e\u003ccode\u003e@​sbuzzard\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/baoyachi/duration-str/pull/92\"\u003ebaoyachi/duration-str#92\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/baoyachi/duration-str/compare/v0.20.0...v0.21.0\"\u003ehttps://github.com/baoyachi/duration-str/compare/v0.20.0...v0.21.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.20.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump time to 0.3.47 by \u003ca href=\"https://github.com/jeroenvervaeke\"\u003e\u003ccode\u003e@​jeroenvervaeke\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/baoyachi/duration-str/pull/91\"\u003ebaoyachi/duration-str#91\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jeroenvervaeke\"\u003e\u003ccode\u003e@​jeroenvervaeke\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/baoyachi/duration-str/pull/91\"\u003ebaoyachi/duration-str#91\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/baoyachi/duration-str/compare/v0.19.0...v0.20.0\"\u003ehttps://github.com/baoyachi/duration-str/compare/v0.19.0...v0.20.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.19.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(serde): treat empty string as None for Option\u003c!-- raw HTML omitted --\u003e by \u003ca href=\"https://github.com/baoyachi\"\u003e\u003ccode\u003e@​baoyachi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/baoyachi/duration-str/pull/88\"\u003ebaoyachi/duration-str#88\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: merge deserialize_duration and deserialize_option_duration into… by \u003ca href=\"https://github.com/baoyachi\"\u003e\u003ccode\u003e@​baoyachi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/baoyachi/duration-str/pull/89\"\u003ebaoyachi/duration-str#89\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/...\n\n_Description has been truncated_","html_url":"https://github.com/istio/ztunnel/pull/1926","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/istio%2Fztunnel/issues/1926","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1926/packages"},{"uuid":"4506821841","node_id":"PR_kwDORVuUE87ejdxz","number":21,"state":"closed","title":"Bump the crates group across 1 directory with 53 updates","user":"dependabot[bot]","labels":["dependencies","rust"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-30T04:26:36.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-23T04:28:03.000Z","updated_at":"2026-05-30T04:26:38.000Z","time_to_close":604713,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"crates","update_count":53,"packages":[{"name":"anyhow","old_version":"1.0.100","new_version":"1.0.102","repository_url":"https://github.com/dtolnay/anyhow"},{"name":"clap","old_version":"4.5.56","new_version":"4.5.60","repository_url":"https://github.com/clap-rs/clap"},{"name":"const_format","old_version":"0.2.35","new_version":"0.2.36","repository_url":"https://github.com/rodrimati1992/const_format_crates"},{"name":"which","old_version":"8.0.0","new_version":"8.0.2","repository_url":"https://github.com/harryfei/which-rs"},{"name":"sha1","old_version":"0.10.6","new_version":"0.11.0","repository_url":"https://github.com/RustCrypto/hashes"},{"name":"tempfile","old_version":"3.24.0","new_version":"3.25.0","repository_url":"https://github.com/Stebalien/tempfile"},{"name":"chrono","old_version":"0.4.43","new_version":"0.4.44","repository_url":"https://github.com/chronotope/chrono"},{"name":"regex-lite","old_version":"0.1.8","new_version":"0.1.9","repository_url":"https://github.com/rust-lang/regex"},{"name":"rustix","old_version":"1.1.3","new_version":"1.1.4","repository_url":"https://github.com/bytecodealliance/rustix"},{"name":"serde_json","old_version":"1.0.149","new_version":"1.0.150","repository_url":"https://github.com/serde-rs/json"},{"name":"env_logger","old_version":"0.11.8","new_version":"0.11.10","repository_url":"https://github.com/rust-cli/env_logger"},{"name":"anstyle","old_version":"1.0.13","new_version":"1.0.14","repository_url":"https://github.com/rust-cli/anstyle"},{"name":"autocfg","old_version":"1.5.0","new_version":"1.5.1","repository_url":"https://github.com/cuviper/autocfg"},{"name":"bumpalo","old_version":"3.19.1","new_version":"3.20.3","repository_url":"https://github.com/fitzgen/bumpalo"},{"name":"bytes","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"cc","old_version":"1.2.55","new_version":"1.2.62","repository_url":"https://github.com/rust-lang/cc-rs"},{"name":"colorchoice","old_version":"1.0.4","new_version":"1.0.5","repository_url":"https://github.com/rust-cli/anstyle"},{"name":"crc-catalog","old_version":"2.4.0","new_version":"2.5.0","repository_url":"https://github.com/akhilles/crc-catalog"},{"name":"dary_heap","old_version":"0.3.8","new_version":"0.3.9","repository_url":"https://github.com/hanmertens/dary_heap"},{"name":"deflate64","old_version":"0.1.10","new_version":"0.1.12","repository_url":"https://github.com/anatawa12/deflate64-rs"},{"name":"deranged","old_version":"0.5.5","new_version":"0.5.8","repository_url":"https://github.com/jhpratt/deranged"},{"name":"either","old_version":"1.15.0","new_version":"1.16.0","repository_url":"https://github.com/rayon-rs/either"},{"name":"fastrand","old_version":"2.3.0","new_version":"2.4.1","repository_url":"https://github.com/smol-rs/fastrand"},{"name":"flate2","old_version":"1.1.8","new_version":"1.1.9","repository_url":"https://github.com/rust-lang/flate2-rs"},{"name":"include-flate","old_version":"0.3.1","new_version":"0.3.3","repository_url":"https://github.com/SOF3/include-flate"},{"name":"indexmap","old_version":"2.13.0","new_version":"2.14.0","repository_url":"https://github.com/indexmap-rs/indexmap"},{"name":"itoa","old_version":"1.0.17","new_version":"1.0.18","repository_url":"https://github.com/dtolnay/itoa"},{"name":"memchr","old_version":"2.7.6","new_version":"2.8.0","repository_url":"https://github.com/BurntSushi/memchr"},{"name":"num-conv","old_version":"0.2.0","new_version":"0.2.2","repository_url":"https://github.com/jhpratt/num-conv"},{"name":"once_cell","old_version":"1.21.3","new_version":"1.21.4","repository_url":"https://github.com/matklad/once_cell"},{"name":"pin-project-lite","old_version":"0.2.16","new_version":"0.2.17","repository_url":"https://github.com/taiki-e/pin-project-lite"},{"name":"pkg-config","old_version":"0.3.32","new_version":"0.3.33","repository_url":"https://github.com/rust-lang/pkg-config-rs"},{"name":"quote","old_version":"1.0.44","new_version":"1.0.45","repository_url":"https://github.com/dtolnay/quote"},{"name":"rayon","old_version":"1.11.0","new_version":"1.12.0","repository_url":"https://github.com/rayon-rs/rayon"},{"name":"rustc-hash","old_version":"2.1.1","new_version":"2.1.2","repository_url":"https://github.com/rust-lang/rustc-hash"},{"name":"simd-adler32","old_version":"0.3.8","new_version":"0.3.9","repository_url":"https://github.com/mcountryman/simd-adler32"},{"name":"time","old_version":"0.3.46","new_version":"0.3.47","repository_url":"https://github.com/time-rs/time"},{"name":"tokio","old_version":"1.49.0","new_version":"1.52.3","repository_url":"https://github.com/tokio-rs/tokio"},{"name":"unicode-ident","old_version":"1.0.22","new_version":"1.0.24","repository_url":"https://github.com/dtolnay/unicode-ident"},{"name":"wasip2","old_version":"1.0.2+wasi-0.2.9","new_version":"1.0.3+wasi-0.2.9","repository_url":"https://github.com/bytecodealliance/wasi-rs"},{"name":"zmij","old_version":"1.0.18","new_version":"1.0.21","repository_url":"https://github.com/dtolnay/zmij"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the crates group with 41 updates in the /userspace/ksud directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [anyhow](https://github.com/dtolnay/anyhow) | `1.0.100` | `1.0.102` |\n| [clap](https://github.com/clap-rs/clap) | `4.5.56` | `4.5.60` |\n| [const_format](https://github.com/rodrimati1992/const_format_crates) | `0.2.35` | `0.2.36` |\n| [which](https://github.com/harryfei/which-rs) | `8.0.0` | `8.0.2` |\n| [sha1](https://github.com/RustCrypto/hashes) | `0.10.6` | `0.11.0` |\n| [tempfile](https://github.com/Stebalien/tempfile) | `3.24.0` | `3.25.0` |\n| [chrono](https://github.com/chronotope/chrono) | `0.4.43` | `0.4.44` |\n| [regex-lite](https://github.com/rust-lang/regex) | `0.1.8` | `0.1.9` |\n| [rustix](https://github.com/bytecodealliance/rustix) | `1.1.3` | `1.1.4` |\n| [serde_json](https://github.com/serde-rs/json) | `1.0.149` | `1.0.150` |\n| [env_logger](https://github.com/rust-cli/env_logger) | `0.11.8` | `0.11.10` |\n| [anstyle](https://github.com/rust-cli/anstyle) | `1.0.13` | `1.0.14` |\n| [autocfg](https://github.com/cuviper/autocfg) | `1.5.0` | `1.5.1` |\n| [bumpalo](https://github.com/fitzgen/bumpalo) | `3.19.1` | `3.20.3` |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.11.0` | `1.11.1` |\n| [cc](https://github.com/rust-lang/cc-rs) | `1.2.55` | `1.2.62` |\n| [colorchoice](https://github.com/rust-cli/anstyle) | `1.0.4` | `1.0.5` |\n| [crc-catalog](https://github.com/akhilles/crc-catalog) | `2.4.0` | `2.5.0` |\n| [dary_heap](https://github.com/hanmertens/dary_heap) | `0.3.8` | `0.3.9` |\n| [deflate64](https://github.com/anatawa12/deflate64-rs) | `0.1.10` | `0.1.12` |\n| [deranged](https://github.com/jhpratt/deranged) | `0.5.5` | `0.5.8` |\n| [either](https://github.com/rayon-rs/either) | `1.15.0` | `1.16.0` |\n| [fastrand](https://github.com/smol-rs/fastrand) | `2.3.0` | `2.4.1` |\n| [flate2](https://github.com/rust-lang/flate2-rs) | `1.1.8` | `1.1.9` |\n| [include-flate](https://github.com/SOF3/include-flate) | `0.3.1` | `0.3.3` |\n| [indexmap](https://github.com/indexmap-rs/indexmap) | `2.13.0` | `2.14.0` |\n| [itoa](https://github.com/dtolnay/itoa) | `1.0.17` | `1.0.18` |\n| [memchr](https://github.com/BurntSushi/memchr) | `2.7.6` | `2.8.0` |\n| [num-conv](https://github.com/jhpratt/num-conv) | `0.2.0` | `0.2.2` |\n| [once_cell](https://github.com/matklad/once_cell) | `1.21.3` | `1.21.4` |\n| [pin-project-lite](https://github.com/taiki-e/pin-project-lite) | `0.2.16` | `0.2.17` |\n| [pkg-config](https://github.com/rust-lang/pkg-config-rs) | `0.3.32` | `0.3.33` |\n| [quote](https://github.com/dtolnay/quote) | `1.0.44` | `1.0.45` |\n| [rayon](https://github.com/rayon-rs/rayon) | `1.11.0` | `1.12.0` |\n| [rustc-hash](https://github.com/rust-lang/rustc-hash) | `2.1.1` | `2.1.2` |\n| [simd-adler32](https://github.com/mcountryman/simd-adler32) | `0.3.8` | `0.3.9` |\n| [time](https://github.com/time-rs/time) | `0.3.46` | `0.3.47` |\n| [tokio](https://github.com/tokio-rs/tokio) | `1.49.0` | `1.52.3` |\n| [unicode-ident](https://github.com/dtolnay/unicode-ident) | `1.0.22` | `1.0.24` |\n| [wasip2](https://github.com/bytecodealliance/wasi-rs) | `1.0.2+wasi-0.2.9` | `1.0.3+wasi-0.2.9` |\n| [zmij](https://github.com/dtolnay/zmij) | `1.0.18` | `1.0.21` |\n\n\nUpdates `anyhow` from 1.0.100 to 1.0.102\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dtolnay/anyhow/releases\"\u003eanyhow's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.0.102\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove backtrace dependency (\u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/438\"\u003e#438\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/439\"\u003e#439\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/440\"\u003e#440\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/441\"\u003e#441\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.0.101\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd #[inline] to anyhow::Ok helper (\u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/437\"\u003e#437\u003c/a\u003e, thanks \u003ca href=\"https://github.com/Ibitier\"\u003e\u003ccode\u003e@​Ibitier\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/5c657b32522023a9f7ef883fb08582fd8e656b1a\"\u003e\u003ccode\u003e5c657b3\u003c/code\u003e\u003c/a\u003e Release 1.0.102\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/e737fb63918e8c71a3d0a968004a9c7ed7942283\"\u003e\u003ccode\u003ee737fb6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/442\"\u003e#442\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/7fe62b51c62804f8b84443affeacfb3810ed2516\"\u003e\u003ccode\u003e7fe62b5\u003c/code\u003e\u003c/a\u003e Further simply backtrace conditional compilation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/c8cb5cae23e57a2dbb87bf05cba04f1df1f1660b\"\u003e\u003ccode\u003ec8cb5ca\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/441\"\u003e#441\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/de27df7e0f510d543c18e50a0736566b66e62baf\"\u003e\u003ccode\u003ede27df7\u003c/code\u003e\u003c/a\u003e Delete CI use of --features=backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/9b67e5dd608658d805640cf1b6f6c9d091686ec1\"\u003e\u003ccode\u003e9b67e5d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/440\"\u003e#440\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/efdb11a259ca58a2e505ef50486cf2d6b5ddc42a\"\u003e\u003ccode\u003eefdb11a\u003c/code\u003e\u003c/a\u003e Simplify \u003ccode\u003estd_backtrace\u003c/code\u003e conditional code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/b8a9a707838969721a86b28e3c45ce27e279e981\"\u003e\u003ccode\u003eb8a9a70\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/439\"\u003e#439\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/a42fc2c21846ba459df43a3f8b4996a2074909cb\"\u003e\u003ccode\u003ea42fc2c\u003c/code\u003e\u003c/a\u003e Remove \u003ccode\u003efeature = \u0026quot;backtrace\u0026quot;\u003c/code\u003e conditional code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/2a2a3ceb4cbc409fd99613ab5744b21e825e7908\"\u003e\u003ccode\u003e2a2a3ce\u003c/code\u003e\u003c/a\u003e Re-word backtrace feature comment\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dtolnay/anyhow/compare/1.0.100...1.0.102\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `clap` from 4.5.56 to 4.5.60\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/clap-rs/clap/releases\"\u003eclap's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.5.60\u003c/h2\u003e\n\u003ch2\u003e[4.5.60] - 2026-02-19\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(help)\u003c/em\u003e Quote empty default values, possible values\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.59\u003c/h2\u003e\n\u003ch2\u003e[4.5.59] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eCommand::ignore_errors\u003c/code\u003e no longer masks help/version on subcommands\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.58\u003c/h2\u003e\n\u003ch2\u003e[4.5.58] - 2026-02-11\u003c/h2\u003e\n\u003ch2\u003ev4.5.57\u003c/h2\u003e\n\u003ch2\u003e[4.5.57] - 2026-02-03\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegression from 4.5.55 where having an argument with \u003ccode\u003e.value_terminator(\u0026quot;--\u0026quot;)\u003c/code\u003e caused problems with an argument with \u003ccode\u003e.last(true)\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/clap-rs/clap/blob/master/CHANGELOG.md\"\u003eclap's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.5.60] - 2026-02-19\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(help)\u003c/em\u003e Quote empty default values, possible values\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.59] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eCommand::ignore_errors\u003c/code\u003e no longer masks help/version on subcommands\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.58] - 2026-02-11\u003c/h2\u003e\n\u003ch2\u003e[4.5.57] - 2026-02-03\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegression from 4.5.55 where having an argument with \u003ccode\u003e.value_terminator(\u0026quot;--\u0026quot;)\u003c/code\u003e caused problems with an argument with \u003ccode\u003e.last(true)\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/33d24d844b11c0e926ae132e1af338ff070bdf4a\"\u003e\u003ccode\u003e33d24d8\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/9332409f4a6c1d5c22064e839ec8e9bc040f3be7\"\u003e\u003ccode\u003e9332409\u003c/code\u003e\u003c/a\u003e docs: Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/b7adce5a17089596eecb2af6985e6503f2ffcd38\"\u003e\u003ccode\u003eb7adce5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6166\"\u003e#6166\u003c/a\u003e from fabalchemy/fix-dynamic-powershell-completion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/009bba44ec3d182028ec3a72f5b6f3e507827768\"\u003e\u003ccode\u003e009bba4\u003c/code\u003e\u003c/a\u003e fix(clap_complete): Improve powershell registration\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/d89d57dfb4bdd18930a40c6d7f4fadb23ee9c5b3\"\u003e\u003ccode\u003ed89d57d\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/f18b67ec3d4ce6ac1acf115adaab2f16ab2ed3c7\"\u003e\u003ccode\u003ef18b67e\u003c/code\u003e\u003c/a\u003e docs: Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/9d218eb418526143c9110f734f78a608b8cf6440\"\u003e\u003ccode\u003e9d218eb\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6165\"\u003e#6165\u003c/a\u003e from epage/shirt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/126440ca846613671e1dac98198b2ceb17dab2b0\"\u003e\u003ccode\u003e126440c\u003c/code\u003e\u003c/a\u003e fix(help): Correctly calculate padding for short-only args\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/9e3c05ef3800a3e638b8224a7881a81517a4f4db\"\u003e\u003ccode\u003e9e3c05e\u003c/code\u003e\u003c/a\u003e test(help): Show panic with short, valueless arg\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/c9898d0fece98d8520d3dd954cf457b685b3308f\"\u003e\u003ccode\u003ec9898d0\u003c/code\u003e\u003c/a\u003e test(help): Verify short with value\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/clap-rs/clap/compare/clap_complete-v4.5.56...clap_complete-v4.5.60\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `const_format` from 0.2.35 to 0.2.36\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rodrimati1992/const_format_crates/blob/master/Changelog.md\"\u003econst_format's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e0.2.36\u003c/h3\u003e\n\u003cp\u003eBreaking change: bumped Minimum Supported Rust Version to Rust 1.71. This change is motivated by \u003ccode\u003equote\u003c/code\u003e increasing its MSRV to 1.71.\u003c/p\u003e\n\u003cp\u003eNow the \u003ccode\u003e\u0026quot;rust_1_64\u0026quot;\u003c/code\u003e feature is effectively always enabled, so these items are always enabled:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003econst_format::str_split\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eDeprecated these items because their replacements now take constant time to run:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003econst_format::fmt::StrWriter::as_bytes_alt\u003c/code\u003e: superceeded by \u003ccode\u003eas_bytes\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003econst_format::fmt::StrWriter::as_str_alt\u003c/code\u003e: superceeded by \u003ccode\u003eas_str\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003econst_format::fmt::StrWriterMut::as_bytes_alt\u003c/code\u003e: superceeded by \u003ccode\u003eas_bytes\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003econst_format::fmt::StrWriterMut::as_str_alt\u003c/code\u003e: superceeded by \u003ccode\u003eas_str\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003econst_format::utils::slice_up_to_len_alt\u003c/code\u003e: superceeded by \u003ccode\u003eslice_up_to_len\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eChanged these methods from being conditionally const (by requiring the \u003ccode\u003e\u0026quot;rust_1_64\u0026quot;\u003c/code\u003e feature to be const) to being unconditionally const:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003econst_format::fmt::StrWriter::as_bytes\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003econst_format::fmt::StrWriter::as_str\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003econst_format::fmt::StrWriterMut::as_bytes\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003econst_format::fmt::StrWriterMut::as_str\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eChanged this method to be \u003ccode\u003econst\u003c/code\u003e:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003econst_format::AsciiStr::as_str\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFixed nightly 2026-04-09 compatibility when \u003ccode\u003ecargo update -Z minimal-versions\u003c/code\u003e is used by bumping \u003ccode\u003ekonst\u003c/code\u003e internal dependency to \u003ccode\u003e\u0026quot;0.2.20\u0026quot;\u003c/code\u003e version\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rodrimati1992/const_format_crates/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `which` from 8.0.0 to 8.0.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/harryfei/which-rs/releases\"\u003ewhich's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.0.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove \u003ccode\u003eenv_home\u003c/code\u003e dependency by \u003ca href=\"https://github.com/madsmtm\"\u003e\u003ccode\u003e@​madsmtm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/harryfei/which-rs/pull/118\"\u003eharryfei/which-rs#118\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNew windows impl by \u003ca href=\"https://github.com/Xaeroxe\"\u003e\u003ccode\u003e@​Xaeroxe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/harryfei/which-rs/pull/121\"\u003eharryfei/which-rs#121\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwap dependency on rustix for dependency on libc by \u003ca href=\"https://github.com/Xaeroxe\"\u003e\u003ccode\u003e@​Xaeroxe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/harryfei/which-rs/pull/122\"\u003eharryfei/which-rs#122\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/madsmtm\"\u003e\u003ccode\u003e@​madsmtm\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/harryfei/which-rs/pull/118\"\u003eharryfei/which-rs#118\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/harryfei/which-rs/compare/8.0.1...8.0.2\"\u003ehttps://github.com/harryfei/which-rs/compare/8.0.1...8.0.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e8.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate Readme by \u003ca href=\"https://github.com/atouchet\"\u003e\u003ccode\u003e@​atouchet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/harryfei/which-rs/pull/115\"\u003eharryfei/which-rs#115\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEmpty path fix for Windows machines by \u003ca href=\"https://github.com/Xaeroxe\"\u003e\u003ccode\u003e@​Xaeroxe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/harryfei/which-rs/pull/117\"\u003eharryfei/which-rs#117\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/atouchet\"\u003e\u003ccode\u003e@​atouchet\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/harryfei/which-rs/pull/115\"\u003eharryfei/which-rs#115\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/harryfei/which-rs/compare/8.0.0...8.0.1\"\u003ehttps://github.com/harryfei/which-rs/compare/8.0.0...8.0.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/harryfei/which-rs/blob/master/CHANGELOG.md\"\u003ewhich's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDependency on \u003ccode\u003ehome_env\u003c/code\u003e removed, the implementation found in rust 1.85.0 for a home directory has been fixed.\nThanks, [\u003ca href=\"https://github.com/madsmtm\"\u003e\u003ccode\u003e@​madsmtm\u003c/code\u003e\u003c/a\u003e],(\u003ca href=\"https://github.com/madsmtm\"\u003ehttps://github.com/madsmtm\u003c/a\u003e) for this contribution to which!\u003c/li\u003e\n\u003cli\u003eDependency on \u003ccode\u003ewinsafe\u003c/code\u003e removed, code for Windows API is now handwritten.\u003c/li\u003e\n\u003cli\u003eDependency on \u003ccode\u003erustix\u003c/code\u003e removed, we now depend on \u003ccode\u003elibc\u003c/code\u003e directly to reduce compile times.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix Windows bug reported in \u003ca href=\"https://redirect.github.com/harryfei/which-rs/issues/108#issuecomment-3998654328\"\u003eharryfei/which-rs#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harryfei/which-rs/commit/5bb3e82a82a6ef8f56a3a455125680fd6579c7ca\"\u003e\u003ccode\u003e5bb3e82\u003c/code\u003e\u003c/a\u003e update README MSRV\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harryfei/which-rs/commit/aacc10ece3376c86d472cd2ea6e9aaa1d013ab75\"\u003e\u003ccode\u003eaacc10e\u003c/code\u003e\u003c/a\u003e add changelog entry\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harryfei/which-rs/commit/7b0c544ec05f491b923fa40db4c1729d19303932\"\u003e\u003ccode\u003e7b0c544\u003c/code\u003e\u003c/a\u003e Swap dependency on rustix for dependency on libc (\u003ca href=\"https://redirect.github.com/harryfei/which-rs/issues/122\"\u003e#122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harryfei/which-rs/commit/189e99a7db5cd5aa3dfe2d6c90199bf0e97ae1b7\"\u003e\u003ccode\u003e189e99a\u003c/code\u003e\u003c/a\u003e New windows impl (\u003ca href=\"https://redirect.github.com/harryfei/which-rs/issues/121\"\u003e#121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harryfei/which-rs/commit/c48f04e974f0061963c29f5e0293eae2cd8e96ab\"\u003e\u003ccode\u003ec48f04e\u003c/code\u003e\u003c/a\u003e clippy fixes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harryfei/which-rs/commit/1fa32b79b83a750b5a23ee4fa0ced6b0c8522048\"\u003e\u003ccode\u003e1fa32b7\u003c/code\u003e\u003c/a\u003e bump msrv, bump version, add to changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harryfei/which-rs/commit/b0d6e741229c74dd7eececd0d1a72f00bfd0bb22\"\u003e\u003ccode\u003eb0d6e74\u003c/code\u003e\u003c/a\u003e Remove env_home dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harryfei/which-rs/commit/26972207b98de1bfd6c0e16690f5c9186388b54c\"\u003e\u003ccode\u003e2697220\u003c/code\u003e\u003c/a\u003e chore: add release steps documentation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harryfei/which-rs/commit/873554e9c99c655fcec04c7196f759a60103eb1e\"\u003e\u003ccode\u003e873554e\u003c/code\u003e\u003c/a\u003e add entry to CHANGELOG.md for 8.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harryfei/which-rs/commit/d684aba22e6ae2b75154b2f6d6771a743c1953de\"\u003e\u003ccode\u003ed684aba\u003c/code\u003e\u003c/a\u003e bump version to 8.0.1\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/harryfei/which-rs/compare/8.0.0...8.0.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `sha1` from 0.10.6 to 0.11.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/hashes/commit/2f00175af936de46b3ddefe65c4de93cb4e876e4\"\u003e\u003ccode\u003e2f00175\u003c/code\u003e\u003c/a\u003e Release sha1 v0.11.0 (\u003ca href=\"https://redirect.github.com/RustCrypto/hashes/issues/810\"\u003e#810\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/hashes/commit/07d370c4a0d7cfab1f2a2e3d21bbb44e5669ee32\"\u003e\u003ccode\u003e07d370c\u003c/code\u003e\u003c/a\u003e sha1: refactor backends selection (\u003ca href=\"https://redirect.github.com/RustCrypto/hashes/issues/808\"\u003e#808\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/hashes/commit/7c7cb76e8a4978fb319a43122393cae0afc4b73d\"\u003e\u003ccode\u003e7c7cb76\u003c/code\u003e\u003c/a\u003e Fix md5 project link in README (\u003ca href=\"https://redirect.github.com/RustCrypto/hashes/issues/809\"\u003e#809\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/hashes/commit/ffe093984c004769747e998f77da8ff7c0e7a765\"\u003e\u003ccode\u003effe0939\u003c/code\u003e\u003c/a\u003e Release sha2 0.11.0 (\u003ca href=\"https://redirect.github.com/RustCrypto/hashes/issues/806\"\u003e#806\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/hashes/commit/8991b65fe400c31c4cc189510f86ae642c470cd9\"\u003e\u003ccode\u003e8991b65\u003c/code\u003e\u003c/a\u003e Use the standard order of the \u003ccode\u003e[package]\u003c/code\u003e section fields (\u003ca href=\"https://redirect.github.com/RustCrypto/hashes/issues/807\"\u003e#807\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/hashes/commit/3d2bc57db40fd6aeb25d6c6da98d67e2784c2985\"\u003e\u003ccode\u003e3d2bc57\u003c/code\u003e\u003c/a\u003e sha2: refactor backends (\u003ca href=\"https://redirect.github.com/RustCrypto/hashes/issues/802\"\u003e#802\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/hashes/commit/faa55fb83697c8f3113636d88070e5f5edc8c335\"\u003e\u003ccode\u003efaa55fb\u003c/code\u003e\u003c/a\u003e sha3: bump \u003ccode\u003ekeccak\u003c/code\u003e to v0.2 (\u003ca href=\"https://redirect.github.com/RustCrypto/hashes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/hashes/commit/d3e6489e56f8486d4a93ceb7a8abf4924af1de7b\"\u003e\u003ccode\u003ed3e6489\u003c/code\u003e\u003c/a\u003e sha3 v0.11.0-rc.9 (\u003ca href=\"https://redirect.github.com/RustCrypto/hashes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/hashes/commit/bbf6f51ff97f81ab15e6e5f6cf878bfbcb1f47c8\"\u003e\u003ccode\u003ebbf6f51\u003c/code\u003e\u003c/a\u003e sha2: tweak backend docs (\u003ca href=\"https://redirect.github.com/RustCrypto/hashes/issues/800\"\u003e#800\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/hashes/commit/155dbbf2959dbec0ec75948a82590ddaede2d3bc\"\u003e\u003ccode\u003e155dbbf\u003c/code\u003e\u003c/a\u003e sha3: add default value for the \u003ccode\u003eDS\u003c/code\u003e generic parameter on \u003ccode\u003eTurboShake128/256\u003c/code\u003e...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/RustCrypto/hashes/compare/sha1-v0.10.6...sha1-v0.11.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tempfile` from 3.24.0 to 3.25.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Stebalien/tempfile/blob/master/CHANGELOG.md\"\u003etempfile's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.25.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAllow \u003ccode\u003egetrandom\u003c/code\u003e 0.4.x while retaining support for \u003ccode\u003egetrandom\u003c/code\u003e 0.3.x.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/Stebalien/tempfile/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `chrono` from 0.4.43 to 0.4.44\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/chronotope/chrono/releases\"\u003echrono's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.44\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: match MSRV with \u003ccode\u003eCargo.toml\u003c/code\u003e contents by \u003ca href=\"https://github.com/coryan\"\u003e\u003ccode\u003e@​coryan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1772\"\u003echronotope/chrono#1772\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd track_caller to non-deprecated functions by \u003ca href=\"https://github.com/svix-jplatte\"\u003e\u003ccode\u003e@​svix-jplatte\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1774\"\u003echronotope/chrono#1774\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/c14b4599d07ef36ffa1f8a531fb0bc7eb3b42464\"\u003e\u003ccode\u003ec14b459\u003c/code\u003e\u003c/a\u003e Bump version to 0.4.44\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/ea832c5090369eefa2cb6a47d643e2f7ade7ffa7\"\u003e\u003ccode\u003eea832c5\u003c/code\u003e\u003c/a\u003e Add track_caller to non-deprecated functions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/cfae889a3a23507acf49b605794abba17effd2d7\"\u003e\u003ccode\u003ecfae889\u003c/code\u003e\u003c/a\u003e Fix panic message in to_rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/f8900b5a44228a7f6282c65e8c407d3ecb6dcb7b\"\u003e\u003ccode\u003ef8900b5\u003c/code\u003e\u003c/a\u003e docs: match MSRV with \u003ccode\u003eCargo.toml\u003c/code\u003e contents\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/chronotope/chrono/compare/v0.4.43...v0.4.44\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `regex-lite` from 0.1.8 to 0.1.9\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/regex/blob/master/CHANGELOG.md\"\u003eregex-lite's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.12.3 (2025-02-03)\u003c/h1\u003e\n\u003cp\u003eThis release excludes some unnecessary things from the archive published to\ncrates.io. Specifically, fuzzing data and various shell scripts are now\nexcluded. If you run into problems, please file an issue.\u003c/p\u003e\n\u003cp\u003eImprovements:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rust-lang/regex/pull/1319\"\u003e#1319\u003c/a\u003e:\nSwitch from a Cargo \u003ccode\u003eexclude\u003c/code\u003e list to an \u003ccode\u003einclude\u003c/code\u003e list, and exclude some\nunnecessary stuff.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.12.2 (2025-10-13)\u003c/h1\u003e\n\u003cp\u003eThis release fixes a \u003ccode\u003ecargo doc\u003c/code\u003e breakage on nightly when \u003ccode\u003e--cfg docsrs\u003c/code\u003e is\nenabled. This caused documentation to fail to build on docs.rs.\u003c/p\u003e\n\u003cp\u003eBug fixes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e[BUG \u003ca href=\"https://redirect.github.com/rust-lang/regex/issues/1305\"\u003e#1305\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/rust-lang/regex/issues/1305\"\u003erust-lang/regex#1305\u003c/a\u003e):\nSwitches the \u003ccode\u003edoc_auto_cfg\u003c/code\u003e feature to \u003ccode\u003edoc_cfg\u003c/code\u003e on nightly for docs.rs builds.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.12.1 (2025-10-10)\u003c/h1\u003e\n\u003cp\u003eThis release makes a bug fix in the new \u003ccode\u003eregex::Captures::get_match\u003c/code\u003e API\nintroduced in \u003ccode\u003e1.12.0\u003c/code\u003e. There was an oversight with the lifetime parameter\nfor the \u003ccode\u003eMatch\u003c/code\u003e returned. This is technically a breaking change, but given\nthat it was caught almost immediately and I've yanked the \u003ccode\u003e1.12.0\u003c/code\u003e release,\nI think this is fine.\u003c/p\u003e\n\u003ch1\u003e1.12.0 (2025-10-10)\u003c/h1\u003e\n\u003cp\u003eThis release contains a smattering of bug fixes, a fix for excessive memory\nconsumption in some cases and a new \u003ccode\u003eregex::Captures::get_match\u003c/code\u003e API.\u003c/p\u003e\n\u003cp\u003eImprovements:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e[FEATURE \u003ca href=\"https://redirect.github.com/rust-lang/regex/issues/1146\"\u003e#1146\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/rust-lang/regex/issues/1146\"\u003erust-lang/regex#1146\u003c/a\u003e):\nAdd \u003ccode\u003eCapture::get_match\u003c/code\u003e for returning the overall match without \u003ccode\u003eunwrap()\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eBug fixes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e[BUG \u003ca href=\"https://redirect.github.com/rust-lang/regex/issues/1083\"\u003e#1083\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/rust-lang/regex/issues/1083\"\u003erust-lang/regex#1083\u003c/a\u003e):\nFixes a panic in the lazy DFA (can only occur for especially large regexes).\u003c/li\u003e\n\u003cli\u003e[BUG \u003ca href=\"https://redirect.github.com/rust-lang/regex/issues/1116\"\u003e#1116\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/rust-lang/regex/issues/1116\"\u003erust-lang/regex#1116\u003c/a\u003e):\nFixes a memory usage regression for large regexes (introduced in \u003ccode\u003eregex 1.9\u003c/code\u003e).\u003c/li\u003e\n\u003cli\u003e[BUG \u003ca href=\"https://redirect.github.com/rust-lang/regex/issues/1195\"\u003e#1195\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/rust-lang/regex/issues/1195\"\u003erust-lang/regex#1195\u003c/a\u003e):\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/regex/commit/0c07fae444adf0802d84455e689f1143d2dd7790\"\u003e\u003ccode\u003e0c07fae\u003c/code\u003e\u003c/a\u003e regex-lite-0.1.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/regex/commit/6a810068f030c023a12c93ccae49bc5fd907c4f6\"\u003e\u003ccode\u003e6a81006\u003c/code\u003e\u003c/a\u003e cargo: exclude development scripts and fuzzing data\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/regex/commit/4733e28ba4f281f643ce93e4089eccbb9a9d5a5a\"\u003e\u003ccode\u003e4733e28\u003c/code\u003e\u003c/a\u003e automata: fix \u003ccode\u003eonepass::DFA::try_search_slots\u003c/code\u003e panic when too many slots are ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/regex/commit/5ea3eb1e95f0338e283f5f0b4681f0891a1cd836\"\u003e\u003ccode\u003e5ea3eb1\u003c/code\u003e\u003c/a\u003e 1.12.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/regex/commit/ab0b07171b82d1d4fdc8359505d12b2e818514d4\"\u003e\u003ccode\u003eab0b071\u003c/code\u003e\u003c/a\u003e regex-automata-0.4.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/regex/commit/691d51457db276bbdf9ca3de2cafe285c662c59f\"\u003e\u003ccode\u003e691d514\u003c/code\u003e\u003c/a\u003e regex-syntax-0.8.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/regex/commit/1dd90777791dbc6bbf389157d05ac8176c6ad051\"\u003e\u003ccode\u003e1dd9077\u003c/code\u003e\u003c/a\u003e docs: swap \u003ccode\u003edoc_auto_cfg\u003c/code\u003e with \u003ccode\u003edoc_cfg\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/regex/commit/0089034cb37b0bf3785f2e0211f7eca74033f4d1\"\u003e\u003ccode\u003e0089034\u003c/code\u003e\u003c/a\u003e regex-cli-0.2.3\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rust-lang/regex/compare/regex-lite-0.1.8...regex-lite-0.1.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustix` from 1.1.3 to 1.1.4\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/c4caf5caaa7e93828a2e4a4cdba1dd0171e45717\"\u003e\u003ccode\u003ec4caf5c\u003c/code\u003e\u003c/a\u003e chore: Release rustix version 1.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/5953a2c6bc7bc97c308a8e6a0fd4a8bf79997117\"\u003e\u003ccode\u003e5953a2c\u003c/code\u003e\u003c/a\u003e Prune pins in CI that are no longer needed. (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/1588\"\u003e#1588\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/9116c05d2eab3484748a629e72bdff17117c4f5b\"\u003e\u003ccode\u003e9116c05\u003c/code\u003e\u003c/a\u003e Bump dependencies (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/1567\"\u003e#1567\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/5ee0ca360f41b3699b7c543d1153e94c65988610\"\u003e\u003ccode\u003e5ee0ca3\u003c/code\u003e\u003c/a\u003e hurd: Fix l_type and l_whence types (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/1569\"\u003e#1569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/89505893fc3b4b9b9a22625cd3a670f6d6cf2f44\"\u003e\u003ccode\u003e8950589\u003c/code\u003e\u003c/a\u003e Clobber vector registers and do not use preserves_flags in riscv64 syscalls (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/7b0d2ae013976c959627598c057644ae8922708e\"\u003e\u003ccode\u003e7b0d2ae\u003c/code\u003e\u003c/a\u003e Update pins for MSRV compatibility (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/1585\"\u003e#1585\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/99458d830840dafb8a8c5b8b54cf05beabc2e581\"\u003e\u003ccode\u003e99458d8\u003c/code\u003e\u003c/a\u003e feat(redox): \u003ccode\u003erenameat\u003c/code\u003e and \u003ccode\u003erenameat_with\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/1586\"\u003e#1586\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/a9c8dcbbb74df7a7c4ec6cf50629a810bab6500d\"\u003e\u003ccode\u003ea9c8dcb\u003c/code\u003e\u003c/a\u003e Remove reference to yanked crate in README.md (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/1587\"\u003e#1587\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/8bf15a0eb444087e4c3ed04e01ed488cc429af2d\"\u003e\u003ccode\u003e8bf15a0\u003c/code\u003e\u003c/a\u003e Drop custom makedev implementation for Redox (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/1582\"\u003e#1582\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/74b886d40d7b5209a8d448550e4595e8e06158a1\"\u003e\u003ccode\u003e74b886d\u003c/code\u003e\u003c/a\u003e Update pins for MSRV compatibility (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/1584\"\u003e#1584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/bytecodealliance/rustix/compare/v1.1.3...v1.1.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `serde_json` from 1.0.149 to 1.0.150\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/serde-rs/json/releases\"\u003eserde_json's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.0.150\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReject non-string enum object keys (\u003ca href=\"https://redirect.github.com/serde-rs/json/issues/1324\"\u003e#1324\u003c/a\u003e, thanks \u003ca href=\"https://github.com/puneetdixit200\"\u003e\u003ccode\u003e@​puneetdixit200\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/serde-rs/json/commit/a1ae73ac6a6940a4a57c673aebaa13ed4dfe3e8c\"\u003e\u003ccode\u003ea1ae73a\u003c/code\u003e\u003c/a\u003e Release 1.0.150\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/serde-rs/json/commit/1a360b0a6c003912afc3503c834b0edd798bca28\"\u003e\u003ccode\u003e1a360b0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/serde-rs/json/issues/1324\"\u003e#1324\u003c/a\u003e from puneetdixit200/reject-non-string-enum-keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/serde-rs/json/commit/2037b634f9dccbddc11cff189ebeb5854fa0e01c\"\u003e\u003ccode\u003e2037b63\u003c/code\u003e\u003c/a\u003e Reject non-string enum object keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/serde-rs/json/commit/5d30df60e916e9b8fc46c74794007ff271fdfbbf\"\u003e\u003ccode\u003e5d30df6\u003c/code\u003e\u003c/a\u003e Resolve manual_assert_eq pedantic clippy lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/serde-rs/json/commit/dc8003a88e7142529cf4a7429c4778af31dadf50\"\u003e\u003ccode\u003edc8003a\u003c/code\u003e\u003c/a\u003e Raise required compiler for preserve_order feature to 1.85\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/serde-rs/json/commit/a42fa980f8556cda36d896fa3713544b2e5eaa2c\"\u003e\u003ccode\u003ea42fa98\u003c/code\u003e\u003c/a\u003e Unpin CI miri toolchain\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/serde-rs/json/commit/684a60eba18abfc0e0f7ddb0c2cd39f8f60249cf\"\u003e\u003ccode\u003e684a60e\u003c/code\u003e\u003c/a\u003e Pin CI miri to nightly-2026-02-11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/serde-rs/json/commit/7c7da3302b6b1cdab7f11ea49ca1a74422ab4551\"\u003e\u003ccode\u003e7c7da33\u003c/code\u003e\u003c/a\u003e Raise required compiler to Rust 1.71\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/serde-rs/json/commit/acf4850e2969f1caccab2c4727a90ed006ba35bb\"\u003e\u003ccode\u003eacf4850\u003c/code\u003e\u003c/a\u003e Simplify Number::is_f64\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/serde-rs/json/commit/6b8ceab565dcfe4f83dfaacd287d11c8bd8f306c\"\u003e\u003ccode\u003e6b8ceab\u003c/code\u003e\u003c/a\u003e Resolve unnecessary_map_or clippy lint\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/serde-rs/json/compare/v1.0.149...v1.0.150\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `libc` from 0.2.180 to 0.2.186\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/libc/releases\"\u003elibc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.2.186\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eApple: Add \u003ccode\u003eKEVENT_FLAG_*\u003c/code\u003e constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5070\"\u003e#5070\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add \u003ccode\u003ePR_SET_MEMORY_MERGE\u003c/code\u003e and \u003ccode\u003ePR_GET_MEMORY_MERGE\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5060\"\u003e#5060\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCI: Migrate FreeBSD CI from Cirrus CI to GitHub Actions (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5058\"\u003e#5058\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.2.185\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEspIDF: Add \u003ccode\u003eespidf_picolibc\u003c/code\u003e cfg for picolibc \u003ccode\u003eO_*\u003c/code\u003e flag values (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5035\"\u003e#5035\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHexagon: add missing constants and fix types for linux-musl (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5042\"\u003e#5042\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRedox: Add semaphore functions (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5051\"\u003e#5051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eWindows: Add \u003ccode\u003esprintf\u003c/code\u003e, \u003ccode\u003esnprintf\u003c/code\u003e, and the \u003ccode\u003escanf\u003c/code\u003e family (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5024\"\u003e#5024\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eHexagon: Decouple \u003ccode\u003etime64\u003c/code\u003e types from musl symbol redirects (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5040\"\u003e#5040\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHorizon: Change \u003ccode\u003ePOLL\u003c/code\u003e constants from \u003ccode\u003ec_short\u003c/code\u003e to \u003ccode\u003ec_int\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5045\"\u003e#5045\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.2.184\u003c/h2\u003e\n\u003ch3\u003eMSRV\u003c/h3\u003e\n\u003cp\u003eThis release increases the MSRV of \u003ccode\u003elibc\u003c/code\u003e to 1.65. With this update, you can now always use the\n\u003ccode\u003ecore::ffi::c_*\u003c/code\u003e types with \u003ccode\u003elibc\u003c/code\u003e definitions, since \u003ccode\u003elibc\u003c/code\u003e has been changed to reexport from\n\u003ccode\u003ecore\u003c/code\u003e rather than redefining them. (This \u003cem\u003eusually\u003c/em\u003e worked before but had edge cases.)\n(\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4972\"\u003e#4972\u003c/a\u003e)\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBSD: Add \u003ccode\u003eIP_MINTTL\u003c/code\u003e to bsd (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5026\"\u003e#5026\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCygwin: Add \u003ccode\u003eTIOCM_DSR\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5031\"\u003e#5031\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFreeBSD: Added \u003ccode\u003exfile\u003c/code\u003e structe and file descriptor types (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5002\"\u003e#5002\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add CAN netlink bindings (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5011\"\u003e#5011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add \u003ccode\u003estruct ethhdr\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4239\"\u003e#4239\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add \u003ccode\u003estruct ifinfomsg\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5012\"\u003e#5012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Define \u003ccode\u003emax_align_t\u003c/code\u003e for riscv64 (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5029\"\u003e#5029\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNetBSD: Add missing \u003ccode\u003eCLOCK_\u003c/code\u003e constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5020\"\u003e#5020\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNuttX: Add \u003ccode\u003e_SC_HOST_NAME_MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5004\"\u003e#5004\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVxWorks: Add \u003ccode\u003eflock\u003c/code\u003e and \u003ccode\u003eF_*LCK\u003c/code\u003e constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4043\"\u003e#4043\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eWASI: Add all \u003ccode\u003e_SC_*\u003c/code\u003e sysconf constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5023\"\u003e#5023\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cp\u003eThe remaining fixed-width integer aliases, \u003ccode\u003e__uint128_t\u003c/code\u003e, \u003ccode\u003e__uint128\u003c/code\u003e, \u003ccode\u003e__int128_t\u003c/code\u003e, and \u003ccode\u003e__int128\u003c/code\u003e,\nhave been deprecated. Use \u003ccode\u003ei128\u003c/code\u003e and \u003ccode\u003eu128\u003c/code\u003e instead. (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4343\"\u003e#4343\u003c/a\u003e)\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/libc/blob/0.2.186/CHANGELOG.md\"\u003elibc's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/libc/compare/0.2.185...0.2.186\"\u003e0.2.186\u003c/a\u003e - 2026-04-24\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eApple: Add \u003ccode\u003eKEVENT_FLAG_*\u003c/code\u003e constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5070\"\u003e#5070\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add \u003ccode\u003ePR_SET_MEMORY_MERGE\u003c/code\u003e and \u003ccode\u003ePR_GET_MEMORY_MERGE\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5060\"\u003e#5060\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCI: Migrate FreeBSD CI from Cirrus CI to GitHub Actions (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5058\"\u003e#5058\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/libc/compare/0.2.184...0.2.185\"\u003e0.2.185\u003c/a\u003e - 2026-04-13\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEspIDF: Add \u003ccode\u003eespidf_picolibc\u003c/code\u003e cfg for picolibc \u003ccode\u003eO_*\u003c/code\u003e flag values (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5035\"\u003e#5035\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHexagon: add missing constants and fix types for linux-musl (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5042\"\u003e#5042\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRedox: Add semaphore functions (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5051\"\u003e#5051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eWindows: Add \u003ccode\u003esprintf\u003c/code\u003e, \u003ccode\u003esnprintf\u003c/code\u003e, and the \u003ccode\u003escanf\u003c/code\u003e family (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5024\"\u003e#5024\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eHexagon: Decouple \u003ccode\u003etime64\u003c/code\u003e types from musl symbol redirects (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5040\"\u003e#5040\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHorizon: Change \u003ccode\u003ePOLL\u003c/code\u003e constants from \u003ccode\u003ec_short\u003c/code\u003e to \u003ccode\u003ec_int\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5045\"\u003e#5045\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/libc/compare/0.2.183...0.2.184\"\u003e0.2.184\u003c/a\u003e - 2026-04-01\u003c/h2\u003e\n\u003ch3\u003eMSRV\u003c/h3\u003e\n\u003cp\u003eThis release increases the MSRV of \u003ccode\u003elibc\u003c/code\u003e to 1.65. With this update, you can now always use the\n\u003ccode\u003ecore::ffi::c_*\u003c/code\u003e types with \u003ccode\u003elibc\u003c/code\u003e definitions, since \u003ccode\u003elibc\u003c/code\u003e has been changed to reexport from\n\u003ccode\u003ecore\u003c/code\u003e rather than redefining them. (This \u003cem\u003eusually\u003c/em\u003e worked before but had edge cases.)\n(\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4972\"\u003e#4972\u003c/a\u003e)\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBSD: Add \u003ccode\u003eIP_MINTTL\u003c/code\u003e to bsd (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5026\"\u003e#5026\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCygwin: Add \u003ccode\u003eTIOCM_DSR\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5031\"\u003e#5031\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFreeBSD: Added \u003ccode\u003exfile\u003c/code\u003e structe and file descriptor types (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5002\"\u003e#5002\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add CAN netlink bindings (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5011\"\u003e#5011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add \u003ccode\u003estruct ethhdr\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4239\"\u003e#4239\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add \u003ccode\u003estruct ifinfomsg\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5012\"\u003e#5012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Define \u003ccode\u003emax_align_t\u003c/code\u003e for riscv64 (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5029\"\u003e#5029\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNetBSD: Add missing \u003ccode\u003eCLOCK_\u003c/code\u003e constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5020\"\u003e#5020\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNuttX: Add \u003ccode\u003e_SC_HOST_NAME_MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5004\"\u003e#5004\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVxWorks: Add \u003ccode\u003eflock\u003c/code\u003e and \u003ccode\u003eF_*LCK\u003c/code\u003e constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4043\"\u003e#4043\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eWASI: Add all \u003ccode\u003e_SC_*\u003c/code\u003e sysconf constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5023\"\u003e#5023\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/42620ffc4109dc32e02f1cae9e63a3f4311b4b71\"\u003e\u003ccode\u003e42620ff\u003c/code\u003e\u003c/a\u003e [0.2] libc: Release 0.2.186\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/9db2eaaaaea60e0b048785e41ca4eb9c50d30ad5\"\u003e\u003ccode\u003e9db2eaa\u003c/code\u003e\u003c/a\u003e apple: add KEVENT_FLAG_* constants\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/38409392ffb50288aa84e94b75fc37bd565fd5bc\"\u003e\u003ccode\u003e3840939\u003c/code\u003e\u003c/a\u003e Add PR_SET_MEMORY_MERGE and PR_GET_MEMORY_MERGE for linux\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/f697deb9440a8f916ec2fb95bef9e06fc847b6f7\"\u003e\u003ccode\u003ef697deb\u003c/code\u003e\u003c/a\u003e chore: migrate from Cirrus CI to GHA\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/71d5bfcc1bda05da1783666fc2cd7d9669c9c4c8\"\u003e\u003ccode\u003e71d5bfc\u003c/code\u003e\u003c/a\u003e libc: Release 0.2.185\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/1027d1c23bd3f07ba3dc6ab4a4eb4660cc91e509\"\u003e\u003ccode\u003e1027d1c\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;ci: Pin nightly to 2026-04-01\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/0e9c6e53cca07b36239a6dc4e65d8b691b39023a\"\u003e\u003ccode\u003e0e9c6e5\u003c/code\u003e\u003c/a\u003e redox: Add semaphore functions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/24ef457ddd312f8b8055a8ed07f5376c5792c211\"\u003e\u003ccode\u003e24ef457\u003c/code\u003e\u003c/a\u003e feat: add back support for gnu windows x86 in ci\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/aa75caf30c0153647c9ab9fc0fe382bce2564b0c\"\u003e\u003ccode\u003eaa75caf\u003c/code\u003e\u003c/a\u003e horizon: Change POLL constants from c_short to c_int\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/b7eda5a40c678c4a195a389a329d85008eabaf2d\"\u003e\u003ccode\u003eb7eda5a\u003c/code\u003e\u003c/a\u003e hexagon: add missing constants and fix types for linux-musl\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-lang/libc/compare/0.2.180...0.2.186\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `env_logger` from 0.11.8 to 0.11.10\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-cli/env_logger/releases\"\u003eenv_logger's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.11.10\u003c/h2\u003e\n\u003ch2\u003e[0.11.10] - 2026-03-23\u003c/h2\u003e\n\u003ch3\u003eInternal\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.11.9\u003c/h2\u003e\n\u003ch2\u003e[0.11.9] - 2026-02-11\u003c/h2\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-cli/env_logger/blob/main/CHANGELOG.md\"\u003eenv_logger's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.11.10] - 2026-03-23\u003c/h2\u003e\n\u003ch3\u003eInternal\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.11.9] - 2026-02-11\u003c/h2\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/41320bf391e3d62cc0171f83403c6d684686ac98\"\u003e\u003ccode\u003e41320bf\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/de8c74f47cb137541ac3c740b1fa77f46554dc25\"\u003e\u003ccode\u003ede8c74f\u003c/code\u003e\u003c/a\u003e docs: Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/d550741cdcd1d64f8a564158d9d0b2554f5d900d\"\u003e\u003ccode\u003ed550741\u003c/code\u003e\u003c/a\u003e docs(gh): Add sponsor link\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/458b07544b86495075418e4d81cc048c98f362b6\"\u003e\u003ccode\u003e458b075\u003c/code\u003e\u003c/a\u003e chore(deps): Update Rust Stable to v1.94 (\u003ca href=\"https://redirect.github.com/rust-cli/env_logger/issues/401\"\u003e#401\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/8bc3fc3e1db40d82a40b485e4c7971ac257d17a2\"\u003e\u003ccode\u003e8bc3fc3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-cli/env_logger/issues/400\"\u003e#400\u003c/a\u003e from epage/update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/143fa647ab33ed3acc9f160dfa3cb075cc62b5a3\"\u003e\u003ccode\u003e143fa64\u003c/code\u003e\u003c/a\u003e chore: Upgrade incompatible\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/b687a2418ab8eeb031a55f561be50742ede27baf\"\u003e\u003ccode\u003eb687a24\u003c/code\u003e\u003c/a\u003e chore: Upgrade compatible\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/8cf1ba99129eeccc9914f9c3059ac6acc0686ba4\"\u003e\u003ccode\u003e8cf1ba9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-cli/env_logger/issues/397\"\u003e#397\u003c/a\u003e from rust-cli/renovate/crate-ci-typos-1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/094ecf7a8adbf013877f7e0883774008a95dbe3d\"\u003e\u003ccode\u003e094ecf7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-cli/env_logger/issues/396\"\u003e#396\u003c/a\u003e from rust-cli/renovate/crate-ci-committed-1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/34ad62679742adceb156ce5a59b0a277a8b67771\"\u003e\u003ccode\u003e34ad626\u003c/code\u003e\u003c/a\u003e chore(deps): Update pre-commit hook crate-ci/typos to v1.44.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-cli/env_logger/compare/v0.11.8...v0.11.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `anstyle` from 1.0.13 to 1.0.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/anstyle/commit/0fe6f0ff6d52e9f91d4071199bd0b24bd46f3d35\"\u003e\u003ccode\u003e0fe6f0f\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/anstyle/commit/332016ed167c53752a4ab11f22317745b2aa6763\"\u003e\u003ccode\u003e332016e\u003c/code\u003e\u003c/a\u003e docs: Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/anstyle/commit/dd73f64cf6287fb70578e3ad12079aad4f93a04b\"\u003e\u003ccode\u003edd73f64\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-cli/anstyle/issues/301\"\u003e#301\u003c/a\u003e from Muscraft/fix-some-escape-codes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/anstyle/commit/e2d2fb53a71cd95ed0c2f50bc8a73f86c9e6bb37\"\u003e\u003ccode\u003ee2d2fb5\u003c/code\u003e\u003c/a\u003e fix: Make 4:0 removes all underline styles\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/anstyle/commit/d82d083aa05ee4ddc059631f083047cbf32cc9ae\"\u003e\u003ccode\u003ed82d083\u003c/code\u003e\u003c/a\u003e feat: Support SGR 59 (reset underline color to default)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/anstyle/commit/85c9a86d4cb8bb2fb1c4a7729e2c70965ad38688\"\u003e\u003ccode\u003e85c9a86\u003c/code\u003e\u003c/a\u003e feat: Support SGR 22-29 (off codes)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/anstyle/commit/ac5c23b73200b8bfa6b016736a951d413fc0536d\"\u003e\u003ccode\u003eac5c23b\u003c/code\u003e\u003c/a\u003e refactor: Reorder SGR match arms to follow numerical order\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/anstyle/commit/2234b680fb3816a8b9ebccefd7cbb4b90b98553d\"\u003e\u003ccode\u003e2234b68\u003c/code\u003e\u003c/a\u003e test: Add tests for SGR off codes, underline subparams, and underline color r...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/anstyle/commit/ffb555fe2bd93b50eee1c8181195fc2fe532c4fc\"\u003e\u003ccode\u003effb555f\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/anstyle/commit/55de8a6470a6ed490efe46e47ccfae313c1a2d35\"\u003e\u003ccode\u003e55de8a6\u003c/code\u003e\u003c/a\u003e chore: Download libc to match cargo\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-cli/anstyle/compare/v1.0.13...v1.0.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `autocfg` from 1.5.0 to 1.5.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cuviper/autocfg/commit/2799b09c24e6632f8e653c5cd8fc303e85a906ba\"\u003e\u003ccode\u003e2799b09\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/cuviper/autocfg/issues/80\"\u003e#80\u003c/a\u003e from cuviper/noscript\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cuviper/autocfg/commit/8e7f49a2a26f1601013f11ed8c186ab8f3e0e38d\"\u003e\u003ccode\u003e8e7f49a\u003c/code\u003e\u003c/a\u003e ci: extend the tested versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cuviper/autocfg/commit/303aa6add847f44a9786eec0d20f31c409bcb841\"\u003e\u003ccode\u003e303aa6a\u003c/code\u003e\u003c/a\u003e Release 1.5.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cuviper/autocfg/commit/73483fb2dc247aa06ed01264967cdac800271bbe\"\u003e\u003ccode\u003e73483fb\u003c/code\u003e\u003c/a\u003e Make \u003ccode\u003etests/wrappers\u003c/code\u003e work without a script\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/cuviper/autocfg/compare/1.5.0...1.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bumpalo` from 3.19.1 to 3.20.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fitzgen/bumpalo/blob/main/CHANGELOG.md\"\u003ebumpalo's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.20.3\u003c/h2\u003e\n\u003cp\u003eReleased 2026-05-22.\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed the \u003ccode\u003etry_alloc_slice_fill_with\u003c/code\u003e, \u003ccode\u003ealloc_slice_try_fill_with\u003c/code\u003e,\n\u003ccode\u003ealloc_slice_fill_with\u003c/code\u003e methods to properly rewind the bump pointer on\nallocation, initialization, and panic failure and avoid wasting bump capacity.\u003c/li\u003e\n\u003cli\u003eFixed a drop bug in \u003ccode\u003ebumpalo::collections::vec::DrainFilter\u003c/code\u003e (used by \u003ccode\u003eretain\u003c/code\u003e\nand \u003ccode\u003eretain_mut\u003c/code\u003e) when the predicate panics.\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003ch2\u003e3.20.2\u003c/h2\u003e\n\u003cp\u003eReleased 2026-02-19.\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRestored \u003ccode\u003eSend\u003c/code\u003e and \u003ccode\u003eSync\u003c/code\u003e implementations for \u003ccode\u003eBox\u0026lt;T\u0026gt;\u003c/code\u003e for \u003ccode\u003eT: ?Sized\u003c/code\u003e types\nas well.\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003ch2\u003e3.20.1\u003c/h2\u003e\n\u003cp\u003eReleased 2026-02-18.\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRestored \u003ccode\u003eSend\u003c/code\u003e and \u003ccode\u003eSync\u003c/code\u003e implementations for \u003ccode\u003eBox\u0026lt;T\u0026gt;\u003c/code\u003e when \u003ccode\u003eT: Send\u003c/code\u003e and \u003ccode\u003eT: Sync\u003c/code\u003e respectively.\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003ch2\u003e3.20.0\u003c/h2\u003e\n\u003cp\u003eReleased 2026-02-18.\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded the \u003ccode\u003ebumpalo::collections::Vec::pop_if\u003c/code\u003e method.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a bug in the \u003ccode\u003ebumpalo::collections::String::retain\u003c/code\u003e method in the face\nof panics.\u003c/li\u003e\n\u003cli\u003eMade \u003ccode\u003ebumpalo::collections::Box\u0026lt;T\u0026gt;\u003c/code\u003e covariant with \u003ccode\u003eT\u003c/code\u003e (just like\n\u003ccode\u003estd::boxed::Box\u0026lt;T\u0026gt;\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fitzgen/bumpalo/commit/84654ace6be4444da3ff102a0a0af3b38c4df4fb\"\u003e\u003ccode\u003e84654ac\u003c/code\u003e\u003c/a\u003e Rewind on slice allocation failure (\u003ca href=\"https://redirect.github.com/fitzgen/bumpalo/issues/324\"\u003e#324\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fitzgen/bumpalo/commit/5325624d38c9f290a3d41344ef2aa5badac1a538\"\u003e\u003ccode\u003e5325624\u003c/code\u003e\u003c/a\u003e Fix a couple bugs (\u003ca href=\"https://redirect.github.com/fitzgen/bumpalo/issues/323\"\u003e#323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fitzgen/bumpalo/commit/fcf8370e7358852493c8b30c8536de3ce9c3c481\"\u003e\u003ccode\u003efcf8370\u003c/code\u003e\u003c/a\u003e Fix UB in \u003ccode\u003eAllocator::grow_zeroed\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/fitzgen/bumpalo/issues/321\"\u003e#321\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fitzgen/bumpalo/commit/657caf85e7984b0aa8bc114c09d9cc2afeaf240d\"\u003e\u003ccode\u003e657caf8\u003c/code\u003e\u003c/a\u003e test: fix test for OOM instead of overflow (\u003ca href=\"https://redirect.github.com/fitzgen/bumpalo/issues/320\"\u003e#320\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fitzgen/bumpalo/commit/1db9be965675c79517e646a628e16493683194f3\"\u003e\u003ccode\u003e1db9be9\u003c/code\u003e\u003c/a\u003e fix: fix typo in comment (\u003ca href=\"https://redirect.github.com/fitzgen/bumpalo/issues/318\"\u003e#318\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fitzgen/bumpalo/commit/a47f6d6b7b5fee9c99a285f0de80257a0a982ef3\"\u003e\u003ccode\u003ea47f6d6\u003c/code\u003e\u003c/a\u003e fix: bump pointer/bump chunk debug assertion (\u003ca href=\"https://redirect.github.com/fitzgen/bumpalo/issues/313\"\u003e#313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fitzgen/bumpalo/commit/0b12966abfa96aace02abe5e1adeab0df942ef35\"\u003e\u003ccode\u003e0b12966\u003c/code\u003e\u003c/a\u003e Update Cargo.toml with keywords (\u003ca href=\"https://redirect.github.com/fitzgen/bumpalo/issues/303\"\u003e#303\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fitzgen/bumpalo/commit/1aad072f93d8a4cf5885446ead554927c7c94f9c\"\u003e\u003ccode\u003e1aad072\u003c/code\u003e\u003c/a\u003e Bump to version 3.20.2 (\u003ca href=\"https://redirect.github.com/fitzgen/bumpalo/issues/312\"\u003e#312\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fitzgen/bumpalo/commit/2fb1d6ae40c56e875cbef9767ae0773e32d60387\"\u003e\u003ccode\u003e2fb1d6a\u003c/code\u003e\u003c/a\u003e Add more tests for send and sync behavior, support unsized types (\u003ca href=\"https://redirect.github.com/fitzgen/bumpalo/issues/311\"\u003e#311\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fitzgen/bumpalo/commit/7c8d1f3870ef2317b1c9b3ef36f6439a6144448e\"\u003e\u003ccode\u003e7c8d1f3\u003c/code\u003e\u003c/a\u003e Bump to 3.20.1 (\u003ca href=\"https://redirect.github.com/fitzgen/bumpalo/issues/310\"\u003e#310\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fitzgen/bumpalo/compare/v3.19.1...v3.20.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.11.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.11.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `cc` from 1.2.55 to 1.2.62\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/cc-rs/releases\"\u003ecc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ecc-v1.2.62\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegenerate target info (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1721\"\u003e#1721\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow exceptions on wasm platforms (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1714\"\u003e#1714\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd relibc env (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1710\"\u003e#1710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erecognize sh4 architecture in parse_arch() (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1712\"\u003e#1712\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ecc-v1.2.61\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix \u003ccode\u003eOutputKind::Capture\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1705\"\u003e#1705\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ecc-v1.2.60\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(ar)\u003c/em\u003e suppress warnings from \u003ccode\u003eD\u003c/code\u003e modifier probe (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1700\"\u003e#1700\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ecc-v1.2.59\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(ar)\u003c/em\u003e deterministic archives with \u003ccode\u003eD\u003c/code\u003e modifier (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegenerate target info (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1698\"\u003e#1698\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix target abi parsing for sanitiser targets (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1695\"\u003e#1695\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ecc-v1.2.58\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate Compile-time Requirements to add info about clang-cl.exe (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1693\"\u003e#1693\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ecc-v1.2.57\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSize archiver batches according to argument length not argument count (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1689\"\u003e#1689\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eBuild::env\u003c/code\u003e for setting environment variables of compiler invocations and other child processes (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1656\"\u003e#1656\u003c/a\u003e \u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1682\"\u003e#1682\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ecc-v1.2.56\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegenerate target info (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1676\"\u003e#1676\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eclang-cl\u003c/code\u003e target when cross-compiling (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1670\"\u003e#1670\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/cc-rs/blob/main/CHANGELOG.md\"\u003ecc's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/compare/cc-v1.2.61...cc-v1.2.62\"\u003e1.2.62\u003c/a\u003e - 2026-05-08\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegenerate target info (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1721\"\u003e#1721\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow exceptions on wasm platforms (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1714\"\u003e#1714\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd relibc env (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1710\"\u003e#1710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erecognize sh4 architecture in parse_arch() (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1712\"\u003e#1712\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/compare/cc-v1.2.60...cc-v1.2.61\"\u003e1.2.61\u003c/a\u003e - 2026-04-24\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix \u003ccode\u003eOutputKind::Capture\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1705\"\u003e#1705\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/compare/cc-v1.2.59...cc-v1.2.60\"\u003e1.2.60\u003c/a\u003e - 2026-04-10\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(ar)\u003c/em\u003e suppress warnings from \u003ccode\u003eD\u003c/code\u003e modifier probe (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1700\"\u003e#1700\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/compare/cc-v1.2.58...cc-v1.2.59\"\u003e1.2.59\u003c/a\u003e - 2026-04-03\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(ar)\u003c/em\u003e deterministic archives with \u003ccode\u003eD\u003c/code\u003e modifier (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegenerate target info (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1698\"\u003e#1698\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix target abi parsing for sanitiser targets (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1695\"\u003e#1695\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/compare/cc-v1.2.57...cc-v1.2.58\"\u003e1.2.58\u003c/a\u003e - 2026-03-27\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate Compile-time Requirements to add info about clang-cl.exe (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1693\"\u003e#1693\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/compare/cc-v1.2.56...cc-v1.2.57\"\u003e1.2.57\u003c/a\u003e - 2026-03-13\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSize archiver batches according to argument length not argument count (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1689\"\u003e#1689\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eBuild::env\u003c/code\u003e for setting environment variables of compiler invocations and other child processes (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1656\"\u003e#1656\u003c/a\u003e \u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1682\"\u003e#1682\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/compare/cc-v1.2.55...cc-v1.2.56\"\u003e1.2.56\u003c/a\u003e - 2026-02-13\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegenerate target info (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1676\"\u003e#1676\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/commit/37a5f8f4e1a2eaf4cf483fc0fb97d35761b720c5\"\u003e\u003ccode\u003e37a5f8f\u003c/code\u003e\u003c/a\u003e chore(cc): release v1.2.62 (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/commit/34a2218d15abcf6cf943b9cc41a8fd9b034cad68\"\u003e\u003ccode\u003e34a2218\u003c/code\u003e\u003c/a\u003e Regenerate target info (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/issues/1721\"\u003e#1721\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/commit/a9d86324573dee124970d217b8c7f35a43e21249\"\u003e\u003ccode\u003ea9d8632\u003c/code\u003e\u003c/a\u003e Allow exceptions on wasm platforms (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/issues/1714\"\u003e#1714\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/commit/ce036b3d5f55b32e5d56517015d71241307d77e1\"\u003e\u003ccode\u003ece036b3\u003c/code\u003e\u003c/a\u003e Add relibc env (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/issues/1710\"\u003e#1710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/commit/18ed3dc8ec1999e742596270c4ffb465585b6056\"\u003e\u003ccode\u003e18ed3dc\u003c/code\u003e\u003c/a\u003e target: recognize sh4 architecture in parse_arch() (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/issues/1712\"\u003e#1712\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/commit/33f84c5c780b1fa3ba00f6038c2f91c1e4130117\"\u003e\u003ccode\u003e33f84c5\u003c/code\u003e\u003c/a\u003e Bump taiki-e/install-action from 2.75.18 to 2.75.19 (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/issues/1709\"\u003e#1709\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/commit/cbd4c092da80dbfc01d8e3bdc1a5bf9936eebe67\"\u003e\u003ccode\u003ecbd4c09\u003c/code\u003e\u003c/a\u003e Bump taiki-e/install-action from 2.75.17 to 2.75.18 (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/issues/1708\"\u003e#1708\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/commit/360f69119862eb26b44253f09f9ce60be5b3011b\"\u003e\u003ccode\u003e360f691\u003c/code\u003e\u003c/a\u003e chore(cc): release v1.2.61 (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/commit/17a2788f499da76bf7a6b404367ab37613b8fa00\"\u003e\u003ccode\u003e17a2788\u003c/code\u003e\u003c/a\u003e Bump taiki-e/install-action from 2.75.16 to 2.75.17 (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/issues/1706\"\u003e#1706\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/commit/da52db738b1b1ea89cc176dfd718e0de6bef742a\"\u003e\u003ccode\u003eda52db7\u003c/code\u003e\u003c/a\u003e command_helpers.rs: fix \u003ccode\u003eOutputKind::Capture\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/issues/1705\"\u003e#1705\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-lang/cc-rs/compare/cc-v1.2.55...cc-v1.2.62\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `clap_builder` from 4.5.56 to 4.5.60\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/clap-rs/clap/releases\"\u003eclap_builder's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.5.60\u003c/h2\u003e\n\u003ch2\u003e[4.5.60] - 2026-02-19\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(help)\u003c/em\u003e Quote empty default values, possible values\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.59\u003c/h2\u003e\n\u003ch2\u003e[4.5.59] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eCommand::ignore_errors\u003c/code\u003e no longer masks help/version on subcommands\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.58\u003c/h2\u003e\n\u003ch2\u003e[4.5.58] - 2026-02-11\u003c/h2\u003e\n\u003ch2\u003ev4.5.57\u003c/h2\u003e\n\u003ch2\u003e[4.5.57] - 2026-02-03\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegression from 4.5.55 where having an argument with \u003ccode\u003e.value_terminator(\u0026quot;--\u0026quot;)\u003c/code\u003e caused problems with an argument with \u003ccode\u003e.last(true)\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/clap-rs/clap/blob/master/CHANGELOG.md\"\u003eclap_builder's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.5.60] - 2026-02-19\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(help)\u003c/em\u003e Quote empty default values, possible values\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.59] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eCommand::ignore_errors\u003c/code\u003e no longer masks help/version on subcommands\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.58] - 2026-02-11\u003c/h2\u003e\n\u003ch2\u003e[4.5.57] - 2026-02-03\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegression from 4.5.55 where having an argument with \u003ccode\u003e.value_terminator(\u0026quot;--\u0026quot;)\u003c/code\u003e caused problems with an argument with \u003ccode\u003e.last(true)\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/20aac9d46e0852292bd43d845b6d9cb69c598c9e\"\u003e\u003ccode\u003e20aac9d\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/d1c520b9374380474b887036357c2ae013a808c7\"\u003e\u003ccode\u003ed1c520b\u003c/code\u003e\u003c/a\u003e docs: Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/862fff68a91b16f2719b88d69024deac80c38f85\"\u003e\u003ccode\u003e862fff6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6278\"\u003e#6278\u003c/a\u003e from yash27-lab/fix-4976-empty-default-display\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/420669948a1f637e0ee707d907053beb104bfc3d\"\u003e\u003ccode\u003e4206699\u003c/code\u003e\u003c/a\u003e fix(builder): Quote empty default values\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/eb16ae4d25bf3a7300b4a51bf953bf0d6e6fa62c\"\u003e\u003ccode\u003eeb16ae4\u003c/code\u003e\u003c/a\u003e refactor(builder): Consolidate escaping with Escape\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/806d98164ce4ec62aa97c771006d782090a08520\"\u003e\u003ccode\u003e806d981\u003c/code\u003e\u003c/a\u003e test(help): Add coverage for empty default values\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/68b5ff900bae8ee1a0e328c1a2301a7985e4f1c6\"\u003e\u003ccode\u003e68b5ff9\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/df54af5a06002392681b4b469df43bc1b2ffcf01\"\u003e\u003ccode\u003edf54af5\u003c/code\u003e\u003c/a\u003e docs: Ipdate changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/97805e4abad1bcedf2e53f91dc453c9c0bcdc9a0\"\u003e\u003ccode\u003e97805e4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6276\"\u003e#6276\u003c/a\u003e from epage/ignore\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/144e5cb46d946f97e51b7122eadd3134ee127bef\"\u003e\u003ccode\u003e144e5cb\u003c/code\u003e\u003c/a\u003e fix(parser): Allow --help to propagate up through subcommands with ignore_erros\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/clap-rs/clap/compare/v4.5.56...v4.5.60\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `clap_lex` from 0.7.7 to 1.1.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/clap-rs/clap/blob/master/CHANGELOG.md\"\u003eclap_lex's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.0 (2015-07-16)\u003c/h2\u003e\n\u003ch4\u003eFeatures\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eallows creating unified help messages, a la docopt or getopts (\u003ca href=\"https://github.com/clap-rs/clap/commit/52bcd892ea51564ce463bc5865acd64f8fe91cb1\"\u003e52bcd892\u003c/a\u003e, closes \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/158\"\u003e#158\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eallows stating all subcommands should \u003cem\u003enot\u003c/em\u003e have --version flags (\u003ca href=\"https://github.com/clap-rs/clap/commit/336c476f631d512b54ac56fdca6f29ebdc2c00c5\"\u003e336c476f\u003c/a\u003e, closes \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/156\"\u003e#156\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eallows setting version number to auto-propagate through subcommands (\u003ca href=\"https://github.com/clap-rs/clap/commit/bc66d3c6deedeca62463fff95369ab1cfcdd366b\"\u003ebc66d3c6\u003c/a\u003e, closes \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/157\"\u003e#157\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eImprovements\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHelp Strings\u003c/strong\u003e  properly aligns and handles newlines in long help strings (\u003ca href=\"https://github.com/clap-rs/clap/commit/f9800a29696dd2cc0b0284bf693b3011831e556f\"\u003ef9800a29\u003c/a\u003e, closes \u003ca href=\"https://redirect.github.com/clap-...\n\n_Description has been truncated_","html_url":"https://github.com/Arkael-Dev/VortexSU/pull/21","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Arkael-Dev%2FVortexSU/issues/21","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/21/packages"},{"uuid":"4473253599","node_id":"PR_kwDOMVjeKs7c2_Ah","number":866,"state":"closed","title":"Bump the cargo group across 6 directories with 5 updates","user":"dependabot[bot]","labels":["dependencies","rust"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-18T23:30:01.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-18T23:25:41.000Z","updated_at":"2026-05-18T23:30:03.000Z","time_to_close":260,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"cargo","update_count":5,"packages":[{"name":"rand","old_version":"0.8.5","new_version":"0.8.6","repository_url":"https://github.com/rust-random/rand"},{"name":"rand","old_version":"0.8.5","new_version":"0.8.6","repository_url":"https://github.com/rust-random/rand"},{"name":"rand","old_version":"0.8.5","new_version":"0.8.6","repository_url":"https://github.com/rust-random/rand"},{"name":"rand","old_version":"0.8.5","new_version":"0.8.6","repository_url":"https://github.com/rust-random/rand"},{"name":"rand","old_version":"0.8.5","new_version":"0.8.6","repository_url":"https://github.com/rust-random/rand"},{"name":"rand","old_version":"0.8.5","new_version":"0.8.6","repository_url":"https://github.com/rust-random/rand"},{"name":"bytes","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"rand","old_version":"0.9.2","new_version":"0.9.4","repository_url":"https://github.com/rust-random/rand"},{"name":"bytes","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"quinn-proto","old_version":"0.11.13","new_version":"0.11.14","repository_url":"https://github.com/quinn-rs/quinn"},{"name":"rand","old_version":"0.9.2","new_version":"0.9.4","repository_url":"https://github.com/rust-random/rand"},{"name":"rustls-webpki","old_version":"0.103.8","new_version":"0.103.13","repository_url":"https://github.com/rustls/webpki"},{"name":"bytes","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"quinn-proto","old_version":"0.11.13","new_version":"0.11.14","repository_url":"https://github.com/quinn-rs/quinn"},{"name":"rand","old_version":"0.9.2","new_version":"0.9.4","repository_url":"https://github.com/rust-random/rand"},{"name":"rustls-webpki","old_version":"0.103.8","new_version":"0.103.13","repository_url":"https://github.com/rustls/webpki"},{"name":"bytes","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"quinn-proto","old_version":"0.11.13","new_version":"0.11.14","repository_url":"https://github.com/quinn-rs/quinn"},{"name":"rand","old_version":"0.9.2","new_version":"0.9.4","repository_url":"https://github.com/rust-random/rand"},{"name":"rustls-webpki","old_version":"0.103.8","new_version":"0.103.13","repository_url":"https://github.com/rustls/webpki"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 1 update in the /mobile/apps/photos/rust directory: [rand](https://github.com/rust-random/rand).\nBumps the cargo group with 4 updates in the /mobile/packages/rust/rust directory: [bytes](https://github.com/tokio-rs/bytes), [rand](https://github.com/rust-random/rand), [quinn-proto](https://github.com/quinn-rs/quinn) and [rustls-webpki](https://github.com/rustls/webpki).\nBumps the cargo group with 2 updates in the /rust/apps/ensu/src-tauri directory: [rustls-webpki](https://github.com/rustls/webpki) and [openssl](https://github.com/rust-openssl/rust-openssl).\nBumps the cargo group with 2 updates in the /rust/e2e directory: [rustls-webpki](https://github.com/rustls/webpki) and [openssl](https://github.com/rust-openssl/rust-openssl).\nBumps the cargo group with 1 update in the /rust/photos directory: [rand](https://github.com/rust-random/rand).\nBumps the cargo group with 4 updates in the /web/packages/wasm directory: [bytes](https://github.com/tokio-rs/bytes), [rand](https://github.com/rust-random/rand), [quinn-proto](https://github.com/quinn-rs/quinn) and [rustls-webpki](https://github.com/rustls/webpki).\n\nUpdates `rand` from 0.8.5 to 0.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.8.5 to 0.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.8.5 to 0.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.8.5 to 0.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.8.5 to 0.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.8.5 to 0.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.11.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.11.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.9.2 to 0.9.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.11.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.11.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `quinn-proto` from 0.11.13 to 0.11.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quinn-rs/quinn/releases\"\u003equinn-proto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003equinn-proto 0.11.14\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jxs\"\u003e\u003ccode\u003e@​jxs\u003c/code\u003e\u003c/a\u003e reported a denial of service issue in quinn-proto 5 days ago:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\"\u003ehttps://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eWe coordinated with them to release this version to patch the issue. Unfortunately the maintainers missed these issues during code review and we did not have enough fuzzing coverage -- we regret the oversight and have added an additional fuzzing target.\u003c/p\u003e\n\u003cp\u003eOrganizations that want to participate in coordinated disclosure can contact us privately to discuss terms.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix over-permissive proto dependency edge by \u003ca href=\"https://github.com/Ralith\"\u003e\u003ccode\u003e@​Ralith\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2385\"\u003equinn-rs/quinn#2385\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e0.11.x: avoid unwrapping VarInt decoding during parameter parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2559\"\u003equinn-rs/quinn#2559\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/2c315aa7f9c2a6c1db87f8f51f40623a427c78fd\"\u003e\u003ccode\u003e2c315aa\u003c/code\u003e\u003c/a\u003e proto: bump version to 0.11.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8ad47f431e7deb82c08b09c2e33ef85aa88fd212\"\u003e\u003ccode\u003e8ad47f4\u003c/code\u003e\u003c/a\u003e Use newer rustls-pki-types PEM parser API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c81c0289abe30d8437ccbf9b6304e2bc9c707cea\"\u003e\u003ccode\u003ec81c028\u003c/code\u003e\u003c/a\u003e ci: fix workflow syntax\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/0050172969f7e69e136c433181330da7790d8d73\"\u003e\u003ccode\u003e0050172\u003c/code\u003e\u003c/a\u003e ci: pin wasm-bindgen-cli version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8a6f82c58d1c565eab78f986e614223e6ed76a85\"\u003e\u003ccode\u003e8a6f82c\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/e52db4ad8df0f9720e7b0e32ecc0e48c9a93de0f\"\u003e\u003ccode\u003ee52db4a\u003c/code\u003e\u003c/a\u003e Apply suggestions from clippy 1.91\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/6df7275c582ca9b7225e0ccf9f9871a55eb73155\"\u003e\u003ccode\u003e6df7275\u003c/code\u003e\u003c/a\u003e chore: Fix \u003ccode\u003eunnecessary_unwrap\u003c/code\u003e clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c8eefa07e087b06d8f2b78ff262ce8ac952994f1\"\u003e\u003ccode\u003ec8eefa0\u003c/code\u003e\u003c/a\u003e proto: avoid unwrapping varint decoding during parameters parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/9723a977754c8662001b0fef97aab8f3ddf1df92\"\u003e\u003ccode\u003e9723a97\u003c/code\u003e\u003c/a\u003e fuzz: add fuzzing target for parsing transport parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/eaf0ef30252cef4acec21f150427e604cd4271c9\"\u003e\u003ccode\u003eeaf0ef3\u003c/code\u003e\u003c/a\u003e Fix over-permissive proto dependency edge (\u003ca href=\"https://redirect.github.com/quinn-rs/quinn/issues/2385\"\u003e#2385\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quinn-rs/quinn/compare/quinn-proto-0.11.13...quinn-proto-0.11.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.9.2 to 0.9.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls-webpki` from 0.103.8 to 0.103.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rustls/webpki/releases\"\u003erustls-webpki's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.103.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix reachable panic in parsing a CRL\u003c/strong\u003e. This was reported to us as \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-82j2-j2ch-gfr8\"\u003eGHSA-82j2-j2ch-gfr8\u003c/a\u003e. Users who don't use CRLs are not affected.\u003c/li\u003e\n\u003cli\u003eFor name constraints on URI names, we incorrectly processed excluded subtrees in a way which inverted the desired meaning. See \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/471\"\u003erustls/webpki#471\u003c/a\u003e. This was a case missing in the fix for \u003ca href=\"https://github.com/advisories/GHSA-965h-392x-2mh5\"\u003ehttps://github.com/advisories/GHSA-965h-392x-2mh5\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eActually fail closed for URI matching against excluded subtrees by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/473\"\u003erustls/webpki#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.13 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/474\"\u003erustls/webpki#474\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.12\u003c/h2\u003e\n\u003cp\u003eThis release fixes two bugs in name constraint enforcement:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-965h-392x-2mh5\u003c/strong\u003e: name constraints for URI names were ignored and therefore accepted. URI name constraints are now rejected unconditionally. Note this library does not provide an API for asserting URI names, and URI name constraints are otherwise not implemented.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-xgp8-3hg3-c2mh\u003c/strong\u003e: permitted subtree name constraints for DNS names were accepted for certificates asserting a wildcard name. This was incorrect because, given a name constraint of \u003ccode\u003eaccept.example.com\u003c/code\u003e, \u003ccode\u003e*.example.com\u003c/code\u003e could feasibly allow a name of \u003ccode\u003ereject.example.com\u003c/code\u003e which is outside the constraint. This is very similar to \u003ca href=\"https://go.dev/issue/76442\"\u003eCVE-2025-61727\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSince name constraints are restrictions on otherwise properly-issued certificates, these bugs are reachable only after signature verification and require misissuance to exploit.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrepare 0.103.12 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/470\"\u003erustls/webpki#470\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.11\u003c/h2\u003e\n\u003cp\u003eIn response to \u003ca href=\"https://redirect.github.com/rustls/webpki/issues/464\"\u003e#464\u003c/a\u003e, we've slightly relaxed requirements for \u003ccode\u003eanchor_from_trust_cert()\u003c/code\u003e to ignore unknown extensions even if they're marked as critical. This only affects parsing a \u003ccode\u003eTrustAnchor\u003c/code\u003e from DER, for which most extensions are ignored anyway.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport parsing trust anchors with unknown critical extensions to 0.103 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/466\"\u003erustls/webpki#466\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.103.10\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eCorrect selection of candidate CRLs by Distribution Point and Issuing Distribution Point\u003c/strong\u003e. If a certificate had more than one \u003ccode\u003edistributionPoint\u003c/code\u003e, then only the first \u003ccode\u003edistributionPoint\u003c/code\u003e would be considered against each CRL's \u003ccode\u003eIssuingDistributionPoint\u003c/code\u003e \u003ccode\u003edistributionPoint\u003c/code\u003e, and then the certificate's subsequent \u003ccode\u003edistributionPoint\u003c/code\u003es would be ignored.\u003c/p\u003e\n\u003cp\u003eThe impact was that correctly provided CRLs would not be consulted to check revocation. With \u003ccode\u003eUnknownStatusPolicy::Deny\u003c/code\u003e (the default) this would lead to incorrect but safe \u003ccode\u003eError::UnknownRevocationStatus\u003c/code\u003e. With \u003ccode\u003eUnknownStatusPolicy::Allow\u003c/code\u003e this would lead to inappropriate acceptance of revoked certificates.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is thought to be of limited impact. This is because both the certificate and CRL are signed -- an attacker would need to compromise a trusted issuing authority to trigger this bug.  An attacker with such capabilities could likely bypass revocation checking through other more impactful means (such as publishing a valid, empty CRL.)\u003c/p\u003e\n\u003cp\u003eMore likely, this bug would be latent in normal use, and an attacker could leverage faulty revocation checking to continue using a revoked credential.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is identified by \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-pwjx-qhcg-rvj4\"\u003eGHSA-pwjx-qhcg-rvj4\u003c/a\u003e. Thank you to \u003ca href=\"https://github.com/1seal\"\u003e\u003ccode\u003e@​1seal\u003c/code\u003e\u003c/a\u003e for the report.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFreshen up rel-0.103 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/455\"\u003erustls/webpki#455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.10 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/458\"\u003erustls/webpki#458\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2879b2ce7a476181ac3050f73fe0835f04728e86\"\u003e\u003ccode\u003e2879b2c\u003c/code\u003e\u003c/a\u003e Prepare 0.103.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2c49773d823f48c87db30db7a66c25993c847007\"\u003e\u003ccode\u003e2c49773\u003c/code\u003e\u003c/a\u003e Improve tests for padding of \u003ccode\u003eBitStringFlags\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/4e3c0b393a7bfb9cbe6dcdc8309cbadf8ee00c51\"\u003e\u003ccode\u003e4e3c0b3\u003c/code\u003e\u003c/a\u003e Correct validation of BIT STRING constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/39c91d2525a542a7f651a1a62c3462e8115cc39e\"\u003e\u003ccode\u003e39c91d2\u003c/code\u003e\u003c/a\u003e Actually fail closed for URI matching against excluded subtrees\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/27131d476e2b68a537e629d6d012bef8dad6efd3\"\u003e\u003ccode\u003e27131d4\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/6ecb8769cde2246e761e058709421c14a7dee6b1\"\u003e\u003ccode\u003e6ecb876\u003c/code\u003e\u003c/a\u003e Clean up stuttery enum variant names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/318b3e6e03ca2bc21600ca6bb0d0c6439b9e6aeb\"\u003e\u003ccode\u003e318b3e6\u003c/code\u003e\u003c/a\u003e Ignore wildcard labels when matching name constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/12196229a327d3d670798688254bd3ea24aba24b\"\u003e\u003ccode\u003e1219622\u003c/code\u003e\u003c/a\u003e Rewrite constraint matching to avoid permissive catch-all branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/57bc62ce538c2d0d31d44b3eb8c58e6a0a764b47\"\u003e\u003ccode\u003e57bc62c\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/d0fa01ee0a76b7585c13ec43de5854955146ffef\"\u003e\u003ccode\u003ed0fa01e\u003c/code\u003e\u003c/a\u003e Allow parsing trust anchors with unknown criticial extensions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.8...v/0.103.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.11.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.11.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `quinn-proto` from 0.11.13 to 0.11.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quinn-rs/quinn/releases\"\u003equinn-proto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003equinn-proto 0.11.14\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jxs\"\u003e\u003ccode\u003e@​jxs\u003c/code\u003e\u003c/a\u003e reported a denial of service issue in quinn-proto 5 days ago:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\"\u003ehttps://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eWe coordinated with them to release this version to patch the issue. Unfortunately the maintainers missed these issues during code review and we did not have enough fuzzing coverage -- we regret the oversight and have added an additional fuzzing target.\u003c/p\u003e\n\u003cp\u003eOrganizations that want to participate in coordinated disclosure can contact us privately to discuss terms.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix over-permissive proto dependency edge by \u003ca href=\"https://github.com/Ralith\"\u003e\u003ccode\u003e@​Ralith\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2385\"\u003equinn-rs/quinn#2385\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e0.11.x: avoid unwrapping VarInt decoding during parameter parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2559\"\u003equinn-rs/quinn#2559\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/2c315aa7f9c2a6c1db87f8f51f40623a427c78fd\"\u003e\u003ccode\u003e2c315aa\u003c/code\u003e\u003c/a\u003e proto: bump version to 0.11.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8ad47f431e7deb82c08b09c2e33ef85aa88fd212\"\u003e\u003ccode\u003e8ad47f4\u003c/code\u003e\u003c/a\u003e Use newer rustls-pki-types PEM parser API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c81c0289abe30d8437ccbf9b6304e2bc9c707cea\"\u003e\u003ccode\u003ec81c028\u003c/code\u003e\u003c/a\u003e ci: fix workflow syntax\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/0050172969f7e69e136c433181330da7790d8d73\"\u003e\u003ccode\u003e0050172\u003c/code\u003e\u003c/a\u003e ci: pin wasm-bindgen-cli version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8a6f82c58d1c565eab78f986e614223e6ed76a85\"\u003e\u003ccode\u003e8a6f82c\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/e52db4ad8df0f9720e7b0e32ecc0e48c9a93de0f\"\u003e\u003ccode\u003ee52db4a\u003c/code\u003e\u003c/a\u003e Apply suggestions from clippy 1.91\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/6df7275c582ca9b7225e0ccf9f9871a55eb73155\"\u003e\u003ccode\u003e6df7275\u003c/code\u003e\u003c/a\u003e chore: Fix \u003ccode\u003eunnecessary_unwrap\u003c/code\u003e clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c8eefa07e087b06d8f2b78ff262ce8ac952994f1\"\u003e\u003ccode\u003ec8eefa0\u003c/code\u003e\u003c/a\u003e proto: avoid unwrapping varint decoding during parameters parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/9723a977754c8662001b0fef97aab8f3ddf1df92\"\u003e\u003ccode\u003e9723a97\u003c/code\u003e\u003c/a\u003e fuzz: add fuzzing target for parsing transport parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/eaf0ef30252cef4acec21f150427e604cd4271c9\"\u003e\u003ccode\u003eeaf0ef3\u003c/code\u003e\u003c/a\u003e Fix over-permissive proto dependency edge (\u003ca href=\"https://redirect.github.com/quinn-rs/quinn/issues/2385\"\u003e#2385\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quinn-rs/quinn/compare/quinn-proto-0.11.13...quinn-proto-0.11.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.9.2 to 0.9.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls-webpki` from 0.103.8 to 0.103.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rustls/webpki/releases\"\u003erustls-webpki's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.103.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix reachable panic in parsing a CRL\u003c/strong\u003e. This was reported to us as \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-82j2-j2ch-gfr8\"\u003eGHSA-82j2-j2ch-gfr8\u003c/a\u003e. Users who don't use CRLs are not affected.\u003c/li\u003e\n\u003cli\u003eFor name constraints on URI names, we incorrectly processed excluded subtrees in a way which inverted the desired meaning. See \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/471\"\u003erustls/webpki#471\u003c/a\u003e. This was a case missing in the fix for \u003ca href=\"https://github.com/advisories/GHSA-965h-392x-2mh5\"\u003ehttps://github.com/advisories/GHSA-965h-392x-2mh5\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eActually fail closed for URI matching against excluded subtrees by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/473\"\u003erustls/webpki#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.13 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/474\"\u003erustls/webpki#474\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.12\u003c/h2\u003e\n\u003cp\u003eThis release fixes two bugs in name constraint enforcement:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-965h-392x-2mh5\u003c/strong\u003e: name constraints for URI names were ignored and therefore accepted. URI name constraints are now rejected unconditionally. Note this library does not provide an API for asserting URI names, and URI name constraints are otherwise not implemented.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-xgp8-3hg3-c2mh\u003c/strong\u003e: permitted subtree name constraints for DNS names were accepted for certificates asserting a wildcard name. This was incorrect because, given a name constraint of \u003ccode\u003eaccept.example.com\u003c/code\u003e, \u003ccode\u003e*.example.com\u003c/code\u003e could feasibly allow a name of \u003ccode\u003ereject.example.com\u003c/code\u003e which is outside the constraint. This is very similar to \u003ca href=\"https://go.dev/issue/76442\"\u003eCVE-2025-61727\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSince name constraints are restrictions on otherwise properly-issued certificates, these bugs are reachable only after signature verification and require misissuance to exploit.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrepare 0.103.12 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/470\"\u003erustls/webpki#470\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.11\u003c/h2\u003e\n\u003cp\u003eIn response to \u003ca href=\"https://redirect.github.com/rustls/webpki/issues/464\"\u003e#464\u003c/a\u003e, we've slightly relaxed requirements for \u003ccode\u003eanchor_from_trust_cert()\u003c/code\u003e to ignore unknown extensions even if they're marked as critical. This only affects parsing a \u003ccode\u003eTrustAnchor\u003c/code\u003e from DER, for which most extensions are ignored anyway.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport parsing trust anchors with unknown critical extensions to 0.103 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/466\"\u003erustls/webpki#466\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.103.10\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eCorrect selection of candidate CRLs by Distribution Point and Issuing Distribution Point\u003c/strong\u003e. If a certificate had more than one \u003ccode\u003edistributionPoint\u003c/code\u003e, then only the first \u003ccode\u003edistributionPoint\u003c/code\u003e would be considered against each CRL's \u003ccode\u003eIssuingDistributionPoint\u003c/code\u003e \u003ccode\u003edistributionPoint\u003c/code\u003e, and then the certificate's subsequent \u003ccode\u003edistributionPoint\u003c/code\u003es would be ignored.\u003c/p\u003e\n\u003cp\u003eThe impact was that correctly provided CRLs would not be consulted to check revocation. With \u003ccode\u003eUnknownStatusPolicy::Deny\u003c/code\u003e (the default) this would lead to incorrect but safe \u003ccode\u003eError::UnknownRevocationStatus\u003c/code\u003e. With \u003ccode\u003eUnknownStatusPolicy::Allow\u003c/code\u003e this would lead to inappropriate acceptance of revoked certificates.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is thought to be of limited impact. This is because both the certificate and CRL are signed -- an attacker would need to compromise a trusted issuing authority to trigger this bug.  An attacker with such capabilities could likely bypass revocation checking through other more impactful means (such as publishing a valid, empty CRL.)\u003c/p\u003e\n\u003cp\u003eMore likely, this bug would be latent in normal use, and an attacker could leverage faulty revocation checking to continue using a revoked credential.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is identified by \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-pwjx-qhcg-rvj4\"\u003eGHSA-pwjx-qhcg-rvj4\u003c/a\u003e. Thank you to \u003ca href=\"https://github.com/1seal\"\u003e\u003ccode\u003e@​1seal\u003c/code\u003e\u003c/a\u003e for the report.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFreshen up rel-0.103 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/455\"\u003erustls/webpki#455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.10 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/458\"\u003erustls/webpki#458\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2879b2ce7a476181ac3050f73fe0835f04728e86\"\u003e\u003ccode\u003e2879b2c\u003c/code\u003e\u003c/a\u003e Prepare 0.103.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2c49773d823f48c87db30db7a66c25993c847007\"\u003e\u003ccode\u003e2c49773\u003c/code\u003e\u003c/a\u003e Improve tests for padding of \u003ccode\u003eBitStringFlags\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/4e3c0b393a7bfb9cbe6dcdc8309cbadf8ee00c51\"\u003e\u003ccode\u003e4e3c0b3\u003c/code\u003e\u003c/a\u003e Correct validation of BIT STRING constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/39c91d2525a542a7f651a1a62c3462e8115cc39e\"\u003e\u003ccode\u003e39c91d2\u003c/code\u003e\u003c/a\u003e Actually fail closed for URI matching against excluded subtrees\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/27131d476e2b68a537e629d6d012bef8dad6efd3\"\u003e\u003ccode\u003e27131d4\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/6ecb8769cde2246e761e058709421c14a7dee6b1\"\u003e\u003ccode\u003e6ecb876\u003c/code\u003e\u003c/a\u003e Clean up stuttery enum variant names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/318b3e6e03ca2bc21600ca6bb0d0c6439b9e6aeb\"\u003e\u003ccode\u003e318b3e6\u003c/code\u003e\u003c/a\u003e Ignore wildcard labels when matching name constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/12196229a327d3d670798688254bd3ea24aba24b\"\u003e\u003ccode\u003e1219622\u003c/code\u003e\u003c/a\u003e Rewrite constraint matching to avoid permissive catch-all branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/57bc62ce538c2d0d31d44b3eb8c58e6a0a764b47\"\u003e\u003ccode\u003e57bc62c\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/d0fa01ee0a76b7585c13ec43de5854955146ffef\"\u003e\u003ccode\u003ed0fa01e\u003c/code\u003e\u003c/a\u003e Allow parsing trust anchors with unknown criticial extensions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.8...v/0.103.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.11.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.11.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `quinn-proto` from 0.11.13 to 0.11.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quinn-rs/quinn/releases\"\u003equinn-proto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003equinn-proto 0.11.14\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jxs\"\u003e\u003ccode\u003e@​jxs\u003c/code\u003e\u003c/a\u003e reported a denial of service issue in quinn-proto 5 days ago:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\"\u003ehttps://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eWe coordinated with them to release this version to patch the issue. Unfortunately the maintainers missed these issues during code review and we did not have enough fuzzing coverage -- we regret the oversight and have added an additional fuzzing target.\u003c/p\u003e\n\u003cp\u003eOrganizations that want to participate in coordinated disclosure can contact us privately to discuss terms.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix over-permissive proto dependency edge by \u003ca href=\"https://github.com/Ralith\"\u003e\u003ccode\u003e@​Ralith\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2385\"\u003equinn-rs/quinn#2385\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e0.11.x: avoid unwrapping VarInt decoding during parameter parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2559\"\u003equinn-rs/quinn#2559\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/2c315aa7f9c2a6c1db87f8f51f40623a427c78fd\"\u003e\u003ccode\u003e2c315aa\u003c/code\u003e\u003c/a\u003e proto: bump version to 0.11.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8ad47f431e7deb82c08b09c2e33ef85aa88fd212\"\u003e\u003ccode\u003e8ad47f4\u003c/code\u003e\u003c/a\u003e Use newer rustls-pki-types PEM parser API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c81c0289abe30d8437ccbf9b6304e2bc9c707cea\"\u003e\u003ccode\u003ec81c028\u003c/code\u003e\u003c/a\u003e ci: fix workflow syntax\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/0050172969f7e69e136c433181330da7790d8d73\"\u003e\u003ccode\u003e0050172\u003c/code\u003e\u003c/a\u003e ci: pin wasm-bindgen-cli version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8a6f82c58d1c565eab78f986e614223e6ed76a85\"\u003e\u003ccode\u003e8a6f82c\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/e52db4ad8df0f9720e7b0e32ecc0e48c9a93de0f\"\u003e\u003ccode\u003ee52db4a\u003c/code\u003e\u003c/a\u003e Apply suggestions from clippy 1.91\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/6df7275c582ca9b7225e0ccf9f9871a55eb73155\"\u003e\u003ccode\u003e6df7275\u003c/code\u003e\u003c/a\u003e chore: Fix \u003ccode\u003eunnecessary_unwrap\u003c/code\u003e clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c8eefa07e087b06d8f2b78ff262ce8ac952994f1\"\u003e\u003ccode\u003ec8eefa0\u003c/code\u003e\u003c/a\u003e proto: avoid unwrapping varint decoding during parameters parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/9723a977754c8662001b0fef97aab8f3ddf1df92\"\u003e\u003ccode\u003e9723a97\u003c/code\u003e\u003c/a\u003e fuzz: add fuzzing target for parsing transport parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/eaf0ef30252cef4acec21f150427e604cd4271c9\"\u003e\u003ccode\u003eeaf0ef3\u003c/code\u003e\u003c/a\u003e Fix over-permissive proto dependency edge (\u003ca href=\"https://redirect.github.com/quinn-rs/quinn/issues/2385\"\u003e#2385\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quinn-rs/quinn/compare/quinn-proto-0.11.13...quinn-proto-0.11.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.9.2 to 0.9.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls-webpki` from 0.103.8 to 0.103.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rustls/webpki/releases\"\u003erustls-webpki's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.103.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix reachable panic in parsing a CRL\u003c/strong\u003e. This was reported to us as \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-82j2-j2ch-gfr8\"\u003eGHSA-82j2-j2ch-gfr8\u003c/a\u003e. Users who don't use CRLs are not affected.\u003c/li\u003e\n\u003cli\u003eFor name constraints on URI names, we incorrectly processed excluded subtrees in a way which inverted the desired meaning. See \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/471\"\u003erustls/webpki#471\u003c/a\u003e. This was a case missing in the fix for \u003ca href=\"https://github.com/advisories/GHSA-965h-392x-2mh5\"\u003ehttps://github.com/advisories/GHSA-965h-392x-2mh5\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eActually fail closed for URI matching against excluded subtrees by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/473\"\u003erustls/webpki#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.13 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/474\"\u003erustls/webpki#474\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.12\u003c/h2\u003e\n\u003cp\u003eThis release fixes two bugs in name constraint enforcement:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-965h-392x-2mh5\u003c/strong\u003e: name constraints for URI names were ignored and therefore accepted. URI name constraints are now rejected unconditionally. Note this library does not provide an API for asserting URI names, and URI name constraints are otherwise not implemented.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-xgp8-3hg3-c2mh\u003c/strong\u003e: permitted subtree name constraints for DNS names were accepted for certificates asserting a wildcard name. This was incorrect because, given a name constraint of \u003ccode\u003eaccept.example.com\u003c/code\u003e, \u003ccode\u003e*.example.com\u003c/code\u003e could feasibly allow a name of \u003ccode\u003ereject.example.com\u003c/code\u003e which is outside the constraint. This is very similar to \u003ca href=\"https://go.dev/issue/76442\"\u003eCVE-2025-61727\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSince name constraints are restrictions on otherwise properly-issued certificates, these bugs are reachable only after signature verification and require misissuance to exploit.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrepare 0.103.12 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/470\"\u003erustls/webpki#470\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.11\u003c/h2\u003e\n\u003cp\u003eIn response to \u003ca href=\"https://redirect.github.com/rustls/webpki/issues/464\"\u003e#464\u003c/a\u003e, we've slightly relaxed requirements for \u003ccode\u003eanchor_from_trust_cert()\u003c/code\u003e to ignore unknown extensions even if they're marked as critical. This only affects parsing a \u003ccode\u003eTrustAnchor\u003c/code\u003e from DER, for which most extensions are ignored anyway.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport parsing trust anchors with unknown critical extensions to 0.103 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/466\"\u003erustls/webpki#466\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.103.10\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eCorrect selection of candidate CRLs by Distribution Point and Issuing Distribution Point\u003c/strong\u003e. If a certificate had more than one \u003ccode\u003edistributionPoint\u003c/code\u003e, then only the first \u003ccode\u003edistributionPoint\u003c/code\u003e would be considered against each CRL's \u003ccode\u003eIssuingDistributionPoint\u003c/code\u003e \u003ccode\u003edistributionPoint\u003c/code\u003e, and then the certificate's subsequent \u003ccode\u003edistributionPoint\u003c/code\u003es would be ignored.\u003c/p\u003e\n\u003cp\u003eThe impact was that correctly provided CRLs would not be consulted to check revocation. With \u003ccode\u003eUnknownStatusPolicy::Deny\u003c/code\u003e (the default) this would lead to incorrect but safe \u003ccode\u003eError::UnknownRevocationStatus\u003c/code\u003e. With \u003ccode\u003eUnknownStatusPolicy::Allow\u003c/code\u003e this would lead to inappropriate acceptance of revoked certificates.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is thought to be of limited impact. This is because both the certificate and CRL are signed -- an attacker would need to compromise a trusted issuing authority to trigger this bug.  An attacker with such capa...\n\n_Description has been truncated_","html_url":"https://github.com/Klomgor/ente/pull/866","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Klomgor%2Fente/issues/866","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/866/packages"},{"uuid":"4456055210","node_id":"PR_kwDONiSlpc7cBdJk","number":1042,"state":"closed","title":"build(deps): bump the cargo group across 3 directories with 7 updates","user":"dependabot[bot]","labels":["dependencies","rust"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-05-19T00:06:22.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-15T18:20:54.000Z","updated_at":"2026-05-19T00:06:24.000Z","time_to_close":279928,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"cargo","update_count":7,"packages":[{"name":"bytes","old_version":"1.10.1","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"rand","old_version":"0.8.5","new_version":"0.8.6","repository_url":"https://github.com/rust-random/rand"},{"name":"lru","old_version":"0.16.2","new_version":"0.16.4","repository_url":"https://github.com/jeromefroe/lru-rs"},{"name":"time","old_version":"0.3.37","new_version":"0.3.47","repository_url":"https://github.com/time-rs/time"},{"name":"oneshot","old_version":"0.1.8","new_version":"0.1.13","repository_url":"https://github.com/faern/oneshot"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 4 updates in the /crates/next-error-code-swc-plugin directory: [bytes](https://github.com/tokio-rs/bytes), [rand](https://github.com/rust-random/rand), [tracing-subscriber](https://github.com/tokio-rs/tracing) and [rkyv](https://github.com/rkyv/rkyv).\nBumps the cargo group with 5 updates in the /rspack directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.10.1` | `1.11.1` |\n| [rand](https://github.com/rust-random/rand) | `0.8.5` | `0.8.6` |\n| [lru](https://github.com/jeromefroe/lru-rs) | `0.16.2` | `0.16.4` |\n| [time](https://github.com/time-rs/time) | `0.3.37` | `0.3.47` |\n| [oneshot](https://github.com/faern/oneshot) | `0.1.8` | `0.1.13` |\n\nBumps the cargo group with 2 updates in the /test/e2e/swc-plugins-env/plugin directory: [rand](https://github.com/rust-random/rand) and [rkyv](https://github.com/rkyv/rkyv).\n\nUpdates `bytes` from 1.9.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.10.1\u003c/h2\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/bytes/pull/773\"\u003etokio-rs/bytes#773\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eBytes v1.10.0\u003c/h2\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.9.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.8.5 to 0.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tracing-subscriber` from 0.3.19 to 0.3.20\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/tracing/releases\"\u003etracing-subscriber's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003etracing-subscriber 0.3.20\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eSecurity Fix\u003c/strong\u003e: ANSI Escape Sequence Injection (CVE-TBD)\u003c/p\u003e\n\u003ch2\u003eImpact\u003c/h2\u003e\n\u003cp\u003ePrevious versions of tracing-subscriber were vulnerable to ANSI escape sequence injection attacks. Untrusted user input containing ANSI escape sequences could be injected into terminal output when logged, potentially allowing attackers to:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eManipulate terminal title bars\u003c/li\u003e\n\u003cli\u003eClear screens or modify terminal display\u003c/li\u003e\n\u003cli\u003ePotentially mislead users through terminal manipulation\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eIn isolation, impact is minimal, however security issues have been found in terminal emulators that enabled an attacker to use ANSI escape sequences via logs to exploit vulnerabilities in the terminal emulator.\u003c/p\u003e\n\u003ch2\u003eSolution\u003c/h2\u003e\n\u003cp\u003eVersion 0.3.20 fixes this vulnerability by escaping ANSI control characters in when writing events to destinations that may be printed to the terminal.\u003c/p\u003e\n\u003ch2\u003eAffected Versions\u003c/h2\u003e\n\u003cp\u003eAll versions of tracing-subscriber prior to 0.3.20 are affected by this vulnerability.\u003c/p\u003e\n\u003ch2\u003eRecommendations\u003c/h2\u003e\n\u003cp\u003eImmediate Action Required: We recommend upgrading to tracing-subscriber 0.3.20 immediately, especially if your application:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eLogs user-provided input (form data, HTTP headers, query parameters, etc.)\u003c/li\u003e\n\u003cli\u003eRuns in environments where terminal output is displayed to users\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eMigration\u003c/h2\u003e\n\u003cp\u003eThis is a patch release with no breaking API changes. Simply update your Cargo.toml:\u003c/p\u003e\n\u003cpre lang=\"toml\"\u003e\u003ccode\u003e[dependencies]\r\ntracing-subscriber = \u0026quot;0.3.20\u0026quot;\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch2\u003eAcknowledgments\u003c/h2\u003e\n\u003cp\u003eWe would like to thank \u003ca href=\"http://github.com/zefr0x\"\u003ezefr0x\u003c/a\u003e who responsibly reported the issue at \u003ccode\u003esecurity@tokio.rs\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eIf you believe you have found a security vulnerability in any tokio-rs project, please email us at \u003ccode\u003esecurity@tokio.rs\u003c/code\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/4c52ca5266a3920fc5dfeebda2accf15ee7fb278\"\u003e\u003ccode\u003e4c52ca5\u003c/code\u003e\u003c/a\u003e fmt: fix ANSI escape sequence injection vulnerability (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3368\"\u003e#3368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/f71cebe41e4c12735b1d19ca804428d4ff7d905d\"\u003e\u003ccode\u003ef71cebe\u003c/code\u003e\u003c/a\u003e subscriber: impl Clone for EnvFilter (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3360\"\u003e#3360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/3a1f571102b38bcdca13d59f3c454989d179055d\"\u003e\u003ccode\u003e3a1f571\u003c/code\u003e\u003c/a\u003e Fix CI (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3361\"\u003e#3361\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/e63ef57f3d686abe3727ddd586eb9af73d6715b7\"\u003e\u003ccode\u003ee63ef57\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-attributes 0.1.30 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3316\"\u003e#3316\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/6e59a13b1a7bcdd78b8b5a7cbcf70a0b2cdd76f0\"\u003e\u003ccode\u003e6e59a13\u003c/code\u003e\u003c/a\u003e attributes: fix tracing::instrument regression around shadowing (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3311\"\u003e#3311\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/e4df76127538aa8370d7dee32a6f84bbec6bbf10\"\u003e\u003ccode\u003ee4df761\u003c/code\u003e\u003c/a\u003e tracing: update core to 0.1.34 and attributes to 0.1.29 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3305\"\u003e#3305\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/643f392ebb73c4fb856f56a78c066c82582dd22c\"\u003e\u003ccode\u003e643f392\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-attributes 0.1.29 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3304\"\u003e#3304\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/d08e7a6eea1833810ea527e18ea03b08cd402c9d\"\u003e\u003ccode\u003ed08e7a6\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-core 0.1.34 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3302\"\u003e#3302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/6e70c571d319a033d5f37c885ccf99aa675a9eac\"\u003e\u003ccode\u003e6e70c57\u003c/code\u003e\u003c/a\u003e tracing-subscriber: count numbers of enters in \u003ccode\u003eTimings\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/2944\"\u003e#2944\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/c01d4fd9def2fb061669a310598095c789ca0a32\"\u003e\u003ccode\u003ec01d4fd\u003c/code\u003e\u003c/a\u003e fix docs and enable CI on \u003ccode\u003emain\u003c/code\u003e branch (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3295\"\u003e#3295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/tracing/compare/tracing-subscriber-0.3.19...tracing-subscriber-0.3.20\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rkyv` from 0.8.10 to 0.8.16\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rkyv/rkyv/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.10.1 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.10.1\u003c/h2\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/bytes/pull/773\"\u003etokio-rs/bytes#773\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eBytes v1.10.0\u003c/h2\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.9.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.8.5 to 0.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lru` from 0.16.2 to 0.16.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jeromefroe/lru-rs/blob/master/CHANGELOG.md\"\u003elru's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/jeromefroe/lru-rs/tree/0.16.4\"\u003ev0.16.4\u003c/a\u003e - 2026-04-13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eget_or_insert_with_key\u003c/code\u003e and variants.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/jeromefroe/lru-rs/tree/0.16.3\"\u003ev0.16.3\u003c/a\u003e - 2026-01-07\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix Stacked Borrows violation in \u003ccode\u003eIterMut\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jeromefroe/lru-rs/commit/d8c7f5ca51a86a8f561c14e21508a0f757aa05ad\"\u003e\u003ccode\u003ed8c7f5c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jeromefroe/lru-rs/issues/230\"\u003e#230\u003c/a\u003e from jeromefroe/jerome/prepare-0-16-4-release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jeromefroe/lru-rs/commit/bd5261b49947950e1b13f4d854327b33590d9d55\"\u003e\u003ccode\u003ebd5261b\u003c/code\u003e\u003c/a\u003e Prepare 0.16.4 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jeromefroe/lru-rs/commit/16e161d5ed5335b6e771aa7476560f2d9b67ce8b\"\u003e\u003ccode\u003e16e161d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jeromefroe/lru-rs/issues/229\"\u003e#229\u003c/a\u003e from pikatos/get_or_insert_with_key\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jeromefroe/lru-rs/commit/5135e8eb2639efbe4a061deebae5752ea88592b5\"\u003e\u003ccode\u003e5135e8e\u003c/code\u003e\u003c/a\u003e Apply suggestions from code review\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jeromefroe/lru-rs/commit/81c2ef05fd44c2b549fd4f316b3d44b220ef4e67\"\u003e\u003ccode\u003e81c2ef0\u003c/code\u003e\u003c/a\u003e Add get_or_insert_with_key variants\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jeromefroe/lru-rs/commit/af233e5c36a6b1be65e1c6d67ebf9601a71150fb\"\u003e\u003ccode\u003eaf233e5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jeromefroe/lru-rs/issues/225\"\u003e#225\u003c/a\u003e from jeromefroe/jerome/prepare-0-16-3-release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jeromefroe/lru-rs/commit/cf56f9a5ddfd435bf1905cf9c8815a582d0f7146\"\u003e\u003ccode\u003ecf56f9a\u003c/code\u003e\u003c/a\u003e Prepare 0.16.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jeromefroe/lru-rs/commit/62be24c96137fcf5c6323607ff15ed878b157ee2\"\u003e\u003ccode\u003e62be24c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jeromefroe/lru-rs/issues/224\"\u003e#224\u003c/a\u003e from paolobarbolini/iter-mut-stacked-borrows-violation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jeromefroe/lru-rs/commit/25669e76110133c73d72f1db0069934ba590162a\"\u003e\u003ccode\u003e25669e7\u003c/code\u003e\u003c/a\u003e Add regression test for \u003ccode\u003eIterMut\u003c/code\u003e stacked borrows violation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jeromefroe/lru-rs/commit/b9bca3492d75139097df3b018b6abdf5825ee868\"\u003e\u003ccode\u003eb9bca34\u003c/code\u003e\u003c/a\u003e Fix stacked borrows violation in \u003ccode\u003eIterMut::next\u003c/code\u003e and \u003ccode\u003eIterMut::next_back\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/jeromefroe/lru-rs/compare/0.16.2...0.16.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.37 to 0.3.47\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.47\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.46\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.45\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.44\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.43\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.42\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.41\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.40\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.39\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.38\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003etime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.47 [2026-02-05]\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eThe possibility of a stack exhaustion denial of service attack when parsing RFC 2822 has been\neliminated. Previously, it was possible to craft input that would cause unbounded recursion. Now,\nthe depth of the recursion is tracked, causing an error to be returned if it exceeds a reasonable\nlimit.\u003c/p\u003e\n\u003cp\u003eThis attack vector requires parsing user-provided input, with any type, using the RFC 2822 format.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCompatibility\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAttempting to format a value with a well-known format (i.e. RFC 3339, RFC 2822, or ISO 8601) will\nerror at compile time if the type being formatted does not provide sufficient information. This\nwould previously fail at runtime. Similarly, attempting to format a value with ISO 8601 that is\nonly configured for parsing (i.e. \u003ccode\u003eIso8601::PARSING\u003c/code\u003e) will error at compile time.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBuilder methods for format description modifiers, eliminating the need for verbose initialization\nwhen done manually.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edate!(2026-W01-2)\u003c/code\u003e is now supported. Previously, a space was required between \u003ccode\u003eW\u003c/code\u003e and \u003ccode\u003e01\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[end]\u003c/code\u003e now has a \u003ccode\u003etrailing_input\u003c/code\u003e modifier which can either be \u003ccode\u003eprohibit\u003c/code\u003e (the default) or\n\u003ccode\u003ediscard\u003c/code\u003e. When it is \u003ccode\u003ediscard\u003c/code\u003e, all remaining input is ignored. Note that if there are components\nafter \u003ccode\u003e[end]\u003c/code\u003e, they will still attempt to be parsed, likely resulting in an error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMore performance gains when parsing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIf manually formatting a value, the number of bytes written was one short for some components.\nThis has been fixed such that the number of bytes written is always correct.\u003c/li\u003e\n\u003cli\u003eThe possibility of integer overflow when parsing an owned format description has been effectively\neliminated. This would previously wrap when overflow checks were disabled. Instead of storing the\ndepth as \u003ccode\u003eu8\u003c/code\u003e, it is stored as \u003ccode\u003eu32\u003c/code\u003e. This would require multiple gigabytes of nested input to\noverflow, at which point we've got other problems and trivial mitigations are available by\ndownstream users.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.46 [2026-01-23]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAll possible panics are now documented for the relevant methods.\u003c/li\u003e\n\u003cli\u003eThe need to use \u003ccode\u003e#[serde(default)]\u003c/code\u003e when using custom \u003ccode\u003eserde\u003c/code\u003e formats is documented. This applies\nonly when deserializing an \u003ccode\u003eOption\u0026lt;T\u0026gt;\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDuration::nanoseconds_i128\u003c/code\u003e has been made public, mirroring\n\u003ccode\u003estd::time::Duration::from_nanos_u128\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/d5144cd2874862d46466c900910cd8577d066019\"\u003e\u003ccode\u003ed5144cd\u003c/code\u003e\u003c/a\u003e v0.3.47 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/f6206b050fd54817d8872834b4d61f605570e89b\"\u003e\u003ccode\u003ef6206b0\u003c/code\u003e\u003c/a\u003e Guard against integer overflow in release mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/1c63dc7985b8fa26bd8c689423cc56b7a03841ee\"\u003e\u003ccode\u003e1c63dc7\u003c/code\u003e\u003c/a\u003e Avoid denial of service when parsing Rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/5940df6e72efb63d246ca1ca59a0f836ad32ad8a\"\u003e\u003ccode\u003e5940df6\u003c/code\u003e\u003c/a\u003e Add builder methods to avoid verbose construction\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/00881a4da1bc5a6cb6313052e5017dbd7daa40f0\"\u003e\u003ccode\u003e00881a4\u003c/code\u003e\u003c/a\u003e Manually format macros everywhere\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/bb723b6d826e46c174d75cd08987061984b0ceb7\"\u003e\u003ccode\u003ebb723b6\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003etrailing_input\u003c/code\u003e modifier to \u003ccode\u003eend\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/31c4f8e0b56e6ae24fe0d6ef0e492b6741dda783\"\u003e\u003ccode\u003e31c4f8e\u003c/code\u003e\u003c/a\u003e Permit \u003ccode\u003eW12\u003c/code\u003e in \u003ccode\u003edate!\u003c/code\u003e macro\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/490a17bf306576850f33a86d3ca95d96db7b1dcd\"\u003e\u003ccode\u003e490a17b\u003c/code\u003e\u003c/a\u003e Mark error paths in well-known formats as cold\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6cb1896a600be1538ecfab8f233fe9cfe9fa8951\"\u003e\u003ccode\u003e6cb1896\u003c/code\u003e\u003c/a\u003e Optimize \u003ccode\u003eRfc2822\u003c/code\u003e parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6d264d59c25e3da0453c3defebf4640b0086a006\"\u003e\u003ccode\u003e6d264d5\u003c/code\u003e\u003c/a\u003e Remove erroneous \u003ccode\u003e#[inline(never)]\u003c/code\u003e attributes\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/time-rs/time/compare/v0.3.37...v0.3.47\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `oneshot` from 0.1.8 to 0.1.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/faern/oneshot/releases\"\u003eoneshot's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.1.13\u003c/h2\u003e\n\u003ch2\u003e[0.1.13] - 2026-01-26\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix documentation building on docs.rs by not using removed \u003ccode\u003edoc_auto_cfg\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/faern/oneshot/blob/main/CHANGELOG.md\"\u003eoneshot's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.1.13] - 2026-01-26\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix documentation building on docs.rs by not using removed \u003ccode\u003edoc_auto_cfg\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.1.12] - 2026-01-25\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix race condition that could lead to use-after-free if the \u003ccode\u003eReceiver\u003c/code\u003e was polled asynchronously,\nbut then dropped before completion. \u003ca href=\"https://redirect.github.com/faern/oneshot/pull/74\"\u003efaern/oneshot#74\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix race conditions/UB around atomic memory orderings. These were found by running tests under\nmiri. \u003ca href=\"https://redirect.github.com/faern/oneshot/pull/72\"\u003efaern/oneshot#72\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.1.11] - 2025-02-22\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eHandle the \u003ccode\u003eUNPARKING\u003c/code\u003e state correctly in \u003ccode\u003eReceiver::drop()\u003c/code\u003e. Fixes a panic that could\noccur if a \u003ccode\u003eReceiver\u003c/code\u003e had been first polled as a future and then was being dropped\nin parallel with the \u003ccode\u003eSender\u003c/code\u003e sending a message.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.1.10] - 2025-02-04\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eis_closed\u003c/code\u003e and \u003ccode\u003ehas_message\u003c/code\u003e to the \u003ccode\u003eReceiver\u003c/code\u003e. Allows polling for the channel\nstate without modifying the channel or pulling the message from it.\u003c/li\u003e\n\u003cli\u003eMake the cargo features show up on docs.rs for better discoverability.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.1.9] - 2025-02-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImplement \u003ccode\u003eSync\u003c/code\u003e for \u003ccode\u003eSender\u003c/code\u003e. There is not a whole lot someone can do with a \u003ccode\u003e\u0026amp;Sender\u003c/code\u003e,\nbut this allows storing the sender in places that are overly conservative and require\na \u003ccode\u003eSync\u003c/code\u003e bound on the content.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/a6a03981ec4d9aa3abb4445f0b90919d08a746ad\"\u003e\u003ccode\u003ea6a0398\u003c/code\u003e\u003c/a\u003e Bump version to 0.1.13 and fix changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/7615d9e008a36396f84202b23f4a5caa36722e22\"\u003e\u003ccode\u003e7615d9e\u003c/code\u003e\u003c/a\u003e Stop using removed doc_auto_cfg feature when building for docs.rs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/537d5de4b6a8e1f2cb8224a2a7c91b851f0226d0\"\u003e\u003ccode\u003e537d5de\u003c/code\u003e\u003c/a\u003e Bump version to 0.1.12 and fix changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/9cc3153a7d1bd577644b04978f30f2761ebdeb44\"\u003e\u003ccode\u003e9cc3153\u003c/code\u003e\u003c/a\u003e Merge branch 'improve-start_recv_ref'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/cc3d6a2b962c87012448af83644ee13b300cebaa\"\u003e\u003ccode\u003ecc3d6a2\u003c/code\u003e\u003c/a\u003e Improve start_recv_ref to be more like regular recv method\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/78c74769797a404100c675cd11ff685e91e871f8\"\u003e\u003ccode\u003e78c7476\u003c/code\u003e\u003c/a\u003e Merge branch 'update-documentation'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/38d7f6f2cd3b1e8676ee7761c08f962e517cfdf1\"\u003e\u003ccode\u003e38d7f6f\u003c/code\u003e\u003c/a\u003e Add clarifying documentation on sender observing RECEIVING state\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/21e03100742110fe61b87c0350dafa2254c70d11\"\u003e\u003ccode\u003e21e0310\u003c/code\u003e\u003c/a\u003e Synchronize readme with crate documentation in lib.rs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/def74fc6fe2f7aa9dccb67214896e2bd0173baa1\"\u003e\u003ccode\u003edef74fc\u003c/code\u003e\u003c/a\u003e Fix spelling and grammar errors in documentation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/70031a4282ac78ccb412bdb9163c8f185e13a519\"\u003e\u003ccode\u003e70031a4\u003c/code\u003e\u003c/a\u003e Add documentation about how send and receive are synchronized\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/faern/oneshot/compare/v0.1.8...v0.1.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.8.5 to 0.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rkyv` from 0.8.15 to 0.8.16\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rkyv/rkyv/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Pcnaid-Dev/Next.js-Coder/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Pcnaid-Dev/Next.js-Coder/pull/1042","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Pcnaid-Dev%2FNext.js-Coder/issues/1042","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1042/packages"},{"uuid":"4450335173","node_id":"PR_kwDOEMu_tc7bvFY2","number":105,"state":"open","title":"Bump the security group across 1 directory with 6 updates","user":"dependabot[bot]","labels":["cause::dependency","automation::dependabot","type::chore","ecosystem::rust"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-15T00:40:08.000Z","updated_at":"2026-05-20T19:46:48.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"security","update_count":6,"packages":[{"name":"git2","old_version":"0.20.2","new_version":"0.21.0","repository_url":"https://github.com/rust-lang/git2-rs"},{"name":"time","old_version":"0.3.44","new_version":"0.3.47","repository_url":"https://github.com/time-rs/time"},{"name":"actix-http","old_version":"3.11.1","new_version":"3.12.1","repository_url":"https://github.com/actix/actix-web"},{"name":"bytes","old_version":"1.10.1","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"gix-date","old_version":"0.11.0","new_version":"0.11.1","repository_url":"https://github.com/GitoxideLabs/gitoxide"},{"name":"rustls-webpki","old_version":"0.103.8","new_version":"0.103.13","repository_url":"https://github.com/rustls/webpki"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the security group with 6 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [git2](https://github.com/rust-lang/git2-rs) | `0.20.2` | `0.21.0` |\n| [time](https://github.com/time-rs/time) | `0.3.44` | `0.3.47` |\n| [actix-http](https://github.com/actix/actix-web) | `3.11.1` | `3.12.1` |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.10.1` | `1.11.1` |\n| [gix-date](https://github.com/GitoxideLabs/gitoxide) | `0.11.0` | `0.11.1` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.103.8` | `0.103.13` |\n\n\nUpdates `git2` from 0.20.2 to 0.21.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/git2-rs/blob/main/CHANGELOG.md\"\u003egit2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.21.0 - TBD\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/compare/git2-0.20.4...main\"\u003e0.20.4...main\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded experimental SHA256 repository support behind the new \u003ccode\u003eunstable-sha256\u003c/code\u003e Cargo feature,\nalong with \u003ccode\u003e*_ext\u003c/code\u003e API variants that accept an \u003ccode\u003eObjectFormat\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1206\"\u003e#1206\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eopts::set_cache_max_size()\u003c/code\u003e and \u003ccode\u003eopts::get_cached_memory()\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1188\"\u003e#1188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eRepository::object_format()\u003c/code\u003e and a new \u003ccode\u003eObjectFormat\u003c/code\u003e enum.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1204\"\u003e#1204\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eRepository::set_config()\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1208\"\u003e#1208\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003emerge_file()\u003c/code\u003e along with \u003ccode\u003eMergeFileInput\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1210\"\u003e#1210\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eRepository::refdb_compress()\u003c/code\u003e for packing loose refs.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1221\"\u003e#1221\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded public \u003ccode\u003eRefdb\u003c/code\u003e type, along with \u003ccode\u003eRepository::refdb()\u003c/code\u003e and \u003ccode\u003eRepository::set_refdb()\u003c/code\u003e. \u003ccode\u003eRepository::refdb_compress()\u003c/code\u003e now delegates to \u003ccode\u003eRefdb::compress()\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1228\"\u003e#1228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eRevspec::into_objects()\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1230\"\u003e#1230\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eBlameHunk::final_committer()\u003c/code\u003e, \u003ccode\u003eBlameHunk::orig_committer()\u003c/code\u003e, \u003ccode\u003eBlameHunk::summary()\u003c/code\u003e, and \u003ccode\u003eBlameHunk::summary_bytes()\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1231\"\u003e#1231\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImplemented \u003ccode\u003eClone\u003c/code\u003e for \u003ccode\u003eReference\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1233\"\u003e#1233\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eRepository::author_from_env()\u003c/code\u003e and \u003ccode\u003eRepository::committer_from_env()\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1237\"\u003e#1237\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eimpl From\u0026lt;Utf8Error\u0026gt; for Error\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1239\"\u003e#1239\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e❗ The \u003ccode\u003essh\u003c/code\u003e, \u003ccode\u003ehttps\u003c/code\u003e, and \u003ccode\u003ecred\u003c/code\u003e Cargo features are no longer enabled by default.\nPreviously \u003ccode\u003edefault = [\u0026quot;ssh\u0026quot;, \u0026quot;https\u0026quot;]\u003c/code\u003e; now \u003ccode\u003edefault = []\u003c/code\u003e.\nEnable them explicitly if you rely on credential helpers or transport support.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1168\"\u003e#1168\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e❗ \u003ccode\u003eCredentialHelper\u003c/code\u003e and the \u003ccode\u003eurl\u003c/code\u003e dependency are now gated behind the new \u003ccode\u003ecred\u003c/code\u003e Cargo feature.\nEnabling \u003ccode\u003essh\u003c/code\u003e or \u003ccode\u003ehttps\u003c/code\u003e transitively enables \u003ccode\u003ecred\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1168\"\u003e#1168\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e❗ Updated to the 2021 edition.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1173\"\u003e#1173\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e❗ Many string accessors that previously returned \u003ccode\u003eOption\u0026lt;\u0026amp;str\u0026gt;\u003c/code\u003e\nnow return \u003ccode\u003eResult\u0026lt;\u0026amp;str, Error\u0026gt;\u003c/code\u003e or \u003ccode\u003eResult\u0026lt;Option\u0026lt;\u0026amp;str\u0026gt;, Error\u0026gt;\u003c/code\u003e,\nso callers can distinguish a missing value from a non-UTF-8 one.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1241\"\u003e#1241\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e❗ \u003ccode\u003eBlameHunk::final_signature\u003c/code\u003e, \u003ccode\u003eBlameHunk::final_committer\u003c/code\u003e, \u003ccode\u003eBlameHunk::orig_signature\u003c/code\u003e, and \u003ccode\u003eBlameHunk::orig_committer\u003c/code\u003e\nnow return \u003ccode\u003eOption\u003c/code\u003e to avoid segfaults when signature information is missing.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1254\"\u003e#1254\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumped requirement to libgit2-sys 0.18.4, which updates libgit2 to 1.9.3.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/dffaf272eb0e62ac15b74283c4e488252db9afc3\"\u003e\u003ccode\u003edffaf27\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/issues/1256\"\u003e#1256\u003c/a\u003e from weihanglo/changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/84b9c76ee516cc514978db0e51fd6750cc215326\"\u003e\u003ccode\u003e84b9c76\u003c/code\u003e\u003c/a\u003e docs: changelog for git2@0.21\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/8c6dc4a336a2671c4a56e15159c4ea4e102388f6\"\u003e\u003ccode\u003e8c6dc4a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/issues/1206\"\u003e#1206\u003c/a\u003e from weihanglo/sha256-git2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/7bd145ee23884f19d1d79ce0e46c1ab105784040\"\u003e\u003ccode\u003e7bd145e\u003c/code\u003e\u003c/a\u003e fix: import \u003ccode\u003eObjectFormat\u003c/code\u003e in one place\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/fc8af6ad26b0e1bc126d997cf30407e8561195c6\"\u003e\u003ccode\u003efc8af6a\u003c/code\u003e\u003c/a\u003e test(oid): split \u003ccode\u003e_ext\u003c/code\u003e to test each format separately\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/b9bde87d80eb58cc87afe22e16bd581c2bb11618\"\u003e\u003ccode\u003eb9bde87\u003c/code\u003e\u003c/a\u003e test: oid length sanity check\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/57a68e0729a014e92e0704c3382037f36979c13d\"\u003e\u003ccode\u003e57a68e0\u003c/code\u003e\u003c/a\u003e feat(oid): impl Display for ObjectFormat\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/7acee09983d45fb6b3c0680e59838fb9619e5149\"\u003e\u003ccode\u003e7acee09\u003c/code\u003e\u003c/a\u003e chore(ci): test git2 sha256 support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/bdf5b7bf4aa13b9a2ed6e85d8d2d884b83fffcc7\"\u003e\u003ccode\u003ebdf5b7b\u003c/code\u003e\u003c/a\u003e fix: init example with \u003ccode\u003e--object-format\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/9fb4e6aeaeb17868c5e86e8ee67545c57d070ced\"\u003e\u003ccode\u003e9fb4e6a\u003c/code\u003e\u003c/a\u003e refactor(util): drop \u003ccode\u003eunsafe\u003c/code\u003e from \u003ccode\u003ezeroed_raw_oid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-lang/git2-rs/compare/git2-0.20.2...git2-0.21.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.44 to 0.3.47\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.47\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.46\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.45\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003etime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.47 [2026-02-05]\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eThe possibility of a stack exhaustion denial of service attack when parsing RFC 2822 has been\neliminated. Previously, it was possible to craft input that would cause unbounded recursion. Now,\nthe depth of the recursion is tracked, causing an error to be returned if it exceeds a reasonable\nlimit.\u003c/p\u003e\n\u003cp\u003eThis attack vector requires parsing user-provided input, with any type, using the RFC 2822 format.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCompatibility\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAttempting to format a value with a well-known format (i.e. RFC 3339, RFC 2822, or ISO 8601) will\nerror at compile time if the type being formatted does not provide sufficient information. This\nwould previously fail at runtime. Similarly, attempting to format a value with ISO 8601 that is\nonly configured for parsing (i.e. \u003ccode\u003eIso8601::PARSING\u003c/code\u003e) will error at compile time.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBuilder methods for format description modifiers, eliminating the need for verbose initialization\nwhen done manually.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edate!(2026-W01-2)\u003c/code\u003e is now supported. Previously, a space was required between \u003ccode\u003eW\u003c/code\u003e and \u003ccode\u003e01\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[end]\u003c/code\u003e now has a \u003ccode\u003etrailing_input\u003c/code\u003e modifier which can either be \u003ccode\u003eprohibit\u003c/code\u003e (the default) or\n\u003ccode\u003ediscard\u003c/code\u003e. When it is \u003ccode\u003ediscard\u003c/code\u003e, all remaining input is ignored. Note that if there are components\nafter \u003ccode\u003e[end]\u003c/code\u003e, they will still attempt to be parsed, likely resulting in an error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMore performance gains when parsing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIf manually formatting a value, the number of bytes written was one short for some components.\nThis has been fixed such that the number of bytes written is always correct.\u003c/li\u003e\n\u003cli\u003eThe possibility of integer overflow when parsing an owned format description has been effectively\neliminated. This would previously wrap when overflow checks were disabled. Instead of storing the\ndepth as \u003ccode\u003eu8\u003c/code\u003e, it is stored as \u003ccode\u003eu32\u003c/code\u003e. This would require multiple gigabytes of nested input to\noverflow, at which point we've got other problems and trivial mitigations are available by\ndownstream users.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.46 [2026-01-23]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAll possible panics are now documented for the relevant methods.\u003c/li\u003e\n\u003cli\u003eThe need to use \u003ccode\u003e#[serde(default)]\u003c/code\u003e when using custom \u003ccode\u003eserde\u003c/code\u003e formats is documented. This applies\nonly when deserializing an \u003ccode\u003eOption\u0026lt;T\u0026gt;\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDuration::nanoseconds_i128\u003c/code\u003e has been made public, mirroring\n\u003ccode\u003estd::time::Duration::from_nanos_u128\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/d5144cd2874862d46466c900910cd8577d066019\"\u003e\u003ccode\u003ed5144cd\u003c/code\u003e\u003c/a\u003e v0.3.47 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/f6206b050fd54817d8872834b4d61f605570e89b\"\u003e\u003ccode\u003ef6206b0\u003c/code\u003e\u003c/a\u003e Guard against integer overflow in release mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/1c63dc7985b8fa26bd8c689423cc56b7a03841ee\"\u003e\u003ccode\u003e1c63dc7\u003c/code\u003e\u003c/a\u003e Avoid denial of service when parsing Rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/5940df6e72efb63d246ca1ca59a0f836ad32ad8a\"\u003e\u003ccode\u003e5940df6\u003c/code\u003e\u003c/a\u003e Add builder methods to avoid verbose construction\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/00881a4da1bc5a6cb6313052e5017dbd7daa40f0\"\u003e\u003ccode\u003e00881a4\u003c/code\u003e\u003c/a\u003e Manually format macros everywhere\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/bb723b6d826e46c174d75cd08987061984b0ceb7\"\u003e\u003ccode\u003ebb723b6\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003etrailing_input\u003c/code\u003e modifier to \u003ccode\u003eend\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/31c4f8e0b56e6ae24fe0d6ef0e492b6741dda783\"\u003e\u003ccode\u003e31c4f8e\u003c/code\u003e\u003c/a\u003e Permit \u003ccode\u003eW12\u003c/code\u003e in \u003ccode\u003edate!\u003c/code\u003e macro\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/490a17bf306576850f33a86d3ca95d96db7b1dcd\"\u003e\u003ccode\u003e490a17b\u003c/code\u003e\u003c/a\u003e Mark error paths in well-known formats as cold\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6cb1896a600be1538ecfab8f233fe9cfe9fa8951\"\u003e\u003ccode\u003e6cb1896\u003c/code\u003e\u003c/a\u003e Optimize \u003ccode\u003eRfc2822\u003c/code\u003e parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6d264d59c25e3da0453c3defebf4640b0086a006\"\u003e\u003ccode\u003e6d264d5\u003c/code\u003e\u003c/a\u003e Remove erroneous \u003ccode\u003e#[inline(never)]\u003c/code\u003e attributes\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/time-rs/time/compare/v0.3.44...v0.3.47\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actix-http` from 3.11.1 to 3.12.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actix/actix-web/releases\"\u003eactix-http's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eactix-http: v3.12.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eNotice: This release contains a security fix. Users are encouraged to update to this version ASAP.\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eSECURITY: Reject HTTP/1 requests with ambiguous request framing from \u003ccode\u003eContent-Length\u003c/code\u003e and \u003ccode\u003eTransfer-Encoding\u003c/code\u003e headers to prevent request smuggling.\u003c/li\u003e\n\u003cli\u003eEncode the HTTP/1 \u003ccode\u003eConnection: Upgrade\u003c/code\u003e header in Camel-Case when camel-case header formatting is enabled.\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3953\"\u003e#3953\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eHeaderMap\u003c/code\u003e iterators' \u003ccode\u003elen()\u003c/code\u003e and \u003ccode\u003esize_hint()\u003c/code\u003e implementations for multi-value headers.\u003c/li\u003e\n\u003cli\u003eUpdate \u003ccode\u003erand\u003c/code\u003e dependency to \u003ccode\u003e0.10\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eUpdate \u003ccode\u003esha1\u003c/code\u003e dependency to \u003ccode\u003e0.11\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3953\"\u003e#3953\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/actix/actix-web/pull/3953\"\u003eactix/actix-web#3953\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eactix-http: v3.12.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMinimum supported Rust version (MSRV) is now 1.88.\u003c/li\u003e\n\u003cli\u003eIncrease default HTTP/2 flow control window sizes. \u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3638\"\u003e#3638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose configuration methods to improve upload throughput. \u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3638\"\u003e#3638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix truncated body ending without error when connection closed abnormally. \u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3067\"\u003e#3067\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd config/method for \u003ccode\u003eTCP_NODELAY\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3918\"\u003e#3918\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDo not compress 206 Partial Content responses. \u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3191\"\u003e#3191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix lingering sockets and client stalls when responding early to dropped chunked request payloads. \u003ca href=\"https://redirect.github.com/actix/actix-web/issues/2972\"\u003e#2972\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3638\"\u003e#3638\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3638\"\u003eactix/actix-web#3638\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3067\"\u003e#3067\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/actix/actix-web/pull/3067\"\u003eactix/actix-web#3067\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3918\"\u003e#3918\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/actix/actix-web/pull/3918\"\u003eactix/actix-web#3918\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3191\"\u003e#3191\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3191\"\u003eactix/actix-web#3191\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/2972\"\u003e#2972\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/actix/actix-web/issues/2972\"\u003eactix/actix-web#2972\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eactix-http: v3.11.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eProperly wake Payload receivers when feeding errors or EOF.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eServiceConfigBuilder\u003c/code\u003e type to facilitate future configuration extensions.\u003c/li\u003e\n\u003cli\u003eAdd a configuration option to allow/disallow half closed connections in HTTP/1. This defaults to allow, reverting the change made in 3.11.1.\u003c/li\u003e\n\u003cli\u003eShutdown connections when HTTP Responses are written without reading full Requests.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actix/actix-web/commit/0fb89457eda4a78a4cb7ccb3fdebe49a143ce2d5\"\u003e\u003ccode\u003e0fb8945\u003c/code\u003e\u003c/a\u003e chore(http): prepare v3.12.1 (\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/4029\"\u003e#4029\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actix/actix-web/commit/3c056bd36128d41ba130a8704ef5d648de3f2870\"\u003e\u003ccode\u003e3c056bd\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actix/actix-web/commit/e6d09913d9ebac53c8654a3574c19861900227f5\"\u003e\u003ccode\u003ee6d0991\u003c/code\u003e\u003c/a\u003e chore(multipart,derive): prepare 0.8.0 (\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/4027\"\u003e#4027\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actix/actix-web/commit/4434a494eef7706aa3fbd82fe77e1be92e943f2e\"\u003e\u003ccode\u003e4434a49\u003c/code\u003e\u003c/a\u003e fix(multipart): count ignored fields towards \u003ccode\u003eMultipartFormConfig\u003c/code\u003e li… (\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/4026\"\u003e#4026\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actix/actix-web/commit/be62050f9d7f3aa92812870d87bd6635fae7fdc9\"\u003e\u003ccode\u003ebe62050\u003c/code\u003e\u003c/a\u003e fix(multipart): set cap for parser buffering (\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/4025\"\u003e#4025\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actix/actix-web/commit/be4566d669a8e3900526616f9df6ec0ee71856c2\"\u003e\u003ccode\u003ebe4566d\u003c/code\u003e\u003c/a\u003e fix(multipart): do not parse with fixed index not to panic (\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/4024\"\u003e#4024\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actix/actix-web/commit/6d2c2f44622aef2ad5e115a3dba3bb80f12e020e\"\u003e\u003ccode\u003e6d2c2f4\u003c/code\u003e\u003c/a\u003e chore(http): upgrade \u003ccode\u003esha1\u003c/code\u003e to 0.11 (\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/4022\"\u003e#4022\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actix/actix-web/commit/253cd4f9771c3094b6cdb4350b9e8e7ae53fad75\"\u003e\u003ccode\u003e253cd4f\u003c/code\u003e\u003c/a\u003e chore: address new advisories (\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/4023\"\u003e#4023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actix/actix-web/commit/e766ca61f14a5614aebe58d164df49d8de118606\"\u003e\u003ccode\u003ee766ca6\u003c/code\u003e\u003c/a\u003e chore: upgrade rand to 0.10.1 (\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/4021\"\u003e#4021\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actix/actix-web/commit/d7479594c432f4400d3c7d07f899b11102653b45\"\u003e\u003ccode\u003ed747959\u003c/code\u003e\u003c/a\u003e build(deps): bump EmbarkStudios/cargo-deny-action from 2.0.15 to 2.0.16 (\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/4018\"\u003e#4018\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actix/actix-web/compare/http-v3.11.1...http-v3.12.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.10.1 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.10.1...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `gix-date` from 0.11.0 to 0.11.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/GitoxideLabs/gitoxide/blob/main/CHANGELOG.md\"\u003egix-date's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003cp\u003eAll notable changes to this project will be documented in this file.\u003c/p\u003e\n\u003cp\u003eThe format is based on \u003ca href=\"https://keepachangelog.com/en/1.0.0/\"\u003eKeep a Changelog\u003c/a\u003e,\nand this project adheres to \u003ca href=\"https://semver.org/spec/v2.0.0.html\"\u003eSemantic Versioning\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003e0.53.0 (2026-04-28)\u003c/h2\u003e\n\u003ch2\u003e0.52.1 (2026-04-24)\u003c/h2\u003e\n\u003ch3\u003eNew Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e add \u003ccode\u003egix free trust\u003c/code\u003e to easily check the assigned trust level of any given path\nThis is particularly useful on Windows, which makes it easy to probe existing paths\nwith ownership that might be complex to reproduce otherwise.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommit Statistics\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cul\u003e\n\u003cli\u003e6 commits contributed to the release over the course of 27 calendar days.\u003c/li\u003e\n\u003cli\u003e32 days passed between releases.\u003c/li\u003e\n\u003cli\u003e1 commit was understood as \u003ca href=\"https://www.conventionalcommits.org\"\u003econventional\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e0 issues like '(#ID)' were seen in commit messages\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks Clippy\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/rust-lang/rust-clippy\"\u003eClippy\u003c/a\u003e helped 1 time to make code idiomatic.\u003c/p\u003e\n\u003ch3\u003eCommit Details\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eUncategorized\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003eMerge pull request \u003ca href=\"https://redirect.github.com/GitoxideLabs/gitoxide/issues/2510\"\u003e#2510\u003c/a\u003e from GitoxideLabs/folder-identity-on-windows (\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/a96587c23b267f74065ac9bed2e50de69113e67f\"\u003e\u003ccode\u003ea96587c\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003egix free trust\u003c/code\u003e to easily check the assigned trust level of any given path (\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/ab2016f634d3138ec9312b541558bbb2da27f3c7\"\u003e\u003ccode\u003eab2016f\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMerge pull request \u003ca href=\"https://redirect.github.com/GitoxideLabs/gitoxide/issues/2513\"\u003e#2513\u003c/a\u003e from GitoxideLabs/v2-diff (\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/2a5db88d0330b0d125de4b6f3819f17a7f76f4b8\"\u003e\u003ccode\u003e2a5db88\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThanks clippy (\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/e4f380eff3b0440002f7e9b64a14ddcfbe63192a\"\u003e\u003ccode\u003ee4f380e\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMerge pull request \u003ca href=\"https://redirect.github.com/GitoxideLabs/gitoxide/issues/2494\"\u003e#2494\u003c/a\u003e from GitoxideLabs/improvements (\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/50fb46f17acba7d75d4ed6795b7b9cef484e34c6\"\u003e\u003ccode\u003e50fb46f\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdapt to changes in \u003ccode\u003egix-config\u003c/code\u003e. (\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/344218a4946008f54bda2f1a6bbce15e84c1df3c\"\u003e\u003ccode\u003e344218a\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e0.52.0 (2026-03-22)\u003c/h2\u003e\n\u003ch2\u003e0.51.0 (2026-02-22)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/21fecdf928336ac5fa3dd1402f92e8200d8aff62\"\u003e\u003ccode\u003e21fecdf\u003c/code\u003e\u003c/a\u003e Release gix-date v0.11.1, gix-actor v0.36.1, gix-trace v0.1.16, gix-features ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/b1616eb08e3114415aa1b94d1a3bfe1a499daec6\"\u003e\u003ccode\u003eb1616eb\u003c/code\u003e\u003c/a\u003e Add report for December 25\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/3cf78c37fec010f22f8dea338d8d353de7312590\"\u003e\u003ccode\u003e3cf78c3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/GitoxideLabs/gitoxide/issues/2272\"\u003e#2272\u003c/a\u003e from GitoxideLabs/copilot/add-gix-date-baseline-tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/fad821910b7ec420e2924d895c646c291ad7b8aa\"\u003e\u003ccode\u003efad8219\u003c/code\u003e\u003c/a\u003e refactor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/7dfb2dab7cb2998c824cb85ee73b22b22752eb0a\"\u003e\u003ccode\u003e7dfb2da\u003c/code\u003e\u003c/a\u003e feat: Add comprehensive data parsing support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/25099c8e3675da0fa7e9e97f6adace3c8a4a45ea\"\u003e\u003ccode\u003e25099c8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/GitoxideLabs/gitoxide/issues/2294\"\u003e#2294\u003c/a\u003e from GitoxideLabs/copilot/replace-zip-crate-with-rawzip\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/fb6386b319bcadcbda8982cec745c66f13fd2a5f\"\u003e\u003ccode\u003efb6386b\u003c/code\u003e\u003c/a\u003e Address copilot review\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/8c9b4d6234e7fe2cd3208fa8b1e9791129c671c1\"\u003e\u003ccode\u003e8c9b4d6\u003c/code\u003e\u003c/a\u003e refactor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/60290f10d5da07552d93a36d1cd76ee45a9883e6\"\u003e\u003ccode\u003e60290f1\u003c/code\u003e\u003c/a\u003e Replace zip crate with rawzip in gix-archive\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/b77744f599d57d2fc9a710daf06c74387f6a60f9\"\u003e\u003ccode\u003eb77744f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/GitoxideLabs/gitoxide/issues/2298\"\u003e#2298\u003c/a\u003e from GitoxideLabs/copilot/replace-libz-rs-sys-with-z...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/GitoxideLabs/gitoxide/compare/gix-date-v0.11.0...gix-date-v0.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls-webpki` from 0.103.8 to 0.103.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rustls/webpki/releases\"\u003erustls-webpki's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.103.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix reachable panic in parsing a CRL\u003c/strong\u003e. This was reported to us as \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-82j2-j2ch-gfr8\"\u003eGHSA-82j2-j2ch-gfr8\u003c/a\u003e. Users who don't use CRLs are not affected.\u003c/li\u003e\n\u003cli\u003eFor name constraints on URI names, we incorrectly processed excluded subtrees in a way which inverted the desired meaning. See \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/471\"\u003erustls/webpki#471\u003c/a\u003e. This was a case missing in the fix for \u003ca href=\"https://github.com/advisories/GHSA-965h-392x-2mh5\"\u003ehttps://github.com/advisories/GHSA-965h-392x-2mh5\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eActually fail closed for URI matching against excluded subtrees by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/473\"\u003erustls/webpki#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.13 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/474\"\u003erustls/webpki#474\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.12\u003c/h2\u003e\n\u003cp\u003eThis release fixes two bugs in name constraint enforcement:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-965h-392x-2mh5\u003c/strong\u003e: name constraints for URI names were ignored and therefore accepted. URI name constraints are now rejected unconditionally. Note this library does not provide an API for asserting URI names, and URI name constraints are otherwise not implemented.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-xgp8-3hg3-c2mh\u003c/strong\u003e: permitted subtree name constraints for DNS names were accepted for certificates asserting a wildcard name. This was incorrect because, given a name constraint of \u003ccode\u003eaccept.example.com\u003c/code\u003e, \u003ccode\u003e*.example.com\u003c/code\u003e could feasibly allow a name of \u003ccode\u003ereject.example.com\u003c/code\u003e which is outside the constraint. This is very similar to \u003ca href=\"https://go.dev/issue/76442\"\u003eCVE-2025-61727\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSince name constraints are restrictions on otherwise properly-issued certificates, these bugs are reachable only after signature verification and require misissuance to exploit.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrepare 0.103.12 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/470\"\u003erustls/webpki#470\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.11\u003c/h2\u003e\n\u003cp\u003eIn response to \u003ca href=\"https://redirect.github.com/rustls/webpki/issues/464\"\u003e#464\u003c/a\u003e, we've slightly relaxed requirements for \u003ccode\u003eanchor_from_trust_cert()\u003c/code\u003e to ignore unknown extensions even if they're marked as critical. This only affects parsing a \u003ccode\u003eTrustAnchor\u003c/code\u003e from DER, for which most extensions are ignored anyway.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport parsing trust anchors with unknown critical extensions to 0.103 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/466\"\u003erustls/webpki#466\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.103.10\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eCorrect selection of candidate CRLs by Distribution Point and Issuing Distribution Point\u003c/strong\u003e. If a certificate had more than one \u003ccode\u003edistributionPoint\u003c/code\u003e, then only the first \u003ccode\u003edistributionPoint\u003c/code\u003e would be considered against each CRL's \u003ccode\u003eIssuingDistributionPoint\u003c/code\u003e \u003ccode\u003edistributionPoint\u003c/code\u003e, and then the certificate's subsequent \u003ccode\u003edistributionPoint\u003c/code\u003es would be ignored.\u003c/p\u003e\n\u003cp\u003eThe impact was that correctly provided CRLs would not be consulted to check revocation. With \u003ccode\u003eUnknownStatusPolicy::Deny\u003c/code\u003e (the default) this would lead to incorrect but safe \u003ccode\u003eError::UnknownRevocationStatus\u003c/code\u003e. With \u003ccode\u003eUnknownStatusPolicy::Allow\u003c/code\u003e this would lead to inappropriate acceptance of revoked certificates.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is thought to be of limited impact. This is because both the certificate and CRL are signed -- an attacker would need to compromise a trusted issuing authority to trigger this bug.  An attacker with such capabilities could likely bypass revocation checking through other more impactful means (such as publishing a valid, empty CRL.)\u003c/p\u003e\n\u003cp\u003eMore likely, this bug would be latent in normal use, and an attacker could leverage faulty revocation checking to continue using a revoked credential.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is identified by \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-pwjx-qhcg-rvj4\"\u003eGHSA-pwjx-qhcg-rvj4\u003c/a\u003e. Thank you to \u003ca href=\"https://github.com/1seal\"\u003e\u003ccode\u003e@​1seal\u003c/code\u003e\u003c/a\u003e for the report.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFreshen up rel-0.103 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/455\"\u003erustls/webpki#455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.10 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/458\"\u003erustls/webpki#458\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2879b2ce7a476181ac3050f73fe0835f04728e86\"\u003e\u003ccode\u003e2879b2c\u003c/code\u003e\u003c/a\u003e Prepare 0.103.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2c49773d823f48c87db30db7a66c25993c847007\"\u003e\u003ccode\u003e2c49773\u003c/code\u003e\u003c/a\u003e Improve tests for padding of \u003ccode\u003eBitStringFlags\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/4e3c0b393a7bfb9cbe6dcdc8309cbadf8ee00c51\"\u003e\u003ccode\u003e4e3c0b3\u003c/code\u003e\u003c/a\u003e Correct validation of BIT STRING constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/39c91d2525a542a7f651a1a62c3462e8115cc39e\"\u003e\u003ccode\u003e39c91d2\u003c/code\u003e\u003c/a\u003e Actually fail closed for URI matching against excluded subtrees\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/27131d476e2b68a537e629d6d012bef8dad6efd3\"\u003e\u003ccode\u003e27131d4\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/6ecb8769cde2246e761e058709421c14a7dee6b1\"\u003e\u003ccode\u003e6ecb876\u003c/code\u003e\u003c/a\u003e Clean up stuttery enum variant names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/318b3e6e03ca2bc21600ca6bb0d0c6439b9e6aeb\"\u003e\u003ccode\u003e318b3e6\u003c/code\u003e\u003c/a\u003e Ignore wildcard labels when matching name constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/12196229a327d3d670798688254bd3ea24aba24b\"\u003e\u003ccode\u003e1219622\u003c/code\u003e\u003c/a\u003e Rewrite constraint matching to avoid permissive catch-all branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/57bc62ce538c2d0d31d44b3eb8c58e6a0a764b47\"\u003e\u003ccode\u003e57bc62c\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/d0fa01ee0a76b7585c13ec43de5854955146ffef\"\u003e\u003ccode\u003ed0fa01e\u003c/code\u003e\u003c/a\u003e Allow parsing trust anchors with unknown criticial extensions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.8...v/0.103.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n","html_url":"https://github.com/mellowagain/gitarena/pull/105","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/mellowagain%2Fgitarena/issues/105","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/105/packages"},{"uuid":"4416907902","node_id":"PR_kwDOHI3i2M7aDT-E","number":257,"state":"open","title":"Bump bytes from 1.6.0 to 1.11.1","user":"dependabot[bot]","labels":["dependencies","rust"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-10T21:36:07.000Z","updated_at":"2026-05-10T21:36:46.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"bytes","old_version":"1.6.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"}],"path":null,"ecosystem":"cargo"},"body":"Bumps [bytes](https://github.com/tokio-rs/bytes) from 1.6.0 to 1.11.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.10.1\u003c/h2\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/bytes/pull/773\"\u003etokio-rs/bytes#773\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eBytes v1.10.0\u003c/h2\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.9.0 (November 27, 2024)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eBytes::from_owner\u003c/code\u003e to enable externally-allocated memory (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/742\"\u003e#742\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumented\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.6.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=bytes\u0026package-manager=cargo\u0026previous-version=1.6.0\u0026new-version=1.11.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/surrealdb/surrealdb.py/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/surrealdb/surrealdb.py/pull/257","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/surrealdb%2Fsurrealdb.py/issues/257","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/257/packages"},{"uuid":"4414764496","node_id":"PR_kwDOQxTZfc7Z88k-","number":34,"state":"closed","title":"fix(deps): bump the cargo-minor-and-patch-dependencies group across 1 directory with 30 updates","user":"dependabot[bot]","labels":["dependencies","rust"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-24T05:33:52.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-10T05:35:24.000Z","updated_at":"2026-05-24T05:33:54.000Z","time_to_close":1209508,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"fix(deps): bump","group_name":"cargo-minor-and-patch-dependencies","update_count":30,"packages":[{"name":"anyhow","old_version":"1.0.100","new_version":"1.0.102","repository_url":"https://github.com/dtolnay/anyhow"},{"name":"bytes","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"chrono","old_version":"0.4.43","new_version":"0.4.44","repository_url":"https://github.com/chronotope/chrono"},{"name":"clap","old_version":"4.5.55","new_version":"4.6.1","repository_url":"https://github.com/clap-rs/clap"},{"name":"clap_complete","old_version":"4.5.65","new_version":"4.6.4","repository_url":"https://github.com/clap-rs/clap"},{"name":"criterion","old_version":"0.8.1","new_version":"0.8.2","repository_url":"https://github.com/criterion-rs/criterion.rs"},{"name":"futures","old_version":"0.3.31","new_version":"0.3.32","repository_url":"https://github.com/rust-lang/futures-rs"},{"name":"hyper","old_version":"1.8.1","new_version":"1.9.0","repository_url":"https://github.com/hyperium/hyper"},{"name":"indexmap","old_version":"2.13.0","new_version":"2.14.0","repository_url":"https://github.com/indexmap-rs/indexmap"},{"name":"indicatif","old_version":"0.18.3","new_version":"0.18.4","repository_url":"https://github.com/console-rs/indicatif"},{"name":"libc","old_version":"0.2.180","new_version":"0.2.186","repository_url":"https://github.com/rust-lang/libc"},{"name":"once_cell","old_version":"1.21.3","new_version":"1.21.4","repository_url":"https://github.com/matklad/once_cell"},{"name":"pin-project","old_version":"1.1.10","new_version":"1.1.12","repository_url":"https://github.com/taiki-e/pin-project"},{"name":"rayon","old_version":"1.11.0","new_version":"1.12.0","repository_url":"https://github.com/rayon-rs/rayon"},{"name":"regex","old_version":"1.12.2","new_version":"1.12.3","repository_url":"https://github.com/rust-lang/regex"},{"name":"rustls","old_version":"0.23.36","new_version":"0.23.40","repository_url":"https://github.com/rustls/rustls"},{"name":"serde_with","old_version":"3.16.1","new_version":"3.19.0","repository_url":"https://github.com/jonasbb/serde_with"},{"name":"tempfile","old_version":"3.24.0","new_version":"3.27.0","repository_url":"https://github.com/Stebalien/tempfile"},{"name":"tonic","old_version":"0.14.2","new_version":"0.14.6","repository_url":"https://github.com/hyperium/tonic"},{"name":"tracing-subscriber","old_version":"0.3.22","new_version":"0.3.23","repository_url":"https://github.com/tokio-rs/tracing"},{"name":"utoipa","old_version":"5.4.0","new_version":"5.5.0","repository_url":"https://github.com/juhaku/utoipa"},{"name":"uuid","old_version":"1.20.0","new_version":"1.23.1","repository_url":"https://github.com/uuid-rs/uuid"},{"name":"aws-config","old_version":"1.8.12","new_version":"1.8.13","repository_url":"https://github.com/smithy-lang/smithy-rs"},{"name":"aws-sdk-ec2","old_version":"1.204.0","new_version":"1.208.0","repository_url":"https://github.com/awslabs/aws-sdk-rust"},{"name":"flate2","old_version":"1.1.8","new_version":"1.1.9","repository_url":"https://github.com/rust-lang/flate2-rs"},{"name":"moka","old_version":"0.12.13","new_version":"0.12.15","repository_url":"https://github.com/moka-rs/moka"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo-minor-and-patch-dependencies group with 26 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [anyhow](https://github.com/dtolnay/anyhow) | `1.0.100` | `1.0.102` |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.11.0` | `1.11.1` |\n| [chrono](https://github.com/chronotope/chrono) | `0.4.43` | `0.4.44` |\n| [clap](https://github.com/clap-rs/clap) | `4.5.55` | `4.6.1` |\n| [clap_complete](https://github.com/clap-rs/clap) | `4.5.65` | `4.6.4` |\n| [criterion](https://github.com/criterion-rs/criterion.rs) | `0.8.1` | `0.8.2` |\n| [futures](https://github.com/rust-lang/futures-rs) | `0.3.31` | `0.3.32` |\n| [hyper](https://github.com/hyperium/hyper) | `1.8.1` | `1.9.0` |\n| [indexmap](https://github.com/indexmap-rs/indexmap) | `2.13.0` | `2.14.0` |\n| [indicatif](https://github.com/console-rs/indicatif) | `0.18.3` | `0.18.4` |\n| [libc](https://github.com/rust-lang/libc) | `0.2.180` | `0.2.186` |\n| [once_cell](https://github.com/matklad/once_cell) | `1.21.3` | `1.21.4` |\n| [pin-project](https://github.com/taiki-e/pin-project) | `1.1.10` | `1.1.12` |\n| [rayon](https://github.com/rayon-rs/rayon) | `1.11.0` | `1.12.0` |\n| [regex](https://github.com/rust-lang/regex) | `1.12.2` | `1.12.3` |\n| [rustls](https://github.com/rustls/rustls) | `0.23.36` | `0.23.40` |\n| [serde_with](https://github.com/jonasbb/serde_with) | `3.16.1` | `3.19.0` |\n| [tempfile](https://github.com/Stebalien/tempfile) | `3.24.0` | `3.27.0` |\n| [tonic](https://github.com/hyperium/tonic) | `0.14.2` | `0.14.6` |\n| [tracing-subscriber](https://github.com/tokio-rs/tracing) | `0.3.22` | `0.3.23` |\n| [utoipa](https://github.com/juhaku/utoipa) | `5.4.0` | `5.5.0` |\n| [uuid](https://github.com/uuid-rs/uuid) | `1.20.0` | `1.23.1` |\n| [aws-config](https://github.com/smithy-lang/smithy-rs) | `1.8.12` | `1.8.13` |\n| [aws-sdk-ec2](https://github.com/awslabs/aws-sdk-rust) | `1.204.0` | `1.208.0` |\n| [flate2](https://github.com/rust-lang/flate2-rs) | `1.1.8` | `1.1.9` |\n| [moka](https://github.com/moka-rs/moka) | `0.12.13` | `0.12.15` |\n\n\nUpdates `anyhow` from 1.0.100 to 1.0.102\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dtolnay/anyhow/releases\"\u003eanyhow's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.0.102\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove backtrace dependency (\u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/438\"\u003e#438\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/439\"\u003e#439\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/440\"\u003e#440\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/441\"\u003e#441\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.0.101\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd #[inline] to anyhow::Ok helper (\u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/437\"\u003e#437\u003c/a\u003e, thanks \u003ca href=\"https://github.com/Ibitier\"\u003e\u003ccode\u003e@​Ibitier\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/5c657b32522023a9f7ef883fb08582fd8e656b1a\"\u003e\u003ccode\u003e5c657b3\u003c/code\u003e\u003c/a\u003e Release 1.0.102\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/e737fb63918e8c71a3d0a968004a9c7ed7942283\"\u003e\u003ccode\u003ee737fb6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/442\"\u003e#442\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/7fe62b51c62804f8b84443affeacfb3810ed2516\"\u003e\u003ccode\u003e7fe62b5\u003c/code\u003e\u003c/a\u003e Further simply backtrace conditional compilation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/c8cb5cae23e57a2dbb87bf05cba04f1df1f1660b\"\u003e\u003ccode\u003ec8cb5ca\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/441\"\u003e#441\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/de27df7e0f510d543c18e50a0736566b66e62baf\"\u003e\u003ccode\u003ede27df7\u003c/code\u003e\u003c/a\u003e Delete CI use of --features=backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/9b67e5dd608658d805640cf1b6f6c9d091686ec1\"\u003e\u003ccode\u003e9b67e5d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/440\"\u003e#440\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/efdb11a259ca58a2e505ef50486cf2d6b5ddc42a\"\u003e\u003ccode\u003eefdb11a\u003c/code\u003e\u003c/a\u003e Simplify \u003ccode\u003estd_backtrace\u003c/code\u003e conditional code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/b8a9a707838969721a86b28e3c45ce27e279e981\"\u003e\u003ccode\u003eb8a9a70\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/439\"\u003e#439\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/a42fc2c21846ba459df43a3f8b4996a2074909cb\"\u003e\u003ccode\u003ea42fc2c\u003c/code\u003e\u003c/a\u003e Remove \u003ccode\u003efeature = \u0026quot;backtrace\u0026quot;\u003c/code\u003e conditional code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/2a2a3ceb4cbc409fd99613ab5744b21e825e7908\"\u003e\u003ccode\u003e2a2a3ce\u003c/code\u003e\u003c/a\u003e Re-word backtrace feature comment\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dtolnay/anyhow/compare/1.0.100...1.0.102\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.11.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.11.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `chrono` from 0.4.43 to 0.4.44\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/chronotope/chrono/releases\"\u003echrono's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.44\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: match MSRV with \u003ccode\u003eCargo.toml\u003c/code\u003e contents by \u003ca href=\"https://github.com/coryan\"\u003e\u003ccode\u003e@​coryan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1772\"\u003echronotope/chrono#1772\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd track_caller to non-deprecated functions by \u003ca href=\"https://github.com/svix-jplatte\"\u003e\u003ccode\u003e@​svix-jplatte\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1774\"\u003echronotope/chrono#1774\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/c14b4599d07ef36ffa1f8a531fb0bc7eb3b42464\"\u003e\u003ccode\u003ec14b459\u003c/code\u003e\u003c/a\u003e Bump version to 0.4.44\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/ea832c5090369eefa2cb6a47d643e2f7ade7ffa7\"\u003e\u003ccode\u003eea832c5\u003c/code\u003e\u003c/a\u003e Add track_caller to non-deprecated functions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/cfae889a3a23507acf49b605794abba17effd2d7\"\u003e\u003ccode\u003ecfae889\u003c/code\u003e\u003c/a\u003e Fix panic message in to_rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/f8900b5a44228a7f6282c65e8c407d3ecb6dcb7b\"\u003e\u003ccode\u003ef8900b5\u003c/code\u003e\u003c/a\u003e docs: match MSRV with \u003ccode\u003eCargo.toml\u003c/code\u003e contents\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/chronotope/chrono/compare/v0.4.43...v0.4.44\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `clap` from 4.5.55 to 4.6.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/clap-rs/clap/releases\"\u003eclap's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.6.1\u003c/h2\u003e\n\u003ch2\u003e[4.6.1] - 2026-04-15\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(derive)\u003c/em\u003e Ensure rebuilds happen when an read env variable is changed\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.60\u003c/h2\u003e\n\u003ch2\u003e[4.5.60] - 2026-02-19\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(help)\u003c/em\u003e Quote empty default values, possible values\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.59\u003c/h2\u003e\n\u003ch2\u003e[4.5.59] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eCommand::ignore_errors\u003c/code\u003e no longer masks help/version on subcommands\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.58\u003c/h2\u003e\n\u003ch2\u003e[4.5.58] - 2026-02-11\u003c/h2\u003e\n\u003ch2\u003ev4.5.57\u003c/h2\u003e\n\u003ch2\u003e[4.5.57] - 2026-02-03\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegression from 4.5.55 where having an argument with \u003ccode\u003e.value_terminator(\u0026quot;--\u0026quot;)\u003c/code\u003e caused problems with an argument with \u003ccode\u003e.last(true)\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.56\u003c/h2\u003e\n\u003ch2\u003e[4.5.56] - 2026-01-29\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOn conflict error, don't show conflicting arguments in the usage\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/clap-rs/clap/blob/master/CHANGELOG.md\"\u003eclap's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.6.1] - 2026-04-15\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(derive)\u003c/em\u003e Ensure rebuilds happen when an read env variable is changed\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.6.0] - 2026-03-12\u003c/h2\u003e\n\u003ch3\u003eCompatibility\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate MSRV to 1.85\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.61] - 2026-03-12\u003c/h2\u003e\n\u003ch3\u003eInternal\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.60] - 2026-02-19\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(help)\u003c/em\u003e Quote empty default values, possible values\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.59] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eCommand::ignore_errors\u003c/code\u003e no longer masks help/version on subcommands\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.58] - 2026-02-11\u003c/h2\u003e\n\u003ch2\u003e[4.5.57] - 2026-02-03\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegression from 4.5.55 where having an argument with \u003ccode\u003e.value_terminator(\u0026quot;--\u0026quot;)\u003c/code\u003e caused problems with an argument with \u003ccode\u003e.last(true)\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.56] - 2026-01-29\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOn conflict error, don't show conflicting arguments in the usage\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/14202755e52802a3d294c4ceeadd703d24b21fe6\"\u003e\u003ccode\u003e1420275\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/d2c817d151db23e0bff70d3df5f9dd9fc311ad5d\"\u003e\u003ccode\u003ed2c817d\u003c/code\u003e\u003c/a\u003e docs: Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/f88c94e53d40c2427450ed65ec025951906eb1d4\"\u003e\u003ccode\u003ef88c94e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6341\"\u003e#6341\u003c/a\u003e from epage/sep\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/acbb8225054e0a498f6941f278ad0095a893efe8\"\u003e\u003ccode\u003eacbb822\u003c/code\u003e\u003c/a\u003e fix(complete): Reduce risk of conflict with actual subcommands\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/a49fadbf4acf1853f52ae43a445c8f3c81096b01\"\u003e\u003ccode\u003ea49fadb\u003c/code\u003e\u003c/a\u003e refactor(complete): Pull out subcommand separator\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/ddc008bbbc1924fbda5d6f2c66bcf4d165984977\"\u003e\u003ccode\u003eddc008b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6332\"\u003e#6332\u003c/a\u003e from epage/update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/497dc50aebe9384dc229e1b4e92850306231f9c9\"\u003e\u003ccode\u003e497dc50\u003c/code\u003e\u003c/a\u003e chore: Update compatible dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/dca2326243615b2375cccb709b19de912910413d\"\u003e\u003ccode\u003edca2326\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6331\"\u003e#6331\u003c/a\u003e from clap-rs/renovate/j178-prek-action-2.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/54bdaa340ed434535bbd2d95a05b69d8abd2eb34\"\u003e\u003ccode\u003e54bdaa3\u003c/code\u003e\u003c/a\u003e chore(deps): Update j178/prek-action action to v2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/f0d30d961d26f8fb636b33242256fca73a717f77\"\u003e\u003ccode\u003ef0d30d9\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/clap-rs/clap/compare/clap_complete-v4.5.55...clap_complete-v4.6.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `clap_complete` from 4.5.65 to 4.6.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/clap-rs/clap/releases\"\u003eclap_complete's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.6.1\u003c/h2\u003e\n\u003ch2\u003e[4.6.1] - 2026-04-15\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(derive)\u003c/em\u003e Ensure rebuilds happen when an read env variable is changed\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/87ec1ad80dc174563cba130772823562e4427560\"\u003e\u003ccode\u003e87ec1ad\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/78f2529351ad2133c453005e54f6b35ce3ae800b\"\u003e\u003ccode\u003e78f2529\u003c/code\u003e\u003c/a\u003e docs: Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/b61f270930e60ee4968dfed7dc81eef51232f22b\"\u003e\u003ccode\u003eb61f270\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6369\"\u003e#6369\u003c/a\u003e from Metbcy/fix/zsh-completion-ordering\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/74c6666698e90ff0141eb50dd169915f59fa7bcf\"\u003e\u003ccode\u003e74c6666\u003c/code\u003e\u003c/a\u003e fix(complete): Keep zsh candidate order\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/d142d8f96650c49302aeab87814d5bf352dbf4db\"\u003e\u003ccode\u003ed142d8f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6360\"\u003e#6360\u003c/a\u003e from epage/string\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/ba89563c9d4c806afba2002c345b7108b64f1a1e\"\u003e\u003ccode\u003eba89563\u003c/code\u003e\u003c/a\u003e style: Prefer explicit string operations\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/bea966e84a50dc375d75baecbd469362b4f66281\"\u003e\u003ccode\u003ebea966e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6359\"\u003e#6359\u003c/a\u003e from epage/man\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/b811986e6d8eeeba679e43ddc07bcd06ee6da17b\"\u003e\u003ccode\u003eb811986\u003c/code\u003e\u003c/a\u003e chore(man):Remove unused required-features\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/0010bf290aae52b827134d7a88ecb58a8e3e88aa\"\u003e\u003ccode\u003e0010bf2\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6358\"\u003e#6358\u003c/a\u003e from clap-rs/renovate/crate-ci-typos-1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/bab9b24b129f5bfd6f5680cd5273d4d6be7cb37d\"\u003e\u003ccode\u003ebab9b24\u003c/code\u003e\u003c/a\u003e chore(deps): Update compatible (dev) (\u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6357\"\u003e#6357\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/clap-rs/clap/compare/clap_complete-v4.5.65...clap_complete-v4.6.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `criterion` from 0.8.1 to 0.8.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/criterion-rs/criterion.rs/releases\"\u003ecriterion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ecriterion-plot-v0.8.2\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate Readme\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ecriterion-v0.8.2\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edon't build alloca on unsupported targets\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(deps)\u003c/em\u003e bump crate-ci/typos from 1.40.0 to 1.43.0\u003c/li\u003e\n\u003cli\u003eFix panic with uniform iteration durations in benchmarks\u003c/li\u003e\n\u003cli\u003eUpdate Readme\u003c/li\u003e\n\u003cli\u003eExclude development scripts from published package\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/criterion-rs/criterion.rs/blob/master/CHANGELOG.md\"\u003ecriterion's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/criterion-rs/criterion.rs/compare/criterion-v0.8.1...criterion-v0.8.2\"\u003e0.8.2\u003c/a\u003e - 2026-02-04\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edon't build alloca on unsupported targets\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(deps)\u003c/em\u003e bump crate-ci/typos from 1.40.0 to 1.43.0\u003c/li\u003e\n\u003cli\u003eFix panic with uniform iteration durations in benchmarks\u003c/li\u003e\n\u003cli\u003eUpdate Readme\u003c/li\u003e\n\u003cli\u003eExclude development scripts from published package\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/criterion-rs/criterion.rs/commit/7f0d745532e3c7b2e11bbf9de9b911f91790d3b1\"\u003e\u003ccode\u003e7f0d745\u003c/code\u003e\u003c/a\u003e chore: release v0.8.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/criterion-rs/criterion.rs/commit/4a467ce964052ae9bd9266c0706b470b817613e0\"\u003e\u003ccode\u003e4a467ce\u003c/code\u003e\u003c/a\u003e chore(deps): bump crate-ci/typos from 1.40.0 to 1.43.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/criterion-rs/criterion.rs/commit/b277a751453cf9ce0595e41bddf819210a6d6e47\"\u003e\u003ccode\u003eb277a75\u003c/code\u003e\u003c/a\u003e Fix panic with uniform iteration durations in benchmarks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/criterion-rs/criterion.rs/commit/828af1450d648c599a92a077b75e292747761d99\"\u003e\u003ccode\u003e828af14\u003c/code\u003e\u003c/a\u003e fix: don't build alloca on unsupported targets\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/criterion-rs/criterion.rs/commit/b01316b76e42028f3b1cf3731f643bea7f354f39\"\u003e\u003ccode\u003eb01316b\u003c/code\u003e\u003c/a\u003e Update Readme\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/criterion-rs/criterion.rs/commit/4c02a3b4e560fe1f296c0ed1e9b53e3154a3cac6\"\u003e\u003ccode\u003e4c02a3b\u003c/code\u003e\u003c/a\u003e Exclude development scripts from published package\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/criterion-rs/criterion.rs/compare/criterion-v0.8.1...criterion-v0.8.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `futures` from 0.3.31 to 0.3.32\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/futures-rs/releases\"\u003efutures's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.32\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV of utility crates to 1.71. (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2989\"\u003e#2989\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSoft-deprecate \u003ccode\u003eready!\u003c/code\u003e macro in favor of \u003ccode\u003estd::task::ready!\u003c/code\u003e added in Rust 1.64 (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2925\"\u003e#2925\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSoft-deprecate \u003ccode\u003epin_mut!\u003c/code\u003e macro in favor of \u003ccode\u003estd::pin::pin!\u003c/code\u003e added in Rust 1.68 (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2929\"\u003e#2929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eFuturesOrdered::clear\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2927\"\u003e#2927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003empsc::*Receiver::recv\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2947\"\u003e#2947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003empsc::*Receiver::try_recv\u003c/code\u003e and deprecate \u003ccode\u003empsc::*Receiver::::try_next\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2944\"\u003e#2944\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eFusedStream\u003c/code\u003e for \u003ccode\u003esink::With\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2948\"\u003e#2948\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eno_std\u003c/code\u003e support for \u003ccode\u003eshared\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2868\"\u003e#2868\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMake \u003ccode\u003eMutex::new()\u003c/code\u003e const (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2956\"\u003e#2956\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e#[clippy::has_significant_drop]\u003c/code\u003e to guards (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2967\"\u003e#2967\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove dependency to \u003ccode\u003epin-utils\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2929\"\u003e#2929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove dependency on \u003ccode\u003enum_cpus\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2946\"\u003e#2946\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePerformance improvements (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2983\"\u003e#2983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocumentation improvements (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2925\"\u003e#2925\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2926\"\u003e#2926\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2940\"\u003e#2940\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2971\"\u003e#2971\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/futures-rs/blob/master/CHANGELOG.md\"\u003efutures's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e0.3.32 - 2026-02-15\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV of utility crates to 1.71. (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2989\"\u003e#2989\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSoft-deprecate \u003ccode\u003eready!\u003c/code\u003e macro in favor of \u003ccode\u003estd::task::ready!\u003c/code\u003e added in Rust 1.64 (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2925\"\u003e#2925\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSoft-deprecate \u003ccode\u003epin_mut!\u003c/code\u003e macro in favor of \u003ccode\u003estd::pin::pin!\u003c/code\u003e added in Rust 1.68 (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2929\"\u003e#2929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eFuturesOrdered::clear\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2927\"\u003e#2927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003empsc::*Receiver::recv\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2947\"\u003e#2947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003empsc::*Receiver::try_recv\u003c/code\u003e and deprecate \u003ccode\u003empsc::*Receiver::::try_next\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2944\"\u003e#2944\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eFusedStream\u003c/code\u003e for \u003ccode\u003esink::With\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2948\"\u003e#2948\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eno_std\u003c/code\u003e support for \u003ccode\u003eshared\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2868\"\u003e#2868\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMake \u003ccode\u003eMutex::new()\u003c/code\u003e const (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2956\"\u003e#2956\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e#[clippy::has_significant_drop]\u003c/code\u003e to guards (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2967\"\u003e#2967\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove dependency to \u003ccode\u003epin-utils\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2929\"\u003e#2929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove dependency on \u003ccode\u003enum_cpus\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2946\"\u003e#2946\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePerformance improvements (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2983\"\u003e#2983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocumentation improvements (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2925\"\u003e#2925\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2926\"\u003e#2926\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2940\"\u003e#2940\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2971\"\u003e#2971\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/d9bba94c239daa1175a5bb2958f37a5c72db3f6a\"\u003e\u003ccode\u003ed9bba94\u003c/code\u003e\u003c/a\u003e Release 0.3.32\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/151e0b90dec62103df5239f0612f42467994f406\"\u003e\u003ccode\u003e151e0b9\u003c/code\u003e\u003c/a\u003e Add comments on rust-version field in Cargo.toml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/4aaf00c35176d7180557559f54b0c151e2e608aa\"\u003e\u003ccode\u003e4aaf00c\u003c/code\u003e\u003c/a\u003e Bump MSRV of utility crates to 1.71\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/a4cce12c55942c6e1f2a507061fc6ca94c5b8862\"\u003e\u003ccode\u003ea4cce12\u003c/code\u003e\u003c/a\u003e perf: improve AtomicWaker::wake performance (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2983\"\u003e#2983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/ba9d102ca6e4a941a5068a1a8dcf0ff3a6c9085a\"\u003e\u003ccode\u003eba9d102\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003e#[clippy::has_significant_drop]\u003c/code\u003e to guards (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2967\"\u003e#2967\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/20396a83eff35414d17320dc35858243e54f0bc8\"\u003e\u003ccode\u003e20396a8\u003c/code\u003e\u003c/a\u003e Fix rustdoc::broken_intra_doc_links warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/815f6eb4e40ca9ff81d7d9a25a863d3c1ffdb79e\"\u003e\u003ccode\u003e815f6eb\u003c/code\u003e\u003c/a\u003e Fix documentation of \u003ccode\u003eBiLock::lock\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2971\"\u003e#2971\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/0f0db0421d4edc9fc56c3643f7e7f3bd23058023\"\u003e\u003ccode\u003e0f0db04\u003c/code\u003e\u003c/a\u003e futures-util: make \u003ccode\u003eMutex::new()\u003c/code\u003e const (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2956\"\u003e#2956\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/5d6fc5e4083f5da376ccc7a50403d842e553e286\"\u003e\u003ccode\u003e5d6fc5e\u003c/code\u003e\u003c/a\u003e ci: Test big-endian target (s390x Linux)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/9f739fe40b9c3e80b8f40054a739a220428a4675\"\u003e\u003ccode\u003e9f739fe\u003c/code\u003e\u003c/a\u003e Ignore dead_code lint on Fn1 trait\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-lang/futures-rs/compare/0.3.31...0.3.32\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `futures-util` from 0.3.31 to 0.3.32\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/futures-rs/releases\"\u003efutures-util's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.32\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV of utility crates to 1.71. (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2989\"\u003e#2989\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSoft-deprecate \u003ccode\u003eready!\u003c/code\u003e macro in favor of \u003ccode\u003estd::task::ready!\u003c/code\u003e added in Rust 1.64 (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2925\"\u003e#2925\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSoft-deprecate \u003ccode\u003epin_mut!\u003c/code\u003e macro in favor of \u003ccode\u003estd::pin::pin!\u003c/code\u003e added in Rust 1.68 (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2929\"\u003e#2929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eFuturesOrdered::clear\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2927\"\u003e#2927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003empsc::*Receiver::recv\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2947\"\u003e#2947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003empsc::*Receiver::try_recv\u003c/code\u003e and deprecate \u003ccode\u003empsc::*Receiver::::try_next\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2944\"\u003e#2944\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eFusedStream\u003c/code\u003e for \u003ccode\u003esink::With\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2948\"\u003e#2948\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eno_std\u003c/code\u003e support for \u003ccode\u003eshared\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2868\"\u003e#2868\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMake \u003ccode\u003eMutex::new()\u003c/code\u003e const (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2956\"\u003e#2956\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e#[clippy::has_significant_drop]\u003c/code\u003e to guards (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2967\"\u003e#2967\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove dependency to \u003ccode\u003epin-utils\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2929\"\u003e#2929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove dependency on \u003ccode\u003enum_cpus\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2946\"\u003e#2946\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePerformance improvements (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2983\"\u003e#2983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocumentation improvements (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2925\"\u003e#2925\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2926\"\u003e#2926\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2940\"\u003e#2940\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2971\"\u003e#2971\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/futures-rs/blob/master/CHANGELOG.md\"\u003efutures-util's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e0.3.32 - 2026-02-15\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV of utility crates to 1.71. (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2989\"\u003e#2989\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSoft-deprecate \u003ccode\u003eready!\u003c/code\u003e macro in favor of \u003ccode\u003estd::task::ready!\u003c/code\u003e added in Rust 1.64 (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2925\"\u003e#2925\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSoft-deprecate \u003ccode\u003epin_mut!\u003c/code\u003e macro in favor of \u003ccode\u003estd::pin::pin!\u003c/code\u003e added in Rust 1.68 (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2929\"\u003e#2929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eFuturesOrdered::clear\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2927\"\u003e#2927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003empsc::*Receiver::recv\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2947\"\u003e#2947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003empsc::*Receiver::try_recv\u003c/code\u003e and deprecate \u003ccode\u003empsc::*Receiver::::try_next\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2944\"\u003e#2944\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eFusedStream\u003c/code\u003e for \u003ccode\u003esink::With\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2948\"\u003e#2948\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eno_std\u003c/code\u003e support for \u003ccode\u003eshared\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2868\"\u003e#2868\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMake \u003ccode\u003eMutex::new()\u003c/code\u003e const (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2956\"\u003e#2956\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e#[clippy::has_significant_drop]\u003c/code\u003e to guards (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2967\"\u003e#2967\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove dependency to \u003ccode\u003epin-utils\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2929\"\u003e#2929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove dependency on \u003ccode\u003enum_cpus\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2946\"\u003e#2946\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePerformance improvements (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2983\"\u003e#2983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocumentation improvements (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2925\"\u003e#2925\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2926\"\u003e#2926\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2940\"\u003e#2940\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2971\"\u003e#2971\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/d9bba94c239daa1175a5bb2958f37a5c72db3f6a\"\u003e\u003ccode\u003ed9bba94\u003c/code\u003e\u003c/a\u003e Release 0.3.32\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/151e0b90dec62103df5239f0612f42467994f406\"\u003e\u003ccode\u003e151e0b9\u003c/code\u003e\u003c/a\u003e Add comments on rust-version field in Cargo.toml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/4aaf00c35176d7180557559f54b0c151e2e608aa\"\u003e\u003ccode\u003e4aaf00c\u003c/code\u003e\u003c/a\u003e Bump MSRV of utility crates to 1.71\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/a4cce12c55942c6e1f2a507061fc6ca94c5b8862\"\u003e\u003ccode\u003ea4cce12\u003c/code\u003e\u003c/a\u003e perf: improve AtomicWaker::wake performance (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2983\"\u003e#2983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/ba9d102ca6e4a941a5068a1a8dcf0ff3a6c9085a\"\u003e\u003ccode\u003eba9d102\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003e#[clippy::has_significant_drop]\u003c/code\u003e to guards (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2967\"\u003e#2967\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/20396a83eff35414d17320dc35858243e54f0bc8\"\u003e\u003ccode\u003e20396a8\u003c/code\u003e\u003c/a\u003e Fix rustdoc::broken_intra_doc_links warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/815f6eb4e40ca9ff81d7d9a25a863d3c1ffdb79e\"\u003e\u003ccode\u003e815f6eb\u003c/code\u003e\u003c/a\u003e Fix documentation of \u003ccode\u003eBiLock::lock\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2971\"\u003e#2971\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/0f0db0421d4edc9fc56c3643f7e7f3bd23058023\"\u003e\u003ccode\u003e0f0db04\u003c/code\u003e\u003c/a\u003e futures-util: make \u003ccode\u003eMutex::new()\u003c/code\u003e const (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2956\"\u003e#2956\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/5d6fc5e4083f5da376ccc7a50403d842e553e286\"\u003e\u003ccode\u003e5d6fc5e\u003c/code\u003e\u003c/a\u003e ci: Test big-endian target (s390x Linux)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/9f739fe40b9c3e80b8f40054a739a220428a4675\"\u003e\u003ccode\u003e9f739fe\u003c/code\u003e\u003c/a\u003e Ignore dead_code lint on Fn1 trait\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-lang/futures-rs/compare/0.3.31...0.3.32\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `hyper` from 1.8.1 to 1.9.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hyperium/hyper/releases\"\u003ehyper's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.9.0\u003c/h2\u003e\n\u003ch2\u003eFeatures\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclient:\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003eexpose HTTP/2 current max stream count (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4026\"\u003e#4026\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/d51cb71569bbca7927b3828ef11e3bec4fa97eb4\"\u003ed51cb715\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd HTTP/2 \u003ccode\u003emax_local_error_reset_streams\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4021\"\u003e#4021\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/577874591cae246dfb2d72d7140d794ac2fa605a\"\u003e57787459\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eerror:\u003c/strong\u003e add 'Error::is_parse_version_h2' method (\u003ca href=\"https://github.com/hyperium/hyper/commit/393c77c71138ff6e33d7089deac770a3f3f1436b\"\u003e393c77c7\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ehttp1:\u003c/strong\u003e add UpgradeableConnection::into_parts (\u003ca href=\"https://github.com/hyperium/hyper/commit/e21205cfe4066edbcddc56150d963dabbc7d3ec4\"\u003ee21205cf\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003effi:\u003c/strong\u003e validate null pointers before dereferencing in request/response functions (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4038\"\u003e#4038\u003c/a\u003e (\u003ca href=\"https://github.com/hyperium/hyper/commit/28e73ccd230cff8d7e5b5880ce2ab5fb8ced36be\"\u003e28e73ccd\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ehttp1:\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003eallow keep-alive for chunked requests with trailers (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4043\"\u003e#4043\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/7211ec25eff2ea6ee783817fee2a221d4eb2ed03\"\u003e7211ec25\u003c/a\u003e, closes \u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4044\"\u003e#4044\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003euse case-insensitive matching for trailer fields (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4011\"\u003e#4011\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/3b344cac9f96a9365409086dde51d06aa797ffc3\"\u003e3b344cac\u003c/a\u003e, closes \u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4010\"\u003e#4010\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003euse httparse config for Servers (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4002\"\u003e#4002\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/bcb8ec576619650d3388604e6c246829e7be133a\"\u003ebcb8ec57\u003c/a\u003e, closes \u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/3923\"\u003e#3923\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ehttp2:\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003ecancel sending client request body on response future drop (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4042\"\u003e#4042\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/5b17a69ebcf969471c1a19b25ed2cb81299d1be6\"\u003e5b17a69e\u003c/a\u003e, closes \u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4040\"\u003e#4040\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003enon-utf8 char in Connection header may cause panic when calling to_str (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4019\"\u003e#4019\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/c36ca8a5c50e4a05a78aa3e158f13456ee674fb1\"\u003ec36ca8a5\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRefactors and chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs(error): add more information about is_incomplete_message by \u003ca href=\"https://github.com/seanmonstar\"\u003e\u003ccode\u003e@​seanmonstar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/3978\"\u003ehyperium/hyper#3978\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun cargo-audit in CI to check for known vulnerabilities in dependencies. by \u003ca href=\"https://github.com/f0rki\"\u003e\u003ccode\u003e@​f0rki\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/3246\"\u003ehyperium/hyper#3246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor(http1): simplify match of Token parse error by \u003ca href=\"https://github.com/seanmonstar\"\u003e\u003ccode\u003e@​seanmonstar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/3981\"\u003ehyperium/hyper#3981\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor(http1): use saturating_sub instead of manual impl by \u003ca href=\"https://github.com/seanmonstar\"\u003e\u003ccode\u003e@​seanmonstar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/3983\"\u003ehyperium/hyper#3983\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor(http1): replace many args of Chunked::step with struct by \u003ca href=\"https://github.com/seanmonstar\"\u003e\u003ccode\u003e@​seanmonstar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/3982\"\u003ehyperium/hyper#3982\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix comment in \u003ccode\u003eput_slice()\u003c/code\u003e by \u003ca href=\"https://github.com/coryan\"\u003e\u003ccode\u003e@​coryan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/3986\"\u003ehyperium/hyper#3986\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest(lib): fix unused warnings due to feature gating test imports by \u003ca href=\"https://github.com/seanmonstar\"\u003e\u003ccode\u003e@​seanmonstar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/3997\"\u003ehyperium/hyper#3997\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: improve Read trait and ReadBufCursor documentation by \u003ca href=\"https://github.com/majiayu000\"\u003e\u003ccode\u003e@​majiayu000\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4000\"\u003ehyperium/hyper#4000\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: use h1 parser config when parsing server req by \u003ca href=\"https://github.com/0xPoe\"\u003e\u003ccode\u003e@​0xPoe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4002\"\u003ehyperium/hyper#4002\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest(server): fix flaky disable_keep_alive_mid_request by \u003ca href=\"https://github.com/seanmonstar\"\u003e\u003ccode\u003e@​seanmonstar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4009\"\u003ehyperium/hyper#4009\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(ci): update to actions/checkout@v6 by \u003ca href=\"https://github.com/tottoto\"\u003e\u003ccode\u003e@​tottoto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4005\"\u003ehyperium/hyper#4005\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(ci): update to cargo-check-external-types 0.4.0 by \u003ca href=\"https://github.com/tottoto\"\u003e\u003ccode\u003e@​tottoto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4006\"\u003ehyperium/hyper#4006\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate copyright year to 2026 by \u003ca href=\"https://github.com/jasmyhigh\"\u003e\u003ccode\u003e@​jasmyhigh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4007\"\u003ehyperium/hyper#4007\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: avoid unwrap examples by \u003ca href=\"https://github.com/0xPoe\"\u003e\u003ccode\u003e@​0xPoe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4001\"\u003ehyperium/hyper#4001\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(http1): use case-insensitive matching for trailer fields by \u003ca href=\"https://github.com/HueCodes\"\u003e\u003ccode\u003e@​HueCodes\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4011\"\u003ehyperium/hyper#4011\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: convert bug report template to GitHub form by \u003ca href=\"https://github.com/njg7194\"\u003e\u003ccode\u003e@​njg7194\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4015\"\u003ehyperium/hyper#4015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(ci): force toml mode in yq selecting msrv by \u003ca href=\"https://github.com/seanmonstar\"\u003e\u003ccode\u003e@​seanmonstar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4020\"\u003ehyperium/hyper#4020\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: non-utf8 char may cause panic when calling to_str by \u003ca href=\"https://github.com/cuiweixie\"\u003e\u003ccode\u003e@​cuiweixie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4019\"\u003ehyperium/hyper#4019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(http2/client): add \u003ccode\u003emax_local_error_reset_streams\u003c/code\u003e option by \u003ca href=\"https://github.com/ffuugoo\"\u003e\u003ccode\u003e@​ffuugoo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4021\"\u003ehyperium/hyper#4021\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: drop pin-utils dependency by \u003ca href=\"https://github.com/tottoto\"\u003e\u003ccode\u003e@​tottoto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4023\"\u003ehyperium/hyper#4023\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[minor] doc: Fix HTTP/2 max concurrent stream link by \u003ca href=\"https://github.com/dentiny\"\u003e\u003ccode\u003e@​dentiny\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4037\"\u003ehyperium/hyper#4037\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(ffi): validate null pointers before dereferencing in request/resp… by \u003ca href=\"https://github.com/DhruvaD1\"\u003e\u003ccode\u003e@​DhruvaD1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4038\"\u003ehyperium/hyper#4038\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eh2: expose current max stream count by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4026\"\u003ehyperium/hyper#4026\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(http1): allow keep-alive for chunked requests with trailers by \u003ca href=\"https://github.com/wi-adam\"\u003e\u003ccode\u003e@​wi-adam\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4043\"\u003ehyperium/hyper#4043\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(http2): cancel pipe_task and send RST_STREAM on response future drop by \u003ca href=\"https://github.com/mmishra100\"\u003e\u003ccode\u003e@​mmishra100\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4042\"\u003ehyperium/hyper#4042\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd APIs to allow switching an HTTP1 connection to HTTP2 if H2 preface is seen by \u003ca href=\"https://github.com/pborzenkov\"\u003e\u003ccode\u003e@​pborzenkov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/3996\"\u003ehyperium/hyper#3996\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hyperium/hyper/blob/master/CHANGELOG.md\"\u003ehyper's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.9.0 (2026-03-31)\u003c/h2\u003e\n\u003ch4\u003eBug Fixes\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003effi:\u003c/strong\u003e validate null pointers before dereferencing in request/response functions (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4038\"\u003e#4038\u003c/a\u003e (\u003ca href=\"https://github.com/hyperium/hyper/commit/28e73ccd230cff8d7e5b5880ce2ab5fb8ced36be\"\u003e28e73ccd\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ehttp1:\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003eallow keep-alive for chunked requests with trailers (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4043\"\u003e#4043\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/7211ec25eff2ea6ee783817fee2a221d4eb2ed03\"\u003e7211ec25\u003c/a\u003e, closes \u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4044\"\u003e#4044\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003euse case-insensitive matching for trailer fields (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4011\"\u003e#4011\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/3b344cac9f96a9365409086dde51d06aa797ffc3\"\u003e3b344cac\u003c/a\u003e, closes \u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4010\"\u003e#4010\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003euse httparse config for Servers (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4002\"\u003e#4002\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/bcb8ec576619650d3388604e6c246829e7be133a\"\u003ebcb8ec57\u003c/a\u003e, closes \u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/3923\"\u003e#3923\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ehttp2:\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003ecancel sending client request body on response future drop (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4042\"\u003e#4042\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/5b17a69ebcf969471c1a19b25ed2cb81299d1be6\"\u003e5b17a69e\u003c/a\u003e, closes \u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4040\"\u003e#4040\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003enon-utf8 char in Connection header may cause panic when calling to_str (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4019\"\u003e#4019\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/c36ca8a5c50e4a05a78aa3e158f13456ee674fb1\"\u003ec36ca8a5\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eFeatures\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclient:\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003eexpose HTTP/2 current max stream count (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4026\"\u003e#4026\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/d51cb71569bbca7927b3828ef11e3bec4fa97eb4\"\u003ed51cb715\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd HTTP/2 \u003ccode\u003emax_local_error_reset_streams\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4021\"\u003e#4021\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/577874591cae246dfb2d72d7140d794ac2fa605a\"\u003e57787459\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eerror:\u003c/strong\u003e add 'Error::is_parse_version_h2' method (\u003ca href=\"https://github.com/hyperium/hyper/commit/393c77c71138ff6e33d7089deac770a3f3f1436b\"\u003e393c77c7\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ehttp1:\u003c/strong\u003e add UpgradeableConnection::into_parts (\u003ca href=\"https://github.com/hyperium/hyper/commit/e21205cfe4066edbcddc56150d963dabbc7d3ec4\"\u003ee21205cf\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/hyper/commit/0d6c7d5469baa09e2fb127ee3758a79b3271a4f0\"\u003e\u003ccode\u003e0d6c7d5\u003c/code\u003e\u003c/a\u003e v1.9.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/hyper/commit/e21205cfe4066edbcddc56150d963dabbc7d3ec4\"\u003e\u003ccode\u003ee21205c\u003c/code\u003e\u003c/a\u003e feat(http1): add UpgradeableConnection::into_parts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/hyper/commit/393c77c71138ff6e33d7089deac770a3f3f1436b\"\u003e\u003ccode\u003e393c77c\u003c/code\u003e\u003c/a\u003e feat(error): add 'Error::is_parse_version_h2' method\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/hyper/commit/5b17a69ebcf969471c1a19b25ed2cb81299d1be6\"\u003e\u003ccode\u003e5b17a69\u003c/code\u003e\u003c/a\u003e fix(http2): cancel sending client request body on response future drop (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4042\"\u003e#4042\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/hyper/commit/7211ec25eff2ea6ee783817fee2a221d4eb2ed03\"\u003e\u003ccode\u003e7211ec2\u003c/code\u003e\u003c/a\u003e fix(http1): allow keep-alive for chunked requests with trailers (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4043\"\u003e#4043\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/hyper/commit/d51cb71569bbca7927b3828ef11e3bec4fa97eb4\"\u003e\u003ccode\u003ed51cb71\u003c/code\u003e\u003c/a\u003e feat(client): expose HTTP/2 current max stream count (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4026\"\u003e#4026\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/hyper/commit/28e73ccd230cff8d7e5b5880ce2ab5fb8ced36be\"\u003e\u003ccode\u003e28e73cc\u003c/code\u003e\u003c/a\u003e fix(ffi): validate null pointers before dereferencing in request/response fun...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/hyper/commit/e13e783927d429fc03038fe512eeb4d379cf1a70\"\u003e\u003ccode\u003ee13e783\u003c/code\u003e\u003c/a\u003e docs(client): fix HTTP/2 max concurrent stream link to spec (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4037\"\u003e#4037\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/hyper/commit/8ba900853b0f619b165e8530fc8c310bc13e056b\"\u003e\u003ccode\u003e8ba9008\u003c/code\u003e\u003c/a\u003e chore(dependencies): drop pin-utils dependency (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4023\"\u003e#4023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/hyper/commit/577874591cae246dfb2d72d7140d794ac2fa605a\"\u003e\u003ccode\u003e5778745\u003c/code\u003e\u003c/a\u003e feat(client): add HTTP/2 \u003ccode\u003emax_local_error_reset_streams\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4021\"\u003e#4021\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hyperium/hyper/compare/v1.8.1...v1.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `indexmap` from 2.13.0 to 2.14.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/indexmap-rs/indexmap/blob/main/RELEASES.md\"\u003eindexmap's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.14.0 (2026-04-09)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eMSRV\u003c/strong\u003e: Rust 1.85.0 or later is now required.\u003c/li\u003e\n\u003cli\u003eUpdated the \u003ccode\u003ehashbrown\u003c/code\u003e dependency to 0.17.\u003c/li\u003e\n\u003cli\u003eMade more \u003ccode\u003emap::Slice\u003c/code\u003e methods \u003ccode\u003econst\u003c/code\u003e: \u003ccode\u003enew_mut\u003c/code\u003e, \u003ccode\u003efirst_mut\u003c/code\u003e, \u003ccode\u003elast_mut\u003c/code\u003e,\n\u003ccode\u003esplit_at_mut\u003c/code\u003e, \u003ccode\u003esplit_at_mut_checked\u003c/code\u003e, \u003ccode\u003esplit_first_mut\u003c/code\u003e, \u003ccode\u003esplit_last_mut\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.13.1 (2026-04-02)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMade some \u003ccode\u003eSlice\u003c/code\u003e methods \u003ccode\u003econst\u003c/code\u003e:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003emap::Slice::{first,last,split_at,split_at_checked,split_first,split_last}\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eset::Slice::{first,last,split_at,split_at_checked,split_first,split_last}\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/bcd165baeb12bdf6e57a31d9869e9839e25679c6\"\u003e\u003ccode\u003ebcd165b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/indexmap-rs/indexmap/issues/439\"\u003e#439\u003c/a\u003e from cuviper/release-2.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/4ef06a729e0af095d2f39ec4bda5e0882054726e\"\u003e\u003ccode\u003e4ef06a7\u003c/code\u003e\u003c/a\u003e Release 2.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/d21826ca9351e968e7c5cff4f818e7a5e3cc481b\"\u003e\u003ccode\u003ed21826c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/indexmap-rs/indexmap/issues/438\"\u003e#438\u003c/a\u003e from cuviper/hashbrown-0.17\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/2566bec20dfbca0fa037939e67df4938c0f60f01\"\u003e\u003ccode\u003e2566bec\u003c/code\u003e\u003c/a\u003e Upgrade to \u003ccode\u003ehashbrown v0.17\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/4b62776c3f7dec98a5b89f907c3add5c603343b0\"\u003e\u003ccode\u003e4b62776\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/indexmap-rs/indexmap/issues/437\"\u003e#437\u003c/a\u003e from cuviper/disjoint-panic\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/478fba2eb0594f0fdc70b6b93e90fae820bdf82e\"\u003e\u003ccode\u003e478fba2\u003c/code\u003e\u003c/a\u003e Normalize the panic doc of \u003ccode\u003eget_disjoint_mut\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/fb6dafda4ee443864c88b61a4dfc8982012d3d39\"\u003e\u003ccode\u003efb6dafd\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/indexmap-rs/indexmap/issues/436\"\u003e#436\u003c/a\u003e from cuviper/const-slice-mut\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/5c237a2ab7db4017b057f6b52e28c78dd427cd94\"\u003e\u003ccode\u003e5c237a2\u003c/code\u003e\u003c/a\u003e Make \u003ccode\u003eSlice::{first,last,split_*}_mut\u003c/code\u003e methods \u003ccode\u003econst\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/48ff9ce2e3a2a464e4f599691df62dff178d655b\"\u003e\u003ccode\u003e48ff9ce\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/indexmap-rs/indexmap/issues/435\"\u003e#435\u003c/a\u003e from cuviper/edition-2024\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/648be98a3112278e1aea7c5b7d3c3a4f77e1eddb\"\u003e\u003ccode\u003e648be98\u003c/code\u003e\u003c/a\u003e \u003ccode\u003ecargo fmt\u003c/code\u003e with edition 2024\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/indexmap-rs/indexmap/compare/2.13.0...2.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `indicatif` from 0.18.3 to 0.18.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/console-rs/indicatif/releases\"\u003eindicatif's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.18.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einitial draft oft hold_max with heuristic by \u003ca href=\"https://github.com/djugei\"\u003e\u003ccode\u003e@​djugei\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/657\"\u003econsole-rs/indicatif#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix duration after finish by \u003ca href=\"https://github.com/luolong\"\u003e\u003ccode\u003e@​luolong\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/748\"\u003econsole-rs/indicatif#748\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd refresh rate warning for ProgressDrawTarget::term_like() by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/750\"\u003econsole-rs/indicatif#750\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSeeking heuristic tweaks by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/751\"\u003econsole-rs/indicatif#751\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose the current tab width by \u003ca href=\"https://github.com/alexisfontaine\"\u003e\u003ccode\u003e@​alexisfontaine\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/754\"\u003econsole-rs/indicatif#754\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake WASM support optional via a feature flag by \u003ca href=\"https://github.com/SvenFinn\"\u003e\u003ccode\u003e@​SvenFinn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/761\"\u003econsole-rs/indicatif#761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: respect NO_COLOR and TERM=dumb environment variables by \u003ca href=\"https://github.com/shaanmajid\"\u003e\u003ccode\u003e@​shaanmajid\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/764\"\u003econsole-rs/indicatif#764\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/4de2f604c3f5af5556db0a1d15e296102879c8d9\"\u003e\u003ccode\u003e4de2f60\u003c/code\u003e\u003c/a\u003e Bump version to 0.18.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/8e0ab0e6b2b098afa68e62a9b41c6c9d6f74811d\"\u003e\u003ccode\u003e8e0ab0e\u003c/code\u003e\u003c/a\u003e fix: respect NO_COLOR and TERM=dumb environment variables\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/781b2d045bfecc61880ac7dbc171b72cc92eebab\"\u003e\u003ccode\u003e781b2d0\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/34aee0740c59ad5ba5688328aec122b05b3c2dea\"\u003e\u003ccode\u003e34aee07\u003c/code\u003e\u003c/a\u003e Introduce unicode-width feature\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/51d284f25dc6fa2b4d5b25b6d13201f683119c9a\"\u003e\u003ccode\u003e51d284f\u003c/code\u003e\u003c/a\u003e Introduce wasmbind feature\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/ee057e542d0c587c57871aa1487b3f828dd99bbf\"\u003e\u003ccode\u003eee057e5\u003c/code\u003e\u003c/a\u003e Bump tokio from 1.48.0 to 1.49.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/31bcea3a68acc00363c5be5d69d5f7c8b3a27ed5\"\u003e\u003ccode\u003e31bcea3\u003c/code\u003e\u003c/a\u003e Bump portable-atomic from 1.11.1 to 1.12.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/dbd26eb18157e5fad18c79e1933ad5f249165d6c\"\u003e\u003ccode\u003edbd26eb\u003c/code\u003e\u003c/a\u003e Bump console from 0.16.1 to 0.16.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/7ac4a0d1b8bb698619f9880105dc9d27799a3d55\"\u003e\u003ccode\u003e7ac4a0d\u003c/code\u003e\u003c/a\u003e Expose the current tab width\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/95088ffd980a6f0cdd6571418fd9c6d6fd1603d1\"\u003e\u003ccode\u003e95088ff\u003c/code\u003e\u003c/a\u003e iter: clean up variable names, casting\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/console-rs/indicatif/compare/0.18.3...0.18.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `libc` from 0.2.180 to 0.2.186\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/libc/releases\"\u003elibc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.2.186\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eApple: Add \u003ccode\u003eKEVENT_FLAG_*\u003c/code\u003e constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5070\"\u003e#5070\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add \u003ccode\u003ePR_SET_MEMORY_MERGE\u003c/code\u003e and \u003ccode\u003ePR_GET_MEMORY_MERGE\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5060\"\u003e#5060\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCI: Migrate FreeBSD CI from Cirrus CI to GitHub Actions (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5058\"\u003e#5058\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.2.185\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEspIDF: Add \u003ccode\u003eespidf_picolibc\u003c/code\u003e cfg for picolibc \u003ccode\u003eO_*\u003c/code\u003e flag values (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5035\"\u003e#5035\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHexagon: add missing constants and fix types for linux-musl (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5042\"\u003e#5042\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRedox: Add semaphore functions (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5051\"\u003e#5051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eWindows: Add \u003ccode\u003esprintf\u003c/code\u003e, \u003ccode\u003esnprintf\u003c/code\u003e, and the \u003ccode\u003escanf\u003c/code\u003e family (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5024\"\u003e#5024\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eHexagon: Decouple \u003ccode\u003etime64\u003c/code\u003e types from musl symbol redirects (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5040\"\u003e#5040\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHorizon: Change \u003ccode\u003ePOLL\u003c/code\u003e constants from \u003ccode\u003ec_short\u003c/code\u003e to \u003ccode\u003ec_int\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5045\"\u003e#5045\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.2.184\u003c/h2\u003e\n\u003ch3\u003eMSRV\u003c/h3\u003e\n\u003cp\u003eThis release increases the MSRV of \u003ccode\u003elibc\u003c/code\u003e to 1.65. With this update, you can now always use the\n\u003ccode\u003ecore::ffi::c_*\u003c/code\u003e types with \u003ccode\u003elibc\u003c/code\u003e definitions, since \u003ccode\u003elibc\u003c/code\u003e has been changed to reexport from\n\u003ccode\u003ecore\u003c/code\u003e rather than redefining them. (This \u003cem\u003eusually\u003c/em\u003e worked before but had edge cases.)\n(\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4972\"\u003e#4972\u003c/a\u003e)\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBSD: Add \u003ccode\u003eIP_MINTTL\u003c/code\u003e to bsd (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5026\"\u003e#5026\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCygwin: Add \u003ccode\u003eTIOCM_DSR\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5031\"\u003e#5031\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFreeBSD: Added \u003ccode\u003exfile\u003c/code\u003e structe and file descriptor types (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5002\"\u003e#5002\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add CAN netlink bindings (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5011\"\u003e#5011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add \u003ccode\u003estruct ethhdr\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4239\"\u003e#4239\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add \u003ccode\u003estruct ifinfomsg\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5012\"\u003e#5012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Define \u003ccode\u003emax_align_t\u003c/code\u003e for riscv64 (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5029\"\u003e#5029\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNetBSD: Add missing \u003ccode\u003eCLOCK_\u003c/code\u003e constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5020\"\u003e#5020\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNuttX: Add \u003ccode\u003e_SC_HOST_NAME_MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5004\"\u003e#5004\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVxWorks: Add \u003ccode\u003eflock\u003c/code\u003e and \u003ccode\u003eF_*LCK\u003c/code\u003e constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4043\"\u003e#4043\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eWASI: Add all \u003ccode\u003e_SC_*\u003c/code\u003e sysconf constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5023\"\u003e#5023\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cp\u003eThe remaining fixed-width integer aliases, \u003ccode\u003e__uint128_t\u003c/code\u003e, \u003ccode\u003e__uint128\u003c/code\u003e, \u003ccode\u003e__int128_t\u003c/code\u003e, and \u003ccode\u003e__int128\u003c/code\u003e,\nhave been deprecated. Use \u003ccode\u003ei128\u003c/code\u003e and \u003ccode\u003eu128\u003c/code\u003e instead. (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4343\"\u003e#4343\u003c/a\u003e)\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/libc/blob/0.2.186/CHANGELOG.md\"\u003elibc's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/libc/compare/0.2.185...0.2.186\"\u003e0.2.186\u003c/a\u003e - 2026-04-24\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eApple: Add \u003ccode\u003eKEVENT_FLAG_*\u003c/code\u003e constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5070\"\u003e#5070\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add \u003ccode\u003ePR_SET_MEMORY_MERGE\u003c/code\u003e and \u003ccode\u003ePR_GET_MEMORY_MERGE\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5060\"\u003e#5060\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCI: Migrate FreeBSD CI from Cirrus CI to GitHub Actions (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5058\"\u003e#5058\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/libc/compare/0.2.184...0.2.185\"\u003e0.2.185\u003c/a\u003e - 2026-04-13\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEspIDF: Add \u003ccode\u003eespidf_picolibc\u003c/code\u003e cfg for picolibc \u003ccode\u003eO_*\u003c/code\u003e flag values (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5035\"\u003e#5035\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHexagon: add missing constants and fix types for linux-musl (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5042\"\u003e#5042\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRedox: Add semaphore functions (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5051\"\u003e#5051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eWindows: Add \u003ccode\u003esprintf\u003c/code\u003e, \u003ccode\u003esnprintf\u003c/code\u003e, and the \u003ccode\u003escanf\u003c/code\u003e family (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5024\"\u003e#5024\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eHexagon: Decouple \u003ccode\u003etime64\u003c/code\u003e types from musl symbol redirects (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5040\"\u003e#5040\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHorizon: Change \u003ccode\u003ePOLL\u003c/code\u003e constants from \u003ccode\u003ec_short\u003c/code\u003e to \u003ccode\u003ec_int\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5045\"\u003e#5045\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/libc/compare/0.2.183...0.2.184\"\u003e0.2.184\u003c/a\u003e - 2026-04-01\u003c/h2\u003e\n\u003ch3\u003eMSRV\u003c/h3\u003e\n\u003cp\u003eThis release increases the MSRV of \u003ccode\u003elibc\u003c/code\u003e to 1.65. With this update, you can now always use the\n\u003ccode\u003ecore::ffi::c_*\u003c/code\u003e types with \u003ccode\u003elibc\u003c/code\u003e definitions, since \u003ccode\u003elibc\u003c/code\u003e has been changed to reexport from\n\u003ccode\u003ecore\u003c/code\u003e rather than redefining them. (This \u003cem\u003eusually\u003c/em\u003e worked before but had edge cases.)\n(\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4972\"\u003e#4972\u003c/a\u003e)\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBSD: Add \u003ccode\u003eIP_MINTTL\u003c/code\u003e to bsd (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5026\"\u003e#5026\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCygwin: Add \u003ccode\u003eTIOCM_DSR\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5031\"\u003e#5031\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFreeBSD: Added \u003ccode\u003exfile\u003c/code\u003e structe and file descriptor types (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5002\"\u003e#5002\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add CAN netlink bindings (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5011\"\u003e#5011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add \u003ccode\u003estruct ethhdr\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4239\"\u003e#4239\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add \u003ccode\u003estruct ifinfomsg\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5012\"\u003e#5012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Define \u003ccode\u003emax_align_t\u003c/code\u003e for riscv64 (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5029\"\u003e#5029\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNetBSD: Add missing \u003ccode\u003eCLOCK_\u003c/code\u003e constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5020\"\u003e#5020\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNuttX: Add \u003ccode\u003e_SC_HOST_NAME_MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5004\"\u003e#5004\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVxWorks: Add \u003ccode\u003eflock\u003c/code\u003e and \u003ccode\u003eF_*LCK\u003c/code\u003e constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4043\"\u003e#4043\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eWASI: Add all \u003ccode\u003e_SC_*\u003c/code\u003e sysconf constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5023\"\u003e#5023\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/42620ffc4109dc32e02f1cae9e63a3f4311b4b71\"\u003e\u003ccode\u003e42620ff\u003c/code\u003e\u003c/a\u003e [0.2] libc: Release 0.2.186\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/9db2eaaaaea60e0b048785e41ca4eb9c50d30ad5\"\u003e\u003ccode\u003e9db2eaa\u003c/code\u003e\u003c/a\u003e apple: add KEVENT_FLAG_* constants\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/38409392ffb50288aa84e94b75fc37bd565fd5bc\"\u003e\u003ccode\u003e3840939\u003c/code\u003e\u003c/a\u003e Add PR_SET_MEMORY_MERGE and PR_GET_MEMORY_MERGE for linux\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/f697deb9440a8f916ec2fb95bef9e06fc847b6f7\"\u003e\u003ccode\u003ef697deb\u003c/code\u003e\u003c/a\u003e chore: migrate from Cirrus CI to GHA\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/71d5bfcc1bda05da1783666fc2cd7d9669c9c4c8\"\u003e\u003ccode\u003e71d5bfc\u003c/code\u003e\u003c/a\u003e libc: Release 0.2.185\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/1027d1c23bd3f07ba3dc6ab4a4eb4660cc91e509\"\u003e\u003ccode\u003e1027d1c\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;ci: Pin nightly to 2026-04-01\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/0e9c6e53cca07b36239a6dc4e65d8b691b39023a\"\u003e\u003ccode\u003e0e9c6e5\u003c/code\u003e\u003c/a\u003e redox: Add semaphore functions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/24ef457ddd312f8b8055a8ed07f5376c5792c211\"\u003e\u003ccode\u003e24ef457\u003c/code\u003e\u003c/a\u003e feat: add back support for gnu windows x86 in ci\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/aa75caf30c0153647c9ab9fc0fe382bce2564b0c\"\u003e\u003ccode\u003eaa75caf\u003c/code\u003e\u003c/a\u003e horizon: Change POLL constants from c_short to c_int\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/b7eda5a40c678c4a195a389a329d85008eabaf2d\"\u003e\u003ccode\u003eb7eda5a\u003c/code\u003e\u003c/a\u003e hexagon: add missing constants and fix types for linux-musl\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-lang/libc/compare/0.2.180...0.2.186\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `once_cell` from 1.21.3 to 1.21.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/matklad/once_cell/blob/master/CHANGELOG.md\"\u003eonce_cell's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.21.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix unsoundness in \u003ccode\u003eOnceCell::wait\u003c/code\u003e under \u003ccode\u003e--features=parking_lot\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/matklad/once_cell/pull/295\"\u003e#295\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eIf thread A calls \u003ccode\u003ewait\u003c/code\u003e, while thread B calls \u003ccode\u003eget_or_try_init(f)\u003c/code\u003e, and, furthermore, \u003ccode\u003ef\u003c/code\u003e panics,\nthe \u003ccode\u003ewait\u003c/code\u003e incorrectly returns and thread A observes uninitialized memory.\u003c/p\u003e\n\u003cp\u003eKudos to \u003ca href=\"https://github.com/meng-xu-cs\"\u003e\u003ccode\u003e@​meng-xu-cs\u003c/code\u003e\u003c/a\u003e for a nice find!\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/80fe900b21f6d76c1a2ed74d3343e8a3a88c46d0\"\u003e\u003ccode\u003e80fe900\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/matklad/once_cell/issues/296\"\u003e#296\u003c/a\u003e from matklad/matklad/plfix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/a5e09c971c23afb1a3be8ae32794e2dca940ccd4\"\u003e\u003ccode\u003ea5e09c9\u003c/code\u003e\u003c/a\u003e release 1.21.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/2426d45d85841879e71a880af543fd3d2be78db1\"\u003e\u003ccode\u003e2426d45\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/matklad/once_cell/issues/295\"\u003e#295\u003c/a\u003e from matklad/matklad/plfix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/a1441215db85adb6a47b0aa1062d1eea7c5fba65\"\u003e\u003ccode\u003ea144121\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/mat...\n\n_Description has been truncated_","html_url":"https://github.com/donnyoregon/walrus/pull/34","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/donnyoregon%2Fwalrus/issues/34","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/34/packages"},{"uuid":"4409375150","node_id":"PR_kwDOSMp2Uc7Zr6Do","number":23,"state":"closed","title":"Bump the cargo group across 2 directories with 8 updates","user":"dependabot[bot]","labels":["dependencies","rust"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-19T22:19:50.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-08T21:02:05.000Z","updated_at":"2026-05-19T22:19:52.000Z","time_to_close":955065,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"cargo","update_count":8,"packages":[{"name":"borsh","old_version":"0.10.3","new_version":"1.5.1","repository_url":"https://github.com/near/borsh-rs"},{"name":"tokio","old_version":"1.40.0","new_version":"1.42.1","repository_url":"https://github.com/tokio-rs/tokio"},{"name":"bytes","old_version":"1.7.1","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"crossbeam-channel","old_version":"0.5.13","new_version":"0.5.15","repository_url":"https://github.com/crossbeam-rs/crossbeam"},{"name":"keccak","old_version":"0.1.5","new_version":"0.1.6","repository_url":"https://github.com/RustCrypto/sponges"},{"name":"tar","old_version":"0.4.41","new_version":"0.4.45","repository_url":"https://github.com/alexcrichton/tar-rs"},{"name":"time","old_version":"0.3.36","new_version":"0.3.47","repository_url":"https://github.com/time-rs/time"},{"name":"tracing-subscriber","old_version":"0.3.18","new_version":"0.3.19","repository_url":"https://github.com/tokio-rs/tracing"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 8 updates in the /programs/mpl-token-metadata-main/clients/rust directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [borsh](https://github.com/near/borsh-rs) | `0.10.3` | `1.5.1` |\n| [tokio](https://github.com/tokio-rs/tokio) | `1.40.0` | `1.42.1` |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.7.1` | `1.11.1` |\n| [crossbeam-channel](https://github.com/crossbeam-rs/crossbeam) | `0.5.13` | `0.5.15` |\n| [keccak](https://github.com/RustCrypto/sponges) | `0.1.5` | `0.1.6` |\n| [tar](https://github.com/alexcrichton/tar-rs) | `0.4.41` | `0.4.45` |\n| [time](https://github.com/time-rs/time) | `0.3.36` | `0.3.47` |\n| [tracing-subscriber](https://github.com/tokio-rs/tracing) | `0.3.18` | `0.3.19` |\n\nBumps the cargo group with 2 updates in the /programs/mpl-token-metadata-main/programs/token-metadata directory: [borsh](https://github.com/near/borsh-rs) and [tokio](https://github.com/tokio-rs/tokio).\n\nUpdates `borsh` from 0.10.3 to 1.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/near/borsh-rs/releases\"\u003eborsh's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eborsh-derive-v1.5.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.5.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-derive-v1.5.0\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.5.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimplement \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eVecDeque\u003c/code\u003e and \u003ccode\u003eLinkedList\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/291\"\u003e#291\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix repository field of borsh-derive (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/288\"\u003e#288\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.4.0\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.4.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimpl \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eCow\u0026lt;'a, T\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eBorshSerialize\u003c/code\u003e/\u003ccode\u003eBoshDeserialize\u003c/code\u003e/\u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eCell\u003c/code\u003e/\u003ccode\u003eRefCell\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ereorg tests (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/285\"\u003e#285\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove conflicts with \u003ccode\u003eW\u003c/code\u003e/\u003ccode\u003eR\u003c/code\u003e parameters for \u003ccode\u003eBorshSerialize\u003c/code\u003e/\u003ccode\u003eBorshDeserialize\u003c/code\u003e derives (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix \u003ccode\u003etest_exhaustive_checks\u003c/code\u003e step + downgrade package for MSRV test (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/280\"\u003e#280\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.3.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.3.1\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix clippy (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebump \u003ccode\u003eproc-macro-crate\u003c/code\u003e to \u003ccode\u003e3\u003c/code\u003e; bump MSRV to \u003ccode\u003e1.67\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/274\"\u003e#274\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.3.0\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.3.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimpl \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eRc\u003c/code\u003e and \u003ccode\u003eArc\u003c/code\u003e; add doc for \u003ccode\u003erc\u003c/code\u003e feature (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.2.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.2.1\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eoptimize \u003ccode\u003eBorshSerialize\u003c/code\u003e derive for enums with unit variants (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/262\"\u003e#262\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/near/borsh-rs/blob/master/CHANGELOG.md\"\u003eborsh's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.5.0...borsh-v1.5.1\"\u003e1.5.1\u003c/a\u003e - 2024-05-30\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(schema)\u003c/em\u003e for \u003ccode\u003eHashMap\u0026lt;K, V\u0026gt;\u003c/code\u003e -\u0026gt; \u003ccode\u003eHashMap\u0026lt;K, V, S\u0026gt;\u003c/code\u003e, for \u003ccode\u003eHashSet\u0026lt;T\u0026gt;\u003c/code\u003e -\u0026gt; \u003ccode\u003eHashSet\u0026lt;T, S\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/294\"\u003e#294\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efixed linting warnings for Rust 1.78 stable,  1.80 nightly (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/295\"\u003e#295\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.4.0...borsh-v1.5.0\"\u003e1.5.0\u003c/a\u003e - 2024-04-29\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimplement \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eVecDeque\u003c/code\u003e and \u003ccode\u003eLinkedList\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/291\"\u003e#291\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix repository field of borsh-derive (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/288\"\u003e#288\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.3.1...borsh-v1.4.0\"\u003e1.4.0\u003c/a\u003e - 2024-03-25\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimpl \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eCow\u0026lt;'a, T\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eBorshSerialize\u003c/code\u003e/\u003ccode\u003eBoshDeserialize\u003c/code\u003e/\u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eCell\u003c/code\u003e/\u003ccode\u003eRefCell\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ereorg tests (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/285\"\u003e#285\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove conflicts with \u003ccode\u003eW\u003c/code\u003e/\u003ccode\u003eR\u003c/code\u003e parameters for \u003ccode\u003eBorshSerialize\u003c/code\u003e/\u003ccode\u003eBorshDeserialize\u003c/code\u003e derives (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix \u003ccode\u003etest_exhaustive_checks\u003c/code\u003e step + downgrade package for MSRV test (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/280\"\u003e#280\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.3.0...borsh-v1.3.1\"\u003e1.3.1\u003c/a\u003e - 2024-01-10\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix clippy (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebump \u003ccode\u003eproc-macro-crate\u003c/code\u003e to \u003ccode\u003e3\u003c/code\u003e; bump MSRV to \u003ccode\u003e1.67\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/274\"\u003e#274\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.2.1...borsh-v1.3.0\"\u003e1.3.0\u003c/a\u003e - 2023-12-07\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimpl \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eRc\u003c/code\u003e and \u003ccode\u003eArc\u003c/code\u003e; add doc for \u003ccode\u003erc\u003c/code\u003e feature (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.2.0...borsh-v1.2.1\"\u003e1.2.1\u003c/a\u003e - 2023-12-06\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eoptimize \u003ccode\u003eBorshSerialize\u003c/code\u003e derive for enums with unit variants (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/262\"\u003e#262\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix \u003ccode\u003erelease-plz\u003c/code\u003e error; exclude \u003ccode\u003e*.snap\u003c/code\u003e from \u003ccode\u003eborsh-derive\u003c/code\u003e publish (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/263\"\u003e#263\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.1.2...borsh-v1.2.0\"\u003e1.2.0\u003c/a\u003e - 2023-11-13\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd support for types from \u003ccode\u003eascii\u003c/code\u003e crate (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/255\"\u003e#255\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.1.1...borsh-v1.1.2\"\u003e1.1.2\u003c/a\u003e - 2023-11-08\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/f16cd07e3c982539352aa43f65abf3607461a7bc\"\u003e\u003ccode\u003ef16cd07\u003c/code\u003e\u003c/a\u003e chore: release (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/298\"\u003e#298\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/cdb8fa9bf7652df1b5e85b985045ee30e62ba5ae\"\u003e\u003ccode\u003ecdb8fa9\u003c/code\u003e\u003c/a\u003e feat(schema): for \u003ccode\u003eHashMap\\\u0026lt;K, V\u0026gt;\u003c/code\u003e -\u0026gt; \u003ccode\u003eHashMap\\\u0026lt;K, V, S\u0026gt;\u003c/code\u003e, for \u003ccode\u003eHashSet\\\u0026lt;T\u0026gt;\u003c/code\u003e -\u0026gt; ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/fa6225c26dc57cc061651050be651f4b2fcdb19a\"\u003e\u003ccode\u003efa6225c\u003c/code\u003e\u003c/a\u003e fix: fixed linting warnings for Rust 1.78 stable,  1.80 nightly (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/295\"\u003e#295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/6fa3057b0892360ec3e10ba5c897bb058c09580b\"\u003e\u003ccode\u003e6fa3057\u003c/code\u003e\u003c/a\u003e chore: release (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/289\"\u003e#289\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/238ea42994fd4f85ca03046aac1f676866492783\"\u003e\u003ccode\u003e238ea42\u003c/code\u003e\u003c/a\u003e feat: implement \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eVecDeque\u003c/code\u003e and \u003ccode\u003eLinkedList\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/291\"\u003e#291\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/96268f2970d1954f7481a381be9ab245c1d7518f\"\u003e\u003ccode\u003e96268f2\u003c/code\u003e\u003c/a\u003e Fix repository field of borsh-derive (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/288\"\u003e#288\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/410cab82204eaa884be64c4d6b9812e405de7f5e\"\u003e\u003ccode\u003e410cab8\u003c/code\u003e\u003c/a\u003e chore: release (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/f65fcce463f49c8935d65a3fd0573f6145e66a3a\"\u003e\u003ccode\u003ef65fcce\u003c/code\u003e\u003c/a\u003e test: reorg tests (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/285\"\u003e#285\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/5f33c594ee18b880fbd903aeb3875675ea8088a2\"\u003e\u003ccode\u003e5f33c59\u003c/code\u003e\u003c/a\u003e feat: impl \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eCow\\\u0026lt;'a, T\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/fbcfd1df492e45dfe5fcb2a5d8482e6d62cb2e45\"\u003e\u003ccode\u003efbcfd1d\u003c/code\u003e\u003c/a\u003e chore: remove conflicts with \u003ccode\u003eW\u003c/code\u003e/\u003ccode\u003eR\u003c/code\u003e parameters for \u003ccode\u003eBorshSerialize\u003c/code\u003e/`BorshDe...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v0.10.3...borsh-v1.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tokio` from 1.40.0 to 1.42.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/tokio/releases\"\u003etokio's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eTokio v1.42.1\u003c/h2\u003e\n\u003cp\u003eThis release fixes a soundness issue in the broadcast channel. The channel accepts values that are \u003ccode\u003eSend\u003c/code\u003e but \u003ccode\u003e!Sync\u003c/code\u003e. Previously, the channel called \u003ccode\u003eclone()\u003c/code\u003e on these values without synchronizing. This release fixes the channel by synchronizing calls to \u003ccode\u003e.clone()\u003c/code\u003e (Thanks Austin Bonander for finding and reporting the issue).\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esync: synchronize \u003ccode\u003eclone()\u003c/code\u003e call in broadcast channel (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/7232\"\u003e#7232\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/7232\"\u003e#7232\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tokio/pull/7232\"\u003etokio-rs/tokio#7232\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eTokio v1.42.0\u003c/h2\u003e\n\u003ch1\u003e1.42.0 (Dec 3rd, 2024)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eio: add \u003ccode\u003eAsyncFd::{try_io, try_io_mut}\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6967\"\u003e#6967\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eio: avoid \u003ccode\u003eptr-\u0026gt;ref-\u0026gt;ptr\u003c/code\u003e roundtrip in RegistrationSet (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6929\"\u003e#6929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eruntime: do not defer \u003ccode\u003eyield_now\u003c/code\u003e inside \u003ccode\u003eblock_in_place\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6999\"\u003e#6999\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eio: simplify io readiness logic (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6966\"\u003e#6966\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumented\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003enet: fix docs for \u003ccode\u003etokio::net::unix::{pid_t, gid_t, uid_t}\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6791\"\u003e#6791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etime: fix a typo in \u003ccode\u003eInstant\u003c/code\u003e docs (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6982\"\u003e#6982\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6791\"\u003e#6791\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tokio/pull/6791\"\u003etokio-rs/tokio#6791\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6929\"\u003e#6929\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tokio/pull/6929\"\u003etokio-rs/tokio#6929\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6966\"\u003e#6966\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tokio/pull/6966\"\u003etokio-rs/tokio#6966\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6967\"\u003e#6967\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tokio/pull/6967\"\u003etokio-rs/tokio#6967\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6982\"\u003e#6982\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tokio/pull/6982\"\u003etokio-rs/tokio#6982\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6999\"\u003e#6999\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tokio/pull/6999\"\u003etokio-rs/tokio#6999\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eTokio v1.41.1\u003c/h2\u003e\n\u003ch1\u003e1.41.1 (Nov 7th, 2024)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emetrics: fix bug with wrong number of buckets for the histogram (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6957\"\u003e#6957\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003enet: display \u003ccode\u003enet\u003c/code\u003e requirement for \u003ccode\u003enet::UdpSocket\u003c/code\u003e in docs (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6938\"\u003e#6938\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003enet: fix typo in \u003ccode\u003eTcpStream\u003c/code\u003e internal comment (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6944\"\u003e#6944\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6957\"\u003e#6957\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tokio/pull/6957\"\u003etokio-rs/tokio#6957\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6938\"\u003e#6938\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tokio/pull/6938\"\u003etokio-rs/tokio#6938\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6944\"\u003e#6944\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tokio/pull/6944\"\u003etokio-rs/tokio#6944\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/f7fb0bdc7a4b8db7b44aa34bf869cc76e61ef246\"\u003e\u003ccode\u003ef7fb0bd\u003c/code\u003e\u003c/a\u003e chore: prepare Tokio v1.42.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/9faea740df38c3691eb558b4a9387e2195960a85\"\u003e\u003ccode\u003e9faea74\u003c/code\u003e\u003c/a\u003e Merge 'tokio-1.38.x' into 'tokio.1.42.x'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/aa303bc2051f7c21b48bb7bfcafe8fd4f39afd21\"\u003e\u003ccode\u003eaa303bc\u003c/code\u003e\u003c/a\u003e chore: prepare Tokio v1.38.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/7b6ccb515ff067151ed62db835f735e5653f8784\"\u003e\u003ccode\u003e7b6ccb5\u003c/code\u003e\u003c/a\u003e chore: backport CI fixes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/4b174ce2c95fe1d1a217917db93fcc935e17e0da\"\u003e\u003ccode\u003e4b174ce\u003c/code\u003e\u003c/a\u003e sync: fix cloning value when receiving from broadcast channel\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/bb9d57017e100985f86d8ca41ac105ee9140423e\"\u003e\u003ccode\u003ebb9d570\u003c/code\u003e\u003c/a\u003e chore: prepare Tokio v1.42.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/7005\"\u003e#7005\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/af9c683d52415bf01709197778d49eec1ff78c44\"\u003e\u003ccode\u003eaf9c683\u003c/code\u003e\u003c/a\u003e tests: fix typo in build test instructions (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/7004\"\u003e#7004\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/4bc5a1a05862bad71f85a38bf3c56f721a97b43f\"\u003e\u003ccode\u003e4bc5a1a\u003c/code\u003e\u003c/a\u003e ci: allow Unicode-3.0 license for unicode-ident (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/7006\"\u003e#7006\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/f8948ea021bd4b5626bbd8dee89bee51ba766326\"\u003e\u003ccode\u003ef8948ea\u003c/code\u003e\u003c/a\u003e runtime: do not defer \u003ccode\u003eyield_now\u003c/code\u003e inside \u003ccode\u003eblock_in_place\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6999\"\u003e#6999\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/bce9780dd3127cd937923d975e356299226a39aa\"\u003e\u003ccode\u003ebce9780\u003c/code\u003e\u003c/a\u003e time: use \u003ccode\u003earray::from_fn\u003c/code\u003e instead of manually creating array (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/7000\"\u003e#7000\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/tokio/compare/tokio-1.40.0...tokio-1.42.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.7.1 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.10.1\u003c/h2\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/bytes/pull/773\"\u003etokio-rs/bytes#773\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eBytes v1.10.0\u003c/h2\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.9.0 (November 27, 2024)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eBytes::from_owner\u003c/code\u003e to enable externally-allocated memory (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/742\"\u003e#742\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumented\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.7.1...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `crossbeam-channel` from 0.5.13 to 0.5.15\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/crossbeam-rs/crossbeam/releases\"\u003ecrossbeam-channel's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ecrossbeam-channel 0.5.15\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix regression introduced in 0.5.12 that can lead to a double free when dropping unbounded channel. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1187\"\u003e#1187\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ecrossbeam-channel 0.5.14\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix stack overflow when sending large value to unbounded channel. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1146\"\u003e#1146\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1147\"\u003e#1147\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eSelect::new_biased\u003c/code\u003e function. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1150\"\u003e#1150\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove inefficient spinning. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1154\"\u003e#1154\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSuppress buggy \u003ccode\u003eclippy::zero_repeat_side_effects\u003c/code\u003e lint in macro generated code. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1123\"\u003e#1123\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/d35ffde18a76ae9667f602d8c0127ff89ac2e4d4\"\u003e\u003ccode\u003ed35ffde\u003c/code\u003e\u003c/a\u003e Prepare for the next release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/6ec74ecae896df5fc239518b45a1bfd258c9db68\"\u003e\u003ccode\u003e6ec74ec\u003c/code\u003e\u003c/a\u003e crossbeam-channel: prevent double free on Drop (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1187\"\u003e#1187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/ccd83ac4108a2a1b41e9c6e79c87267167d18dfa\"\u003e\u003ccode\u003eccd83ac\u003c/code\u003e\u003c/a\u003e Prepare for the next release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/54988eb2399c889fb82926c1508bb0ec31bedba2\"\u003e\u003ccode\u003e54988eb\u003c/code\u003e\u003c/a\u003e Calculate layout in const context\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/761d0b67e2849479f7b376b4c02a191f6ed796aa\"\u003e\u003ccode\u003e761d0b6\u003c/code\u003e\u003c/a\u003e Port \u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1146\"\u003e#1146\u003c/a\u003e \u0026amp; \u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1147\"\u003e#1147\u003c/a\u003e to deque::Injector and queue::SegQueue\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/8144fbb41e67046d341034843887b0dd5963cddb\"\u003e\u003ccode\u003e8144fbb\u003c/code\u003e\u003c/a\u003e Remove optimistic spinning from Context::wait_until\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/a92f6c4fbb5527ef4f86239fd18df426b4e1d84f\"\u003e\u003ccode\u003ea92f6c4\u003c/code\u003e\u003c/a\u003e Bump peter-evans/create-pull-request from 5 to 7 (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1153\"\u003e#1153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/66d41a904f8f51d82d806b86856d72290202d491\"\u003e\u003ccode\u003e66d41a9\u003c/code\u003e\u003c/a\u003e channel: Add new_biased constructor for biased channel selection (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1150\"\u003e#1150\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/d0d0a80be89a976a66292ed7d3fb562f9d3d590b\"\u003e\u003ccode\u003ed0d0a80\u003c/code\u003e\u003c/a\u003e CachePadded: Use 128-byte alignment on arm64ec\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/f757eefca227f67cb9dc8b90c07500728151f501\"\u003e\u003ccode\u003ef757eef\u003c/code\u003e\u003c/a\u003e Add comment about fixed rustc bug\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/crossbeam-rs/crossbeam/compare/crossbeam-channel-0.5.13...crossbeam-channel-0.5.15\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `keccak` from 0.1.5 to 0.1.6\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/sponges/commit/a8936d9662ca92fd177d289580066ceabb937b0c\"\u003e\u003ccode\u003ea8936d9\u003c/code\u003e\u003c/a\u003e keccak v0.1.6\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/RustCrypto/sponges/compare/keccak-v0.1.5...keccak-v0.1.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 0.4.41 to 0.4.45\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/096e3d16d14fefac51bc4d94d616b21546ea8bcc\"\u003e\u003ccode\u003e096e3d1\u003c/code\u003e\u003c/a\u003e Bump to 0.4.45 (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/443\"\u003e#443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/17b1fd84e632071cb8eef9d3709bf347bd266446\"\u003e\u003ccode\u003e17b1fd8\u003c/code\u003e\u003c/a\u003e archive: Prevent symlink-directory collision chmod attack (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/de1a5870e603758f430073688691165f21a33946\"\u003e\u003ccode\u003ede1a587\u003c/code\u003e\u003c/a\u003e archive: Unconditionally honor PAX size (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/441\"\u003e#441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/6071cbe74acefa8c8322809bfd43c825e5f16b60\"\u003e\u003ccode\u003e6071cbe\u003c/code\u003e\u003c/a\u003e ci: Consolidate workflows (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/439\"\u003e#439\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/ad1fde9edfb9657d17666bbec2933119ce527359\"\u003e\u003ccode\u003ead1fde9\u003c/code\u003e\u003c/a\u003e build-sys: Promote unused_code to an error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/c8cb250e8bc3f28bd69406b396bb8a92b40012c1\"\u003e\u003ccode\u003ec8cb250\u003c/code\u003e\u003c/a\u003e tests: Squash a warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/638c495a480d2a50099d55f445ece9e5f544b49d\"\u003e\u003ccode\u003e638c495\u003c/code\u003e\u003c/a\u003e ci: Add xtask infra + reverse dependency testing (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/435\"\u003e#435\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/32a9bbb26468cbdecbf73fe8eb249284d4a718ed\"\u003e\u003ccode\u003e32a9bbb\u003c/code\u003e\u003c/a\u003e tests: Add RandomReader to exercise partial-read resilience (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/436\"\u003e#436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/9c5df0bfd70d1b063516b90fca2cf2e0dbe8b758\"\u003e\u003ccode\u003e9c5df0b\u003c/code\u003e\u003c/a\u003e Fix GNU long-name extension stream corruption on validation error (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/88b1e3b0da65b0c5b9750d1a75516145488f4793\"\u003e\u003ccode\u003e88b1e3b\u003c/code\u003e\u003c/a\u003e Fix docs typo in header.rs (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alexcrichton/tar-rs/compare/0.4.41...0.4.45\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.36 to 0.3.47\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.47\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.46\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.45\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.44\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.43\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.42\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.41\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.40\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.39\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.38\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.37\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003etime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.47 [2026-02-05]\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eThe possibility of a stack exhaustion denial of service attack when parsing RFC 2822 has been\neliminated. Previously, it was possible to craft input that would cause unbounded recursion. Now,\nthe depth of the recursion is tracked, causing an error to be returned if it exceeds a reasonable\nlimit.\u003c/p\u003e\n\u003cp\u003eThis attack vector requires parsing user-provided input, with any type, using the RFC 2822 format.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCompatibility\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAttempting to format a value with a well-known format (i.e. RFC 3339, RFC 2822, or ISO 8601) will\nerror at compile time if the type being formatted does not provide sufficient information. This\nwould previously fail at runtime. Similarly, attempting to format a value with ISO 8601 that is\nonly configured for parsing (i.e. \u003ccode\u003eIso8601::PARSING\u003c/code\u003e) will error at compile time.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBuilder methods for format description modifiers, eliminating the need for verbose initialization\nwhen done manually.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edate!(2026-W01-2)\u003c/code\u003e is now supported. Previously, a space was required between \u003ccode\u003eW\u003c/code\u003e and \u003ccode\u003e01\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[end]\u003c/code\u003e now has a \u003ccode\u003etrailing_input\u003c/code\u003e modifier which can either be \u003ccode\u003eprohibit\u003c/code\u003e (the default) or\n\u003ccode\u003ediscard\u003c/code\u003e. When it is \u003ccode\u003ediscard\u003c/code\u003e, all remaining input is ignored. Note that if there are components\nafter \u003ccode\u003e[end]\u003c/code\u003e, they will still attempt to be parsed, likely resulting in an error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMore performance gains when parsing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIf manually formatting a value, the number of bytes written was one short for some components.\nThis has been fixed such that the number of bytes written is always correct.\u003c/li\u003e\n\u003cli\u003eThe possibility of integer overflow when parsing an owned format description has been effectively\neliminated. This would previously wrap when overflow checks were disabled. Instead of storing the\ndepth as \u003ccode\u003eu8\u003c/code\u003e, it is stored as \u003ccode\u003eu32\u003c/code\u003e. This would require multiple gigabytes of nested input to\noverflow, at which point we've got other problems and trivial mitigations are available by\ndownstream users.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.46 [2026-01-23]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAll possible panics are now documented for the relevant methods.\u003c/li\u003e\n\u003cli\u003eThe need to use \u003ccode\u003e#[serde(default)]\u003c/code\u003e when using custom \u003ccode\u003eserde\u003c/code\u003e formats is documented. This applies\nonly when deserializing an \u003ccode\u003eOption\u0026lt;T\u0026gt;\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDuration::nanoseconds_i128\u003c/code\u003e has been made public, mirroring\n\u003ccode\u003estd::time::Duration::from_nanos_u128\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/d5144cd2874862d46466c900910cd8577d066019\"\u003e\u003ccode\u003ed5144cd\u003c/code\u003e\u003c/a\u003e v0.3.47 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/f6206b050fd54817d8872834b4d61f605570e89b\"\u003e\u003ccode\u003ef6206b0\u003c/code\u003e\u003c/a\u003e Guard against integer overflow in release mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/1c63dc7985b8fa26bd8c689423cc56b7a03841ee\"\u003e\u003ccode\u003e1c63dc7\u003c/code\u003e\u003c/a\u003e Avoid denial of service when parsing Rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/5940df6e72efb63d246ca1ca59a0f836ad32ad8a\"\u003e\u003ccode\u003e5940df6\u003c/code\u003e\u003c/a\u003e Add builder methods to avoid verbose construction\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/00881a4da1bc5a6cb6313052e5017dbd7daa40f0\"\u003e\u003ccode\u003e00881a4\u003c/code\u003e\u003c/a\u003e Manually format macros everywhere\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/bb723b6d826e46c174d75cd08987061984b0ceb7\"\u003e\u003ccode\u003ebb723b6\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003etrailing_input\u003c/code\u003e modifier to \u003ccode\u003eend\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/31c4f8e0b56e6ae24fe0d6ef0e492b6741dda783\"\u003e\u003ccode\u003e31c4f8e\u003c/code\u003e\u003c/a\u003e Permit \u003ccode\u003eW12\u003c/code\u003e in \u003ccode\u003edate!\u003c/code\u003e macro\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/490a17bf306576850f33a86d3ca95d96db7b1dcd\"\u003e\u003ccode\u003e490a17b\u003c/code\u003e\u003c/a\u003e Mark error paths in well-known formats as cold\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6cb1896a600be1538ecfab8f233fe9cfe9fa8951\"\u003e\u003ccode\u003e6cb1896\u003c/code\u003e\u003c/a\u003e Optimize \u003ccode\u003eRfc2822\u003c/code\u003e parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6d264d59c25e3da0453c3defebf4640b0086a006\"\u003e\u003ccode\u003e6d264d5\u003c/code\u003e\u003c/a\u003e Remove erroneous \u003ccode\u003e#[inline(never)]\u003c/code\u003e attributes\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/time-rs/time/compare/v0.3.36...v0.3.47\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tracing-subscriber` from 0.3.18 to 0.3.19\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/tracing/releases\"\u003etracing-subscriber's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003etracing-subscriber 0.3.19\u003c/h2\u003e\n\u003cp\u003e[ [crates.io][crate-0.3.19] ] | [ [docs.rs][docs-0.3.19] ]\u003c/p\u003e\n\u003cp\u003eThis release updates the \u003ccode\u003etracing\u003c/code\u003e dependency to [v0.1.41][tracing-0.1.41] and\nthe \u003ccode\u003etracing-serde\u003c/code\u003e dependency to [v0.2.0][tracing-serde-0.2.0].\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eset_span_events\u003c/code\u003e to \u003ccode\u003efmt::Subscriber\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/2962\"\u003e#2962\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etracing\u003c/strong\u003e: Allow \u003ccode\u003e\u0026amp;[u8]\u003c/code\u003e to be recorded as event/span field (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/2954\"\u003e#2954\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSet \u003ccode\u003elog\u003c/code\u003e max level when reloading (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/1270\"\u003e#1270\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump MSRV to 1.63 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/2793\"\u003e#2793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse const \u003ccode\u003ethread_local\u003c/code\u003es when possible (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/2838\"\u003e#2838\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDon't gate \u003ccode\u003ewith_ansi()\u003c/code\u003e on the \u0026quot;ansi\u0026quot; feature (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3020\"\u003e#3020\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdated tracing-serde to 0.2.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3160\"\u003e#3160\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/1270\"\u003e#1270\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tracing/pull/1270\"\u003etokio-rs/tracing#1270\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/2793\"\u003e#2793\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tracing/pull/2793\"\u003etokio-rs/tracing#2793\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/2838\"\u003e#2838\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tracing/pull/2838\"\u003etokio-rs/tracing#2838\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/2954\"\u003e#2954\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tracing/pull/2954\"\u003etokio-rs/tracing#2954\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/2962\"\u003e#2962\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tracing/pull/2962\"\u003etokio-rs/tracing#2962\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3020\"\u003e#3020\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tracing/pull/3020\"\u003etokio-rs/tracing#3020\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3160\"\u003e#3160\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tracing/pull/3160\"\u003etokio-rs/tracing#3160\u003c/a\u003e\n[tracing-0.1.41]:\n\u003ca href=\"https://github.com/tokio-rs/tracing/releases/tag/tracing-0.1.41\"\u003ehttps://github.com/tokio-rs/tracing/releases/tag/tracing-0.1.41\u003c/a\u003e\n[tracing-serde-0.2.0]:\n\u003ca href=\"https://github.com/tokio-rs/tracing/releases/tag/tracing-serde-0.2.0\"\u003ehttps://github.com/tokio-rs/tracing/releases/tag/tracing-serde-0.2.0\u003c/a\u003e\n[docs-0.3.19]: \u003ca href=\"https://docs.rs/tracing-subscriber/0.3.19/tracing_subscriber/\"\u003ehttps://docs.rs/tracing-subscriber/0.3.19/tracing_subscriber/\u003c/a\u003e\n[crate-0.3.19]: \u003ca href=\"https://crates.io/crates/tracing-subscriber/0.3.19\"\u003ehttps://crates.io/crates/tracing-subscriber/0.3.19\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/311c31321657ba657ccf63e10bc92a45a079fa2b\"\u003e\u003ccode\u003e311c313\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-subscriber 0.3.19 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3162\"\u003e#3162\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/35f360a1924319c822f20da412be66854bf9428b\"\u003e\u003ccode\u003e35f360a\u003c/code\u003e\u003c/a\u003e chore: fix new Clippy lints in Rust 1.83.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3165\"\u003e#3165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/c66a692e671903712c1bd598082fc018f7f8568e\"\u003e\u003ccode\u003ec66a692\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-serde 0.2.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3160\"\u003e#3160\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/0ca78870815a34a345a908f48db057057e8803d2\"\u003e\u003ccode\u003e0ca7887\u003c/code\u003e\u003c/a\u003e chore: prepare tracing 0.1.41 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3159\"\u003e#3159\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/504a287abbf93ef0ffae09688210f423e8061160\"\u003e\u003ccode\u003e504a287\u003c/code\u003e\u003c/a\u003e tracing: update core to v0.1.33 and attributes to v0.1.28 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3156\"\u003e#3156\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/baa54894067b245bad0af8e45f92279e25820659\"\u003e\u003ccode\u003ebaa5489\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-attributes 0.1.28 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3155\"\u003e#3155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/cb0f0e71dd1020d63f2190ffef298b989c9e88b0\"\u003e\u003ccode\u003ecb0f0e7\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-core 0.1.33 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3153\"\u003e#3153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/11c82730359f60b290cba0a405947b23c0a68d7b\"\u003e\u003ccode\u003e11c8273\u003c/code\u003e\u003c/a\u003e subscriber: don't gate \u003ccode\u003ewith_ansi()\u003c/code\u003e on the \u0026quot;ansi\u0026quot; feature (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3020\"\u003e#3020\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/8a25a16873d2970a6ac0577a0ceea916f3013424\"\u003e\u003ccode\u003e8a25a16\u003c/code\u003e\u003c/a\u003e core: fix missed \u003ccode\u003eregister_callsite\u003c/code\u003e error (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/2938\"\u003e#2938\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/6f08af07f249a88aa5b34be98c3eb596aef9fc15\"\u003e\u003ccode\u003e6f08af0\u003c/code\u003e\u003c/a\u003e subscriber: set \u003ccode\u003elog\u003c/code\u003e max level when reloading (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/1270\"\u003e#1270\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/tracing/compare/tracing-subscriber-0.3.18...tracing-subscriber-0.3.19\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `borsh` from 0.10.3 to 1.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/near/borsh-rs/releases\"\u003eborsh's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eborsh-derive-v1.5.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.5.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-derive-v1.5.0\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.5.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimplement \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eVecDeque\u003c/code\u003e and \u003ccode\u003eLinkedList\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/291\"\u003e#291\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix repository field of borsh-derive (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/288\"\u003e#288\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.4.0\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.4.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimpl \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eCow\u0026lt;'a, T\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eBorshSerialize\u003c/code\u003e/\u003ccode\u003eBoshDeserialize\u003c/code\u003e/\u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eCell\u003c/code\u003e/\u003ccode\u003eRefCell\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ereorg tests (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/285\"\u003e#285\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove conflicts with \u003ccode\u003eW\u003c/code\u003e/\u003ccode\u003eR\u003c/code\u003e parameters for \u003ccode\u003eBorshSerialize\u003c/code\u003e/\u003ccode\u003eBorshDeserialize\u003c/code\u003e derives (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix \u003ccode\u003etest_exhaustive_checks\u003c/code\u003e step + downgrade package for MSRV test (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/280\"\u003e#280\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.3.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.3.1\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix clippy (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebump \u003ccode\u003eproc-macro-crate\u003c/code\u003e to \u003ccode\u003e3\u003c/code\u003e; bump MSRV to \u003ccode\u003e1.67\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/274\"\u003e#274\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.3.0\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.3.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimpl \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eRc\u003c/code\u003e and \u003ccode\u003eArc\u003c/code\u003e; add doc for \u003ccode\u003erc\u003c/code\u003e feature (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.2.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.2.1\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eoptimize \u003ccode\u003eBorshSerialize\u003c/code\u003e derive for enums with unit variants (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/262\"\u003e#262\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/near/borsh-rs/blob/master/CHANGELOG.md\"\u003eborsh's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.5.0...borsh-v1.5.1\"\u003e1.5.1\u003c/a\u003e - 2024-05-30\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(schema)\u003c/em\u003e for \u003ccode\u003eHashMap\u0026lt;K, V\u0026gt;\u003c/code\u003e -\u0026gt; \u003ccode\u003eHashMap\u0026lt;K, V, S\u0026gt;\u003c/code\u003e, for \u003ccode\u003eHashSet\u0026lt;T\u0026gt;\u003c/code\u003e -\u0026gt; \u003ccode\u003eHashSet\u0026lt;T, S\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/294\"\u003e#294\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efixed linting warnings for Rust 1.78 stable,  1.80 nightly (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/295\"\u003e#295\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.4.0...borsh-v1.5.0\"\u003e1.5.0\u003c/a\u003e - 2024-04-29\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimplement \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eVecDeque\u003c/code\u003e and \u003ccode\u003eLinkedList\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/291\"\u003e#291\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix repository field of borsh-derive (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/288\"\u003e#288\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.3.1...borsh-v1.4.0\"\u003e1.4.0\u003c/a\u003e - 2024-03-25\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimpl \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eCow\u0026lt;'a, T\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eBorshSerialize\u003c/code\u003e/\u003ccode\u003eBoshDeserialize\u003c/code\u003e/\u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eCell\u003c/code\u003e/\u003ccode\u003eRefCell\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ereorg tests (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/285\"\u003e#285\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove conflicts with \u003ccode\u003eW\u003c/code\u003e/\u003ccode\u003eR\u003c/code\u003e parameters for \u003ccode\u003eBorshSerialize\u003c/code\u003e/\u003ccode\u003eBorshDeserialize\u003c/code\u003e derives (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix \u003ccode\u003etest_exhaustive_checks\u003c/code\u003e step + downgrade package for MSRV test (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/280\"\u003e#280\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.3.0...borsh-v1.3.1\"\u003e1.3.1\u003c/a\u003e - 2024-01-10\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix clippy (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebump \u003ccode\u003eproc-macro-crate\u003c/code\u003e to \u003ccode\u003e3\u003c/code\u003e; bump MSRV to \u003ccode\u003e1.67\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/274\"\u003e#274\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.2.1...borsh-v1.3.0\"\u003e1.3.0\u003c/a\u003e - 2023-12-07\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimpl \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eRc\u003c/code\u003e and \u003ccode\u003eArc\u003c/code\u003e; add doc for \u003ccode\u003erc\u003c/code\u003e feature (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.2.0...borsh-v1.2.1\"\u003e1.2.1\u003c/a\u003e - 2023-12-06\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eoptimize \u003ccode\u003eBorshSerialize\u003c/code\u003e derive for enums with unit variants (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/262\"\u003e#262\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix \u003ccode\u003erelease-plz\u003c/code\u003e error; exclude \u003ccode\u003e*.snap\u003c/code\u003e from \u003ccode\u003eborsh-derive\u003c/code\u003e publish (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/263\"\u003e#263\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.1.2...borsh-v1.2.0\"\u003e1.2.0\u003c/a\u003e - 2023-11-13\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd support for types from \u003ccode\u003eascii\u003c/code\u003e crate (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/255\"\u003e#255\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.1.1...borsh-v1.1.2\"\u003e1.1.2\u003c/a\u003e - 2023-11-08\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/f16cd07e3c982539352aa43f65abf3607461a7bc\"\u003e\u003ccode\u003ef16cd07\u003c/code\u003e\u003c/a\u003e chore: release (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/298\"\u003e#298\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/cdb8fa9bf7652df1b5e85b985045ee30e62ba5ae\"\u003e\u003ccode\u003ecdb8fa9\u003c/code\u003e\u003c/a\u003e feat(schema): for \u003ccode\u003eHashMap\\\u0026lt;K, V\u0026gt;\u003c/code\u003e -\u0026gt; \u003ccode\u003eHashMap\\\u0026lt;K, V, S\u0026gt;\u003c/code\u003e, for \u003ccode\u003eHashSet\\\u0026lt;T\u0026gt;\u003c/code\u003e -\u0026gt; ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/fa6225c26dc57cc061651050be651f4b2fcdb19a\"\u003e\u003ccode\u003efa6225c\u003c/code\u003e\u003c/a\u003e fix: fixed linting warnings for Rust 1.78 stable,  1.80 nightly (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/295\"\u003e#295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/6fa3057b0892360ec3e10ba5c897bb058c09580b\"\u003e\u003ccode\u003e6fa3057\u003c/code\u003e\u003c/a\u003e chore: release (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/289\"\u003e#289\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/238ea42994fd4f85ca03046aac1f676866492783\"\u003e\u003ccode\u003e238ea42\u003c/code\u003e\u003c/a\u003e feat: implement \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eVecDeque\u003c/code\u003e and \u003ccode\u003eLinkedList\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/291\"\u003e#291\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/96268f2970d1954f7481a381be9ab245c1d7518f\"\u003e\u003ccode\u003e96268f2\u003c/code\u003e\u003c/a\u003e Fix repository field of borsh-derive (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/288\"\u003e#288\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/410cab82204eaa884be64c4d6b9812e405de7f5e\"\u003e\u003ccode\u003e410cab8\u003c/code\u003e\u003c/a\u003e chore: release (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/f65fcce463f49c8935d65a3fd0573f6145e66a3a\"\u003e\u003ccode\u003ef65fcce\u003c/code\u003e\u003c/a\u003e test: reorg tests (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/285\"\u003e#285\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/5f33c594ee18b880fbd903aeb3875675ea8088a2\"\u003e\u003ccode\u003e5f33c59\u003c/code\u003e\u003c/a\u003e feat: impl \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eCow\\\u0026lt;'a, T\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/fbcfd1df492e45dfe5fcb2a5d8482e6d62cb2e45\"\u003e\u003ccode\u003efbcfd1d\u003c/code\u003e\u003c/a\u003e chore: remove conflicts with \u003ccode\u003eW\u003c/code\u003e/\u003ccode\u003eR\u003c/code\u003e parameters for \u003ccode\u003eBorshSerialize\u003c/code\u003e/`BorshDe...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v0.10.3...borsh-v1.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.7.1 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.10.1\u003c/h2\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/bytes/pull/773\"\u003etokio-rs/bytes#773\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eBytes v1.10.0\u003c/h2\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.9.0 (November 27, 2024)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eBytes::from_owner\u003c/code\u003e to enable externally-allocated memory (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/742\"\u003e#742\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumented\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.7.1...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `crossbeam-channel` from 0.5.13 to 0.5.15\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/crossbeam-rs/crossbeam/releases\"\u003ecrossbeam-channel's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ecrossbeam-channel 0.5.15\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix regression introduced in 0.5.12 that can lead to a double free when dropping unbounded channel. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1187\"\u003e#1187\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ecrossbeam-channel 0.5.14\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix stack overflow when sending large value to unbounded channel. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1146\"\u003e#1146\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1147\"\u003e#1147\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eSelect::new_biased\u003c/code\u003e function. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1150\"\u003e#1150\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove inefficient spinning. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1154\"\u003e#1154\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSuppress buggy \u003ccode\u003eclippy::zero_repeat_side_effects\u003c/code\u003e lint in macro generated code. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1123\"\u003e#1123\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/d35ffde18a76ae9667f602d8c0127ff89ac2e4d4\"\u003e\u003ccode\u003ed35ffde\u003c/code\u003e\u003c/a\u003e Prepare for the next release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/6ec74ecae896df5fc239518b45a1bfd258c9db68\"\u003e\u003ccode\u003e6ec74ec\u003c/code\u003e\u003c/a\u003e crossbeam-channel: prevent double free on Drop (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1187\"\u003e#1187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/ccd83ac4108a2a1b41e9c6e79c87267167d18dfa\"\u003e\u003ccode\u003eccd83ac\u003c/code\u003e\u003c/a\u003e Prepare for the next release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/54988eb2399c889fb82926c1508bb0ec31bedba2\"\u003e\u003ccode\u003e54988eb\u003c/code\u003e\u003c/a\u003e Calculate layout in const context\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/761d0b67e2849479f7b376b4c02a191f6ed796aa\"\u003e\u003ccode\u003e761d0b6\u003c/code\u003e\u003c/a\u003e Port \u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1146\"\u003e#1146\u003c/a\u003e \u0026amp; \u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1147\"\u003e#1147\u003c/a\u003e to deque::Injector and queue::SegQueue\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/8144fbb41e67046d3410...\n\n_Description has been truncated_","html_url":"https://github.com/clawdsolana/OpenClawd/pull/23","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/clawdsolana%2FOpenClawd/issues/23","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/23/packages"},{"uuid":"4407668333","node_id":"PR_kwDONNVomc7ZmPQD","number":8,"state":"closed","title":"Bump the cargo group across 2 directories with 17 updates","user":"dependabot[bot]","labels":["dependencies","rust"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-28T17:26:49.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-08T15:58:57.000Z","updated_at":"2026-05-28T17:26:52.000Z","time_to_close":1733272,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"cargo","update_count":17,"packages":[{"name":"tokio","old_version":"1.38.1","new_version":"1.38.2","repository_url":"https://github.com/tokio-rs/tokio"},{"name":"sequoia-openpgp","old_version":"1.21.2","new_version":"2.1.0"},{"name":"rand","old_version":"0.8.5","new_version":"0.8.6","repository_url":"https://github.com/rust-random/rand"},{"name":"rsa","old_version":"0.9.6","new_version":"0.9.10","repository_url":"https://github.com/RustCrypto/RSA"},{"name":"lz4_flex","old_version":"0.11.3","new_version":"0.11.6","repository_url":"https://github.com/pseitz/lz4_flex"},{"name":"rustls","old_version":"0.23.16","new_version":"0.23.18","repository_url":"https://github.com/rustls/rustls"},{"name":"ring","old_version":"0.17.8","new_version":"0.17.13","repository_url":"https://github.com/briansmith/ring"},{"name":"bytes","old_version":"1.8.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"zip","old_version":"2.2.0","new_version":"2.3.0","repository_url":"https://github.com/zip-rs/zip2"},{"name":"rpassword","old_version":"7.3.1","new_version":"7.5.0","repository_url":"https://github.com/conradkleinespel/rpassword"},{"name":"crossbeam-channel","old_version":"0.5.13","new_version":"0.5.15","repository_url":"https://github.com/crossbeam-rs/crossbeam"},{"name":"hickory-proto","old_version":"0.24.1","new_version":"0.24.4","repository_url":"https://github.com/hickory-dns/hickory-dns"},{"name":"openssl","old_version":"0.10.68","new_version":"0.10.79","repository_url":"https://github.com/rust-openssl/rust-openssl"},{"name":"quinn-proto","old_version":"0.11.8","new_version":"0.11.14","repository_url":"https://github.com/quinn-rs/quinn"},{"name":"time","old_version":"0.3.36","new_version":"0.3.44","repository_url":"https://github.com/time-rs/time"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 15 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [tokio](https://github.com/tokio-rs/tokio) | `1.38.1` | `1.38.2` |\n| [sequoia-openpgp](https://gitlab.com/sequoia-pgp/sequoia) | `1.21.2` | `2.1.0` |\n| [rand](https://github.com/rust-random/rand) | `0.8.5` | `0.8.6` |\n| [rsa](https://github.com/RustCrypto/RSA) | `0.9.6` | `0.9.10` |\n| [lz4_flex](https://github.com/pseitz/lz4_flex) | `0.11.3` | `0.11.6` |\n| [rustls](https://github.com/rustls/rustls) | `0.23.16` | `0.23.18` |\n| [ring](https://github.com/briansmith/ring) | `0.17.8` | `0.17.13` |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.8.0` | `1.11.1` |\n| [zip](https://github.com/zip-rs/zip2) | `2.2.0` | `2.3.0` |\n| [rpassword](https://github.com/conradkleinespel/rpassword) | `7.3.1` | `7.5.0` |\n| [crossbeam-channel](https://github.com/crossbeam-rs/crossbeam) | `0.5.13` | `0.5.15` |\n| [hickory-proto](https://github.com/hickory-dns/hickory-dns) | `0.24.1` | `0.24.4` |\n| [openssl](https://github.com/rust-openssl/rust-openssl) | `0.10.68` | `0.10.79` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.8` | `0.11.14` |\n| [time](https://github.com/time-rs/time) | `0.3.36` | `0.3.44` |\n\nBumps the cargo group with 4 updates in the /crates/store directory: [tokio](https://github.com/tokio-rs/tokio), [rand](https://github.com/rust-random/rand), [mio](https://github.com/tokio-rs/mio) and [shlex](https://github.com/comex/rust-shlex).\n\nUpdates `tokio` from 1.38.1 to 1.38.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/tokio/releases\"\u003etokio's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eTokio v1.38.2\u003c/h2\u003e\n\u003cp\u003eThis release fixes a soundness issue in the broadcast channel. The channel accepts values that are \u003ccode\u003eSend\u003c/code\u003e but \u003ccode\u003e!Sync\u003c/code\u003e. Previously, the channel called \u003ccode\u003eclone()\u003c/code\u003e on these values without synchronizing. This release fixes the channel by synchronizing calls to \u003ccode\u003e.clone()\u003c/code\u003e (Thanks Austin Bonander for finding and reporting the issue).\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esync: synchronize \u003ccode\u003eclone()\u003c/code\u003e call in broadcast channel (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/7232\"\u003e#7232\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/7232\"\u003e#7232\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tokio/pull/7232\"\u003etokio-rs/tokio#7232\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/aa303bc2051f7c21b48bb7bfcafe8fd4f39afd21\"\u003e\u003ccode\u003eaa303bc\u003c/code\u003e\u003c/a\u003e chore: prepare Tokio v1.38.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/7b6ccb515ff067151ed62db835f735e5653f8784\"\u003e\u003ccode\u003e7b6ccb5\u003c/code\u003e\u003c/a\u003e chore: backport CI fixes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/4b174ce2c95fe1d1a217917db93fcc935e17e0da\"\u003e\u003ccode\u003e4b174ce\u003c/code\u003e\u003c/a\u003e sync: fix cloning value when receiving from broadcast channel\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/9681ce2b95ae7271c041f69b9fc48912259a7ea8\"\u003e\u003ccode\u003e9681ce2\u003c/code\u003e\u003c/a\u003e chore: make 1.38 an LTS (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6706\"\u003e#6706\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/tokio/compare/tokio-1.38.1...tokio-1.38.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `sequoia-openpgp` from 1.21.2 to 2.1.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://gitlab.com/sequoia-pgp/sequoia/commit/02d387c16b83e3dac598b4f2e76e278e6452e2b8\"\u003e\u003ccode\u003e02d387c\u003c/code\u003e\u003c/a\u003e openpgp: Release 2.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://gitlab.com/sequoia-pgp/sequoia/commit/50b521322749ad884c7d73f736bdee86c6ece22a\"\u003e\u003ccode\u003e50b5213\u003c/code\u003e\u003c/a\u003e Update Cargo.lock.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://gitlab.com/sequoia-pgp/sequoia/commit/8455e532d28fae2be7c6c48d47de91b0248644c9\"\u003e\u003ccode\u003e8455e53\u003c/code\u003e\u003c/a\u003e meta: Use cargo's MSRV-aware resolver, if available.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://gitlab.com/sequoia-pgp/sequoia/commit/62f508db3219dfb05be2163bdad813c1e66fa1aa\"\u003e\u003ccode\u003e62f508d\u003c/code\u003e\u003c/a\u003e openpgp: Partially address rustc warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://gitlab.com/sequoia-pgp/sequoia/commit/2affea78a614524a67ddb636ed4ccb26df6e3f33\"\u003e\u003ccode\u003e2affea7\u003c/code\u003e\u003c/a\u003e openpgp: Map EdDSA to its own policy.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://gitlab.com/sequoia-pgp/sequoia/commit/36ee206ba4b63aa66b061a401afbedc0aafd3843\"\u003e\u003ccode\u003e36ee206\u003c/code\u003e\u003c/a\u003e openpgp: Fix comment.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://gitlab.com/sequoia-pgp/sequoia/commit/a780dace86df7ed6d83a1ebbb58f5be629874660\"\u003e\u003ccode\u003ea780dac\u003c/code\u003e\u003c/a\u003e openpgp: Add a separate policy for EdDSA.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://gitlab.com/sequoia-pgp/sequoia/commit/2a12d54baef4e74b8bb71c15c656b01bd0121294\"\u003e\u003ccode\u003e2a12d54\u003c/code\u003e\u003c/a\u003e openpgp: Don't import variants to avoid naming clashes.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://gitlab.com/sequoia-pgp/sequoia/commit/e55c1e46c74d82bc73fba8d7ec7b9063f8bfcdbe\"\u003e\u003ccode\u003ee55c1e4\u003c/code\u003e\u003c/a\u003e openpgp: Fix fuzzer crypto backend.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://gitlab.com/sequoia-pgp/sequoia/commit/b59886e5e7bdf7169ed330f309a6633d131776e5\"\u003e\u003ccode\u003eb59886e\u003c/code\u003e\u003c/a\u003e openpgp: Fix an underflow in aes_key_unwrap.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://gitlab.com/sequoia-pgp/sequoia/compare/openpgp/v1.21.2...openpgp/v2.1.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.8.5 to 0.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rsa` from 0.9.6 to 0.9.10\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/RustCrypto/RSA/blob/v0.9.10/CHANGELOG.md\"\u003ersa's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.9.10 (2026-01-06)\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edo not panic on a prime being 1 when loading a secret key (\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/624\"\u003e#624\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/624\"\u003e#624\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/RustCrypto/RSA/pull/624\"\u003eRustCrypto/RSA#624\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.9.9 (2025-11-13)\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for cryptographic operations with larger keys (\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/594\"\u003e#594\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/594\"\u003e#594\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/RustCrypto/RSA/pull/594\"\u003eRustCrypto/RSA#594\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.9.8 (2025-03-12)\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDoc comments to specify the \u003ccode\u003erand\u003c/code\u003e version (\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/473\"\u003e#473\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/473\"\u003e#473\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/RustCrypto/RSA/pull/473\"\u003eRustCrypto/RSA#473\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.9.7 (2024-11-26)\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ealways validate keys in from_components\u003c/li\u003e\n\u003cli\u003edo not crash when handling tiny keys in PKCS1v15\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/da2af9a0ff814762957c428460e4098720f394a6\"\u003e\u003ccode\u003eda2af9a\u003c/code\u003e\u003c/a\u003e chore: release v0.9.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/2926c91bef7cb14a7ccd42220a698cf4b1b692f7\"\u003e\u003ccode\u003e2926c91\u003c/code\u003e\u003c/a\u003e fix: do not panic on a prime being 1 when loading a secret key (\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/624\"\u003e#624\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/488d2ad6090e54b5125dfeefeda53a1adb4b67c0\"\u003e\u003ccode\u003e488d2ad\u003c/code\u003e\u003c/a\u003e chore: release 0.9.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/c1f00a32c5ef97ca2bc121ee28b7ea907b6f936d\"\u003e\u003ccode\u003ec1f00a3\u003c/code\u003e\u003c/a\u003e Support for cryptographic operations with larger keys (\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/594\"\u003e#594\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/85f03b569b7771e6d9c270c0a938930ecc69e07c\"\u003e\u003ccode\u003e85f03b5\u003c/code\u003e\u003c/a\u003e Release v0.9.8 (\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/495\"\u003e#495\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/bd3575b67f404408e9a05367ce1bdad33d8e9439\"\u003e\u003ccode\u003ebd3575b\u003c/code\u003e\u003c/a\u003e Add comment to specify the rand version (\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/473\"\u003e#473\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/551f6e5dcbefa89c030a4fda5534782e6fb8bdb4\"\u003e\u003ccode\u003e551f6e5\u003c/code\u003e\u003c/a\u003e release: v0.9.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/2edd47929f7298bddde8f682ded330dbaf9c43a6\"\u003e\u003ccode\u003e2edd479\u003c/code\u003e\u003c/a\u003e fix: always validate keys in from_components\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/201ad812a0fdbd43808b1717a66936a0348cf1b1\"\u003e\u003ccode\u003e201ad81\u003c/code\u003e\u003c/a\u003e fix: handle tiny keys\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/RustCrypto/RSA/compare/v0.9.6...v0.9.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lz4_flex` from 0.11.3 to 0.11.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/PSeitz/lz4_flex/blob/main/CHANGELOG.md\"\u003elz4_flex's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e0.11.6 (2026-03-14)\u003c/h1\u003e\n\u003ch3\u003eSecurity Fix\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix handling of invalid match offsets during decompression \u003ca href=\"https://github.com/PSeitz/lz4_flex/commit/84cdafb\"\u003e#84cdafb\u003c/a\u003e (thanks \u003ca href=\"https://github.com/Marcono1234\"\u003e\u003ccode\u003e@​Marcono1234\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre\u003e\u003ccode\u003eInvalid match offsets (offset == 0) during decompression were not properly\nhandled, which could lead to invalid memory reads on untrusted input.\nUsers on 0.11.x should upgrade to 0.11.6.\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch1\u003e0.11.5 (2025-06-19)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect rust-version field name in Cargo.toml \u003ca href=\"https://redirect.github.com/PSeitz/lz4_flex/pull/187\"\u003e#187\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e0.11.4 (2025-06-14)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to twox-hash 2.0\u003ca href=\"https://redirect.github.com/PSeitz/lz4_flex/pull/175\"\u003e#175\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBetter \u003ccode\u003eno_std\u003c/code\u003e compatibility \u003ca href=\"https://redirect.github.com/PSeitz/lz4_flex/pull/180\"\u003e#180\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/pseitz/lz4_flex/commits/0.11.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls` from 0.23.16 to 0.23.18\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/33af2c38b0f1e4abf44d59d5b74ccf12f5cf5e56\"\u003e\u003ccode\u003e33af2c3\u003c/code\u003e\u003c/a\u003e Prepare 0.23.18\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/ffe646d1ff07d3e1d9f009daadd94228d462425d\"\u003e\u003ccode\u003effe646d\u003c/code\u003e\u003c/a\u003e Add reproducer for bug 2227\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/69b6f7473a7ae096a9cf9e2d6eb3cd8b22743597\"\u003e\u003ccode\u003e69b6f74\u003c/code\u003e\u003c/a\u003e Record and restore the processed cursor in first_handshake_message\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/4ef3532cf2fceda9fdd19947f871adf7020d0b49\"\u003e\u003ccode\u003e4ef3532\u003c/code\u003e\u003c/a\u003e Upgrade to mio 1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/092a16427e81e58ecd6bcfdacc0b49f02bad8db3\"\u003e\u003ccode\u003e092a164\u003c/code\u003e\u003c/a\u003e Manage dependencies via the workspace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/a01bd6bcb536c6cdd490942b0eae2903abcfcab3\"\u003e\u003ccode\u003ea01bd6b\u003c/code\u003e\u003c/a\u003e rustls-bench: fix warnings with no features\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/7d74de2c1bdf265531036f50abd3fc04df8c148a\"\u003e\u003ccode\u003e7d74de2\u003c/code\u003e\u003c/a\u003e tests: linearize new test code helper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/499d797b267e0b548fef5225b044b99fc215a8ff\"\u003e\u003ccode\u003e499d797\u003c/code\u003e\u003c/a\u003e fix: do not send session_ticket(35) extension for TLS 1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/faca28904efcb3b5a4a5f05be8e03374bf5086df\"\u003e\u003ccode\u003efaca289\u003c/code\u003e\u003c/a\u003e chore(deps): lock file maintenance\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/d12f42385c2da74e1ec16826af68d17a13101152\"\u003e\u003ccode\u003ed12f423\u003c/code\u003e\u003c/a\u003e fix(deps): update rust crate asn1 to 0.20\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rustls/rustls/compare/v/0.23.16...v/0.23.18\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ring` from 0.17.8 to 0.17.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/briansmith/ring/blob/main/RELEASES.md\"\u003ering's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eVersion 0.17.13 (2025-03-06)\u003c/h1\u003e\n\u003cp\u003eIncreased MSRV to 1.66.0 to avoid bugs in earlier versions so that we can\nsafely use \u003ccode\u003ecore::arch::x86_64::__cpuid\u003c/code\u003e and \u003ccode\u003ecore::arch::x86::__cpuid\u003c/code\u003e from\nRust in future releases.\u003c/p\u003e\n\u003cp\u003eAVX2-based VAES-CLMUL implementation. This will be a notable performance\nimprovement for most newish x86-64 systems. This will likely raise the minimum\nbinutils version supported for very old Linux distros.\u003c/p\u003e\n\u003ch1\u003eVersion 0.17.12 (2025-03-05)\u003c/h1\u003e\n\u003cp\u003eBug fix: \u003ca href=\"https://redirect.github.com/briansmith/ring/pull/2447\"\u003ebriansmith/ring#2447\u003c/a\u003e for denial of service (DoS).\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFixes a panic in \u003ccode\u003ering::aead::quic::HeaderProtectionKey::new_mask()\u003c/code\u003e when\ninteger overflow checking is enabled. In the QUIC protocol, an attacker can\ninduce this panic by sending a specially-crafted packet. Even unintentionally\nit is likely to occur in 1 out of every 2**32 packets sent and/or received.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixes a panic on 64-bit targets in \u003ccode\u003ering::aead::{AES_128_GCM, AES_256_GCM}\u003c/code\u003e\nwhen overflow checking is enabled, when encrypting/decrypting approximately\n68,719,476,700 bytes (about 64 gigabytes) of data in a single chunk. Protocols\nlike TLS and SSH are not affected by this because those protocols break large\namounts of data into small chunks. Similarly, most applications will not\nattempt to encrypt/decrypt 64GB of data in one chunk.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eOverflow checking is not enabled in release mode by default, but\n\u003ccode\u003eRUSTFLAGS=\u0026quot;-C overflow-checks\u0026quot;\u003c/code\u003e or \u003ccode\u003eoverflow-checks = true\u003c/code\u003e in the Cargo.toml\nprofile can override this. Overflow checking is usually enabled by default in\ndebug mode.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/briansmith/ring/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.8.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.10.1\u003c/h2\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/bytes/pull/773\"\u003etokio-rs/bytes#773\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eBytes v1.10.0\u003c/h2\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.9.0 (November 27, 2024)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eBytes::from_owner\u003c/code\u003e to enable externally-allocated memory (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/742\"\u003e#742\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumented\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.8.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `zip` from 2.2.0 to 2.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/zip-rs/zip2/releases\"\u003ezip's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.3.0\u003c/h2\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for NTFS extra field (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/279\"\u003e#279\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🐛 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(test)\u003c/em\u003e Conditionalize a zip64 doctest (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/308\"\u003e#308\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix failing tests, remove symlink loop check\u003c/li\u003e\n\u003cli\u003eCanonicalize output path to avoid false negatives\u003c/li\u003e\n\u003cli\u003eSymlink handling in stream extraction\u003c/li\u003e\n\u003cli\u003eCanonicalize output paths and symlink targets, and ensure they descend from the destination\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e⚙️ Miscellaneous Tasks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix clippy and cargo fmt warnings (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/310\"\u003e#310\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.2.3\u003c/h2\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🚜 Refactor\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eChange the inner structure of \u003ccode\u003eDateTime\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/267\"\u003e#267\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e⚙️ Miscellaneous Tasks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ecargo fix --edition\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.2.2\u003c/h2\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🐛 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erewrite the EOCD/EOCD64 detection to fix extreme performance regression (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/247\"\u003e#247\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.2.1\u003c/h2\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🐛 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eremove executable bit (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/238\"\u003e#238\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cem\u003e(lzma)\u003c/em\u003e fixed panic in case of invalid lzma stream (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eresolve new clippy warnings on nightly (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/262\"\u003e#262\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eresolve clippy warning in nightly (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e⚡ Performance\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFaster cde rejection (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/255\"\u003e#255\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/zip-rs/zip2/blob/master/CHANGELOG.md\"\u003ezip's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/zip-rs/zip2/compare/v2.2.3...v2.3.0\"\u003e2.3.0\u003c/a\u003e - 2025-03-16\u003c/h2\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for NTFS extra field (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/279\"\u003e#279\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🐛 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(test)\u003c/em\u003e Conditionalize a zip64 doctest (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/308\"\u003e#308\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix failing tests, remove symlink loop check\u003c/li\u003e\n\u003cli\u003eCanonicalize output path to avoid false negatives\u003c/li\u003e\n\u003cli\u003eSymlink handling in stream extraction\u003c/li\u003e\n\u003cli\u003eCanonicalize output paths and symlink targets, and ensure they descend from the destination (\u003ca href=\"https://github.com/zip-rs/zip2/security/advisories/GHSA-94vh-gphv-8pm8\"\u003eCVE-2025-29787\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e⚙️ Miscellaneous Tasks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix clippy and cargo fmt warnings (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/310\"\u003e#310\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/zip-rs/zip2/compare/v2.2.2...v2.2.3\"\u003e2.2.3\u003c/a\u003e - 2025-02-26\u003c/h2\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🚜 Refactor\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eChange the inner structure of \u003ccode\u003eDateTime\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/267\"\u003e#267\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e⚙️ Miscellaneous Tasks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ecargo fix --edition\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/zip-rs/zip2/compare/v2.2.1...v2.2.2\"\u003e2.2.2\u003c/a\u003e - 2024-12-16\u003c/h2\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🐛 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erewrite the EOCD/EOCD64 detection to fix extreme performance regression (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/247\"\u003e#247\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/zip-rs/zip2/compare/v2.2.0...v2.2.1\"\u003e2.2.1\u003c/a\u003e - 2024-11-20\u003c/h2\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🐛 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eremove executable bit (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/238\"\u003e#238\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cem\u003e(lzma)\u003c/em\u003e fixed panic in case of invalid lzma stream (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eresolve new clippy warnings on nightly (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/262\"\u003e#262\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eresolve clippy warning in nightly (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e⚡ Performance\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFaster cde rejection (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/255\"\u003e#255\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/6eab5f5cc64cf051f2712428745ca2fea088097c\"\u003e\u003ccode\u003e6eab5f5\u003c/code\u003e\u003c/a\u003e chore: release v2.3.0 (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/300\"\u003e#300\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/e4aee2050f4fb303ea8d6c56b0b70434265517a9\"\u003e\u003ccode\u003ee4aee20\u003c/code\u003e\u003c/a\u003e implement \u003ccode\u003eZipFile::options\u003c/code\u003e + refactor options normalization (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/305\"\u003e#305\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/ea8a7bba241731cd6aefd7705fd527e5b2928213\"\u003e\u003ccode\u003eea8a7bb\u003c/code\u003e\u003c/a\u003e fix(test): Conditionalize a zip64 doctest (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/308\"\u003e#308\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/365c81a39f526173b534c9de3a4302107fd51cd5\"\u003e\u003ccode\u003e365c81a\u003c/code\u003e\u003c/a\u003e Use \u003ccode\u003exz2\u003c/code\u003e crate instead of a custom implementation (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/306\"\u003e#306\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/ae94b3452b9d92cbf955c3117eddbb0326acacdd\"\u003e\u003ccode\u003eae94b34\u003c/code\u003e\u003c/a\u003e chore: Fix clippy and cargo fmt warnings (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/310\"\u003e#310\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/a2e062f37066c3b12860a32eb1cb44856cfb7afe\"\u003e\u003ccode\u003ea2e062f\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/0199ac2cb8e9a5d7e645e53d51838655d8e15148\"\u003e\u003ccode\u003e0199ac2\u003c/code\u003e\u003c/a\u003e Simplify handling for symlink targets\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/977bb9479d7aadbc10b8c04533bd37121f9cd34b\"\u003e\u003ccode\u003e977bb94\u003c/code\u003e\u003c/a\u003e fix failing tests, remove symlink loop check\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/3cb29e70d15af93a117f0d4d1bba736d2923c844\"\u003e\u003ccode\u003e3cb29e7\u003c/code\u003e\u003c/a\u003e Partial fix for tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/2182b0768633e58b6292af9e2633d920b499850b\"\u003e\u003ccode\u003e2182b07\u003c/code\u003e\u003c/a\u003e Refactor\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/zip-rs/zip2/compare/v2.2.0...v2.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rpassword` from 7.3.1 to 7.5.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/conradkleinespel/rpassword/releases\"\u003erpassword's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.5.0\u003c/h2\u003e\n\u003cp\u003eThis release comes with lots of stuff. It should be fully backward compatible.\u003c/p\u003e\n\u003ch2\u003eNew features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for masking or partially masking a password as it's being typed. Thank you, \u003ca href=\"https://github.com/chipsenkbeil\"\u003e\u003ccode\u003e@​chipsenkbeil\u003c/code\u003e\u003c/a\u003e, for your contribution.\u003c/li\u003e\n\u003cli\u003eNew API. The documentation has been vastly improved to support this, see \u003ca href=\"https://docs.rs/rpassword/\"\u003ehttps://docs.rs/rpassword/\u003c/a\u003e. To sum up, you can now call \u003ccode\u003eread_password_with_config(config)\u003c/code\u003e and there is a \u003ccode\u003eConfigBuilder\u003c/code\u003e that allows you to configure how passwords should be read. This makes the library much more flexible and means new options will be added without breaking existing code.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix for CVE-2025-64170 which affects \u003ccode\u003erpassword\u003c/code\u003e on versions v7.4.0 and below. Thank you, \u003ca href=\"https://github.com/squell\"\u003e\u003ccode\u003e@​squell\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/DevLaTron\"\u003e\u003ccode\u003e@​DevLaTron\u003c/code\u003e\u003c/a\u003e, for reporting this.\u003c/li\u003e\n\u003cli\u003eBetter support for multibyte characters and more reliable handling of control characters and terminal escape sequences. Thank you again, \u003ca href=\"https://github.com/chipsenkbeil\"\u003e\u003ccode\u003e@​chipsenkbeil\u003c/code\u003e\u003c/a\u003e, for your contribution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDeprecations\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e_from_bufread\u003c/code\u003e functions have been deprecated. You are encouraged to migrate to \u003ccode\u003e_with_config\u003c/code\u003e functions. See \u003ca href=\"https://github.com/conradkleinespel/rpassword/blob/main/UPGRADE.md\"\u003eUPGRADE.md\u003c/a\u003e as well as the \u003ca href=\"https://docs.rs/rpassword/latest/rpassword/fn.read_password_from_bufread.html\"\u003edocumentation which has examples\u003c/a\u003e that you can most likely drop into your code without other changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eMisc\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate of the \u003ccode\u003ewindows-sys\u003c/code\u003e dependency.\u003c/li\u003e\n\u003cli\u003eUpdate Rust edition from 2018 to 2024.\u003c/li\u003e\n\u003cli\u003eBetter cross-platform testing, through more unit tests and a CI that runs Linux, Windows and Wasm.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFeedback is very much welcome.\u003c/p\u003e\n\u003ch2\u003ev7.4.0\u003c/h2\u003e\n\u003cp\u003eChanges and updates in this release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUpdates \u003ccode\u003ewindows-sys\u003c/code\u003e from \u003ccode\u003e0.52\u003c/code\u003e to \u003ccode\u003e0.59\u003c/code\u003e, see \u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/cb2244aba3e6b4358cf489e61c8e35c564e31952\"\u003ehttps://github.com/conradkleinespel/rpassword/commit/cb2244aba3e6b4358cf489e61c8e35c564e31952\u003c/a\u003e;\u003c/li\u003e\n\u003cli\u003eImproves Chinese character handling, the commit is in the \u003ccode\u003ertoolbox\u003c/code\u003e crate (\u003ca href=\"https://github.com/conradkleinespel/rtoolbox\"\u003ehttps://github.com/conradkleinespel/rtoolbox\u003c/a\u003e). Thank you \u003ca href=\"https://github.com/Jordan-Haidee\"\u003e\u003ccode\u003e@​Jordan-Haidee\u003c/code\u003e\u003c/a\u003e for providing a fix in \u003ca href=\"https://redirect.github.com/conradkleinespel/rpassword/issues/97\"\u003econradkleinespel/rpassword#97\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eI've noticed after publishing the release that the size of the crate on crates.io went from \u003ccode\u003e7KiB\u003c/code\u003e to \u003ccode\u003e121KiB\u003c/code\u003e. That's due to the addition of an image in the \u003ccode\u003eREADME.md\u003c/code\u003e, which I did not anticipate would be distributed to everyone. The fix (\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/7c30111dda0242967bd5ac494fbf3089d3d74dc6\"\u003ehttps://github.com/conradkleinespel/rpassword/commit/7c30111dda0242967bd5ac494fbf3089d3d74dc6\u003c/a\u003e) will be included in the next release.\u003c/p\u003e\n\u003cp\u003eNo functionality changes in this release. It is backwards compatible.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/2d9873eb198dd49dafef2e3263a035ac3614982c\"\u003e\u003ccode\u003e2d9873e\u003c/code\u003e\u003c/a\u003e release v7.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/e67e3b45673e51e7155d80970d2e4c80152324dc\"\u003e\u003ccode\u003ee67e3b4\u003c/code\u003e\u003c/a\u003e removes commented out code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/fdde958f1c4753ebc22509b73da9156952c86e33\"\u003e\u003ccode\u003efdde958\u003c/code\u003e\u003c/a\u003e remove .idea from .gitignore\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/d531c5992a5303fe418e95959a70459fb286c6b9\"\u003e\u003ccode\u003ed531c59\u003c/code\u003e\u003c/a\u003e allow reading from any Read and writing to any Write\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/205dfb2eb76d8b460f210a4541374a495a1974fa\"\u003e\u003ccode\u003e205dfb2\u003c/code\u003e\u003c/a\u003e differentiate Input and Output targets\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/6aa333a6513f3efa4b461659974a06426363447d\"\u003e\u003ccode\u003e6aa333a\u003c/code\u003e\u003c/a\u003e make PasswordFeedback internal though ConfigBuilder\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/aadeef20d93b5cc7dc20823c35b697caa5201d46\"\u003e\u003ccode\u003eaadeef2\u003c/code\u003e\u003c/a\u003e allow more flexible input/output\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/ff7be55fc47280cacd49f86dd188614157c03f77\"\u003e\u003ccode\u003eff7be55\u003c/code\u003e\u003c/a\u003e add support for Ctrl-W\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/c56fefad218ec00d5309e8ec1d2a52ef31f86693\"\u003e\u003ccode\u003ec56fefa\u003c/code\u003e\u003c/a\u003e format rust files with cargo fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/c6f4f19528553302a6d08f26d0f1daf8a9b94386\"\u003e\u003ccode\u003ec6f4f19\u003c/code\u003e\u003c/a\u003e handle character encodings more reliably\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/conradkleinespel/rpassword/compare/v7.3.1...v7.5.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `crossbeam-channel` from 0.5.13 to 0.5.15\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/crossbeam-rs/crossbeam/releases\"\u003ecrossbeam-channel's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ecrossbeam-channel 0.5.15\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix regression introduced in 0.5.12 that can lead to a double free when dropping unbounded channel. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1187\"\u003e#1187\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ecrossbeam-channel 0.5.14\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix stack overflow when sending large value to unbounded channel. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1146\"\u003e#1146\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1147\"\u003e#1147\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eSelect::new_biased\u003c/code\u003e function. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1150\"\u003e#1150\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove inefficient spinning. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1154\"\u003e#1154\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSuppress buggy \u003ccode\u003eclippy::zero_repeat_side_effects\u003c/code\u003e lint in macro generated code. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1123\"\u003e#1123\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/d35ffde18a76ae9667f602d8c0127ff89ac2e4d4\"\u003e\u003ccode\u003ed35ffde\u003c/code\u003e\u003c/a\u003e Prepare for the next release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/6ec74ecae896df5fc239518b45a1bfd258c9db68\"\u003e\u003ccode\u003e6ec74ec\u003c/code\u003e\u003c/a\u003e crossbeam-channel: prevent double free on Drop (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1187\"\u003e#1187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/ccd83ac4108a2a1b41e9c6e79c87267167d18dfa\"\u003e\u003ccode\u003eccd83ac\u003c/code\u003e\u003c/a\u003e Prepare for the next release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/54988eb2399c889fb82926c1508bb0ec31bedba2\"\u003e\u003ccode\u003e54988eb\u003c/code\u003e\u003c/a\u003e Calculate layout in const context\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/761d0b67e2849479f7b376b4c02a191f6ed796aa\"\u003e\u003ccode\u003e761d0b6\u003c/code\u003e\u003c/a\u003e Port \u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1146\"\u003e#1146\u003c/a\u003e \u0026amp; \u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1147\"\u003e#1147\u003c/a\u003e to deque::Injector and queue::SegQueue\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/8144fbb41e67046d341034843887b0dd5963cddb\"\u003e\u003ccode\u003e8144fbb\u003c/code\u003e\u003c/a\u003e Remove optimistic spinning from Context::wait_until\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/a92f6c4fbb5527ef4f86239fd18df426b4e1d84f\"\u003e\u003ccode\u003ea92f6c4\u003c/code\u003e\u003c/a\u003e Bump peter-evans/create-pull-request from 5 to 7 (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1153\"\u003e#1153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/66d41a904f8f51d82d806b86856d72290202d491\"\u003e\u003ccode\u003e66d41a9\u003c/code\u003e\u003c/a\u003e channel: Add new_biased constructor for biased channel selection (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1150\"\u003e#1150\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/d0d0a80be89a976a66292ed7d3fb562f9d3d590b\"\u003e\u003ccode\u003ed0d0a80\u003c/code\u003e\u003c/a\u003e CachePadded: Use 128-byte alignment on arm64ec\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/f757eefca227f67cb9dc8b90c07500728151f501\"\u003e\u003ccode\u003ef757eef\u003c/code\u003e\u003c/a\u003e Add comment about fixed rustc bug\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/crossbeam-rs/crossbeam/compare/crossbeam-channel-0.5.13...crossbeam-channel-0.5.15\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `hickory-proto` from 0.24.1 to 0.24.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hickory-dns/hickory-dns/releases\"\u003ehickory-proto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.24.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[0.24] Use cargo environment variables for path to executable by \u003ca href=\"https://github.com/msrd0\"\u003e\u003ccode\u003e@​msrd0\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hickory-dns/hickory-dns/pull/2773\"\u003ehickory-dns/hickory-dns#2773\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[0.24] bump ring to 0.17.8 by \u003ca href=\"https://github.com/drahnr\"\u003e\u003ccode\u003e@​drahnr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hickory-dns/hickory-dns/pull/2759\"\u003ehickory-dns/hickory-dns#2759\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.24.4 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hickory-dns/hickory-dns/pull/2784\"\u003ehickory-dns/hickory-dns#2784\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.24.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix tests on 0.24 release branch by \u003ca href=\"https://github.com/divergentdave\"\u003e\u003ccode\u003e@​divergentdave\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hickory-dns/hickory-dns/pull/2752\"\u003ehickory-dns/hickory-dns#2752\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hickory-dns/hickory-dns/compare/v0.24.2...v0.24.3\"\u003ehttps://github.com/hickory-dns/hickory-dns/compare/v0.24.2...v0.24.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.24.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e0.24: upgrade to idna 1 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hickory-dns/hickory-dns/pull/2664\"\u003ehickory-dns/hickory-dns#2664\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hickory-dns/hickory-dns/commit/b00cc1052cf769250063005e9fa268519522778f\"\u003e\u003ccode\u003eb00cc10\u003c/code\u003e\u003c/a\u003e Bump versions to 0.24.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hickory-dns/hickory-dns/commit/653d03eb9e8afe994bf4dc011c924830c0beeeba\"\u003e\u003ccode\u003e653d03e\u003c/code\u003e\u003c/a\u003e fix/test: use .1 ending of IP address in test, .0 will yield a different error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hickory-dns/hickory-dns/commit/5a5c9810458c4b0084050216b720c8c6fe02ffe9\"\u003e\u003ccode\u003e5a5c981\u003c/code\u003e\u003c/a\u003e feat: add err log if not matching the expected kind\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hickory-dns/hickory-dns/commit/321d53f8b69b74ee5627721114479c1c4438e875\"\u003e\u003ccode\u003e321d53f\u003c/code\u003e\u003c/a\u003e chore/dependency(ring): bump to 0.17.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hickory-dns/hickory-dns/commit/39bf9c824679b8e851623e78a07a1adce07ae50f\"\u003e\u003ccode\u003e39bf9c8\u003c/code\u003e\u003c/a\u003e [0.24] Use cargo environment variables for path to executable (\u003ca href=\"https://redirect.github.com/hickory-dns/hickory-dns/issues/2773\"\u003e#2773\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hickory-dns/hickory-dns/commit/7df98a4a5b8ec28969c2886f811425d824074f92\"\u003e\u003ccode\u003e7df98a4\u003c/code\u003e\u003c/a\u003e Fix tests on 0.24 release branch (\u003ca href=\"https://redirect.github.com/hickory-dns/hickory-dns/issues/2752\"\u003e#2752\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hickory-dns/hickory-dns/commit/fd25a74a9add698badf6975d6ef7b92fd78265bd\"\u003e\u003ccode\u003efd25a74\u003c/code\u003e\u003c/a\u003e Bump version to 0.24.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hickory-dns/hickory-dns/commit/e118c6eec569f4340421f86ee0686714010c63e9\"\u003e\u003ccode\u003ee118c6e\u003c/code\u003e\u003c/a\u003e Check RRSIG over DNSKEY RRset w/ authenticated key\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hickory-dns/hickory-dns/commit/9cdb4845a5f3f1485cc0766ee56532d575d042d6\"\u003e\u003ccode\u003e9cdb484\u003c/code\u003e\u003c/a\u003e Bump version to 0.24.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hickory-dns/hickory-dns/commit/1b84e3acf6e5e9c1ee741da6fe60a00bae315bba\"\u003e\u003ccode\u003e1b84e3a\u003c/code\u003e\u003c/a\u003e Upgrade h3 and h3-quinn to avoid instant\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hickory-dns/hickory-dns/compare/v0.24.1...v0.24.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openssl` from 0.10.68 to 0.10.79\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-openssl/rust-openssl/releases\"\u003eopenssl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eopenssl-v0.10.79\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/cache from 5.0.4 to 5.0.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2610\"\u003erust-openssl/rust-openssl#2610\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTry to fix OpenSSL 1.1.0l download by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2614\"\u003erust-openssl/rust-openssl#2614\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRequire \u0026amp;mut BigNumContextRef for EcPointRef mul/invert by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2615\"\u003erust-openssl/rust-openssl#2615\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix UB in EcGroupRef::generator on groups without a generator by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2617\"\u003erust-openssl/rust-openssl#2617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace \u003ccode\u003euse libc::*;\u003c/code\u003e with targeted imports in openssl-sys by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2618\"\u003erust-openssl/rust-openssl#2618\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKeyRef::is_a and KeyType for name-based key identification by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2619\"\u003erust-openssl/rust-openssl#2619\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKey::{public,private}_key_from_raw_bytes_ex by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2620\"\u003erust-openssl/rust-openssl#2620\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump MSRV to 1.80 by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2622\"\u003erust-openssl/rust-openssl#2622\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop once_cell in favor of std::sync::{LazyLock, OnceLock} by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2623\"\u003erust-openssl/rust-openssl#2623\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKey::private_key_from_seed for ML-DSA/ML-KEM key import by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2621\"\u003erust-openssl/rust-openssl#2621\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eparallelize more builds in CI for cold caches by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2625\"\u003erust-openssl/rust-openssl#2625\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2626\"\u003erust-openssl/rust-openssl#2626\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix process abort when verify/PSK callbacks fire after SSL_CTX swap by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2624\"\u003erust-openssl/rust-openssl#2624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBind OSSL_PARAM_modified and use it for seed_into by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2628\"\u003erust-openssl/rust-openssl#2628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PkeyCtxRef::set_context_string for ML-DSA by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2629\"\u003erust-openssl/rust-openssl#2629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2631\"\u003erust-openssl/rust-openssl#2631\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix output buffer overflow for AES key-wrap-with-padding ciphers by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2630\"\u003erust-openssl/rust-openssl#2630\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl 0.10.79 and openssl-sys 0.9.115 by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2632\"\u003erust-openssl/rust-openssl#2632\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.78...openssl-v0.10.79\"\u003ehttps://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.78...openssl-v0.10.79\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eopenssl-v0.10.78\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix Suite B flag assignments in verify.rs by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2592\"\u003erust-openssl/rust-openssl#2592\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse cvt_p for OPENSSL_malloc error handling by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2593\"\u003erust-openssl/rust-openssl#2593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMark BIO_get_mem_data on AWS-LC to be unsafe by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2594\"\u003erust-openssl/rust-openssl#2594\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSet timeout for package installation step by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2595\"\u003erust-openssl/rust-openssl#2595\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePanic in Crypter::new when IV is required but not provided by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2596\"\u003erust-openssl/rust-openssl#2596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eopenssl 4 support by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2591\"\u003erust-openssl/rust-openssl#2591\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid panic for overlong OIDs by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2598\"\u003erust-openssl/rust-openssl#2598\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix dangling stack pointer in custom extension add callback by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2599\"\u003erust-openssl/rust-openssl#2599\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for LibreSSL 4.3.x by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2603\"\u003erust-openssl/rust-openssl#2603\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix inverted bounds assertion in AES key unwrap by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2604\"\u003erust-openssl/rust-openssl#2604\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject oversized length returns from password callback trampoline by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2605\"\u003erust-openssl/rust-openssl#2605\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eValidate callback-returned lengths in PSK and cookie trampolines by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2607\"\u003erust-openssl/rust-openssl#2607\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eError for short out in MdCtxRef::digest_final() by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2608\"\u003erust-openssl/rust-openssl#2608\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck derive output buffer length on OpenSSL 1.1.x by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2606\"\u003erust-openssl/rust-openssl#2606\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl v0.10.78 and openssl-sys v0.9.114 by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2609\"\u003erust-openssl/rust-openssl#2609\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.77...openssl-v0.10.78\"\u003ehttps://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.77...openssl-v0.10.78\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eopenssl-v0.10.77\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCI: Hash-pin all action usage, avoid credential persistence in actions/checkout by \u003ca href=\"https://github.com/woodruffw\"\u003e\u003ccode\u003e@​woodruffw\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2587\"\u003erust-openssl/rust-openssl#2587\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump aws-lc-sys to 0.39 by \u003ca href=\"https://github.com/goffrie\"\u003e\u003ccode\u003e@​goffrie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2588\"\u003erust-openssl/rust-openssl#2588\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emd_ctx: enable sign/verify/reset on BoringSSL, LibreSSL, and AWS-LC by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2589\"\u003erust-openssl/rust-openssl#2589\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/649f2d9e37f3aa701e20bd8ab5cd7eb5afa0a90f\"\u003e\u003ccode\u003e649f2d9\u003c/code\u003e\u003c/a\u003e Release openssl 0.10.79 and openssl-sys 0.9.115 (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2632\"\u003e#2632\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/257f9b20c001b888986f93579f118fa2a57d4f45\"\u003e\u003ccode\u003e257f9b2\u003c/code\u003e\u003c/a\u003e Fix output buffer overflow for AES key-wrap-with-padding ciphers (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2630\"\u003e#2630\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/d43e9179b1885fc66269a42361cc7a80f631ac8f\"\u003e\u003ccode\u003ed43e917\u003c/code\u003e\u003c/a\u003e Reject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2631\"\u003e#2631\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/f46519c8694a3e121091dafe38aab77c2f756546\"\u003e\u003ccode\u003ef46519c\u003c/code\u003e\u003c/a\u003e Add PkeyCtxRef::set_context_string for ML-DSA (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2629\"\u003e#2629\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/ad9ae312771f898749a9471549519d45eba6a033\"\u003e\u003ccode\u003ead9ae31\u003c/code\u003e\u003c/a\u003e Bind OSSL_PARAM_modified and use it for seed_into (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2628\"\u003e#2628\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/4e25c9be20dae1e78f1a3815950cd0973addae82\"\u003e\u003ccode\u003e4e25c9b\u003c/code\u003e\u003c/a\u003e Fix process abort when verify/PSK callbacks fire after SSL_CTX swap (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2624\"\u003e#2624\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/3dd8f425ef34a069b5bec46f3971b67db1c295c7\"\u003e\u003ccode\u003e3dd8f42\u003c/code\u003e\u003c/a\u003e Add PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2626\"\u003e#2626\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/2c5e5a8f1483d5ec85580c07f721de9057d58e69\"\u003e\u003ccode\u003e2c5e5a8\u003c/code\u003e\u003c/a\u003e parallelize more builds in CI for cold caches (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2625\"\u003e#2625\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/668559171168538cd190574373abfc9e120263ca\"\u003e\u003ccode\u003e6685591\u003c/code\u003e\u003c/a\u003e Add PKey::private_key_from_seed for ML-DSA/ML-KEM key import (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2621\"\u003e#2621\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/8f8fdce627fb3c553673b8c688d9f1dc10ea0cc8\"\u003e\u003ccode\u003e8f8fdce\u003c/code\u003e\u003c/a\u003e Drop once_cell in favor of std::sync::{LazyLock, OnceLock} (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2623\"\u003e#2623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.68...openssl-v0.10.79\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `quinn-proto` from 0.11.8 to 0.11.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quinn-rs/quinn/releases\"\u003equinn-proto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003equinn-proto 0.11.14\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jxs\"\u003e\u003ccode\u003e@​jxs\u003c/code\u003e\u003c/a\u003e reported a denial of service issue in quinn-proto 5 days ago:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\"\u003ehttps://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eWe coordinated with them to release this version to patch the issue. Unfortunately the maintainers missed these issues during code review and we did not have enough fuzzing coverage -- we regret the oversight and have added an additional fuzzing target.\u003c/p\u003e\n\u003cp\u003eOrganizations that want to participate in coordinated disclosure can contact us privately to discuss terms.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix over-permissive proto dependency edge by \u003ca href=\"https://github.com/Ralith\"\u003e\u003ccode\u003e@​Ralith\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2385\"\u003equinn-rs/quinn#2385\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e0.11.x: avoid unwrapping VarInt decoding during parameter parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2559\"\u003equinn-rs/quinn#2559\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003equinn-proto 0.11.11\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrefer sending extra ping again by \u003ca href=\"https://github.com/flub\"\u003e\u003ccode\u003e@​flub\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2172\"\u003equinn-rs/quinn#2172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Do not produce tail-loss probes larger than segment size by \u003ca href=\"https://github.com/flub\"\u003e\u003ccode\u003e@​flub\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2167\"\u003equinn-rs/quinn#2167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid inference hazard for integer comparisons by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2188\"\u003equinn-rs/quinn#2188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: respecting max_datagrams in poll_transmit by \u003ca href=\"https://github.com/filipe-cantarelli\"\u003e\u003ccode\u003e@​filipe-cantarelli\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2185\"\u003equinn-rs/quinn#2185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the quinn-proto version to 0.11.11 for release by \u003ca href=\"https://github.com/faern\"\u003e\u003ccode\u003e@​faern\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2209\"\u003equinn-rs/quinn#2209\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/2c315aa7f9c2a6c1db87f8f51f40623a427c78fd\"\u003e\u003ccode\u003e2c315aa\u003c/code\u003e\u003c/a\u003e proto: bump version to 0.11.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8ad47f431e7deb82c08b09c2e33ef85aa88fd212\"\u003e\u003ccode\u003e8ad47f4\u003c/code\u003e\u003c/a\u003e Use newer rustls-pki-types PEM parser API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c81c0289abe30d8437ccbf9b6304e2bc9c707cea\"\u003e\u003ccode\u003ec81c028\u003c/code\u003e\u003c/a\u003e ci: fix workflow syntax\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/0050172969f7e69e136c433181330da7790d8d73\"\u003e\u003ccode\u003e0050172\u003c/code\u003e\u003c/a\u003e ci: pin wasm-bindgen-cli version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8a6f82c58d1c565eab78f986e614223e6ed76a85\"\u003e\u003ccode\u003e8a6f82c\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/e52db4ad8df0f9720e7b0e32ecc0e48c9a93de0f\"\u003e\u003ccode\u003ee52db4a\u003c/code\u003e\u003c/a\u003e Apply suggestions from clippy 1.91\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/6df7275c582ca9b7225e0ccf9f9871a55eb73155\"\u003e\u003ccode\u003e6df7275\u003c/code\u003e\u003c/a\u003e chore: Fix \u003ccode\u003eunnecessary_unwrap\u003c/code\u003e clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c8eefa07e087b06d8f2b78ff262ce8ac952994f1\"\u003e\u003ccode\u003ec8eefa0\u003c/code\u003e\u003c/a\u003e proto: avoid unwrapping varint decoding during parameters parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/9723a977754c8662001b0fef97aab8f3ddf1df92\"\u003e\u003ccode\u003e9723a97\u003c/code\u003e\u003c/a\u003e fuzz: add fuzzing target for parsing transport parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/eaf0ef30252cef4acec21f150427e604cd4271c9\"\u003e\u003ccode\u003eeaf0ef3\u003c/code\u003e\u003c/a\u003e Fix over-permissive proto dependency edge (\u003ca href=\"https://redirect.github.com/quinn-rs/quinn/issues/2385\"\u003e#2385\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quinn-rs/quinn/compare/quinn-proto-0.11.8...quinn-proto-0.11.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.36 to 0.3.44\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.44\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.43\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.42\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.41\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.40\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.39\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.38\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.37\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003etime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.44 [2025-09-19]\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eComparisons of \u003ccode\u003ePrimitiveDateTime\u003c/code\u003e, \u003ccode\u003eUtcDateTime\u003c/code\u003e, and \u003ccode\u003eOffsetDateTime\u003c/code\u003e with differing signs (i.e.\none negative and one positive year) would return the inverse result of what was expected. This was\nintroduced in v0.3.42 and has been fixed.\u003c/li\u003e\n\u003cli\u003eType inference would fail due to feature unification when \u003ccode\u003ewasm-bindgen\u003c/code\u003e enabled \u003ccode\u003eserde_json\u003c/code\u003e.\nThis has been fixed by explicitly specifying the type in the relevant locations.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.43 [2025-09-02]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for \u003ccode\u003erand\u003c/code\u003e 0.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIn the \u003ccode\u003econvert\u003c/code\u003e module, any use of \u003ccode\u003eper\u003c/code\u003e with types that were not the same (such as\n\u003ccode\u003eNanosecond::per(Second)\u003c/code\u003e) w...\n\n_Description has been truncated_","html_url":"https://github.com/hirehamir/mail-server/pull/8","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/hirehamir%2Fmail-server/issues/8","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/8/packages"},{"uuid":"4407658730","node_id":"PR_kwDOMksAz87ZmNQw","number":28,"state":"closed","title":"Bump the cargo group across 1 directory with 14 updates","user":"dependabot[bot]","labels":["dependencies","rust"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-05-19T20:10:46.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-08T15:57:13.000Z","updated_at":"2026-05-19T20:10:49.000Z","time_to_close":965613,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"cargo","update_count":14,"packages":[{"name":"diesel","old_version":"2.1.4","new_version":"2.1.6","repository_url":"https://github.com/diesel-rs/diesel"},{"name":"tracing-subscriber","old_version":"0.3.17","new_version":"0.3.20","repository_url":"https://github.com/tokio-rs/tracing"},{"name":"tokio","old_version":"1.38.1","new_version":"1.38.2","repository_url":"https://github.com/tokio-rs/tokio"},{"name":"bytes","old_version":"1.5.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"keccak","old_version":"0.1.4","new_version":"0.1.6","repository_url":"https://github.com/RustCrypto/sponges"},{"name":"lz4_flex","old_version":"0.11.3","new_version":"0.11.6","repository_url":"https://github.com/pseitz/lz4_flex"},{"name":"mio","old_version":"0.8.10","new_version":"0.8.11","repository_url":"https://github.com/tokio-rs/mio"},{"name":"openssl","old_version":"0.10.62","new_version":"0.10.79","repository_url":"https://github.com/rust-openssl/rust-openssl"},{"name":"rand","old_version":"0.8.5","new_version":"0.8.6","repository_url":"https://github.com/rust-random/rand"},{"name":"rustix","old_version":"0.37.23","new_version":"0.37.28","repository_url":"https://github.com/bytecodealliance/rustix"},{"name":"rustls-webpki","old_version":"0.100.1","new_version":"0.100.3","repository_url":"https://github.com/rustls/webpki"},{"name":"time","old_version":"0.3.36","new_version":"0.3.44","repository_url":"https://github.com/time-rs/time"},{"name":"webpki","old_version":"0.22.0","new_version":"0.22.4","repository_url":"https://github.com/briansmith/webpki"},{"name":"whoami","old_version":"1.4.1","new_version":"1.6.1","repository_url":"https://github.com/ardaku/whoami"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 14 updates in the /rust directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [diesel](https://github.com/diesel-rs/diesel) | `2.1.4` | `2.1.6` |\n| [tracing-subscriber](https://github.com/tokio-rs/tracing) | `0.3.17` | `0.3.20` |\n| [tokio](https://github.com/tokio-rs/tokio) | `1.38.1` | `1.38.2` |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.5.0` | `1.11.1` |\n| [keccak](https://github.com/RustCrypto/sponges) | `0.1.4` | `0.1.6` |\n| [lz4_flex](https://github.com/pseitz/lz4_flex) | `0.11.3` | `0.11.6` |\n| [mio](https://github.com/tokio-rs/mio) | `0.8.10` | `0.8.11` |\n| [openssl](https://github.com/rust-openssl/rust-openssl) | `0.10.62` | `0.10.79` |\n| [rand](https://github.com/rust-random/rand) | `0.8.5` | `0.8.6` |\n| [rustix](https://github.com/bytecodealliance/rustix) | `0.37.23` | `0.37.28` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.100.1` | `0.100.3` |\n| [time](https://github.com/time-rs/time) | `0.3.36` | `0.3.44` |\n| [webpki](https://github.com/briansmith/webpki) | `0.22.0` | `0.22.4` |\n| [whoami](https://github.com/ardaku/whoami) | `1.4.1` | `1.6.1` |\n\n\nUpdates `diesel` from 2.1.4 to 2.1.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/diesel-rs/diesel/blob/main/CHANGELOG.md\"\u003ediesel's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[2.1.6] 2024-04-19\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix using \u003ccode\u003eBoxableExpression\u003c/code\u003e with having clauses\u003c/li\u003e\n\u003cli\u003eFix using numeric expressions with aliased fields\u003c/li\u003e\n\u003cli\u003eMinor documentation fixes\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[2.1.5] 2024-03-15\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003eimpl SqlOrd\u003c/code\u003e postgres \u0026gt; postgres_backend feature flag.\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003eQueryable\u003c/code\u003e to be used with multiple table names.\u003c/li\u003e\n\u003cli\u003eFix an inconsistent unit test\u003c/li\u003e\n\u003cli\u003eFix a clippy lint\u003c/li\u003e\n\u003cli\u003eFix ./bin/test feature flag calls.\u003c/li\u003e\n\u003cli\u003eUpdate \u003ccode\u003elibsqlite3-sys\u003c/code\u003e to allow version 0.28 as well\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/26c6be4db843c5d2d5507850f2112ae828f9779f\"\u003e\u003ccode\u003e26c6be4\u003c/code\u003e\u003c/a\u003e Preapare a diesel 2.1.6 patch release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/2dc6cc12964443c80d60184d0951a49128067bde\"\u003e\u003ccode\u003e2dc6cc1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/diesel-rs/diesel/issues/3956\"\u003e#3956\u003c/a\u003e from Tanguille/docs/clarify-as-expression-to-sql\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/ca6617340d46aa7487f0307099b6e85b78bc9320\"\u003e\u003ccode\u003eca66173\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/diesel-rs/diesel/issues/3980\"\u003e#3980\u003c/a\u003e from kornelski/dev-cycle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/45915ac65483f3866f2597f4c386b1827d9b1c92\"\u003e\u003ccode\u003e45915ac\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/diesel-rs/diesel/issues/3971\"\u003e#3971\u003c/a\u003e from Ten0/fix_missing_skip_insertion_attribute_in_un...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/26b88035b78348df5cdea7b2a5ad6c5b84c0b5f5\"\u003e\u003ccode\u003e26b8803\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/diesel-rs/diesel/issues/3979\"\u003e#3979\u003c/a\u003e from formlogic-kirk/alias_op_impls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/6a9bfdfa19cd19c4cde2ef6a4c578280741954ce\"\u003e\u003ccode\u003e6a9bfdf\u003c/code\u003e\u003c/a\u003e Fix the having clause tests + add a test for normal select queries\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/0799a444fb67ba7f4470b49f3cff9cac73acef2d\"\u003e\u003ccode\u003e0799a44\u003c/code\u003e\u003c/a\u003e Add ValidGrouping to boxed having expression\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/5d6637ffaefa7f6fbfbb4f73e0e1c4d8a5cf3da2\"\u003e\u003ccode\u003e5d6637f\u003c/code\u003e\u003c/a\u003e Try explicitly implementing FromClause\u0026lt;F\u0026gt; for HavingDsl\u0026lt;Predicate\u0026gt;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/b4776a3c8e29e16e5f74eed05c92bd2c47c7a820\"\u003e\u003ccode\u003eb4776a3\u003c/code\u003e\u003c/a\u003e Add test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/c96c870be768e3f5115a9cdd220f0da53a1abd34\"\u003e\u003ccode\u003ec96c870\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/diesel-rs/diesel/issues/3959\"\u003e#3959\u003c/a\u003e from 1Dragoon/backports/2.1.4\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/diesel-rs/diesel/compare/v2.1.4...v2.1.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tracing-subscriber` from 0.3.17 to 0.3.20\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/tracing/releases\"\u003etracing-subscriber's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003etracing-subscriber 0.3.20\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eSecurity Fix\u003c/strong\u003e: ANSI Escape Sequence Injection (CVE-TBD)\u003c/p\u003e\n\u003ch2\u003eImpact\u003c/h2\u003e\n\u003cp\u003ePrevious versions of tracing-subscriber were vulnerable to ANSI escape sequence injection attacks. Untrusted user input containing ANSI escape sequences could be injected into terminal output when logged, potentially allowing attackers to:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eManipulate terminal title bars\u003c/li\u003e\n\u003cli\u003eClear screens or modify terminal display\u003c/li\u003e\n\u003cli\u003ePotentially mislead users through terminal manipulation\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eIn isolation, impact is minimal, however security issues have been found in terminal emulators that enabled an attacker to use ANSI escape sequences via logs to exploit vulnerabilities in the terminal emulator.\u003c/p\u003e\n\u003ch2\u003eSolution\u003c/h2\u003e\n\u003cp\u003eVersion 0.3.20 fixes this vulnerability by escaping ANSI control characters in when writing events to destinations that may be printed to the terminal.\u003c/p\u003e\n\u003ch2\u003eAffected Versions\u003c/h2\u003e\n\u003cp\u003eAll versions of tracing-subscriber prior to 0.3.20 are affected by this vulnerability.\u003c/p\u003e\n\u003ch2\u003eRecommendations\u003c/h2\u003e\n\u003cp\u003eImmediate Action Required: We recommend upgrading to tracing-subscriber 0.3.20 immediately, especially if your application:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eLogs user-provided input (form data, HTTP headers, query parameters, etc.)\u003c/li\u003e\n\u003cli\u003eRuns in environments where terminal output is displayed to users\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eMigration\u003c/h2\u003e\n\u003cp\u003eThis is a patch release with no breaking API changes. Simply update your Cargo.toml:\u003c/p\u003e\n\u003cpre lang=\"toml\"\u003e\u003ccode\u003e[dependencies]\r\ntracing-subscriber = \u0026quot;0.3.20\u0026quot;\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch2\u003eAcknowledgments\u003c/h2\u003e\n\u003cp\u003eWe would like to thank \u003ca href=\"http://github.com/zefr0x\"\u003ezefr0x\u003c/a\u003e who responsibly reported the issue at \u003ccode\u003esecurity@tokio.rs\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eIf you believe you have found a security vulnerability in any tokio-rs project, please email us at \u003ccode\u003esecurity@tokio.rs\u003c/code\u003e.\u003c/p\u003e\n\u003ch2\u003etracing-subscriber 0.3.19\u003c/h2\u003e\n\u003cp\u003e[ [crates.io][crate-0.3.19] ] | [ [docs.rs][docs-0.3.19] ]\u003c/p\u003e\n\u003cp\u003eThis release updates the \u003ccode\u003etracing\u003c/code\u003e dependency to [v0.1.41][tracing-0.1.41] and\nthe \u003ccode\u003etracing-serde\u003c/code\u003e dependency to [v0.2.0][tracing-serde-0.2.0].\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/4c52ca5266a3920fc5dfeebda2accf15ee7fb278\"\u003e\u003ccode\u003e4c52ca5\u003c/code\u003e\u003c/a\u003e fmt: fix ANSI escape sequence injection vulnerability (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3368\"\u003e#3368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/f71cebe41e4c12735b1d19ca804428d4ff7d905d\"\u003e\u003ccode\u003ef71cebe\u003c/code\u003e\u003c/a\u003e subscriber: impl Clone for EnvFilter (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3360\"\u003e#3360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/3a1f571102b38bcdca13d59f3c454989d179055d\"\u003e\u003ccode\u003e3a1f571\u003c/code\u003e\u003c/a\u003e Fix CI (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3361\"\u003e#3361\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/e63ef57f3d686abe3727ddd586eb9af73d6715b7\"\u003e\u003ccode\u003ee63ef57\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-attributes 0.1.30 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3316\"\u003e#3316\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/6e59a13b1a7bcdd78b8b5a7cbcf70a0b2cdd76f0\"\u003e\u003ccode\u003e6e59a13\u003c/code\u003e\u003c/a\u003e attributes: fix tracing::instrument regression around shadowing (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3311\"\u003e#3311\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/e4df76127538aa8370d7dee32a6f84bbec6bbf10\"\u003e\u003ccode\u003ee4df761\u003c/code\u003e\u003c/a\u003e tracing: update core to 0.1.34 and attributes to 0.1.29 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3305\"\u003e#3305\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/643f392ebb73c4fb856f56a78c066c82582dd22c\"\u003e\u003ccode\u003e643f392\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-attributes 0.1.29 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3304\"\u003e#3304\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/d08e7a6eea1833810ea527e18ea03b08cd402c9d\"\u003e\u003ccode\u003ed08e7a6\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-core 0.1.34 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3302\"\u003e#3302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/6e70c571d319a033d5f37c885ccf99aa675a9eac\"\u003e\u003ccode\u003e6e70c57\u003c/code\u003e\u003c/a\u003e tracing-subscriber: count numbers of enters in \u003ccode\u003eTimings\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/2944\"\u003e#2944\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/c01d4fd9def2fb061669a310598095c789ca0a32\"\u003e\u003ccode\u003ec01d4fd\u003c/code\u003e\u003c/a\u003e fix docs and enable CI on \u003ccode\u003emain\u003c/code\u003e branch (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3295\"\u003e#3295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/tracing/compare/tracing-subscriber-0.3.17...tracing-subscriber-0.3.20\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tokio` from 1.38.1 to 1.38.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/tokio/releases\"\u003etokio's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eTokio v1.38.2\u003c/h2\u003e\n\u003cp\u003eThis release fixes a soundness issue in the broadcast channel. The channel accepts values that are \u003ccode\u003eSend\u003c/code\u003e but \u003ccode\u003e!Sync\u003c/code\u003e. Previously, the channel called \u003ccode\u003eclone()\u003c/code\u003e on these values without synchronizing. This release fixes the channel by synchronizing calls to \u003ccode\u003e.clone()\u003c/code\u003e (Thanks Austin Bonander for finding and reporting the issue).\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esync: synchronize \u003ccode\u003eclone()\u003c/code\u003e call in broadcast channel (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/7232\"\u003e#7232\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/7232\"\u003e#7232\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tokio/pull/7232\"\u003etokio-rs/tokio#7232\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/aa303bc2051f7c21b48bb7bfcafe8fd4f39afd21\"\u003e\u003ccode\u003eaa303bc\u003c/code\u003e\u003c/a\u003e chore: prepare Tokio v1.38.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/7b6ccb515ff067151ed62db835f735e5653f8784\"\u003e\u003ccode\u003e7b6ccb5\u003c/code\u003e\u003c/a\u003e chore: backport CI fixes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/4b174ce2c95fe1d1a217917db93fcc935e17e0da\"\u003e\u003ccode\u003e4b174ce\u003c/code\u003e\u003c/a\u003e sync: fix cloning value when receiving from broadcast channel\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/9681ce2b95ae7271c041f69b9fc48912259a7ea8\"\u003e\u003ccode\u003e9681ce2\u003c/code\u003e\u003c/a\u003e chore: make 1.38 an LTS (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6706\"\u003e#6706\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/tokio/compare/tokio-1.38.1...tokio-1.38.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.5.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.10.1\u003c/h2\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/bytes/pull/773\"\u003etokio-rs/bytes#773\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eBytes v1.10.0\u003c/h2\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.9.0 (November 27, 2024)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eBytes::from_owner\u003c/code\u003e to enable externally-allocated memory (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/742\"\u003e#742\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumented\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.5.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `keccak` from 0.1.4 to 0.1.6\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/sponges/commit/a8936d9662ca92fd177d289580066ceabb937b0c\"\u003e\u003ccode\u003ea8936d9\u003c/code\u003e\u003c/a\u003e keccak v0.1.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/sponges/commit/40c50c16410392439e2ac4ee0286285db479a106\"\u003e\u003ccode\u003e40c50c1\u003c/code\u003e\u003c/a\u003e keccak v0.1.5 (\u003ca href=\"https://redirect.github.com/RustCrypto/sponges/issues/69\"\u003e#69\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/sponges/commit/2dc13bf92e6a20b7342aab54f5124495415d697d\"\u003e\u003ccode\u003e2dc13bf\u003c/code\u003e\u003c/a\u003e keccak: enable asm backend for p1600 (\u003ca href=\"https://redirect.github.com/RustCrypto/sponges/issues/68\"\u003e#68\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/sponges/commit/a3a4e01607500af1542cb9c5ebfcc7374d051935\"\u003e\u003ccode\u003ea3a4e01\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;Update Cargo.lock\u0026quot; (\u003ca href=\"https://redirect.github.com/RustCrypto/sponges/issues/67\"\u003e#67\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/sponges/commit/3a9a29ef77f4718b6a385d08779d098dded51ef7\"\u003e\u003ccode\u003e3a9a29e\u003c/code\u003e\u003c/a\u003e Update Cargo.lock\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/sponges/commit/9e4f6bc6954fe4301b6d4367867177d220f09bd3\"\u003e\u003ccode\u003e9e4f6bc\u003c/code\u003e\u003c/a\u003e keccak: don't test \u003ccode\u003esimd\u003c/code\u003e feature in \u003ccode\u003eminimal-versions\u003c/code\u003e workflow (\u003ca href=\"https://redirect.github.com/RustCrypto/sponges/issues/66\"\u003e#66\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/sponges/commit/329d4cdcb19d77658267367e8e3ce49e2e91c64e\"\u003e\u003ccode\u003e329d4cd\u003c/code\u003e\u003c/a\u003e Replace cross tests with MIRI (\u003ca href=\"https://redirect.github.com/RustCrypto/sponges/issues/63\"\u003e#63\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/sponges/commit/48cc4acf38bd5b88acf96599dd50d0fc91a13a3a\"\u003e\u003ccode\u003e48cc4ac\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/checkout from 3 to 4 (\u003ca href=\"https://redirect.github.com/RustCrypto/sponges/issues/61\"\u003e#61\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/sponges/commit/651a34ea2f97a9cd8ace1a63cbf9118009fa4167\"\u003e\u003ccode\u003e651a34e\u003c/code\u003e\u003c/a\u003e keccak: replace CI tests on MIPS with PPC32 (\u003ca href=\"https://redirect.github.com/RustCrypto/sponges/issues/62\"\u003e#62\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/sponges/commit/4730c6fbba0b7a0766cb1a6d323f1412667eb6cf\"\u003e\u003ccode\u003e4730c6f\u003c/code\u003e\u003c/a\u003e benches: remove criterion deps workaround (\u003ca href=\"https://redirect.github.com/RustCrypto/sponges/issues/60\"\u003e#60\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/RustCrypto/sponges/compare/keccak/v0.1.4...keccak-v0.1.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lz4_flex` from 0.11.3 to 0.11.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/PSeitz/lz4_flex/blob/main/CHANGELOG.md\"\u003elz4_flex's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e0.11.6 (2026-03-14)\u003c/h1\u003e\n\u003ch3\u003eSecurity Fix\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix handling of invalid match offsets during decompression \u003ca href=\"https://github.com/PSeitz/lz4_flex/commit/84cdafb\"\u003e#84cdafb\u003c/a\u003e (thanks \u003ca href=\"https://github.com/Marcono1234\"\u003e\u003ccode\u003e@​Marcono1234\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre\u003e\u003ccode\u003eInvalid match offsets (offset == 0) during decompression were not properly\nhandled, which could lead to invalid memory reads on untrusted input.\nUsers on 0.11.x should upgrade to 0.11.6.\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch1\u003e0.11.5 (2025-06-19)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect rust-version field name in Cargo.toml \u003ca href=\"https://redirect.github.com/PSeitz/lz4_flex/pull/187\"\u003e#187\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e0.11.4 (2025-06-14)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to twox-hash 2.0\u003ca href=\"https://redirect.github.com/PSeitz/lz4_flex/pull/175\"\u003e#175\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBetter \u003ccode\u003eno_std\u003c/code\u003e compatibility \u003ca href=\"https://redirect.github.com/PSeitz/lz4_flex/pull/180\"\u003e#180\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/pseitz/lz4_flex/commits/0.11.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `mio` from 0.8.10 to 0.8.11\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/mio/blob/master/CHANGELOG.md\"\u003emio's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e0.8.11\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix receiving IOCP events after deregistering a Windows named pipe\n(\u003ca href=\"https://redirect.github.com/tokio-rs/mio/pull/1760\"\u003etokio-rs/mio#1760\u003c/a\u003e, backport pr:\n\u003ca href=\"https://redirect.github.com/tokio-rs/mio/pull/1761\"\u003etokio-rs/mio#1761\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/mio/commit/0328bdef900b6396b8d00d33c825cd8af748553d\"\u003e\u003ccode\u003e0328bde\u003c/code\u003e\u003c/a\u003e Release v0.8.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/mio/commit/708449851283b57eb6f514c8f289b66e982720b3\"\u003e\u003ccode\u003e7084498\u003c/code\u003e\u003c/a\u003e Fix warnings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/mio/commit/90d4fe00df870acd3d38f3dc4face9aacab8fbb9\"\u003e\u003ccode\u003e90d4fe0\u003c/code\u003e\u003c/a\u003e named-pipes: fix receiving IOCP events after deregister\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/mio/commit/c710a307f8627c4d63ac1003252aa45175e08399\"\u003e\u003ccode\u003ec710a30\u003c/code\u003e\u003c/a\u003e Add v0.8.x to the CI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/mio/commit/c29e21c244b2b835e8b3e015b92c708c33c7d70a\"\u003e\u003ccode\u003ec29e21c\u003c/code\u003e\u003c/a\u003e Release v0.8.10\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/mio/compare/v0.8.10...v0.8.11\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openssl` from 0.10.62 to 0.10.79\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-openssl/rust-openssl/releases\"\u003eopenssl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eopenssl-v0.10.79\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/cache from 5.0.4 to 5.0.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2610\"\u003erust-openssl/rust-openssl#2610\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTry to fix OpenSSL 1.1.0l download by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2614\"\u003erust-openssl/rust-openssl#2614\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRequire \u0026amp;mut BigNumContextRef for EcPointRef mul/invert by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2615\"\u003erust-openssl/rust-openssl#2615\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix UB in EcGroupRef::generator on groups without a generator by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2617\"\u003erust-openssl/rust-openssl#2617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace \u003ccode\u003euse libc::*;\u003c/code\u003e with targeted imports in openssl-sys by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2618\"\u003erust-openssl/rust-openssl#2618\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKeyRef::is_a and KeyType for name-based key identification by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2619\"\u003erust-openssl/rust-openssl#2619\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKey::{public,private}_key_from_raw_bytes_ex by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2620\"\u003erust-openssl/rust-openssl#2620\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump MSRV to 1.80 by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2622\"\u003erust-openssl/rust-openssl#2622\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop once_cell in favor of std::sync::{LazyLock, OnceLock} by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2623\"\u003erust-openssl/rust-openssl#2623\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKey::private_key_from_seed for ML-DSA/ML-KEM key import by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2621\"\u003erust-openssl/rust-openssl#2621\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eparallelize more builds in CI for cold caches by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2625\"\u003erust-openssl/rust-openssl#2625\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2626\"\u003erust-openssl/rust-openssl#2626\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix process abort when verify/PSK callbacks fire after SSL_CTX swap by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2624\"\u003erust-openssl/rust-openssl#2624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBind OSSL_PARAM_modified and use it for seed_into by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2628\"\u003erust-openssl/rust-openssl#2628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PkeyCtxRef::set_context_string for ML-DSA by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2629\"\u003erust-openssl/rust-openssl#2629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2631\"\u003erust-openssl/rust-openssl#2631\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix output buffer overflow for AES key-wrap-with-padding ciphers by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2630\"\u003erust-openssl/rust-openssl#2630\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl 0.10.79 and openssl-sys 0.9.115 by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2632\"\u003erust-openssl/rust-openssl#2632\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.78...openssl-v0.10.79\"\u003ehttps://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.78...openssl-v0.10.79\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eopenssl-v0.10.78\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix Suite B flag assignments in verify.rs by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2592\"\u003erust-openssl/rust-openssl#2592\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse cvt_p for OPENSSL_malloc error handling by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2593\"\u003erust-openssl/rust-openssl#2593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMark BIO_get_mem_data on AWS-LC to be unsafe by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2594\"\u003erust-openssl/rust-openssl#2594\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSet timeout for package installation step by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2595\"\u003erust-openssl/rust-openssl#2595\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePanic in Crypter::new when IV is required but not provided by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2596\"\u003erust-openssl/rust-openssl#2596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eopenssl 4 support by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2591\"\u003erust-openssl/rust-openssl#2591\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid panic for overlong OIDs by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2598\"\u003erust-openssl/rust-openssl#2598\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix dangling stack pointer in custom extension add callback by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2599\"\u003erust-openssl/rust-openssl#2599\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for LibreSSL 4.3.x by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2603\"\u003erust-openssl/rust-openssl#2603\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix inverted bounds assertion in AES key unwrap by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2604\"\u003erust-openssl/rust-openssl#2604\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject oversized length returns from password callback trampoline by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2605\"\u003erust-openssl/rust-openssl#2605\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eValidate callback-returned lengths in PSK and cookie trampolines by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2607\"\u003erust-openssl/rust-openssl#2607\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eError for short out in MdCtxRef::digest_final() by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2608\"\u003erust-openssl/rust-openssl#2608\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck derive output buffer length on OpenSSL 1.1.x by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2606\"\u003erust-openssl/rust-openssl#2606\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl v0.10.78 and openssl-sys v0.9.114 by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2609\"\u003erust-openssl/rust-openssl#2609\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.77...openssl-v0.10.78\"\u003ehttps://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.77...openssl-v0.10.78\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eopenssl-v0.10.77\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCI: Hash-pin all action usage, avoid credential persistence in actions/checkout by \u003ca href=\"https://github.com/woodruffw\"\u003e\u003ccode\u003e@​woodruffw\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2587\"\u003erust-openssl/rust-openssl#2587\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump aws-lc-sys to 0.39 by \u003ca href=\"https://github.com/goffrie\"\u003e\u003ccode\u003e@​goffrie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2588\"\u003erust-openssl/rust-openssl#2588\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emd_ctx: enable sign/verify/reset on BoringSSL, LibreSSL, and AWS-LC by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2589\"\u003erust-openssl/rust-openssl#2589\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/649f2d9e37f3aa701e20bd8ab5cd7eb5afa0a90f\"\u003e\u003ccode\u003e649f2d9\u003c/code\u003e\u003c/a\u003e Release openssl 0.10.79 and openssl-sys 0.9.115 (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2632\"\u003e#2632\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/257f9b20c001b888986f93579f118fa2a57d4f45\"\u003e\u003ccode\u003e257f9b2\u003c/code\u003e\u003c/a\u003e Fix output buffer overflow for AES key-wrap-with-padding ciphers (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2630\"\u003e#2630\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/d43e9179b1885fc66269a42361cc7a80f631ac8f\"\u003e\u003ccode\u003ed43e917\u003c/code\u003e\u003c/a\u003e Reject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2631\"\u003e#2631\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/f46519c8694a3e121091dafe38aab77c2f756546\"\u003e\u003ccode\u003ef46519c\u003c/code\u003e\u003c/a\u003e Add PkeyCtxRef::set_context_string for ML-DSA (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2629\"\u003e#2629\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/ad9ae312771f898749a9471549519d45eba6a033\"\u003e\u003ccode\u003ead9ae31\u003c/code\u003e\u003c/a\u003e Bind OSSL_PARAM_modified and use it for seed_into (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2628\"\u003e#2628\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/4e25c9be20dae1e78f1a3815950cd0973addae82\"\u003e\u003ccode\u003e4e25c9b\u003c/code\u003e\u003c/a\u003e Fix process abort when verify/PSK callbacks fire after SSL_CTX swap (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2624\"\u003e#2624\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/3dd8f425ef34a069b5bec46f3971b67db1c295c7\"\u003e\u003ccode\u003e3dd8f42\u003c/code\u003e\u003c/a\u003e Add PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2626\"\u003e#2626\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/2c5e5a8f1483d5ec85580c07f721de9057d58e69\"\u003e\u003ccode\u003e2c5e5a8\u003c/code\u003e\u003c/a\u003e parallelize more builds in CI for cold caches (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2625\"\u003e#2625\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/668559171168538cd190574373abfc9e120263ca\"\u003e\u003ccode\u003e6685591\u003c/code\u003e\u003c/a\u003e Add PKey::private_key_from_seed for ML-DSA/ML-KEM key import (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2621\"\u003e#2621\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/8f8fdce627fb3c553673b8c688d9f1dc10ea0cc8\"\u003e\u003ccode\u003e8f8fdce\u003c/code\u003e\u003c/a\u003e Drop once_cell in favor of std::sync::{LazyLock, OnceLock} (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2623\"\u003e#2623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.62...openssl-v0.10.79\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.8.5 to 0.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustix` from 0.37.23 to 0.37.28\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/89b7a8de7e09c2e5c4b28582970932800bb14a19\"\u003e\u003ccode\u003e89b7a8d\u003c/code\u003e\u003c/a\u003e chore: Release rustix version 0.37.28\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/f51ecb123ef8007c8ea5919fc3659492da479784\"\u003e\u003ccode\u003ef51ecb1\u003c/code\u003e\u003c/a\u003e Check for a missing \u003ccode\u003eDT_HASH\u003c/code\u003e section in the VDSO parser (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/1254\"\u003e#1254\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/1257\"\u003e#1257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/b720e07733115753886b84138fbaec05b241a288\"\u003e\u003ccode\u003eb720e07\u003c/code\u003e\u003c/a\u003e Remove naked_functions feature usage for x86 (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/722\"\u003e#722\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/1182\"\u003e#1182\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/b38dc512628b5db8d08c26449ee2beed7ed51dcc\"\u003e\u003ccode\u003eb38dc51\u003c/code\u003e\u003c/a\u003e chore: Release rustix version 0.37.27\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/a2d9c8ee1a0c1548f17e5ec6096f3a005111d481\"\u003e\u003ccode\u003ea2d9c8e\u003c/code\u003e\u003c/a\u003e Fix p{read,write}v{,v2}'s encoding of the offset argument on Linux. (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/896\"\u003e#896\u003c/a\u003e) (#...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/dce277762238d5fd40c57ccf0151645d8de3d33d\"\u003e\u003ccode\u003edce2777\u003c/code\u003e\u003c/a\u003e chore: Release rustix version 0.37.26\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/06dbe83c60cbfa603c9437aef9dfd119f068b1df\"\u003e\u003ccode\u003e06dbe83\u003c/code\u003e\u003c/a\u003e Fix \u003ccode\u003esendmsg_unix\u003c/code\u003e's address encoding. (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/885\"\u003e#885\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/886\"\u003e#886\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/00b84d6aac2364455eab2c68e42afee63d6e3ad3\"\u003e\u003ccode\u003e00b84d6\u003c/code\u003e\u003c/a\u003e chore: Release rustix version 0.37.25\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/cad15a7076d493a0651fb0b7889bd5e5a72a8f17\"\u003e\u003ccode\u003ecad15a7\u003c/code\u003e\u003c/a\u003e Fixes for \u003ccode\u003eDir\u003c/code\u003e on macOS, FreeBSD, and WASI.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/df3c3a192cf144af0da8a57417fb4addbdc611f6\"\u003e\u003ccode\u003edf3c3a1\u003c/code\u003e\u003c/a\u003e Merge pull request from GHSA-c827-hfw6-qwvm\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bytecodealliance/rustix/compare/v0.37.23...v0.37.28\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls-webpki` from 0.100.1 to 0.100.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rustls/webpki/releases\"\u003erustls-webpki's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.100.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePath building complexity is now limited to a maximum budget of path finding operations, avoiding exponential processing time when encountering certificate chains containing many certificates with the same subject/issuer distinguished name but different subject public key information.\u003c/li\u003e\n\u003cli\u003eName constraints evaluation is now limited to a maximum number of comparison operations, avoiding exponential processing time when encountering certificate chains containing many name constraints and subject alternate names.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eThe following PRs were backported to the rel-0.100 branch in  \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/172\"\u003erustls/webpki#172\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFurther limits on expensive path building (\u003ca href=\"https://redirect.github.com/rustls/webpki/pull/163\"\u003erustls/webpki#163\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBudget tweaks (\u003ca href=\"https://redirect.github.com/rustls/webpki/pull/164\"\u003erustls/webpki#164\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBound name constraint comparisons (\u003ca href=\"https://redirect.github.com/rustls/webpki/pull/165\"\u003erustls/webpki#165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCorrect handling of fatal errors (\u003ca href=\"https://redirect.github.com/rustls/webpki/pull/168\"\u003erustls/webpki#168\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.100.2...v/0.100.3\"\u003ehttps://github.com/rustls/webpki/compare/v/0.100.2...v/0.100.3\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThanks to all who have contributed, on behalf of the rustls team (\u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/cpu\"\u003e\u003ccode\u003e@​cpu\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e)!\u003c/p\u003e\n\u003ch2\u003ev/0.100.2\u003c/h2\u003e\n\u003ch2\u003eRelease notes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ecertificate path building and verification is now capped at 100 signature validation operations to avoid the risk of CPU usage denial-of-service attack when validating crafted certificate chains producing quadratic runtime. This risk affected both clients, as well as servers that verified client certificates.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ev0.100.2 prep by \u003ca href=\"https://github.com/cpu\"\u003e\u003ccode\u003e@​cpu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/154\"\u003erustls/webpki#154\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.100.1...v/0.100.2\"\u003ehttps://github.com/rustls/webpki/compare/v/0.100.1...v/0.100.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/5649c6a65073a0b2320bb5337d603b22426dbd4e\"\u003e\u003ccode\u003e5649c6a\u003c/code\u003e\u003c/a\u003e Cargo: bump version 0.100.2 -\u0026gt; 0.100.3.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/86f4cb29749d88eaf6d80d7f185e1c62b1354ebc\"\u003e\u003ccode\u003e86f4cb2\u003c/code\u003e\u003c/a\u003e verify_cert: use enum for build chain error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/50a293091c1e4c1b1cab8c147fbb0981671f971b\"\u003e\u003ccode\u003e50a2930\u003c/code\u003e\u003c/a\u003e verify_cert: correct handling of fatal errors\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/0651f72569f9f207acfc66091a83922fd032be5f\"\u003e\u003ccode\u003e0651f72\u003c/code\u003e\u003c/a\u003e error: add is_fatal helper, use in verify_cert\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/0598dd29f86d65ea79211744341e0176099192ef\"\u003e\u003ccode\u003e0598dd2\u003c/code\u003e\u003c/a\u003e verify_cert: optional \u003ccode\u003eBudget\u003c/code\u003e arg for \u003ccode\u003everify_chain\u003c/code\u003e helper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/277fb4be2bb4af71ff8ef814936aeeb6079e777f\"\u003e\u003ccode\u003e277fb4b\u003c/code\u003e\u003c/a\u003e verify_cert: take references in verify_chain helper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/63f78e052eac57d6a91e7c6401a76e276934f4eb\"\u003e\u003ccode\u003e63f78e0\u003c/code\u003e\u003c/a\u003e verify_cert: name constraint checking on verified chain\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/f55622a54befabaf3c994a71b987adb4d3ace3ca\"\u003e\u003ccode\u003ef55622a\u003c/code\u003e\u003c/a\u003e verify_cert: budget for name constraint comparisons\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/141ddcb13dcf42d18e1c3ce8eb8855b133713f84\"\u003e\u003ccode\u003e141ddcb\u003c/code\u003e\u003c/a\u003e verify_cert: pull out \u003ccode\u003everify_chain\u003c/code\u003e test helper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/eb07f2f679e7073d359c465dcb09088b2eee271b\"\u003e\u003ccode\u003eeb07f2f\u003c/code\u003e\u003c/a\u003e verify_cert: pull out \u003ccode\u003emake_end_entity\u003c/code\u003e test helper\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.100.1...v/0.100.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.36 to 0.3.44\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.44\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.43\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.42\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.41\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.40\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.39\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.38\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.37\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003etime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.44 [2025-09-19]\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eComparisons of \u003ccode\u003ePrimitiveDateTime\u003c/code\u003e, \u003ccode\u003eUtcDateTime\u003c/code\u003e, and \u003ccode\u003eOffsetDateTime\u003c/code\u003e with differing signs (i.e.\none negative and one positive year) would return the inverse result of what was expected. This was\nintroduced in v0.3.42 and has been fixed.\u003c/li\u003e\n\u003cli\u003eType inference would fail due to feature unification when \u003ccode\u003ewasm-bindgen\u003c/code\u003e enabled \u003ccode\u003eserde_json\u003c/code\u003e.\nThis has been fixed by explicitly specifying the type in the relevant locations.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.43 [2025-09-02]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for \u003ccode\u003erand\u003c/code\u003e 0.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIn the \u003ccode\u003econvert\u003c/code\u003e module, any use of \u003ccode\u003eper\u003c/code\u003e with types that were not the same (such as\n\u003ccode\u003eNanosecond::per(Second)\u003c/code\u003e) would not compile due to a bug. This has been fixed.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.42 [2025-08-31]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eTime::duration_until\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eTime::duration_since\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eper_t\u003c/code\u003e method for all types in \u003ccode\u003etime::convert\u003c/code\u003e. This is similar to the existing \u003ccode\u003eper\u003c/code\u003e method, but\ncan return any of the primitive numeric types that can represent the result. This will cut down on\n\u003ccode\u003eas\u003c/code\u003e casts while ensuring correctness. Type inference isn't perfect, so you may need to provide a\ntype annotation in some situations.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eimpl PartialOrd for Month\u003c/code\u003e and \u003ccode\u003eimpl Ord for Month\u003c/code\u003e; this assumes the months are in the same year\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eSystemTimeExt\u003c/code\u003e trait, adding methods for checked arithmetic with \u003ccode\u003etime::Duration\u003c/code\u003e and obtaining\nthe difference between two \u003ccode\u003eSystemTime\u003c/code\u003es as a \u003ccode\u003etime::Duration\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003ePermit using \u003ccode\u003eUtcDateTime\u003c/code\u003e with \u003ccode\u003erand\u003c/code\u003e (this was inadvertently omitted previously)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eimpl core::error::Error\u003c/code\u003e for all error types (now available when the \u003ccode\u003estd\u003c/code\u003e feature is disabled)\u003c/li\u003e\n\u003cli\u003eMacOS can now obtain the local UTC offset in multi-threaded programs as the system APIs are\nthread-safe.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e#[track_caller]\u003c/code\u003e has been added to all relevant methods.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe minimum supported Rust version is now 1.81.0.\u003c/li\u003e\n\u003cli\u003eThe dependency on \u003ccode\u003eitoa\u003c/code\u003e has been removed, as the standard library now has similar functionality\nby default.\u003c/li\u003e\n\u003cli\u003eFormatting a component that involves a floating point number is now guaranteed to be\ndeterministic, avoiding any subtle differences between platforms or compiler versions.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/04c0ef283828e25a0c7fc270f28c053ceb26afcf\"\u003e\u003ccode\u003e04c0ef2\u003c/code\u003e\u003c/a\u003e v0.3.44 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/b9420633a30925696f9b859dccb86fd3645639c4\"\u003e\u003ccode\u003eb942063\u003c/code\u003e\u003c/a\u003e Compare datetimes with signed integers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/dcdfbf62a956dd9641ba4b1ca40c5a5b234e28c6\"\u003e\u003ccode\u003edcdfbf6\u003c/code\u003e\u003c/a\u003e Add explicit type to avoid inference errors\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/f20385296a658a6d90edfaa8e3f95e7e9cfab843\"\u003e\u003ccode\u003ef203852\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;Remove dependency on \u003ccode\u003eitoa\u003c/code\u003e\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/45b9932e57ffedb43257bf2837c171ebc37a73c3\"\u003e\u003ccode\u003e45b9932\u003c/code\u003e\u003c/a\u003e v0.3.43 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/8cbf0dbff0556c1d5df2c08cf8a047f903362c9d\"\u003e\u003ccode\u003e8cbf0db\u003c/code\u003e\u003c/a\u003e Fix bug with \u003ccode\u003econvert\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/3343e8582696361e118a0045f6e8e36ae3484a5e\"\u003e\u003ccode\u003e3343e85\u003c/code\u003e\u003c/a\u003e Add support for rand 0.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/afb2574f9421f326417980e94198523fec8f85b0\"\u003e\u003ccode\u003eafb2574\u003c/code\u003e\u003c/a\u003e Add note about MSRV\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/ed2852e3b2d6a2e4205675891d2682fd5aa4fc73\"\u003e\u003ccode\u003eed2852e\u003c/code\u003e\u003c/a\u003e v0.3.42 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/1067543c7f794b8a10009b298d15c6d2d4e327ef\"\u003e\u003ccode\u003e1067543\u003c/code\u003e\u003c/a\u003e Fix copied comment\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/time-rs/time/compare/v0.3.36...v0.3.44\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `webpki` from 0.22.0 to 0.22.4\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/briansmith/webpki/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `whoami` from 1.4.1 to 1.6.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ardaku/whoami/releases\"\u003ewhoami's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003eAdded\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for GNU/Hurd\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eChanged\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemoved comment about hostname being limited to ASCII due to Unicode hostnames being supported on Windows\u003c/li\u003e\n\u003cli\u003eMore descriptive error messages on the web target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eFixed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eaccount()\u003c/code\u003e always returning username instead of user principal name on Windows\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elangs()\u003c/code\u003e now returns a list accurate to the POSIX locale spec\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ehostname()\u003c/code\u003e on Windows now returns \u003ccode\u003ePhysicalDnsHostname\u003c/code\u003e instead of \u003ccode\u003eNetBIOS\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edevicename()\u003c/code\u003e: Fixed reading escaped unix pretty names\u003c/li\u003e\n\u003cli\u003eLink error on Windows (in future Rust version)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove comment about hostname being limited to ASCII by \u003ca href=\"https://github.com/davidkna\"\u003e\u003ccode\u003e@​davidkna\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/119\"\u003eardaku/whoami#119\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for GNU/Hurd by \u003ca href=\"https://github.com/pinotree\"\u003e\u003ccode\u003e@​pinotree\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/120\"\u003eardaku/whoami#120\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApply target rename wasm32-wasip1 by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/124\"\u003eardaku/whoami#124\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackport Update copyright (\u003ca href=\"https://redirect.github.com/ardaku/whoami/issues/129\"\u003e#129\u003c/a\u003e) by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/130\"\u003eardaku/whoami#130\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump version to 1.6.0-pre.0 by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/132\"\u003eardaku/whoami#132\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackport v2 -\u0026gt; v1: Fix clippy duplicate attribute for MacOS by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/135\"\u003eardaku/whoami#135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev1: Update wasm-bindgen to v0.2.89 by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/138\"\u003eardaku/whoami#138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackport v2 -\u0026gt; v1: Check more environment variables for language by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/146\"\u003eardaku/whoami#146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackport v2 -\u0026gt; v1: Switch Windows \u003ccode\u003ehostname()\u003c/code\u003e to return \u003ccode\u003ePhysicalDnsHostname\u003c/code\u003e by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/148\"\u003eardaku/whoami#148\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackport v2 -\u0026gt; v1: Improved error handling by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/149\"\u003eardaku/whoami#149\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e1.6.0-pre.1 and Backport v2 -\u0026gt; v1: Adjusts langs() to match POSIX locale spec by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/151\"\u003eardaku/whoami#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackport v2 -\u0026gt; v1: Fix license link by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/154\"\u003eardaku/whoami#154\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd discriminants to ExtendedNameFormat enum by \u003ca href=\"https://github.com/Batch21\"\u003e\u003ccode\u003e@​Batch21\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/156\"\u003eardaku/whoami#156\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eVersion 1.6.0 pre.2 by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/158\"\u003eardaku/whoami#158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackport v2-\u0026gt;v1: Fix reading escaped unix pretty names by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/178\"\u003eardaku/whoami#178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease v1.6.0 by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/162\"\u003eardaku/whoami#162\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/davidkna\"\u003e\u003ccode\u003e@​davidkna\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/119\"\u003eardaku/whoami#119\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pinotree\"\u003e\u003ccode\u003e@​pinotree\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/120\"\u003eardaku/whoami#120\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Batch21\"\u003e\u003ccode\u003e@​Batch21\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/156\"\u003eardaku/whoami#156\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ardaku/whoami/compare/v1.5.2...v1.6.0\"\u003ehttps://github.com/ardaku/whoami/compare/v1.5.2...v1.6.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ardaku/whoami/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/bwarelabs/aptos-indexer-processors/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/bwarelabs/aptos-indexer-processors/pull/28","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/bwarelabs%2Faptos-indexer-processors/issues/28","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/28/packages"},{"uuid":"4406011827","node_id":"PR_kwDON5N0qs7Zguwv","number":13,"state":"closed","title":"build(deps): bump the cargo group across 1 directory with 16 updates","user":"dependabot[bot]","labels":["dependencies","rust"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-19T20:03:55.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-08T11:28:42.000Z","updated_at":"2026-05-19T20:03:58.000Z","time_to_close":981313,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"cargo","update_count":16,"packages":[{"name":"aws-sdk-cloudfront","old_version":"1.64.1","new_version":"1.67.1","repository_url":"https://github.com/awslabs/aws-sdk-rust"},{"name":"diesel","old_version":"2.2.7","new_version":"2.2.12","repository_url":"https://github.com/diesel-rs/diesel"},{"name":"diesel-async","old_version":"0.5.2","new_version":"0.6.1","repository_url":"https://github.com/weiznich/diesel_async"},{"name":"rand","old_version":"0.9.0","new_version":"0.9.3","repository_url":"https://github.com/rust-random/rand"},{"name":"tar","old_version":"0.4.43","new_version":"0.4.45","repository_url":"https://github.com/alexcrichton/tar-rs"},{"name":"tokio","old_version":"1.43.0","new_version":"1.43.1","repository_url":"https://github.com/tokio-rs/tokio"},{"name":"tracing-subscriber","old_version":"0.3.19","new_version":"0.3.20","repository_url":"https://github.com/tokio-rs/tracing"},{"name":"bytes","old_version":"1.10.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"zip","old_version":"2.2.2","new_version":"2.3.0","repository_url":"https://github.com/zip-rs/zip2"},{"name":"git2","old_version":"0.20.0","new_version":"0.20.4","repository_url":"https://github.com/rust-lang/git2-rs"},{"name":"ammonia","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/rust-ammonia/ammonia"},{"name":"crossbeam-channel","old_version":"0.5.14","new_version":"0.5.15","repository_url":"https://github.com/crossbeam-rs/crossbeam"},{"name":"openssl","old_version":"0.10.70","new_version":"0.10.79","repository_url":"https://github.com/rust-openssl/rust-openssl"},{"name":"quinn-proto","old_version":"0.11.9","new_version":"0.11.14","repository_url":"https://github.com/quinn-rs/quinn"},{"name":"ring","old_version":"0.17.8","new_version":"0.17.14","repository_url":"https://github.com/briansmith/ring"},{"name":"time","old_version":"0.3.37","new_version":"0.3.44","repository_url":"https://github.com/time-rs/time"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 16 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [aws-sdk-cloudfront](https://github.com/awslabs/aws-sdk-rust) | `1.64.1` | `1.67.1` |\n| [diesel](https://github.com/diesel-rs/diesel) | `2.2.7` | `2.2.12` |\n| [diesel-async](https://github.com/weiznich/diesel_async) | `0.5.2` | `0.6.1` |\n| [rand](https://github.com/rust-random/rand) | `0.9.0` | `0.9.3` |\n| [tar](https://github.com/alexcrichton/tar-rs) | `0.4.43` | `0.4.45` |\n| [tokio](https://github.com/tokio-rs/tokio) | `1.43.0` | `1.43.1` |\n| [tracing-subscriber](https://github.com/tokio-rs/tracing) | `0.3.19` | `0.3.20` |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.10.0` | `1.11.1` |\n| [zip](https://github.com/zip-rs/zip2) | `2.2.2` | `2.3.0` |\n| [git2](https://github.com/rust-lang/git2-rs) | `0.20.0` | `0.20.4` |\n| [ammonia](https://github.com/rust-ammonia/ammonia) | `4.0.0` | `4.0.1` |\n| [crossbeam-channel](https://github.com/crossbeam-rs/crossbeam) | `0.5.14` | `0.5.15` |\n| [openssl](https://github.com/rust-openssl/rust-openssl) | `0.10.70` | `0.10.79` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.9` | `0.11.14` |\n| [ring](https://github.com/briansmith/ring) | `0.17.8` | `0.17.14` |\n| [time](https://github.com/time-rs/time) | `0.3.37` | `0.3.44` |\n\n\nUpdates `aws-sdk-cloudfront` from 1.64.1 to 1.67.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/awslabs/aws-sdk-rust/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `diesel` from 2.2.7 to 2.2.12\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/diesel-rs/diesel/blob/main/CHANGELOG.md\"\u003ediesel's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[2.2.12] 2025-07-11\u003c/h2\u003e\n\u003ch2\u003eFixed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded support for libsqlite3-sys 0.35.0\u003c/li\u003e\n\u003cli\u003eFixed a wrong oid for the \u003ccode\u003eoid[]\u003c/code\u003e type in the PostgreSQL backend\u003c/li\u003e\n\u003cli\u003eWorked around an issue with broken nullable detection with certain versions of libmysqlclient shipped by ubuntu\u003c/li\u003e\n\u003cli\u003eImproved compiler errors in many more cases\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[2.2.11] 2025-06-12\u003c/h2\u003e\n\u003ch2\u003eFixed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDisallow mixing aggregate and non-aggregate expressions in \u003ccode\u003eDISTINCT ON\u003c/code\u003e clauses\u003c/li\u003e\n\u003cli\u003eFixed an item referenced by a non-absolute path in \u003ccode\u003e#[derive(MultiConnection)]\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eImproved compiler errors in some cases\u003c/li\u003e\n\u003cli\u003eImproved the documentation for creating SqliteConnections for concurrent applications\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[2.2.10] 2025-04-25\u003c/h2\u003e\n\u003ch2\u003eFixed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for libsqlite3-sys 0.35.0\u003c/li\u003e\n\u003cli\u003eFixed potential ambiguities in code generated by various derives\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[2.2.9] 2025-04-04\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix an issue where \u003ccode\u003ediesel migration generate --diff-schema\u003c/code\u003e incorrectly uses the primary key of table B as the referenced column rather than the primary key of table A when B has a foreign key pointing to table A.\u003c/li\u003e\n\u003cli\u003eBump maximal supported libsqlite3-sys version to 0.32.0 and add explicit feature entries for the \u003ccode\u003euuid\u003c/code\u003e and \u003ccode\u003eserde_json\u003c/code\u003e feature.\u003c/li\u003e\n\u003cli\u003eFixed an issue where diesel generated unnamed prepared statements would fail with an \u003ccode\u003eunanmed prepared statement not found\u003c/code\u003e error with pgbouncer.\u003c/li\u003e\n\u003cli\u003eFix an issue with converting \u003ccode\u003eipnet::Ipnet\u003c/code\u003e values with an subnet to SQL values\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[2.2.8] 2025-03-03\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAllow \u003ccode\u003e#[diesel(check_for_backend(_))]\u003c/code\u003e to check fields with \u003ccode\u003e#[diesel(embed)]\u003c/code\u003e annotations\u003c/li\u003e\n\u003cli\u003eImprove custom compile error message around \u003ccode\u003eCompatibleType\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix a bug that restricted the number of allowed columns in \u003ccode\u003eCOPY FROM\u003c/code\u003e statements to 12\u003c/li\u003e\n\u003cli\u003eExpose some SqliteValue helper functions\u003c/li\u003e\n\u003cli\u003eUse consistent whitespace in \u003ccode\u003eASC\u003c/code\u003e/\u003ccode\u003eDESC\u003c/code\u003e, \u003ccode\u003eDISTINCT ON\u003c/code\u003e, and \u003ccode\u003eDELETE FROM\u003c/code\u003e clauses\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/1073cea3f80110792e911f4af64596c84d7cdc17\"\u003e\u003ccode\u003e1073cea\u003c/code\u003e\u003c/a\u003e Try to fix window release workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/b200d8a0f76a6c3e34b892378265be18acc7ad07\"\u003e\u003ccode\u003eb200d8a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/diesel-rs/diesel/issues/4672\"\u003e#4672\u003c/a\u003e from weiznich/prepare/diesel_2.2.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/2a4692f40a50ff7a8a42eaa0247f78efcb4619e0\"\u003e\u003ccode\u003e2a4692f\u003c/code\u003e\u003c/a\u003e Prepare diesel 2.2.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/0681a66839f9aad075037162c224f975627f220a\"\u003e\u003ccode\u003e0681a66\u003c/code\u003e\u003c/a\u003e Bump thiserror to 2.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/74f55d4b2419f76f7c203135000f3bd76796bb70\"\u003e\u003ccode\u003e74f55d4\u003c/code\u003e\u003c/a\u003e Bump to toml 0.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/6539b03a61fc6a9282184f8fa96c2fcc30fe687f\"\u003e\u003ccode\u003e6539b03\u003c/code\u003e\u003c/a\u003e Revert rusqlite to 0.32 for diesel_bench (\u003ca href=\"https://redirect.github.com/diesel-rs/diesel/issues/4676\"\u003e#4676\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/729ff146e0fcc2b34ea53ee2a88796e55622a92a\"\u003e\u003ccode\u003e729ff14\u003c/code\u003e\u003c/a\u003e Add support for libsqlite3-sys 0.35 (\u003ca href=\"https://redirect.github.com/diesel-rs/diesel/issues/4676\"\u003e#4676\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/e2125075a8079d80200b20c967bd22fd4f18512a\"\u003e\u003ccode\u003ee212507\u003c/code\u003e\u003c/a\u003e More uppercase fixes for diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/746d5ca8502f99348a79fbb83c13b19688d539ff\"\u003e\u003ccode\u003e746d5ca\u003c/code\u003e\u003c/a\u003e Bump to rust 1.88\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/0c02a66c49a18db787ff4713d030c77f9b20ec89\"\u003e\u003ccode\u003e0c02a66\u003c/code\u003e\u003c/a\u003e Fix print-schema crash with mariadb client library\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/diesel-rs/diesel/compare/v2.2.7...v2.2.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `diesel-async` from 0.5.2 to 0.6.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/weiznich/diesel_async/releases\"\u003ediesel-async's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDiesel-Async 0.6.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix building with different feature combinations\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eYou can support the development of diesel-async by contributions or by sponsoring the project on GitHub.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/weiznich/diesel_async/compare/v0.6.0...v0.6.1\"\u003ehttps://github.com/weiznich/diesel_async/compare/v0.6.0...v0.6.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eDiesel-Async 0.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAllow to control the statement cache size\u003c/li\u003e\n\u003cli\u003eMinimize dependencies features\u003c/li\u003e\n\u003cli\u003eBump minimal supported mysql_async version to 0.36.0\u003c/li\u003e\n\u003cli\u003eFixing a bug in how we tracked open transaction that could lead to dangling transactions is specific cases\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eYou can support the development of diesel-async by contributions or by sponsoring the project on GitHub.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/weiznich/diesel_async/compare/v0.5.2...v0.6.0\"\u003ehttps://github.com/weiznich/diesel_async/compare/v0.5.2...v0.6.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/diesel-rs/diesel_async/blob/main/CHANGELOG.md\"\u003ediesel-async's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.6.1] - 2025-07-03\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix features for some dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.6.0] - 2025-07-02\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAllow to control the statement cache size\u003c/li\u003e\n\u003cli\u003eMinimize dependencies features\u003c/li\u003e\n\u003cli\u003eBump minimal supported mysql_async version to 0.36.0\u003c/li\u003e\n\u003cli\u003eFixing a bug in how we tracked open transaction that could lead to dangling transactions is specific cases\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel_async/commit/82b8c375c80c59f986e07b0fe7eaee30112648a4\"\u003e\u003ccode\u003e82b8c37\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/weiznich/diesel_async/issues/245\"\u003e#245\u003c/a\u003e from weiznich/fix/244\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel_async/commit/6a413a84800c87c2397eef8d8fb9249168ac1df4\"\u003e\u003ccode\u003e6a413a8\u003c/code\u003e\u003c/a\u003e Fix building with different feature combinations\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel_async/commit/52dc60134a3e2221d84212a69b5854b3d9b51917\"\u003e\u003ccode\u003e52dc601\u003c/code\u003e\u003c/a\u003e Fix Changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel_async/commit/f043b13e93c16d08925ebc3178d49c7abfe6810a\"\u003e\u003ccode\u003ef043b13\u003c/code\u003e\u003c/a\u003e Prepare a diesel_async 0.6.0 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel_async/commit/a9f7a35f7a3b3d32f6316a6b83a8ad9bdfebbbce\"\u003e\u003ccode\u003ea9f7a35\u003c/code\u003e\u003c/a\u003e Copy new statement cache form diesel to unblock a release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel_async/commit/f8263a18147c49bc2a4d24707540c9731a814777\"\u003e\u003ccode\u003ef8263a1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/weiznich/diesel_async/issues/240\"\u003e#240\u003c/a\u003e from progval/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel_async/commit/5f4aae077dd1bb48bc149f1ff0735a2e5ae59409\"\u003e\u003ccode\u003e5f4aae0\u003c/code\u003e\u003c/a\u003e Fix documentation link to SyncConnectionWrapper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel_async/commit/540b1a5a44eeb0e7cad63c008d931671d38cd8cc\"\u003e\u003ccode\u003e540b1a5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/weiznich/diesel_async/issues/242\"\u003e#242\u003c/a\u003e from weiznich/fix/241\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel_async/commit/2e4075aae1af8eaaf957b134913804e87dcbc573\"\u003e\u003ccode\u003e2e4075a\u003c/code\u003e\u003c/a\u003e Fix a bug in how we handle serialization errors\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel_async/commit/7d456345484c4aa44998707a69633ecfb2653ee3\"\u003e\u003ccode\u003e7d45634\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/weiznich/diesel_async/issues/239\"\u003e#239\u003c/a\u003e from weiznich/fix/bump_msrv_1.84\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/weiznich/diesel_async/compare/v0.5.2...v0.6.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.9.0 to 0.9.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.9.3/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.9.3] — 2026-02-11\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReplace usages of \u003ccode\u003edoc_auto_cfg\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e[0.9.2] — 2025-07-20\u003c/h2\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003erand::rngs::mock\u003c/code\u003e module and \u003ccode\u003eStepRng\u003c/code\u003e generator (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1634\"\u003e#1634\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdditions\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnable \u003ccode\u003eWeightedIndex\u0026lt;usize\u0026gt;\u003c/code\u003e (de)serialization (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1646\"\u003e#1646\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.9.1] - 2025-04-17\u003c/h2\u003e\n\u003ch3\u003eSecurity and unsafe\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevise \u0026quot;not a crypto library\u0026quot; policy again (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1565\"\u003e#1565\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove \u003ccode\u003ezerocopy\u003c/code\u003e dependency from \u003ccode\u003erand\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1579\"\u003e#1579\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix feature \u003ccode\u003esimd_support\u003c/code\u003e for recent nightly rust (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1586\"\u003e#1586\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAllow \u003ccode\u003efn rand::seq::index::sample_weighted\u003c/code\u003e and \u003ccode\u003efn IndexedRandom::choose_multiple_weighted\u003c/code\u003e to return fewer than \u003ccode\u003eamount\u003c/code\u003e results (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1623\"\u003e#1623\u003c/a\u003e), reverting an undocumented change (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1382\"\u003e#1382\u003c/a\u003e) to the previous release.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdditions\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003erand::distr::Alphabetic\u003c/code\u003e distribution. (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1587\"\u003e#1587\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRe-export \u003ccode\u003erand_core\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1604\"\u003e#1604\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1aeee9f4c506f9f737c6c37c169ccdc365bfbabf\"\u003e\u003ccode\u003e1aeee9f\u003c/code\u003e\u003c/a\u003e Prepare v0.9.3: deprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/98473ee6f9b44eb85154b59b67adade7f2a9b8a1\"\u003e\u003ccode\u003e98473ee\u003c/code\u003e\u003c/a\u003e Prepare rand 0.9.2 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1648\"\u003e#1648\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/031a1f5589e487ce95972cb3acc0833ef64cfc10\"\u003e\u003ccode\u003e031a1f5\u003c/code\u003e\u003c/a\u003e \u003ccode\u003eexamples/print-next.rs\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1647\"\u003e#1647\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6cb75ee59eda73967b6a3cae4fdcf2c21f6e0e4e\"\u003e\u003ccode\u003e6cb75ee\u003c/code\u003e\u003c/a\u003e Make UniformUsize serializable (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1646\"\u003e#1646\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/0c955c5b7a079bc2fe67fe946a8deb46c4bc58d8\"\u003e\u003ccode\u003e0c955c5\u003c/code\u003e\u003c/a\u003e Add some tests for BlockRng, BlockRng64 and Xoshiro RNGs (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1639\"\u003e#1639\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/204084a35fc7289e9a38575fdd80869818484517\"\u003e\u003ccode\u003e204084a\u003c/code\u003e\u003c/a\u003e Fix: Remove accidental editor swap file (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1636\"\u003e#1636\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/86262ac190ec20a79293607fb2347dc74c99122e\"\u003e\u003ccode\u003e86262ac\u003c/code\u003e\u003c/a\u003e Deprecate rand::rngs::mock module and StepRng (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1634\"\u003e#1634\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/a6e217f4a3ce78223a59cc1ff9afb2b5e589d785\"\u003e\u003ccode\u003ea6e217f\u003c/code\u003e\u003c/a\u003e Update statrs link (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1630\"\u003e#1630\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/db993ec12676119251eaf9f2cba8389a1b07abef\"\u003e\u003ccode\u003edb993ec\u003c/code\u003e\u003c/a\u003e Prepare rand v0.9.1 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1629\"\u003e#1629\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/3057641020408f64a4618b1c582cad45a9304811\"\u003e\u003ccode\u003e3057641\u003c/code\u003e\u003c/a\u003e Remove zerocopy from rand (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1579\"\u003e#1579\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.9.0...0.9.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 0.4.43 to 0.4.45\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/096e3d16d14fefac51bc4d94d616b21546ea8bcc\"\u003e\u003ccode\u003e096e3d1\u003c/code\u003e\u003c/a\u003e Bump to 0.4.45 (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/443\"\u003e#443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/17b1fd84e632071cb8eef9d3709bf347bd266446\"\u003e\u003ccode\u003e17b1fd8\u003c/code\u003e\u003c/a\u003e archive: Prevent symlink-directory collision chmod attack (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/de1a5870e603758f430073688691165f21a33946\"\u003e\u003ccode\u003ede1a587\u003c/code\u003e\u003c/a\u003e archive: Unconditionally honor PAX size (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/441\"\u003e#441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/6071cbe74acefa8c8322809bfd43c825e5f16b60\"\u003e\u003ccode\u003e6071cbe\u003c/code\u003e\u003c/a\u003e ci: Consolidate workflows (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/439\"\u003e#439\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/ad1fde9edfb9657d17666bbec2933119ce527359\"\u003e\u003ccode\u003ead1fde9\u003c/code\u003e\u003c/a\u003e build-sys: Promote unused_code to an error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/c8cb250e8bc3f28bd69406b396bb8a92b40012c1\"\u003e\u003ccode\u003ec8cb250\u003c/code\u003e\u003c/a\u003e tests: Squash a warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/638c495a480d2a50099d55f445ece9e5f544b49d\"\u003e\u003ccode\u003e638c495\u003c/code\u003e\u003c/a\u003e ci: Add xtask infra + reverse dependency testing (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/435\"\u003e#435\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/32a9bbb26468cbdecbf73fe8eb249284d4a718ed\"\u003e\u003ccode\u003e32a9bbb\u003c/code\u003e\u003c/a\u003e tests: Add RandomReader to exercise partial-read resilience (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/436\"\u003e#436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/9c5df0bfd70d1b063516b90fca2cf2e0dbe8b758\"\u003e\u003ccode\u003e9c5df0b\u003c/code\u003e\u003c/a\u003e Fix GNU long-name extension stream corruption on validation error (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/88b1e3b0da65b0c5b9750d1a75516145488f4793\"\u003e\u003ccode\u003e88b1e3b\u003c/code\u003e\u003c/a\u003e Fix docs typo in header.rs (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alexcrichton/tar-rs/compare/0.4.43...0.4.45\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tokio` from 1.43.0 to 1.43.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/a7b658c35bd40f6811e557aeb97cbb361b612c56\"\u003e\u003ccode\u003ea7b658c\u003c/code\u003e\u003c/a\u003e chore: prepare Tokio v1.43.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/c1c8d1033d637d7027fdc137ec8008c5801cbc0d\"\u003e\u003ccode\u003ec1c8d10\u003c/code\u003e\u003c/a\u003e Merge remote-tracking branch 'origin/tokio-1.38.x' into forward-port-1.38.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/aa303bc2051f7c21b48bb7bfcafe8fd4f39afd21\"\u003e\u003ccode\u003eaa303bc\u003c/code\u003e\u003c/a\u003e chore: prepare Tokio v1.38.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/7b6ccb515ff067151ed62db835f735e5653f8784\"\u003e\u003ccode\u003e7b6ccb5\u003c/code\u003e\u003c/a\u003e chore: backport CI fixes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/4b174ce2c95fe1d1a217917db93fcc935e17e0da\"\u003e\u003ccode\u003e4b174ce\u003c/code\u003e\u003c/a\u003e sync: fix cloning value when receiving from broadcast channel\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/tokio/compare/tokio-1.43.0...tokio-1.43.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tracing-subscriber` from 0.3.19 to 0.3.20\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/tracing/releases\"\u003etracing-subscriber's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003etracing-subscriber 0.3.20\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eSecurity Fix\u003c/strong\u003e: ANSI Escape Sequence Injection (CVE-TBD)\u003c/p\u003e\n\u003ch2\u003eImpact\u003c/h2\u003e\n\u003cp\u003ePrevious versions of tracing-subscriber were vulnerable to ANSI escape sequence injection attacks. Untrusted user input containing ANSI escape sequences could be injected into terminal output when logged, potentially allowing attackers to:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eManipulate terminal title bars\u003c/li\u003e\n\u003cli\u003eClear screens or modify terminal display\u003c/li\u003e\n\u003cli\u003ePotentially mislead users through terminal manipulation\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eIn isolation, impact is minimal, however security issues have been found in terminal emulators that enabled an attacker to use ANSI escape sequences via logs to exploit vulnerabilities in the terminal emulator.\u003c/p\u003e\n\u003ch2\u003eSolution\u003c/h2\u003e\n\u003cp\u003eVersion 0.3.20 fixes this vulnerability by escaping ANSI control characters in when writing events to destinations that may be printed to the terminal.\u003c/p\u003e\n\u003ch2\u003eAffected Versions\u003c/h2\u003e\n\u003cp\u003eAll versions of tracing-subscriber prior to 0.3.20 are affected by this vulnerability.\u003c/p\u003e\n\u003ch2\u003eRecommendations\u003c/h2\u003e\n\u003cp\u003eImmediate Action Required: We recommend upgrading to tracing-subscriber 0.3.20 immediately, especially if your application:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eLogs user-provided input (form data, HTTP headers, query parameters, etc.)\u003c/li\u003e\n\u003cli\u003eRuns in environments where terminal output is displayed to users\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eMigration\u003c/h2\u003e\n\u003cp\u003eThis is a patch release with no breaking API changes. Simply update your Cargo.toml:\u003c/p\u003e\n\u003cpre lang=\"toml\"\u003e\u003ccode\u003e[dependencies]\r\ntracing-subscriber = \u0026quot;0.3.20\u0026quot;\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch2\u003eAcknowledgments\u003c/h2\u003e\n\u003cp\u003eWe would like to thank \u003ca href=\"http://github.com/zefr0x\"\u003ezefr0x\u003c/a\u003e who responsibly reported the issue at \u003ccode\u003esecurity@tokio.rs\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eIf you believe you have found a security vulnerability in any tokio-rs project, please email us at \u003ccode\u003esecurity@tokio.rs\u003c/code\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/4c52ca5266a3920fc5dfeebda2accf15ee7fb278\"\u003e\u003ccode\u003e4c52ca5\u003c/code\u003e\u003c/a\u003e fmt: fix ANSI escape sequence injection vulnerability (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3368\"\u003e#3368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/f71cebe41e4c12735b1d19ca804428d4ff7d905d\"\u003e\u003ccode\u003ef71cebe\u003c/code\u003e\u003c/a\u003e subscriber: impl Clone for EnvFilter (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3360\"\u003e#3360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/3a1f571102b38bcdca13d59f3c454989d179055d\"\u003e\u003ccode\u003e3a1f571\u003c/code\u003e\u003c/a\u003e Fix CI (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3361\"\u003e#3361\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/e63ef57f3d686abe3727ddd586eb9af73d6715b7\"\u003e\u003ccode\u003ee63ef57\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-attributes 0.1.30 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3316\"\u003e#3316\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/6e59a13b1a7bcdd78b8b5a7cbcf70a0b2cdd76f0\"\u003e\u003ccode\u003e6e59a13\u003c/code\u003e\u003c/a\u003e attributes: fix tracing::instrument regression around shadowing (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3311\"\u003e#3311\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/e4df76127538aa8370d7dee32a6f84bbec6bbf10\"\u003e\u003ccode\u003ee4df761\u003c/code\u003e\u003c/a\u003e tracing: update core to 0.1.34 and attributes to 0.1.29 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3305\"\u003e#3305\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/643f392ebb73c4fb856f56a78c066c82582dd22c\"\u003e\u003ccode\u003e643f392\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-attributes 0.1.29 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3304\"\u003e#3304\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/d08e7a6eea1833810ea527e18ea03b08cd402c9d\"\u003e\u003ccode\u003ed08e7a6\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-core 0.1.34 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3302\"\u003e#3302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/6e70c571d319a033d5f37c885ccf99aa675a9eac\"\u003e\u003ccode\u003e6e70c57\u003c/code\u003e\u003c/a\u003e tracing-subscriber: count numbers of enters in \u003ccode\u003eTimings\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/2944\"\u003e#2944\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/c01d4fd9def2fb061669a310598095c789ca0a32\"\u003e\u003ccode\u003ec01d4fd\u003c/code\u003e\u003c/a\u003e fix docs and enable CI on \u003ccode\u003emain\u003c/code\u003e branch (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3295\"\u003e#3295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/tracing/compare/tracing-subscriber-0.3.19...tracing-subscriber-0.3.20\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.10.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.10.1\u003c/h2\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/bytes/pull/773\"\u003etokio-rs/bytes#773\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.10.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `zip` from 2.2.2 to 2.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/zip-rs/zip2/releases\"\u003ezip's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.3.0\u003c/h2\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for NTFS extra field (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/279\"\u003e#279\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🐛 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(test)\u003c/em\u003e Conditionalize a zip64 doctest (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/308\"\u003e#308\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix failing tests, remove symlink loop check\u003c/li\u003e\n\u003cli\u003eCanonicalize output path to avoid false negatives\u003c/li\u003e\n\u003cli\u003eSymlink handling in stream extraction\u003c/li\u003e\n\u003cli\u003eCanonicalize output paths and symlink targets, and ensure they descend from the destination\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e⚙️ Miscellaneous Tasks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix clippy and cargo fmt warnings (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/310\"\u003e#310\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.2.3\u003c/h2\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🚜 Refactor\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eChange the inner structure of \u003ccode\u003eDateTime\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/267\"\u003e#267\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e⚙️ Miscellaneous Tasks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ecargo fix --edition\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/zip-rs/zip2/blob/master/CHANGELOG.md\"\u003ezip's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/zip-rs/zip2/compare/v2.2.3...v2.3.0\"\u003e2.3.0\u003c/a\u003e - 2025-03-16\u003c/h2\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for NTFS extra field (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/279\"\u003e#279\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🐛 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(test)\u003c/em\u003e Conditionalize a zip64 doctest (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/308\"\u003e#308\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix failing tests, remove symlink loop check\u003c/li\u003e\n\u003cli\u003eCanonicalize output path to avoid false negatives\u003c/li\u003e\n\u003cli\u003eSymlink handling in stream extraction\u003c/li\u003e\n\u003cli\u003eCanonicalize output paths and symlink targets, and ensure they descend from the destination (\u003ca href=\"https://github.com/zip-rs/zip2/security/advisories/GHSA-94vh-gphv-8pm8\"\u003eCVE-2025-29787\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e⚙️ Miscellaneous Tasks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix clippy and cargo fmt warnings (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/310\"\u003e#310\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/zip-rs/zip2/compare/v2.2.2...v2.2.3\"\u003e2.2.3\u003c/a\u003e - 2025-02-26\u003c/h2\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🚜 Refactor\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eChange the inner structure of \u003ccode\u003eDateTime\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/267\"\u003e#267\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e⚙️ Miscellaneous Tasks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ecargo fix --edition\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/6eab5f5cc64cf051f2712428745ca2fea088097c\"\u003e\u003ccode\u003e6eab5f5\u003c/code\u003e\u003c/a\u003e chore: release v2.3.0 (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/300\"\u003e#300\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/e4aee2050f4fb303ea8d6c56b0b70434265517a9\"\u003e\u003ccode\u003ee4aee20\u003c/code\u003e\u003c/a\u003e implement \u003ccode\u003eZipFile::options\u003c/code\u003e + refactor options normalization (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/305\"\u003e#305\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/ea8a7bba241731cd6aefd7705fd527e5b2928213\"\u003e\u003ccode\u003eea8a7bb\u003c/code\u003e\u003c/a\u003e fix(test): Conditionalize a zip64 doctest (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/308\"\u003e#308\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/365c81a39f526173b534c9de3a4302107fd51cd5\"\u003e\u003ccode\u003e365c81a\u003c/code\u003e\u003c/a\u003e Use \u003ccode\u003exz2\u003c/code\u003e crate instead of a custom implementation (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/306\"\u003e#306\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/ae94b3452b9d92cbf955c3117eddbb0326acacdd\"\u003e\u003ccode\u003eae94b34\u003c/code\u003e\u003c/a\u003e chore: Fix clippy and cargo fmt warnings (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/310\"\u003e#310\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/a2e062f37066c3b12860a32eb1cb44856cfb7afe\"\u003e\u003ccode\u003ea2e062f\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/0199ac2cb8e9a5d7e645e53d51838655d8e15148\"\u003e\u003ccode\u003e0199ac2\u003c/code\u003e\u003c/a\u003e Simplify handling for symlink targets\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/977bb9479d7aadbc10b8c04533bd37121f9cd34b\"\u003e\u003ccode\u003e977bb94\u003c/code\u003e\u003c/a\u003e fix failing tests, remove symlink loop check\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/3cb29e70d15af93a117f0d4d1bba736d2923c844\"\u003e\u003ccode\u003e3cb29e7\u003c/code\u003e\u003c/a\u003e Partial fix for tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/2182b0768633e58b6292af9e2633d920b499850b\"\u003e\u003ccode\u003e2182b07\u003c/code\u003e\u003c/a\u003e Refactor\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/zip-rs/zip2/compare/v2.2.2...v2.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `git2` from 0.20.0 to 0.20.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/git2-rs/blob/git2-0.20.4/CHANGELOG.md\"\u003egit2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.20.4 - 2026-02-02\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/compare/git2-0.20.3...git2-0.20.4\"\u003e0.20.3...0.20.4\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix undefined behavior when dereferencing empty \u003ccode\u003eBuf\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1213\"\u003e#1213\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.20.3 - 2025-12-06\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/compare/git2-0.20.2...git2-0.20.3\"\u003e0.20.2...0.20.3\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBumped requirement to libgit2-sys 0.18.3, which updates libgit2 from 1.9.0 to 1.9.2.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1197\"\u003e#1197\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.20.2 - 2025-05-05\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/compare/git2-0.20.1...git2-0.20.2\"\u003e0.20.1...0.20.2\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eStatus::WT_UNREADABLE\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1151\"\u003e#1151\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded missing codes for \u003ccode\u003eGIT_EDIRECTORY\u003c/code\u003e, \u003ccode\u003eGIT_EMERGECONFLICT\u003c/code\u003e, \u003ccode\u003eGIT_EUNCHANGED\u003c/code\u003e, \u003ccode\u003eGIT_ENOTSUPPORTED\u003c/code\u003e, and \u003ccode\u003eGIT_EREADONLY\u003c/code\u003e to \u003ccode\u003eError::raw_code\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1153\"\u003e#1153\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed missing initialization in \u003ccode\u003eIndexer::new\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1160\"\u003e#1160\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.20.1 - 2025-03-17\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/compare/git2-0.20.0...git2-0.20.1\"\u003e0.20.0...0.20.1\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eRepository::branch_upstream_merge()\u003c/code\u003e\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1131\"\u003e#1131\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eIndex::conflict_get()\u003c/code\u003e\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1134\"\u003e#1134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eIndex::conflict_remove()\u003c/code\u003e\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1133\"\u003e#1133\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eopts::set_cache_object_limit()\u003c/code\u003e\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1118\"\u003e#1118\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eRepo::merge_file_from_index()\u003c/code\u003e and associated \u003ccode\u003eMergeFileOptions\u003c/code\u003e and \u003ccode\u003eMergeFileResult\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1062\"\u003e#1062\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe \u003ccode\u003eurl\u003c/code\u003e dependency minimum raised to 2.5.4\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/8852d7dabd38d0df6d4524e04a1c2ee520ac7203\"\u003e\u003ccode\u003e8852d7d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/issues/1214\"\u003e#1214\u003c/a\u003e from weihanglo/backport-from-raw-parts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/0b274f76f70f717c3bda4be1f79ba8e1cb11afd4\"\u003e\u003ccode\u003e0b274f7\u003c/code\u003e\u003c/a\u003e Bump to 0.20.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/73a5d5d7c49a7eb9d17c2ab6e40dafe3765ebf4d\"\u003e\u003ccode\u003e73a5d5d\u003c/code\u003e\u003c/a\u003e Add test for dereference of an empty Buf\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/ce566831eb188b0fdb27962e154b8da6103071bf\"\u003e\u003ccode\u003ece56683\u003c/code\u003e\u003c/a\u003e fix: check ptr nullity before calling from_raw_parts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/7cf345c4f7967b7da3c728db6766362e51540cbe\"\u003e\u003ccode\u003e7cf345c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/issues/1197\"\u003e#1197\u003c/a\u003e from ehuss/git2-0.20-br\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/dd41077750fe30bf780c9e7f7ab4717d264e098d\"\u003e\u003ccode\u003edd41077\u003c/code\u003e\u003c/a\u003e Bump git2 to 0.20.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/a6a58e2b0fd409ae33f2f6a68927ce62ebd114f0\"\u003e\u003ccode\u003ea6a58e2\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/issues/1195\"\u003e#1195\u003c/a\u003e from ehuss/update-libgit2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/1fb5f64819a9f5b175e0fb09dc369d0a2ccd355a\"\u003e\u003ccode\u003e1fb5f64\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/issues/1161\"\u003e#1161\u003c/a\u003e from ehuss/bump-version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/26bfd30ef25e6f7d7eab361f0ab118df3d1f6161\"\u003e\u003ccode\u003e26bfd30\u003c/code\u003e\u003c/a\u003e Update version of git2 to 0.20.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/eef4592abf3f688e1058e00b9297f6baf9026f22\"\u003e\u003ccode\u003eeef4592\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/issues/1160\"\u003e#1160\u003c/a\u003e from ehuss/indexer-init\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-lang/git2-rs/compare/git2-0.20.0...git2-0.20.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ammonia` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-ammonia/ammonia/releases\"\u003eammonia's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: unexpected namespace switches after cleanup can cause mXSS (reported by \u003ca href=\"mailto:zzm0902@shu.edu.cn\"\u003ezzm0902@shu.edu.cn\u003c/a\u003e, backport 4.1.2)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-ammonia/ammonia/blob/master/CHANGELOG.md\"\u003eammonia's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e4.0.1\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix: unexpected namespace switches after cleanup can cause mXSS (backport 4.1.2)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-ammonia/ammonia/commit/05b13afb77d98c4918e3ef9ddb170f69c84b463b\"\u003e\u003ccode\u003e05b13af\u003c/code\u003e\u003c/a\u003e Release 4.0.1 with security fix\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rust-ammonia/ammonia/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `crossbeam-channel` from 0.5.14 to 0.5.15\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/crossbeam-rs/crossbeam/releases\"\u003ecrossbeam-channel's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ecrossbeam-channel 0.5.15\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix regression introduced in 0.5.12 that can lead to a double free when dropping unbounded channel. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1187\"\u003e#1187\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/d35ffde18a76ae9667f602d8c0127ff89ac2e4d4\"\u003e\u003ccode\u003ed35ffde\u003c/code\u003e\u003c/a\u003e Prepare for the next release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/6ec74ecae896df5fc239518b45a1bfd258c9db68\"\u003e\u003ccode\u003e6ec74ec\u003c/code\u003e\u003c/a\u003e crossbeam-channel: prevent double free on Drop (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1187\"\u003e#1187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/crossbeam-rs/crossbeam/compare/crossbeam-channel-0.5.14...crossbeam-channel-0.5.15\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openssl` from 0.10.70 to 0.10.79\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-openssl/rust-openssl/releases\"\u003eopenssl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eopenssl-v0.10.79\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/cache from 5.0.4 to 5.0.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2610\"\u003erust-openssl/rust-openssl#2610\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTry to fix OpenSSL 1.1.0l download by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2614\"\u003erust-openssl/rust-openssl#2614\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRequire \u0026amp;mut BigNumContextRef for EcPointRef mul/invert by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2615\"\u003erust-openssl/rust-openssl#2615\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix UB in EcGroupRef::generator on groups without a generator by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2617\"\u003erust-openssl/rust-openssl#2617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace \u003ccode\u003euse libc::*;\u003c/code\u003e with targeted imports in openssl-sys by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2618\"\u003erust-openssl/rust-openssl#2618\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKeyRef::is_a and KeyType for name-based key identification by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2619\"\u003erust-openssl/rust-openssl#2619\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKey::{public,private}_key_from_raw_bytes_ex by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2620\"\u003erust-openssl/rust-openssl#2620\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump MSRV to 1.80 by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2622\"\u003erust-openssl/rust-openssl#2622\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop once_cell in favor of std::sync::{LazyLock, OnceLock} by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2623\"\u003erust-openssl/rust-openssl#2623\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKey::private_key_from_seed for ML-DSA/ML-KEM key import by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2621\"\u003erust-openssl/rust-openssl#2621\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eparallelize more builds in CI for cold caches by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2625\"\u003erust-openssl/rust-openssl#2625\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2626\"\u003erust-openssl/rust-openssl#2626\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix process abort when verify/PSK callbacks fire after SSL_CTX swap by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2624\"\u003erust-openssl/rust-openssl#2624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBind OSSL_PARAM_modified and use it for seed_into by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2628\"\u003erust-openssl/rust-openssl#2628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PkeyCtxRef::set_context_string for ML-DSA by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2629\"\u003erust-openssl/rust-openssl#2629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2631\"\u003erust-openssl/rust-openssl#2631\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix output buffer overflow for AES key-wrap-with-padding ciphers by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2630\"\u003erust-openssl/rust-openssl#2630\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl 0.10.79 and openssl-sys 0.9.115 by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2632\"\u003erust-openssl/rust-openssl#2632\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.78...openssl-v0.10.79\"\u003ehttps://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.78...openssl-v0.10.79\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eopenssl-v0.10.78\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix Suite B flag assignments in verify.rs by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2592\"\u003erust-openssl/rust-openssl#2592\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse cvt_p for OPENSSL_malloc error handling by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2593\"\u003erust-openssl/rust-openssl#2593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMark BIO_get_mem_data on AWS-LC to be unsafe by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2594\"\u003erust-openssl/rust-openssl#2594\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSet timeout for package installation step by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2595\"\u003erust-openssl/rust-openssl#2595\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePanic in Crypter::new when IV is required but not provided by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2596\"\u003erust-openssl/rust-openssl#2596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eopenssl 4 support by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2591\"\u003erust-openssl/rust-openssl#2591\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid panic for overlong OIDs by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2598\"\u003erust-openssl/rust-openssl#2598\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix dangling stack pointer in custom extension add callback by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2599\"\u003erust-openssl/rust-openssl#2599\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for LibreSSL 4.3.x by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2603\"\u003erust-openssl/rust-openssl#2603\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix inverted bounds assertion in AES key unwrap by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2604\"\u003erust-openssl/rust-openssl#2604\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject oversized length returns from password callback trampoline by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2605\"\u003erust-openssl/rust-openssl#2605\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eValidate callback-returned lengths in PSK and cookie trampolines by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2607\"\u003erust-openssl/rust-openssl#2607\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eError for short out in MdCtxRef::digest_final() by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2608\"\u003erust-openssl/rust-openssl#2608\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck derive output buffer length on OpenSSL 1.1.x by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2606\"\u003erust-openssl/rust-openssl#2606\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl v0.10.78 and openssl-sys v0.9.114 by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2609\"\u003erust-openssl/rust-openssl#2609\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.77...openssl-v0.10.78\"\u003ehttps://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.77...openssl-v0.10.78\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eopenssl-v0.10.77\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCI: Hash-pin all action usage, avoid credential persistence in actions/checkout by \u003ca href=\"https://github.com/woodruffw\"\u003e\u003ccode\u003e@​woodruffw\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2587\"\u003erust-openssl/rust-openssl#2587\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump aws-lc-sys to 0.39 by \u003ca href=\"https://github.com/goffrie\"\u003e\u003ccode\u003e@​goffrie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2588\"\u003erust-openssl/rust-openssl#2588\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emd_ctx: enable sign/verify/reset on BoringSSL, LibreSSL, and AWS-LC by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2589\"\u003erust-openssl/rust-openssl#2589\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/649f2d9e37f3aa701e20bd8ab5cd7eb5afa0a90f\"\u003e\u003ccode\u003e649f2d9\u003c/code\u003e\u003c/a\u003e Release openssl 0.10.79 and openssl-sys 0.9.115 (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2632\"\u003e#2632\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/257f9b20c001b888986f93579f118fa2a57d4f45\"\u003e\u003ccode\u003e257f9b2\u003c/code\u003e\u003c/a\u003e Fix output buffer overflow for AES key-wrap-with-padding ciphers (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2630\"\u003e#2630\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/d43e9179b1885fc66269a42361cc7a80f631ac8f\"\u003e\u003ccode\u003ed43e917\u003c/code\u003e\u003c/a\u003e Reject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2631\"\u003e#2631\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/f46519c8694a3e121091dafe38aab77c2f756546\"\u003e\u003ccode\u003ef46519c\u003c/code\u003e\u003c/a\u003e Add PkeyCtxRef::set_context_string for ML-DSA (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2629\"\u003e#2629\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/ad9ae312771f898749a9471549519d45eba6a033\"\u003e\u003ccode\u003ead9ae31\u003c/code\u003e\u003c/a\u003e Bind OSSL_PARAM_modified and use it for seed_into (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2628\"\u003e#2628\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/4e25c9be20dae1e78f1a3815950cd0973addae82\"\u003e\u003ccode\u003e4e25c9b\u003c/code\u003e\u003c/a\u003e Fix process abort when verify/PSK callbacks fire after SSL_CTX swap (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2624\"\u003e#2624\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/3dd8f425ef34a069b5bec46f3971b67db1c295c7\"\u003e\u003ccode\u003e3dd8f42\u003c/code\u003e\u003c/a\u003e Add PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2626\"\u003e#2626\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/2c5e5a8f1483d5ec85580c07f721de9057d58e69\"\u003e\u003ccode\u003e2c5e5a8\u003c/code\u003e\u003c/a\u003e parallelize more builds in CI for cold caches (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2625\"\u003e#2625\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/668559171168538cd190574373abfc9e120263ca\"\u003e\u003ccode\u003e6685591\u003c/code\u003e\u003c/a\u003e Add PKey::private_key_from_seed for ML-DSA/ML-KEM key import (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2621\"\u003e#2621\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/8f8fdce627fb3c553673b8c688d9f1dc10ea0cc8\"\u003e\u003ccode\u003e8f8fdce\u003c/code\u003e\u003c/a\u003e Drop once_cell in favor of std::sync::{LazyLock, OnceLock} (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2623\"\u003e#2623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.70...openssl-v0.10.79\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `quinn-proto` from 0.11.9 to 0.11.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quinn-rs/quinn/releases\"\u003equinn-proto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003equinn-proto 0.11.14\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jxs\"\u003e\u003ccode\u003e@​jxs\u003c/code\u003e\u003c/a\u003e reported a denial of service issue in quinn-proto 5 days ago:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\"\u003ehttps://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eWe coordinated with them to release this version to patch the issue. Unfortunately the maintainers missed these issues during code review and we did not have enough fuzzing coverage -- we regret the oversight and have added an additional fuzzing target.\u003c/p\u003e\n\u003cp\u003eOrganizations that want to participate in coordinated disclosure can contact us privately to discuss terms.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix over-permissive proto dependency edge by \u003ca href=\"https://github.com/Ralith\"\u003e\u003ccode\u003e@​Ralith\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2385\"\u003equinn-rs/quinn#2385\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e0.11.x: avoid unwrapping VarInt decoding during parameter parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2559\"\u003equinn-rs/quinn#2559\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003equinn-proto 0.11.11\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrefer sending extra ping again by \u003ca href=\"https://github.com/flub\"\u003e\u003ccode\u003e@​flub\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2172\"\u003equinn-rs/quinn#2172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Do not produce tail-loss probes larger than segment size by \u003ca href=\"https://github.com/flub\"\u003e\u003ccode\u003e@​flub\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2167\"\u003equinn-rs/quinn#2167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid inference hazard for integer comparisons by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2188\"\u003equinn-rs/quinn#2188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: respecting max_datagrams in poll_transmit by \u003ca href=\"https://github.com/filipe-cantarelli\"\u003e\u003ccode\u003e@​filipe-cantarelli\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2185\"\u003equinn-rs/quinn#2185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the quinn-proto version to 0.11.11 for release by \u003ca href=\"https://github.com/faern\"\u003e\u003ccode\u003e@​faern\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2209\"\u003equinn-rs/quinn#2209\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/2c315aa7f9c2a6c1db87f8f51f40623a427c78fd\"\u003e\u003ccode\u003e2c315aa\u003c/code\u003e\u003c/a\u003e proto: bump version to 0.11.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8ad47f431e7deb82c08b09c2e33ef85aa88fd212\"\u003e\u003ccode\u003e8ad47f4\u003c/code\u003e\u003c/a\u003e Use newer rustls-pki-types PEM parser API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c81c0289abe30d8437ccbf9b6304e2bc9c707cea\"\u003e\u003ccode\u003ec81c028\u003c/code\u003e\u003c/a\u003e ci: fix workflow syntax\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/0050172969f7e69e136c433181330da7790d8d73\"\u003e\u003ccode\u003e0050172\u003c/code\u003e\u003c/a\u003e ci: pin wasm-bindgen-cli version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8a6f82c58d1c565eab78f986e614223e6ed76a85\"\u003e\u003ccode\u003e8a6f82c\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/e52db4ad8df0f9720e7b0e32ecc0e48c9a93de0f\"\u003e\u003ccode\u003ee52db4a\u003c/code\u003e\u003c/a\u003e Apply suggestions from clippy 1.91\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/6df7275c582ca9b7225e0ccf9f9871a55eb73155\"\u003e\u003ccode\u003e6df7275\u003c/code\u003e\u003c/a\u003e chore: Fix \u003ccode\u003eunnecessary_unwrap\u003c/code\u003e clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c8eefa07e087b06d8f2b78ff262ce8ac952994f1\"\u003e\u003ccode\u003ec8eefa0\u003c/code\u003e\u003c/a\u003e proto: avoid unwrapping varint decoding during parameters parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/9723a977754c8662001b0fef97aab8f3ddf1df92\"\u003e\u003ccode\u003e9723a97\u003c/code\u003e\u003c/a\u003e fuzz: add fuzzing target for parsing transport parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/eaf0ef30252cef4acec21f150427e604cd4271c9\"\u003e\u003ccode\u003eeaf0ef3\u003c/code\u003e\u003c/a\u003e Fix over-permissive proto dependency edge (\u003ca href=\"https://redirect.github.com/quinn-rs/quinn/issues/2385\"\u003e#2385\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quinn-rs/quinn/compare/quinn-proto-0.11.9...quinn-proto-0.11.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ring` from 0.17.8 to 0.17.14\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/briansmith/ring/blob/main/RELEASES.md\"\u003ering's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eVersion 0.17.14 (2025-03-11)\u003c/h1\u003e\n\u003cp\u003eFixed a performance bug in the AVX2-based AES-GCM implementation added in\n\u003cem\u003ering\u003c/em\u003e 0.17.13. This will be another notable performance improvement for most\nnewish x86-64 systems. The performance issue impacted not just AES-GCM.\u003c/p\u003e\n\u003cp\u003eCompatibility with GNU binutils 2.29 (used on Amazon Linux 2), and probably\neven earlier versions, was restored. It is expected that \u003cem\u003ering\u003c/em\u003e 0.17.14 will\nbuild on all the systems that 0.17.12 would build on.\u003c/p\u003e\n\u003ch1\u003eVersion 0.17.13 (2025-03-06)\u003c/h1\u003e\n\u003cp\u003eIncreased MSRV to 1.66.0 to avoid bugs in earlier versions so that we can\nsafely use \u003ccode\u003ecore::arch::x86_64::__cpuid\u003c/code\u003e and \u003ccode\u003ecore::arch::x86::__cpuid\u003c/code\u003e from\nRust in future releases.\u003c/p\u003e\n\u003cp\u003eAVX2-based VAES-CLMUL implementation. This will be a notable performance\nimprovement for most newish x86-64 systems. This will likely raise the minimum\nbinutils version supported for very old Linux distros.\u003c/p\u003e\n\u003ch1\u003eVersion 0.17.12 (2025-03-05)\u003c/h1\u003e\n\u003cp\u003eBug fix: \u003ca href=\"https://redirect.github.com/briansmith/ring/pull/2447\"\u003ebriansmith/ring#2447\u003c/a\u003e for denial of service (DoS).\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFixes a panic in \u003ccode\u003ering::aead::quic::HeaderProtectionKey::new_mask()\u003c/code\u003e when\ninteger overflow checking is enabled. In the QUIC protocol, an attacker can\ninduce this panic by sending a specially-crafted packet. Even unintentionally\nit is likely to occur in 1 out of every 2**32 packets sent and/or received.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixes a panic on 64-bit targets in \u003ccode\u003ering::aead::{AES_128_GCM, AES_256_GCM}\u003c/code\u003e\nwhen overflow checking is enabled, when encrypting/decrypting approximately\n68,719,476,700 bytes (about 64 gigabytes) of data in a single chunk. Protocols\nlike TLS and SSH are not affected by this because those protocols break large\namounts of data into small chunks. Similarly, most applications will not\nattempt to encrypt/decrypt 64GB of data in one chunk.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eOverflow checking is not enabled in release mode by default, but\n\u003ccode\u003eRUSTFLAGS=\u0026quot;-C overflow-checks\u0026quot;\u003c/code\u003e or \u003ccode\u003eoverflow-checks = true\u003c/code\u003e in the Cargo.toml\nprofile can override this. Overflow checking is usually enabled by default in\ndebug mode.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/briansmith/ring/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.37 to 0.3.44\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.44\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.43\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.42\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.41\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.40\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.39\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.38\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003etime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.44 [2025-09-19]\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eComparisons of \u003ccode\u003ePrimitiveDateTime\u003c/code\u003e, \u003ccode\u003eUtcDateTime\u003c/code\u003e, and \u003ccode\u003eOffsetDateTime\u003c/code\u003e with differing signs (i.e.\none negative and one positive year) would return the inverse result of what was expected. This was\nintroduced in v0.3.42 and has been fixed.\u003c/li\u003e\n\u003cli\u003eType inference would fail due to feature unification when \u003ccode\u003ewasm-bindgen\u003c/code\u003e enabled \u003ccode\u003eserde_json\u003c/code\u003e.\nThis has been fixed by explicitly specifying the type in the relevant locations.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.43 [2025-09-02]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for \u003ccode\u003erand\u003c/code\u003e 0.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIn the \u003ccode\u003econvert\u003c/code\u003e module, any use of \u003ccode\u003eper\u003c/code\u003e with types that were not the same (such as\n\u003ccode\u003eNanosecond::per(Second)\u003c/code\u003e) would not compile due to a bug. This has been fixed.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.42 [2025-08-31]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eTime::duration_until\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eTime::duration_since\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eper_t\u003c/code\u003e method for all types in \u003ccode\u003etime::convert\u003c/code\u003e. This is similar to the existing \u003ccode\u003eper\u003c/code\u003e method, but\ncan return any of the primitive numeric types that can represent the result. This will cut down on\n\u003ccode\u003eas\u003c/code\u003e casts while ensuring correctness. Type inference isn't perfect, so you may need to provide a\ntype annotation in some situations.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eimpl PartialOrd for Month\u003c/code\u003e and \u003ccode\u003eimpl Ord for Month\u003c/code\u003e; this assumes the months are in the same year\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eSystemTimeExt\u003c/code\u003e trait, adding methods for checked arithmetic wi...\n\n_Description has been truncated_","html_url":"https://github.com/cyborg-ai-git/crates.io/pull/13","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/cyborg-ai-git%2Fcrates.io/issues/13","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/13/packages"},{"uuid":"4403727627","node_id":"PR_kwDORzChSs7ZZLSZ","number":10,"state":"closed","title":"chore(deps): bump the cargo group across 1 directory with 5 updates","user":"dependabot[bot]","labels":["dependencies","needs:issue","rust"],"assignees":[],"locked":false,"comments_count":4,"pull_request":true,"closed_at":"2026-05-08T07:06:55.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-08T04:15:32.000Z","updated_at":"2026-05-08T07:07:03.000Z","time_to_close":10283,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"cargo","update_count":5,"packages":[{"name":"bytes","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"quinn-proto","old_version":"0.11.13","new_version":"0.11.14","repository_url":"https://github.com/quinn-rs/quinn"},{"name":"rustls-webpki","old_version":"0.103.8","new_version":"0.103.13","repository_url":"https://github.com/rustls/webpki"},{"name":"tar","old_version":"0.4.44","new_version":"0.4.45","repository_url":"https://github.com/alexcrichton/tar-rs"},{"name":"time","old_version":"0.3.44","new_version":"0.3.47","repository_url":"https://github.com/time-rs/time"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 5 updates in the /packages/desktop/src-tauri directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.11.0` | `1.11.1` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.13` | `0.11.14` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.103.8` | `0.103.13` |\n| [tar](https://github.com/alexcrichton/tar-rs) | `0.4.44` | `0.4.45` |\n| [time](https://github.com/time-rs/time) | `0.3.44` | `0.3.47` |\n\n\nUpdates `bytes` from 1.11.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.11.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `quinn-proto` from 0.11.13 to 0.11.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quinn-rs/quinn/releases\"\u003equinn-proto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003equinn-proto 0.11.14\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jxs\"\u003e\u003ccode\u003e@​jxs\u003c/code\u003e\u003c/a\u003e reported a denial of service issue in quinn-proto 5 days ago:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\"\u003ehttps://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eWe coordinated with them to release this version to patch the issue. Unfortunately the maintainers missed these issues during code review and we did not have enough fuzzing coverage -- we regret the oversight and have added an additional fuzzing target.\u003c/p\u003e\n\u003cp\u003eOrganizations that want to participate in coordinated disclosure can contact us privately to discuss terms.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix over-permissive proto dependency edge by \u003ca href=\"https://github.com/Ralith\"\u003e\u003ccode\u003e@​Ralith\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2385\"\u003equinn-rs/quinn#2385\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e0.11.x: avoid unwrapping VarInt decoding during parameter parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2559\"\u003equinn-rs/quinn#2559\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/2c315aa7f9c2a6c1db87f8f51f40623a427c78fd\"\u003e\u003ccode\u003e2c315aa\u003c/code\u003e\u003c/a\u003e proto: bump version to 0.11.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8ad47f431e7deb82c08b09c2e33ef85aa88fd212\"\u003e\u003ccode\u003e8ad47f4\u003c/code\u003e\u003c/a\u003e Use newer rustls-pki-types PEM parser API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c81c0289abe30d8437ccbf9b6304e2bc9c707cea\"\u003e\u003ccode\u003ec81c028\u003c/code\u003e\u003c/a\u003e ci: fix workflow syntax\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/0050172969f7e69e136c433181330da7790d8d73\"\u003e\u003ccode\u003e0050172\u003c/code\u003e\u003c/a\u003e ci: pin wasm-bindgen-cli version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8a6f82c58d1c565eab78f986e614223e6ed76a85\"\u003e\u003ccode\u003e8a6f82c\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/e52db4ad8df0f9720e7b0e32ecc0e48c9a93de0f\"\u003e\u003ccode\u003ee52db4a\u003c/code\u003e\u003c/a\u003e Apply suggestions from clippy 1.91\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/6df7275c582ca9b7225e0ccf9f9871a55eb73155\"\u003e\u003ccode\u003e6df7275\u003c/code\u003e\u003c/a\u003e chore: Fix \u003ccode\u003eunnecessary_unwrap\u003c/code\u003e clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c8eefa07e087b06d8f2b78ff262ce8ac952994f1\"\u003e\u003ccode\u003ec8eefa0\u003c/code\u003e\u003c/a\u003e proto: avoid unwrapping varint decoding during parameters parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/9723a977754c8662001b0fef97aab8f3ddf1df92\"\u003e\u003ccode\u003e9723a97\u003c/code\u003e\u003c/a\u003e fuzz: add fuzzing target for parsing transport parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/eaf0ef30252cef4acec21f150427e604cd4271c9\"\u003e\u003ccode\u003eeaf0ef3\u003c/code\u003e\u003c/a\u003e Fix over-permissive proto dependency edge (\u003ca href=\"https://redirect.github.com/quinn-rs/quinn/issues/2385\"\u003e#2385\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quinn-rs/quinn/compare/quinn-proto-0.11.13...quinn-proto-0.11.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls-webpki` from 0.103.8 to 0.103.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rustls/webpki/releases\"\u003erustls-webpki's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.103.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix reachable panic in parsing a CRL\u003c/strong\u003e. This was reported to us as \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-82j2-j2ch-gfr8\"\u003eGHSA-82j2-j2ch-gfr8\u003c/a\u003e. Users who don't use CRLs are not affected.\u003c/li\u003e\n\u003cli\u003eFor name constraints on URI names, we incorrectly processed excluded subtrees in a way which inverted the desired meaning. See \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/471\"\u003erustls/webpki#471\u003c/a\u003e. This was a case missing in the fix for \u003ca href=\"https://github.com/advisories/GHSA-965h-392x-2mh5\"\u003ehttps://github.com/advisories/GHSA-965h-392x-2mh5\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eActually fail closed for URI matching against excluded subtrees by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/473\"\u003erustls/webpki#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.13 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/474\"\u003erustls/webpki#474\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.12\u003c/h2\u003e\n\u003cp\u003eThis release fixes two bugs in name constraint enforcement:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-965h-392x-2mh5\u003c/strong\u003e: name constraints for URI names were ignored and therefore accepted. URI name constraints are now rejected unconditionally. Note this library does not provide an API for asserting URI names, and URI name constraints are otherwise not implemented.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-xgp8-3hg3-c2mh\u003c/strong\u003e: permitted subtree name constraints for DNS names were accepted for certificates asserting a wildcard name. This was incorrect because, given a name constraint of \u003ccode\u003eaccept.example.com\u003c/code\u003e, \u003ccode\u003e*.example.com\u003c/code\u003e could feasibly allow a name of \u003ccode\u003ereject.example.com\u003c/code\u003e which is outside the constraint. This is very similar to \u003ca href=\"https://go.dev/issue/76442\"\u003eCVE-2025-61727\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSince name constraints are restrictions on otherwise properly-issued certificates, these bugs are reachable only after signature verification and require misissuance to exploit.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrepare 0.103.12 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/470\"\u003erustls/webpki#470\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.11\u003c/h2\u003e\n\u003cp\u003eIn response to \u003ca href=\"https://redirect.github.com/rustls/webpki/issues/464\"\u003e#464\u003c/a\u003e, we've slightly relaxed requirements for \u003ccode\u003eanchor_from_trust_cert()\u003c/code\u003e to ignore unknown extensions even if they're marked as critical. This only affects parsing a \u003ccode\u003eTrustAnchor\u003c/code\u003e from DER, for which most extensions are ignored anyway.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport parsing trust anchors with unknown critical extensions to 0.103 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/466\"\u003erustls/webpki#466\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.103.10\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eCorrect selection of candidate CRLs by Distribution Point and Issuing Distribution Point\u003c/strong\u003e. If a certificate had more than one \u003ccode\u003edistributionPoint\u003c/code\u003e, then only the first \u003ccode\u003edistributionPoint\u003c/code\u003e would be considered against each CRL's \u003ccode\u003eIssuingDistributionPoint\u003c/code\u003e \u003ccode\u003edistributionPoint\u003c/code\u003e, and then the certificate's subsequent \u003ccode\u003edistributionPoint\u003c/code\u003es would be ignored.\u003c/p\u003e\n\u003cp\u003eThe impact was that correctly provided CRLs would not be consulted to check revocation. With \u003ccode\u003eUnknownStatusPolicy::Deny\u003c/code\u003e (the default) this would lead to incorrect but safe \u003ccode\u003eError::UnknownRevocationStatus\u003c/code\u003e. With \u003ccode\u003eUnknownStatusPolicy::Allow\u003c/code\u003e this would lead to inappropriate acceptance of revoked certificates.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is thought to be of limited impact. This is because both the certificate and CRL are signed -- an attacker would need to compromise a trusted issuing authority to trigger this bug.  An attacker with such capabilities could likely bypass revocation checking through other more impactful means (such as publishing a valid, empty CRL.)\u003c/p\u003e\n\u003cp\u003eMore likely, this bug would be latent in normal use, and an attacker could leverage faulty revocation checking to continue using a revoked credential.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is identified by \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-pwjx-qhcg-rvj4\"\u003eGHSA-pwjx-qhcg-rvj4\u003c/a\u003e. Thank you to \u003ca href=\"https://github.com/1seal\"\u003e\u003ccode\u003e@​1seal\u003c/code\u003e\u003c/a\u003e for the report.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFreshen up rel-0.103 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/455\"\u003erustls/webpki#455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.10 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/458\"\u003erustls/webpki#458\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2879b2ce7a476181ac3050f73fe0835f04728e86\"\u003e\u003ccode\u003e2879b2c\u003c/code\u003e\u003c/a\u003e Prepare 0.103.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2c49773d823f48c87db30db7a66c25993c847007\"\u003e\u003ccode\u003e2c49773\u003c/code\u003e\u003c/a\u003e Improve tests for padding of \u003ccode\u003eBitStringFlags\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/4e3c0b393a7bfb9cbe6dcdc8309cbadf8ee00c51\"\u003e\u003ccode\u003e4e3c0b3\u003c/code\u003e\u003c/a\u003e Correct validation of BIT STRING constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/39c91d2525a542a7f651a1a62c3462e8115cc39e\"\u003e\u003ccode\u003e39c91d2\u003c/code\u003e\u003c/a\u003e Actually fail closed for URI matching against excluded subtrees\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/27131d476e2b68a537e629d6d012bef8dad6efd3\"\u003e\u003ccode\u003e27131d4\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/6ecb8769cde2246e761e058709421c14a7dee6b1\"\u003e\u003ccode\u003e6ecb876\u003c/code\u003e\u003c/a\u003e Clean up stuttery enum variant names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/318b3e6e03ca2bc21600ca6bb0d0c6439b9e6aeb\"\u003e\u003ccode\u003e318b3e6\u003c/code\u003e\u003c/a\u003e Ignore wildcard labels when matching name constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/12196229a327d3d670798688254bd3ea24aba24b\"\u003e\u003ccode\u003e1219622\u003c/code\u003e\u003c/a\u003e Rewrite constraint matching to avoid permissive catch-all branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/57bc62ce538c2d0d31d44b3eb8c58e6a0a764b47\"\u003e\u003ccode\u003e57bc62c\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/d0fa01ee0a76b7585c13ec43de5854955146ffef\"\u003e\u003ccode\u003ed0fa01e\u003c/code\u003e\u003c/a\u003e Allow parsing trust anchors with unknown criticial extensions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.8...v/0.103.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 0.4.44 to 0.4.45\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/096e3d16d14fefac51bc4d94d616b21546ea8bcc\"\u003e\u003ccode\u003e096e3d1\u003c/code\u003e\u003c/a\u003e Bump to 0.4.45 (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/443\"\u003e#443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/17b1fd84e632071cb8eef9d3709bf347bd266446\"\u003e\u003ccode\u003e17b1fd8\u003c/code\u003e\u003c/a\u003e archive: Prevent symlink-directory collision chmod attack (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/de1a5870e603758f430073688691165f21a33946\"\u003e\u003ccode\u003ede1a587\u003c/code\u003e\u003c/a\u003e archive: Unconditionally honor PAX size (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/441\"\u003e#441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/6071cbe74acefa8c8322809bfd43c825e5f16b60\"\u003e\u003ccode\u003e6071cbe\u003c/code\u003e\u003c/a\u003e ci: Consolidate workflows (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/439\"\u003e#439\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/ad1fde9edfb9657d17666bbec2933119ce527359\"\u003e\u003ccode\u003ead1fde9\u003c/code\u003e\u003c/a\u003e build-sys: Promote unused_code to an error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/c8cb250e8bc3f28bd69406b396bb8a92b40012c1\"\u003e\u003ccode\u003ec8cb250\u003c/code\u003e\u003c/a\u003e tests: Squash a warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/638c495a480d2a50099d55f445ece9e5f544b49d\"\u003e\u003ccode\u003e638c495\u003c/code\u003e\u003c/a\u003e ci: Add xtask infra + reverse dependency testing (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/435\"\u003e#435\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/32a9bbb26468cbdecbf73fe8eb249284d4a718ed\"\u003e\u003ccode\u003e32a9bbb\u003c/code\u003e\u003c/a\u003e tests: Add RandomReader to exercise partial-read resilience (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/436\"\u003e#436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/9c5df0bfd70d1b063516b90fca2cf2e0dbe8b758\"\u003e\u003ccode\u003e9c5df0b\u003c/code\u003e\u003c/a\u003e Fix GNU long-name extension stream corruption on validation error (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/88b1e3b0da65b0c5b9750d1a75516145488f4793\"\u003e\u003ccode\u003e88b1e3b\u003c/code\u003e\u003c/a\u003e Fix docs typo in header.rs (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alexcrichton/tar-rs/compare/0.4.44...0.4.45\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.44 to 0.3.47\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.47\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.46\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.45\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003etime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.47 [2026-02-05]\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eThe possibility of a stack exhaustion denial of service attack when parsing RFC 2822 has been\neliminated. Previously, it was possible to craft input that would cause unbounded recursion. Now,\nthe depth of the recursion is tracked, causing an error to be returned if it exceeds a reasonable\nlimit.\u003c/p\u003e\n\u003cp\u003eThis attack vector requires parsing user-provided input, with any type, using the RFC 2822 format.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCompatibility\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAttempting to format a value with a well-known format (i.e. RFC 3339, RFC 2822, or ISO 8601) will\nerror at compile time if the type being formatted does not provide sufficient information. This\nwould previously fail at runtime. Similarly, attempting to format a value with ISO 8601 that is\nonly configured for parsing (i.e. \u003ccode\u003eIso8601::PARSING\u003c/code\u003e) will error at compile time.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBuilder methods for format description modifiers, eliminating the need for verbose initialization\nwhen done manually.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edate!(2026-W01-2)\u003c/code\u003e is now supported. Previously, a space was required between \u003ccode\u003eW\u003c/code\u003e and \u003ccode\u003e01\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[end]\u003c/code\u003e now has a \u003ccode\u003etrailing_input\u003c/code\u003e modifier which can either be \u003ccode\u003eprohibit\u003c/code\u003e (the default) or\n\u003ccode\u003ediscard\u003c/code\u003e. When it is \u003ccode\u003ediscard\u003c/code\u003e, all remaining input is ignored. Note that if there are components\nafter \u003ccode\u003e[end]\u003c/code\u003e, they will still attempt to be parsed, likely resulting in an error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMore performance gains when parsing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIf manually formatting a value, the number of bytes written was one short for some components.\nThis has been fixed such that the number of bytes written is always correct.\u003c/li\u003e\n\u003cli\u003eThe possibility of integer overflow when parsing an owned format description has been effectively\neliminated. This would previously wrap when overflow checks were disabled. Instead of storing the\ndepth as \u003ccode\u003eu8\u003c/code\u003e, it is stored as \u003ccode\u003eu32\u003c/code\u003e. This would require multiple gigabytes of nested input to\noverflow, at which point we've got other problems and trivial mitigations are available by\ndownstream users.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.46 [2026-01-23]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAll possible panics are now documented for the relevant methods.\u003c/li\u003e\n\u003cli\u003eThe need to use \u003ccode\u003e#[serde(default)]\u003c/code\u003e when using custom \u003ccode\u003eserde\u003c/code\u003e formats is documented. This applies\nonly when deserializing an \u003ccode\u003eOption\u0026lt;T\u0026gt;\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDuration::nanoseconds_i128\u003c/code\u003e has been made public, mirroring\n\u003ccode\u003estd::time::Duration::from_nanos_u128\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/d5144cd2874862d46466c900910cd8577d066019\"\u003e\u003ccode\u003ed5144cd\u003c/code\u003e\u003c/a\u003e v0.3.47 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/f6206b050fd54817d8872834b4d61f605570e89b\"\u003e\u003ccode\u003ef6206b0\u003c/code\u003e\u003c/a\u003e Guard against integer overflow in release mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/1c63dc7985b8fa26bd8c689423cc56b7a03841ee\"\u003e\u003ccode\u003e1c63dc7\u003c/code\u003e\u003c/a\u003e Avoid denial of service when parsing Rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/5940df6e72efb63d246ca1ca59a0f836ad32ad8a\"\u003e\u003ccode\u003e5940df6\u003c/code\u003e\u003c/a\u003e Add builder methods to avoid verbose construction\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/00881a4da1bc5a6cb6313052e5017dbd7daa40f0\"\u003e\u003ccode\u003e00881a4\u003c/code\u003e\u003c/a\u003e Manually format macros everywhere\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/bb723b6d826e46c174d75cd08987061984b0ceb7\"\u003e\u003ccode\u003ebb723b6\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003etrailing_input\u003c/code\u003e modifier to \u003ccode\u003eend\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/31c4f8e0b56e6ae24fe0d6ef0e492b6741dda783\"\u003e\u003ccode\u003e31c4f8e\u003c/code\u003e\u003c/a\u003e Permit \u003ccode\u003eW12\u003c/code\u003e in \u003ccode\u003edate!\u003c/code\u003e macro\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/490a17bf306576850f33a86d3ca95d96db7b1dcd\"\u003e\u003ccode\u003e490a17b\u003c/code\u003e\u003c/a\u003e Mark error paths in well-known formats as cold\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6cb1896a600be1538ecfab8f233fe9cfe9fa8951\"\u003e\u003ccode\u003e6cb1896\u003c/code\u003e\u003c/a\u003e Optimize \u003ccode\u003eRfc2822\u003c/code\u003e parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6d264d59c25e3da0453c3defebf4640b0086a006\"\u003e\u003ccode\u003e6d264d5\u003c/code\u003e\u003c/a\u003e Remove erroneous \u003ccode\u003e#[inline(never)]\u003c/code\u003e attributes\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/time-rs/time/compare/v0.3.44...v0.3.47\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/StankySpence/opencode/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/StankySpence/opencode/pull/10","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/StankySpence%2Fopencode/issues/10","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/10/packages"},{"uuid":"4403351979","node_id":"PR_kwDOQ7Hris7ZX9XW","number":19,"state":"closed","title":"chore(deps): bump the cargo group across 1 directory with 5 updates","user":"dependabot[bot]","labels":["dependencies","needs:issue","rust"],"assignees":[],"locked":false,"comments_count":4,"pull_request":true,"closed_at":"2026-05-08T04:59:17.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-08T02:30:18.000Z","updated_at":"2026-05-08T04:59:26.000Z","time_to_close":8939,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"cargo","update_count":5,"packages":[{"name":"bytes","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"quinn-proto","old_version":"0.11.13","new_version":"0.11.14","repository_url":"https://github.com/quinn-rs/quinn"},{"name":"rustls-webpki","old_version":"0.103.8","new_version":"0.103.13","repository_url":"https://github.com/rustls/webpki"},{"name":"tar","old_version":"0.4.44","new_version":"0.4.45","repository_url":"https://github.com/alexcrichton/tar-rs"},{"name":"time","old_version":"0.3.44","new_version":"0.3.47","repository_url":"https://github.com/time-rs/time"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 5 updates in the /packages/desktop/src-tauri directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.11.0` | `1.11.1` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.13` | `0.11.14` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.103.8` | `0.103.13` |\n| [tar](https://github.com/alexcrichton/tar-rs) | `0.4.44` | `0.4.45` |\n| [time](https://github.com/time-rs/time) | `0.3.44` | `0.3.47` |\n\n\nUpdates `bytes` from 1.11.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.11.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `quinn-proto` from 0.11.13 to 0.11.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quinn-rs/quinn/releases\"\u003equinn-proto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003equinn-proto 0.11.14\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jxs\"\u003e\u003ccode\u003e@​jxs\u003c/code\u003e\u003c/a\u003e reported a denial of service issue in quinn-proto 5 days ago:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\"\u003ehttps://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eWe coordinated with them to release this version to patch the issue. Unfortunately the maintainers missed these issues during code review and we did not have enough fuzzing coverage -- we regret the oversight and have added an additional fuzzing target.\u003c/p\u003e\n\u003cp\u003eOrganizations that want to participate in coordinated disclosure can contact us privately to discuss terms.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix over-permissive proto dependency edge by \u003ca href=\"https://github.com/Ralith\"\u003e\u003ccode\u003e@​Ralith\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2385\"\u003equinn-rs/quinn#2385\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e0.11.x: avoid unwrapping VarInt decoding during parameter parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2559\"\u003equinn-rs/quinn#2559\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/2c315aa7f9c2a6c1db87f8f51f40623a427c78fd\"\u003e\u003ccode\u003e2c315aa\u003c/code\u003e\u003c/a\u003e proto: bump version to 0.11.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8ad47f431e7deb82c08b09c2e33ef85aa88fd212\"\u003e\u003ccode\u003e8ad47f4\u003c/code\u003e\u003c/a\u003e Use newer rustls-pki-types PEM parser API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c81c0289abe30d8437ccbf9b6304e2bc9c707cea\"\u003e\u003ccode\u003ec81c028\u003c/code\u003e\u003c/a\u003e ci: fix workflow syntax\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/0050172969f7e69e136c433181330da7790d8d73\"\u003e\u003ccode\u003e0050172\u003c/code\u003e\u003c/a\u003e ci: pin wasm-bindgen-cli version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8a6f82c58d1c565eab78f986e614223e6ed76a85\"\u003e\u003ccode\u003e8a6f82c\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/e52db4ad8df0f9720e7b0e32ecc0e48c9a93de0f\"\u003e\u003ccode\u003ee52db4a\u003c/code\u003e\u003c/a\u003e Apply suggestions from clippy 1.91\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/6df7275c582ca9b7225e0ccf9f9871a55eb73155\"\u003e\u003ccode\u003e6df7275\u003c/code\u003e\u003c/a\u003e chore: Fix \u003ccode\u003eunnecessary_unwrap\u003c/code\u003e clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c8eefa07e087b06d8f2b78ff262ce8ac952994f1\"\u003e\u003ccode\u003ec8eefa0\u003c/code\u003e\u003c/a\u003e proto: avoid unwrapping varint decoding during parameters parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/9723a977754c8662001b0fef97aab8f3ddf1df92\"\u003e\u003ccode\u003e9723a97\u003c/code\u003e\u003c/a\u003e fuzz: add fuzzing target for parsing transport parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/eaf0ef30252cef4acec21f150427e604cd4271c9\"\u003e\u003ccode\u003eeaf0ef3\u003c/code\u003e\u003c/a\u003e Fix over-permissive proto dependency edge (\u003ca href=\"https://redirect.github.com/quinn-rs/quinn/issues/2385\"\u003e#2385\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quinn-rs/quinn/compare/quinn-proto-0.11.13...quinn-proto-0.11.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls-webpki` from 0.103.8 to 0.103.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rustls/webpki/releases\"\u003erustls-webpki's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.103.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix reachable panic in parsing a CRL\u003c/strong\u003e. This was reported to us as \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-82j2-j2ch-gfr8\"\u003eGHSA-82j2-j2ch-gfr8\u003c/a\u003e. Users who don't use CRLs are not affected.\u003c/li\u003e\n\u003cli\u003eFor name constraints on URI names, we incorrectly processed excluded subtrees in a way which inverted the desired meaning. See \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/471\"\u003erustls/webpki#471\u003c/a\u003e. This was a case missing in the fix for \u003ca href=\"https://github.com/advisories/GHSA-965h-392x-2mh5\"\u003ehttps://github.com/advisories/GHSA-965h-392x-2mh5\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eActually fail closed for URI matching against excluded subtrees by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/473\"\u003erustls/webpki#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.13 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/474\"\u003erustls/webpki#474\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.12\u003c/h2\u003e\n\u003cp\u003eThis release fixes two bugs in name constraint enforcement:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-965h-392x-2mh5\u003c/strong\u003e: name constraints for URI names were ignored and therefore accepted. URI name constraints are now rejected unconditionally. Note this library does not provide an API for asserting URI names, and URI name constraints are otherwise not implemented.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-xgp8-3hg3-c2mh\u003c/strong\u003e: permitted subtree name constraints for DNS names were accepted for certificates asserting a wildcard name. This was incorrect because, given a name constraint of \u003ccode\u003eaccept.example.com\u003c/code\u003e, \u003ccode\u003e*.example.com\u003c/code\u003e could feasibly allow a name of \u003ccode\u003ereject.example.com\u003c/code\u003e which is outside the constraint. This is very similar to \u003ca href=\"https://go.dev/issue/76442\"\u003eCVE-2025-61727\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSince name constraints are restrictions on otherwise properly-issued certificates, these bugs are reachable only after signature verification and require misissuance to exploit.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrepare 0.103.12 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/470\"\u003erustls/webpki#470\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.11\u003c/h2\u003e\n\u003cp\u003eIn response to \u003ca href=\"https://redirect.github.com/rustls/webpki/issues/464\"\u003e#464\u003c/a\u003e, we've slightly relaxed requirements for \u003ccode\u003eanchor_from_trust_cert()\u003c/code\u003e to ignore unknown extensions even if they're marked as critical. This only affects parsing a \u003ccode\u003eTrustAnchor\u003c/code\u003e from DER, for which most extensions are ignored anyway.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport parsing trust anchors with unknown critical extensions to 0.103 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/466\"\u003erustls/webpki#466\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.103.10\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eCorrect selection of candidate CRLs by Distribution Point and Issuing Distribution Point\u003c/strong\u003e. If a certificate had more than one \u003ccode\u003edistributionPoint\u003c/code\u003e, then only the first \u003ccode\u003edistributionPoint\u003c/code\u003e would be considered against each CRL's \u003ccode\u003eIssuingDistributionPoint\u003c/code\u003e \u003ccode\u003edistributionPoint\u003c/code\u003e, and then the certificate's subsequent \u003ccode\u003edistributionPoint\u003c/code\u003es would be ignored.\u003c/p\u003e\n\u003cp\u003eThe impact was that correctly provided CRLs would not be consulted to check revocation. With \u003ccode\u003eUnknownStatusPolicy::Deny\u003c/code\u003e (the default) this would lead to incorrect but safe \u003ccode\u003eError::UnknownRevocationStatus\u003c/code\u003e. With \u003ccode\u003eUnknownStatusPolicy::Allow\u003c/code\u003e this would lead to inappropriate acceptance of revoked certificates.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is thought to be of limited impact. This is because both the certificate and CRL are signed -- an attacker would need to compromise a trusted issuing authority to trigger this bug.  An attacker with such capabilities could likely bypass revocation checking through other more impactful means (such as publishing a valid, empty CRL.)\u003c/p\u003e\n\u003cp\u003eMore likely, this bug would be latent in normal use, and an attacker could leverage faulty revocation checking to continue using a revoked credential.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is identified by \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-pwjx-qhcg-rvj4\"\u003eGHSA-pwjx-qhcg-rvj4\u003c/a\u003e. Thank you to \u003ca href=\"https://github.com/1seal\"\u003e\u003ccode\u003e@​1seal\u003c/code\u003e\u003c/a\u003e for the report.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFreshen up rel-0.103 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/455\"\u003erustls/webpki#455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.10 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/458\"\u003erustls/webpki#458\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2879b2ce7a476181ac3050f73fe0835f04728e86\"\u003e\u003ccode\u003e2879b2c\u003c/code\u003e\u003c/a\u003e Prepare 0.103.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2c49773d823f48c87db30db7a66c25993c847007\"\u003e\u003ccode\u003e2c49773\u003c/code\u003e\u003c/a\u003e Improve tests for padding of \u003ccode\u003eBitStringFlags\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/4e3c0b393a7bfb9cbe6dcdc8309cbadf8ee00c51\"\u003e\u003ccode\u003e4e3c0b3\u003c/code\u003e\u003c/a\u003e Correct validation of BIT STRING constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/39c91d2525a542a7f651a1a62c3462e8115cc39e\"\u003e\u003ccode\u003e39c91d2\u003c/code\u003e\u003c/a\u003e Actually fail closed for URI matching against excluded subtrees\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/27131d476e2b68a537e629d6d012bef8dad6efd3\"\u003e\u003ccode\u003e27131d4\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/6ecb8769cde2246e761e058709421c14a7dee6b1\"\u003e\u003ccode\u003e6ecb876\u003c/code\u003e\u003c/a\u003e Clean up stuttery enum variant names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/318b3e6e03ca2bc21600ca6bb0d0c6439b9e6aeb\"\u003e\u003ccode\u003e318b3e6\u003c/code\u003e\u003c/a\u003e Ignore wildcard labels when matching name constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/12196229a327d3d670798688254bd3ea24aba24b\"\u003e\u003ccode\u003e1219622\u003c/code\u003e\u003c/a\u003e Rewrite constraint matching to avoid permissive catch-all branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/57bc62ce538c2d0d31d44b3eb8c58e6a0a764b47\"\u003e\u003ccode\u003e57bc62c\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/d0fa01ee0a76b7585c13ec43de5854955146ffef\"\u003e\u003ccode\u003ed0fa01e\u003c/code\u003e\u003c/a\u003e Allow parsing trust anchors with unknown criticial extensions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.8...v/0.103.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 0.4.44 to 0.4.45\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/096e3d16d14fefac51bc4d94d616b21546ea8bcc\"\u003e\u003ccode\u003e096e3d1\u003c/code\u003e\u003c/a\u003e Bump to 0.4.45 (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/443\"\u003e#443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/17b1fd84e632071cb8eef9d3709bf347bd266446\"\u003e\u003ccode\u003e17b1fd8\u003c/code\u003e\u003c/a\u003e archive: Prevent symlink-directory collision chmod attack (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/de1a5870e603758f430073688691165f21a33946\"\u003e\u003ccode\u003ede1a587\u003c/code\u003e\u003c/a\u003e archive: Unconditionally honor PAX size (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/441\"\u003e#441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/6071cbe74acefa8c8322809bfd43c825e5f16b60\"\u003e\u003ccode\u003e6071cbe\u003c/code\u003e\u003c/a\u003e ci: Consolidate workflows (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/439\"\u003e#439\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/ad1fde9edfb9657d17666bbec2933119ce527359\"\u003e\u003ccode\u003ead1fde9\u003c/code\u003e\u003c/a\u003e build-sys: Promote unused_code to an error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/c8cb250e8bc3f28bd69406b396bb8a92b40012c1\"\u003e\u003ccode\u003ec8cb250\u003c/code\u003e\u003c/a\u003e tests: Squash a warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/638c495a480d2a50099d55f445ece9e5f544b49d\"\u003e\u003ccode\u003e638c495\u003c/code\u003e\u003c/a\u003e ci: Add xtask infra + reverse dependency testing (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/435\"\u003e#435\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/32a9bbb26468cbdecbf73fe8eb249284d4a718ed\"\u003e\u003ccode\u003e32a9bbb\u003c/code\u003e\u003c/a\u003e tests: Add RandomReader to exercise partial-read resilience (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/436\"\u003e#436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/9c5df0bfd70d1b063516b90fca2cf2e0dbe8b758\"\u003e\u003ccode\u003e9c5df0b\u003c/code\u003e\u003c/a\u003e Fix GNU long-name extension stream corruption on validation error (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/88b1e3b0da65b0c5b9750d1a75516145488f4793\"\u003e\u003ccode\u003e88b1e3b\u003c/code\u003e\u003c/a\u003e Fix docs typo in header.rs (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alexcrichton/tar-rs/compare/0.4.44...0.4.45\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.44 to 0.3.47\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.47\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.46\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.45\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003etime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.47 [2026-02-05]\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eThe possibility of a stack exhaustion denial of service attack when parsing RFC 2822 has been\neliminated. Previously, it was possible to craft input that would cause unbounded recursion. Now,\nthe depth of the recursion is tracked, causing an error to be returned if it exceeds a reasonable\nlimit.\u003c/p\u003e\n\u003cp\u003eThis attack vector requires parsing user-provided input, with any type, using the RFC 2822 format.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCompatibility\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAttempting to format a value with a well-known format (i.e. RFC 3339, RFC 2822, or ISO 8601) will\nerror at compile time if the type being formatted does not provide sufficient information. This\nwould previously fail at runtime. Similarly, attempting to format a value with ISO 8601 that is\nonly configured for parsing (i.e. \u003ccode\u003eIso8601::PARSING\u003c/code\u003e) will error at compile time.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBuilder methods for format description modifiers, eliminating the need for verbose initialization\nwhen done manually.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edate!(2026-W01-2)\u003c/code\u003e is now supported. Previously, a space was required between \u003ccode\u003eW\u003c/code\u003e and \u003ccode\u003e01\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[end]\u003c/code\u003e now has a \u003ccode\u003etrailing_input\u003c/code\u003e modifier which can either be \u003ccode\u003eprohibit\u003c/code\u003e (the default) or\n\u003ccode\u003ediscard\u003c/code\u003e. When it is \u003ccode\u003ediscard\u003c/code\u003e, all remaining input is ignored. Note that if there are components\nafter \u003ccode\u003e[end]\u003c/code\u003e, they will still attempt to be parsed, likely resulting in an error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMore performance gains when parsing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIf manually formatting a value, the number of bytes written was one short for some components.\nThis has been fixed such that the number of bytes written is always correct.\u003c/li\u003e\n\u003cli\u003eThe possibility of integer overflow when parsing an owned format description has been effectively\neliminated. This would previously wrap when overflow checks were disabled. Instead of storing the\ndepth as \u003ccode\u003eu8\u003c/code\u003e, it is stored as \u003ccode\u003eu32\u003c/code\u003e. This would require multiple gigabytes of nested input to\noverflow, at which point we've got other problems and trivial mitigations are available by\ndownstream users.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.46 [2026-01-23]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAll possible panics are now documented for the relevant methods.\u003c/li\u003e\n\u003cli\u003eThe need to use \u003ccode\u003e#[serde(default)]\u003c/code\u003e when using custom \u003ccode\u003eserde\u003c/code\u003e formats is documented. This applies\nonly when deserializing an \u003ccode\u003eOption\u0026lt;T\u0026gt;\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDuration::nanoseconds_i128\u003c/code\u003e has been made public, mirroring\n\u003ccode\u003estd::time::Duration::from_nanos_u128\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/d5144cd2874862d46466c900910cd8577d066019\"\u003e\u003ccode\u003ed5144cd\u003c/code\u003e\u003c/a\u003e v0.3.47 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/f6206b050fd54817d8872834b4d61f605570e89b\"\u003e\u003ccode\u003ef6206b0\u003c/code\u003e\u003c/a\u003e Guard against integer overflow in release mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/1c63dc7985b8fa26bd8c689423cc56b7a03841ee\"\u003e\u003ccode\u003e1c63dc7\u003c/code\u003e\u003c/a\u003e Avoid denial of service when parsing Rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/5940df6e72efb63d246ca1ca59a0f836ad32ad8a\"\u003e\u003ccode\u003e5940df6\u003c/code\u003e\u003c/a\u003e Add builder methods to avoid verbose construction\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/00881a4da1bc5a6cb6313052e5017dbd7daa40f0\"\u003e\u003ccode\u003e00881a4\u003c/code\u003e\u003c/a\u003e Manually format macros everywhere\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/bb723b6d826e46c174d75cd08987061984b0ceb7\"\u003e\u003ccode\u003ebb723b6\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003etrailing_input\u003c/code\u003e modifier to \u003ccode\u003eend\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/31c4f8e0b56e6ae24fe0d6ef0e492b6741dda783\"\u003e\u003ccode\u003e31c4f8e\u003c/code\u003e\u003c/a\u003e Permit \u003ccode\u003eW12\u003c/code\u003e in \u003ccode\u003edate!\u003c/code\u003e macro\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/490a17bf306576850f33a86d3ca95d96db7b1dcd\"\u003e\u003ccode\u003e490a17b\u003c/code\u003e\u003c/a\u003e Mark error paths in well-known formats as cold\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6cb1896a600be1538ecfab8f233fe9cfe9fa8951\"\u003e\u003ccode\u003e6cb1896\u003c/code\u003e\u003c/a\u003e Optimize \u003ccode\u003eRfc2822\u003c/code\u003e parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6d264d59c25e3da0453c3defebf4640b0086a006\"\u003e\u003ccode\u003e6d264d5\u003c/code\u003e\u003c/a\u003e Remove erroneous \u003ccode\u003e#[inline(never)]\u003c/code\u003e attributes\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/time-rs/time/compare/v0.3.44...v0.3.47\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/nordicfactory/lumicode/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/nordicfactory/lumicode/pull/19","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/nordicfactory%2Flumicode/issues/19","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/19/packages"},{"uuid":"4403244065","node_id":"PR_kwDOQKReU87ZXmu2","number":5,"state":"open","title":"chore(deps): bump the cargo group across 1 directory with 5 updates","user":"dependabot[bot]","labels":["dependencies","needs:compliance","needs:issue","rust"],"assignees":[],"locked":false,"comments_count":4,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-08T02:05:29.000Z","updated_at":"2026-05-08T06:04:36.497Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"cargo","update_count":5,"packages":[{"name":"bytes","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"quinn-proto","old_version":"0.11.13","new_version":"0.11.14","repository_url":"https://github.com/quinn-rs/quinn"},{"name":"rustls-webpki","old_version":"0.103.8","new_version":"0.103.13","repository_url":"https://github.com/rustls/webpki"},{"name":"tar","old_version":"0.4.44","new_version":"0.4.45","repository_url":"https://github.com/alexcrichton/tar-rs"},{"name":"time","old_version":"0.3.44","new_version":"0.3.47","repository_url":"https://github.com/time-rs/time"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 5 updates in the /packages/desktop/src-tauri directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.11.0` | `1.11.1` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.13` | `0.11.14` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.103.8` | `0.103.13` |\n| [tar](https://github.com/alexcrichton/tar-rs) | `0.4.44` | `0.4.45` |\n| [time](https://github.com/time-rs/time) | `0.3.44` | `0.3.47` |\n\n\nUpdates `bytes` from 1.11.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.11.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `quinn-proto` from 0.11.13 to 0.11.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quinn-rs/quinn/releases\"\u003equinn-proto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003equinn-proto 0.11.14\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jxs\"\u003e\u003ccode\u003e@​jxs\u003c/code\u003e\u003c/a\u003e reported a denial of service issue in quinn-proto 5 days ago:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\"\u003ehttps://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eWe coordinated with them to release this version to patch the issue. Unfortunately the maintainers missed these issues during code review and we did not have enough fuzzing coverage -- we regret the oversight and have added an additional fuzzing target.\u003c/p\u003e\n\u003cp\u003eOrganizations that want to participate in coordinated disclosure can contact us privately to discuss terms.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix over-permissive proto dependency edge by \u003ca href=\"https://github.com/Ralith\"\u003e\u003ccode\u003e@​Ralith\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2385\"\u003equinn-rs/quinn#2385\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e0.11.x: avoid unwrapping VarInt decoding during parameter parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2559\"\u003equinn-rs/quinn#2559\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/2c315aa7f9c2a6c1db87f8f51f40623a427c78fd\"\u003e\u003ccode\u003e2c315aa\u003c/code\u003e\u003c/a\u003e proto: bump version to 0.11.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8ad47f431e7deb82c08b09c2e33ef85aa88fd212\"\u003e\u003ccode\u003e8ad47f4\u003c/code\u003e\u003c/a\u003e Use newer rustls-pki-types PEM parser API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c81c0289abe30d8437ccbf9b6304e2bc9c707cea\"\u003e\u003ccode\u003ec81c028\u003c/code\u003e\u003c/a\u003e ci: fix workflow syntax\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/0050172969f7e69e136c433181330da7790d8d73\"\u003e\u003ccode\u003e0050172\u003c/code\u003e\u003c/a\u003e ci: pin wasm-bindgen-cli version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8a6f82c58d1c565eab78f986e614223e6ed76a85\"\u003e\u003ccode\u003e8a6f82c\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/e52db4ad8df0f9720e7b0e32ecc0e48c9a93de0f\"\u003e\u003ccode\u003ee52db4a\u003c/code\u003e\u003c/a\u003e Apply suggestions from clippy 1.91\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/6df7275c582ca9b7225e0ccf9f9871a55eb73155\"\u003e\u003ccode\u003e6df7275\u003c/code\u003e\u003c/a\u003e chore: Fix \u003ccode\u003eunnecessary_unwrap\u003c/code\u003e clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c8eefa07e087b06d8f2b78ff262ce8ac952994f1\"\u003e\u003ccode\u003ec8eefa0\u003c/code\u003e\u003c/a\u003e proto: avoid unwrapping varint decoding during parameters parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/9723a977754c8662001b0fef97aab8f3ddf1df92\"\u003e\u003ccode\u003e9723a97\u003c/code\u003e\u003c/a\u003e fuzz: add fuzzing target for parsing transport parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/eaf0ef30252cef4acec21f150427e604cd4271c9\"\u003e\u003ccode\u003eeaf0ef3\u003c/code\u003e\u003c/a\u003e Fix over-permissive proto dependency edge (\u003ca href=\"https://redirect.github.com/quinn-rs/quinn/issues/2385\"\u003e#2385\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quinn-rs/quinn/compare/quinn-proto-0.11.13...quinn-proto-0.11.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls-webpki` from 0.103.8 to 0.103.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rustls/webpki/releases\"\u003erustls-webpki's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.103.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix reachable panic in parsing a CRL\u003c/strong\u003e. This was reported to us as \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-82j2-j2ch-gfr8\"\u003eGHSA-82j2-j2ch-gfr8\u003c/a\u003e. Users who don't use CRLs are not affected.\u003c/li\u003e\n\u003cli\u003eFor name constraints on URI names, we incorrectly processed excluded subtrees in a way which inverted the desired meaning. See \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/471\"\u003erustls/webpki#471\u003c/a\u003e. This was a case missing in the fix for \u003ca href=\"https://github.com/advisories/GHSA-965h-392x-2mh5\"\u003ehttps://github.com/advisories/GHSA-965h-392x-2mh5\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eActually fail closed for URI matching against excluded subtrees by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/473\"\u003erustls/webpki#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.13 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/474\"\u003erustls/webpki#474\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.12\u003c/h2\u003e\n\u003cp\u003eThis release fixes two bugs in name constraint enforcement:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-965h-392x-2mh5\u003c/strong\u003e: name constraints for URI names were ignored and therefore accepted. URI name constraints are now rejected unconditionally. Note this library does not provide an API for asserting URI names, and URI name constraints are otherwise not implemented.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-xgp8-3hg3-c2mh\u003c/strong\u003e: permitted subtree name constraints for DNS names were accepted for certificates asserting a wildcard name. This was incorrect because, given a name constraint of \u003ccode\u003eaccept.example.com\u003c/code\u003e, \u003ccode\u003e*.example.com\u003c/code\u003e could feasibly allow a name of \u003ccode\u003ereject.example.com\u003c/code\u003e which is outside the constraint. This is very similar to \u003ca href=\"https://go.dev/issue/76442\"\u003eCVE-2025-61727\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSince name constraints are restrictions on otherwise properly-issued certificates, these bugs are reachable only after signature verification and require misissuance to exploit.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrepare 0.103.12 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/470\"\u003erustls/webpki#470\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.11\u003c/h2\u003e\n\u003cp\u003eIn response to \u003ca href=\"https://redirect.github.com/rustls/webpki/issues/464\"\u003e#464\u003c/a\u003e, we've slightly relaxed requirements for \u003ccode\u003eanchor_from_trust_cert()\u003c/code\u003e to ignore unknown extensions even if they're marked as critical. This only affects parsing a \u003ccode\u003eTrustAnchor\u003c/code\u003e from DER, for which most extensions are ignored anyway.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport parsing trust anchors with unknown critical extensions to 0.103 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/466\"\u003erustls/webpki#466\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.103.10\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eCorrect selection of candidate CRLs by Distribution Point and Issuing Distribution Point\u003c/strong\u003e. If a certificate had more than one \u003ccode\u003edistributionPoint\u003c/code\u003e, then only the first \u003ccode\u003edistributionPoint\u003c/code\u003e would be considered against each CRL's \u003ccode\u003eIssuingDistributionPoint\u003c/code\u003e \u003ccode\u003edistributionPoint\u003c/code\u003e, and then the certificate's subsequent \u003ccode\u003edistributionPoint\u003c/code\u003es would be ignored.\u003c/p\u003e\n\u003cp\u003eThe impact was that correctly provided CRLs would not be consulted to check revocation. With \u003ccode\u003eUnknownStatusPolicy::Deny\u003c/code\u003e (the default) this would lead to incorrect but safe \u003ccode\u003eError::UnknownRevocationStatus\u003c/code\u003e. With \u003ccode\u003eUnknownStatusPolicy::Allow\u003c/code\u003e this would lead to inappropriate acceptance of revoked certificates.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is thought to be of limited impact. This is because both the certificate and CRL are signed -- an attacker would need to compromise a trusted issuing authority to trigger this bug.  An attacker with such capabilities could likely bypass revocation checking through other more impactful means (such as publishing a valid, empty CRL.)\u003c/p\u003e\n\u003cp\u003eMore likely, this bug would be latent in normal use, and an attacker could leverage faulty revocation checking to continue using a revoked credential.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is identified by \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-pwjx-qhcg-rvj4\"\u003eGHSA-pwjx-qhcg-rvj4\u003c/a\u003e. Thank you to \u003ca href=\"https://github.com/1seal\"\u003e\u003ccode\u003e@​1seal\u003c/code\u003e\u003c/a\u003e for the report.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFreshen up rel-0.103 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/455\"\u003erustls/webpki#455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.10 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/458\"\u003erustls/webpki#458\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2879b2ce7a476181ac3050f73fe0835f04728e86\"\u003e\u003ccode\u003e2879b2c\u003c/code\u003e\u003c/a\u003e Prepare 0.103.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2c49773d823f48c87db30db7a66c25993c847007\"\u003e\u003ccode\u003e2c49773\u003c/code\u003e\u003c/a\u003e Improve tests for padding of \u003ccode\u003eBitStringFlags\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/4e3c0b393a7bfb9cbe6dcdc8309cbadf8ee00c51\"\u003e\u003ccode\u003e4e3c0b3\u003c/code\u003e\u003c/a\u003e Correct validation of BIT STRING constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/39c91d2525a542a7f651a1a62c3462e8115cc39e\"\u003e\u003ccode\u003e39c91d2\u003c/code\u003e\u003c/a\u003e Actually fail closed for URI matching against excluded subtrees\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/27131d476e2b68a537e629d6d012bef8dad6efd3\"\u003e\u003ccode\u003e27131d4\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/6ecb8769cde2246e761e058709421c14a7dee6b1\"\u003e\u003ccode\u003e6ecb876\u003c/code\u003e\u003c/a\u003e Clean up stuttery enum variant names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/318b3e6e03ca2bc21600ca6bb0d0c6439b9e6aeb\"\u003e\u003ccode\u003e318b3e6\u003c/code\u003e\u003c/a\u003e Ignore wildcard labels when matching name constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/12196229a327d3d670798688254bd3ea24aba24b\"\u003e\u003ccode\u003e1219622\u003c/code\u003e\u003c/a\u003e Rewrite constraint matching to avoid permissive catch-all branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/57bc62ce538c2d0d31d44b3eb8c58e6a0a764b47\"\u003e\u003ccode\u003e57bc62c\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/d0fa01ee0a76b7585c13ec43de5854955146ffef\"\u003e\u003ccode\u003ed0fa01e\u003c/code\u003e\u003c/a\u003e Allow parsing trust anchors with unknown criticial extensions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.8...v/0.103.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 0.4.44 to 0.4.45\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/096e3d16d14fefac51bc4d94d616b21546ea8bcc\"\u003e\u003ccode\u003e096e3d1\u003c/code\u003e\u003c/a\u003e Bump to 0.4.45 (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/443\"\u003e#443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/17b1fd84e632071cb8eef9d3709bf347bd266446\"\u003e\u003ccode\u003e17b1fd8\u003c/code\u003e\u003c/a\u003e archive: Prevent symlink-directory collision chmod attack (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/de1a5870e603758f430073688691165f21a33946\"\u003e\u003ccode\u003ede1a587\u003c/code\u003e\u003c/a\u003e archive: Unconditionally honor PAX size (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/441\"\u003e#441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/6071cbe74acefa8c8322809bfd43c825e5f16b60\"\u003e\u003ccode\u003e6071cbe\u003c/code\u003e\u003c/a\u003e ci: Consolidate workflows (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/439\"\u003e#439\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/ad1fde9edfb9657d17666bbec2933119ce527359\"\u003e\u003ccode\u003ead1fde9\u003c/code\u003e\u003c/a\u003e build-sys: Promote unused_code to an error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/c8cb250e8bc3f28bd69406b396bb8a92b40012c1\"\u003e\u003ccode\u003ec8cb250\u003c/code\u003e\u003c/a\u003e tests: Squash a warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/638c495a480d2a50099d55f445ece9e5f544b49d\"\u003e\u003ccode\u003e638c495\u003c/code\u003e\u003c/a\u003e ci: Add xtask infra + reverse dependency testing (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/435\"\u003e#435\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/32a9bbb26468cbdecbf73fe8eb249284d4a718ed\"\u003e\u003ccode\u003e32a9bbb\u003c/code\u003e\u003c/a\u003e tests: Add RandomReader to exercise partial-read resilience (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/436\"\u003e#436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/9c5df0bfd70d1b063516b90fca2cf2e0dbe8b758\"\u003e\u003ccode\u003e9c5df0b\u003c/code\u003e\u003c/a\u003e Fix GNU long-name extension stream corruption on validation error (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/88b1e3b0da65b0c5b9750d1a75516145488f4793\"\u003e\u003ccode\u003e88b1e3b\u003c/code\u003e\u003c/a\u003e Fix docs typo in header.rs (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alexcrichton/tar-rs/compare/0.4.44...0.4.45\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.44 to 0.3.47\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.47\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.46\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.45\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003etime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.47 [2026-02-05]\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eThe possibility of a stack exhaustion denial of service attack when parsing RFC 2822 has been\neliminated. Previously, it was possible to craft input that would cause unbounded recursion. Now,\nthe depth of the recursion is tracked, causing an error to be returned if it exceeds a reasonable\nlimit.\u003c/p\u003e\n\u003cp\u003eThis attack vector requires parsing user-provided input, with any type, using the RFC 2822 format.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCompatibility\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAttempting to format a value with a well-known format (i.e. RFC 3339, RFC 2822, or ISO 8601) will\nerror at compile time if the type being formatted does not provide sufficient information. This\nwould previously fail at runtime. Similarly, attempting to format a value with ISO 8601 that is\nonly configured for parsing (i.e. \u003ccode\u003eIso8601::PARSING\u003c/code\u003e) will error at compile time.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBuilder methods for format description modifiers, eliminating the need for verbose initialization\nwhen done manually.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edate!(2026-W01-2)\u003c/code\u003e is now supported. Previously, a space was required between \u003ccode\u003eW\u003c/code\u003e and \u003ccode\u003e01\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[end]\u003c/code\u003e now has a \u003ccode\u003etrailing_input\u003c/code\u003e modifier which can either be \u003ccode\u003eprohibit\u003c/code\u003e (the default) or\n\u003ccode\u003ediscard\u003c/code\u003e. When it is \u003ccode\u003ediscard\u003c/code\u003e, all remaining input is ignored. Note that if there are components\nafter \u003ccode\u003e[end]\u003c/code\u003e, they will still attempt to be parsed, likely resulting in an error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMore performance gains when parsing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIf manually formatting a value, the number of bytes written was one short for some components.\nThis has been fixed such that the number of bytes written is always correct.\u003c/li\u003e\n\u003cli\u003eThe possibility of integer overflow when parsing an owned format description has been effectively\neliminated. This would previously wrap when overflow checks were disabled. Instead of storing the\ndepth as \u003ccode\u003eu8\u003c/code\u003e, it is stored as \u003ccode\u003eu32\u003c/code\u003e. This would require multiple gigabytes of nested input to\noverflow, at which point we've got other problems and trivial mitigations are available by\ndownstream users.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.46 [2026-01-23]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAll possible panics are now documented for the relevant methods.\u003c/li\u003e\n\u003cli\u003eThe need to use \u003ccode\u003e#[serde(default)]\u003c/code\u003e when using custom \u003ccode\u003eserde\u003c/code\u003e formats is documented. This applies\nonly when deserializing an \u003ccode\u003eOption\u0026lt;T\u0026gt;\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDuration::nanoseconds_i128\u003c/code\u003e has been made public, mirroring\n\u003ccode\u003estd::time::Duration::from_nanos_u128\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/d5144cd2874862d46466c900910cd8577d066019\"\u003e\u003ccode\u003ed5144cd\u003c/code\u003e\u003c/a\u003e v0.3.47 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/f6206b050fd54817d8872834b4d61f605570e89b\"\u003e\u003ccode\u003ef6206b0\u003c/code\u003e\u003c/a\u003e Guard against integer overflow in release mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/1c63dc7985b8fa26bd8c689423cc56b7a03841ee\"\u003e\u003ccode\u003e1c63dc7\u003c/code\u003e\u003c/a\u003e Avoid denial of service when parsing Rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/5940df6e72efb63d246ca1ca59a0f836ad32ad8a\"\u003e\u003ccode\u003e5940df6\u003c/code\u003e\u003c/a\u003e Add builder methods to avoid verbose construction\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/00881a4da1bc5a6cb6313052e5017dbd7daa40f0\"\u003e\u003ccode\u003e00881a4\u003c/code\u003e\u003c/a\u003e Manually format macros everywhere\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/bb723b6d826e46c174d75cd08987061984b0ceb7\"\u003e\u003ccode\u003ebb723b6\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003etrailing_input\u003c/code\u003e modifier to \u003ccode\u003eend\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/31c4f8e0b56e6ae24fe0d6ef0e492b6741dda783\"\u003e\u003ccode\u003e31c4f8e\u003c/code\u003e\u003c/a\u003e Permit \u003ccode\u003eW12\u003c/code\u003e in \u003ccode\u003edate!\u003c/code\u003e macro\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/490a17bf306576850f33a86d3ca95d96db7b1dcd\"\u003e\u003ccode\u003e490a17b\u003c/code\u003e\u003c/a\u003e Mark error paths in well-known formats as cold\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6cb1896a600be1538ecfab8f233fe9cfe9fa8951\"\u003e\u003ccode\u003e6cb1896\u003c/code\u003e\u003c/a\u003e Optimize \u003ccode\u003eRfc2822\u003c/code\u003e parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6d264d59c25e3da0453c3defebf4640b0086a006\"\u003e\u003ccode\u003e6d264d5\u003c/code\u003e\u003c/a\u003e Remove erroneous \u003ccode\u003e#[inline(never)]\u003c/code\u003e attributes\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/time-rs/time/compare/v0.3.44...v0.3.47\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/iansherr/opencode/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/iansherr/opencode/pull/5","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/iansherr%2Fopencode/issues/5","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/5/packages"}],"issue_packages":[{"old_version":"1.11.0","new_version":"1.11.1","update_type":"patch","path":null,"pr_created_at":"2026-06-04T01:57:15.000Z","version_change":"1.11.0 → 1.11.1","issue":{"uuid":"4585116259","node_id":"PR_kwDOR2YRTc7ifcuv","number":14,"state":"open","title":"chore(deps): bump the all-dependencies group across 1 directory with 164 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-06-04T01:57:15.000Z","updated_at":"2026-06-04T01:57:16.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"all-dependencies","update_count":164,"packages":[{"name":"anyhow","old_version":"1.0.100","new_version":"1.0.102","repository_url":"https://github.com/dtolnay/anyhow"},{"name":"build_html","old_version":"2.7.0","new_version":"2.8.0","repository_url":"https://github.com/skubalj/build_html"},{"name":"chrono","old_version":"0.4.42","new_version":"0.4.44","repository_url":"https://github.com/chronotope/chrono"},{"name":"clap","old_version":"4.5.53","new_version":"4.5.60","repository_url":"https://github.com/clap-rs/clap"},{"name":"ctrlc","old_version":"3.5.1","new_version":"3.5.2","repository_url":"https://github.com/Detegr/rust-ctrlc"},{"name":"env_logger","old_version":"0.11.8","new_version":"0.11.10","repository_url":"https://github.com/rust-cli/env_logger"},{"name":"indexmap","old_version":"2.12.1","new_version":"2.14.0","repository_url":"https://github.com/indexmap-rs/indexmap"},{"name":"indicatif","old_version":"0.18.3","new_version":"0.18.4","repository_url":"https://github.com/console-rs/indicatif"},{"name":"log","old_version":"0.4.29","new_version":"0.4.30","repository_url":"https://github.com/rust-lang/log"},{"name":"once_cell","old_version":"1.21.3","new_version":"1.21.4","repository_url":"https://github.com/matklad/once_cell"},{"name":"openssl","old_version":"0.10.75","new_version":"0.10.80","repository_url":"https://github.com/rust-openssl/rust-openssl"},{"name":"rand","old_version":"0.9.2","new_version":"0.10.1","repository_url":"https://github.com/rust-random/rand"},{"name":"rand_regex","old_version":"0.18.1","new_version":"0.19.0","repository_url":"https://github.com/kennytm/rand_regex"},{"name":"regex","old_version":"1.12.2","new_version":"1.12.3","repository_url":"https://github.com/rust-lang/regex"},{"name":"reqwest","old_version":"0.12.28","new_version":"0.13.4","repository_url":"https://github.com/seanmonstar/reqwest"},{"name":"reqwest_cookie_store","old_version":"0.9.0","new_version":"0.10.0","repository_url":"https://github.com/pfernie/reqwest_cookie_store"},{"name":"serde_json","old_version":"1.0.148","new_version":"1.0.150","repository_url":"https://github.com/serde-rs/json"},{"name":"tempfile","old_version":"3.24.0","new_version":"3.27.0","repository_url":"https://github.com/Stebalien/tempfile"},{"name":"strum","old_version":"0.27.2","new_version":"0.28.0","repository_url":"https://github.com/Peternator7/strum"},{"name":"unicode-truncate","old_version":"2.0.0","new_version":"2.0.1","repository_url":"https://github.com/Aetf/unicode-truncate"},{"name":"url","old_version":"2.5.7","new_version":"2.5.8","repository_url":"https://github.com/servo/rust-url"},{"name":"z3","old_version":"0.19.7","new_version":"0.19.15","repository_url":"https://github.com/prove-rs/z3.rs"},{"name":"anstyle","old_version":"1.0.13","new_version":"1.0.14","repository_url":"https://github.com/rust-cli/anstyle"},{"name":"autocfg","old_version":"1.5.0","new_version":"1.5.1","repository_url":"https://github.com/cuviper/autocfg"},{"name":"bitflags","old_version":"2.10.0","new_version":"2.11.1","repository_url":"https://github.com/bitflags/bitflags"},{"name":"bumpalo","old_version":"3.19.1","new_version":"3.20.3","repository_url":"https://github.com/fitzgen/bumpalo"},{"name":"bytemuck","old_version":"1.24.0","new_version":"1.25.0","repository_url":"https://github.com/Lokathor/bytemuck"},{"name":"bytes","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"cc","old_version":"1.2.51","new_version":"1.2.62","repository_url":"https://github.com/rust-lang/cc-rs"},{"name":"cmake","old_version":"0.1.57","new_version":"0.1.58","repository_url":"https://github.com/rust-lang/cmake-rs"},{"name":"colorchoice","old_version":"1.0.4","new_version":"1.0.5","repository_url":"https://github.com/rust-cli/anstyle"},{"name":"console","old_version":"0.16.2","new_version":"0.16.3","repository_url":"https://github.com/console-rs/console"},{"name":"const_format","old_version":"0.2.35","new_version":"0.2.36","repository_url":"https://github.com/rodrimati1992/const_format_crates"},{"name":"cookie_store","old_version":"0.22.0","new_version":"0.22.1","repository_url":"https://github.com/pfernie/cookie_store"},{"name":"deflate64","old_version":"0.1.10","new_version":"0.1.12","repository_url":"https://github.com/anatawa12/deflate64-rs"},{"name":"deranged","old_version":"0.5.5","new_version":"0.5.8","repository_url":"https://github.com/jhpratt/deranged"},{"name":"dispatch2","old_version":"0.3.0","new_version":"0.3.1","repository_url":"https://github.com/madsmtm/objc2"},{"name":"displaydoc","old_version":"0.2.5","new_version":"0.2.6","repository_url":"https://github.com/yaahc/displaydoc"},{"name":"either","old_version":"1.15.0","new_version":"1.16.0","repository_url":"https://github.com/rayon-rs/either"},{"name":"erased-serde","old_version":"0.4.9","new_version":"0.4.10","repository_url":"https://github.com/dtolnay/erased-serde"},{"name":"fastbloom","old_version":"0.14.0","new_version":"0.14.1","repository_url":"https://github.com/tomtomwombat/fastbloom"},{"name":"fastrand","old_version":"2.3.0","new_version":"2.4.1","repository_url":"https://github.com/smol-rs/fastrand"},{"name":"flate2","old_version":"1.1.5","new_version":"1.1.9","repository_url":"https://github.com/rust-lang/flate2-rs"},{"name":"futures-core","old_version":"0.3.31","new_version":"0.3.32","repository_url":"https://github.com/rust-lang/futures-rs"},{"name":"futures-io","old_version":"0.3.31","new_version":"0.3.32","repository_url":"https://github.com/rust-lang/futures-rs"},{"name":"futures-sink","old_version":"0.3.31","new_version":"0.3.32","repository_url":"https://github.com/rust-lang/futures-rs"},{"name":"futures-task","old_version":"0.3.31","new_version":"0.3.32","repository_url":"https://github.com/rust-lang/futures-rs"},{"name":"futures-util","old_version":"0.3.31","new_version":"0.3.32","repository_url":"https://github.com/rust-lang/futures-rs"},{"name":"getrandom","old_version":"0.2.16","new_version":"0.2.17","repository_url":"https://github.com/rust-random/getrandom"},{"name":"h2","old_version":"0.4.12","new_version":"0.4.14","repository_url":"https://github.com/hyperium/h2"},{"name":"http","old_version":"1.4.0","new_version":"1.4.1","repository_url":"https://github.com/hyperium/http"},{"name":"hyper","old_version":"1.8.1","new_version":"1.10.0","repository_url":"https://github.com/hyperium/hyper"},{"name":"hyper-rustls","old_version":"0.27.7","new_version":"0.27.9","repository_url":"https://github.com/rustls/hyper-rustls"},{"name":"hyper-util","old_version":"0.1.19","new_version":"0.1.20","repository_url":"https://github.com/hyperium/hyper-util"},{"name":"iana-time-zone","old_version":"0.1.64","new_version":"0.1.65","repository_url":"https://github.com/strawlab/iana-time-zone"},{"name":"icu_locale_core","old_version":"2.1.1","new_version":"2.2.0","repository_url":"https://github.com/unicode-org/icu4x"},{"name":"icu_normalizer","old_version":"2.1.1","new_version":"2.2.0","repository_url":"https://github.com/unicode-org/icu4x"},{"name":"idna_adapter","old_version":"1.2.1","new_version":"1.2.2","repository_url":"https://github.com/hsivonen/idna_adapter"},{"name":"ipnet","old_version":"2.11.0","new_version":"2.12.0","repository_url":"https://github.com/krisprice/ipnet"},{"name":"iri-string","old_version":"0.7.10","new_version":"0.7.12","repository_url":"https://github.com/lo48576/iri-string"},{"name":"itoa","old_version":"1.0.17","new_version":"1.0.18","repository_url":"https://github.com/dtolnay/itoa"},{"name":"libbz2-rs-sys","old_version":"0.2.2","new_version":"0.2.5","repository_url":"https://github.com/trifectatechfoundation/libbzip2-rs"},{"name":"libm","old_version":"0.2.15","new_version":"0.2.16","repository_url":"https://github.com/rust-lang/compiler-builtins"},{"name":"litemap","old_version":"0.8.1","new_version":"0.8.2","repository_url":"https://github.com/unicode-org/icu4x"},{"name":"memchr","old_version":"2.7.6","new_version":"2.8.1","repository_url":"https://github.com/BurntSushi/memchr"},{"name":"mio","old_version":"1.1.1","new_version":"1.2.0","repository_url":"https://github.com/tokio-rs/mio"},{"name":"num_enum","old_version":"0.7.5","new_version":"0.7.6","repository_url":"https://github.com/illicitonion/num_enum"},{"name":"objc2","old_version":"0.6.3","new_version":"0.6.4","repository_url":"https://github.com/madsmtm/objc2"},{"name":"openssl-src","old_version":"300.5.4+3.5.4","new_version":"300.6.0+3.6.2","repository_url":"https://github.com/alexcrichton/openssl-src-rs"},{"name":"pin-project-lite","old_version":"0.2.16","new_version":"0.2.17","repository_url":"https://github.com/taiki-e/pin-project-lite"},{"name":"pkg-config","old_version":"0.3.32","new_version":"0.3.33","repository_url":"https://github.com/rust-lang/pkg-config-rs"},{"name":"portable-atomic","old_version":"1.13.0","new_version":"1.13.1","repository_url":"https://github.com/taiki-e/portable-atomic"},{"name":"portable-atomic-util","old_version":"0.2.4","new_version":"0.2.7","repository_url":"https://github.com/taiki-e/portable-atomic-util"},{"name":"potential_utf","old_version":"0.1.4","new_version":"0.1.5","repository_url":"https://github.com/unicode-org/icu4x"},{"name":"proc-macro2","old_version":"1.0.104","new_version":"1.0.106","repository_url":"https://github.com/dtolnay/proc-macro2"},{"name":"quinn-proto","old_version":"0.11.13","new_version":"0.11.14","repository_url":"https://github.com/quinn-rs/quinn"},{"name":"rand_core","old_version":"0.9.3","new_version":"0.9.5","repository_url":"https://github.com/rust-random/rand_core"},{"name":"regex-automata","old_version":"0.4.13","new_version":"0.4.14","repository_url":"https://github.com/rust-lang/regex"},{"name":"rustc-demangle","old_version":"0.1.26","new_version":"0.1.27","repository_url":"https://github.com/rust-lang/rustc-demangle"},{"name":"rustc-hash","old_version":"2.1.1","new_version":"2.1.2","repository_url":"https://github.com/rust-lang/rustc-hash"},{"name":"rustls","old_version":"0.23.35","new_version":"0.23.40","repository_url":"https://github.com/rustls/rustls"},{"name":"rustls-pki-types","old_version":"1.13.2","new_version":"1.14.1","repository_url":"https://github.com/rustls/pki-types"},{"name":"rustls-webpki","old_version":"0.103.8","new_version":"0.103.13","repository_url":"https://github.com/rustls/webpki"},{"name":"ryu","old_version":"1.0.22","new_version":"1.0.23","repository_url":"https://github.com/dtolnay/ryu"},{"name":"schannel","old_version":"0.1.28","new_version":"0.1.29","repository_url":"https://github.com/steffengy/schannel-rs"},{"name":"security-framework-sys","old_version":"2.15.0","new_version":"2.17.0","repository_url":"https://github.com/kornelski/rust-security-framework"},{"name":"semver","old_version":"1.0.27","new_version":"1.0.28","repository_url":"https://github.com/dtolnay/semver"},{"name":"serial_test","old_version":"3.2.0","new_version":"3.4.0","repository_url":"https://github.com/palfrey/serial_test"},{"name":"simd-adler32","old_version":"0.3.8","new_version":"0.3.9","repository_url":"https://github.com/mcountryman/simd-adler32"},{"name":"siphasher","old_version":"1.0.1","new_version":"1.0.3","repository_url":"https://github.com/jedisct1/rust-siphash"},{"name":"slab","old_version":"0.4.11","new_version":"0.4.12","repository_url":"https://github.com/tokio-rs/slab"},{"name":"socket2","old_version":"0.6.1","new_version":"0.6.3","repository_url":"https://github.com/rust-lang/socket2"},{"name":"syn","old_version":"2.0.111","new_version":"2.0.117","repository_url":"https://github.com/dtolnay/syn"},{"name":"tinyvec","old_version":"1.10.0","new_version":"1.11.0","repository_url":"https://github.com/Lokathor/tinyvec"},{"name":"tokio","old_version":"1.48.0","new_version":"1.52.3","repository_url":"https://github.com/tokio-rs/tokio"},{"name":"tokio-util","old_version":"0.7.17","new_version":"0.7.18","repository_url":"https://github.com/tokio-rs/tokio"},{"name":"toml_parser","old_version":"1.0.6+spec-1.1.0","new_version":"1.1.2+spec-1.1.0","repository_url":"https://github.com/toml-rs/toml"},{"name":"toml_writer","old_version":"1.0.6+spec-1.1.0","new_version":"1.1.1+spec-1.1.0","repository_url":"https://github.com/toml-rs/toml"},{"name":"tower","old_version":"0.5.2","new_version":"0.5.3","repository_url":"https://github.com/tower-rs/tower"},{"name":"tower-http","old_version":"0.6.8","new_version":"0.6.11","repository_url":"https://github.com/tower-rs/tower-http"},{"name":"typewit","old_version":"1.14.2","new_version":"1.15.2","repository_url":"https://github.com/rodrimati1992/typewit"},{"name":"unicode-ident","old_version":"1.0.22","new_version":"1.0.24","repository_url":"https://github.com/dtolnay/unicode-ident"},{"name":"unicode-segmentation","old_version":"1.12.0","new_version":"1.13.2","repository_url":"https://github.com/unicode-rs/unicode-segmentation"},{"name":"uuid","old_version":"1.19.0","new_version":"1.23.1","repository_url":"https://github.com/uuid-rs/uuid"},{"name":"wasip2","old_version":"1.0.1+wasi-0.2.4","new_version":"1.0.3+wasi-0.2.9","repository_url":"https://github.com/bytecodealliance/wasi-rs"},{"name":"webpki-roots","old_version":"1.0.5","new_version":"1.0.7","repository_url":"https://github.com/rustls/webpki-roots"},{"name":"winnow","old_version":"0.7.14","new_version":"0.7.15","repository_url":"https://github.com/winnow-rs/winnow"},{"name":"writeable","old_version":"0.6.2","new_version":"0.6.3","repository_url":"https://github.com/unicode-org/icu4x"},{"name":"zerocopy","old_version":"0.8.31","new_version":"0.8.49","repository_url":"https://github.com/google/zerocopy"},{"name":"zerofrom","old_version":"0.1.6","new_version":"0.1.8","repository_url":"https://github.com/unicode-org/icu4x"},{"name":"zerofrom-derive","old_version":"0.1.6","new_version":"0.1.7","repository_url":"https://github.com/unicode-org/icu4x"},{"name":"zmij","old_version":"1.0.10","new_version":"1.0.21","repository_url":"https://github.com/dtolnay/zmij"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the all-dependencies group with 112 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [anyhow](https://github.com/dtolnay/anyhow) | `1.0.100` | `1.0.102` |\n| [build_html](https://github.com/skubalj/build_html) | `2.7.0` | `2.8.0` |\n| [chrono](https://github.com/chronotope/chrono) | `0.4.42` | `0.4.44` |\n| [clap](https://github.com/clap-rs/clap) | `4.5.53` | `4.5.60` |\n| [ctrlc](https://github.com/Detegr/rust-ctrlc) | `3.5.1` | `3.5.2` |\n| [env_logger](https://github.com/rust-cli/env_logger) | `0.11.8` | `0.11.10` |\n| [indexmap](https://github.com/indexmap-rs/indexmap) | `2.12.1` | `2.14.0` |\n| [indicatif](https://github.com/console-rs/indicatif) | `0.18.3` | `0.18.4` |\n| [log](https://github.com/rust-lang/log) | `0.4.29` | `0.4.30` |\n| [once_cell](https://github.com/matklad/once_cell) | `1.21.3` | `1.21.4` |\n| [openssl](https://github.com/rust-openssl/rust-openssl) | `0.10.75` | `0.10.80` |\n| [rand](https://github.com/rust-random/rand) | `0.9.2` | `0.10.1` |\n| [rand_regex](https://github.com/kennytm/rand_regex) | `0.18.1` | `0.19.0` |\n| [regex](https://github.com/rust-lang/regex) | `1.12.2` | `1.12.3` |\n| [reqwest](https://github.com/seanmonstar/reqwest) | `0.12.28` | `0.13.4` |\n| [reqwest_cookie_store](https://github.com/pfernie/reqwest_cookie_store) | `0.9.0` | `0.10.0` |\n| [serde_json](https://github.com/serde-rs/json) | `1.0.148` | `1.0.150` |\n| [tempfile](https://github.com/Stebalien/tempfile) | `3.24.0` | `3.27.0` |\n| [strum](https://github.com/Peternator7/strum) | `0.27.2` | `0.28.0` |\n| [unicode-truncate](https://github.com/Aetf/unicode-truncate) | `2.0.0` | `2.0.1` |\n| [url](https://github.com/servo/rust-url) | `2.5.7` | `2.5.8` |\n| [z3](https://github.com/prove-rs/z3.rs) | `0.19.7` | `0.19.15` |\n| [anstyle](https://github.com/rust-cli/anstyle) | `1.0.13` | `1.0.14` |\n| [autocfg](https://github.com/cuviper/autocfg) | `1.5.0` | `1.5.1` |\n| [bitflags](https://github.com/bitflags/bitflags) | `2.10.0` | `2.11.1` |\n| [bumpalo](https://github.com/fitzgen/bumpalo) | `3.19.1` | `3.20.3` |\n| [bytemuck](https://github.com/Lokathor/bytemuck) | `1.24.0` | `1.25.0` |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.11.0` | `1.11.1` |\n| [cc](https://github.com/rust-lang/cc-rs) | `1.2.51` | `1.2.62` |\n| [cmake](https://github.com/rust-lang/cmake-rs) | `0.1.57` | `0.1.58` |\n| [colorchoice](https://github.com/rust-cli/anstyle) | `1.0.4` | `1.0.5` |\n| [console](https://github.com/console-rs/console) | `0.16.2` | `0.16.3` |\n| [const_format](https://github.com/rodrimati1992/const_format_crates) | `0.2.35` | `0.2.36` |\n| [cookie_store](https://github.com/pfernie/cookie_store) | `0.22.0` | `0.22.1` |\n| [deflate64](https://github.com/anatawa12/deflate64-rs) | `0.1.10` | `0.1.12` |\n| [deranged](https://github.com/jhpratt/deranged) | `0.5.5` | `0.5.8` |\n| [dispatch2](https://github.com/madsmtm/objc2) | `0.3.0` | `0.3.1` |\n| [displaydoc](https://github.com/yaahc/displaydoc) | `0.2.5` | `0.2.6` |\n| [either](https://github.com/rayon-rs/either) | `1.15.0` | `1.16.0` |\n| [erased-serde](https://github.com/dtolnay/erased-serde) | `0.4.9` | `0.4.10` |\n| [fastbloom](https://github.com/tomtomwombat/fastbloom) | `0.14.0` | `0.14.1` |\n| [fastrand](https://github.com/smol-rs/fastrand) | `2.3.0` | `2.4.1` |\n| [flate2](https://github.com/rust-lang/flate2-rs) | `1.1.5` | `1.1.9` |\n| [futures-core](https://github.com/rust-lang/futures-rs) | `0.3.31` | `0.3.32` |\n| [futures-io](https://github.com/rust-lang/futures-rs) | `0.3.31` | `0.3.32` |\n| [futures-sink](https://github.com/rust-lang/futures-rs) | `0.3.31` | `0.3.32` |\n| [futures-task](https://github.com/rust-lang/futures-rs) | `0.3.31` | `0.3.32` |\n| [futures-util](https://github.com/rust-lang/futures-rs) | `0.3.31` | `0.3.32` |\n| [getrandom](https://github.com/rust-random/getrandom) | `0.2.16` | `0.2.17` |\n| [h2](https://github.com/hyperium/h2) | `0.4.12` | `0.4.14` |\n| [http](https://github.com/hyperium/http) | `1.4.0` | `1.4.1` |\n| [hyper](https://github.com/hyperium/hyper) | `1.8.1` | `1.10.0` |\n| [hyper-rustls](https://github.com/rustls/hyper-rustls) | `0.27.7` | `0.27.9` |\n| [hyper-util](https://github.com/hyperium/hyper-util) | `0.1.19` | `0.1.20` |\n| [iana-time-zone](https://github.com/strawlab/iana-time-zone) | `0.1.64` | `0.1.65` |\n| [icu_locale_core](https://github.com/unicode-org/icu4x) | `2.1.1` | `2.2.0` |\n| [icu_normalizer](https://github.com/unicode-org/icu4x) | `2.1.1` | `2.2.0` |\n| [idna_adapter](https://github.com/hsivonen/idna_adapter) | `1.2.1` | `1.2.2` |\n| [ipnet](https://github.com/krisprice/ipnet) | `2.11.0` | `2.12.0` |\n| [iri-string](https://github.com/lo48576/iri-string) | `0.7.10` | `0.7.12` |\n| [itoa](https://github.com/dtolnay/itoa) | `1.0.17` | `1.0.18` |\n| [libbz2-rs-sys](https://github.com/trifectatechfoundation/libbzip2-rs) | `0.2.2` | `0.2.5` |\n| [libm](https://github.com/rust-lang/compiler-builtins) | `0.2.15` | `0.2.16` |\n| [litemap](https://github.com/unicode-org/icu4x) | `0.8.1` | `0.8.2` |\n| [memchr](https://github.com/BurntSushi/memchr) | `2.7.6` | `2.8.1` |\n| [mio](https://github.com/tokio-rs/mio) | `1.1.1` | `1.2.0` |\n| [num_enum](https://github.com/illicitonion/num_enum) | `0.7.5` | `0.7.6` |\n| [objc2](https://github.com/madsmtm/objc2) | `0.6.3` | `0.6.4` |\n| [openssl-src](https://github.com/alexcrichton/openssl-src-rs) | `300.5.4+3.5.4` | `300.6.0+3.6.2` |\n| [pin-project-lite](https://github.com/taiki-e/pin-project-lite) | `0.2.16` | `0.2.17` |\n| [pkg-config](https://github.com/rust-lang/pkg-config-rs) | `0.3.32` | `0.3.33` |\n| [portable-atomic](https://github.com/taiki-e/portable-atomic) | `1.13.0` | `1.13.1` |\n| [portable-atomic-util](https://github.com/taiki-e/portable-atomic-util) | `0.2.4` | `0.2.7` |\n| [potential_utf](https://github.com/unicode-org/icu4x) | `0.1.4` | `0.1.5` |\n| [proc-macro2](https://github.com/dtolnay/proc-macro2) | `1.0.104` | `1.0.106` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.13` | `0.11.14` |\n| [rand_core](https://github.com/rust-random/rand_core) | `0.9.3` | `0.9.5` |\n| [regex-automata](https://github.com/rust-lang/regex) | `0.4.13` | `0.4.14` |\n| [rustc-demangle](https://github.com/rust-lang/rustc-demangle) | `0.1.26` | `0.1.27` |\n| [rustc-hash](https://github.com/rust-lang/rustc-hash) | `2.1.1` | `2.1.2` |\n| [rustls](https://github.com/rustls/rustls) | `0.23.35` | `0.23.40` |\n| [rustls-pki-types](https://github.com/rustls/pki-types) | `1.13.2` | `1.14.1` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.103.8` | `0.103.13` |\n| [ryu](https://github.com/dtolnay/ryu) | `1.0.22` | `1.0.23` |\n| [schannel](https://github.com/steffengy/schannel-rs) | `0.1.28` | `0.1.29` |\n| [security-framework-sys](https://github.com/kornelski/rust-security-framework) | `2.15.0` | `2.17.0` |\n| [semver](https://github.com/dtolnay/semver) | `1.0.27` | `1.0.28` |\n| [serial_test](https://github.com/palfrey/serial_test) | `3.2.0` | `3.4.0` |\n| [simd-adler32](https://github.com/mcountryman/simd-adler32) | `0.3.8` | `0.3.9` |\n| [siphasher](https://github.com/jedisct1/rust-siphash) | `1.0.1` | `1.0.3` |\n| [slab](https://github.com/tokio-rs/slab) | `0.4.11` | `0.4.12` |\n| [socket2](https://github.com/rust-lang/socket2) | `0.6.1` | `0.6.3` |\n| [syn](https://github.com/dtolnay/syn) | `2.0.111` | `2.0.117` |\n| [tinyvec](https://github.com/Lokathor/tinyvec) | `1.10.0` | `1.11.0` |\n| [tokio](https://github.com/tokio-rs/tokio) | `1.48.0` | `1.52.3` |\n| [tokio-util](https://github.com/tokio-rs/tokio) | `0.7.17` | `0.7.18` |\n| [toml_parser](https://github.com/toml-rs/toml) | `1.0.6+spec-1.1.0` | `1.1.2+spec-1.1.0` |\n| [toml_writer](https://github.com/toml-rs/toml) | `1.0.6+spec-1.1.0` | `1.1.1+spec-1.1.0` |\n| [tower](https://github.com/tower-rs/tower) | `0.5.2` | `0.5.3` |\n| [tower-http](https://github.com/tower-rs/tower-http) | `0.6.8` | `0.6.11` |\n| [typewit](https://github.com/rodrimati1992/typewit) | `1.14.2` | `1.15.2` |\n| [unicode-ident](https://github.com/dtolnay/unicode-ident) | `1.0.22` | `1.0.24` |\n| [unicode-segmentation](https://github.com/unicode-rs/unicode-segmentation) | `1.12.0` | `1.13.2` |\n| [uuid](https://github.com/uuid-rs/uuid) | `1.19.0` | `1.23.1` |\n| [wasip2](https://github.com/bytecodealliance/wasi-rs) | `1.0.1+wasi-0.2.4` | `1.0.3+wasi-0.2.9` |\n| [webpki-roots](https://github.com/rustls/webpki-roots) | `1.0.5` | `1.0.7` |\n| [winnow](https://github.com/winnow-rs/winnow) | `0.7.14` | `0.7.15` |\n| [writeable](https://github.com/unicode-org/icu4x) | `0.6.2` | `0.6.3` |\n| [zerocopy](https://github.com/google/zerocopy) | `0.8.31` | `0.8.49` |\n| [zerofrom](https://github.com/unicode-org/icu4x) | `0.1.6` | `0.1.8` |\n| [zerofrom-derive](https://github.com/unicode-org/icu4x) | `0.1.6` | `0.1.7` |\n| [zmij](https://github.com/dtolnay/zmij) | `1.0.10` | `1.0.21` |\n\n\nUpdates `anyhow` from 1.0.100 to 1.0.102\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dtolnay/anyhow/releases\"\u003eanyhow's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.0.102\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove backtrace dependency (\u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/438\"\u003e#438\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/439\"\u003e#439\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/440\"\u003e#440\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/441\"\u003e#441\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.0.101\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd #[inline] to anyhow::Ok helper (\u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/437\"\u003e#437\u003c/a\u003e, thanks \u003ca href=\"https://github.com/Ibitier\"\u003e\u003ccode\u003e@​Ibitier\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/5c657b32522023a9f7ef883fb08582fd8e656b1a\"\u003e\u003ccode\u003e5c657b3\u003c/code\u003e\u003c/a\u003e Release 1.0.102\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/e737fb63918e8c71a3d0a968004a9c7ed7942283\"\u003e\u003ccode\u003ee737fb6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/442\"\u003e#442\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/7fe62b51c62804f8b84443affeacfb3810ed2516\"\u003e\u003ccode\u003e7fe62b5\u003c/code\u003e\u003c/a\u003e Further simply backtrace conditional compilation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/c8cb5cae23e57a2dbb87bf05cba04f1df1f1660b\"\u003e\u003ccode\u003ec8cb5ca\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/441\"\u003e#441\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/de27df7e0f510d543c18e50a0736566b66e62baf\"\u003e\u003ccode\u003ede27df7\u003c/code\u003e\u003c/a\u003e Delete CI use of --features=backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/9b67e5dd608658d805640cf1b6f6c9d091686ec1\"\u003e\u003ccode\u003e9b67e5d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/440\"\u003e#440\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/efdb11a259ca58a2e505ef50486cf2d6b5ddc42a\"\u003e\u003ccode\u003eefdb11a\u003c/code\u003e\u003c/a\u003e Simplify \u003ccode\u003estd_backtrace\u003c/code\u003e conditional code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/b8a9a707838969721a86b28e3c45ce27e279e981\"\u003e\u003ccode\u003eb8a9a70\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/439\"\u003e#439\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/a42fc2c21846ba459df43a3f8b4996a2074909cb\"\u003e\u003ccode\u003ea42fc2c\u003c/code\u003e\u003c/a\u003e Remove \u003ccode\u003efeature = \u0026quot;backtrace\u0026quot;\u003c/code\u003e conditional code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/2a2a3ceb4cbc409fd99613ab5744b21e825e7908\"\u003e\u003ccode\u003e2a2a3ce\u003c/code\u003e\u003c/a\u003e Re-word backtrace feature comment\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dtolnay/anyhow/compare/1.0.100...1.0.102\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `build_html` from 2.7.0 to 2.8.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/skubalj/build_html/releases\"\u003ebuild_html's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.8.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eFromStr\u003c/code\u003e implementation for \u003ccode\u003eHtmlTag\u003c/code\u003e, courtesy of \u003ca href=\"https://github.com/PNys\"\u003e\u003ccode\u003e@​PNys\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded HTMLTag for various tags (\u003ccode\u003emeter\u003c/code\u003e, \u003ccode\u003ekbd\u003c/code\u003e, \u003ccode\u003eaudio\u003c/code\u003e, ...), including inputs (\u003ccode\u003ebutton\u003c/code\u003e, \u003ccode\u003einput\u003c/code\u003e, \u003ccode\u003etextarea\u003c/code\u003e, and \u003ccode\u003elabel\u003c/code\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/skubalj/build_html/blob/main/CHANGELOG.md\"\u003ebuild_html's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eVersion 2.8.0 (2026-04-29)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eFromStr\u003c/code\u003e implementation for \u003ccode\u003eHtmlTag\u003c/code\u003e, courtesy of \u003ca href=\"https://github.com/PNys\"\u003e\u003ccode\u003e@​PNys\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded HTMLTag for various tags (\u003ccode\u003emeter\u003c/code\u003e, \u003ccode\u003ekbd\u003c/code\u003e, \u003ccode\u003eaudio\u003c/code\u003e, ...), including inputs\n(\u003ccode\u003ebutton\u003c/code\u003e, \u003ccode\u003einput\u003c/code\u003e, \u003ccode\u003etextarea\u003c/code\u003e, and \u003ccode\u003elabel\u003c/code\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/skubalj/build_html/commit/e3979fcfd4fcf4526c47452bf9ffb5c23c7d31e9\"\u003e\u003ccode\u003ee3979fc\u003c/code\u003e\u003c/a\u003e remove unneeded reference\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/skubalj/build_html/commit/b8e4b22432ec16ee66e62616b6217986ec31b7b0\"\u003e\u003ccode\u003eb8e4b22\u003c/code\u003e\u003c/a\u003e add additinal elements, add 'impl Error for UnknownTagError'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/skubalj/build_html/commit/9af7dd81b729c5a68c7bda857c29327aa23fee76\"\u003e\u003ccode\u003e9af7dd8\u003c/code\u003e\u003c/a\u003e Adding parsing From String to HtmlTag (\u003ca href=\"https://redirect.github.com/skubalj/build_html/issues/23\"\u003e#23\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/skubalj/build_html/compare/v2.7.0...v2.8.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `chrono` from 0.4.42 to 0.4.44\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/chronotope/chrono/releases\"\u003echrono's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.44\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: match MSRV with \u003ccode\u003eCargo.toml\u003c/code\u003e contents by \u003ca href=\"https://github.com/coryan\"\u003e\u003ccode\u003e@​coryan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1772\"\u003echronotope/chrono#1772\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd track_caller to non-deprecated functions by \u003ca href=\"https://github.com/svix-jplatte\"\u003e\u003ccode\u003e@​svix-jplatte\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1774\"\u003echronotope/chrono#1774\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.4.43\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eInstall extra components for lint workflow by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1741\"\u003echronotope/chrono#1741\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade windows-bindgen to 0.64 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1742\"\u003echronotope/chrono#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove windows-bindgen setup by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1744\"\u003echronotope/chrono#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop stabilized feature doc_auto_cfg by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1745\"\u003echronotope/chrono#1745\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFaster RFC 3339 parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1748\"\u003echronotope/chrono#1748\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate windows-bindgen requirement from 0.64 to 0.65 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1751\"\u003echronotope/chrono#1751\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd \u003ccode\u003eNaiveDate::abs_diff\u003c/code\u003e by \u003ca href=\"https://github.com/Kinrany\"\u003e\u003ccode\u003e@​Kinrany\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1752\"\u003echronotope/chrono#1752\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd feature gated defmt support. by \u003ca href=\"https://github.com/pebender\"\u003e\u003ccode\u003e@​pebender\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1747\"\u003echronotope/chrono#1747\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop deny lints, eager Debug impls are a mixed blessing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1753\"\u003echronotope/chrono#1753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: minor improvement for docs by \u003ca href=\"https://github.com/spuradage\"\u003e\u003ccode\u003e@​spuradage\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1756\"\u003echronotope/chrono#1756\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded doctest for the NaiveDate years_since function by \u003ca href=\"https://github.com/LucasBou\"\u003e\u003ccode\u003e@​LucasBou\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1755\"\u003echronotope/chrono#1755\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.4.43 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1765\"\u003echronotope/chrono#1765\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate copyright year to 2026 in LICENSE.txt by \u003ca href=\"https://github.com/taozui472\"\u003e\u003ccode\u003e@​taozui472\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1767\"\u003echronotope/chrono#1767\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/c14b4599d07ef36ffa1f8a531fb0bc7eb3b42464\"\u003e\u003ccode\u003ec14b459\u003c/code\u003e\u003c/a\u003e Bump version to 0.4.44\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/ea832c5090369eefa2cb6a47d643e2f7ade7ffa7\"\u003e\u003ccode\u003eea832c5\u003c/code\u003e\u003c/a\u003e Add track_caller to non-deprecated functions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/cfae889a3a23507acf49b605794abba17effd2d7\"\u003e\u003ccode\u003ecfae889\u003c/code\u003e\u003c/a\u003e Fix panic message in to_rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/f8900b5a44228a7f6282c65e8c407d3ecb6dcb7b\"\u003e\u003ccode\u003ef8900b5\u003c/code\u003e\u003c/a\u003e docs: match MSRV with \u003ccode\u003eCargo.toml\u003c/code\u003e contents\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/45caaa970ce443b11106a710ee24bd2480e5ff99\"\u003e\u003ccode\u003e45caaa9\u003c/code\u003e\u003c/a\u003e Update copyright year to 2026 in LICENSE.txt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/1c0b8f011ab2f2e53c195df1866a1fb4c7fd193a\"\u003e\u003ccode\u003e1c0b8f0\u003c/code\u003e\u003c/a\u003e Bump version to 0.4.43\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/a03e43b1c3ef3aea77f12200d84144f275560aa9\"\u003e\u003ccode\u003ea03e43b\u003c/code\u003e\u003c/a\u003e Upgrade windows-bindgen to 0.66\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/4fedaba2a214aa560e1c6a70d0a09e6955ed3ff4\"\u003e\u003ccode\u003e4fedaba\u003c/code\u003e\u003c/a\u003e Ignore bincode advisory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/f4b7bbda679199e7509da813849a10242b2f7aa1\"\u003e\u003ccode\u003ef4b7bbd\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 5 to 6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/db129730e8f21ca66b3808c133b7147cbc62fc41\"\u003e\u003ccode\u003edb12973\u003c/code\u003e\u003c/a\u003e Added doctest for the NaiveDate years_since function (\u003ca href=\"https://redirect.github.com/chronotope/chrono/issues/1755\"\u003e#1755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/chronotope/chrono/compare/v0.4.42...v0.4.44\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `clap` from 4.5.53 to 4.5.60\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/clap-rs/clap/releases\"\u003eclap's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.5.60\u003c/h2\u003e\n\u003ch2\u003e[4.5.60] - 2026-02-19\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(help)\u003c/em\u003e Quote empty default values, possible values\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.59\u003c/h2\u003e\n\u003ch2\u003e[4.5.59] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eCommand::ignore_errors\u003c/code\u003e no longer masks help/version on subcommands\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.58\u003c/h2\u003e\n\u003ch2\u003e[4.5.58] - 2026-02-11\u003c/h2\u003e\n\u003ch2\u003ev4.5.57\u003c/h2\u003e\n\u003ch2\u003e[4.5.57] - 2026-02-03\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegression from 4.5.55 where having an argument with \u003ccode\u003e.value_terminator(\u0026quot;--\u0026quot;)\u003c/code\u003e caused problems with an argument with \u003ccode\u003e.last(true)\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.56\u003c/h2\u003e\n\u003ch2\u003e[4.5.56] - 2026-01-29\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOn conflict error, don't show conflicting arguments in the usage\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.55\u003c/h2\u003e\n\u003ch2\u003e[4.5.55] - 2026-01-27\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix inconsistency in precedence between positionals with a \u003ccode\u003evalue_terminator(\u0026quot;--\u0026quot;)\u003c/code\u003e and escapes (\u003ccode\u003e--\u003c/code\u003e) where \u003ccode\u003e./foo -- bar\u003c/code\u003e means the first arg is empty, rather than escaping future args\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.54\u003c/h2\u003e\n\u003ch2\u003e[4.5.54] - 2026-01-02\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(help)\u003c/em\u003e Move \u003ccode\u003e[default]\u003c/code\u003e to its own paragraph when \u003ccode\u003ePossibleValue::help\u003c/code\u003e is present in \u003ccode\u003e--help\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/clap-rs/clap/blob/master/CHANGELOG.md\"\u003eclap's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.5.60] - 2026-02-19\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(help)\u003c/em\u003e Quote empty default values, possible values\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.59] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eCommand::ignore_errors\u003c/code\u003e no longer masks help/version on subcommands\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.58] - 2026-02-11\u003c/h2\u003e\n\u003ch2\u003e[4.5.57] - 2026-02-03\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegression from 4.5.55 where having an argument with \u003ccode\u003e.value_terminator(\u0026quot;--\u0026quot;)\u003c/code\u003e caused problems with an argument with \u003ccode\u003e.last(true)\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.56] - 2026-01-29\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOn conflict error, don't show conflicting arguments in the usage\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.55] - 2026-01-27\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix inconsistency in precedence between positionals with a \u003ccode\u003evalue_terminator(\u0026quot;--\u0026quot;)\u003c/code\u003e and escapes (\u003ccode\u003e--\u003c/code\u003e) where \u003ccode\u003e./foo -- bar\u003c/code\u003e means the first arg is empty, rather than escaping future args\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.54] - 2026-01-02\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(help)\u003c/em\u003e Move \u003ccode\u003e[default]\u003c/code\u003e to its own paragraph when \u003ccode\u003ePossibleValue::help\u003c/code\u003e is present in \u003ccode\u003e--help\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/33d24d844b11c0e926ae132e1af338ff070bdf4a\"\u003e\u003ccode\u003e33d24d8\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/9332409f4a6c1d5c22064e839ec8e9bc040f3be7\"\u003e\u003ccode\u003e9332409\u003c/code\u003e\u003c/a\u003e docs: Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/b7adce5a17089596eecb2af6985e6503f2ffcd38\"\u003e\u003ccode\u003eb7adce5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6166\"\u003e#6166\u003c/a\u003e from fabalchemy/fix-dynamic-powershell-completion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/009bba44ec3d182028ec3a72f5b6f3e507827768\"\u003e\u003ccode\u003e009bba4\u003c/code\u003e\u003c/a\u003e fix(clap_complete): Improve powershell registration\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/d89d57dfb4bdd18930a40c6d7f4fadb23ee9c5b3\"\u003e\u003ccode\u003ed89d57d\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/f18b67ec3d4ce6ac1acf115adaab2f16ab2ed3c7\"\u003e\u003ccode\u003ef18b67e\u003c/code\u003e\u003c/a\u003e docs: Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/9d218eb418526143c9110f734f78a608b8cf6440\"\u003e\u003ccode\u003e9d218eb\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6165\"\u003e#6165\u003c/a\u003e from epage/shirt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/126440ca846613671e1dac98198b2ceb17dab2b0\"\u003e\u003ccode\u003e126440c\u003c/code\u003e\u003c/a\u003e fix(help): Correctly calculate padding for short-only args\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/9e3c05ef3800a3e638b8224a7881a81517a4f4db\"\u003e\u003ccode\u003e9e3c05e\u003c/code\u003e\u003c/a\u003e test(help): Show panic with short, valueless arg\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/c9898d0fece98d8520d3dd954cf457b685b3308f\"\u003e\u003ccode\u003ec9898d0\u003c/code\u003e\u003c/a\u003e test(help): Verify short with value\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/clap-rs/clap/compare/clap_complete-v4.5.53...clap_complete-v4.5.60\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ctrlc` from 3.5.1 to 3.5.2\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Detegr/rust-ctrlc/commit/0aed47c35355ab7de53fa281201b8b924c2cfcb3\"\u003e\u003ccode\u003e0aed47c\u003c/code\u003e\u003c/a\u003e Release 3.5.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Detegr/rust-ctrlc/commit/369ffb7da44d404837c952d05a58e9a4b7947005\"\u003e\u003ccode\u003e369ffb7\u003c/code\u003e\u003c/a\u003e Remove cargo.lock introduced with the previous PR\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Detegr/rust-ctrlc/commit/97d3e27d98f5baa9ce500ac23f914d7446c90101\"\u003e\u003ccode\u003e97d3e27\u003c/code\u003e\u003c/a\u003e bump nix\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/Detegr/rust-ctrlc/compare/3.5.1...3.5.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `env_logger` from 0.11.8 to 0.11.10\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-cli/env_logger/releases\"\u003eenv_logger's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.11.10\u003c/h2\u003e\n\u003ch2\u003e[0.11.10] - 2026-03-23\u003c/h2\u003e\n\u003ch3\u003eInternal\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.11.9\u003c/h2\u003e\n\u003ch2\u003e[0.11.9] - 2026-02-11\u003c/h2\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-cli/env_logger/blob/main/CHANGELOG.md\"\u003eenv_logger's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.11.10] - 2026-03-23\u003c/h2\u003e\n\u003ch3\u003eInternal\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.11.9] - 2026-02-11\u003c/h2\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/41320bf391e3d62cc0171f83403c6d684686ac98\"\u003e\u003ccode\u003e41320bf\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/de8c74f47cb137541ac3c740b1fa77f46554dc25\"\u003e\u003ccode\u003ede8c74f\u003c/code\u003e\u003c/a\u003e docs: Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/d550741cdcd1d64f8a564158d9d0b2554f5d900d\"\u003e\u003ccode\u003ed550741\u003c/code\u003e\u003c/a\u003e docs(gh): Add sponsor link\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/458b07544b86495075418e4d81cc048c98f362b6\"\u003e\u003ccode\u003e458b075\u003c/code\u003e\u003c/a\u003e chore(deps): Update Rust Stable to v1.94 (\u003ca href=\"https://redirect.github.com/rust-cli/env_logger/issues/401\"\u003e#401\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/8bc3fc3e1db40d82a40b485e4c7971ac257d17a2\"\u003e\u003ccode\u003e8bc3fc3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-cli/env_logger/issues/400\"\u003e#400\u003c/a\u003e from epage/update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/143fa647ab33ed3acc9f160dfa3cb075cc62b5a3\"\u003e\u003ccode\u003e143fa64\u003c/code\u003e\u003c/a\u003e chore: Upgrade incompatible\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/b687a2418ab8eeb031a55f561be50742ede27baf\"\u003e\u003ccode\u003eb687a24\u003c/code\u003e\u003c/a\u003e chore: Upgrade compatible\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/8cf1ba99129eeccc9914f9c3059ac6acc0686ba4\"\u003e\u003ccode\u003e8cf1ba9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-cli/env_logger/issues/397\"\u003e#397\u003c/a\u003e from rust-cli/renovate/crate-ci-typos-1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/094ecf7a8adbf013877f7e0883774008a95dbe3d\"\u003e\u003ccode\u003e094ecf7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-cli/env_logger/issues/396\"\u003e#396\u003c/a\u003e from rust-cli/renovate/crate-ci-committed-1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/34ad62679742adceb156ce5a59b0a277a8b67771\"\u003e\u003ccode\u003e34ad626\u003c/code\u003e\u003c/a\u003e chore(deps): Update pre-commit hook crate-ci/typos to v1.44.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-cli/env_logger/compare/v0.11.8...v0.11.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `indexmap` from 2.12.1 to 2.14.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/indexmap-rs/indexmap/blob/main/RELEASES.md\"\u003eindexmap's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.14.0 (2026-04-09)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eMSRV\u003c/strong\u003e: Rust 1.85.0 or later is now required.\u003c/li\u003e\n\u003cli\u003eUpdated the \u003ccode\u003ehashbrown\u003c/code\u003e dependency to 0.17.\u003c/li\u003e\n\u003cli\u003eMade more \u003ccode\u003emap::Slice\u003c/code\u003e methods \u003ccode\u003econst\u003c/code\u003e: \u003ccode\u003enew_mut\u003c/code\u003e, \u003ccode\u003efirst_mut\u003c/code\u003e, \u003ccode\u003elast_mut\u003c/code\u003e,\n\u003ccode\u003esplit_at_mut\u003c/code\u003e, \u003ccode\u003esplit_at_mut_checked\u003c/code\u003e, \u003ccode\u003esplit_first_mut\u003c/code\u003e, \u003ccode\u003esplit_last_mut\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.13.1 (2026-04-02)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMade some \u003ccode\u003eSlice\u003c/code\u003e methods \u003ccode\u003econst\u003c/code\u003e:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003emap::Slice::{first,last,split_at,split_at_checked,split_first,split_last}\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eset::Slice::{first,last,split_at,split_at_checked,split_first,split_last}\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.13.0 (2026-01-07)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImplemented \u003ccode\u003eClone\u003c/code\u003e for \u003ccode\u003eIntoKeys\u003c/code\u003e and \u003ccode\u003eIntoValues\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003emap::Slice::split_at_checked\u003c/code\u003e and \u003ccode\u003esplit_at_mut_checked\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eset::Slice::split_at_checked\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/bcd165baeb12bdf6e57a31d9869e9839e25679c6\"\u003e\u003ccode\u003ebcd165b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/indexmap-rs/indexmap/issues/439\"\u003e#439\u003c/a\u003e from cuviper/release-2.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/4ef06a729e0af095d2f39ec4bda5e0882054726e\"\u003e\u003ccode\u003e4ef06a7\u003c/code\u003e\u003c/a\u003e Release 2.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/d21826ca9351e968e7c5cff4f818e7a5e3cc481b\"\u003e\u003ccode\u003ed21826c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/indexmap-rs/indexmap/issues/438\"\u003e#438\u003c/a\u003e from cuviper/hashbrown-0.17\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/2566bec20dfbca0fa037939e67df4938c0f60f01\"\u003e\u003ccode\u003e2566bec\u003c/code\u003e\u003c/a\u003e Upgrade to \u003ccode\u003ehashbrown v0.17\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/4b62776c3f7dec98a5b89f907c3add5c603343b0\"\u003e\u003ccode\u003e4b62776\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/indexmap-rs/indexmap/issues/437\"\u003e#437\u003c/a\u003e from cuviper/disjoint-panic\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/478fba2eb0594f0fdc70b6b93e90fae820bdf82e\"\u003e\u003ccode\u003e478fba2\u003c/code\u003e\u003c/a\u003e Normalize the panic doc of \u003ccode\u003eget_disjoint_mut\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/fb6dafda4ee443864c88b61a4dfc8982012d3d39\"\u003e\u003ccode\u003efb6dafd\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/indexmap-rs/indexmap/issues/436\"\u003e#436\u003c/a\u003e from cuviper/const-slice-mut\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/5c237a2ab7db4017b057f6b52e28c78dd427cd94\"\u003e\u003ccode\u003e5c237a2\u003c/code\u003e\u003c/a\u003e Make \u003ccode\u003eSlice::{first,last,split_*}_mut\u003c/code\u003e methods \u003ccode\u003econst\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/48ff9ce2e3a2a464e4f599691df62dff178d655b\"\u003e\u003ccode\u003e48ff9ce\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/indexmap-rs/indexmap/issues/435\"\u003e#435\u003c/a\u003e from cuviper/edition-2024\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/648be98a3112278e1aea7c5b7d3c3a4f77e1eddb\"\u003e\u003ccode\u003e648be98\u003c/code\u003e\u003c/a\u003e \u003ccode\u003ecargo fmt\u003c/code\u003e with edition 2024\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/indexmap-rs/indexmap/compare/2.12.1...2.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `indicatif` from 0.18.3 to 0.18.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/console-rs/indicatif/releases\"\u003eindicatif's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.18.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einitial draft oft hold_max with heuristic by \u003ca href=\"https://github.com/djugei\"\u003e\u003ccode\u003e@​djugei\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/657\"\u003econsole-rs/indicatif#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix duration after finish by \u003ca href=\"https://github.com/luolong\"\u003e\u003ccode\u003e@​luolong\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/748\"\u003econsole-rs/indicatif#748\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd refresh rate warning for ProgressDrawTarget::term_like() by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/750\"\u003econsole-rs/indicatif#750\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSeeking heuristic tweaks by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/751\"\u003econsole-rs/indicatif#751\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose the current tab width by \u003ca href=\"https://github.com/alexisfontaine\"\u003e\u003ccode\u003e@​alexisfontaine\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/754\"\u003econsole-rs/indicatif#754\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake WASM support optional via a feature flag by \u003ca href=\"https://github.com/SvenFinn\"\u003e\u003ccode\u003e@​SvenFinn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/761\"\u003econsole-rs/indicatif#761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: respect NO_COLOR and TERM=dumb environment variables by \u003ca href=\"https://github.com/shaanmajid\"\u003e\u003ccode\u003e@​shaanmajid\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/764\"\u003econsole-rs/indicatif#764\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/4de2f604c3f5af5556db0a1d15e296102879c8d9\"\u003e\u003ccode\u003e4de2f60\u003c/code\u003e\u003c/a\u003e Bump version to 0.18.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/8e0ab0e6b2b098afa68e62a9b41c6c9d6f74811d\"\u003e\u003ccode\u003e8e0ab0e\u003c/code\u003e\u003c/a\u003e fix: respect NO_COLOR and TERM=dumb environment variables\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/781b2d045bfecc61880ac7dbc171b72cc92eebab\"\u003e\u003ccode\u003e781b2d0\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/34aee0740c59ad5ba5688328aec122b05b3c2dea\"\u003e\u003ccode\u003e34aee07\u003c/code\u003e\u003c/a\u003e Introduce unicode-width feature\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/51d284f25dc6fa2b4d5b25b6d13201f683119c9a\"\u003e\u003ccode\u003e51d284f\u003c/code\u003e\u003c/a\u003e Introduce wasmbind feature\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/ee057e542d0c587c57871aa1487b3f828dd99bbf\"\u003e\u003ccode\u003eee057e5\u003c/code\u003e\u003c/a\u003e Bump tokio from 1.48.0 to 1.49.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/31bcea3a68acc00363c5be5d69d5f7c8b3a27ed5\"\u003e\u003ccode\u003e31bcea3\u003c/code\u003e\u003c/a\u003e Bump portable-atomic from 1.11.1 to 1.12.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/dbd26eb18157e5fad18c79e1933ad5f249165d6c\"\u003e\u003ccode\u003edbd26eb\u003c/code\u003e\u003c/a\u003e Bump console from 0.16.1 to 0.16.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/7ac4a0d1b8bb698619f9880105dc9d27799a3d55\"\u003e\u003ccode\u003e7ac4a0d\u003c/code\u003e\u003c/a\u003e Expose the current tab width\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/95088ffd980a6f0cdd6571418fd9c6d6fd1603d1\"\u003e\u003ccode\u003e95088ff\u003c/code\u003e\u003c/a\u003e iter: clean up variable names, casting\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/console-rs/indicatif/compare/0.18.3...0.18.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `log` from 0.4.29 to 0.4.30\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/log/releases\"\u003elog's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.30\u003c/h2\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport capturing of \u003ccode\u003estd::net\u003c/code\u003e types by \u003ca href=\"https://github.com/KodrAus\"\u003e\u003ccode\u003e@​KodrAus\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-lang/log/pull/724\"\u003erust-lang/log#724\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eNew Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/V0ldek\"\u003e\u003ccode\u003e@​V0ldek\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rust-lang/log/pull/720\"\u003erust-lang/log#720\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/woodruffw\"\u003e\u003ccode\u003e@​woodruffw\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rust-lang/log/pull/723\"\u003erust-lang/log#723\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-lang/log/compare/0.4.29...0.4.30\"\u003ehttps://github.com/rust-lang/log/compare/0.4.29...0.4.30\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eNotable Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMSRV is bumped to 1.71.0 in \u003ca href=\"https://redirect.github.com/rust-lang/log/pull/723\"\u003erust-lang/log#723\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/log/blob/master/CHANGELOG.md\"\u003elog's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.4.30] - 2026-05-21\u003c/h2\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport capturing of \u003ccode\u003estd::net\u003c/code\u003e types by \u003ca href=\"https://github.com/KodrAus\"\u003e\u003ccode\u003e@​KodrAus\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-lang/log/pull/724\"\u003erust-lang/log#724\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eNew Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/V0ldek\"\u003e\u003ccode\u003e@​V0ldek\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rust-lang/log/pull/720\"\u003erust-lang/log#720\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/woodruffw\"\u003e\u003ccode\u003e@​woodruffw\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/rust-lang/log/pull/723\"\u003erust-lang/log#723\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-lang/log/compare/0.4.29...0.4.30\"\u003ehttps://github.com/rust-lang/log/compare/0.4.29...0.4.30\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eNotable Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMSRV is bumped to 1.71.0 in \u003ca href=\"https://redirect.github.com/rust-lang/log/pull/723\"\u003erust-lang/log#723\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/log/commit/9c55760b499b18e81de7df5f3c13a67d5661131d\"\u003e\u003ccode\u003e9c55760\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-lang/log/issues/725\"\u003e#725\u003c/a\u003e from rust-lang/cargo/0.4.30\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/log/commit/d1acb0585c0f6af5dc466eb255187cd6d3b7359e\"\u003e\u003ccode\u003ed1acb05\u003c/code\u003e\u003c/a\u003e update docs on current MSRV and note latest bump in changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/log/commit/50682937b0d9ec9a18c4c9b0510d889762e20e34\"\u003e\u003ccode\u003e5068293\u003c/code\u003e\u003c/a\u003e prepare for 0.4.30 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/log/commit/7ccd873cb50de97690d46f69d8744a61f0b87c46\"\u003e\u003ccode\u003e7ccd873\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-lang/log/issues/724\"\u003e#724\u003c/a\u003e from rust-lang/feat/net-to-value\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/log/commit/923dfaaf00dca352efe45930ae009d9a22526597\"\u003e\u003ccode\u003e923dfaa\u003c/code\u003e\u003c/a\u003e fix up test cfgs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/log/commit/ecb7de8daf7feec9dcf0d31cecc8523b31a8d104\"\u003e\u003ccode\u003eecb7de8\u003c/code\u003e\u003c/a\u003e gate net value impls on std\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/log/commit/67bb4f6d2e377b0008b740631124f292e80d4e5d\"\u003e\u003ccode\u003e67bb4f6\u003c/code\u003e\u003c/a\u003e run fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/log/commit/25f49fe3d31e7a0797652ad4bacaff633f7237cd\"\u003e\u003ccode\u003e25f49fe\u003c/code\u003e\u003c/a\u003e rework net type capturing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/log/commit/7087dcb95cb925364b4ba1da0d7c0eead9356dfc\"\u003e\u003ccode\u003e7087dcb\u003c/code\u003e\u003c/a\u003e feat: impl ToValue for core::net types\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/log/commit/67bc7e32c68a4a8908d1016693418f12b43bab90\"\u003e\u003ccode\u003e67bc7e3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-lang/log/issues/723\"\u003e#723\u003c/a\u003e from woodruffw-forks/ww/ci\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-lang/log/compare/0.4.29...0.4.30\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `once_cell` from 1.21.3 to 1.21.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/matklad/once_cell/blob/master/CHANGELOG.md\"\u003eonce_cell's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.21.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix unsoundness in \u003ccode\u003eOnceCell::wait\u003c/code\u003e under \u003ccode\u003e--features=parking_lot\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/matklad/once_cell/pull/295\"\u003e#295\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eIf thread A calls \u003ccode\u003ewait\u003c/code\u003e, while thread B calls \u003ccode\u003eget_or_try_init(f)\u003c/code\u003e, and, furthermore, \u003ccode\u003ef\u003c/code\u003e panics,\nthe \u003ccode\u003ewait\u003c/code\u003e incorrectly returns and thread A observes uninitialized memory.\u003c/p\u003e\n\u003cp\u003eKudos to \u003ca href=\"https://github.com/meng-xu-cs\"\u003e\u003ccode\u003e@​meng-xu-cs\u003c/code\u003e\u003c/a\u003e for a nice find!\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/80fe900b21f6d76c1a2ed74d3343e8a3a88c46d0\"\u003e\u003ccode\u003e80fe900\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/matklad/once_cell/issues/296\"\u003e#296\u003c/a\u003e from matklad/matklad/plfix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/a5e09c971c23afb1a3be8ae32794e2dca940ccd4\"\u003e\u003ccode\u003ea5e09c9\u003c/code\u003e\u003c/a\u003e release 1.21.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/2426d45d85841879e71a880af543fd3d2be78db1\"\u003e\u003ccode\u003e2426d45\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/matklad/once_cell/issues/295\"\u003e#295\u003c/a\u003e from matklad/matklad/plfix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/a1441215db85adb6a47b0aa1062d1eea7c5fba65\"\u003e\u003ccode\u003ea144121\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/matklad/once_cell/issues/290\"\u003e#290\u003c/a\u003e from alexanderkjall/run-tests-with-no-default-features\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/232a1a49b55154c0b6f12d662619000efd3aecd8\"\u003e\u003ccode\u003e232a1a4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/matklad/once_cell/issues/292\"\u003e#292\u003c/a\u003e from phil-opp/doc-fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/d31767bbcd33b03ee3360a9112eba41d1b278d3a\"\u003e\u003ccode\u003ed31767b\u003c/code\u003e\u003c/a\u003e fix OnceCell::wait with features=parking_lot\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/28d29ae1c1eb082617efb4eddb6dae3d0c607fdd\"\u003e\u003ccode\u003e28d29ae\u003c/code\u003e\u003c/a\u003e Fix: \u003ccode\u003esync::OnceCell::try_insert\u003c/code\u003e docs should import \u003ccode\u003esync\u003c/code\u003e variant\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/0f78fb0d6d6a634fd76548f33fa38b250390e982\"\u003e\u003ccode\u003e0f78fb0\u003c/code\u003e\u003c/a\u003e make the command 'cargo test --no-default-features' work\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/fda60a6c70eb2e25a0c73bf515ec4779df3d2e6c\"\u003e\u003ccode\u003efda60a6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/matklad/once_cell/issues/287\"\u003e#287\u003c/a\u003e from AbeZbm/add-tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/b5b98c09eb9c95376e150eb6bda8c7637bba5aa4\"\u003e\u003ccode\u003eb5b98c0\u003c/code\u003e\u003c/a\u003e Add tests for OnceRef\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/matklad/once_cell/compare/v1.21.3...v1.21.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openssl` from 0.10.75 to 0.10.80\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-openssl/rust-openssl/releases\"\u003eopenssl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eopenssl-v0.10.80\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrefer Homebrew openssl@4 and stop looking for openssl@1.1 by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2633\"\u003erust-openssl/rust-openssl#2633\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix output buffer overflow in cipher_update_inplace for AES key-wrap-with-padding by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2638\"\u003erust-openssl/rust-openssl#2638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl 0.10.80 and openssl-sys 0.9.116 by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2639\"\u003erust-openssl/rust-openssl#2639\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.79...openssl-v0.10.80\"\u003ehttps://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.79...openssl-v0.10.80\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eopenssl-v0.10.79\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/cache from 5.0.4 to 5.0.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2610\"\u003erust-openssl/rust-openssl#2610\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTry to fix OpenSSL 1.1.0l download by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2614\"\u003erust-openssl/rust-openssl#2614\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRequire \u0026amp;mut BigNumContextRef for EcPointRef mul/invert by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2615\"\u003erust-openssl/rust-openssl#2615\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix UB in EcGroupRef::generator on groups without a generator by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2617\"\u003erust-openssl/rust-openssl#2617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace \u003ccode\u003euse libc::*;\u003c/code\u003e with targeted imports in openssl-sys by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2618\"\u003erust-openssl/rust-openssl#2618\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKeyRef::is_a and KeyType for name-based key identification by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2619\"\u003erust-openssl/rust-openssl#2619\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKey::{public,private}_key_from_raw_bytes_ex by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2620\"\u003erust-openssl/rust-openssl#2620\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump MSRV to 1.80 by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2622\"\u003erust-openssl/rust-openssl#2622\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop once_cell in favor of std::sync::{LazyLock, OnceLock} by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2623\"\u003erust-openssl/rust-openssl#2623\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKey::private_key_from_seed for ML-DSA/ML-KEM key import by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2621\"\u003erust-openssl/rust-openssl#2621\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eparallelize more builds in CI for cold caches by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2625\"\u003erust-openssl/rust-openssl#2625\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2626\"\u003erust-openssl/rust-openssl#2626\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix process abort when verify/PSK callbacks fire after SSL_CTX swap by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2624\"\u003erust-openssl/rust-openssl#2624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBind OSSL_PARAM_modified and use it for seed_into by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2628\"\u003erust-openssl/rust-openssl#2628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PkeyCtxRef::set_context_string for ML-DSA by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2629\"\u003erust-openssl/rust-openssl#2629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2631\"\u003erust-openssl/rust-openssl#2631\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix output buffer overflow for AES key-wrap-with-padding ciphers by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2630\"\u003erust-openssl/rust-openssl#2630\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl 0.10.79 and openssl-sys 0.9.115 by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2632\"\u003erust-openssl/rust-openssl#2632\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.78...openssl-v0.10.79\"\u003ehttps://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.78...openssl-v0.10.79\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eopenssl-v0.10.78\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix Suite B flag assignments in verify.rs by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2592\"\u003erust-openssl/rust-openssl#2592\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse cvt_p for OPENSSL_malloc error handling by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2593\"\u003erust-openssl/rust-openssl#2593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMark BIO_get_mem_data on AWS-LC to be unsafe by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2594\"\u003erust-openssl/rust-openssl#2594\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSet timeout for package installation step by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2595\"\u003erust-openssl/rust-openssl#2595\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePanic in Crypter::new when IV is required but not provided by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2596\"\u003erust-openssl/rust-openssl#2596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eopenssl 4 support by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2591\"\u003erust-openssl/rust-openssl#2591\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid panic for overlong OIDs by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2598\"\u003erust-openssl/rust-openssl#2598\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix dangling stack pointer in custom extension add callback by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2599\"\u003erust-openssl/rust-openssl#2599\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for LibreSSL 4.3.x by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2603\"\u003erust-openssl/rust-openssl#2603\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix inverted bounds assertion in AES key unwrap by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2604\"\u003erust-openssl/rust-openssl#2604\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject oversized length returns from password callback trampoline by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2605\"\u003erust-openssl/rust-openssl#2605\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eValidate callback-returned lengths in PSK and cookie trampolines by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2607\"\u003erust-openssl/rust-openssl#2607\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eError for short out in MdCtxRef::digest_final() by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2608\"\u003erust-openssl/rust-openssl#2608\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck derive output buffer length on OpenSSL 1.1.x by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2606\"\u003erust-openssl/rust-openssl#2606\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl v0.10.78 and openssl-sys v0.9.114 by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2609\"\u003erust-openssl/rust-openssl#2609\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/35be7ae43b207fc0448a648a21e9156bc360c9af\"\u003e\u003ccode\u003e35be7ae\u003c/code\u003e\u003c/a\u003e Release openssl 0.10.80 and openssl-sys 0.9.116 (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2639\"\u003e#2639\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/19eceb26f2404aae187e5444e65c404ebc1348a7\"\u003e\u003ccode\u003e19eceb2\u003c/code\u003e\u003c/a\u003e Fix output buffer overflow in cipher_update_inplace for AES key-wrap-with-pad...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/b460eb378c335610df5395a251408ad70bb60d42\"\u003e\u003ccode\u003eb460eb3\u003c/code\u003e\u003c/a\u003e Prefer Homebrew openssl@4 and stop looking for openssl@1.1 (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2633\"\u003e#2633\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/649f2d9e37f3aa701e20bd8ab5cd7eb5afa0a90f\"\u003e\u003ccode\u003e649f2d9\u003c/code\u003e\u003c/a\u003e Release openssl 0.10.79 and openssl-sys 0.9.115 (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2632\"\u003e#2632\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/257f9b20c001b888986f93579f118fa2a57d4f45\"\u003e\u003ccode\u003e257f9b2\u003c/code\u003e\u003c/a\u003e Fix output buffer overflow for AES key-wrap-with-padding ciphers (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2630\"\u003e#2630\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/d43e9179b1885fc66269a42361cc7a80f631ac8f\"\u003e\u003ccode\u003ed43e917\u003c/code\u003e\u003c/a\u003e Reject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2631\"\u003e#2631\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/f46519c8694a3e121091dafe38aab77c2f756546\"\u003e\u003ccode\u003ef46519c\u003c/code\u003e\u003c/a\u003e Add PkeyCtxRef::set_context_string for ML-DSA (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2629\"\u003e#2629\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/ad9ae312771f898749a9471549519d45eba6a033\"\u003e\u003ccode\u003ead9ae31\u003c/code\u003e\u003c/a\u003e Bind OSSL_PARAM_modified and use it for seed_into (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2628\"\u003e#2628\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/4e25c9be20dae1e78f1a3815950cd0973addae82\"\u003e\u003ccode\u003e4e25c9b\u003c/code\u003e\u003c/a\u003e Fix process abort when verify/PSK callbacks fire after SSL_CTX swap (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2624\"\u003e#2624\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/3dd8f425ef34a069b5bec46f3971b67db1c295c7\"\u003e\u003ccode\u003e3dd8f42\u003c/code\u003e\u003c/a\u003e Add PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2626\"\u003e#2626\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.75...openssl-v0.10.80\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.9.2 to 0.10.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/master/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.10.1] — 2026-02-11\u003c/h2\u003e\n\u003cp\u003eThis release includes a fix for a soundness bug; see \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDocument panic behavior of \u003ccode\u003emake_rng\u003c/code\u003e and add \u003ccode\u003e#[track_caller]\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1761\"\u003e#1761\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1761\"\u003e#1761\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1761\"\u003erust-random/rand#1761\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e[0.10.0] - 2026-02-08\u003c/h2\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe dependency on \u003ccode\u003erand_chacha\u003c/code\u003e has been replaced with a dependency on \u003ccode\u003echacha20\u003c/code\u003e. This changes the implementation behind \u003ccode\u003eStdRng\u003c/code\u003e, but the output remains the same. There may be some API breakage when using the ChaCha-types directly as these are now the ones in \u003ccode\u003echacha20\u003c/code\u003e instead of \u003ccode\u003erand_chacha\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1642\"\u003e#1642\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eRename fns \u003ccode\u003eIndexedRandom::choose_multiple\u003c/code\u003e -\u0026gt; \u003ccode\u003esample\u003c/code\u003e, \u003ccode\u003echoose_multiple_array\u003c/code\u003e -\u0026gt; \u003ccode\u003esample_array\u003c/code\u003e, \u003ccode\u003echoose_multiple_weighted\u003c/code\u003e -\u0026gt; \u003ccode\u003esample_weighted\u003c/code\u003e, struct \u003ccode\u003eSliceChooseIter\u003c/code\u003e -\u0026gt; \u003ccode\u003eIndexedSamples\u003c/code\u003e and fns \u003ccode\u003eIteratorRandom::choose_multiple\u003c/code\u003e -\u0026gt; \u003ccode\u003esample\u003c/code\u003e, \u003ccode\u003echoose_multiple_fill\u003c/code\u003e -\u0026gt; \u003ccode\u003esample_fill\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1632\"\u003e#1632\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse Edition 2024 and MSRV 1.85 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1653\"\u003e#1653\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLet \u003ccode\u003eFill\u003c/code\u003e be implemented for element types, not sliceable types (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1652\"\u003e#1652\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eOsError::raw_os_error\u003c/code\u003e on UEFI targets by returning \u003ccode\u003eOption\u0026lt;usize\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1665\"\u003e#1665\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReplace fn \u003ccode\u003eTryRngCore::read_adapter(..) -\u0026gt; RngReadAdapter\u003c/code\u003e with simpler struct \u003ccode\u003eRngReader\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1669\"\u003e#1669\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove fns \u003ccode\u003eSeedableRng::from_os_rng\u003c/code\u003e, \u003ccode\u003etry_from_os_rng\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1674\"\u003e#1674\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove \u003ccode\u003eClone\u003c/code\u003e support for \u003ccode\u003eStdRng\u003c/code\u003e, \u003ccode\u003eReseedingRng\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1677\"\u003e#1677\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003epostcard\u003c/code\u003e instead of \u003ccode\u003ebincode\u003c/code\u003e to test the serde feature (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1693\"\u003e#1693\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAvoid excessive allocation in \u003ccode\u003eIteratorRandom::sample\u003c/code\u003e when \u003ccode\u003eamount\u003c/code\u003e is much larger than iterator size (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1695\"\u003e#1695\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eos_rng\u003c/code\u003e -\u0026gt; \u003ccode\u003esys_rng\u003c/code\u003e, \u003ccode\u003eOsRng\u003c/code\u003e -\u0026gt; \u003ccode\u003eSysRng\u003c/code\u003e, \u003ccode\u003eOsError\u003c/code\u003e -\u0026gt; \u003ccode\u003eSysError\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eRng\u003c/code\u003e -\u0026gt; \u003ccode\u003eRngExt\u003c/code\u003e as upstream \u003ccode\u003erand_core\u003c/code\u003e has renamed \u003ccode\u003eRngCore\u003c/code\u003e -\u0026gt; \u003ccode\u003eRng\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1717\"\u003e#1717\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdditions\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd fns \u003ccode\u003eIndexedRandom::choose_iter\u003c/code\u003e, \u003ccode\u003echoose_weighted_iter\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1632\"\u003e#1632\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePub export \u003ccode\u003eXoshiro128PlusPlus\u003c/code\u003e, \u003ccode\u003eXoshiro256PlusPlus\u003c/code\u003e prngs (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1649\"\u003e#1649\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePub export \u003ccode\u003eChaCha8Rng\u003c/code\u003e, \u003ccode\u003eChaCha12Rng\u003c/code\u003e, \u003ccode\u003eChaCha20Rng\u003c/code\u003e behind \u003ccode\u003echacha\u003c/code\u003e feature (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1659\"\u003e#1659\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFn \u003ccode\u003erand::make_rng() -\u0026gt; R where R: SeedableRng\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1734\"\u003e#1734\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRemovals\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemoved \u003ccode\u003eReseedingRng\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1722\"\u003e#1722\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemoved unused feature \u0026quot;nightly\u0026quot; (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1732\"\u003e#1732\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemoved feature \u003ccode\u003esmall_rng\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1732\"\u003e#1732\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1632\"\u003e#1632\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1632\"\u003erust-random/rand#1632\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1642\"\u003e#1642\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1642\"\u003erust-random/rand#1642\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1649\"\u003e#1649\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1649\"\u003erust-random/rand#1649\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1652\"\u003e#1652\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1652\"\u003erust-random/rand#1652\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1653\"\u003e#1653\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1653\"\u003erust-random/rand#1653\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1659\"\u003e#1659\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1659\"\u003erust-random/rand#1659\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1665\"\u003e#1665\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1665\"\u003erust-random/rand#1665\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1669\"\u003e#1669\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1669\"\u003erust-random/rand#1669\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1674\"\u003e#1674\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1674\"\u003erust-random/rand#1674\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1677\"\u003e#1677\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1677\"\u003erust-random/rand#1677\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1693\"\u003e#1693\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1693\"\u003erust-random/rand#1693\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1695\"\u003e#1695\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1695\"\u003erust-random/rand#1695\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1697\"\u003e#1697\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1697\"\u003erust-random/rand#1697\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/27ff4cb7ced3122a1f677fc248c1a07e59ddc8cd\"\u003e\u003ccode\u003e27ff4cb\u003c/code\u003e\u003c/a\u003e Prepare v0.10.1: deprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/98d06386dc4e1d1c89a91f4e483d571921c29ecf\"\u003e\u003ccode\u003e98d0638\u003c/code\u003e\u003c/a\u003e make_rng: document panic and add #[track_caller] (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1761\"\u003e#1761\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/54e5eaaa7ac11af3aa60b5ccc486182189e6f9ef\"\u003e\u003ccode\u003e54e5eaa\u003c/code\u003e\u003c/a\u003e Fix doc error (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1758\"\u003e#1758\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1ce4c080186730595a8d464591d17aac22a42252\"\u003e\u003ccode\u003e1ce4c08\u003c/code\u003e\u003c/a\u003e Bump itoa from 1.0.17 to 1.0.18 in the all-deps group (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1756\"\u003e#1756\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/ccb734b9c22891a19f11be125c2f09a43809b08e\"\u003e\u003ccode\u003eccb734b\u003c/code\u003e\u003c/a\u003e docs: fix typo in doc comment (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1754\"\u003e#1754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/357eb7de9c9c80184449e8b515c821e48cf4df74\"\u003e\u003ccode\u003e357eb7d\u003c/code\u003e\u003c/a\u003e Bump libc from 0.2.182 to 0.2.183 in the all-deps group (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1753\"\u003e#1753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e77fe5d61b886988cae67b6d8fb09e405845c63\"\u003e\u003ccode\u003e5e77fe5\u003c/code\u003e\u003c/a\u003e Fix trait references in documentation (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1752\"\u003e#1752\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/da891850ab2b38f4322ec140ae29d305dfb162c3\"\u003e\u003ccode\u003eda89185\u003c/code\u003e\u003c/a\u003e Bump the all-deps group with 3 updates (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1751\"\u003e#1751\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/50516ff45c3675d9c2d247e70bc8db691ed8366d\"\u003e\u003ccode\u003e50516ff\u003c/code\u003e\u003c/a\u003e Bump the all-deps group with 2 updates (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1749\"\u003e#1749\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/fd71de97fdc7050b9a2d8384f5f8afce7d991ca3\"\u003e\u003ccode\u003efd71de9\u003c/code\u003e\u003c/a\u003e Bump the all-deps group with 2 updates (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1747\"\u003e#1747\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/rand_core-0.9.2...0.10.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand_regex` from 0.18.1 to 0.19.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kennytm/rand_regex/releases\"\u003erand_regex's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.19.0\u003c/h2\u003e\n\u003cp\u003eUpdated \u003ccode\u003erand\u003c/code\u003e dependency.\u003c/p\u003e\n\u003cp\u003eDepends on \u003ccode\u003erand 0.10\u003c/code\u003e and \u003ccode\u003eregex-syntax 0.8\u003c/code\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e...\n\n_Description has been truncated_","html_url":"https://github.com/yamashita-spce/WuppieFuzz/pull/14","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/yamashita-spce%2FWuppieFuzz/issues/14","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/14/packages"}},{"old_version":"1.4.0","new_version":"1.11.1","update_type":"minor","path":null,"pr_created_at":"2026-05-29T21:42:14.000Z","version_change":"1.4.0 → 1.11.1","issue":{"uuid":"4551801584","node_id":"PR_kwDORApVfc7g0L1t","number":25,"state":"open","title":"Bump the cargo group across 1 directory with 2 updates","user":"dependabot[bot]","labels":["dependencies","rust"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-29T21:42:14.000Z","updated_at":"2026-05-29T21:43:56.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"cargo","update_count":2,"packages":[{"name":"bytes","old_version":"1.4.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"tar","old_version":"0.4.38","new_version":"0.4.46","repository_url":"https://github.com/composefs/tar-rs"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 2 updates in the /packages/compositor directory: [bytes](https://github.com/tokio-rs/bytes) and [tar](https://github.com/composefs/tar-rs).\n\nUpdates `bytes` from 1.4.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.10.1\u003c/h2\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/bytes/pull/773\"\u003etokio-rs/bytes#773\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eBytes v1.10.0\u003c/h2\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.9.0 (November 27, 2024)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eBytes::from_owner\u003c/code\u003e to enable externally-allocated memory (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/742\"\u003e#742\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumented\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.4.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 0.4.38 to 0.4.46\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/composefs/tar-rs/releases\"\u003etar's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.46\u003c/h2\u003e\n\u003ch2\u003eSecurity\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003earchive: Fix another PAX header desync (GHSA-3cv2-h65g-fgmm) by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/454\"\u003ecomposefs/tar-rs#454\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee also \u003ca href=\"https://github.com/astral-sh/tokio-tar/security/advisories/GHSA-3cv2-h65g-fgmm\"\u003ehttps://github.com/astral-sh/tokio-tar/security/advisories/GHSA-3cv2-h65g-fgmm\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eOther changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eci: Fix and re-enable reverse dependency testing by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/444\"\u003ecomposefs/tar-rs#444\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate astral-tokio-tar requirement from 0.5 to 0.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/446\"\u003ecomposefs/tar-rs#446\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate some links by \u003ca href=\"https://github.com/atouchet\"\u003e\u003ccode\u003e@​atouchet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/445\"\u003ecomposefs/tar-rs#445\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support of absolute paths by \u003ca href=\"https://github.com/zxvfc\"\u003e\u003ccode\u003e@​zxvfc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/426\"\u003ecomposefs/tar-rs#426\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Expand notes on concurrent mutations and following symlinks by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/453\"\u003ecomposefs/tar-rs#453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate repo links by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/451\"\u003ecomposefs/tar-rs#451\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Add crates.io trusted publishing workflow by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/456\"\u003ecomposefs/tar-rs#456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease 0.4.46 by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/455\"\u003ecomposefs/tar-rs#455\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/446\"\u003ecomposefs/tar-rs#446\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/atouchet\"\u003e\u003ccode\u003e@​atouchet\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/445\"\u003ecomposefs/tar-rs#445\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zxvfc\"\u003e\u003ccode\u003e@​zxvfc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/426\"\u003ecomposefs/tar-rs#426\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/composefs/tar-rs/compare/0.4.45...0.4.46\"\u003ehttps://github.com/composefs/tar-rs/compare/0.4.45...0.4.46\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/fc459c149f83bf4daceaa52e17d351989002e1a9\"\u003e\u003ccode\u003efc459c1\u003c/code\u003e\u003c/a\u003e Release 0.4.46\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/43e05a85e053d5e64eeda0b04e279be8686419b6\"\u003e\u003ccode\u003e43e05a8\u003c/code\u003e\u003c/a\u003e ci: Add crates.io trusted publishing workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/bba5666997d95dcd89a9d38235709a1d5e44565b\"\u003e\u003ccode\u003ebba5666\u003c/code\u003e\u003c/a\u003e Update repo links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/cd94c46e0d74fbcc50eea3f30665a1b1159254cc\"\u003e\u003ccode\u003ecd94c46\u003c/code\u003e\u003c/a\u003e docs: Document TOCTOU / concurrent-mutation threat model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/1b4997cf5ef115f8d82680016c28490b5645b9c7\"\u003e\u003ccode\u003e1b4997c\u003c/code\u003e\u003c/a\u003e builder: Expand docs for follow_symlinks and append_dir_all\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/bab14dd84b411ac16ecb56d4f2d2f7bfb88a9838\"\u003e\u003ccode\u003ebab14dd\u003c/code\u003e\u003c/a\u003e archive: Fix another PAX header desync (GHSA-3cv2-h65g-fgmm)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/2349b494827807791473f3c6ca9b2fc5ef274cdb\"\u003e\u003ccode\u003e2349b49\u003c/code\u003e\u003c/a\u003e Add support of absolute paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/39d031184127427bd9a740b7e20afd31deead928\"\u003e\u003ccode\u003e39d0311\u003c/code\u003e\u003c/a\u003e Update some links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/59d803e2f1ed39272c4c1d1cdb04d799280b3335\"\u003e\u003ccode\u003e59d803e\u003c/code\u003e\u003c/a\u003e Update astral-tokio-tar requirement from 0.5 to 0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/8296b9a88cfcdbdd1e3b59cd820899b35e6151e1\"\u003e\u003ccode\u003e8296b9a\u003c/code\u003e\u003c/a\u003e ci: Fix and re-enable reverse dependency testing (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/444\"\u003e#444\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/composefs/tar-rs/compare/0.4.38...0.4.46\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/ahump20/remotion/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/ahump20/remotion/pull/25","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ahump20%2Fremotion/issues/25","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/25/packages"}},{"old_version":"1.11.0","new_version":"1.11.1","update_type":"patch","path":null,"pr_created_at":"2026-05-29T21:35:00.000Z","version_change":"1.11.0 → 1.11.1","issue":{"uuid":"4551762377","node_id":"PR_kwDOQKReU87g0DlB","number":10,"state":"open","title":"chore(deps): bump the cargo group across 1 directory with 5 updates","user":"dependabot[bot]","labels":["dependencies","needs:compliance","needs:issue","rust"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-29T21:35:00.000Z","updated_at":"2026-05-29T21:35:11.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"cargo","update_count":5,"packages":[{"name":"bytes","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"quinn-proto","old_version":"0.11.13","new_version":"0.11.14","repository_url":"https://github.com/quinn-rs/quinn"},{"name":"rustls-webpki","old_version":"0.103.8","new_version":"0.103.13","repository_url":"https://github.com/rustls/webpki"},{"name":"tar","old_version":"0.4.44","new_version":"0.4.46","repository_url":"https://github.com/composefs/tar-rs"},{"name":"time","old_version":"0.3.44","new_version":"0.3.47","repository_url":"https://github.com/time-rs/time"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 5 updates in the /packages/desktop/src-tauri directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.11.0` | `1.11.1` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.13` | `0.11.14` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.103.8` | `0.103.13` |\n| [tar](https://github.com/composefs/tar-rs) | `0.4.44` | `0.4.46` |\n| [time](https://github.com/time-rs/time) | `0.3.44` | `0.3.47` |\n\n\nUpdates `bytes` from 1.11.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.11.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `quinn-proto` from 0.11.13 to 0.11.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quinn-rs/quinn/releases\"\u003equinn-proto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003equinn-proto 0.11.14\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jxs\"\u003e\u003ccode\u003e@​jxs\u003c/code\u003e\u003c/a\u003e reported a denial of service issue in quinn-proto 5 days ago:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\"\u003ehttps://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eWe coordinated with them to release this version to patch the issue. Unfortunately the maintainers missed these issues during code review and we did not have enough fuzzing coverage -- we regret the oversight and have added an additional fuzzing target.\u003c/p\u003e\n\u003cp\u003eOrganizations that want to participate in coordinated disclosure can contact us privately to discuss terms.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix over-permissive proto dependency edge by \u003ca href=\"https://github.com/Ralith\"\u003e\u003ccode\u003e@​Ralith\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2385\"\u003equinn-rs/quinn#2385\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e0.11.x: avoid unwrapping VarInt decoding during parameter parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2559\"\u003equinn-rs/quinn#2559\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/2c315aa7f9c2a6c1db87f8f51f40623a427c78fd\"\u003e\u003ccode\u003e2c315aa\u003c/code\u003e\u003c/a\u003e proto: bump version to 0.11.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8ad47f431e7deb82c08b09c2e33ef85aa88fd212\"\u003e\u003ccode\u003e8ad47f4\u003c/code\u003e\u003c/a\u003e Use newer rustls-pki-types PEM parser API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c81c0289abe30d8437ccbf9b6304e2bc9c707cea\"\u003e\u003ccode\u003ec81c028\u003c/code\u003e\u003c/a\u003e ci: fix workflow syntax\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/0050172969f7e69e136c433181330da7790d8d73\"\u003e\u003ccode\u003e0050172\u003c/code\u003e\u003c/a\u003e ci: pin wasm-bindgen-cli version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8a6f82c58d1c565eab78f986e614223e6ed76a85\"\u003e\u003ccode\u003e8a6f82c\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/e52db4ad8df0f9720e7b0e32ecc0e48c9a93de0f\"\u003e\u003ccode\u003ee52db4a\u003c/code\u003e\u003c/a\u003e Apply suggestions from clippy 1.91\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/6df7275c582ca9b7225e0ccf9f9871a55eb73155\"\u003e\u003ccode\u003e6df7275\u003c/code\u003e\u003c/a\u003e chore: Fix \u003ccode\u003eunnecessary_unwrap\u003c/code\u003e clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c8eefa07e087b06d8f2b78ff262ce8ac952994f1\"\u003e\u003ccode\u003ec8eefa0\u003c/code\u003e\u003c/a\u003e proto: avoid unwrapping varint decoding during parameters parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/9723a977754c8662001b0fef97aab8f3ddf1df92\"\u003e\u003ccode\u003e9723a97\u003c/code\u003e\u003c/a\u003e fuzz: add fuzzing target for parsing transport parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/eaf0ef30252cef4acec21f150427e604cd4271c9\"\u003e\u003ccode\u003eeaf0ef3\u003c/code\u003e\u003c/a\u003e Fix over-permissive proto dependency edge (\u003ca href=\"https://redirect.github.com/quinn-rs/quinn/issues/2385\"\u003e#2385\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quinn-rs/quinn/compare/quinn-proto-0.11.13...quinn-proto-0.11.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls-webpki` from 0.103.8 to 0.103.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rustls/webpki/releases\"\u003erustls-webpki's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.103.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix reachable panic in parsing a CRL\u003c/strong\u003e. This was reported to us as \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-82j2-j2ch-gfr8\"\u003eGHSA-82j2-j2ch-gfr8\u003c/a\u003e. Users who don't use CRLs are not affected.\u003c/li\u003e\n\u003cli\u003eFor name constraints on URI names, we incorrectly processed excluded subtrees in a way which inverted the desired meaning. See \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/471\"\u003erustls/webpki#471\u003c/a\u003e. This was a case missing in the fix for \u003ca href=\"https://github.com/advisories/GHSA-965h-392x-2mh5\"\u003ehttps://github.com/advisories/GHSA-965h-392x-2mh5\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eActually fail closed for URI matching against excluded subtrees by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/473\"\u003erustls/webpki#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.13 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/474\"\u003erustls/webpki#474\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.12\u003c/h2\u003e\n\u003cp\u003eThis release fixes two bugs in name constraint enforcement:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-965h-392x-2mh5\u003c/strong\u003e: name constraints for URI names were ignored and therefore accepted. URI name constraints are now rejected unconditionally. Note this library does not provide an API for asserting URI names, and URI name constraints are otherwise not implemented.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-xgp8-3hg3-c2mh\u003c/strong\u003e: permitted subtree name constraints for DNS names were accepted for certificates asserting a wildcard name. This was incorrect because, given a name constraint of \u003ccode\u003eaccept.example.com\u003c/code\u003e, \u003ccode\u003e*.example.com\u003c/code\u003e could feasibly allow a name of \u003ccode\u003ereject.example.com\u003c/code\u003e which is outside the constraint. This is very similar to \u003ca href=\"https://go.dev/issue/76442\"\u003eCVE-2025-61727\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSince name constraints are restrictions on otherwise properly-issued certificates, these bugs are reachable only after signature verification and require misissuance to exploit.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrepare 0.103.12 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/470\"\u003erustls/webpki#470\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.11\u003c/h2\u003e\n\u003cp\u003eIn response to \u003ca href=\"https://redirect.github.com/rustls/webpki/issues/464\"\u003e#464\u003c/a\u003e, we've slightly relaxed requirements for \u003ccode\u003eanchor_from_trust_cert()\u003c/code\u003e to ignore unknown extensions even if they're marked as critical. This only affects parsing a \u003ccode\u003eTrustAnchor\u003c/code\u003e from DER, for which most extensions are ignored anyway.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport parsing trust anchors with unknown critical extensions to 0.103 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/466\"\u003erustls/webpki#466\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.103.10\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eCorrect selection of candidate CRLs by Distribution Point and Issuing Distribution Point\u003c/strong\u003e. If a certificate had more than one \u003ccode\u003edistributionPoint\u003c/code\u003e, then only the first \u003ccode\u003edistributionPoint\u003c/code\u003e would be considered against each CRL's \u003ccode\u003eIssuingDistributionPoint\u003c/code\u003e \u003ccode\u003edistributionPoint\u003c/code\u003e, and then the certificate's subsequent \u003ccode\u003edistributionPoint\u003c/code\u003es would be ignored.\u003c/p\u003e\n\u003cp\u003eThe impact was that correctly provided CRLs would not be consulted to check revocation. With \u003ccode\u003eUnknownStatusPolicy::Deny\u003c/code\u003e (the default) this would lead to incorrect but safe \u003ccode\u003eError::UnknownRevocationStatus\u003c/code\u003e. With \u003ccode\u003eUnknownStatusPolicy::Allow\u003c/code\u003e this would lead to inappropriate acceptance of revoked certificates.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is thought to be of limited impact. This is because both the certificate and CRL are signed -- an attacker would need to compromise a trusted issuing authority to trigger this bug.  An attacker with such capabilities could likely bypass revocation checking through other more impactful means (such as publishing a valid, empty CRL.)\u003c/p\u003e\n\u003cp\u003eMore likely, this bug would be latent in normal use, and an attacker could leverage faulty revocation checking to continue using a revoked credential.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is identified by \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-pwjx-qhcg-rvj4\"\u003eGHSA-pwjx-qhcg-rvj4\u003c/a\u003e. Thank you to \u003ca href=\"https://github.com/1seal\"\u003e\u003ccode\u003e@​1seal\u003c/code\u003e\u003c/a\u003e for the report.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFreshen up rel-0.103 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/455\"\u003erustls/webpki#455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.10 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/458\"\u003erustls/webpki#458\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2879b2ce7a476181ac3050f73fe0835f04728e86\"\u003e\u003ccode\u003e2879b2c\u003c/code\u003e\u003c/a\u003e Prepare 0.103.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2c49773d823f48c87db30db7a66c25993c847007\"\u003e\u003ccode\u003e2c49773\u003c/code\u003e\u003c/a\u003e Improve tests for padding of \u003ccode\u003eBitStringFlags\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/4e3c0b393a7bfb9cbe6dcdc8309cbadf8ee00c51\"\u003e\u003ccode\u003e4e3c0b3\u003c/code\u003e\u003c/a\u003e Correct validation of BIT STRING constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/39c91d2525a542a7f651a1a62c3462e8115cc39e\"\u003e\u003ccode\u003e39c91d2\u003c/code\u003e\u003c/a\u003e Actually fail closed for URI matching against excluded subtrees\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/27131d476e2b68a537e629d6d012bef8dad6efd3\"\u003e\u003ccode\u003e27131d4\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/6ecb8769cde2246e761e058709421c14a7dee6b1\"\u003e\u003ccode\u003e6ecb876\u003c/code\u003e\u003c/a\u003e Clean up stuttery enum variant names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/318b3e6e03ca2bc21600ca6bb0d0c6439b9e6aeb\"\u003e\u003ccode\u003e318b3e6\u003c/code\u003e\u003c/a\u003e Ignore wildcard labels when matching name constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/12196229a327d3d670798688254bd3ea24aba24b\"\u003e\u003ccode\u003e1219622\u003c/code\u003e\u003c/a\u003e Rewrite constraint matching to avoid permissive catch-all branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/57bc62ce538c2d0d31d44b3eb8c58e6a0a764b47\"\u003e\u003ccode\u003e57bc62c\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/d0fa01ee0a76b7585c13ec43de5854955146ffef\"\u003e\u003ccode\u003ed0fa01e\u003c/code\u003e\u003c/a\u003e Allow parsing trust anchors with unknown criticial extensions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.8...v/0.103.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 0.4.44 to 0.4.46\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/composefs/tar-rs/releases\"\u003etar's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.46\u003c/h2\u003e\n\u003ch2\u003eSecurity\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003earchive: Fix another PAX header desync (GHSA-3cv2-h65g-fgmm) by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/454\"\u003ecomposefs/tar-rs#454\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee also \u003ca href=\"https://github.com/astral-sh/tokio-tar/security/advisories/GHSA-3cv2-h65g-fgmm\"\u003ehttps://github.com/astral-sh/tokio-tar/security/advisories/GHSA-3cv2-h65g-fgmm\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eOther changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eci: Fix and re-enable reverse dependency testing by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/444\"\u003ecomposefs/tar-rs#444\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate astral-tokio-tar requirement from 0.5 to 0.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/446\"\u003ecomposefs/tar-rs#446\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate some links by \u003ca href=\"https://github.com/atouchet\"\u003e\u003ccode\u003e@​atouchet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/445\"\u003ecomposefs/tar-rs#445\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support of absolute paths by \u003ca href=\"https://github.com/zxvfc\"\u003e\u003ccode\u003e@​zxvfc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/426\"\u003ecomposefs/tar-rs#426\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Expand notes on concurrent mutations and following symlinks by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/453\"\u003ecomposefs/tar-rs#453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate repo links by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/451\"\u003ecomposefs/tar-rs#451\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Add crates.io trusted publishing workflow by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/456\"\u003ecomposefs/tar-rs#456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease 0.4.46 by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/455\"\u003ecomposefs/tar-rs#455\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/446\"\u003ecomposefs/tar-rs#446\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/atouchet\"\u003e\u003ccode\u003e@​atouchet\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/445\"\u003ecomposefs/tar-rs#445\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zxvfc\"\u003e\u003ccode\u003e@​zxvfc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/426\"\u003ecomposefs/tar-rs#426\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/composefs/tar-rs/compare/0.4.45...0.4.46\"\u003ehttps://github.com/composefs/tar-rs/compare/0.4.45...0.4.46\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/fc459c149f83bf4daceaa52e17d351989002e1a9\"\u003e\u003ccode\u003efc459c1\u003c/code\u003e\u003c/a\u003e Release 0.4.46\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/43e05a85e053d5e64eeda0b04e279be8686419b6\"\u003e\u003ccode\u003e43e05a8\u003c/code\u003e\u003c/a\u003e ci: Add crates.io trusted publishing workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/bba5666997d95dcd89a9d38235709a1d5e44565b\"\u003e\u003ccode\u003ebba5666\u003c/code\u003e\u003c/a\u003e Update repo links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/cd94c46e0d74fbcc50eea3f30665a1b1159254cc\"\u003e\u003ccode\u003ecd94c46\u003c/code\u003e\u003c/a\u003e docs: Document TOCTOU / concurrent-mutation threat model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/1b4997cf5ef115f8d82680016c28490b5645b9c7\"\u003e\u003ccode\u003e1b4997c\u003c/code\u003e\u003c/a\u003e builder: Expand docs for follow_symlinks and append_dir_all\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/bab14dd84b411ac16ecb56d4f2d2f7bfb88a9838\"\u003e\u003ccode\u003ebab14dd\u003c/code\u003e\u003c/a\u003e archive: Fix another PAX header desync (GHSA-3cv2-h65g-fgmm)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/2349b494827807791473f3c6ca9b2fc5ef274cdb\"\u003e\u003ccode\u003e2349b49\u003c/code\u003e\u003c/a\u003e Add support of absolute paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/39d031184127427bd9a740b7e20afd31deead928\"\u003e\u003ccode\u003e39d0311\u003c/code\u003e\u003c/a\u003e Update some links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/59d803e2f1ed39272c4c1d1cdb04d799280b3335\"\u003e\u003ccode\u003e59d803e\u003c/code\u003e\u003c/a\u003e Update astral-tokio-tar requirement from 0.5 to 0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/8296b9a88cfcdbdd1e3b59cd820899b35e6151e1\"\u003e\u003ccode\u003e8296b9a\u003c/code\u003e\u003c/a\u003e ci: Fix and re-enable reverse dependency testing (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/444\"\u003e#444\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/composefs/tar-rs/compare/0.4.44...0.4.46\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.44 to 0.3.47\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.47\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.46\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.45\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003etime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.47 [2026-02-05]\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eThe possibility of a stack exhaustion denial of service attack when parsing RFC 2822 has been\neliminated. Previously, it was possible to craft input that would cause unbounded recursion. Now,\nthe depth of the recursion is tracked, causing an error to be returned if it exceeds a reasonable\nlimit.\u003c/p\u003e\n\u003cp\u003eThis attack vector requires parsing user-provided input, with any type, using the RFC 2822 format.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCompatibility\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAttempting to format a value with a well-known format (i.e. RFC 3339, RFC 2822, or ISO 8601) will\nerror at compile time if the type being formatted does not provide sufficient information. This\nwould previously fail at runtime. Similarly, attempting to format a value with ISO 8601 that is\nonly configured for parsing (i.e. \u003ccode\u003eIso8601::PARSING\u003c/code\u003e) will error at compile time.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBuilder methods for format description modifiers, eliminating the need for verbose initialization\nwhen done manually.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edate!(2026-W01-2)\u003c/code\u003e is now supported. Previously, a space was required between \u003ccode\u003eW\u003c/code\u003e and \u003ccode\u003e01\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[end]\u003c/code\u003e now has a \u003ccode\u003etrailing_input\u003c/code\u003e modifier which can either be \u003ccode\u003eprohibit\u003c/code\u003e (the default) or\n\u003ccode\u003ediscard\u003c/code\u003e. When it is \u003ccode\u003ediscard\u003c/code\u003e, all remaining input is ignored. Note that if there are components\nafter \u003ccode\u003e[end]\u003c/code\u003e, they will still attempt to be parsed, likely resulting in an error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMore performance gains when parsing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIf manually formatting a value, the number of bytes written was one short for some components.\nThis has been fixed such that the number of bytes written is always correct.\u003c/li\u003e\n\u003cli\u003eThe possibility of integer overflow when parsing an owned format description has been effectively\neliminated. This would previously wrap when overflow checks were disabled. Instead of storing the\ndepth as \u003ccode\u003eu8\u003c/code\u003e, it is stored as \u003ccode\u003eu32\u003c/code\u003e. This would require multiple gigabytes of nested input to\noverflow, at which point we've got other problems and trivial mitigations are available by\ndownstream users.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.46 [2026-01-23]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAll possible panics are now documented for the relevant methods.\u003c/li\u003e\n\u003cli\u003eThe need to use \u003ccode\u003e#[serde(default)]\u003c/code\u003e when using custom \u003ccode\u003eserde\u003c/code\u003e formats is documented. This applies\nonly when deserializing an \u003ccode\u003eOption\u0026lt;T\u0026gt;\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDuration::nanoseconds_i128\u003c/code\u003e has been made public, mirroring\n\u003ccode\u003estd::time::Duration::from_nanos_u128\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/d5144cd2874862d46466c900910cd8577d066019\"\u003e\u003ccode\u003ed5144cd\u003c/code\u003e\u003c/a\u003e v0.3.47 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/f6206b050fd54817d8872834b4d61f605570e89b\"\u003e\u003ccode\u003ef6206b0\u003c/code\u003e\u003c/a\u003e Guard against integer overflow in release mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/1c63dc7985b8fa26bd8c689423cc56b7a03841ee\"\u003e\u003ccode\u003e1c63dc7\u003c/code\u003e\u003c/a\u003e Avoid denial of service when parsing Rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/5940df6e72efb63d246ca1ca59a0f836ad32ad8a\"\u003e\u003ccode\u003e5940df6\u003c/code\u003e\u003c/a\u003e Add builder methods to avoid verbose construction\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/00881a4da1bc5a6cb6313052e5017dbd7daa40f0\"\u003e\u003ccode\u003e00881a4\u003c/code\u003e\u003c/a\u003e Manually format macros everywhere\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/bb723b6d826e46c174d75cd08987061984b0ceb7\"\u003e\u003ccode\u003ebb723b6\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003etrailing_input\u003c/code\u003e modifier to \u003ccode\u003eend\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/31c4f8e0b56e6ae24fe0d6ef0e492b6741dda783\"\u003e\u003ccode\u003e31c4f8e\u003c/code\u003e\u003c/a\u003e Permit \u003ccode\u003eW12\u003c/code\u003e in \u003ccode\u003edate!\u003c/code\u003e macro\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/490a17bf306576850f33a86d3ca95d96db7b1dcd\"\u003e\u003ccode\u003e490a17b\u003c/code\u003e\u003c/a\u003e Mark error paths in well-known formats as cold\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6cb1896a600be1538ecfab8f233fe9cfe9fa8951\"\u003e\u003ccode\u003e6cb1896\u003c/code\u003e\u003c/a\u003e Optimize \u003ccode\u003eRfc2822\u003c/code\u003e parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6d264d59c25e3da0453c3defebf4640b0086a006\"\u003e\u003ccode\u003e6d264d5\u003c/code\u003e\u003c/a\u003e Remove erroneous \u003ccode\u003e#[inline(never)]\u003c/code\u003e attributes\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/time-rs/time/compare/v0.3.44...v0.3.47\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/iansherr/opencode/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/iansherr/opencode/pull/10","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/iansherr%2Fopencode/issues/10","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/10/packages"}},{"old_version":"1.11.0","new_version":"1.11.1","update_type":"patch","path":null,"pr_created_at":"2026-05-29T21:32:43.000Z","version_change":"1.11.0 → 1.11.1","issue":{"uuid":"4551749764","node_id":"PR_kwDOP4vDYM7g0A5z","number":13,"state":"closed","title":"chore(deps): bump the cargo group across 1 directory with 5 updates","user":"dependabot[bot]","labels":["dependencies","needs:issue","rust"],"assignees":[],"locked":false,"comments_count":4,"pull_request":true,"closed_at":"2026-05-30T00:13:47.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-29T21:32:43.000Z","updated_at":"2026-05-30T00:13:56.000Z","time_to_close":9664,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"cargo","update_count":5,"packages":[{"name":"bytes","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"quinn-proto","old_version":"0.11.13","new_version":"0.11.14","repository_url":"https://github.com/quinn-rs/quinn"},{"name":"rustls-webpki","old_version":"0.103.8","new_version":"0.103.13","repository_url":"https://github.com/rustls/webpki"},{"name":"tar","old_version":"0.4.44","new_version":"0.4.46","repository_url":"https://github.com/composefs/tar-rs"},{"name":"time","old_version":"0.3.44","new_version":"0.3.47","repository_url":"https://github.com/time-rs/time"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 5 updates in the /packages/desktop/src-tauri directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.11.0` | `1.11.1` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.13` | `0.11.14` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.103.8` | `0.103.13` |\n| [tar](https://github.com/composefs/tar-rs) | `0.4.44` | `0.4.46` |\n| [time](https://github.com/time-rs/time) | `0.3.44` | `0.3.47` |\n\n\nUpdates `bytes` from 1.11.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.11.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `quinn-proto` from 0.11.13 to 0.11.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quinn-rs/quinn/releases\"\u003equinn-proto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003equinn-proto 0.11.14\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jxs\"\u003e\u003ccode\u003e@​jxs\u003c/code\u003e\u003c/a\u003e reported a denial of service issue in quinn-proto 5 days ago:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\"\u003ehttps://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eWe coordinated with them to release this version to patch the issue. Unfortunately the maintainers missed these issues during code review and we did not have enough fuzzing coverage -- we regret the oversight and have added an additional fuzzing target.\u003c/p\u003e\n\u003cp\u003eOrganizations that want to participate in coordinated disclosure can contact us privately to discuss terms.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix over-permissive proto dependency edge by \u003ca href=\"https://github.com/Ralith\"\u003e\u003ccode\u003e@​Ralith\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2385\"\u003equinn-rs/quinn#2385\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e0.11.x: avoid unwrapping VarInt decoding during parameter parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2559\"\u003equinn-rs/quinn#2559\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/2c315aa7f9c2a6c1db87f8f51f40623a427c78fd\"\u003e\u003ccode\u003e2c315aa\u003c/code\u003e\u003c/a\u003e proto: bump version to 0.11.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8ad47f431e7deb82c08b09c2e33ef85aa88fd212\"\u003e\u003ccode\u003e8ad47f4\u003c/code\u003e\u003c/a\u003e Use newer rustls-pki-types PEM parser API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c81c0289abe30d8437ccbf9b6304e2bc9c707cea\"\u003e\u003ccode\u003ec81c028\u003c/code\u003e\u003c/a\u003e ci: fix workflow syntax\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/0050172969f7e69e136c433181330da7790d8d73\"\u003e\u003ccode\u003e0050172\u003c/code\u003e\u003c/a\u003e ci: pin wasm-bindgen-cli version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8a6f82c58d1c565eab78f986e614223e6ed76a85\"\u003e\u003ccode\u003e8a6f82c\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/e52db4ad8df0f9720e7b0e32ecc0e48c9a93de0f\"\u003e\u003ccode\u003ee52db4a\u003c/code\u003e\u003c/a\u003e Apply suggestions from clippy 1.91\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/6df7275c582ca9b7225e0ccf9f9871a55eb73155\"\u003e\u003ccode\u003e6df7275\u003c/code\u003e\u003c/a\u003e chore: Fix \u003ccode\u003eunnecessary_unwrap\u003c/code\u003e clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c8eefa07e087b06d8f2b78ff262ce8ac952994f1\"\u003e\u003ccode\u003ec8eefa0\u003c/code\u003e\u003c/a\u003e proto: avoid unwrapping varint decoding during parameters parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/9723a977754c8662001b0fef97aab8f3ddf1df92\"\u003e\u003ccode\u003e9723a97\u003c/code\u003e\u003c/a\u003e fuzz: add fuzzing target for parsing transport parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/eaf0ef30252cef4acec21f150427e604cd4271c9\"\u003e\u003ccode\u003eeaf0ef3\u003c/code\u003e\u003c/a\u003e Fix over-permissive proto dependency edge (\u003ca href=\"https://redirect.github.com/quinn-rs/quinn/issues/2385\"\u003e#2385\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quinn-rs/quinn/compare/quinn-proto-0.11.13...quinn-proto-0.11.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls-webpki` from 0.103.8 to 0.103.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rustls/webpki/releases\"\u003erustls-webpki's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.103.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix reachable panic in parsing a CRL\u003c/strong\u003e. This was reported to us as \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-82j2-j2ch-gfr8\"\u003eGHSA-82j2-j2ch-gfr8\u003c/a\u003e. Users who don't use CRLs are not affected.\u003c/li\u003e\n\u003cli\u003eFor name constraints on URI names, we incorrectly processed excluded subtrees in a way which inverted the desired meaning. See \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/471\"\u003erustls/webpki#471\u003c/a\u003e. This was a case missing in the fix for \u003ca href=\"https://github.com/advisories/GHSA-965h-392x-2mh5\"\u003ehttps://github.com/advisories/GHSA-965h-392x-2mh5\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eActually fail closed for URI matching against excluded subtrees by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/473\"\u003erustls/webpki#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.13 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/474\"\u003erustls/webpki#474\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.12\u003c/h2\u003e\n\u003cp\u003eThis release fixes two bugs in name constraint enforcement:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-965h-392x-2mh5\u003c/strong\u003e: name constraints for URI names were ignored and therefore accepted. URI name constraints are now rejected unconditionally. Note this library does not provide an API for asserting URI names, and URI name constraints are otherwise not implemented.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-xgp8-3hg3-c2mh\u003c/strong\u003e: permitted subtree name constraints for DNS names were accepted for certificates asserting a wildcard name. This was incorrect because, given a name constraint of \u003ccode\u003eaccept.example.com\u003c/code\u003e, \u003ccode\u003e*.example.com\u003c/code\u003e could feasibly allow a name of \u003ccode\u003ereject.example.com\u003c/code\u003e which is outside the constraint. This is very similar to \u003ca href=\"https://go.dev/issue/76442\"\u003eCVE-2025-61727\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSince name constraints are restrictions on otherwise properly-issued certificates, these bugs are reachable only after signature verification and require misissuance to exploit.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrepare 0.103.12 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/470\"\u003erustls/webpki#470\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.11\u003c/h2\u003e\n\u003cp\u003eIn response to \u003ca href=\"https://redirect.github.com/rustls/webpki/issues/464\"\u003e#464\u003c/a\u003e, we've slightly relaxed requirements for \u003ccode\u003eanchor_from_trust_cert()\u003c/code\u003e to ignore unknown extensions even if they're marked as critical. This only affects parsing a \u003ccode\u003eTrustAnchor\u003c/code\u003e from DER, for which most extensions are ignored anyway.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport parsing trust anchors with unknown critical extensions to 0.103 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/466\"\u003erustls/webpki#466\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.103.10\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eCorrect selection of candidate CRLs by Distribution Point and Issuing Distribution Point\u003c/strong\u003e. If a certificate had more than one \u003ccode\u003edistributionPoint\u003c/code\u003e, then only the first \u003ccode\u003edistributionPoint\u003c/code\u003e would be considered against each CRL's \u003ccode\u003eIssuingDistributionPoint\u003c/code\u003e \u003ccode\u003edistributionPoint\u003c/code\u003e, and then the certificate's subsequent \u003ccode\u003edistributionPoint\u003c/code\u003es would be ignored.\u003c/p\u003e\n\u003cp\u003eThe impact was that correctly provided CRLs would not be consulted to check revocation. With \u003ccode\u003eUnknownStatusPolicy::Deny\u003c/code\u003e (the default) this would lead to incorrect but safe \u003ccode\u003eError::UnknownRevocationStatus\u003c/code\u003e. With \u003ccode\u003eUnknownStatusPolicy::Allow\u003c/code\u003e this would lead to inappropriate acceptance of revoked certificates.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is thought to be of limited impact. This is because both the certificate and CRL are signed -- an attacker would need to compromise a trusted issuing authority to trigger this bug.  An attacker with such capabilities could likely bypass revocation checking through other more impactful means (such as publishing a valid, empty CRL.)\u003c/p\u003e\n\u003cp\u003eMore likely, this bug would be latent in normal use, and an attacker could leverage faulty revocation checking to continue using a revoked credential.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is identified by \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-pwjx-qhcg-rvj4\"\u003eGHSA-pwjx-qhcg-rvj4\u003c/a\u003e. Thank you to \u003ca href=\"https://github.com/1seal\"\u003e\u003ccode\u003e@​1seal\u003c/code\u003e\u003c/a\u003e for the report.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFreshen up rel-0.103 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/455\"\u003erustls/webpki#455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.10 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/458\"\u003erustls/webpki#458\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2879b2ce7a476181ac3050f73fe0835f04728e86\"\u003e\u003ccode\u003e2879b2c\u003c/code\u003e\u003c/a\u003e Prepare 0.103.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2c49773d823f48c87db30db7a66c25993c847007\"\u003e\u003ccode\u003e2c49773\u003c/code\u003e\u003c/a\u003e Improve tests for padding of \u003ccode\u003eBitStringFlags\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/4e3c0b393a7bfb9cbe6dcdc8309cbadf8ee00c51\"\u003e\u003ccode\u003e4e3c0b3\u003c/code\u003e\u003c/a\u003e Correct validation of BIT STRING constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/39c91d2525a542a7f651a1a62c3462e8115cc39e\"\u003e\u003ccode\u003e39c91d2\u003c/code\u003e\u003c/a\u003e Actually fail closed for URI matching against excluded subtrees\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/27131d476e2b68a537e629d6d012bef8dad6efd3\"\u003e\u003ccode\u003e27131d4\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/6ecb8769cde2246e761e058709421c14a7dee6b1\"\u003e\u003ccode\u003e6ecb876\u003c/code\u003e\u003c/a\u003e Clean up stuttery enum variant names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/318b3e6e03ca2bc21600ca6bb0d0c6439b9e6aeb\"\u003e\u003ccode\u003e318b3e6\u003c/code\u003e\u003c/a\u003e Ignore wildcard labels when matching name constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/12196229a327d3d670798688254bd3ea24aba24b\"\u003e\u003ccode\u003e1219622\u003c/code\u003e\u003c/a\u003e Rewrite constraint matching to avoid permissive catch-all branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/57bc62ce538c2d0d31d44b3eb8c58e6a0a764b47\"\u003e\u003ccode\u003e57bc62c\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/d0fa01ee0a76b7585c13ec43de5854955146ffef\"\u003e\u003ccode\u003ed0fa01e\u003c/code\u003e\u003c/a\u003e Allow parsing trust anchors with unknown criticial extensions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.8...v/0.103.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 0.4.44 to 0.4.46\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/composefs/tar-rs/releases\"\u003etar's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.46\u003c/h2\u003e\n\u003ch2\u003eSecurity\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003earchive: Fix another PAX header desync (GHSA-3cv2-h65g-fgmm) by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/454\"\u003ecomposefs/tar-rs#454\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee also \u003ca href=\"https://github.com/astral-sh/tokio-tar/security/advisories/GHSA-3cv2-h65g-fgmm\"\u003ehttps://github.com/astral-sh/tokio-tar/security/advisories/GHSA-3cv2-h65g-fgmm\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eOther changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eci: Fix and re-enable reverse dependency testing by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/444\"\u003ecomposefs/tar-rs#444\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate astral-tokio-tar requirement from 0.5 to 0.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/446\"\u003ecomposefs/tar-rs#446\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate some links by \u003ca href=\"https://github.com/atouchet\"\u003e\u003ccode\u003e@​atouchet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/445\"\u003ecomposefs/tar-rs#445\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support of absolute paths by \u003ca href=\"https://github.com/zxvfc\"\u003e\u003ccode\u003e@​zxvfc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/426\"\u003ecomposefs/tar-rs#426\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Expand notes on concurrent mutations and following symlinks by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/453\"\u003ecomposefs/tar-rs#453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate repo links by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/451\"\u003ecomposefs/tar-rs#451\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Add crates.io trusted publishing workflow by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/456\"\u003ecomposefs/tar-rs#456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease 0.4.46 by \u003ca href=\"https://github.com/cgwalters\"\u003e\u003ccode\u003e@​cgwalters\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/455\"\u003ecomposefs/tar-rs#455\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/446\"\u003ecomposefs/tar-rs#446\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/atouchet\"\u003e\u003ccode\u003e@​atouchet\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/445\"\u003ecomposefs/tar-rs#445\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zxvfc\"\u003e\u003ccode\u003e@​zxvfc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/composefs/tar-rs/pull/426\"\u003ecomposefs/tar-rs#426\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/composefs/tar-rs/compare/0.4.45...0.4.46\"\u003ehttps://github.com/composefs/tar-rs/compare/0.4.45...0.4.46\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/fc459c149f83bf4daceaa52e17d351989002e1a9\"\u003e\u003ccode\u003efc459c1\u003c/code\u003e\u003c/a\u003e Release 0.4.46\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/43e05a85e053d5e64eeda0b04e279be8686419b6\"\u003e\u003ccode\u003e43e05a8\u003c/code\u003e\u003c/a\u003e ci: Add crates.io trusted publishing workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/bba5666997d95dcd89a9d38235709a1d5e44565b\"\u003e\u003ccode\u003ebba5666\u003c/code\u003e\u003c/a\u003e Update repo links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/cd94c46e0d74fbcc50eea3f30665a1b1159254cc\"\u003e\u003ccode\u003ecd94c46\u003c/code\u003e\u003c/a\u003e docs: Document TOCTOU / concurrent-mutation threat model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/1b4997cf5ef115f8d82680016c28490b5645b9c7\"\u003e\u003ccode\u003e1b4997c\u003c/code\u003e\u003c/a\u003e builder: Expand docs for follow_symlinks and append_dir_all\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/bab14dd84b411ac16ecb56d4f2d2f7bfb88a9838\"\u003e\u003ccode\u003ebab14dd\u003c/code\u003e\u003c/a\u003e archive: Fix another PAX header desync (GHSA-3cv2-h65g-fgmm)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/2349b494827807791473f3c6ca9b2fc5ef274cdb\"\u003e\u003ccode\u003e2349b49\u003c/code\u003e\u003c/a\u003e Add support of absolute paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/39d031184127427bd9a740b7e20afd31deead928\"\u003e\u003ccode\u003e39d0311\u003c/code\u003e\u003c/a\u003e Update some links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/59d803e2f1ed39272c4c1d1cdb04d799280b3335\"\u003e\u003ccode\u003e59d803e\u003c/code\u003e\u003c/a\u003e Update astral-tokio-tar requirement from 0.5 to 0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/8296b9a88cfcdbdd1e3b59cd820899b35e6151e1\"\u003e\u003ccode\u003e8296b9a\u003c/code\u003e\u003c/a\u003e ci: Fix and re-enable reverse dependency testing (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/444\"\u003e#444\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/composefs/tar-rs/compare/0.4.44...0.4.46\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.44 to 0.3.47\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.47\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.46\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.45\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003etime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.47 [2026-02-05]\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eThe possibility of a stack exhaustion denial of service attack when parsing RFC 2822 has been\neliminated. Previously, it was possible to craft input that would cause unbounded recursion. Now,\nthe depth of the recursion is tracked, causing an error to be returned if it exceeds a reasonable\nlimit.\u003c/p\u003e\n\u003cp\u003eThis attack vector requires parsing user-provided input, with any type, using the RFC 2822 format.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCompatibility\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAttempting to format a value with a well-known format (i.e. RFC 3339, RFC 2822, or ISO 8601) will\nerror at compile time if the type being formatted does not provide sufficient information. This\nwould previously fail at runtime. Similarly, attempting to format a value with ISO 8601 that is\nonly configured for parsing (i.e. \u003ccode\u003eIso8601::PARSING\u003c/code\u003e) will error at compile time.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBuilder methods for format description modifiers, eliminating the need for verbose initialization\nwhen done manually.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edate!(2026-W01-2)\u003c/code\u003e is now supported. Previously, a space was required between \u003ccode\u003eW\u003c/code\u003e and \u003ccode\u003e01\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[end]\u003c/code\u003e now has a \u003ccode\u003etrailing_input\u003c/code\u003e modifier which can either be \u003ccode\u003eprohibit\u003c/code\u003e (the default) or\n\u003ccode\u003ediscard\u003c/code\u003e. When it is \u003ccode\u003ediscard\u003c/code\u003e, all remaining input is ignored. Note that if there are components\nafter \u003ccode\u003e[end]\u003c/code\u003e, they will still attempt to be parsed, likely resulting in an error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMore performance gains when parsing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIf manually formatting a value, the number of bytes written was one short for some components.\nThis has been fixed such that the number of bytes written is always correct.\u003c/li\u003e\n\u003cli\u003eThe possibility of integer overflow when parsing an owned format description has been effectively\neliminated. This would previously wrap when overflow checks were disabled. Instead of storing the\ndepth as \u003ccode\u003eu8\u003c/code\u003e, it is stored as \u003ccode\u003eu32\u003c/code\u003e. This would require multiple gigabytes of nested input to\noverflow, at which point we've got other problems and trivial mitigations are available by\ndownstream users.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.46 [2026-01-23]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAll possible panics are now documented for the relevant methods.\u003c/li\u003e\n\u003cli\u003eThe need to use \u003ccode\u003e#[serde(default)]\u003c/code\u003e when using custom \u003ccode\u003eserde\u003c/code\u003e formats is documented. This applies\nonly when deserializing an \u003ccode\u003eOption\u0026lt;T\u0026gt;\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDuration::nanoseconds_i128\u003c/code\u003e has been made public, mirroring\n\u003ccode\u003estd::time::Duration::from_nanos_u128\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/d5144cd2874862d46466c900910cd8577d066019\"\u003e\u003ccode\u003ed5144cd\u003c/code\u003e\u003c/a\u003e v0.3.47 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/f6206b050fd54817d8872834b4d61f605570e89b\"\u003e\u003ccode\u003ef6206b0\u003c/code\u003e\u003c/a\u003e Guard against integer overflow in release mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/1c63dc7985b8fa26bd8c689423cc56b7a03841ee\"\u003e\u003ccode\u003e1c63dc7\u003c/code\u003e\u003c/a\u003e Avoid denial of service when parsing Rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/5940df6e72efb63d246ca1ca59a0f836ad32ad8a\"\u003e\u003ccode\u003e5940df6\u003c/code\u003e\u003c/a\u003e Add builder methods to avoid verbose construction\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/00881a4da1bc5a6cb6313052e5017dbd7daa40f0\"\u003e\u003ccode\u003e00881a4\u003c/code\u003e\u003c/a\u003e Manually format macros everywhere\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/bb723b6d826e46c174d75cd08987061984b0ceb7\"\u003e\u003ccode\u003ebb723b6\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003etrailing_input\u003c/code\u003e modifier to \u003ccode\u003eend\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/31c4f8e0b56e6ae24fe0d6ef0e492b6741dda783\"\u003e\u003ccode\u003e31c4f8e\u003c/code\u003e\u003c/a\u003e Permit \u003ccode\u003eW12\u003c/code\u003e in \u003ccode\u003edate!\u003c/code\u003e macro\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/490a17bf306576850f33a86d3ca95d96db7b1dcd\"\u003e\u003ccode\u003e490a17b\u003c/code\u003e\u003c/a\u003e Mark error paths in well-known formats as cold\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6cb1896a600be1538ecfab8f233fe9cfe9fa8951\"\u003e\u003ccode\u003e6cb1896\u003c/code\u003e\u003c/a\u003e Optimize \u003ccode\u003eRfc2822\u003c/code\u003e parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6d264d59c25e3da0453c3defebf4640b0086a006\"\u003e\u003ccode\u003e6d264d5\u003c/code\u003e\u003c/a\u003e Remove erroneous \u003ccode\u003e#[inline(never)]\u003c/code\u003e attributes\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/time-rs/time/compare/v0.3.44...v0.3.47\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kooymansfinds/opencode/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/kooymansfinds/opencode/pull/13","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/kooymansfinds%2Fopencode/issues/13","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/13/packages"}},{"old_version":"1.5.0","new_version":"1.11.1","update_type":"minor","path":null,"pr_created_at":"2026-05-28T17:28:21.000Z","version_change":"1.5.0 → 1.11.1","issue":{"uuid":"4542433697","node_id":"PR_kwDORg-oWs7gVcgU","number":9,"state":"closed","title":"build(deps): bump the cargo group across 2 directories with 14 updates","user":"dependabot[bot]","labels":["dependencies","rust"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-29T21:40:48.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-28T17:28:21.000Z","updated_at":"2026-05-29T21:40:50.000Z","time_to_close":101547,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"cargo","update_count":14,"packages":[{"name":"borsh","old_version":"0.10.3","new_version":"1.2.1","repository_url":"https://github.com/near/borsh-rs"},{"name":"bytes","old_version":"1.5.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"crossbeam-channel","old_version":"0.5.12","new_version":"0.5.15","repository_url":"https://github.com/crossbeam-rs/crossbeam"},{"name":"ed25519-dalek","old_version":"1.0.1","new_version":"2.0.0","repository_url":"https://github.com/dalek-cryptography/curve25519-dalek"},{"name":"openssl","old_version":"0.10.64","new_version":"0.10.80","repository_url":"https://github.com/rust-openssl/rust-openssl"},{"name":"rand","old_version":"0.7.3","new_version":"0.8.5","repository_url":"https://github.com/rust-random/rand"},{"name":"rpassword","old_version":"7.3.1","new_version":"7.5.0","repository_url":"https://github.com/conradkleinespel/rpassword"},{"name":"rustls","old_version":"0.21.10","new_version":"0.21.11","repository_url":"https://github.com/rustls/rustls"},{"name":"tar","old_version":"0.4.40","new_version":"0.4.45","repository_url":"https://github.com/composefs/tar-rs"},{"name":"h2","old_version":"0.3.24","new_version":"0.3.27","repository_url":"https://github.com/hyperium/h2"},{"name":"keccak","old_version":"0.1.5","new_version":"0.1.6","repository_url":"https://github.com/RustCrypto/sponges"},{"name":"time","old_version":"0.3.9","new_version":"0.3.44","repository_url":"https://github.com/time-rs/time"},{"name":"tracing-subscriber","old_version":"0.3.7","new_version":"0.3.19","repository_url":"https://github.com/tokio-rs/tracing"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 13 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [borsh](https://github.com/near/borsh-rs) | `0.10.3` | `1.2.1` |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.5.0` | `1.11.1` |\n| [crossbeam-channel](https://github.com/crossbeam-rs/crossbeam) | `0.5.12` | `0.5.15` |\n| [ed25519-dalek](https://github.com/dalek-cryptography/curve25519-dalek) | `1.0.1` | `2.0.0` |\n| [openssl](https://github.com/rust-openssl/rust-openssl) | `0.10.64` | `0.10.80` |\n| [rand](https://github.com/rust-random/rand) | `0.7.3` | `0.8.5` |\n| [rpassword](https://github.com/conradkleinespel/rpassword) | `7.3.1` | `7.5.0` |\n| [rustls](https://github.com/rustls/rustls) | `0.21.10` | `0.21.11` |\n| [tar](https://github.com/composefs/tar-rs) | `0.4.40` | `0.4.45` |\n| [h2](https://github.com/hyperium/h2) | `0.3.24` | `0.3.27` |\n| [keccak](https://github.com/RustCrypto/sponges) | `0.1.5` | `0.1.6` |\n| [time](https://github.com/time-rs/time) | `0.3.9` | `0.3.44` |\n| [tracing-subscriber](https://github.com/tokio-rs/tracing) | `0.3.7` | `0.3.19` |\n\nBumps the cargo group with 12 updates in the /programs/sbf directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.5.0` | `1.11.1` |\n| [crossbeam-channel](https://github.com/crossbeam-rs/crossbeam) | `0.5.12` | `0.5.15` |\n| [openssl](https://github.com/rust-openssl/rust-openssl) | `0.10.64` | `0.10.80` |\n| [rand](https://github.com/rust-random/rand) | `0.8.5` | `0.8.6` |\n| [rpassword](https://github.com/conradkleinespel/rpassword) | `7.3.1` | `7.5.0` |\n| [rustls](https://github.com/rustls/rustls) | `0.21.10` | `0.21.11` |\n| [tar](https://github.com/composefs/tar-rs) | `0.4.40` | `0.4.45` |\n| [h2](https://github.com/hyperium/h2) | `0.3.24` | `0.3.27` |\n| [keccak](https://github.com/RustCrypto/sponges) | `0.1.5` | `0.1.6` |\n| [time](https://github.com/time-rs/time) | `0.3.9` | `0.3.47` |\n| [tracing-subscriber](https://github.com/tokio-rs/tracing) | `0.3.11` | `0.3.19` |\n| [curve25519-dalek](https://github.com/dalek-cryptography/curve25519-dalek) | `3.2.1` | `4.1.3` |\n\n\nUpdates `borsh` from 0.10.3 to 1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/near/borsh-rs/releases\"\u003eborsh's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eborsh-derive-v1.2.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.2.1\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eoptimize \u003ccode\u003eBorshSerialize\u003c/code\u003e derive for enums with unit variants (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/262\"\u003e#262\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix \u003ccode\u003erelease-plz\u003c/code\u003e error; exclude \u003ccode\u003e*.snap\u003c/code\u003e from \u003ccode\u003eborsh-derive\u003c/code\u003e publish (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/263\"\u003e#263\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.2.0\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.2.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd support for types from \u003ccode\u003eascii\u003c/code\u003e crate (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/255\"\u003e#255\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.1.2\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.1.2\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump \u003ccode\u003eproc-macro-crate\u003c/code\u003e to 2.0.0 in \u003ccode\u003eborsh-derive\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/256\"\u003e#256\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.1.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.1.1\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003etest_schema_conflicts\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eaddressed warnings in docs generation (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esimplify discriminants handling in schema derives (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/241\"\u003e#241\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.1.0\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.1.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelax \u003ccode\u003eschema_container_of\u003c/code\u003e target requirement with \u003ccode\u003e?Sized\u003c/code\u003e to allow slices (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/245\"\u003e#245\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efully qualify \u003ccode\u003e#cratename::BorshSchema\u003c/code\u003e in derive-generated code to void function name collisions leading to compilation errors (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/244\"\u003e#244\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.0.0\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.0.0\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003eThe year is 2653 and the best yet-to-be citizens of the Terran Federation are fighting\nand mostly just dying in a relentless interstellar war against the Arachnids.\nYet the structure of our society has changed through the course of this confrontation.\u003c/p\u003e\n\u003cp\u003eThe members of the Arachnid brain caste and queens have infiltrated the circles of our\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/near/borsh-rs/blob/master/CHANGELOG.md\"\u003eborsh's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.2.0...borsh-v1.2.1\"\u003e1.2.1\u003c/a\u003e - 2023-12-06\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eoptimize \u003ccode\u003eBorshSerialize\u003c/code\u003e derive for enums with unit variants (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/262\"\u003e#262\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix \u003ccode\u003erelease-plz\u003c/code\u003e error; exclude \u003ccode\u003e*.snap\u003c/code\u003e from \u003ccode\u003eborsh-derive\u003c/code\u003e publish (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/263\"\u003e#263\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.1.2...borsh-v1.2.0\"\u003e1.2.0\u003c/a\u003e - 2023-11-13\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd support for types from \u003ccode\u003eascii\u003c/code\u003e crate (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/255\"\u003e#255\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.1.1...borsh-v1.1.2\"\u003e1.1.2\u003c/a\u003e - 2023-11-08\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump \u003ccode\u003eproc-macro-crate\u003c/code\u003e to 2.0.0 in \u003ccode\u003eborsh-derive\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/256\"\u003e#256\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.1.0...borsh-v1.1.1\"\u003e1.1.1\u003c/a\u003e - 2023-10-25\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003etest_schema_conflicts\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eaddressed warnings in docs generation (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esimplify discriminants handling in schema derives (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/241\"\u003e#241\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.0.0...borsh-v1.1.0\"\u003e1.1.0\u003c/a\u003e - 2023-10-13\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelax \u003ccode\u003eschema_container_of\u003c/code\u003e target requirement with \u003ccode\u003e?Sized\u003c/code\u003e to allow slices (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/245\"\u003e#245\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efully qualify \u003ccode\u003e#cratename::BorshSchema\u003c/code\u003e in derive-generated code to void function name collisions leading to compilation errors (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/244\"\u003e#244\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v0.10.3...borsh-v1.0.0\"\u003e1.0.0\u003c/a\u003e - 2023-10-03\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003eThe year is 2653 and the best yet-to-be citizens of the Terran Federation are fighting\nand mostly just dying in a relentless interstellar war against the Arachnids.\nYet the structure of our society has changed through the course of this confrontation.\u003c/p\u003e\n\u003cp\u003eThe members of the Arachnid brain caste and queens have infiltrated the circles of our\nmost influential political and industrial leaders. Either directly, or via the Arachnid technology\ncalled \u0026quot;Brain Bugs\u0026quot;. This tech alone can accomplish what the Arachnid starship paratroopers\nwill not ever be capable to do.\u003c/p\u003e\n\u003cp\u003eSimple, straightforward and performant serialization libraries can set us in course to remedy this dangerous\nstalemate situation by cleaning the minds of its users from even the tiniest of Brain Bugs.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch2\u003eRobert A. Heinlein, 1959 (a newspaper ad)\u003c/h2\u003e\n\u003ch3\u003e[Thanks]\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/2b1f6c93f3087ab7c987b0654fae75a26bc67723\"\u003e\u003ccode\u003e2b1f6c9\u003c/code\u003e\u003c/a\u003e chore: release (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/264\"\u003e#264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/b7b2f70a6bebcea6648907defc91e07066641420\"\u003e\u003ccode\u003eb7b2f70\u003c/code\u003e\u003c/a\u003e ci: fix \u003ccode\u003erelease-plz\u003c/code\u003e error; exclude \u003ccode\u003e*.snap\u003c/code\u003e from \u003ccode\u003eborsh-derive\u003c/code\u003e publish (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/263\"\u003e#263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/73db73ed0c5e1774f9f93d65d572ec9ec1d2e87f\"\u003e\u003ccode\u003e73db73e\u003c/code\u003e\u003c/a\u003e chore: optimize \u003ccode\u003eBorshSerialize\u003c/code\u003e derive for enums with unit variants (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/262\"\u003e#262\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/903601b26a1fc11ead79a62c45b77faeedf7e6a1\"\u003e\u003ccode\u003e903601b\u003c/code\u003e\u003c/a\u003e chore: release (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/258\"\u003e#258\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/2d4cf209518554a42884c905b873a0321b3a6df3\"\u003e\u003ccode\u003e2d4cf20\u003c/code\u003e\u003c/a\u003e feat: add support for types from \u003ccode\u003eascii\u003c/code\u003e crate (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/255\"\u003e#255\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/df8c3cf37d4fcf46a40874daf4be32a3d5cbfd0b\"\u003e\u003ccode\u003edf8c3cf\u003c/code\u003e\u003c/a\u003e chore: release (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/2209e994f1e692094885db0207974e94f2e5047a\"\u003e\u003ccode\u003e2209e99\u003c/code\u003e\u003c/a\u003e chore: bump \u003ccode\u003eproc-macro-crate\u003c/code\u003e to 2.0.0 in \u003ccode\u003eborsh-derive\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/256\"\u003e#256\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/73f7d7fee703a9db9ffd4f6e5a8761d13dc653e4\"\u003e\u003ccode\u003e73f7d7f\u003c/code\u003e\u003c/a\u003e chore: release (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/c8259faaadbe195d64d2ced6bca506f723f64efb\"\u003e\u003ccode\u003ec8259fa\u003c/code\u003e\u003c/a\u003e test: add \u003ccode\u003etest_schema_conflicts\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/71a9d4d02f99db360ba8df18ed92d014a7f7bc5c\"\u003e\u003ccode\u003e71a9d4d\u003c/code\u003e\u003c/a\u003e chore!: simplify discriminants handling in schema derives (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/241\"\u003e#241\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v0.10.3...borsh-v1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.5.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.10.1\u003c/h2\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/bytes/pull/773\"\u003etokio-rs/bytes#773\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eBytes v1.10.0\u003c/h2\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.9.0 (November 27, 2024)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eBytes::from_owner\u003c/code\u003e to enable externally-allocated memory (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/742\"\u003e#742\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumented\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.5.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `crossbeam-channel` from 0.5.12 to 0.5.15\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/crossbeam-rs/crossbeam/releases\"\u003ecrossbeam-channel's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ecrossbeam-channel 0.5.15\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix regression introduced in 0.5.12 that can lead to a double free when dropping unbounded channel. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1187\"\u003e#1187\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ecrossbeam-channel 0.5.14\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix stack overflow when sending large value to unbounded channel. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1146\"\u003e#1146\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1147\"\u003e#1147\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eSelect::new_biased\u003c/code\u003e function. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1150\"\u003e#1150\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove inefficient spinning. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1154\"\u003e#1154\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSuppress buggy \u003ccode\u003eclippy::zero_repeat_side_effects\u003c/code\u003e lint in macro generated code. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1123\"\u003e#1123\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ecrossbeam-channel 0.5.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eselect_biased!\u003c/code\u003e macro. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1040\"\u003e#1040\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/d35ffde18a76ae9667f602d8c0127ff89ac2e4d4\"\u003e\u003ccode\u003ed35ffde\u003c/code\u003e\u003c/a\u003e Prepare for the next release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/6ec74ecae896df5fc239518b45a1bfd258c9db68\"\u003e\u003ccode\u003e6ec74ec\u003c/code\u003e\u003c/a\u003e crossbeam-channel: prevent double free on Drop (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1187\"\u003e#1187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/ccd83ac4108a2a1b41e9c6e79c87267167d18dfa\"\u003e\u003ccode\u003eccd83ac\u003c/code\u003e\u003c/a\u003e Prepare for the next release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/54988eb2399c889fb82926c1508bb0ec31bedba2\"\u003e\u003ccode\u003e54988eb\u003c/code\u003e\u003c/a\u003e Calculate layout in const context\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/761d0b67e2849479f7b376b4c02a191f6ed796aa\"\u003e\u003ccode\u003e761d0b6\u003c/code\u003e\u003c/a\u003e Port \u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1146\"\u003e#1146\u003c/a\u003e \u0026amp; \u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1147\"\u003e#1147\u003c/a\u003e to deque::Injector and queue::SegQueue\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/8144fbb41e67046d341034843887b0dd5963cddb\"\u003e\u003ccode\u003e8144fbb\u003c/code\u003e\u003c/a\u003e Remove optimistic spinning from Context::wait_until\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/a92f6c4fbb5527ef4f86239fd18df426b4e1d84f\"\u003e\u003ccode\u003ea92f6c4\u003c/code\u003e\u003c/a\u003e Bump peter-evans/create-pull-request from 5 to 7 (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1153\"\u003e#1153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/66d41a904f8f51d82d806b86856d72290202d491\"\u003e\u003ccode\u003e66d41a9\u003c/code\u003e\u003c/a\u003e channel: Add new_biased constructor for biased channel selection (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1150\"\u003e#1150\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/d0d0a80be89a976a66292ed7d3fb562f9d3d590b\"\u003e\u003ccode\u003ed0d0a80\u003c/code\u003e\u003c/a\u003e CachePadded: Use 128-byte alignment on arm64ec\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/f757eefca227f67cb9dc8b90c07500728151f501\"\u003e\u003ccode\u003ef757eef\u003c/code\u003e\u003c/a\u003e Add comment about fixed rustc bug\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/crossbeam-rs/crossbeam/compare/crossbeam-channel-0.5.12...crossbeam-channel-0.5.15\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ed25519-dalek` from 1.0.1 to 2.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dalek-cryptography/curve25519-dalek/blob/2.0.0/CHANGELOG.md\"\u003eed25519-dalek's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix a data modeling error in the \u003ccode\u003eserde\u003c/code\u003e feature pointed out by Trevor Perrin\nwhich caused points and scalars to be serialized with length fields rather\nthan as fixed-size 32-byte arrays.  This is a breaking change, but it fixes\ncompatibility with \u003ccode\u003eserde-json\u003c/code\u003e and ensures that the \u003ccode\u003eserde-bincode\u003c/code\u003e encoding\nmatches the conventional encoding for X/Ed25519.\u003c/li\u003e\n\u003cli\u003eUpdate \u003ccode\u003erand_core\u003c/code\u003e to \u003ccode\u003e0.5\u003c/code\u003e, allowing use with new \u003ccode\u003erand\u003c/code\u003e versions.\u003c/li\u003e\n\u003cli\u003eSwitch from \u003ccode\u003eclear_on_drop\u003c/code\u003e to \u003ccode\u003ezeroize\u003c/code\u003e (by Tony Arcieri).\u003c/li\u003e\n\u003cli\u003eRequire \u003ccode\u003esubtle = ^2.2.1\u003c/code\u003e and remove the note advising nightly Rust, which is\nno longer required as of that version of \u003ccode\u003esubtle\u003c/code\u003e.  See the \u003ccode\u003esubtle\u003c/code\u003e\nchangelog for more details.\u003c/li\u003e\n\u003cli\u003eUpdate \u003ccode\u003eREADME.md\u003c/code\u003e for \u003ccode\u003e2.x\u003c/code\u003e series.\u003c/li\u003e\n\u003cli\u003eRemove the \u003ccode\u003ebuild.rs\u003c/code\u003e hack which loaded the entire crate into its own\n\u003ccode\u003ebuild.rs\u003c/code\u003e to generate constants, and keep the constants in the source code.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThe only significant change is the data model change to the \u003ccode\u003eserde\u003c/code\u003e feature;\nbesides the \u003ccode\u003erand_core\u003c/code\u003e version bump, there are no other user-visible changes.\u003c/p\u003e\n\u003ch2\u003e1.2.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix an issue identified by a Quarkslab audit (and Jack Grigg), where manually\nconstructing unreduced \u003ccode\u003eScalar\u003c/code\u003e values, as needed for X/Ed25519, and then\nperforming scalar/scalar arithmetic could compute incorrect results.\u003c/li\u003e\n\u003cli\u003eSwitch to upstream Rust intrinsics for the IFMA backend now that they exist in\nRust and don't need to be defined locally.\u003c/li\u003e\n\u003cli\u003eEnsure that the NAF computation works correctly, even for parameters never\nused elsewhere in the codebase.\u003c/li\u003e\n\u003cli\u003eMinor refactoring to EdwardsPoint decompression.\u003c/li\u003e\n\u003cli\u003eFix broken links in documentation.\u003c/li\u003e\n\u003cli\u003eFix compilation on nightly broken due to changes to the \u003ccode\u003e#[doc(include)]\u003c/code\u003e path\nroot (not quite correctly done in 1.2.2).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.2.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix a typo in an internal doc-comment.\u003c/li\u003e\n\u003cli\u003eAdd the \u0026quot;crypto\u0026quot; tag to crate metadata.\u003c/li\u003e\n\u003cli\u003eFix compilation on nightly broken due to changes to the \u003ccode\u003e#[doc(include)]\u003c/code\u003e path\nroot.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.2.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix a bug in bucket index calculations in the Pippenger multiscalar algorithm\nfor very large input sizes.\u003c/li\u003e\n\u003cli\u003eAdd a more extensive randomized multiscalar multiplication consistency check\nto the test suite to prevent regressions.\u003c/li\u003e\n\u003cli\u003eEnsure that that multiscalar and NAF computations work correctly on extremal\n\u003ccode\u003eScalar\u003c/code\u003e values constructed via \u003ccode\u003efrom_bits\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.2.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dalek-cryptography/curve25519-dalek/commit/d889ac8a15c9b802f846b49f7f243e0a4fc5ffec\"\u003e\u003ccode\u003ed889ac8\u003c/code\u003e\u003c/a\u003e Finalize 2.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dalek-cryptography/curve25519-dalek/commit/db6a0b118769f59a3cadda3cc0dbd042a1613214\"\u003e\u003ccode\u003edb6a0b1\u003c/code\u003e\u003c/a\u003e Merge branch 'master' into develop\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dalek-cryptography/curve25519-dalek/commit/58d32ea27fc0b7d519f5fcde65a40d02346ba8eb\"\u003e\u003ccode\u003e58d32ea\u003c/code\u003e\u003c/a\u003e Merge branch 'release/2.0.0-alpha.2'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dalek-cryptography/curve25519-dalek/commit/69d72f92d60f8c59adb4bee036c5989061183918\"\u003e\u003ccode\u003e69d72f9\u003c/code\u003e\u003c/a\u003e Bump version to 2.0.0-alpha.2 and update changelog.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dalek-cryptography/curve25519-dalek/commit/0168816f04d0854abd8dd914a937a7e59d7bdb79\"\u003e\u003ccode\u003e0168816\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dalek-cryptography/curve25519-dalek/issues/307\"\u003e#307\u003c/a\u003e from dalek-cryptography/update-nightly-note-subtle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dalek-cryptography/curve25519-dalek/commit/2b51978553dcb3a9ff27e3bf895b59671b8bd9f7\"\u003e\u003ccode\u003e2b51978\u003c/code\u003e\u003c/a\u003e Remove nightly recommendation now that subtle has stable opt barriers.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dalek-cryptography/curve25519-dalek/commit/77203aa1cb87ac3a958c491b3976bfbfa49a1bf3\"\u003e\u003ccode\u003e77203aa\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dalek-cryptography/curve25519-dalek/issues/306\"\u003e#306\u003c/a\u003e from isislovecruft/feature/236-merge-rebase\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dalek-cryptography/curve25519-dalek/commit/4d1dfbaf035287f08f4b4cc0dc08f0ced2dd516a\"\u003e\u003ccode\u003e4d1dfba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dalek-cryptography/curve25519-dalek/issues/305\"\u003e#305\u003c/a\u003e from isislovecruft/fix/unused-tmp2-warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dalek-cryptography/curve25519-dalek/commit/4423394ed8d6c6aaad2249b29a6c8f62cdde18a0\"\u003e\u003ccode\u003e4423394\u003c/code\u003e\u003c/a\u003e Fix warning that a temporary value isn't used.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dalek-cryptography/curve25519-dalek/commit/57f19e018ff8315d144f74ff5d5a4ee6dae93e89\"\u003e\u003ccode\u003e57f19e0\u003c/code\u003e\u003c/a\u003e Merge remote-tracking branch 'DebugSteven/zeroize' into feature/236-merge-rebase\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dalek-cryptography/curve25519-dalek/compare/1.0.1...2.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openssl` from 0.10.64 to 0.10.80\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-openssl/rust-openssl/releases\"\u003eopenssl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eopenssl-v0.10.80\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrefer Homebrew openssl@4 and stop looking for openssl@1.1 by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2633\"\u003erust-openssl/rust-openssl#2633\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix output buffer overflow in cipher_update_inplace for AES key-wrap-with-padding by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2638\"\u003erust-openssl/rust-openssl#2638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl 0.10.80 and openssl-sys 0.9.116 by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2639\"\u003erust-openssl/rust-openssl#2639\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.79...openssl-v0.10.80\"\u003ehttps://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.79...openssl-v0.10.80\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eopenssl-v0.10.79\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/cache from 5.0.4 to 5.0.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2610\"\u003erust-openssl/rust-openssl#2610\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTry to fix OpenSSL 1.1.0l download by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2614\"\u003erust-openssl/rust-openssl#2614\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRequire \u0026amp;mut BigNumContextRef for EcPointRef mul/invert by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2615\"\u003erust-openssl/rust-openssl#2615\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix UB in EcGroupRef::generator on groups without a generator by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2617\"\u003erust-openssl/rust-openssl#2617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace \u003ccode\u003euse libc::*;\u003c/code\u003e with targeted imports in openssl-sys by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2618\"\u003erust-openssl/rust-openssl#2618\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKeyRef::is_a and KeyType for name-based key identification by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2619\"\u003erust-openssl/rust-openssl#2619\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKey::{public,private}_key_from_raw_bytes_ex by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2620\"\u003erust-openssl/rust-openssl#2620\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump MSRV to 1.80 by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2622\"\u003erust-openssl/rust-openssl#2622\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop once_cell in favor of std::sync::{LazyLock, OnceLock} by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2623\"\u003erust-openssl/rust-openssl#2623\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKey::private_key_from_seed for ML-DSA/ML-KEM key import by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2621\"\u003erust-openssl/rust-openssl#2621\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eparallelize more builds in CI for cold caches by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2625\"\u003erust-openssl/rust-openssl#2625\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2626\"\u003erust-openssl/rust-openssl#2626\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix process abort when verify/PSK callbacks fire after SSL_CTX swap by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2624\"\u003erust-openssl/rust-openssl#2624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBind OSSL_PARAM_modified and use it for seed_into by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2628\"\u003erust-openssl/rust-openssl#2628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PkeyCtxRef::set_context_string for ML-DSA by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2629\"\u003erust-openssl/rust-openssl#2629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2631\"\u003erust-openssl/rust-openssl#2631\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix output buffer overflow for AES key-wrap-with-padding ciphers by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2630\"\u003erust-openssl/rust-openssl#2630\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl 0.10.79 and openssl-sys 0.9.115 by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2632\"\u003erust-openssl/rust-openssl#2632\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.78...openssl-v0.10.79\"\u003ehttps://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.78...openssl-v0.10.79\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eopenssl-v0.10.78\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix Suite B flag assignments in verify.rs by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2592\"\u003erust-openssl/rust-openssl#2592\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse cvt_p for OPENSSL_malloc error handling by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2593\"\u003erust-openssl/rust-openssl#2593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMark BIO_get_mem_data on AWS-LC to be unsafe by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2594\"\u003erust-openssl/rust-openssl#2594\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSet timeout for package installation step by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2595\"\u003erust-openssl/rust-openssl#2595\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePanic in Crypter::new when IV is required but not provided by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2596\"\u003erust-openssl/rust-openssl#2596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eopenssl 4 support by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2591\"\u003erust-openssl/rust-openssl#2591\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid panic for overlong OIDs by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2598\"\u003erust-openssl/rust-openssl#2598\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix dangling stack pointer in custom extension add callback by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2599\"\u003erust-openssl/rust-openssl#2599\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for LibreSSL 4.3.x by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2603\"\u003erust-openssl/rust-openssl#2603\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix inverted bounds assertion in AES key unwrap by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2604\"\u003erust-openssl/rust-openssl#2604\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject oversized length returns from password callback trampoline by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2605\"\u003erust-openssl/rust-openssl#2605\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eValidate callback-returned lengths in PSK and cookie trampolines by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2607\"\u003erust-openssl/rust-openssl#2607\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eError for short out in MdCtxRef::digest_final() by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2608\"\u003erust-openssl/rust-openssl#2608\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck derive output buffer length on OpenSSL 1.1.x by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2606\"\u003erust-openssl/rust-openssl#2606\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl v0.10.78 and openssl-sys v0.9.114 by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2609\"\u003erust-openssl/rust-openssl#2609\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/35be7ae43b207fc0448a648a21e9156bc360c9af\"\u003e\u003ccode\u003e35be7ae\u003c/code\u003e\u003c/a\u003e Release openssl 0.10.80 and openssl-sys 0.9.116 (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2639\"\u003e#2639\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/19eceb26f2404aae187e5444e65c404ebc1348a7\"\u003e\u003ccode\u003e19eceb2\u003c/code\u003e\u003c/a\u003e Fix output buffer overflow in cipher_update_inplace for AES key-wrap-with-pad...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/b460eb378c335610df5395a251408ad70bb60d42\"\u003e\u003ccode\u003eb460eb3\u003c/code\u003e\u003c/a\u003e Prefer Homebrew openssl@4 and stop looking for openssl@1.1 (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2633\"\u003e#2633\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/649f2d9e37f3aa701e20bd8ab5cd7eb5afa0a90f\"\u003e\u003ccode\u003e649f2d9\u003c/code\u003e\u003c/a\u003e Release openssl 0.10.79 and openssl-sys 0.9.115 (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2632\"\u003e#2632\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/257f9b20c001b888986f93579f118fa2a57d4f45\"\u003e\u003ccode\u003e257f9b2\u003c/code\u003e\u003c/a\u003e Fix output buffer overflow for AES key-wrap-with-padding ciphers (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2630\"\u003e#2630\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/d43e9179b1885fc66269a42361cc7a80f631ac8f\"\u003e\u003ccode\u003ed43e917\u003c/code\u003e\u003c/a\u003e Reject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2631\"\u003e#2631\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/f46519c8694a3e121091dafe38aab77c2f756546\"\u003e\u003ccode\u003ef46519c\u003c/code\u003e\u003c/a\u003e Add PkeyCtxRef::set_context_string for ML-DSA (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2629\"\u003e#2629\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/ad9ae312771f898749a9471549519d45eba6a033\"\u003e\u003ccode\u003ead9ae31\u003c/code\u003e\u003c/a\u003e Bind OSSL_PARAM_modified and use it for seed_into (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2628\"\u003e#2628\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/4e25c9be20dae1e78f1a3815950cd0973addae82\"\u003e\u003ccode\u003e4e25c9b\u003c/code\u003e\u003c/a\u003e Fix process abort when verify/PSK callbacks fire after SSL_CTX swap (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2624\"\u003e#2624\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/3dd8f425ef34a069b5bec46f3971b67db1c295c7\"\u003e\u003ccode\u003e3dd8f42\u003c/code\u003e\u003c/a\u003e Add PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2626\"\u003e#2626\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.64...openssl-v0.10.80\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.7.3 to 0.8.5\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/master/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.5] - 2021-08-20\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix build on non-32/64-bit architectures (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1144\"\u003e#1144\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u0026quot;min_const_gen\u0026quot; feature for \u003ccode\u003eno_std\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1173\"\u003e#1173\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCheck \u003ccode\u003elibc::pthread_atfork\u003c/code\u003e return value with panic on error (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1178\"\u003e#1178\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMore robust reseeding in case \u003ccode\u003eReseedingRng\u003c/code\u003e is used from a fork handler (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1178\"\u003e#1178\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix nightly: remove unused \u003ccode\u003eslice_partition_at_index\u003c/code\u003e feature (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1215\"\u003e#1215\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix nightly + \u003ccode\u003esimd_support\u003c/code\u003e: update \u003ccode\u003epacked_simd\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1216\"\u003e#1216\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRngs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eStdRng\u003c/code\u003e: Switch from HC128 to ChaCha12 on emscripten (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1142\"\u003e#1142\u003c/a\u003e).\nWe now use ChaCha12 on all platforms.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded docs about rand's use of const generics (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1150\"\u003e#1150\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBetter random chars example (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1157\"\u003e#1157\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1142\"\u003e#1142\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1142\"\u003erust-random/rand#1142\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1144\"\u003e#1144\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1144\"\u003erust-random/rand#1144\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1150\"\u003e#1150\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1150\"\u003erust-random/rand#1150\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1157\"\u003e#1157\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1157\"\u003erust-random/rand#1157\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1173\"\u003e#1173\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1173\"\u003erust-random/rand#1173\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1178\"\u003e#1178\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1178\"\u003erust-random/rand#1178\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1215\"\u003e#1215\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1215\"\u003erust-random/rand#1215\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1216\"\u003e#1216\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1216\"\u003erust-random/rand#1216\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e[0.8.4] - 2021-06-15\u003c/h2\u003e\n\u003ch3\u003eAdditions\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUse const-generics to support arrays of all sizes (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1104\"\u003e#1104\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eClone\u003c/code\u003e and \u003ccode\u003eCopy\u003c/code\u003e for \u003ccode\u003eAlphanumeric\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1126\"\u003e#1126\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eDistribution::map\u003c/code\u003e to derive a distribution using a closure (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1129\"\u003e#1129\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eSlice\u003c/code\u003e distribution (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1107\"\u003e#1107\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eDistString\u003c/code\u003e trait with impls for \u003ccode\u003eStandard\u003c/code\u003e and \u003ccode\u003eAlphanumeric\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1133\"\u003e#1133\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReorder asserts in \u003ccode\u003eUniform\u003c/code\u003e float distributions for easier debugging of non-finite arguments (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1094\"\u003e#1094\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1108\"\u003e#1108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd range overflow check in \u003ccode\u003eUniform\u003c/code\u003e float distributions (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1108\"\u003e#1108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDeprecate \u003ccode\u003erngs::adapter::ReadRng\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1130\"\u003e#1130\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.8.3] - 2021-01-25\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003eno-std\u003c/code\u003e + \u003ccode\u003ealloc\u003c/code\u003e build by gating \u003ccode\u003echoose_multiple_weighted\u003c/code\u003e on \u003ccode\u003estd\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1088\"\u003e#1088\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.8.2] - 2021-01-12\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix panic in \u003ccode\u003eUniformInt::sample_single_inclusive\u003c/code\u003e and \u003ccode\u003eRng::gen_range\u003c/code\u003e when providing a full integer range (eg \u003ccode\u003e0..=MAX\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1087\"\u003e#1087\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/937320cbfeebd4352a23086d9c6e68f067f74644\"\u003e\u003ccode\u003e937320c\u003c/code\u003e\u003c/a\u003e Update CHANGELOG for 0.8.5 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1221\"\u003e#1221\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/2924af688d352b889322870d017356f12651866b\"\u003e\u003ccode\u003e2924af6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1183\"\u003e#1183\u003c/a\u003e from vks/fill-float-doc\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/dbbc1bf3176138c867f3d84c0c4d288119a5a84e\"\u003e\u003ccode\u003edbbc1bf\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1218\"\u003e#1218\u003c/a\u003e from Will-Low/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f20df04d88698c38515833d6db62d7eb50d8b80\"\u003e\u003ccode\u003e9f20df0\u003c/code\u003e\u003c/a\u003e Making distributions comparable by deriving PartialEq. Tests included\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/a407bdfa4563d0cfbf744049242926c8de079d3f\"\u003e\u003ccode\u003ea407bdf\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1216\"\u003e#1216\u003c/a\u003e from rust-random/work5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/d3ca11b0bcc1f42fe34ba4f90f99509b7eb4ff18\"\u003e\u003ccode\u003ed3ca11b\u003c/code\u003e\u003c/a\u003e Update to packed_simd_2 0.3.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/fa04c15d0bb5842fdbdbb73d7a53ead36f3fcf52\"\u003e\u003ccode\u003efa04c15\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1215\"\u003e#1215\u003c/a\u003e from Lantern-chat/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/73f8ffd16379390e624ac53cd6882dd679dd9a6f\"\u003e\u003ccode\u003e73f8ffd\u003c/code\u003e\u003c/a\u003e Remove unused \u003ccode\u003eslice_partition_at_index\u003c/code\u003e feature\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8f372500f05dfadcff6c35e773e81029ab7debad\"\u003e\u003ccode\u003e8f37250\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1208\"\u003e#1208\u003c/a\u003e from newpavlov/rand_distr/fix_no_std\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9ef737ba5b814f6ab36cebafb59ad29885d68a05\"\u003e\u003ccode\u003e9ef737b\u003c/code\u003e\u003c/a\u003e update changelog\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.7.3...0.8.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rpassword` from 7.3.1 to 7.5.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/conradkleinespel/rpassword/releases\"\u003erpassword's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.5.0\u003c/h2\u003e\n\u003cp\u003eThis release comes with lots of stuff. It should be fully backward compatible.\u003c/p\u003e\n\u003ch2\u003eNew features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for masking or partially masking a password as it's being typed. Thank you, \u003ca href=\"https://github.com/chipsenkbeil\"\u003e\u003ccode\u003e@​chipsenkbeil\u003c/code\u003e\u003c/a\u003e, for your contribution.\u003c/li\u003e\n\u003cli\u003eNew API. The documentation has been vastly improved to support this, see \u003ca href=\"https://docs.rs/rpassword/\"\u003ehttps://docs.rs/rpassword/\u003c/a\u003e. To sum up, you can now call \u003ccode\u003eread_password_with_config(config)\u003c/code\u003e and there is a \u003ccode\u003eConfigBuilder\u003c/code\u003e that allows you to configure how passwords should be read. This makes the library much more flexible and means new options will be added without breaking existing code.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix for CVE-2025-64170 which affects \u003ccode\u003erpassword\u003c/code\u003e on versions v7.4.0 and below. Thank you, \u003ca href=\"https://github.com/squell\"\u003e\u003ccode\u003e@​squell\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/DevLaTron\"\u003e\u003ccode\u003e@​DevLaTron\u003c/code\u003e\u003c/a\u003e, for reporting this.\u003c/li\u003e\n\u003cli\u003eBetter support for multibyte characters and more reliable handling of control characters and terminal escape sequences. Thank you again, \u003ca href=\"https://github.com/chipsenkbeil\"\u003e\u003ccode\u003e@​chipsenkbeil\u003c/code\u003e\u003c/a\u003e, for your contribution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDeprecations\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e_from_bufread\u003c/code\u003e functions have been deprecated. You are encouraged to migrate to \u003ccode\u003e_with_config\u003c/code\u003e functions. See \u003ca href=\"https://github.com/conradkleinespel/rpassword/blob/main/UPGRADE.md\"\u003eUPGRADE.md\u003c/a\u003e as well as the \u003ca href=\"https://docs.rs/rpassword/latest/rpassword/fn.read_password_from_bufread.html\"\u003edocumentation which has examples\u003c/a\u003e that you can most likely drop into your code without other changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eMisc\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate of the \u003ccode\u003ewindows-sys\u003c/code\u003e dependency.\u003c/li\u003e\n\u003cli\u003eUpdate Rust edition from 2018 to 2024.\u003c/li\u003e\n\u003cli\u003eBetter cross-platform testing, through more unit tests and a CI that runs Linux, Windows and Wasm.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFeedback is very much welcome.\u003c/p\u003e\n\u003ch2\u003ev7.4.0\u003c/h2\u003e\n\u003cp\u003eChanges and updates in this release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUpdates \u003ccode\u003ewindows-sys\u003c/code\u003e from \u003ccode\u003e0.52\u003c/code\u003e to \u003ccode\u003e0.59\u003c/code\u003e, see \u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/cb2244aba3e6b4358cf489e61c8e35c564e31952\"\u003ehttps://github.com/conradkleinespel/rpassword/commit/cb2244aba3e6b4358cf489e61c8e35c564e31952\u003c/a\u003e;\u003c/li\u003e\n\u003cli\u003eImproves Chinese character handling, the commit is in the \u003ccode\u003ertoolbox\u003c/code\u003e crate (\u003ca href=\"https://github.com/conradkleinespel/rtoolbox\"\u003ehttps://github.com/conradkleinespel/rtoolbox\u003c/a\u003e). Thank you \u003ca href=\"https://github.com/Jordan-Haidee\"\u003e\u003ccode\u003e@​Jordan-Haidee\u003c/code\u003e\u003c/a\u003e for providing a fix in \u003ca href=\"https://redirect.github.com/conradkleinespel/rpassword/issues/97\"\u003econradkleinespel/rpassword#97\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eI've noticed after publishing the release that the size of the crate on crates.io went from \u003ccode\u003e7KiB\u003c/code\u003e to \u003ccode\u003e121KiB\u003c/code\u003e. That's due to the addition of an image in the \u003ccode\u003eREADME.md\u003c/code\u003e, which I did not anticipate would be distributed to everyone. The fix (\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/7c30111dda0242967bd5ac494fbf3089d3d74dc6\"\u003ehttps://github.com/conradkleinespel/rpassword/commit/7c30111dda0242967bd5ac494fbf3089d3d74dc6\u003c/a\u003e) will be included in the next release.\u003c/p\u003e\n\u003cp\u003eNo functionality changes in this release. It is backwards compatible.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/2d9873eb198dd49dafef2e3263a035ac3614982c\"\u003e\u003ccode\u003e2d9873e\u003c/code\u003e\u003c/a\u003e release v7.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/e67e3b45673e51e7155d80970d2e4c80152324dc\"\u003e\u003ccode\u003ee67e3b4\u003c/code\u003e\u003c/a\u003e removes commented out code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/fdde958f1c4753ebc22509b73da9156952c86e33\"\u003e\u003ccode\u003efdde958\u003c/code\u003e\u003c/a\u003e remove .idea from .gitignore\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/d531c5992a5303fe418e95959a70459fb286c6b9\"\u003e\u003ccode\u003ed531c59\u003c/code\u003e\u003c/a\u003e allow reading from any Read and writing to any Write\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/205dfb2eb76d8b460f210a4541374a495a1974fa\"\u003e\u003ccode\u003e205dfb2\u003c/code\u003e\u003c/a\u003e differentiate Input and Output targets\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/6aa333a6513f3efa4b461659974a06426363447d\"\u003e\u003ccode\u003e6aa333a\u003c/code\u003e\u003c/a\u003e make PasswordFeedback internal though ConfigBuilder\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/aadeef20d93b5cc7dc20823c35b697caa5201d46\"\u003e\u003ccode\u003eaadeef2\u003c/code\u003e\u003c/a\u003e allow more flexible input/output\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/ff7be55fc47280cacd49f86dd188614157c03f77\"\u003e\u003ccode\u003eff7be55\u003c/code\u003e\u003c/a\u003e add support for Ctrl-W\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/c56fefad218ec00d5309e8ec1d2a52ef31f86693\"\u003e\u003ccode\u003ec56fefa\u003c/code\u003e\u003c/a\u003e format rust files with cargo fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/c6f4f19528553302a6d08f26d0f1daf8a9b94386\"\u003e\u003ccode\u003ec6f4f19\u003c/code\u003e\u003c/a\u003e handle character encodings more reliably\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/conradkleinespel/rpassword/compare/v7.3.1...v7.5.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls` from 0.21.10 to 0.21.11\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/7b8d1dbc1e666dc4d83640c64e96d257d39cfda4\"\u003e\u003ccode\u003e7b8d1db\u003c/code\u003e\u003c/a\u003e Prepare 0.21.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/ebcb4782f23b4edf9b10a7065d9e8d4362439d9c\"\u003e\u003ccode\u003eebcb478\u003c/code\u003e\u003c/a\u003e complete_io: bail out if progress is impossible\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/20f35dfb6d3c353294c562723d4cb6639a8bd01b\"\u003e\u003ccode\u003e20f35df\u003c/code\u003e\u003c/a\u003e Regression test for \u003ccode\u003ecomplete_io\u003c/code\u003e infinite loop bug\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/2f2aae15a4293639669291ab2b257835a2d4bdca\"\u003e\u003ccode\u003e2f2aae1\u003c/code\u003e\u003c/a\u003e Don't specially handle unauthenticated close_notify alerts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/e163587b985c894a6ce651992b91eb6897edde8b\"\u003e\u003ccode\u003ee163587\u003c/code\u003e\u003c/a\u003e Don't deny warnings from nightly clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/9f864874cff7d977cccd4204463ea34fd161a2fe\"\u003e\u003ccode\u003e9f86487\u003c/code\u003e\u003c/a\u003e server::handy: fix new nightly clippy lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/7e0e8ab599a19c2a733be294aaf91eeb6fdebaaa\"\u003e\u003ccode\u003e7e0e8ab\u003c/code\u003e\u003c/a\u003e Correct assorted clippy warnings in test code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/3587d98f4ea434495facc0688b8b07313cb02e4a\"\u003e\u003ccode\u003e3587d98\u003c/code\u003e\u003c/a\u003e Apply clippy suggestions from Rust 1.72\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/d082e837b34c0605b1851e45c421c91c1d15391c\"\u003e\u003ccode\u003ed082e83\u003c/code\u003e\u003c/a\u003e Address \u003ccode\u003eclippy::redundant_static_lifetimes\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/5e7a06ca457a6fe67dfbb57193f55138be7ef611\"\u003e\u003ccode\u003e5e7a06c\u003c/code\u003e\u003c/a\u003e Address \u003ccode\u003eclippy::slow_vector_initialization\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rustls/rustls/compare/v/0.21.10...v/0.21.11\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 0.4.40 to 0.4.45\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/096e3d16d14fefac51bc4d94d616b21546ea8bcc\"\u003e\u003ccode\u003e096e3d1\u003c/code\u003e\u003c/a\u003e Bump to 0.4.45 (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/443\"\u003e#443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/17b1fd84e632071cb8eef9d3709bf347bd266446\"\u003e\u003ccode\u003e17b1fd8\u003c/code\u003e\u003c/a\u003e archive: Prevent symlink-directory collision chmod attack (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/de1a5870e603758f430073688691165f21a33946\"\u003e\u003ccode\u003ede1a587\u003c/code\u003e\u003c/a\u003e archive: Unconditionally honor PAX size (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/441\"\u003e#441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/6071cbe74acefa8c8322809bfd43c825e5f16b60\"\u003e\u003ccode\u003e6071cbe\u003c/code\u003e\u003c/a\u003e ci: Consolidate workflows (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/439\"\u003e#439\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/ad1fde9edfb9657d17666bbec2933119ce527359\"\u003e\u003ccode\u003ead1fde9\u003c/code\u003e\u003c/a\u003e build-sys: Promote unused_code to an error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/c8cb250e8bc3f28bd69406b396bb8a92b40012c1\"\u003e\u003ccode\u003ec8cb250\u003c/code\u003e\u003c/a\u003e tests: Squash a warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/638c495a480d2a50099d55f445ece9e5f544b49d\"\u003e\u003ccode\u003e638c495\u003c/code\u003e\u003c/a\u003e ci: Add xtask infra + reverse dependency testing (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/435\"\u003e#435\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/32a9bbb26468cbdecbf73fe8eb249284d4a718ed\"\u003e\u003ccode\u003e32a9bbb\u003c/code\u003e\u003c/a\u003e tests: Add RandomReader to exercise partial-read resilience (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/436\"\u003e#436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/9c5df0bfd70d1b063516b90fca2cf2e0dbe8b758\"\u003e\u003ccode\u003e9c5df0b\u003c/code\u003e\u003c/a\u003e Fix GNU long-name extension stream corruption on validation error (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/88b1e3b0da65b0c5b9750d1a75516145488f4793\"\u003e\u003ccode\u003e88b1e3b\u003c/code\u003e\u003c/a\u003e Fix docs typo in header.rs (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/composefs/tar-rs/compare/0.4.40...0.4.45\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `h2` from 0.3.24 to 0.3.27\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hyperium/h2/releases\"\u003eh2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.26\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eLimit number of CONTINUATION frames for misbehaving connections.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://seanmonstar.com/blog/hyper-http2-continuation-flood/\"\u003ehttps://seanmonstar.com/blog/hyper-http2-continuation-flood/\u003c/a\u003e for more info.\u003c/p\u003e\n\u003ch2\u003ev0.3.25\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eperf: optimize header list size calculations by \u003ca href=\"https://github.com/Noah-Kennedy\"\u003e\u003ccode\u003e@​Noah-Kennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/h2/pull/750\"\u003ehyperium/h2#750\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hyperium/h2/compare/v0.3.24...v0.3.25\"\u003ehttps://github.com/hyperium/h2/compare/v0.3.24...v0.3.25\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hyperium/h2/blob/v0.3.27/CHANGELOG.md\"\u003eh2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e0.3.27 (July 11, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix notifying wakers when detecting local stream errors.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e0.3.26 (April 3, 2024)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eLimit number of CONTINUATION frames for misbehaving connections.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e0.3.25 (March 15, 2024)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eImprove performance decoding many headers.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/h2/commit/f6237accb3e37668a8d7fb2331f22eb7b808c1e8\"\u003e\u003ccode\u003ef6237ac\u003c/code\u003e\u003c/a\u003e v0.3.27\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/h2/commit/f61332ed4821ee9a5c2a6247bf5b56adb62013f6\"\u003e\u003ccode\u003ef61332e\u003c/code\u003e\u003c/a\u003e refactor: change local reset counter to use type system more\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/h2/commit/3f1a8e34cd3180c2787ce80d4b50100b74efc22c\"\u003e\u003ccode\u003e3f1a8e3\u003c/code\u003e\u003c/a\u003e style: fix anonymous lifetime syntax\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/h2/commit/778aa7eba9c480c48a498f866456fa7357ca9b96\"\u003e\u003ccode\u003e778aa7e\u003c/code\u003e\u003c/a\u003e fix: notify_recv after send_reset() in reset_on_recv_stream_err() to ensure l...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/h2/commit/be10b774f01707f9f8dc9e93bed653b52fd69b0c\"\u003e\u003ccode\u003ebe10b77\u003c/code\u003e\u003c/a\u003e ci: pin more deps for MSRV job (\u003ca href=\"https://redirect.github.com/hyperium/h2/issues/817\"\u003e#817\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/h2/commit/c0d9febc182d53d94ac43dabcf44c23aa1be4f75\"\u003e\u003ccode\u003ec0d9feb\u003c/code\u003e\u003c/a\u003e ci: pin deps for MSRV\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/h2/commit/5ccd9cfb1034e71b915e72dfcb197f773c6ac836\"\u003e\u003ccode\u003e5ccd9cf\u003c/code\u003e\u003c/a\u003e lints: fix unexpected cfgs warnings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/h2/commit/e6e3e9c87f89a86465d0889dea543d9bfe024e82\"\u003e\u003ccode\u003ee6e3e9c\u003c/code\u003e\u003c/a\u003e fix: return a WriteZero error if frames cannot be written (\u003ca href=\"https://redirect.github.com/hyperium/h2/issues/783\"\u003e#783\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/h2/commit/357127e279c06935830fe2140378312eac801494\"\u003e\u003ccode\u003e357127e\u003c/code\u003e\u003c/a\u003e v0.3.26\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/h2/commit/1a357aaefc7243fdfa9442f45d90be17794a4004\"\u003e\u003ccode\u003e1a357aa\u003c/code\u003e\u003c/a\u003e fix: limit number of CONTINUATION frames allowed\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hyperium/h2/compare/v0.3.24...v0.3.27\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `keccak` from 0.1.5 to 0.1.6\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/sponges/commit/a8936d9662ca92fd177d289580066ceabb937b0c\"\u003e\u003ccode\u003ea8936d9\u003c/code\u003e\u003c/a\u003e keccak v0.1.6\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/RustCrypto/sponges/compare/keccak-v0.1.5...keccak-v0.1.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.9 to 0.3.44\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.44\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.43\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.42\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.41\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.40\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.39\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.38\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.37\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.36\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.35\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.34\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.33\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.32\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.31\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.30\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.29\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.28\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c!-...\n\n_Description has been truncated_","html_url":"https://github.com/Shakacro/solana/pull/9","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Shakacro%2Fsolana/issues/9","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/9/packages"}},{"old_version":"1.10.1","new_version":"1.11.1","update_type":"minor","path":null,"pr_created_at":"2026-05-28T01:07:29.000Z","version_change":"1.10.1 → 1.11.1","issue":{"uuid":"4536870460","node_id":"PR_kwDOSEcsO87gDSbt","number":13,"state":"open","title":"chore(deps): bump the cargo group across 13 directories with 15 updates","user":"dependabot[bot]","labels":["dependencies","rust"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-28T01:07:29.000Z","updated_at":"2026-05-28T01:10:42.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"cargo","update_count":15,"packages":[{"name":"bytes","old_version":"1.10.1","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"httpsig-hyper","old_version":"0.0.19","new_version":"0.0.20","repository_url":"https://github.com/junkurihara/httpsig-rs"},{"name":"rand","old_version":"0.8.5","new_version":"0.9.2","repository_url":"https://github.com/rust-random/rand"},{"name":"rmcp","old_version":"0.6.4","new_version":"0.10.0","repository_url":"https://github.com/modelcontextprotocol/rust-sdk"},{"name":"tar","old_version":"0.4.44","new_version":"0.4.45","repository_url":"https://github.com/composefs/tar-rs"},{"name":"time","old_version":"0.3.43","new_version":"0.3.47","repository_url":"https://github.com/time-rs/time"},{"name":"wasmtime","old_version":"35.0.0","new_version":"36.0.8","repository_url":"https://github.com/bytecodealliance/wasmtime"},{"name":"lz4_flex","old_version":"0.11.5","new_version":"0.11.6","repository_url":"https://github.com/pseitz/lz4_flex"},{"name":"rustls-webpki","old_version":"0.103.4","new_version":"0.103.13","repository_url":"https://github.com/rustls/webpki"},{"name":"oneshot","old_version":"0.1.11","new_version":"0.1.13","repository_url":"https://github.com/faern/oneshot"},{"name":"quinn-proto","old_version":"0.11.12","new_version":"0.11.14","repository_url":"https://github.com/quinn-rs/quinn"},{"name":"rsa","old_version":"0.9.8","new_version":"0.9.10","repository_url":"https://github.com/RustCrypto/RSA"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 12 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.10.1` | `1.11.1` |\n| [httpsig-hyper](https://github.com/junkurihara/httpsig-rs) | `0.0.19` | `0.0.20` |\n| [rand](https://github.com/rust-random/rand) | `0.8.5` | `0.9.2` |\n| [rmcp](https://github.com/modelcontextprotocol/rust-sdk) | `0.6.4` | `0.10.0` |\n| [tar](https://github.com/composefs/tar-rs) | `0.4.44` | `0.4.45` |\n| [time](https://github.com/time-rs/time) | `0.3.43` | `0.3.47` |\n| [wasmtime](https://github.com/bytecodealliance/wasmtime) | `35.0.0` | `36.0.8` |\n| [lz4_flex](https://github.com/pseitz/lz4_flex) | `0.11.5` | `0.11.6` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.103.4` | `0.103.13` |\n| [oneshot](https://github.com/faern/oneshot) | `0.1.11` | `0.1.13` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.12` | `0.11.14` |\n| [rsa](https://github.com/RustCrypto/RSA) | `0.9.8` | `0.9.10` |\n\nBumps the cargo group with 3 updates in the /cli/tests/integration/data directory: [bytes](https://github.com/tokio-rs/bytes), [rand](https://github.com/rust-random/rand) and [time](https://github.com/time-rs/time).\nBumps the cargo group with 4 updates in the /crates/integration-tests/data/mtls-subgraph directory: [bytes](https://github.com/tokio-rs/bytes), [rand](https://github.com/rust-random/rand), [rustls-webpki](https://github.com/rustls/webpki) and [quinn-proto](https://github.com/quinn-rs/quinn).\nBumps the cargo group with 3 updates in the /crates/wasi-component-loader/examples directory: [bytes](https://github.com/tokio-rs/bytes), [rand](https://github.com/rust-random/rand) and [time](https://github.com/time-rs/time).\nBumps the cargo group with 1 update in the /examples/authorization/auth-service directory: [bytes](https://github.com/tokio-rs/bytes).\nBumps the cargo group with 6 updates in the /examples/authorization/authz directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.10.1` | `1.11.1` |\n| [rand](https://github.com/rust-random/rand) | `0.9.2` | `0.10.1` |\n| [time](https://github.com/time-rs/time) | `0.3.44` | `0.3.47` |\n| [lz4_flex](https://github.com/pseitz/lz4_flex) | `0.11.5` | `0.11.6` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.103.8` | `0.103.13` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.13` | `0.11.14` |\n\nBumps the cargo group with 6 updates in the /examples/authorization/extensions directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.10.1` | `1.11.1` |\n| [rand](https://github.com/rust-random/rand) | `0.8.5` | `0.8.6` |\n| [time](https://github.com/time-rs/time) | `0.3.44` | `0.3.47` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.103.8` | `0.103.13` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.13` | `0.11.14` |\n| [rkyv](https://github.com/rkyv/rkyv) | `0.8.12` | `0.8.16` |\n\nBumps the cargo group with 2 updates in the /examples/authorization/subgraphs/users directory: [bytes](https://github.com/tokio-rs/bytes) and [rand](https://github.com/rust-random/rand).\nBumps the cargo group with 5 updates in the /examples/composite-rest/extensions/geo directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.10.1` | `1.11.1` |\n| [rand](https://github.com/rust-random/rand) | `0.8.5` | `0.8.6` |\n| [time](https://github.com/time-rs/time) | `0.3.41` | `0.3.47` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.103.3` | `0.103.13` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.12` | `0.11.14` |\n\nBumps the cargo group with 3 updates in the /examples/composite-rest/subgraphs/zendesk directory: [bytes](https://github.com/tokio-rs/bytes), [rand](https://github.com/rust-random/rand) and [time](https://github.com/time-rs/time).\nBumps the cargo group with 5 updates in the /examples/dynamic-schema-contracts/demo-hooks directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.10.1` | `1.11.1` |\n| [rand](https://github.com/rust-random/rand) | `0.8.5` | `0.8.6` |\n| [time](https://github.com/time-rs/time) | `0.3.41` | `0.3.47` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.103.4` | `0.103.13` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.12` | `0.11.14` |\n\nBumps the cargo group with 2 updates in the /examples/grpc-composite-schemas/services/locations-rust directory: [bytes](https://github.com/tokio-rs/bytes) and [rand](https://github.com/rust-random/rand).\nBumps the cargo group with 2 updates in the /examples/grpc-extension/server directory: [bytes](https://github.com/tokio-rs/bytes) and [rand](https://github.com/rust-random/rand).\n\nUpdates `bytes` from 1.10.1 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.10.1...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `httpsig-hyper` from 0.0.19 to 0.0.20\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/junkurihara/httpsig-rs/commit/afa6289a26efed97cee07e5fd0c6c865ac187691\"\u003e\u003ccode\u003eafa6289\u003c/code\u003e\u003c/a\u003e bump\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/junkurihara/httpsig-rs/commit/0d2c14c00df177796a80fd7c349e4c341bde9249\"\u003e\u003ccode\u003e0d2c14c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/junkurihara/httpsig-rs/issues/8\"\u003e#8\u003c/a\u003e from junkurihara/deps/sfv-0.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/junkurihara/httpsig-rs/commit/985566a93bb99fd7e5cd3a01f2ee2430f5a2abfc\"\u003e\u003ccode\u003e985566a\u003c/code\u003e\u003c/a\u003e deps: sfv-0.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/junkurihara/httpsig-rs/commit/806c3df2dcc134bc44cda02fa2d1b05b966fce34\"\u003e\u003ccode\u003e806c3df\u003c/code\u003e\u003c/a\u003e fix test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/junkurihara/httpsig-rs/commit/e21d89d443a3c3495b6f6109a37dbc96383d79c1\"\u003e\u003ccode\u003ee21d89d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/junkurihara/httpsig-rs/issues/7\"\u003e#7\u003c/a\u003e from divi255/develop\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/junkurihara/httpsig-rs/commit/30710dbf15b6e252fcb5603c140071e5873a8785\"\u003e\u003ccode\u003e30710db\u003c/code\u003e\u003c/a\u003e removed unmaintained fxhash crate\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/junkurihara/httpsig-rs/compare/0.0.19...0.0.20\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.8.5 to 0.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/master/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.9.2] - 2025-07-20\u003c/h2\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003erand::rngs::mock\u003c/code\u003e module and \u003ccode\u003eStepRng\u003c/code\u003e generator (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1634\"\u003e#1634\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdditions\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnable \u003ccode\u003eWeightedIndex\u0026lt;usize\u0026gt;\u003c/code\u003e (de)serialization (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1646\"\u003e#1646\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.9.1] - 2025-04-17\u003c/h2\u003e\n\u003ch3\u003eSecurity and unsafe\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevise \u0026quot;not a crypto library\u0026quot; policy again (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1565\"\u003e#1565\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove \u003ccode\u003ezerocopy\u003c/code\u003e dependency from \u003ccode\u003erand\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1579\"\u003e#1579\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix feature \u003ccode\u003esimd_support\u003c/code\u003e for recent nightly rust (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1586\"\u003e#1586\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAllow \u003ccode\u003efn rand::seq::index::sample_weighted\u003c/code\u003e and \u003ccode\u003efn IndexedRandom::choose_multiple_weighted\u003c/code\u003e to return fewer than \u003ccode\u003eamount\u003c/code\u003e results (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1623\"\u003e#1623\u003c/a\u003e), reverting an undocumented change (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1382\"\u003e#1382\u003c/a\u003e) to the previous release.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdditions\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003erand::distr::Alphabetic\u003c/code\u003e distribution. (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1587\"\u003e#1587\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRe-export \u003ccode\u003erand_core\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1604\"\u003e#1604\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1565\"\u003e#1565\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1565\"\u003erust-random/rand#1565\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1579\"\u003e#1579\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1579\"\u003erust-random/rand#1579\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1586\"\u003e#1586\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1586\"\u003erust-random/rand#1586\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1587\"\u003e#1587\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1587\"\u003erust-random/rand#1587\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1604\"\u003e#1604\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1604\"\u003erust-random/rand#1604\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1623\"\u003e#1623\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1623\"\u003erust-random/rand#1623\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1634\"\u003e#1634\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1634\"\u003erust-random/rand#1634\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1646\"\u003e#1646\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1646\"\u003erust-random/rand#1646\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e[0.9.0] - 2025-01-27\u003c/h2\u003e\n\u003ch3\u003eSecurity and unsafe\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePolicy: \u0026quot;rand is not a crypto library\u0026quot; (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1514\"\u003e#1514\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove fork-protection from \u003ccode\u003eReseedingRng\u003c/code\u003e and \u003ccode\u003eThreadRng\u003c/code\u003e. Instead, it is recommended to call \u003ccode\u003eThreadRng::reseed\u003c/code\u003e on fork. (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1379\"\u003e#1379\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003ezerocopy\u003c/code\u003e to replace some \u003ccode\u003eunsafe\u003c/code\u003e code (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1349\"\u003e#1349\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1393\"\u003e#1393\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1446\"\u003e#1446\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1502\"\u003e#1502\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump the MSRV to 1.63.0 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1207\"\u003e#1207\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1246\"\u003e#1246\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1269\"\u003e#1269\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1341\"\u003e#1341\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1416\"\u003e#1416\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1536\"\u003e#1536\u003c/a\u003e); note that 1.60.0 may work for dependents when using \u003ccode\u003e--ignore-rust-version\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to \u003ccode\u003erand_core\u003c/code\u003e v0.9.0 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1558\"\u003e#1558\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport \u003ccode\u003estd\u003c/code\u003e feature without \u003ccode\u003egetrandom\u003c/code\u003e or \u003ccode\u003erand_chacha\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1354\"\u003e#1354\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnable feature \u003ccode\u003esmall_rng\u003c/code\u003e by default (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1455\"\u003e#1455\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove implicit feature \u003ccode\u003erand_chacha\u003c/code\u003e; use \u003ccode\u003estd_rng\u003c/code\u003e instead. (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1473\"\u003e#1473\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename feature \u003ccode\u003eserde1\u003c/code\u003e to \u003ccode\u003eserde\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1477\"\u003e#1477\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename feature \u003ccode\u003egetrandom\u003c/code\u003e to \u003ccode\u003eos_rng\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1537\"\u003e#1537\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/d3dd4157052e5431ce42e157b544968560a68b95\"\u003e\u003ccode\u003ed3dd415\u003c/code\u003e\u003c/a\u003e Prepare rand_core 0.9.2 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1605\"\u003e#1605\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/99fabd20e9b39d0af7c2ed6c31dbcad83a1703fd\"\u003e\u003ccode\u003e99fabd2\u003c/code\u003e\u003c/a\u003e Prepare rand_core 0.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/c7fe1c43b5ba53aacad5fbac94a8b88788564049\"\u003e\u003ccode\u003ec7fe1c4\u003c/code\u003e\u003c/a\u003e rand: re-export \u003ccode\u003erand_core\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1604\"\u003e#1604\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/db2b1e0bb41b0a1435b9fecaa1b7bdb531183204\"\u003e\u003ccode\u003edb2b1e0\u003c/code\u003e\u003c/a\u003e rand: re-export \u003ccode\u003erand_core\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/ee1d96f9f527dbe6f873c8a5ccf47d60a6b8f7b7\"\u003e\u003ccode\u003eee1d96f\u003c/code\u003e\u003c/a\u003e rand_core: implement reborrow for \u003ccode\u003eUnwrapMut\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1595\"\u003e#1595\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/e0eb2ee0fcc0b07afb901465f4a8ba7f07128f87\"\u003e\u003ccode\u003ee0eb2ee\u003c/code\u003e\u003c/a\u003e rand_core: implement reborrow for \u003ccode\u003eUnwrapMut\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/975f602f5dbbdab0a024e0c5e8b527907426bd8c\"\u003e\u003ccode\u003e975f602\u003c/code\u003e\u003c/a\u003e fixup clippy 1.85 warnings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/775b05be1b8a4fdef17c6601cd223551fbf67edc\"\u003e\u003ccode\u003e775b05b\u003c/code\u003e\u003c/a\u003e Relax \u003ccode\u003eSized\u003c/code\u003e requirements for blanket impls (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1593\"\u003e#1593\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/ec6d5c06a5384c14563a2164bb4a038100a5bb78\"\u003e\u003ccode\u003eec6d5c0\u003c/code\u003e\u003c/a\u003e Prepare rand_core v0.9.1 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1591\"\u003e#1591\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6a06056e8a892bfa181ec24a8ea16aa9f2fe97d3\"\u003e\u003ccode\u003e6a06056\u003c/code\u003e\u003c/a\u003e rand_core: introduce an UnwrapMut wrapper (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1589\"\u003e#1589\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...rand_core-0.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rmcp` from 0.6.4 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/modelcontextprotocol/rust-sdk/releases\"\u003ermcp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ermcp-macros-v0.10.0\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(shemars)\u003c/em\u003e use JSON Schema 2020-12 as Default Dialect (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/549\"\u003e#549\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ermcp-v0.10.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd support for custom client notifications (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/556\"\u003e#556\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ereplace paste with pastey for macros feature (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ermcp-macros-v0.9.1\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(shemars)\u003c/em\u003e use JSON Schema 2020-12 as Default Dialect (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/549\"\u003e#549\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ermcp-v0.9.1\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(streamable-http)\u003c/em\u003e support both SSE and JSON response formats (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/540\"\u003e#540\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edon't block on creating the SSE stream (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/553\"\u003e#553\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cem\u003e(shemars)\u003c/em\u003e use JSON Schema 2020-12 as Default Dialect (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/549\"\u003e#549\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cem\u003e(oauth)\u003c/em\u003e let OAuth discovery skip to next well-known URL candidate on JSON parse error. (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImplementation of SEP-986: Specify Format for Tool Names (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/551\"\u003e#551\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ermcp-macros-v0.9.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(tool)\u003c/em\u003e add _meta to tool definitions (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/534\"\u003e#534\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ermcp-v0.9.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(auth)\u003c/em\u003e implement CredentialStore trait (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/542\"\u003e#542\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cem\u003e(tool)\u003c/em\u003e add _meta to tool definitions (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/534\"\u003e#534\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ermcp-macros-v0.8.5\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(doc)\u003c/em\u003e add stakpak-agent to Built with rmcp section (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/rust-sdk/pull/500\"\u003e#500\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/modelcontextprotocol/rust-sdk/commits/rmcp-v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 0.4.44 to 0.4.45\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/096e3d16d14fefac51bc4d94d616b21546ea8bcc\"\u003e\u003ccode\u003e096e3d1\u003c/code\u003e\u003c/a\u003e Bump to 0.4.45 (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/443\"\u003e#443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/17b1fd84e632071cb8eef9d3709bf347bd266446\"\u003e\u003ccode\u003e17b1fd8\u003c/code\u003e\u003c/a\u003e archive: Prevent symlink-directory collision chmod attack (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/de1a5870e603758f430073688691165f21a33946\"\u003e\u003ccode\u003ede1a587\u003c/code\u003e\u003c/a\u003e archive: Unconditionally honor PAX size (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/441\"\u003e#441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/6071cbe74acefa8c8322809bfd43c825e5f16b60\"\u003e\u003ccode\u003e6071cbe\u003c/code\u003e\u003c/a\u003e ci: Consolidate workflows (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/439\"\u003e#439\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/ad1fde9edfb9657d17666bbec2933119ce527359\"\u003e\u003ccode\u003ead1fde9\u003c/code\u003e\u003c/a\u003e build-sys: Promote unused_code to an error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/c8cb250e8bc3f28bd69406b396bb8a92b40012c1\"\u003e\u003ccode\u003ec8cb250\u003c/code\u003e\u003c/a\u003e tests: Squash a warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/638c495a480d2a50099d55f445ece9e5f544b49d\"\u003e\u003ccode\u003e638c495\u003c/code\u003e\u003c/a\u003e ci: Add xtask infra + reverse dependency testing (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/435\"\u003e#435\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/32a9bbb26468cbdecbf73fe8eb249284d4a718ed\"\u003e\u003ccode\u003e32a9bbb\u003c/code\u003e\u003c/a\u003e tests: Add RandomReader to exercise partial-read resilience (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/436\"\u003e#436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/9c5df0bfd70d1b063516b90fca2cf2e0dbe8b758\"\u003e\u003ccode\u003e9c5df0b\u003c/code\u003e\u003c/a\u003e Fix GNU long-name extension stream corruption on validation error (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/composefs/tar-rs/commit/88b1e3b0da65b0c5b9750d1a75516145488f4793\"\u003e\u003ccode\u003e88b1e3b\u003c/code\u003e\u003c/a\u003e Fix docs typo in header.rs (\u003ca href=\"https://redirect.github.com/composefs/tar-rs/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/composefs/tar-rs/compare/0.4.44...0.4.45\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.43 to 0.3.47\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.47\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.46\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.45\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.44\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003etime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.47 [2026-02-05]\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eThe possibility of a stack exhaustion denial of service attack when parsing RFC 2822 has been\neliminated. Previously, it was possible to craft input that would cause unbounded recursion. Now,\nthe depth of the recursion is tracked, causing an error to be returned if it exceeds a reasonable\nlimit.\u003c/p\u003e\n\u003cp\u003eThis attack vector requires parsing user-provided input, with any type, using the RFC 2822 format.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCompatibility\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAttempting to format a value with a well-known format (i.e. RFC 3339, RFC 2822, or ISO 8601) will\nerror at compile time if the type being formatted does not provide sufficient information. This\nwould previously fail at runtime. Similarly, attempting to format a value with ISO 8601 that is\nonly configured for parsing (i.e. \u003ccode\u003eIso8601::PARSING\u003c/code\u003e) will error at compile time.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBuilder methods for format description modifiers, eliminating the need for verbose initialization\nwhen done manually.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edate!(2026-W01-2)\u003c/code\u003e is now supported. Previously, a space was required between \u003ccode\u003eW\u003c/code\u003e and \u003ccode\u003e01\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[end]\u003c/code\u003e now has a \u003ccode\u003etrailing_input\u003c/code\u003e modifier which can either be \u003ccode\u003eprohibit\u003c/code\u003e (the default) or\n\u003ccode\u003ediscard\u003c/code\u003e. When it is \u003ccode\u003ediscard\u003c/code\u003e, all remaining input is ignored. Note that if there are components\nafter \u003ccode\u003e[end]\u003c/code\u003e, they will still attempt to be parsed, likely resulting in an error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMore performance gains when parsing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIf manually formatting a value, the number of bytes written was one short for some components.\nThis has been fixed such that the number of bytes written is always correct.\u003c/li\u003e\n\u003cli\u003eThe possibility of integer overflow when parsing an owned format description has been effectively\neliminated. This would previously wrap when overflow checks were disabled. Instead of storing the\ndepth as \u003ccode\u003eu8\u003c/code\u003e, it is stored as \u003ccode\u003eu32\u003c/code\u003e. This would require multiple gigabytes of nested input to\noverflow, at which point we've got other problems and trivial mitigations are available by\ndownstream users.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.46 [2026-01-23]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAll possible panics are now documented for the relevant methods.\u003c/li\u003e\n\u003cli\u003eThe need to use \u003ccode\u003e#[serde(default)]\u003c/code\u003e when using custom \u003ccode\u003eserde\u003c/code\u003e formats is documented. This applies\nonly when deserializing an \u003ccode\u003eOption\u0026lt;T\u0026gt;\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDuration::nanoseconds_i128\u003c/code\u003e has been made public, mirroring\n\u003ccode\u003estd::time::Duration::from_nanos_u128\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/d5144cd2874862d46466c900910cd8577d066019\"\u003e\u003ccode\u003ed5144cd\u003c/code\u003e\u003c/a\u003e v0.3.47 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/f6206b050fd54817d8872834b4d61f605570e89b\"\u003e\u003ccode\u003ef6206b0\u003c/code\u003e\u003c/a\u003e Guard against integer overflow in release mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/1c63dc7985b8fa26bd8c689423cc56b7a03841ee\"\u003e\u003ccode\u003e1c63dc7\u003c/code\u003e\u003c/a\u003e Avoid denial of service when parsing Rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/5940df6e72efb63d246ca1ca59a0f836ad32ad8a\"\u003e\u003ccode\u003e5940df6\u003c/code\u003e\u003c/a\u003e Add builder methods to avoid verbose construction\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/00881a4da1bc5a6cb6313052e5017dbd7daa40f0\"\u003e\u003ccode\u003e00881a4\u003c/code\u003e\u003c/a\u003e Manually format macros everywhere\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/bb723b6d826e46c174d75cd08987061984b0ceb7\"\u003e\u003ccode\u003ebb723b6\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003etrailing_input\u003c/code\u003e modifier to \u003ccode\u003eend\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/31c4f8e0b56e6ae24fe0d6ef0e492b6741dda783\"\u003e\u003ccode\u003e31c4f8e\u003c/code\u003e\u003c/a\u003e Permit \u003ccode\u003eW12\u003c/code\u003e in \u003ccode\u003edate!\u003c/code\u003e macro\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/490a17bf306576850f33a86d3ca95d96db7b1dcd\"\u003e\u003ccode\u003e490a17b\u003c/code\u003e\u003c/a\u003e Mark error paths in well-known formats as cold\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6cb1896a600be1538ecfab8f233fe9cfe9fa8951\"\u003e\u003ccode\u003e6cb1896\u003c/code\u003e\u003c/a\u003e Optimize \u003ccode\u003eRfc2822\u003c/code\u003e parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6d264d59c25e3da0453c3defebf4640b0086a006\"\u003e\u003ccode\u003e6d264d5\u003c/code\u003e\u003c/a\u003e Remove erroneous \u003ccode\u003e#[inline(never)]\u003c/code\u003e attributes\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/time-rs/time/compare/v0.3.43...v0.3.47\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `wasmtime` from 35.0.0 to 36.0.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bytecodealliance/wasmtime/releases\"\u003ewasmtime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev36.0.8\u003c/h2\u003e\n\u003ch2\u003e36.0.8\u003c/h2\u003e\n\u003cp\u003eReleased 2026-04-30.\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePanic when allocating a table exceeding the size of the host's address space.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-p8xm-42r7-89xg\"\u003eGHSA-p8xm-42r7-89xg\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev36.0.7\u003c/h2\u003e\n\u003ch2\u003e36.0.7\u003c/h2\u003e\n\u003cp\u003eReleased 2026-04-09.\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eMiscompiled guest heap access enables sandbox escape on aarch64 Cranelift.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-jhxm-h53p-jm7w\"\u003eGHSA-jhxm-h53p-jm7w\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eWasmtime with Winch compiler backend may allow a sandbox-escaping memory\naccess.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-xx5w-cvp6-jv83\"\u003eGHSA-xx5w-cvp6-jv83\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eOut-of-bounds write or crash when transcoding component model strings.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-394w-hwhg-8vgm\"\u003eGHSA-394w-hwhg-8vgm\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eHost panic when Winch compiler executes \u003ccode\u003etable.fill\u003c/code\u003e.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-q49f-xg75-m9xw\"\u003eGHSA-q49f-xg75-m9xw\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eWasmtime segfault or unused out-of-sandbox load with \u003ccode\u003ef64x2.splat\u003c/code\u003e operator\non x86-64.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-qqfj-4vcm-26hv\"\u003eGHSA-qqfj-4vcm-26hv\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImproperly masked return value from \u003ccode\u003etable.grow\u003c/code\u003e with Winch compiler backend.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-f984-pcp8-v2p7\"\u003eGHSA-f984-pcp8-v2p7\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ePanic when transcoding misaligned utf-16 strings.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-jxhv-7h78-9775\"\u003eGHSA-jxhv-7h78-9775\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ePanic when lifting \u003ccode\u003eflags\u003c/code\u003e component value.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-m758-wjhj-p3jq\"\u003eGHSA-m758-wjhj-p3jq\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eHeap OOB read in component model UTF-16 to latin1+utf16 string transcoding.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-hx6p-xpx3-jvvv\"\u003eGHSA-hx6p-xpx3-jvvv\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eData leakage between pooling allocator instances.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-6wgr-89rj-399p\"\u003eGHSA-6wgr-89rj-399p\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eHost data leakage with 64-bit tables and Winch.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bytecodealliance/wasmtime/blob/v36.0.8/RELEASES.md\"\u003ewasmtime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e36.0.8\u003c/h2\u003e\n\u003cp\u003eReleased 2026-04-30.\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePanic when allocating a table exceeding the size of the host's address space.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-p8xm-42r7-89xg\"\u003eGHSA-p8xm-42r7-89xg\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003ch2\u003e36.0.7\u003c/h2\u003e\n\u003cp\u003eReleased 2026-04-09.\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eMiscompiled guest heap access enables sandbox escape on aarch64 Cranelift.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-jhxm-h53p-jm7w\"\u003eGHSA-jhxm-h53p-jm7w\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eWasmtime with Winch compiler backend may allow a sandbox-escaping memory\naccess.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-xx5w-cvp6-jv83\"\u003eGHSA-xx5w-cvp6-jv83\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eOut-of-bounds write or crash when transcoding component model strings.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-394w-hwhg-8vgm\"\u003eGHSA-394w-hwhg-8vgm\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eHost panic when Winch compiler executes \u003ccode\u003etable.fill\u003c/code\u003e.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-q49f-xg75-m9xw\"\u003eGHSA-q49f-xg75-m9xw\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eWasmtime segfault or unused out-of-sandbox load with \u003ccode\u003ef64x2.splat\u003c/code\u003e operator\non x86-64.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-qqfj-4vcm-26hv\"\u003eGHSA-qqfj-4vcm-26hv\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eImproperly masked return value from \u003ccode\u003etable.grow\u003c/code\u003e with Winch compiler backend.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-f984-pcp8-v2p7\"\u003eGHSA-f984-pcp8-v2p7\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ePanic when transcoding misaligned utf-16 strings.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-jxhv-7h78-9775\"\u003eGHSA-jxhv-7h78-9775\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ePanic when lifting \u003ccode\u003eflags\u003c/code\u003e component value.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-m758-wjhj-p3jq\"\u003eGHSA-m758-wjhj-p3jq\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eHeap OOB read in component model UTF-16 to latin1+utf16 string transcoding.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-hx6p-xpx3-jvvv\"\u003eGHSA-hx6p-xpx3-jvvv\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eData leakage between pooling allocator instances.\n\u003ca href=\"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-6wgr-89rj-399p\"\u003eGHSA-6wgr-89rj-399p\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eHost data leakage with 64-bit tables and Winch.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/wasmtime/commit/332e8ad2374e78adba1127f725d6603a4a5f96f3\"\u003e\u003ccode\u003e332e8ad\u003c/code\u003e\u003c/a\u003e Release Wasmtime 36.0.8 (\u003ca href=\"https://redirect.github.com/bytecodealliance/wasmtime/issues/13239\"\u003e#13239\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/wasmtime/commit/82baadae5f71f27f1d32090349316d27e8a5a9e1\"\u003e\u003ccode\u003e82baada\u003c/code\u003e\u003c/a\u003e Fix panicking overflow when calculating table sizes (\u003ca href=\"https://redirect.github.com/bytecodealliance/wasmtime/issues/13242\"\u003e#13242\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/wasmtime/commit/09539085b9b514b65d5c51e2905dc38f6eb414b9\"\u003e\u003ccode\u003e0953908\u003c/code\u003e\u003c/a\u003e Release Wasmtime 36.0.7 (\u003ca href=\"https://redirect.github.com/bytecodealliance/wasmtime/issues/12999\"\u003e#12999\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/wasmtime/commit/7c9130b33caa65015b17b275831be25e4fdcfe7d\"\u003e\u003ccode\u003e7c9130b\u003c/code\u003e\u003c/a\u003e [36.0.x] Combined backports for a 36.0.7 release (\u003ca href=\"https://redirect.github.com/bytecodealliance/wasmtime/issues/13003\"\u003e#13003\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/wasmtime/commit/f2054e0911f55af50686bee4da39d15308e14aec\"\u003e\u003ccode\u003ef2054e0\u003c/code\u003e\u003c/a\u003e Release Wasmtime 36.0.6 (\u003ca href=\"https://redirect.github.com/bytecodealliance/wasmtime/issues/12656\"\u003e#12656\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/wasmtime/commit/48b427bf000cfef29a101e543d5db42cde59ad53\"\u003e\u003ccode\u003e48b427b\u003c/code\u003e\u003c/a\u003e [36.0.x] Backport fixes for security advisories (\u003ca href=\"https://redirect.github.com/bytecodealliance/wasmtime/issues/12648\"\u003e#12648\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/wasmtime/commit/06ef14387760e52371fb68d4b30baf22fd576075\"\u003e\u003ccode\u003e06ef143\u003c/code\u003e\u003c/a\u003e Release Wasmtime 36.0.5 (\u003ca href=\"https://redirect.github.com/bytecodealliance/wasmtime/issues/12432\"\u003e#12432\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/wasmtime/commit/ac92d9bb729ad3a6d93f0724c4c33a0c4a9c0227\"\u003e\u003ccode\u003eac92d9b\u003c/code\u003e\u003c/a\u003e [36.0] Backport Cranelift: x64: fix incorrect load-sinking in \u003ccode\u003ecopysign\u003c/code\u003e oper...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/wasmtime/commit/0489f914c321e314edb4434bf94ffb3f85c5d656\"\u003e\u003ccode\u003e0489f91\u003c/code\u003e\u003c/a\u003e Release Wasmtime 36.0.4 (\u003ca href=\"https://redirect.github.com/bytecodealliance/wasmtime/issues/12348\"\u003e#12348\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/wasmtime/commit/5c1a5f65ad3b856dbffca3330e7d2a66d05de2ba\"\u003e\u003ccode\u003e5c1a5f6\u003c/code\u003e\u003c/a\u003e Cranelift: x64: fix user-controlled recursion in cmp emission. (\u003ca href=\"https://redirect.github.com/bytecodealliance/wasmtime/issues/12333\"\u003e#12333\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/bytecodealliance/wasmtime/issues/12338\"\u003e#12338\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bytecodealliance/wasmtime/compare/v35.0.0...v36.0.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lz4_flex` from 0.11.5 to 0.11.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/PSeitz/lz4_flex/blob/main/CHANGELOG.md\"\u003elz4_flex's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e0.11.6 (2026-03-14)\u003c/h1\u003e\n\u003ch3\u003eSecurity Fix\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix handling of invalid match offsets during decompression \u003ca href=\"https://github.com/PSeitz/lz4_flex/commit/84cdafb\"\u003e#84cdafb\u003c/a\u003e (thanks \u003ca href=\"https://github.com/Marcono1234\"\u003e\u003ccode\u003e@​Marcono1234\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre\u003e\u003ccode\u003eInvalid match offsets (offset == 0) during decompression were not properly\nhandled, which could lead to invalid memory reads on untrusted input.\nUsers on 0.11.x should upgrade to 0.11.6.\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/PSeitz/lz4_flex/commit/6460047c0ba18bf4e3331894c8db220bc724a439\"\u003e\u003ccode\u003e6460047\u003c/code\u003e\u003c/a\u003e bump version to 0.11.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/PSeitz/lz4_flex/commit/84cdafba1fb00313b6da8fd7b3cdeaf8ad07e11a\"\u003e\u003ccode\u003e84cdafb\u003c/code\u003e\u003c/a\u003e fix handling of invalid match offsets during decompression\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/pseitz/lz4_flex/compare/0.11.5...0.11.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls-webpki` from 0.103.4 to 0.103.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rustls/webpki/releases\"\u003erustls-webpki's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.103.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix reachable panic in parsing a CRL\u003c/strong\u003e. This was reported to us as \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-82j2-j2ch-gfr8\"\u003eGHSA-82j2-j2ch-gfr8\u003c/a\u003e. Users who don't use CRLs are not affected.\u003c/li\u003e\n\u003cli\u003eFor name constraints on URI names, we incorrectly processed excluded subtrees in a way which inverted the desired meaning. See \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/471\"\u003erustls/webpki#471\u003c/a\u003e. This was a case missing in the fix for \u003ca href=\"https://github.com/advisories/GHSA-965h-392x-2mh5\"\u003ehttps://github.com/advisories/GHSA-965h-392x-2mh5\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eActually fail closed for URI matching against excluded subtrees by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/473\"\u003erustls/webpki#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.13 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/474\"\u003erustls/webpki#474\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.12\u003c/h2\u003e\n\u003cp\u003eThis release fixes two bugs in name constraint enforcement:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-965h-392x-2mh5\u003c/strong\u003e: name constraints for URI names were ignored and therefore accepted. URI name constraints are now rejected unconditionally. Note this library does not provide an API for asserting URI names, and URI name constraints are otherwise not implemented.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-xgp8-3hg3-c2mh\u003c/strong\u003e: permitted subtree name constraints for DNS names were accepted for certificates asserting a wildcard name. This was incorrect because, given a name constraint of \u003ccode\u003eaccept.example.com\u003c/code\u003e, \u003ccode\u003e*.example.com\u003c/code\u003e could feasibly allow a name of \u003ccode\u003ereject.example.com\u003c/code\u003e which is outside the constraint. This is very similar to \u003ca href=\"https://go.dev/issue/76442\"\u003eCVE-2025-61727\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSince name constraints are restrictions on otherwise properly-issued certificates, these bugs are reachable only after signature verification and require misissuance to exploit.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrepare 0.103.12 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/470\"\u003erustls/webpki#470\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.11\u003c/h2\u003e\n\u003cp\u003eIn response to \u003ca href=\"https://redirect.github.com/rustls/webpki/issues/464\"\u003e#464\u003c/a\u003e, we've slightly relaxed requirements for \u003ccode\u003eanchor_from_trust_cert()\u003c/code\u003e to ignore unknown extensions even if they're marked as critical. This only affects parsing a \u003ccode\u003eTrustAnchor\u003c/code\u003e from DER, for which most extensions are ignored anyway.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport parsing trust anchors with unknown critical extensions to 0.103 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/466\"\u003erustls/webpki#466\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.103.10\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eCorrect selection of candidate CRLs by Distribution Point and Issuing Distribution Point\u003c/strong\u003e. If a certificate had more than one \u003ccode\u003edistributionPoint\u003c/code\u003e, then only the first \u003ccode\u003edistributionPoint\u003c/code\u003e would be considered against each CRL's \u003ccode\u003eIssuingDistributionPoint\u003c/code\u003e \u003ccode\u003edistributionPoint\u003c/code\u003e, and then the certificate's subsequent \u003ccode\u003edistributionPoint\u003c/code\u003es would be ignored.\u003c/p\u003e\n\u003cp\u003eThe impact was that correctly provided CRLs would not be consulted to check revocation. With \u003ccode\u003eUnknownStatusPolicy::Deny\u003c/code\u003e (the default) this would lead to incorrect but safe \u003ccode\u003eError::UnknownRevocationStatus\u003c/code\u003e. With \u003ccode\u003eUnknownStatusPolicy::Allow\u003c/code\u003e this would lead to inappropriate acceptance of revoked certificates.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is thought to be of limited impact. This is because both the certificate and CRL are signed -- an attacker would need to compromise a trusted issuing authority to trigger this bug.  An attacker with such capabilities could likely bypass revocation checking through other more impactful means (such as publishing a valid, empty CRL.)\u003c/p\u003e\n\u003cp\u003eMore likely, this bug would be latent in normal use, and an attacker could leverage faulty revocation checking to continue using a revoked credential.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is identified by \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-pwjx-qhcg-rvj4\"\u003eGHSA-pwjx-qhcg-rvj4\u003c/a\u003e. Thank you to \u003ca href=\"https://github.com/1seal\"\u003e\u003ccode\u003e@​1seal\u003c/code\u003e\u003c/a\u003e for the report.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFreshen up rel-0.103 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/455\"\u003erustls/webpki#455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.10 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/458\"\u003erustls/webpki#458\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2879b2ce7a476181ac3050f73fe0835f04728e86\"\u003e\u003ccode\u003e2879b2c\u003c/code\u003e\u003c/a\u003e Prepare 0.103.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2c49773d823f48c87db30db7a66c25993c847007\"\u003e\u003ccode\u003e2c49773\u003c/code\u003e\u003c/a\u003e Improve tests for padding of \u003ccode\u003eBitStringFlags\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/4e3c0b393a7bfb9cbe6dcdc8309cbadf8ee00c51\"\u003e\u003ccode\u003e4e3c0b3\u003c/code\u003e\u003c/a\u003e Correct validation of BIT STRING constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/39c91d2525a542a7f651a1a62c3462e8115cc39e\"\u003e\u003ccode\u003e39c91d2\u003c/code\u003e\u003c/a\u003e Actually fail closed for URI matching against excluded subtrees\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/27131d476e2b68a537e629d6d012bef8dad6efd3\"\u003e\u003ccode\u003e27131d4\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/6ecb8769cde2246e761e058709421c14a7dee6b1\"\u003e\u003ccode\u003e6ecb876\u003c/code\u003e\u003c/a\u003e Clean up stuttery enum variant names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/318b3e6e03ca2bc21600ca6bb0d0c6439b9e6aeb\"\u003e\u003ccode\u003e318b3e6\u003c/code\u003e\u003c/a\u003e Ignore wildcard labels when matching name constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/12196229a327d3d670798688254bd3ea24aba24b\"\u003e\u003ccode\u003e1219622\u003c/code\u003e\u003c/a\u003e Rewrite constraint matching to avoid permissive catch-all branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/57bc62ce538c2d0d31d44b3eb8c58e6a0a764b47\"\u003e\u003ccode\u003e57bc62c\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/d0fa01ee0a76b7585c13ec43de5854955146ffef\"\u003e\u003ccode\u003ed0fa01e\u003c/code\u003e\u003c/a\u003e Allow parsing trust anchors with unknown criticial extensions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.4...v/0.103.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `aws-lc-sys` from 0.30.0 to 0.41.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-lc-rs/commit/2201001603bde2dbe326ba47ad77c43a1b29c47c\"\u003e\u003ccode\u003e2201001\u003c/code\u003e\u003c/a\u003e Fix rustfmt (\u003ca href=\"https://redirect.github.com/aws/aws-lc-rs/issues/1123\"\u003e#1123\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-lc-rs/commit/1ed08baf0bd08df02200bee97c004bff1770dcae\"\u003e\u003ccode\u003e1ed08ba\u003c/code\u003e\u003c/a\u003e Add single DES support and rename legacy-3des feature to legacy-des (\u003ca href=\"https://redirect.github.com/aws/aws-lc-rs/issues/1122\"\u003e#1122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-lc-rs/commit/889047e9e90190a0382648e5da5fbe7f024f6296\"\u003e\u003ccode\u003e889047e\u003c/code\u003e\u003c/a\u003e Prepare aws-lc-rs v1.17.0 (\u003ca href=\"https://redirect.github.com/aws/aws-lc-rs/issues/1121\"\u003e#1121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-lc-rs/commit/4fdf6722e2669368af1a03a34b2eff60f0da5883\"\u003e\u003ccode\u003e4fdf672\u003c/code\u003e\u003c/a\u003e fix: support building with MinGW on Windows 7 (\u003ca href=\"https://redirect.github.com/aws/aws-lc-rs/issues/1120\"\u003e#1120\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-lc-rs/commit/1cbe889cafb9841fef2f0c9c9e6c13379975d4de\"\u003e\u003ccode\u003e1cbe889\u003c/code\u003e\u003c/a\u003e Adds \u003ccode\u003eLessSafeKey::open_in_place_separate_tag\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/aws/aws-lc-rs/issues/1116\"\u003e#1116\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-lc-rs/commit/ce8bccc4f6d4b7b4e6c0594201f11106cca601ff\"\u003e\u003ccode\u003ece8bccc\u003c/code\u003e\u003c/a\u003e Bump actions/dependency-review-action from 4 to 5 (\u003ca href=\"https://redirect.github.com/aws/aws-lc-rs/issues/1118\"\u003e#1118\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-lc-rs/commit/aac6ebd377ad769c4bef3171299dd6cbb611a77d\"\u003e\u003ccode\u003eaac6ebd\u003c/code\u003e\u003c/a\u003e Prepare aws lc sys 0.41.0 (\u003ca href=\"https://redirect.github.com/aws/aws-lc-rs/issues/1117\"\u003e#1117\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-lc-rs/commit/3cb6cfd7cd6f2c494daa192ef4bf798d36944bac\"\u003e\u003ccode\u003e3cb6cfd\u003c/code\u003e\u003c/a\u003e Add AsDer and ParsedPublicKey conversion for RSA PublicKeyComponents (\u003ca href=\"https://redirect.github.com/aws/aws-lc-rs/issues/1105\"\u003e#1105\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-lc-rs/commit/54a222f41a5d0e4f84f3530e6727b6f2a68f4426\"\u003e\u003ccode\u003e54a222f\u003c/code\u003e\u003c/a\u003e Fix clippy warnings: inline format args, remove redundant borrows, use assert...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-lc-rs/commit/c9c9bc6e291671692c6f0550517d9636a9c746af\"\u003e\u003ccode\u003ec9c9bc6\u003c/code\u003e\u003c/a\u003e Add opt-in 2TDEA and 3TDEA cipher support behind a \u003ccode\u003elegacy-3des\u003c/code\u003e feature (\u003ca href=\"https://redirect.github.com/aws/aws-lc-rs/issues/1109\"\u003e#1109\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-lc-rs/compare/aws-lc-sys/v0.30.0...aws-lc-sys/v0.41.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `oneshot` from 0.1.11 to 0.1.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/faern/oneshot/releases\"\u003eoneshot's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.1.13\u003c/h2\u003e\n\u003ch2\u003e[0.1.13] - 2026-01-26\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix documentation building on docs.rs by not using removed \u003ccode\u003edoc_auto_cfg\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/faern/oneshot/blob/main/CHANGELOG.md\"\u003eoneshot's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.1.13] - 2026-01-26\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix documentation building on docs.rs by not using removed \u003ccode\u003edoc_auto_cfg\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.1.12] - 2026-01-25\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix race condition that could lead to use-after-free if the \u003ccode\u003eReceiver\u003c/code\u003e was polled asynchronously,\nbut then dropped before completion. \u003ca href=\"https://redirect.github.com/faern/oneshot/pull/74\"\u003efaern/oneshot#74\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix race conditions/UB around atomic memory orderings. These were found by running tests under\nmiri. \u003ca href=\"https://redirect.github.com/faern/oneshot/pull/72\"\u003efaern/oneshot#72\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/a6a03981ec4d9aa3abb4445f0b90919d08a746ad\"\u003e\u003ccode\u003ea6a0398\u003c/code\u003e\u003c/a\u003e Bump version to 0.1.13 and fix changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/7615d9e008a36396f84202b23f4a5caa36722e22\"\u003e\u003ccode\u003e7615d9e\u003c/code\u003e\u003c/a\u003e Stop using removed doc_auto_cfg feature when building for docs.rs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/537d5de4b6a8e1f2cb8224a2a7c91b851f0226d0\"\u003e\u003ccode\u003e537d5de\u003c/code\u003e\u003c/a\u003e Bump version to 0.1.12 and fix changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/9cc3153a7d1bd577644b04978f30f2761ebdeb44\"\u003e\u003ccode\u003e9cc3153\u003c/code\u003e\u003c/a\u003e Merge branch 'improve-start_recv_ref'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/cc3d6a2b962c87012448af83644ee13b300cebaa\"\u003e\u003ccode\u003ecc3d6a2\u003c/code\u003e\u003c/a\u003e Improve start_recv_ref to be more like regular recv method\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/78c74769797a404100c675cd11ff685e91e871f8\"\u003e\u003ccode\u003e78c7476\u003c/code\u003e\u003c/a\u003e Merge branch 'update-documentation'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/38d7f6f2cd3b1e8676ee7761c08f962e517cfdf1\"\u003e\u003ccode\u003e38d7f6f\u003c/code\u003e\u003c/a\u003e Add clarifying documentation on sender observing RECEIVING state\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/21e03100742110fe61b87c0350dafa2254c70d11\"\u003e\u003ccode\u003e21e0310\u003c/code\u003e\u003c/a\u003e Synchronize readme with crate documentation in lib.rs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/def74fc6fe2f7aa9dccb67214896e2bd0173baa1\"\u003e\u003ccode\u003edef74fc\u003c/code\u003e\u003c/a\u003e Fix spelling and grammar errors in documentation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/70031a4282ac78ccb412bdb9163c8f185e13a519\"\u003e\u003ccode\u003e70031a4\u003c/code\u003e\u003c/a\u003e Add documentation about how send and receive are synchronized\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/faern/oneshot/compare/v0.1.11...v0.1.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `quinn-proto` from 0.11.12 to 0.11.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quinn-rs/quinn/releases\"\u003equinn-proto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003equinn-proto 0.11.14\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jxs\"\u003e\u003ccode\u003e@​jxs\u003c/code\u003e\u003c/a\u003e reported a denial of service issue in quinn-proto 5 days ago:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\"\u003ehttps://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eWe coordinated with them to release this version to patch the issue. Unfortunately the maintainers missed these issues during code review and we did not have enough fuzzing coverage -- we regret the oversight and have added an additional fuzzing target.\u003c/p\u003e\n\u003cp\u003eOrganizations that want to participate in coordinated disclosure can contact us privately to discuss terms.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix over-permissive proto dependency edge by \u003ca href=\"https://github.com/Ralith\"\u003e\u003ccode\u003e@​Ralith\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2385\"\u003equinn-rs/quinn#2385\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e0.11.x: avoid unwrapping VarInt decoding during parameter parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2559\"\u003equinn-rs/quinn#2559\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/2c315aa7f9c2a6c1db87f8f51f40623a427c78fd\"\u003e\u003ccode\u003e2c315aa\u003c/code\u003e\u003c/a\u003e proto: bump version to 0.11.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8ad47f431e7deb82c08b09c2e33ef85aa88fd212\"\u003e\u003ccode\u003e8ad47f4\u003c/code\u003e\u003c/a\u003e Use newer rustls-pki-types PEM parser API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c81c0289abe30d8437ccbf9b6304e2bc9c707cea\"\u003e\u003ccode\u003ec81c028\u003c/code\u003e\u003c/a\u003e ci: fix workflow syntax\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/0050172969f7e69e136c433181330da7790d8d73\"\u003e\u003ccode\u003e0050172\u003c/code\u003e\u003c/a\u003e ci: pin wasm-bindgen-cli version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8a6f82c58d1c565eab78f986e614223e6ed76a85\"\u003e\u003ccode\u003e8a6f82c\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/e52db4ad8df0f9720e7b0e32ecc0e48c9a93de0f\"\u003e\u003ccode\u003ee52db4a\u003c/code\u003e\u003c/a\u003e Apply suggestions from clippy 1.91\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/6df7275c582ca9b7225e0ccf9f9871a55eb73155\"\u003e\u003ccode\u003e6df7275\u003c/code\u003e\u003c/a\u003e chore: Fix \u003ccode\u003eunnecessary_unwrap\u003c/code\u003e clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c8eefa07e087b06d8f2b78ff262ce8ac952994f1\"\u003e\u003ccode\u003ec8eefa0\u003c/code\u003e\u003c/a\u003e proto: avoid unwrapping varint decoding during parameters parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/9723a977754c8662001b0fef97aab8f3ddf1df92\"\u003e\u003ccode\u003e9723a97\u003c/code\u003e\u003c/a\u003e fuzz: add fuzzing target for parsing transport parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/eaf0ef30252cef4acec21f150427e604cd4271c9\"\u003e\u003ccode\u003eeaf0ef3\u003c/code\u003e\u003c/a\u003e Fix over-permissive proto dependency edge (\u003ca href=\"https://redirect.github.com/quinn-rs/quinn/issues/2385\"\u003e#2385\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quinn-rs/quinn/compare/quinn-proto-0.11.12...quinn-proto-0.11.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rsa` from 0.9.8 to 0.9.10\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/RustCrypto/RSA/blob/v0.9.10/CHANGELOG.md\"\u003ersa's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.9.10 (2026-01-06)\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edo not panic on a prime being 1 when loading a secret key (\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/624\"\u003e#624\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/624\"\u003e#624\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/RustCrypto/RSA/pull/624\"\u003eRustCrypto/RSA#624\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.9.9 (2025-11-13)\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for cryptographic operations with larger keys (\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/594\"\u003e#594\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/594\"\u003e#594\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/RustCrypto/RSA/pull/594\"\u003eRustCrypto/RSA#594\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/da2af9a0ff814762957c428460e4098720f394a6\"\u003e\u003ccode\u003eda2af9a\u003c/code\u003e\u003c/a\u003e chore: release v0.9.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/2926c91bef7cb14a7ccd42220a698cf4b1b692f7\"\u003e\u003ccode\u003e2926c91\u003c/code\u003e\u003c/a\u003e fix: do not panic on a prime being 1 when loading a secret key (\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/624\"\u003e#624\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/488d2ad6090e54b5125dfeefeda53a1adb4b67c0\"\u003e\u003ccode\u003e488d2ad\u003c/code\u003e\u003c/a\u003e chore: release 0.9.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/c1f00a32c5ef97ca2bc121ee28b7ea907b6f936d\"\u003e\u003ccode\u003ec1f00a3\u003c/code\u003e\u003c/a\u003e Support for cryptographic operations with larger keys (\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/594\"\u003e#594\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/RustCrypto/RSA/compare/v0.9.8...v0.9.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.10.1 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca...\n\n_Description has been truncated_","html_url":"https://github.com/pantheon-systems/grafbase/pull/13","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/pantheon-systems%2Fgrafbase/issues/13","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/13/packages"}},{"old_version":"1.10.1","new_version":"1.11.1","update_type":"minor","path":null,"pr_created_at":"2026-05-27T16:40:02.000Z","version_change":"1.10.1 → 1.11.1","issue":{"uuid":"4534066244","node_id":"PR_kwDOIQsw1s7f6Jco","number":1926,"state":"closed","title":"Bump the all-dependencies group with 60 updates","user":"dependabot[bot]","labels":["size/XXL","needs-ok-to-test","dependencies","rust"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-05-27T23:17:00.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-27T16:40:02.000Z","updated_at":"2026-05-27T23:17:04.000Z","time_to_close":23818,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"all-dependencies","update_count":60,"packages":[{"name":"boring","old_version":"4.16.0","new_version":"4.22.0","repository_url":"https://github.com/cloudflare/boring"},{"name":"boring-sys","old_version":"4.16.0","new_version":"4.22.0","repository_url":"https://github.com/cloudflare/boring"},{"name":"rustls-openssl","old_version":"0.2.1","new_version":"0.3.1","repository_url":"https://github.com/tofay/rustls-openssl"},{"name":"openssl","old_version":"0.10.72","new_version":"0.10.80","repository_url":"https://github.com/rust-openssl/rust-openssl"},{"name":"anyhow","old_version":"1.0.97","new_version":"1.0.102","repository_url":"https://github.com/dtolnay/anyhow"},{"name":"async-trait","old_version":"0.1.88","new_version":"0.1.89","repository_url":"https://github.com/dtolnay/async-trait"},{"name":"bytes","old_version":"1.10.1","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"chrono","old_version":"0.4.40","new_version":"0.4.44","repository_url":"https://github.com/chronotope/chrono"},{"name":"duration-str","old_version":"0.17.0","new_version":"0.21.0","repository_url":"https://github.com/baoyachi/duration-str"},{"name":"futures","old_version":"0.3.31","new_version":"0.3.32","repository_url":"https://github.com/rust-lang/futures-rs"},{"name":"futures-core","old_version":"0.3.31","new_version":"0.3.32","repository_url":"https://github.com/rust-lang/futures-rs"},{"name":"futures-util","old_version":"0.3.31","new_version":"0.3.32","repository_url":"https://github.com/rust-lang/futures-rs"},{"name":"jemalloc_pprof","old_version":"0.6.0","new_version":"0.8.2","repository_url":"https://github.com/polarsignals/rust-jemalloc-pprof"},{"name":"hashbrown","old_version":"0.15.2","new_version":"0.17.1","repository_url":"https://github.com/rust-lang/hashbrown"},{"name":"hickory-client","old_version":"0.25.1","new_version":"0.25.2","repository_url":"https://github.com/hickory-dns/hickory-dns"},{"name":"hickory-proto","old_version":"0.25.1","new_version":"0.25.2","repository_url":"https://github.com/hickory-dns/hickory-dns"},{"name":"hickory-resolver","old_version":"0.25.1","new_version":"0.25.2","repository_url":"https://github.com/hickory-dns/hickory-dns"},{"name":"hickory-server","old_version":"0.25.1","new_version":"0.25.2","repository_url":"https://github.com/hickory-dns/hickory-dns"},{"name":"hyper","old_version":"1.6.0","new_version":"1.10.0","repository_url":"https://github.com/hyperium/hyper"},{"name":"hyper-rustls","old_version":"0.27.5","new_version":"0.27.9","repository_url":"https://github.com/rustls/hyper-rustls"},{"name":"hyper-util","old_version":"0.1.11","new_version":"0.1.20","repository_url":"https://github.com/hyperium/hyper-util"},{"name":"ipnet","old_version":"2.11.0","new_version":"2.12.0","repository_url":"https://github.com/krisprice/ipnet"},{"name":"libc","old_version":"0.2.171","new_version":"0.2.186","repository_url":"https://github.com/rust-lang/libc"},{"name":"log","old_version":"0.4.27","new_version":"0.4.30","repository_url":"https://github.com/rust-lang/log"},{"name":"nix","old_version":"0.29.0","new_version":"0.31.3","repository_url":"https://github.com/nix-rust/nix"},{"name":"once_cell","old_version":"1.21.3","new_version":"1.21.4","repository_url":"https://github.com/matklad/once_cell"},{"name":"num_cpus","old_version":"1.16.0","new_version":"1.17.0","repository_url":"https://github.com/seanmonstar/num_cpus"},{"name":"prometheus-client","old_version":"0.23.1","new_version":"0.24.1","repository_url":"https://github.com/prometheus/client_rust"},{"name":"prost","old_version":"0.13.5","new_version":"0.14.3","repository_url":"https://github.com/tokio-rs/prost"},{"name":"prost-types","old_version":"0.13.5","new_version":"0.14.3","repository_url":"https://github.com/tokio-rs/prost"},{"name":"rand","old_version":"0.9.0","new_version":"0.9.4","repository_url":"https://github.com/rust-random/rand"},{"name":"rcgen","old_version":"0.13.3","new_version":"0.14.7","repository_url":"https://github.com/rustls/rcgen"},{"name":"rustls","old_version":"0.23.26","new_version":"0.23.28","repository_url":"https://github.com/rustls/rustls"},{"name":"rustls-native-certs","old_version":"0.8.1","new_version":"0.8.3","repository_url":"https://github.com/rustls/rustls-native-certs"},{"name":"serde","old_version":"1.0.219","new_version":"1.0.228","repository_url":"https://github.com/serde-rs/serde"},{"name":"serde_json","old_version":"1.0.140","new_version":"1.0.150","repository_url":"https://github.com/serde-rs/json"},{"name":"socket2","old_version":"0.5.9","new_version":"0.6.3","repository_url":"https://github.com/rust-lang/socket2"},{"name":"thiserror","old_version":"2.0.12","new_version":"2.0.18","repository_url":"https://github.com/dtolnay/thiserror"},{"name":"tls-listener","old_version":"0.11.0","new_version":"0.11.2","repository_url":"https://github.com/tmccombs/tls-listener"},{"name":"tokio","old_version":"1.44.2","new_version":"1.52.3","repository_url":"https://github.com/tokio-rs/tokio"},{"name":"tokio-rustls","old_version":"0.26.2","new_version":"0.26.4","repository_url":"https://github.com/rustls/tokio-rustls"},{"name":"tokio-stream","old_version":"0.1.17","new_version":"0.1.18","repository_url":"https://github.com/tokio-rs/tokio"},{"name":"tonic","old_version":"0.13.0","new_version":"0.13.1","repository_url":"https://github.com/hyperium/tonic"},{"name":"tower","old_version":"0.5.2","new_version":"0.5.3","repository_url":"https://github.com/tower-rs/tower"},{"name":"tracing","old_version":"0.1.41","new_version":"0.1.44","repository_url":"https://github.com/tokio-rs/tracing"},{"name":"tracing-subscriber","old_version":"0.3.19","new_version":"0.3.23","repository_url":"https://github.com/tokio-rs/tracing"},{"name":"x509-parser","old_version":"0.17.0","new_version":"0.18.1","repository_url":"https://github.com/rusticata/x509-parser"},{"name":"pin-project-lite","old_version":"0.2.16","new_version":"0.2.17","repository_url":"https://github.com/taiki-e/pin-project-lite"},{"name":"pingora-pool","old_version":"0.4.0","new_version":"0.8.0","repository_url":"https://github.com/cloudflare/pingora"},{"name":"h2","old_version":"0.4.8","new_version":"0.4.14","repository_url":"https://github.com/hyperium/h2"},{"name":"http","old_version":"1.3.1","new_version":"1.4.1","repository_url":"https://github.com/hyperium/http"},{"name":"tracing-core","old_version":"0.1.33","new_version":"0.1.36","repository_url":"https://github.com/tokio-rs/tracing"},{"name":"tracing-appender","old_version":"0.2.3","new_version":"0.2.5","repository_url":"https://github.com/tokio-rs/tracing"},{"name":"tokio-util","old_version":"0.7.14","new_version":"0.7.18","repository_url":"https://github.com/tokio-rs/tokio"},{"name":"netns-rs","old_version":"0.1.0","new_version":"0.2.0","repository_url":"https://github.com/wllenyj/netns-rs"},{"name":"pprof","old_version":"0.14.0","new_version":"0.15.0","repository_url":"https://github.com/tikv/pprof-rs"},{"name":"local-ip-address","old_version":"0.6.3","new_version":"0.6.13","repository_url":"https://github.com/LeoBorai/local-ip-address"},{"name":"ctor","old_version":"0.4.1","new_version":"1.0.6","repository_url":"https://github.com/mmastrac/linktime"},{"name":"tonic-build","old_version":"0.13.0","new_version":"0.13.1","repository_url":"https://github.com/hyperium/tonic"},{"name":"prost-build","old_version":"0.13.5","new_version":"0.14.3","repository_url":"https://github.com/tokio-rs/prost"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the all-dependencies group with 60 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [boring](https://github.com/cloudflare/boring) | `4.16.0` | `4.22.0` |\n| [boring-sys](https://github.com/cloudflare/boring) | `4.16.0` | `4.22.0` |\n| [rustls-openssl](https://github.com/tofay/rustls-openssl) | `0.2.1` | `0.3.1` |\n| [openssl](https://github.com/rust-openssl/rust-openssl) | `0.10.72` | `0.10.80` |\n| [anyhow](https://github.com/dtolnay/anyhow) | `1.0.97` | `1.0.102` |\n| [async-trait](https://github.com/dtolnay/async-trait) | `0.1.88` | `0.1.89` |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.10.1` | `1.11.1` |\n| [chrono](https://github.com/chronotope/chrono) | `0.4.40` | `0.4.44` |\n| [duration-str](https://github.com/baoyachi/duration-str) | `0.17.0` | `0.21.0` |\n| [futures](https://github.com/rust-lang/futures-rs) | `0.3.31` | `0.3.32` |\n| [futures-core](https://github.com/rust-lang/futures-rs) | `0.3.31` | `0.3.32` |\n| [futures-util](https://github.com/rust-lang/futures-rs) | `0.3.31` | `0.3.32` |\n| [jemalloc_pprof](https://github.com/polarsignals/rust-jemalloc-pprof) | `0.6.0` | `0.8.2` |\n| [hashbrown](https://github.com/rust-lang/hashbrown) | `0.15.2` | `0.17.1` |\n| [hickory-client](https://github.com/hickory-dns/hickory-dns) | `0.25.1` | `0.25.2` |\n| [hickory-proto](https://github.com/hickory-dns/hickory-dns) | `0.25.1` | `0.25.2` |\n| [hickory-resolver](https://github.com/hickory-dns/hickory-dns) | `0.25.1` | `0.25.2` |\n| [hickory-server](https://github.com/hickory-dns/hickory-dns) | `0.25.1` | `0.25.2` |\n| [hyper](https://github.com/hyperium/hyper) | `1.6.0` | `1.10.0` |\n| [hyper-rustls](https://github.com/rustls/hyper-rustls) | `0.27.5` | `0.27.9` |\n| [hyper-util](https://github.com/hyperium/hyper-util) | `0.1.11` | `0.1.20` |\n| [ipnet](https://github.com/krisprice/ipnet) | `2.11.0` | `2.12.0` |\n| [libc](https://github.com/rust-lang/libc) | `0.2.171` | `0.2.186` |\n| [log](https://github.com/rust-lang/log) | `0.4.27` | `0.4.30` |\n| [nix](https://github.com/nix-rust/nix) | `0.29.0` | `0.31.3` |\n| [once_cell](https://github.com/matklad/once_cell) | `1.21.3` | `1.21.4` |\n| [num_cpus](https://github.com/seanmonstar/num_cpus) | `1.16.0` | `1.17.0` |\n| [prometheus-client](https://github.com/prometheus/client_rust) | `0.23.1` | `0.24.1` |\n| [prost](https://github.com/tokio-rs/prost) | `0.13.5` | `0.14.3` |\n| [prost-types](https://github.com/tokio-rs/prost) | `0.13.5` | `0.14.3` |\n| [rand](https://github.com/rust-random/rand) | `0.9.0` | `0.9.4` |\n| [rcgen](https://github.com/rustls/rcgen) | `0.13.3` | `0.14.7` |\n| [rustls](https://github.com/rustls/rustls) | `0.23.26` | `0.23.28` |\n| [rustls-native-certs](https://github.com/rustls/rustls-native-certs) | `0.8.1` | `0.8.3` |\n| [serde](https://github.com/serde-rs/serde) | `1.0.219` | `1.0.228` |\n| [serde_json](https://github.com/serde-rs/json) | `1.0.140` | `1.0.150` |\n| [socket2](https://github.com/rust-lang/socket2) | `0.5.9` | `0.6.3` |\n| [thiserror](https://github.com/dtolnay/thiserror) | `2.0.12` | `2.0.18` |\n| [tls-listener](https://github.com/tmccombs/tls-listener) | `0.11.0` | `0.11.2` |\n| [tokio](https://github.com/tokio-rs/tokio) | `1.44.2` | `1.52.3` |\n| [tokio-rustls](https://github.com/rustls/tokio-rustls) | `0.26.2` | `0.26.4` |\n| [tokio-stream](https://github.com/tokio-rs/tokio) | `0.1.17` | `0.1.18` |\n| [tonic](https://github.com/hyperium/tonic) | `0.13.0` | `0.13.1` |\n| [tower](https://github.com/tower-rs/tower) | `0.5.2` | `0.5.3` |\n| [tracing](https://github.com/tokio-rs/tracing) | `0.1.41` | `0.1.44` |\n| [tracing-subscriber](https://github.com/tokio-rs/tracing) | `0.3.19` | `0.3.23` |\n| [x509-parser](https://github.com/rusticata/x509-parser) | `0.17.0` | `0.18.1` |\n| [pin-project-lite](https://github.com/taiki-e/pin-project-lite) | `0.2.16` | `0.2.17` |\n| [pingora-pool](https://github.com/cloudflare/pingora) | `0.4.0` | `0.8.0` |\n| [h2](https://github.com/hyperium/h2) | `0.4.8` | `0.4.14` |\n| [http](https://github.com/hyperium/http) | `1.3.1` | `1.4.1` |\n| [tracing-core](https://github.com/tokio-rs/tracing) | `0.1.33` | `0.1.36` |\n| [tracing-appender](https://github.com/tokio-rs/tracing) | `0.2.3` | `0.2.5` |\n| [tokio-util](https://github.com/tokio-rs/tokio) | `0.7.14` | `0.7.18` |\n| [netns-rs](https://github.com/wllenyj/netns-rs) | `0.1.0` | `0.2.0` |\n| [pprof](https://github.com/tikv/pprof-rs) | `0.14.0` | `0.15.0` |\n| [local-ip-address](https://github.com/LeoBorai/local-ip-address) | `0.6.3` | `0.6.13` |\n| [ctor](https://github.com/mmastrac/linktime) | `0.4.1` | `1.0.6` |\n| [tonic-build](https://github.com/hyperium/tonic) | `0.13.0` | `0.13.1` |\n| [prost-build](https://github.com/tokio-rs/prost) | `0.13.5` | `0.14.3` |\n\nUpdates `boring` from 4.16.0 to 4.22.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/boring/releases\"\u003eboring's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.21.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecated APIs that were \u003ca href=\"https://github.com/cloudflare/boring/releases/tag/v5.0.0-alpha.1\"\u003eremoved in v5\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eFixed docs.rs build\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.21.0\u003c/h2\u003e\n\u003cp\u003eDeprecated APIs that were \u003ca href=\"https://github.com/cloudflare/boring/releases/tag/v5.0.0-alpha.1\"\u003eremoved in v5\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev4.20.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd a more reliable \u003ccode\u003eError::library_reason()\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix string data conversion in \u003ccode\u003eErrorStack::put()\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eCStr vs UTF-8 improvements in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/371\"\u003ecloudflare/boring#371\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix swapped host/target args and support TARGET_CC and CC_{target} in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/375\"\u003ecloudflare/boring#375\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable bindgen layout tests on all Rust versions 3116032a83a891f9495698bf0692ccc59ceef6e2\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/boring/compare/v4.19.0...v4.20.0\"\u003ehttps://github.com/cloudflare/boring/compare/v4.19.0...v4.20.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.19.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eError improvements by \u003ca href=\"https://github.com/kornelski\"\u003e\u003ccode\u003e@​kornelski\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/372\"\u003ecloudflare/boring#372\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd binding for X509_check_ip_asc by \u003ca href=\"https://github.com/evanrittenhouse\"\u003e\u003ccode\u003e@​evanrittenhouse\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/381\"\u003ecloudflare/boring#381\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/boring/compare/v4.18.0...v4.19.0\"\u003ehttps://github.com/cloudflare/boring/compare/v4.18.0...v4.19.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd set_verify_param by \u003ca href=\"https://github.com/semaj-cf\"\u003e\u003ccode\u003e@​semaj-cf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/357\"\u003ecloudflare/boring#357\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for X509_STORE_CTX_get0_untrusted by \u003ca href=\"https://github.com/semaj-cf\"\u003e\u003ccode\u003e@​semaj-cf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/356\"\u003ecloudflare/boring#356\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd X509VerifyParamRef::copy_from by \u003ca href=\"https://github.com/nox\"\u003e\u003ccode\u003e@​nox\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/361\"\u003ecloudflare/boring#361\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix X509VerifyContextRef::set_verify_param by \u003ca href=\"https://github.com/nox\"\u003e\u003ccode\u003e@​nox\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/358\"\u003ecloudflare/boring#358\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnsure we call X509_STORE_CTX_cleanup on error path too by \u003ca href=\"https://github.com/nox\"\u003e\u003ccode\u003e@​nox\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/360\"\u003ecloudflare/boring#360\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove X509StoreContext initialization API by \u003ca href=\"https://github.com/nox\"\u003e\u003ccode\u003e@​nox\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/359\"\u003ecloudflare/boring#359\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDon't unwrap when Result can be returned instead by \u003ca href=\"https://github.com/kornelski\"\u003e\u003ccode\u003e@​kornelski\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/367\"\u003ecloudflare/boring#367\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake X509Store shareable between contexts by \u003ca href=\"https://github.com/kornelski\"\u003e\u003ccode\u003e@​kornelski\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/366\"\u003ecloudflare/boring#366\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSprinkle #[must_use] by \u003ca href=\"https://github.com/kornelski\"\u003e\u003ccode\u003e@​kornelski\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/368\"\u003ecloudflare/boring#368\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose SSL_set1_groups to Efficiently Set Curves on SSL Session by \u003ca href=\"https://github.com/Justin-Kwan\"\u003e\u003ccode\u003e@​Justin-Kwan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/346\"\u003ecloudflare/boring#346\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade bindgen to v0.72.0 by \u003ca href=\"https://github.com/akonradi-signal\"\u003e\u003ccode\u003e@​akonradi-signal\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/369\"\u003ecloudflare/boring#369\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose PKey::raw_{private,public}_key by \u003ca href=\"https://github.com/jrose-signal\"\u003e\u003ccode\u003e@​jrose-signal\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/364\"\u003ecloudflare/boring#364\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDon't compile binaries for docs.rs by \u003ca href=\"https://github.com/kornelski\"\u003e\u003ccode\u003e@​kornelski\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/370\"\u003ecloudflare/boring#370\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove some comments referring to OpenSSL by \u003ca href=\"https://github.com/hcstern\"\u003e\u003ccode\u003e@​hcstern\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/374\"\u003ecloudflare/boring#374\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Justin-Kwan\"\u003e\u003ccode\u003e@​Justin-Kwan\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/346\"\u003ecloudflare/boring#346\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/akonradi-signal\"\u003e\u003ccode\u003e@​akonradi-signal\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/369\"\u003ecloudflare/boring#369\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hcstern\"\u003e\u003ccode\u003e@​hcstern\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/374\"\u003ecloudflare/boring#374\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/boring/compare/v4.17.0...v4.18.0\"\u003ehttps://github.com/cloudflare/boring/compare/v4.17.0...v4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eX509_STORE_CTX_get0_cert\u003c/code\u003e interface by \u003ca href=\"https://github.com/semaj-cf\"\u003e\u003ccode\u003e@​semaj-cf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/349\"\u003ecloudflare/boring#349\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/boring/blob/master/RELEASE_NOTES\"\u003eboring's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e5.1.0\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e2026-04-13 Add EVP_AEAD-based detached AEAD module\u003c/li\u003e\n\u003cli\u003e2026-04-13 Add generic PKey private key generation API\u003c/li\u003e\n\u003cli\u003e2026-04-13 Add TLS 1.2 PRF module and bindings\u003c/li\u003e\n\u003cli\u003e2026-03-25 Add used_hello_retry_request\u003c/li\u003e\n\u003cli\u003e2026-03-28 Prebuilt lib export option\u003c/li\u003e\n\u003cli\u003e2026-03-27 Display sys crate errors using cargo::error\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e5.0.2\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e2026-02-13 Re-add fips-precompiled for v4 compat\u003c/li\u003e\n\u003cli\u003e2026-02-12 Don't add build/ to non-FIPS pre-built path\u003c/li\u003e\n\u003cli\u003e2026-02-13 Expose load_verify_locations like rust-openssl\u003c/li\u003e\n\u003cli\u003e2026-02-12 Support static MSVC runtime\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e5.0.1\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e2026-02-03 Make SslCredential optional\u003c/li\u003e\n\u003cli\u003e2026-02-10 Make ML-KEM optional\u003c/li\u003e\n\u003cli\u003e2026-02-10 Don't always require all headers from all versions of BoringSSL\u003c/li\u003e\n\u003cli\u003e2026-02-10 Ensure we don't leave unit memory if generate_key fails\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e5.0.0\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e2025-12-19 Update vendored boring to a newer version (2023.11 to 2025.11)\u003c/li\u003e\n\u003cli\u003e2025-12-20 Rework RPK/SslMethod (c2f063cf4711f15b8b417b6926496fbf1c2a03ac)\u003c/li\u003e\n\u003cli\u003e2025-09-29 Remove \u003ccode\u003eSslCurve\u003c/code\u003e API\u003c/li\u003e\n\u003cli\u003e2025-09-30 Remove the \u0026quot;kx-*\u0026quot; features\u003c/li\u003e\n\u003cli\u003e2025-09-25 Remove legacy FIPS options (they're controlled via \u003ccode\u003eBORING_BSSL_\u003c/code\u003e env vars instead)\u003c/li\u003e\n\u003cli\u003e2026-01-05 Remove deprecated X509CheckFlags flag\u003c/li\u003e\n\u003cli\u003e2025-09-30 Remove \u0026quot;pq-experimental\u0026quot; Cargo feature, apply PQ patch by default + P256Kyber768Draft00\u003c/li\u003e\n\u003cli\u003e2026-01-05 Safe clone for X509Store\u003c/li\u003e\n\u003cli\u003e2025-03-08 Add set_ticket_key_callback (SSL_CTX_set_tlsext_ticket_key_cb)\u003c/li\u003e\n\u003cli\u003e2025-09-30 Add SslRef::curve_name()\u003c/li\u003e\n\u003cli\u003e2025-09-30 Expose a safe Rust interface for the session resumption callback\u003c/li\u003e\n\u003cli\u003e2026-01-05 Fix leaky set_ex_data() API\u003c/li\u003e\n\u003cli\u003e2025-12-12 Add boring specific api set_strict_cipher_list to SslContextBuilder\u003c/li\u003e\n\u003cli\u003e2025-11-20 Introduce SslCipherRef::protocol_id\u003c/li\u003e\n\u003cli\u003e2023-05-11 fix: BIO_set_retry_write when BIO_CTRL_FLUSH to allow writer returns WouldBlock on flush\u003c/li\u003e\n\u003cli\u003e2025-11-14 Remove blanket Eq from FFI types\u003c/li\u003e\n\u003cli\u003e2025-12-20 Never use the debug CRT on Windows\u003c/li\u003e\n\u003cli\u003e2025-02-19 X509Builder::append_extension2 -\u0026gt; X509Builder::append_extension\u003c/li\u003e\n\u003cli\u003e2025-02-19 \u003ccode\u003eSsl::new_from_ref\u003c/code\u003e -\u0026gt; \u003ccode\u003eSsl::new()\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e2025-02-19 Align SslStream APIs with upstream\u003c/li\u003e\n\u003cli\u003e2025-09-26 Remove support for Hyper v0\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e4.21.0\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e2026-01-05 Warn about set_curves() removal\u003c/li\u003e\n\u003cli\u003e2026-01-05 Deprecate set_ex_data()\u003c/li\u003e\n\u003cli\u003e2026-01-05 Fix build with --no-default-features\u003c/li\u003e\n\u003cli\u003e2026-01-05 Make set_curves_list always available\u003c/li\u003e\n\u003cli\u003e2026-01-19 Use fips-build-compatible ERR_add_error_data\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/467cb51c987fbb0041b2f31bd56b697a956e5cea\"\u003e\u003ccode\u003e467cb51\u003c/code\u003e\u003c/a\u003e Clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/cb3e7ddc87420af3f3a4db637c5180a1179816ae\"\u003e\u003ccode\u003ecb3e7dd\u003c/code\u003e\u003c/a\u003e Bump\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/ee5974cde2c6051d759ca10a0beefc5a6d4fc062\"\u003e\u003ccode\u003eee5974c\u003c/code\u003e\u003c/a\u003e Expose load_verify_locations like rust-openssl\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/f5b444832c7158d8140e9aca593be4b2221b2767\"\u003e\u003ccode\u003ef5b4448\u003c/code\u003e\u003c/a\u003e Introduce SslCipherRef::protocol_id\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/d1384338e1cd7452683f6ce9c4facb497bc63d29\"\u003e\u003ccode\u003ed138433\u003c/code\u003e\u003c/a\u003e Add SslRef::curve_name()\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/3a930a31f6696b571594a26c072a9969105d7358\"\u003e\u003ccode\u003e3a930a3\u003c/code\u003e\u003c/a\u003e Don't add build/ to non-FIPS pre-built path\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/fec5ccfdcba8ce71ad352414cdef5012334beb9e\"\u003e\u003ccode\u003efec5ccf\u003c/code\u003e\u003c/a\u003e More robust int conversion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/395f57810bfbe50ce76d3aaf4233fdacb4220283\"\u003e\u003ccode\u003e395f578\u003c/code\u003e\u003c/a\u003e v4.21.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/64b3e149767323ece99ceda6f83cfeb52f736987\"\u003e\u003ccode\u003e64b3e14\u003c/code\u003e\u003c/a\u003e Fix docs.rs build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/33b36ab7a10655468170b4a7242af04fe9186563\"\u003e\u003ccode\u003e33b36ab\u003c/code\u003e\u003c/a\u003e Release 4.21.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cloudflare/boring/compare/v4.16.0...v4.22.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `boring-sys` from 4.16.0 to 4.22.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/boring/releases\"\u003eboring-sys's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.21.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecated APIs that were \u003ca href=\"https://github.com/cloudflare/boring/releases/tag/v5.0.0-alpha.1\"\u003eremoved in v5\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eFixed docs.rs build\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.21.0\u003c/h2\u003e\n\u003cp\u003eDeprecated APIs that were \u003ca href=\"https://github.com/cloudflare/boring/releases/tag/v5.0.0-alpha.1\"\u003eremoved in v5\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev4.20.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd a more reliable \u003ccode\u003eError::library_reason()\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix string data conversion in \u003ccode\u003eErrorStack::put()\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eCStr vs UTF-8 improvements in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/371\"\u003ecloudflare/boring#371\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix swapped host/target args and support TARGET_CC and CC_{target} in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/375\"\u003ecloudflare/boring#375\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable bindgen layout tests on all Rust versions 3116032a83a891f9495698bf0692ccc59ceef6e2\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/boring/compare/v4.19.0...v4.20.0\"\u003ehttps://github.com/cloudflare/boring/compare/v4.19.0...v4.20.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.19.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eError improvements by \u003ca href=\"https://github.com/kornelski\"\u003e\u003ccode\u003e@​kornelski\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/372\"\u003ecloudflare/boring#372\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd binding for X509_check_ip_asc by \u003ca href=\"https://github.com/evanrittenhouse\"\u003e\u003ccode\u003e@​evanrittenhouse\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/381\"\u003ecloudflare/boring#381\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/boring/compare/v4.18.0...v4.19.0\"\u003ehttps://github.com/cloudflare/boring/compare/v4.18.0...v4.19.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd set_verify_param by \u003ca href=\"https://github.com/semaj-cf\"\u003e\u003ccode\u003e@​semaj-cf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/357\"\u003ecloudflare/boring#357\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for X509_STORE_CTX_get0_untrusted by \u003ca href=\"https://github.com/semaj-cf\"\u003e\u003ccode\u003e@​semaj-cf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/356\"\u003ecloudflare/boring#356\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd X509VerifyParamRef::copy_from by \u003ca href=\"https://github.com/nox\"\u003e\u003ccode\u003e@​nox\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/361\"\u003ecloudflare/boring#361\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix X509VerifyContextRef::set_verify_param by \u003ca href=\"https://github.com/nox\"\u003e\u003ccode\u003e@​nox\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/358\"\u003ecloudflare/boring#358\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnsure we call X509_STORE_CTX_cleanup on error path too by \u003ca href=\"https://github.com/nox\"\u003e\u003ccode\u003e@​nox\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/360\"\u003ecloudflare/boring#360\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove X509StoreContext initialization API by \u003ca href=\"https://github.com/nox\"\u003e\u003ccode\u003e@​nox\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/359\"\u003ecloudflare/boring#359\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDon't unwrap when Result can be returned instead by \u003ca href=\"https://github.com/kornelski\"\u003e\u003ccode\u003e@​kornelski\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/367\"\u003ecloudflare/boring#367\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake X509Store shareable between contexts by \u003ca href=\"https://github.com/kornelski\"\u003e\u003ccode\u003e@​kornelski\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/366\"\u003ecloudflare/boring#366\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSprinkle #[must_use] by \u003ca href=\"https://github.com/kornelski\"\u003e\u003ccode\u003e@​kornelski\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/368\"\u003ecloudflare/boring#368\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose SSL_set1_groups to Efficiently Set Curves on SSL Session by \u003ca href=\"https://github.com/Justin-Kwan\"\u003e\u003ccode\u003e@​Justin-Kwan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/346\"\u003ecloudflare/boring#346\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade bindgen to v0.72.0 by \u003ca href=\"https://github.com/akonradi-signal\"\u003e\u003ccode\u003e@​akonradi-signal\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/369\"\u003ecloudflare/boring#369\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose PKey::raw_{private,public}_key by \u003ca href=\"https://github.com/jrose-signal\"\u003e\u003ccode\u003e@​jrose-signal\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/364\"\u003ecloudflare/boring#364\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDon't compile binaries for docs.rs by \u003ca href=\"https://github.com/kornelski\"\u003e\u003ccode\u003e@​kornelski\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/370\"\u003ecloudflare/boring#370\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove some comments referring to OpenSSL by \u003ca href=\"https://github.com/hcstern\"\u003e\u003ccode\u003e@​hcstern\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/374\"\u003ecloudflare/boring#374\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Justin-Kwan\"\u003e\u003ccode\u003e@​Justin-Kwan\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/346\"\u003ecloudflare/boring#346\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/akonradi-signal\"\u003e\u003ccode\u003e@​akonradi-signal\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/369\"\u003ecloudflare/boring#369\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hcstern\"\u003e\u003ccode\u003e@​hcstern\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/374\"\u003ecloudflare/boring#374\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/boring/compare/v4.17.0...v4.18.0\"\u003ehttps://github.com/cloudflare/boring/compare/v4.17.0...v4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eX509_STORE_CTX_get0_cert\u003c/code\u003e interface by \u003ca href=\"https://github.com/semaj-cf\"\u003e\u003ccode\u003e@​semaj-cf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/boring/pull/349\"\u003ecloudflare/boring#349\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/boring/blob/master/RELEASE_NOTES\"\u003eboring-sys's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e5.1.0\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e2026-04-13 Add EVP_AEAD-based detached AEAD module\u003c/li\u003e\n\u003cli\u003e2026-04-13 Add generic PKey private key generation API\u003c/li\u003e\n\u003cli\u003e2026-04-13 Add TLS 1.2 PRF module and bindings\u003c/li\u003e\n\u003cli\u003e2026-03-25 Add used_hello_retry_request\u003c/li\u003e\n\u003cli\u003e2026-03-28 Prebuilt lib export option\u003c/li\u003e\n\u003cli\u003e2026-03-27 Display sys crate errors using cargo::error\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e5.0.2\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e2026-02-13 Re-add fips-precompiled for v4 compat\u003c/li\u003e\n\u003cli\u003e2026-02-12 Don't add build/ to non-FIPS pre-built path\u003c/li\u003e\n\u003cli\u003e2026-02-13 Expose load_verify_locations like rust-openssl\u003c/li\u003e\n\u003cli\u003e2026-02-12 Support static MSVC runtime\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e5.0.1\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e2026-02-03 Make SslCredential optional\u003c/li\u003e\n\u003cli\u003e2026-02-10 Make ML-KEM optional\u003c/li\u003e\n\u003cli\u003e2026-02-10 Don't always require all headers from all versions of BoringSSL\u003c/li\u003e\n\u003cli\u003e2026-02-10 Ensure we don't leave unit memory if generate_key fails\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e5.0.0\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e2025-12-19 Update vendored boring to a newer version (2023.11 to 2025.11)\u003c/li\u003e\n\u003cli\u003e2025-12-20 Rework RPK/SslMethod (c2f063cf4711f15b8b417b6926496fbf1c2a03ac)\u003c/li\u003e\n\u003cli\u003e2025-09-29 Remove \u003ccode\u003eSslCurve\u003c/code\u003e API\u003c/li\u003e\n\u003cli\u003e2025-09-30 Remove the \u0026quot;kx-*\u0026quot; features\u003c/li\u003e\n\u003cli\u003e2025-09-25 Remove legacy FIPS options (they're controlled via \u003ccode\u003eBORING_BSSL_\u003c/code\u003e env vars instead)\u003c/li\u003e\n\u003cli\u003e2026-01-05 Remove deprecated X509CheckFlags flag\u003c/li\u003e\n\u003cli\u003e2025-09-30 Remove \u0026quot;pq-experimental\u0026quot; Cargo feature, apply PQ patch by default + P256Kyber768Draft00\u003c/li\u003e\n\u003cli\u003e2026-01-05 Safe clone for X509Store\u003c/li\u003e\n\u003cli\u003e2025-03-08 Add set_ticket_key_callback (SSL_CTX_set_tlsext_ticket_key_cb)\u003c/li\u003e\n\u003cli\u003e2025-09-30 Add SslRef::curve_name()\u003c/li\u003e\n\u003cli\u003e2025-09-30 Expose a safe Rust interface for the session resumption callback\u003c/li\u003e\n\u003cli\u003e2026-01-05 Fix leaky set_ex_data() API\u003c/li\u003e\n\u003cli\u003e2025-12-12 Add boring specific api set_strict_cipher_list to SslContextBuilder\u003c/li\u003e\n\u003cli\u003e2025-11-20 Introduce SslCipherRef::protocol_id\u003c/li\u003e\n\u003cli\u003e2023-05-11 fix: BIO_set_retry_write when BIO_CTRL_FLUSH to allow writer returns WouldBlock on flush\u003c/li\u003e\n\u003cli\u003e2025-11-14 Remove blanket Eq from FFI types\u003c/li\u003e\n\u003cli\u003e2025-12-20 Never use the debug CRT on Windows\u003c/li\u003e\n\u003cli\u003e2025-02-19 X509Builder::append_extension2 -\u0026gt; X509Builder::append_extension\u003c/li\u003e\n\u003cli\u003e2025-02-19 \u003ccode\u003eSsl::new_from_ref\u003c/code\u003e -\u0026gt; \u003ccode\u003eSsl::new()\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e2025-02-19 Align SslStream APIs with upstream\u003c/li\u003e\n\u003cli\u003e2025-09-26 Remove support for Hyper v0\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e4.21.0\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e2026-01-05 Warn about set_curves() removal\u003c/li\u003e\n\u003cli\u003e2026-01-05 Deprecate set_ex_data()\u003c/li\u003e\n\u003cli\u003e2026-01-05 Fix build with --no-default-features\u003c/li\u003e\n\u003cli\u003e2026-01-05 Make set_curves_list always available\u003c/li\u003e\n\u003cli\u003e2026-01-19 Use fips-build-compatible ERR_add_error_data\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/467cb51c987fbb0041b2f31bd56b697a956e5cea\"\u003e\u003ccode\u003e467cb51\u003c/code\u003e\u003c/a\u003e Clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/cb3e7ddc87420af3f3a4db637c5180a1179816ae\"\u003e\u003ccode\u003ecb3e7dd\u003c/code\u003e\u003c/a\u003e Bump\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/ee5974cde2c6051d759ca10a0beefc5a6d4fc062\"\u003e\u003ccode\u003eee5974c\u003c/code\u003e\u003c/a\u003e Expose load_verify_locations like rust-openssl\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/f5b444832c7158d8140e9aca593be4b2221b2767\"\u003e\u003ccode\u003ef5b4448\u003c/code\u003e\u003c/a\u003e Introduce SslCipherRef::protocol_id\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/d1384338e1cd7452683f6ce9c4facb497bc63d29\"\u003e\u003ccode\u003ed138433\u003c/code\u003e\u003c/a\u003e Add SslRef::curve_name()\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/3a930a31f6696b571594a26c072a9969105d7358\"\u003e\u003ccode\u003e3a930a3\u003c/code\u003e\u003c/a\u003e Don't add build/ to non-FIPS pre-built path\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/fec5ccfdcba8ce71ad352414cdef5012334beb9e\"\u003e\u003ccode\u003efec5ccf\u003c/code\u003e\u003c/a\u003e More robust int conversion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/395f57810bfbe50ce76d3aaf4233fdacb4220283\"\u003e\u003ccode\u003e395f578\u003c/code\u003e\u003c/a\u003e v4.21.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/64b3e149767323ece99ceda6f83cfeb52f736987\"\u003e\u003ccode\u003e64b3e14\u003c/code\u003e\u003c/a\u003e Fix docs.rs build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/boring/commit/33b36ab7a10655468170b4a7242af04fe9186563\"\u003e\u003ccode\u003e33b36ab\u003c/code\u003e\u003c/a\u003e Release 4.21.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cloudflare/boring/compare/v4.16.0...v4.22.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls-openssl` from 0.2.1 to 0.3.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tofay/rustls-openssl/releases\"\u003erustls-openssl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd post-quantum support by \u003ca href=\"https://github.com/tofay\"\u003e\u003ccode\u003e@​tofay\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/tofay/rustls-openssl/pull/29\"\u003etofay/rustls-openssl#29\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003erustls_openssl::ALL_KX_GROUPS\u003c/code\u003e has been removed in favour of \u003ccode\u003erustls_openssl::kx_group::DEFAULT_KX_GROUPS\u003c/code\u003e and \u003ccode\u003erustls_openssl::kx_group::ALL_KX_GROUPS\u003c/code\u003e.\n\u003cul\u003e\n\u003cli\u003ethe latter contains MLKEM768 which isn't enabled by default.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/tofay/rustls-openssl/compare/0.2.1...0.3.0\"\u003ehttps://github.com/tofay/rustls-openssl/compare/0.2.1...0.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tofay/rustls-openssl/commit/0e871fc159b5dba59390ce1f97b5d95d1e6bea4a\"\u003e\u003ccode\u003e0e871fc\u003c/code\u003e\u003c/a\u003e release 0.3.1 (\u003ca href=\"https://redirect.github.com/tofay/rustls-openssl/issues/33\"\u003e#33\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tofay/rustls-openssl/commit/a21035c0ff42c78cfbce4ba15f8c1e0dd3c09660\"\u003e\u003ccode\u003ea21035c\u003c/code\u003e\u003c/a\u003e add_hkdf_info: use patched version if fips is enabled (\u003ca href=\"https://redirect.github.com/tofay/rustls-openssl/issues/30\"\u003e#30\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tofay/rustls-openssl/commit/c32b266599b3192b39e35876fb479808631695fc\"\u003e\u003ccode\u003ec32b266\u003c/code\u003e\u003c/a\u003e Add post-quantum support (\u003ca href=\"https://redirect.github.com/tofay/rustls-openssl/issues/29\"\u003e#29\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tofay/rustls-openssl/compare/0.2.1...0.3.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openssl` from 0.10.72 to 0.10.80\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-openssl/rust-openssl/releases\"\u003eopenssl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eopenssl-v0.10.80\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrefer Homebrew openssl@4 and stop looking for openssl@1.1 by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2633\"\u003erust-openssl/rust-openssl#2633\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix output buffer overflow in cipher_update_inplace for AES key-wrap-with-padding by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2638\"\u003erust-openssl/rust-openssl#2638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl 0.10.80 and openssl-sys 0.9.116 by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2639\"\u003erust-openssl/rust-openssl#2639\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.79...openssl-v0.10.80\"\u003ehttps://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.79...openssl-v0.10.80\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eopenssl-v0.10.79\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/cache from 5.0.4 to 5.0.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2610\"\u003erust-openssl/rust-openssl#2610\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTry to fix OpenSSL 1.1.0l download by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2614\"\u003erust-openssl/rust-openssl#2614\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRequire \u0026amp;mut BigNumContextRef for EcPointRef mul/invert by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2615\"\u003erust-openssl/rust-openssl#2615\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix UB in EcGroupRef::generator on groups without a generator by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2617\"\u003erust-openssl/rust-openssl#2617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace \u003ccode\u003euse libc::*;\u003c/code\u003e with targeted imports in openssl-sys by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2618\"\u003erust-openssl/rust-openssl#2618\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKeyRef::is_a and KeyType for name-based key identification by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2619\"\u003erust-openssl/rust-openssl#2619\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKey::{public,private}_key_from_raw_bytes_ex by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2620\"\u003erust-openssl/rust-openssl#2620\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump MSRV to 1.80 by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2622\"\u003erust-openssl/rust-openssl#2622\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop once_cell in favor of std::sync::{LazyLock, OnceLock} by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2623\"\u003erust-openssl/rust-openssl#2623\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKey::private_key_from_seed for ML-DSA/ML-KEM key import by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2621\"\u003erust-openssl/rust-openssl#2621\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eparallelize more builds in CI for cold caches by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2625\"\u003erust-openssl/rust-openssl#2625\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2626\"\u003erust-openssl/rust-openssl#2626\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix process abort when verify/PSK callbacks fire after SSL_CTX swap by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2624\"\u003erust-openssl/rust-openssl#2624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBind OSSL_PARAM_modified and use it for seed_into by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2628\"\u003erust-openssl/rust-openssl#2628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PkeyCtxRef::set_context_string for ML-DSA by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2629\"\u003erust-openssl/rust-openssl#2629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2631\"\u003erust-openssl/rust-openssl#2631\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix output buffer overflow for AES key-wrap-with-padding ciphers by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2630\"\u003erust-openssl/rust-openssl#2630\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl 0.10.79 and openssl-sys 0.9.115 by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2632\"\u003erust-openssl/rust-openssl#2632\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.78...openssl-v0.10.79\"\u003ehttps://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.78...openssl-v0.10.79\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eopenssl-v0.10.78\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix Suite B flag assignments in verify.rs by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2592\"\u003erust-openssl/rust-openssl#2592\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse cvt_p for OPENSSL_malloc error handling by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2593\"\u003erust-openssl/rust-openssl#2593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMark BIO_get_mem_data on AWS-LC to be unsafe by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2594\"\u003erust-openssl/rust-openssl#2594\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSet timeout for package installation step by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2595\"\u003erust-openssl/rust-openssl#2595\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePanic in Crypter::new when IV is required but not provided by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2596\"\u003erust-openssl/rust-openssl#2596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eopenssl 4 support by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2591\"\u003erust-openssl/rust-openssl#2591\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid panic for overlong OIDs by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2598\"\u003erust-openssl/rust-openssl#2598\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix dangling stack pointer in custom extension add callback by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2599\"\u003erust-openssl/rust-openssl#2599\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for LibreSSL 4.3.x by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2603\"\u003erust-openssl/rust-openssl#2603\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix inverted bounds assertion in AES key unwrap by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2604\"\u003erust-openssl/rust-openssl#2604\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject oversized length returns from password callback trampoline by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2605\"\u003erust-openssl/rust-openssl#2605\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eValidate callback-returned lengths in PSK and cookie trampolines by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2607\"\u003erust-openssl/rust-openssl#2607\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eError for short out in MdCtxRef::digest_final() by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2608\"\u003erust-openssl/rust-openssl#2608\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck derive output buffer length on OpenSSL 1.1.x by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2606\"\u003erust-openssl/rust-openssl#2606\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl v0.10.78 and openssl-sys v0.9.114 by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2609\"\u003erust-openssl/rust-openssl#2609\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/35be7ae43b207fc0448a648a21e9156bc360c9af\"\u003e\u003ccode\u003e35be7ae\u003c/code\u003e\u003c/a\u003e Release openssl 0.10.80 and openssl-sys 0.9.116 (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2639\"\u003e#2639\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/19eceb26f2404aae187e5444e65c404ebc1348a7\"\u003e\u003ccode\u003e19eceb2\u003c/code\u003e\u003c/a\u003e Fix output buffer overflow in cipher_update_inplace for AES key-wrap-with-pad...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/b460eb378c335610df5395a251408ad70bb60d42\"\u003e\u003ccode\u003eb460eb3\u003c/code\u003e\u003c/a\u003e Prefer Homebrew openssl@4 and stop looking for openssl@1.1 (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2633\"\u003e#2633\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/649f2d9e37f3aa701e20bd8ab5cd7eb5afa0a90f\"\u003e\u003ccode\u003e649f2d9\u003c/code\u003e\u003c/a\u003e Release openssl 0.10.79 and openssl-sys 0.9.115 (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2632\"\u003e#2632\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/257f9b20c001b888986f93579f118fa2a57d4f45\"\u003e\u003ccode\u003e257f9b2\u003c/code\u003e\u003c/a\u003e Fix output buffer overflow for AES key-wrap-with-padding ciphers (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2630\"\u003e#2630\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/d43e9179b1885fc66269a42361cc7a80f631ac8f\"\u003e\u003ccode\u003ed43e917\u003c/code\u003e\u003c/a\u003e Reject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2631\"\u003e#2631\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/f46519c8694a3e121091dafe38aab77c2f756546\"\u003e\u003ccode\u003ef46519c\u003c/code\u003e\u003c/a\u003e Add PkeyCtxRef::set_context_string for ML-DSA (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2629\"\u003e#2629\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/ad9ae312771f898749a9471549519d45eba6a033\"\u003e\u003ccode\u003ead9ae31\u003c/code\u003e\u003c/a\u003e Bind OSSL_PARAM_modified and use it for seed_into (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2628\"\u003e#2628\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/4e25c9be20dae1e78f1a3815950cd0973addae82\"\u003e\u003ccode\u003e4e25c9b\u003c/code\u003e\u003c/a\u003e Fix process abort when verify/PSK callbacks fire after SSL_CTX swap (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2624\"\u003e#2624\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/3dd8f425ef34a069b5bec46f3971b67db1c295c7\"\u003e\u003ccode\u003e3dd8f42\u003c/code\u003e\u003c/a\u003e Add PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2626\"\u003e#2626\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.72...openssl-v0.10.80\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `anyhow` from 1.0.97 to 1.0.102\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dtolnay/anyhow/releases\"\u003eanyhow's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.0.102\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove backtrace dependency (\u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/438\"\u003e#438\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/439\"\u003e#439\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/440\"\u003e#440\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/441\"\u003e#441\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.0.101\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd #[inline] to anyhow::Ok helper (\u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/437\"\u003e#437\u003c/a\u003e, thanks \u003ca href=\"https://github.com/Ibitier\"\u003e\u003ccode\u003e@​Ibitier\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.0.100\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTeach clippy to lint formatting arguments in \u003ccode\u003ebail!\u003c/code\u003e, \u003ccode\u003eensure!\u003c/code\u003e, \u003ccode\u003eanyhow!\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/426\"\u003e#426\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.0.99\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAllow build-script cleanup failure with NFSv3 output directory to be non-fatal (\u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/420\"\u003e#420\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.0.98\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ca href=\"https://docs.rs/anyhow/1/anyhow/struct.Error.html#method.into_boxed_dyn_error\"\u003e\u003ccode\u003eself.into_boxed_dyn_error()\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://docs.rs/anyhow/1/anyhow/struct.Error.html#method.reallocate_into_boxed_dyn_error_without_backtrace\"\u003e\u003ccode\u003eself.reallocate_into_boxed_dyn_error_without_backtrace()\u003c/code\u003e\u003c/a\u003e methods for anyhow::Error (\u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/415\"\u003e#415\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/5c657b32522023a9f7ef883fb08582fd8e656b1a\"\u003e\u003ccode\u003e5c657b3\u003c/code\u003e\u003c/a\u003e Release 1.0.102\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/e737fb63918e8c71a3d0a968004a9c7ed7942283\"\u003e\u003ccode\u003ee737fb6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/442\"\u003e#442\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/7fe62b51c62804f8b84443affeacfb3810ed2516\"\u003e\u003ccode\u003e7fe62b5\u003c/code\u003e\u003c/a\u003e Further simply backtrace conditional compilation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/c8cb5cae23e57a2dbb87bf05cba04f1df1f1660b\"\u003e\u003ccode\u003ec8cb5ca\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/441\"\u003e#441\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/de27df7e0f510d543c18e50a0736566b66e62baf\"\u003e\u003ccode\u003ede27df7\u003c/code\u003e\u003c/a\u003e Delete CI use of --features=backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/9b67e5dd608658d805640cf1b6f6c9d091686ec1\"\u003e\u003ccode\u003e9b67e5d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/440\"\u003e#440\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/efdb11a259ca58a2e505ef50486cf2d6b5ddc42a\"\u003e\u003ccode\u003eefdb11a\u003c/code\u003e\u003c/a\u003e Simplify \u003ccode\u003estd_backtrace\u003c/code\u003e conditional code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/b8a9a707838969721a86b28e3c45ce27e279e981\"\u003e\u003ccode\u003eb8a9a70\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/439\"\u003e#439\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/a42fc2c21846ba459df43a3f8b4996a2074909cb\"\u003e\u003ccode\u003ea42fc2c\u003c/code\u003e\u003c/a\u003e Remove \u003ccode\u003efeature = \u0026quot;backtrace\u0026quot;\u003c/code\u003e conditional code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/2a2a3ceb4cbc409fd99613ab5744b21e825e7908\"\u003e\u003ccode\u003e2a2a3ce\u003c/code\u003e\u003c/a\u003e Re-word backtrace feature comment\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dtolnay/anyhow/compare/1.0.97...1.0.102\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `async-trait` from 0.1.88 to 0.1.89\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dtolnay/async-trait/releases\"\u003easync-trait's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.1.89\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImprove IDE functionality (\u003ca href=\"https://redirect.github.com/dtolnay/async-trait/issues/293\"\u003e#293\u003c/a\u003e, thanks \u003ca href=\"https://github.com/Veykril\"\u003e\u003ccode\u003e@​Veykril\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/async-trait/commit/a7e91e98a5d2de2ceae52d9459eed309939a98bf\"\u003e\u003ccode\u003ea7e91e9\u003c/code\u003e\u003c/a\u003e Release 0.1.89\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/async-trait/commit/fbcfcaca022197e20a3f70b448a2615ae49d3701\"\u003e\u003ccode\u003efbcfcac\u003c/code\u003e\u003c/a\u003e Merge pull request 293 from Veykril/lw/quote_spanned\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/async-trait/commit/fd93990620ba8d1af6089ac286120b71adc26c06\"\u003e\u003ccode\u003efd93990\u003c/code\u003e\u003c/a\u003e Improve use of spans in \u003ccode\u003equote_spanned\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/async-trait/commit/a5093fe762a8a38cb41aba7fd40d1051386a8fb5\"\u003e\u003ccode\u003ea5093fe\u003c/code\u003e\u003c/a\u003e Add type-mismatch ui test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/async-trait/commit/6d12b441162c8c688cbb39bfc87829083ccbc1a9\"\u003e\u003ccode\u003e6d12b44\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;Pin nightly toolchain used for miri job\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/async-trait/commit/dd9e4bad1b9465706366689551df978a39bf4390\"\u003e\u003ccode\u003edd9e4ba\u003c/code\u003e\u003c/a\u003e Hide unused_variables warning in consider-restricting.rs ui test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/async-trait/commit/b454fc869a32a2410adc405ffb030be78246de8b\"\u003e\u003ccode\u003eb454fc8\u003c/code\u003e\u003c/a\u003e Update ui test suite to nightly-2025-08-03\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/async-trait/commit/9c880e85d885eb20426222d5462286f1dab09d5a\"\u003e\u003ccode\u003e9c880e8\u003c/code\u003e\u003c/a\u003e Update ui test suite to nightly-2025-07-30\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/async-trait/commit/7ca751d0b3c62dfbd39699f8d32a09f7b7a70800\"\u003e\u003ccode\u003e7ca751d\u003c/code\u003e\u003c/a\u003e Ignore unused_parens warning in test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/async-trait/commit/2bccfeb461b0c92964fdee816896e9f8f6f291b8\"\u003e\u003ccode\u003e2bccfeb\u003c/code\u003e\u003c/a\u003e Update ui test suite to nightly-2025-05-28\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dtolnay/async-trait/compare/0.1.88...0.1.89\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.10.1 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.10.1...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `chrono` from 0.4.40 to 0.4.44\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/chronotope/chrono/releases\"\u003echrono's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.44\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: match MSRV with \u003ccode\u003eCargo.toml\u003c/code\u003e contents by \u003ca href=\"https://github.com/coryan\"\u003e\u003ccode\u003e@​coryan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1772\"\u003echronotope/chrono#1772\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd track_caller to non-deprecated functions by \u003ca href=\"https://github.com/svix-jplatte\"\u003e\u003ccode\u003e@​svix-jplatte\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1774\"\u003echronotope/chrono#1774\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.4.43\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eInstall extra components for lint workflow by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1741\"\u003echronotope/chrono#1741\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade windows-bindgen to 0.64 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1742\"\u003echronotope/chrono#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove windows-bindgen setup by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1744\"\u003echronotope/chrono#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop stabilized feature doc_auto_cfg by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1745\"\u003echronotope/chrono#1745\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFaster RFC 3339 parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1748\"\u003echronotope/chrono#1748\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate windows-bindgen requirement from 0.64 to 0.65 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1751\"\u003echronotope/chrono#1751\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd \u003ccode\u003eNaiveDate::abs_diff\u003c/code\u003e by \u003ca href=\"https://github.com/Kinrany\"\u003e\u003ccode\u003e@​Kinrany\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1752\"\u003echronotope/chrono#1752\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd feature gated defmt support. by \u003ca href=\"https://github.com/pebender\"\u003e\u003ccode\u003e@​pebender\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1747\"\u003echronotope/chrono#1747\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop deny lints, eager Debug impls are a mixed blessing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1753\"\u003echronotope/chrono#1753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: minor improvement for docs by \u003ca href=\"https://github.com/spuradage\"\u003e\u003ccode\u003e@​spuradage\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1756\"\u003echronotope/chrono#1756\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded doctest for the NaiveDate years_since function by \u003ca href=\"https://github.com/LucasBou\"\u003e\u003ccode\u003e@​LucasBou\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1755\"\u003echronotope/chrono#1755\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.4.43 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1765\"\u003echronotope/chrono#1765\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate copyright year to 2026 in LICENSE.txt by \u003ca href=\"https://github.com/taozui472\"\u003e\u003ccode\u003e@​taozui472\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1767\"\u003echronotope/chrono#1767\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.4.42\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd fuzzer for DateTime::parse_from_str by \u003ca href=\"https://github.com/tyler92\"\u003e\u003ccode\u003e@​tyler92\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1700\"\u003echronotope/chrono#1700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix wrong amount of micro/milliseconds by \u003ca href=\"https://github.com/nmlt\"\u003e\u003ccode\u003e@​nmlt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1703\"\u003echronotope/chrono#1703\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd warning about MappedLocalTime and wasm by \u003ca href=\"https://github.com/lutzky\"\u003e\u003ccode\u003e@​lutzky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1702\"\u003echronotope/chrono#1702\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix incorrect parsing of fixed-length second fractions by \u003ca href=\"https://github.com/chris-leach\"\u003e\u003ccode\u003e@​chris-leach\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1705\"\u003echronotope/chrono#1705\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix cfgs for \u003ccode\u003ewasm32-linux\u003c/code\u003e support by \u003ca href=\"https://github.com/arjunr2\"\u003e\u003ccode\u003e@​arjunr2\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1707\"\u003echronotope/chrono#1707\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix OpenHarmony's \u003ccode\u003etzdata\u003c/code\u003e parsing by \u003ca href=\"https://github.com/ldm0\"\u003e\u003ccode\u003e@​ldm0\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1679\"\u003echronotope/chrono#1679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eConvert NaiveDate to/from days since unix epoch by \u003ca href=\"https://github.com/findepi\"\u003e\u003ccode\u003e@​findepi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1715\"\u003echronotope/chrono#1715\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e?Sized\u003c/code\u003e bound to related methods of \u003ccode\u003eDelayedFormat::write_to\u003c/code\u003e by \u003ca href=\"https://github.com/Huliiiiii\"\u003e\u003ccode\u003e@​Huliiiiii\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1721\"\u003echronotope/chrono#1721\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003efrom_timestamp_secs\u003c/code\u003e method to \u003ccode\u003eDateTime\u003c/code\u003e by \u003ca href=\"https://github.com/jasonaowen\"\u003e\u003ccode\u003e@​jasonaowen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1719\"\u003echronotope/chrono#1719\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMigrate to core::error::Error by \u003ca href=\"https://github.com/benbrittain\"\u003e\u003ccode\u003e@​benbrittain\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1704\"\u003echronotope/chrono#1704\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to windows-bindgen 0.63 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1730\"\u003echronotope/chrono#1730\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estrftime: simplify error handling by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1731\"\u003echronotope/chrono#1731\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.4.41\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003esubsec_micros\u003c/code\u003e and \u003ccode\u003esubsec_millis\u003c/code\u003e methods to \u003ccode\u003eTimeDelta\u003c/code\u003e by \u003ca href=\"https://github.com/ggoetz\"\u003e\u003ccode\u003e@​ggoetz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1668\"\u003echronotope/chrono#1668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eNaiveDateTime::UNIX_EPOCH\u003c/code\u003e by \u003ca href=\"https://github.com/robertbastian\"\u003e\u003ccode\u003e@​robertbastian\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1670\"\u003echronotope/chrono#1670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eas_seconds_f32\u003c/code\u003e and \u003ccode\u003eas_seconds_f64\u003c/code\u003e for \u003ccode\u003eTimeDelta\u003c/code\u003e by \u003ca href=\"https://github.com/ggoetz\"\u003e\u003ccode\u003e@​ggoetz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1671\"\u003echronotope/chrono#1671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: fix some comments by \u003ca href=\"https://github.com/jimmycathy\"\u003e\u003ccode\u003e@​jimmycathy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1677\"\u003echronotope/chrono#1677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003enum_days_in_month\u003c/code\u003e method to \u003ccode\u003eDatelike\u003c/code\u003e trait by \u003ca href=\"https://github.com/aslilac\"\u003e\u003ccode\u003e@​aslilac\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1673\"\u003echronotope/chrono#1673\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd \u003ccode\u003eWeekdaySet\u003c/code\u003e, a collection of \u003ccode\u003eWeekday\u003c/code\u003e that is \u003ccode\u003eCopy\u003c/code\u003e by \u003ca href=\"https://github.com/Kinrany\"\u003e\u003ccode\u003e@​Kinrany\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1676\"\u003echronotope/chrono#1676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWeekdaySet tweaks by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1680\"\u003echronotope/chrono#1680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to windows-bindgen 0.61 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1682\"\u003echronotope/chrono#1682\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/c14b4599d07ef36ffa1f8a531fb0bc7eb3b42464\"\u003e\u003ccode\u003ec14b459\u003c/code\u003e\u003c/a\u003e Bump version to 0.4.44\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/ea832c5090369eefa2cb6a47d643e2f7ade7ffa7\"\u003e\u003ccode\u003eea832c5\u003c/code\u003e\u003c/a\u003e Add track_caller to non-deprecated functions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/cfae889a3a23507acf49b605794abba17effd2d7\"\u003e\u003ccode\u003ecfae889\u003c/code\u003e\u003c/a\u003e Fix panic message in to_rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/f8900b5a44228a7f6282c65e8c407d3ecb6dcb7b\"\u003e\u003ccode\u003ef8900b5\u003c/code\u003e\u003c/a\u003e docs: match MSRV with \u003ccode\u003eCargo.toml\u003c/code\u003e contents\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/45caaa970ce443b11106a710ee24bd2480e5ff99\"\u003e\u003ccode\u003e45caaa9\u003c/code\u003e\u003c/a\u003e Update copyright year to 2026 in LICENSE.txt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/1c0b8f011ab2f2e53c195df1866a1fb4c7fd193a\"\u003e\u003ccode\u003e1c0b8f0\u003c/code\u003e\u003c/a\u003e Bump version to 0.4.43\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/a03e43b1c3ef3aea77f12200d84144f275560aa9\"\u003e\u003ccode\u003ea03e43b\u003c/code\u003e\u003c/a\u003e Upgrade windows-bindgen to 0.66\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/4fedaba2a214aa560e1c6a70d0a09e6955ed3ff4\"\u003e\u003ccode\u003e4fedaba\u003c/code\u003e\u003c/a\u003e Ignore bincode advisory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/f4b7bbda679199e7509da813849a10242b2f7aa1\"\u003e\u003ccode\u003ef4b7bbd\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 5 to 6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/db129730e8f21ca66b3808c133b7147cbc62fc41\"\u003e\u003ccode\u003edb12973\u003c/code\u003e\u003c/a\u003e Added doctest for the NaiveDate years_since function (\u003ca href=\"https://redirect.github.com/chronotope/chrono/issues/1755\"\u003e#1755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/chronotope/chrono/compare/v0.4.40...v0.4.44\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `duration-str` from 0.17.0 to 0.21.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/baoyachi/duration-str/releases\"\u003eduration-str's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.21.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd vist_unit for struct flatten to work with null property for option deserialization by \u003ca href=\"https://github.com/sbuzzard\"\u003e\u003ccode\u003e@​sbuzzard\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/baoyachi/duration-str/pull/92\"\u003ebaoyachi/duration-str#92\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sbuzzard\"\u003e\u003ccode\u003e@​sbuzzard\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/baoyachi/duration-str/pull/92\"\u003ebaoyachi/duration-str#92\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/baoyachi/duration-str/compare/v0.20.0...v0.21.0\"\u003ehttps://github.com/baoyachi/duration-str/compare/v0.20.0...v0.21.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.20.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump time to 0.3.47 by \u003ca href=\"https://github.com/jeroenvervaeke\"\u003e\u003ccode\u003e@​jeroenvervaeke\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/baoyachi/duration-str/pull/91\"\u003ebaoyachi/duration-str#91\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jeroenvervaeke\"\u003e\u003ccode\u003e@​jeroenvervaeke\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/baoyachi/duration-str/pull/91\"\u003ebaoyachi/duration-str#91\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/baoyachi/duration-str/compare/v0.19.0...v0.20.0\"\u003ehttps://github.com/baoyachi/duration-str/compare/v0.19.0...v0.20.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.19.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(serde): treat empty string as None for Option\u003c!-- raw HTML omitted --\u003e by \u003ca href=\"https://github.com/baoyachi\"\u003e\u003ccode\u003e@​baoyachi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/baoyachi/duration-str/pull/88\"\u003ebaoyachi/duration-str#88\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: merge deserialize_duration and deserialize_option_duration into… by \u003ca href=\"https://github.com/baoyachi\"\u003e\u003ccode\u003e@​baoyachi\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/baoyachi/duration-str/pull/89\"\u003ebaoyachi/duration-str#89\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/...\n\n_Description has been truncated_","html_url":"https://github.com/istio/ztunnel/pull/1926","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/istio%2Fztunnel/issues/1926","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1926/packages"}},{"old_version":"1.11.0","new_version":"1.11.1","update_type":"patch","path":null,"pr_created_at":"2026-05-23T04:28:03.000Z","version_change":"1.11.0 → 1.11.1","issue":{"uuid":"4506821841","node_id":"PR_kwDORVuUE87ejdxz","number":21,"state":"closed","title":"Bump the crates group across 1 directory with 53 updates","user":"dependabot[bot]","labels":["dependencies","rust"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-30T04:26:36.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-23T04:28:03.000Z","updated_at":"2026-05-30T04:26:38.000Z","time_to_close":604713,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"crates","update_count":53,"packages":[{"name":"anyhow","old_version":"1.0.100","new_version":"1.0.102","repository_url":"https://github.com/dtolnay/anyhow"},{"name":"clap","old_version":"4.5.56","new_version":"4.5.60","repository_url":"https://github.com/clap-rs/clap"},{"name":"const_format","old_version":"0.2.35","new_version":"0.2.36","repository_url":"https://github.com/rodrimati1992/const_format_crates"},{"name":"which","old_version":"8.0.0","new_version":"8.0.2","repository_url":"https://github.com/harryfei/which-rs"},{"name":"sha1","old_version":"0.10.6","new_version":"0.11.0","repository_url":"https://github.com/RustCrypto/hashes"},{"name":"tempfile","old_version":"3.24.0","new_version":"3.25.0","repository_url":"https://github.com/Stebalien/tempfile"},{"name":"chrono","old_version":"0.4.43","new_version":"0.4.44","repository_url":"https://github.com/chronotope/chrono"},{"name":"regex-lite","old_version":"0.1.8","new_version":"0.1.9","repository_url":"https://github.com/rust-lang/regex"},{"name":"rustix","old_version":"1.1.3","new_version":"1.1.4","repository_url":"https://github.com/bytecodealliance/rustix"},{"name":"serde_json","old_version":"1.0.149","new_version":"1.0.150","repository_url":"https://github.com/serde-rs/json"},{"name":"env_logger","old_version":"0.11.8","new_version":"0.11.10","repository_url":"https://github.com/rust-cli/env_logger"},{"name":"anstyle","old_version":"1.0.13","new_version":"1.0.14","repository_url":"https://github.com/rust-cli/anstyle"},{"name":"autocfg","old_version":"1.5.0","new_version":"1.5.1","repository_url":"https://github.com/cuviper/autocfg"},{"name":"bumpalo","old_version":"3.19.1","new_version":"3.20.3","repository_url":"https://github.com/fitzgen/bumpalo"},{"name":"bytes","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"cc","old_version":"1.2.55","new_version":"1.2.62","repository_url":"https://github.com/rust-lang/cc-rs"},{"name":"colorchoice","old_version":"1.0.4","new_version":"1.0.5","repository_url":"https://github.com/rust-cli/anstyle"},{"name":"crc-catalog","old_version":"2.4.0","new_version":"2.5.0","repository_url":"https://github.com/akhilles/crc-catalog"},{"name":"dary_heap","old_version":"0.3.8","new_version":"0.3.9","repository_url":"https://github.com/hanmertens/dary_heap"},{"name":"deflate64","old_version":"0.1.10","new_version":"0.1.12","repository_url":"https://github.com/anatawa12/deflate64-rs"},{"name":"deranged","old_version":"0.5.5","new_version":"0.5.8","repository_url":"https://github.com/jhpratt/deranged"},{"name":"either","old_version":"1.15.0","new_version":"1.16.0","repository_url":"https://github.com/rayon-rs/either"},{"name":"fastrand","old_version":"2.3.0","new_version":"2.4.1","repository_url":"https://github.com/smol-rs/fastrand"},{"name":"flate2","old_version":"1.1.8","new_version":"1.1.9","repository_url":"https://github.com/rust-lang/flate2-rs"},{"name":"include-flate","old_version":"0.3.1","new_version":"0.3.3","repository_url":"https://github.com/SOF3/include-flate"},{"name":"indexmap","old_version":"2.13.0","new_version":"2.14.0","repository_url":"https://github.com/indexmap-rs/indexmap"},{"name":"itoa","old_version":"1.0.17","new_version":"1.0.18","repository_url":"https://github.com/dtolnay/itoa"},{"name":"memchr","old_version":"2.7.6","new_version":"2.8.0","repository_url":"https://github.com/BurntSushi/memchr"},{"name":"num-conv","old_version":"0.2.0","new_version":"0.2.2","repository_url":"https://github.com/jhpratt/num-conv"},{"name":"once_cell","old_version":"1.21.3","new_version":"1.21.4","repository_url":"https://github.com/matklad/once_cell"},{"name":"pin-project-lite","old_version":"0.2.16","new_version":"0.2.17","repository_url":"https://github.com/taiki-e/pin-project-lite"},{"name":"pkg-config","old_version":"0.3.32","new_version":"0.3.33","repository_url":"https://github.com/rust-lang/pkg-config-rs"},{"name":"quote","old_version":"1.0.44","new_version":"1.0.45","repository_url":"https://github.com/dtolnay/quote"},{"name":"rayon","old_version":"1.11.0","new_version":"1.12.0","repository_url":"https://github.com/rayon-rs/rayon"},{"name":"rustc-hash","old_version":"2.1.1","new_version":"2.1.2","repository_url":"https://github.com/rust-lang/rustc-hash"},{"name":"simd-adler32","old_version":"0.3.8","new_version":"0.3.9","repository_url":"https://github.com/mcountryman/simd-adler32"},{"name":"time","old_version":"0.3.46","new_version":"0.3.47","repository_url":"https://github.com/time-rs/time"},{"name":"tokio","old_version":"1.49.0","new_version":"1.52.3","repository_url":"https://github.com/tokio-rs/tokio"},{"name":"unicode-ident","old_version":"1.0.22","new_version":"1.0.24","repository_url":"https://github.com/dtolnay/unicode-ident"},{"name":"wasip2","old_version":"1.0.2+wasi-0.2.9","new_version":"1.0.3+wasi-0.2.9","repository_url":"https://github.com/bytecodealliance/wasi-rs"},{"name":"zmij","old_version":"1.0.18","new_version":"1.0.21","repository_url":"https://github.com/dtolnay/zmij"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the crates group with 41 updates in the /userspace/ksud directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [anyhow](https://github.com/dtolnay/anyhow) | `1.0.100` | `1.0.102` |\n| [clap](https://github.com/clap-rs/clap) | `4.5.56` | `4.5.60` |\n| [const_format](https://github.com/rodrimati1992/const_format_crates) | `0.2.35` | `0.2.36` |\n| [which](https://github.com/harryfei/which-rs) | `8.0.0` | `8.0.2` |\n| [sha1](https://github.com/RustCrypto/hashes) | `0.10.6` | `0.11.0` |\n| [tempfile](https://github.com/Stebalien/tempfile) | `3.24.0` | `3.25.0` |\n| [chrono](https://github.com/chronotope/chrono) | `0.4.43` | `0.4.44` |\n| [regex-lite](https://github.com/rust-lang/regex) | `0.1.8` | `0.1.9` |\n| [rustix](https://github.com/bytecodealliance/rustix) | `1.1.3` | `1.1.4` |\n| [serde_json](https://github.com/serde-rs/json) | `1.0.149` | `1.0.150` |\n| [env_logger](https://github.com/rust-cli/env_logger) | `0.11.8` | `0.11.10` |\n| [anstyle](https://github.com/rust-cli/anstyle) | `1.0.13` | `1.0.14` |\n| [autocfg](https://github.com/cuviper/autocfg) | `1.5.0` | `1.5.1` |\n| [bumpalo](https://github.com/fitzgen/bumpalo) | `3.19.1` | `3.20.3` |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.11.0` | `1.11.1` |\n| [cc](https://github.com/rust-lang/cc-rs) | `1.2.55` | `1.2.62` |\n| [colorchoice](https://github.com/rust-cli/anstyle) | `1.0.4` | `1.0.5` |\n| [crc-catalog](https://github.com/akhilles/crc-catalog) | `2.4.0` | `2.5.0` |\n| [dary_heap](https://github.com/hanmertens/dary_heap) | `0.3.8` | `0.3.9` |\n| [deflate64](https://github.com/anatawa12/deflate64-rs) | `0.1.10` | `0.1.12` |\n| [deranged](https://github.com/jhpratt/deranged) | `0.5.5` | `0.5.8` |\n| [either](https://github.com/rayon-rs/either) | `1.15.0` | `1.16.0` |\n| [fastrand](https://github.com/smol-rs/fastrand) | `2.3.0` | `2.4.1` |\n| [flate2](https://github.com/rust-lang/flate2-rs) | `1.1.8` | `1.1.9` |\n| [include-flate](https://github.com/SOF3/include-flate) | `0.3.1` | `0.3.3` |\n| [indexmap](https://github.com/indexmap-rs/indexmap) | `2.13.0` | `2.14.0` |\n| [itoa](https://github.com/dtolnay/itoa) | `1.0.17` | `1.0.18` |\n| [memchr](https://github.com/BurntSushi/memchr) | `2.7.6` | `2.8.0` |\n| [num-conv](https://github.com/jhpratt/num-conv) | `0.2.0` | `0.2.2` |\n| [once_cell](https://github.com/matklad/once_cell) | `1.21.3` | `1.21.4` |\n| [pin-project-lite](https://github.com/taiki-e/pin-project-lite) | `0.2.16` | `0.2.17` |\n| [pkg-config](https://github.com/rust-lang/pkg-config-rs) | `0.3.32` | `0.3.33` |\n| [quote](https://github.com/dtolnay/quote) | `1.0.44` | `1.0.45` |\n| [rayon](https://github.com/rayon-rs/rayon) | `1.11.0` | `1.12.0` |\n| [rustc-hash](https://github.com/rust-lang/rustc-hash) | `2.1.1` | `2.1.2` |\n| [simd-adler32](https://github.com/mcountryman/simd-adler32) | `0.3.8` | `0.3.9` |\n| [time](https://github.com/time-rs/time) | `0.3.46` | `0.3.47` |\n| [tokio](https://github.com/tokio-rs/tokio) | `1.49.0` | `1.52.3` |\n| [unicode-ident](https://github.com/dtolnay/unicode-ident) | `1.0.22` | `1.0.24` |\n| [wasip2](https://github.com/bytecodealliance/wasi-rs) | `1.0.2+wasi-0.2.9` | `1.0.3+wasi-0.2.9` |\n| [zmij](https://github.com/dtolnay/zmij) | `1.0.18` | `1.0.21` |\n\n\nUpdates `anyhow` from 1.0.100 to 1.0.102\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dtolnay/anyhow/releases\"\u003eanyhow's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.0.102\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove backtrace dependency (\u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/438\"\u003e#438\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/439\"\u003e#439\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/440\"\u003e#440\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/441\"\u003e#441\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.0.101\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd #[inline] to anyhow::Ok helper (\u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/437\"\u003e#437\u003c/a\u003e, thanks \u003ca href=\"https://github.com/Ibitier\"\u003e\u003ccode\u003e@​Ibitier\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/5c657b32522023a9f7ef883fb08582fd8e656b1a\"\u003e\u003ccode\u003e5c657b3\u003c/code\u003e\u003c/a\u003e Release 1.0.102\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/e737fb63918e8c71a3d0a968004a9c7ed7942283\"\u003e\u003ccode\u003ee737fb6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/442\"\u003e#442\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/7fe62b51c62804f8b84443affeacfb3810ed2516\"\u003e\u003ccode\u003e7fe62b5\u003c/code\u003e\u003c/a\u003e Further simply backtrace conditional compilation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/c8cb5cae23e57a2dbb87bf05cba04f1df1f1660b\"\u003e\u003ccode\u003ec8cb5ca\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/441\"\u003e#441\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/de27df7e0f510d543c18e50a0736566b66e62baf\"\u003e\u003ccode\u003ede27df7\u003c/code\u003e\u003c/a\u003e Delete CI use of --features=backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/9b67e5dd608658d805640cf1b6f6c9d091686ec1\"\u003e\u003ccode\u003e9b67e5d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/440\"\u003e#440\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/efdb11a259ca58a2e505ef50486cf2d6b5ddc42a\"\u003e\u003ccode\u003eefdb11a\u003c/code\u003e\u003c/a\u003e Simplify \u003ccode\u003estd_backtrace\u003c/code\u003e conditional code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/b8a9a707838969721a86b28e3c45ce27e279e981\"\u003e\u003ccode\u003eb8a9a70\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/439\"\u003e#439\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/a42fc2c21846ba459df43a3f8b4996a2074909cb\"\u003e\u003ccode\u003ea42fc2c\u003c/code\u003e\u003c/a\u003e Remove \u003ccode\u003efeature = \u0026quot;backtrace\u0026quot;\u003c/code\u003e conditional code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/2a2a3ceb4cbc409fd99613ab5744b21e825e7908\"\u003e\u003ccode\u003e2a2a3ce\u003c/code\u003e\u003c/a\u003e Re-word backtrace feature comment\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dtolnay/anyhow/compare/1.0.100...1.0.102\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `clap` from 4.5.56 to 4.5.60\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/clap-rs/clap/releases\"\u003eclap's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.5.60\u003c/h2\u003e\n\u003ch2\u003e[4.5.60] - 2026-02-19\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(help)\u003c/em\u003e Quote empty default values, possible values\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.59\u003c/h2\u003e\n\u003ch2\u003e[4.5.59] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eCommand::ignore_errors\u003c/code\u003e no longer masks help/version on subcommands\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.58\u003c/h2\u003e\n\u003ch2\u003e[4.5.58] - 2026-02-11\u003c/h2\u003e\n\u003ch2\u003ev4.5.57\u003c/h2\u003e\n\u003ch2\u003e[4.5.57] - 2026-02-03\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegression from 4.5.55 where having an argument with \u003ccode\u003e.value_terminator(\u0026quot;--\u0026quot;)\u003c/code\u003e caused problems with an argument with \u003ccode\u003e.last(true)\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/clap-rs/clap/blob/master/CHANGELOG.md\"\u003eclap's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.5.60] - 2026-02-19\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(help)\u003c/em\u003e Quote empty default values, possible values\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.59] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eCommand::ignore_errors\u003c/code\u003e no longer masks help/version on subcommands\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.58] - 2026-02-11\u003c/h2\u003e\n\u003ch2\u003e[4.5.57] - 2026-02-03\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegression from 4.5.55 where having an argument with \u003ccode\u003e.value_terminator(\u0026quot;--\u0026quot;)\u003c/code\u003e caused problems with an argument with \u003ccode\u003e.last(true)\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/33d24d844b11c0e926ae132e1af338ff070bdf4a\"\u003e\u003ccode\u003e33d24d8\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/9332409f4a6c1d5c22064e839ec8e9bc040f3be7\"\u003e\u003ccode\u003e9332409\u003c/code\u003e\u003c/a\u003e docs: Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/b7adce5a17089596eecb2af6985e6503f2ffcd38\"\u003e\u003ccode\u003eb7adce5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6166\"\u003e#6166\u003c/a\u003e from fabalchemy/fix-dynamic-powershell-completion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/009bba44ec3d182028ec3a72f5b6f3e507827768\"\u003e\u003ccode\u003e009bba4\u003c/code\u003e\u003c/a\u003e fix(clap_complete): Improve powershell registration\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/d89d57dfb4bdd18930a40c6d7f4fadb23ee9c5b3\"\u003e\u003ccode\u003ed89d57d\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/f18b67ec3d4ce6ac1acf115adaab2f16ab2ed3c7\"\u003e\u003ccode\u003ef18b67e\u003c/code\u003e\u003c/a\u003e docs: Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/9d218eb418526143c9110f734f78a608b8cf6440\"\u003e\u003ccode\u003e9d218eb\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6165\"\u003e#6165\u003c/a\u003e from epage/shirt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/126440ca846613671e1dac98198b2ceb17dab2b0\"\u003e\u003ccode\u003e126440c\u003c/code\u003e\u003c/a\u003e fix(help): Correctly calculate padding for short-only args\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/9e3c05ef3800a3e638b8224a7881a81517a4f4db\"\u003e\u003ccode\u003e9e3c05e\u003c/code\u003e\u003c/a\u003e test(help): Show panic with short, valueless arg\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/c9898d0fece98d8520d3dd954cf457b685b3308f\"\u003e\u003ccode\u003ec9898d0\u003c/code\u003e\u003c/a\u003e test(help): Verify short with value\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/clap-rs/clap/compare/clap_complete-v4.5.56...clap_complete-v4.5.60\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `const_format` from 0.2.35 to 0.2.36\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rodrimati1992/const_format_crates/blob/master/Changelog.md\"\u003econst_format's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e0.2.36\u003c/h3\u003e\n\u003cp\u003eBreaking change: bumped Minimum Supported Rust Version to Rust 1.71. This change is motivated by \u003ccode\u003equote\u003c/code\u003e increasing its MSRV to 1.71.\u003c/p\u003e\n\u003cp\u003eNow the \u003ccode\u003e\u0026quot;rust_1_64\u0026quot;\u003c/code\u003e feature is effectively always enabled, so these items are always enabled:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003econst_format::str_split\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eDeprecated these items because their replacements now take constant time to run:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003econst_format::fmt::StrWriter::as_bytes_alt\u003c/code\u003e: superceeded by \u003ccode\u003eas_bytes\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003econst_format::fmt::StrWriter::as_str_alt\u003c/code\u003e: superceeded by \u003ccode\u003eas_str\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003econst_format::fmt::StrWriterMut::as_bytes_alt\u003c/code\u003e: superceeded by \u003ccode\u003eas_bytes\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003econst_format::fmt::StrWriterMut::as_str_alt\u003c/code\u003e: superceeded by \u003ccode\u003eas_str\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003econst_format::utils::slice_up_to_len_alt\u003c/code\u003e: superceeded by \u003ccode\u003eslice_up_to_len\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eChanged these methods from being conditionally const (by requiring the \u003ccode\u003e\u0026quot;rust_1_64\u0026quot;\u003c/code\u003e feature to be const) to being unconditionally const:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003econst_format::fmt::StrWriter::as_bytes\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003econst_format::fmt::StrWriter::as_str\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003econst_format::fmt::StrWriterMut::as_bytes\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003econst_format::fmt::StrWriterMut::as_str\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eChanged this method to be \u003ccode\u003econst\u003c/code\u003e:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003econst_format::AsciiStr::as_str\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFixed nightly 2026-04-09 compatibility when \u003ccode\u003ecargo update -Z minimal-versions\u003c/code\u003e is used by bumping \u003ccode\u003ekonst\u003c/code\u003e internal dependency to \u003ccode\u003e\u0026quot;0.2.20\u0026quot;\u003c/code\u003e version\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rodrimati1992/const_format_crates/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `which` from 8.0.0 to 8.0.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/harryfei/which-rs/releases\"\u003ewhich's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.0.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove \u003ccode\u003eenv_home\u003c/code\u003e dependency by \u003ca href=\"https://github.com/madsmtm\"\u003e\u003ccode\u003e@​madsmtm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/harryfei/which-rs/pull/118\"\u003eharryfei/which-rs#118\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNew windows impl by \u003ca href=\"https://github.com/Xaeroxe\"\u003e\u003ccode\u003e@​Xaeroxe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/harryfei/which-rs/pull/121\"\u003eharryfei/which-rs#121\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwap dependency on rustix for dependency on libc by \u003ca href=\"https://github.com/Xaeroxe\"\u003e\u003ccode\u003e@​Xaeroxe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/harryfei/which-rs/pull/122\"\u003eharryfei/which-rs#122\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/madsmtm\"\u003e\u003ccode\u003e@​madsmtm\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/harryfei/which-rs/pull/118\"\u003eharryfei/which-rs#118\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/harryfei/which-rs/compare/8.0.1...8.0.2\"\u003ehttps://github.com/harryfei/which-rs/compare/8.0.1...8.0.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e8.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate Readme by \u003ca href=\"https://github.com/atouchet\"\u003e\u003ccode\u003e@​atouchet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/harryfei/which-rs/pull/115\"\u003eharryfei/which-rs#115\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEmpty path fix for Windows machines by \u003ca href=\"https://github.com/Xaeroxe\"\u003e\u003ccode\u003e@​Xaeroxe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/harryfei/which-rs/pull/117\"\u003eharryfei/which-rs#117\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/atouchet\"\u003e\u003ccode\u003e@​atouchet\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/harryfei/which-rs/pull/115\"\u003eharryfei/which-rs#115\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/harryfei/which-rs/compare/8.0.0...8.0.1\"\u003ehttps://github.com/harryfei/which-rs/compare/8.0.0...8.0.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/harryfei/which-rs/blob/master/CHANGELOG.md\"\u003ewhich's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDependency on \u003ccode\u003ehome_env\u003c/code\u003e removed, the implementation found in rust 1.85.0 for a home directory has been fixed.\nThanks, [\u003ca href=\"https://github.com/madsmtm\"\u003e\u003ccode\u003e@​madsmtm\u003c/code\u003e\u003c/a\u003e],(\u003ca href=\"https://github.com/madsmtm\"\u003ehttps://github.com/madsmtm\u003c/a\u003e) for this contribution to which!\u003c/li\u003e\n\u003cli\u003eDependency on \u003ccode\u003ewinsafe\u003c/code\u003e removed, code for Windows API is now handwritten.\u003c/li\u003e\n\u003cli\u003eDependency on \u003ccode\u003erustix\u003c/code\u003e removed, we now depend on \u003ccode\u003elibc\u003c/code\u003e directly to reduce compile times.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix Windows bug reported in \u003ca href=\"https://redirect.github.com/harryfei/which-rs/issues/108#issuecomment-3998654328\"\u003eharryfei/which-rs#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harryfei/which-rs/commit/5bb3e82a82a6ef8f56a3a455125680fd6579c7ca\"\u003e\u003ccode\u003e5bb3e82\u003c/code\u003e\u003c/a\u003e update README MSRV\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harryfei/which-rs/commit/aacc10ece3376c86d472cd2ea6e9aaa1d013ab75\"\u003e\u003ccode\u003eaacc10e\u003c/code\u003e\u003c/a\u003e add changelog entry\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harryfei/which-rs/commit/7b0c544ec05f491b923fa40db4c1729d19303932\"\u003e\u003ccode\u003e7b0c544\u003c/code\u003e\u003c/a\u003e Swap dependency on rustix for dependency on libc (\u003ca href=\"https://redirect.github.com/harryfei/which-rs/issues/122\"\u003e#122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harryfei/which-rs/commit/189e99a7db5cd5aa3dfe2d6c90199bf0e97ae1b7\"\u003e\u003ccode\u003e189e99a\u003c/code\u003e\u003c/a\u003e New windows impl (\u003ca href=\"https://redirect.github.com/harryfei/which-rs/issues/121\"\u003e#121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harryfei/which-rs/commit/c48f04e974f0061963c29f5e0293eae2cd8e96ab\"\u003e\u003ccode\u003ec48f04e\u003c/code\u003e\u003c/a\u003e clippy fixes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harryfei/which-rs/commit/1fa32b79b83a750b5a23ee4fa0ced6b0c8522048\"\u003e\u003ccode\u003e1fa32b7\u003c/code\u003e\u003c/a\u003e bump msrv, bump version, add to changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harryfei/which-rs/commit/b0d6e741229c74dd7eececd0d1a72f00bfd0bb22\"\u003e\u003ccode\u003eb0d6e74\u003c/code\u003e\u003c/a\u003e Remove env_home dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harryfei/which-rs/commit/26972207b98de1bfd6c0e16690f5c9186388b54c\"\u003e\u003ccode\u003e2697220\u003c/code\u003e\u003c/a\u003e chore: add release steps documentation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harryfei/which-rs/commit/873554e9c99c655fcec04c7196f759a60103eb1e\"\u003e\u003ccode\u003e873554e\u003c/code\u003e\u003c/a\u003e add entry to CHANGELOG.md for 8.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harryfei/which-rs/commit/d684aba22e6ae2b75154b2f6d6771a743c1953de\"\u003e\u003ccode\u003ed684aba\u003c/code\u003e\u003c/a\u003e bump version to 8.0.1\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/harryfei/which-rs/compare/8.0.0...8.0.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `sha1` from 0.10.6 to 0.11.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/hashes/commit/2f00175af936de46b3ddefe65c4de93cb4e876e4\"\u003e\u003ccode\u003e2f00175\u003c/code\u003e\u003c/a\u003e Release sha1 v0.11.0 (\u003ca href=\"https://redirect.github.com/RustCrypto/hashes/issues/810\"\u003e#810\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/hashes/commit/07d370c4a0d7cfab1f2a2e3d21bbb44e5669ee32\"\u003e\u003ccode\u003e07d370c\u003c/code\u003e\u003c/a\u003e sha1: refactor backends selection (\u003ca href=\"https://redirect.github.com/RustCrypto/hashes/issues/808\"\u003e#808\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/hashes/commit/7c7cb76e8a4978fb319a43122393cae0afc4b73d\"\u003e\u003ccode\u003e7c7cb76\u003c/code\u003e\u003c/a\u003e Fix md5 project link in README (\u003ca href=\"https://redirect.github.com/RustCrypto/hashes/issues/809\"\u003e#809\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/hashes/commit/ffe093984c004769747e998f77da8ff7c0e7a765\"\u003e\u003ccode\u003effe0939\u003c/code\u003e\u003c/a\u003e Release sha2 0.11.0 (\u003ca href=\"https://redirect.github.com/RustCrypto/hashes/issues/806\"\u003e#806\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/hashes/commit/8991b65fe400c31c4cc189510f86ae642c470cd9\"\u003e\u003ccode\u003e8991b65\u003c/code\u003e\u003c/a\u003e Use the standard order of the \u003ccode\u003e[package]\u003c/code\u003e section fields (\u003ca href=\"https://redirect.github.com/RustCrypto/hashes/issues/807\"\u003e#807\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/hashes/commit/3d2bc57db40fd6aeb25d6c6da98d67e2784c2985\"\u003e\u003ccode\u003e3d2bc57\u003c/code\u003e\u003c/a\u003e sha2: refactor backends (\u003ca href=\"https://redirect.github.com/RustCrypto/hashes/issues/802\"\u003e#802\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/hashes/commit/faa55fb83697c8f3113636d88070e5f5edc8c335\"\u003e\u003ccode\u003efaa55fb\u003c/code\u003e\u003c/a\u003e sha3: bump \u003ccode\u003ekeccak\u003c/code\u003e to v0.2 (\u003ca href=\"https://redirect.github.com/RustCrypto/hashes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/hashes/commit/d3e6489e56f8486d4a93ceb7a8abf4924af1de7b\"\u003e\u003ccode\u003ed3e6489\u003c/code\u003e\u003c/a\u003e sha3 v0.11.0-rc.9 (\u003ca href=\"https://redirect.github.com/RustCrypto/hashes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/hashes/commit/bbf6f51ff97f81ab15e6e5f6cf878bfbcb1f47c8\"\u003e\u003ccode\u003ebbf6f51\u003c/code\u003e\u003c/a\u003e sha2: tweak backend docs (\u003ca href=\"https://redirect.github.com/RustCrypto/hashes/issues/800\"\u003e#800\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/hashes/commit/155dbbf2959dbec0ec75948a82590ddaede2d3bc\"\u003e\u003ccode\u003e155dbbf\u003c/code\u003e\u003c/a\u003e sha3: add default value for the \u003ccode\u003eDS\u003c/code\u003e generic parameter on \u003ccode\u003eTurboShake128/256\u003c/code\u003e...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/RustCrypto/hashes/compare/sha1-v0.10.6...sha1-v0.11.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tempfile` from 3.24.0 to 3.25.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Stebalien/tempfile/blob/master/CHANGELOG.md\"\u003etempfile's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.25.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAllow \u003ccode\u003egetrandom\u003c/code\u003e 0.4.x while retaining support for \u003ccode\u003egetrandom\u003c/code\u003e 0.3.x.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/Stebalien/tempfile/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `chrono` from 0.4.43 to 0.4.44\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/chronotope/chrono/releases\"\u003echrono's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.44\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: match MSRV with \u003ccode\u003eCargo.toml\u003c/code\u003e contents by \u003ca href=\"https://github.com/coryan\"\u003e\u003ccode\u003e@​coryan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1772\"\u003echronotope/chrono#1772\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd track_caller to non-deprecated functions by \u003ca href=\"https://github.com/svix-jplatte\"\u003e\u003ccode\u003e@​svix-jplatte\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1774\"\u003echronotope/chrono#1774\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/c14b4599d07ef36ffa1f8a531fb0bc7eb3b42464\"\u003e\u003ccode\u003ec14b459\u003c/code\u003e\u003c/a\u003e Bump version to 0.4.44\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/ea832c5090369eefa2cb6a47d643e2f7ade7ffa7\"\u003e\u003ccode\u003eea832c5\u003c/code\u003e\u003c/a\u003e Add track_caller to non-deprecated functions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/cfae889a3a23507acf49b605794abba17effd2d7\"\u003e\u003ccode\u003ecfae889\u003c/code\u003e\u003c/a\u003e Fix panic message in to_rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/f8900b5a44228a7f6282c65e8c407d3ecb6dcb7b\"\u003e\u003ccode\u003ef8900b5\u003c/code\u003e\u003c/a\u003e docs: match MSRV with \u003ccode\u003eCargo.toml\u003c/code\u003e contents\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/chronotope/chrono/compare/v0.4.43...v0.4.44\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `regex-lite` from 0.1.8 to 0.1.9\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/regex/blob/master/CHANGELOG.md\"\u003eregex-lite's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.12.3 (2025-02-03)\u003c/h1\u003e\n\u003cp\u003eThis release excludes some unnecessary things from the archive published to\ncrates.io. Specifically, fuzzing data and various shell scripts are now\nexcluded. If you run into problems, please file an issue.\u003c/p\u003e\n\u003cp\u003eImprovements:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rust-lang/regex/pull/1319\"\u003e#1319\u003c/a\u003e:\nSwitch from a Cargo \u003ccode\u003eexclude\u003c/code\u003e list to an \u003ccode\u003einclude\u003c/code\u003e list, and exclude some\nunnecessary stuff.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.12.2 (2025-10-13)\u003c/h1\u003e\n\u003cp\u003eThis release fixes a \u003ccode\u003ecargo doc\u003c/code\u003e breakage on nightly when \u003ccode\u003e--cfg docsrs\u003c/code\u003e is\nenabled. This caused documentation to fail to build on docs.rs.\u003c/p\u003e\n\u003cp\u003eBug fixes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e[BUG \u003ca href=\"https://redirect.github.com/rust-lang/regex/issues/1305\"\u003e#1305\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/rust-lang/regex/issues/1305\"\u003erust-lang/regex#1305\u003c/a\u003e):\nSwitches the \u003ccode\u003edoc_auto_cfg\u003c/code\u003e feature to \u003ccode\u003edoc_cfg\u003c/code\u003e on nightly for docs.rs builds.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.12.1 (2025-10-10)\u003c/h1\u003e\n\u003cp\u003eThis release makes a bug fix in the new \u003ccode\u003eregex::Captures::get_match\u003c/code\u003e API\nintroduced in \u003ccode\u003e1.12.0\u003c/code\u003e. There was an oversight with the lifetime parameter\nfor the \u003ccode\u003eMatch\u003c/code\u003e returned. This is technically a breaking change, but given\nthat it was caught almost immediately and I've yanked the \u003ccode\u003e1.12.0\u003c/code\u003e release,\nI think this is fine.\u003c/p\u003e\n\u003ch1\u003e1.12.0 (2025-10-10)\u003c/h1\u003e\n\u003cp\u003eThis release contains a smattering of bug fixes, a fix for excessive memory\nconsumption in some cases and a new \u003ccode\u003eregex::Captures::get_match\u003c/code\u003e API.\u003c/p\u003e\n\u003cp\u003eImprovements:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e[FEATURE \u003ca href=\"https://redirect.github.com/rust-lang/regex/issues/1146\"\u003e#1146\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/rust-lang/regex/issues/1146\"\u003erust-lang/regex#1146\u003c/a\u003e):\nAdd \u003ccode\u003eCapture::get_match\u003c/code\u003e for returning the overall match without \u003ccode\u003eunwrap()\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eBug fixes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e[BUG \u003ca href=\"https://redirect.github.com/rust-lang/regex/issues/1083\"\u003e#1083\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/rust-lang/regex/issues/1083\"\u003erust-lang/regex#1083\u003c/a\u003e):\nFixes a panic in the lazy DFA (can only occur for especially large regexes).\u003c/li\u003e\n\u003cli\u003e[BUG \u003ca href=\"https://redirect.github.com/rust-lang/regex/issues/1116\"\u003e#1116\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/rust-lang/regex/issues/1116\"\u003erust-lang/regex#1116\u003c/a\u003e):\nFixes a memory usage regression for large regexes (introduced in \u003ccode\u003eregex 1.9\u003c/code\u003e).\u003c/li\u003e\n\u003cli\u003e[BUG \u003ca href=\"https://redirect.github.com/rust-lang/regex/issues/1195\"\u003e#1195\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/rust-lang/regex/issues/1195\"\u003erust-lang/regex#1195\u003c/a\u003e):\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/regex/commit/0c07fae444adf0802d84455e689f1143d2dd7790\"\u003e\u003ccode\u003e0c07fae\u003c/code\u003e\u003c/a\u003e regex-lite-0.1.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/regex/commit/6a810068f030c023a12c93ccae49bc5fd907c4f6\"\u003e\u003ccode\u003e6a81006\u003c/code\u003e\u003c/a\u003e cargo: exclude development scripts and fuzzing data\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/regex/commit/4733e28ba4f281f643ce93e4089eccbb9a9d5a5a\"\u003e\u003ccode\u003e4733e28\u003c/code\u003e\u003c/a\u003e automata: fix \u003ccode\u003eonepass::DFA::try_search_slots\u003c/code\u003e panic when too many slots are ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/regex/commit/5ea3eb1e95f0338e283f5f0b4681f0891a1cd836\"\u003e\u003ccode\u003e5ea3eb1\u003c/code\u003e\u003c/a\u003e 1.12.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/regex/commit/ab0b07171b82d1d4fdc8359505d12b2e818514d4\"\u003e\u003ccode\u003eab0b071\u003c/code\u003e\u003c/a\u003e regex-automata-0.4.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/regex/commit/691d51457db276bbdf9ca3de2cafe285c662c59f\"\u003e\u003ccode\u003e691d514\u003c/code\u003e\u003c/a\u003e regex-syntax-0.8.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/regex/commit/1dd90777791dbc6bbf389157d05ac8176c6ad051\"\u003e\u003ccode\u003e1dd9077\u003c/code\u003e\u003c/a\u003e docs: swap \u003ccode\u003edoc_auto_cfg\u003c/code\u003e with \u003ccode\u003edoc_cfg\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/regex/commit/0089034cb37b0bf3785f2e0211f7eca74033f4d1\"\u003e\u003ccode\u003e0089034\u003c/code\u003e\u003c/a\u003e regex-cli-0.2.3\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rust-lang/regex/compare/regex-lite-0.1.8...regex-lite-0.1.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustix` from 1.1.3 to 1.1.4\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/c4caf5caaa7e93828a2e4a4cdba1dd0171e45717\"\u003e\u003ccode\u003ec4caf5c\u003c/code\u003e\u003c/a\u003e chore: Release rustix version 1.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/5953a2c6bc7bc97c308a8e6a0fd4a8bf79997117\"\u003e\u003ccode\u003e5953a2c\u003c/code\u003e\u003c/a\u003e Prune pins in CI that are no longer needed. (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/1588\"\u003e#1588\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/9116c05d2eab3484748a629e72bdff17117c4f5b\"\u003e\u003ccode\u003e9116c05\u003c/code\u003e\u003c/a\u003e Bump dependencies (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/1567\"\u003e#1567\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/5ee0ca360f41b3699b7c543d1153e94c65988610\"\u003e\u003ccode\u003e5ee0ca3\u003c/code\u003e\u003c/a\u003e hurd: Fix l_type and l_whence types (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/1569\"\u003e#1569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/89505893fc3b4b9b9a22625cd3a670f6d6cf2f44\"\u003e\u003ccode\u003e8950589\u003c/code\u003e\u003c/a\u003e Clobber vector registers and do not use preserves_flags in riscv64 syscalls (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/7b0d2ae013976c959627598c057644ae8922708e\"\u003e\u003ccode\u003e7b0d2ae\u003c/code\u003e\u003c/a\u003e Update pins for MSRV compatibility (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/1585\"\u003e#1585\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/99458d830840dafb8a8c5b8b54cf05beabc2e581\"\u003e\u003ccode\u003e99458d8\u003c/code\u003e\u003c/a\u003e feat(redox): \u003ccode\u003erenameat\u003c/code\u003e and \u003ccode\u003erenameat_with\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/1586\"\u003e#1586\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/a9c8dcbbb74df7a7c4ec6cf50629a810bab6500d\"\u003e\u003ccode\u003ea9c8dcb\u003c/code\u003e\u003c/a\u003e Remove reference to yanked crate in README.md (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/1587\"\u003e#1587\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/8bf15a0eb444087e4c3ed04e01ed488cc429af2d\"\u003e\u003ccode\u003e8bf15a0\u003c/code\u003e\u003c/a\u003e Drop custom makedev implementation for Redox (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/1582\"\u003e#1582\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/74b886d40d7b5209a8d448550e4595e8e06158a1\"\u003e\u003ccode\u003e74b886d\u003c/code\u003e\u003c/a\u003e Update pins for MSRV compatibility (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/1584\"\u003e#1584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/bytecodealliance/rustix/compare/v1.1.3...v1.1.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `serde_json` from 1.0.149 to 1.0.150\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/serde-rs/json/releases\"\u003eserde_json's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.0.150\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReject non-string enum object keys (\u003ca href=\"https://redirect.github.com/serde-rs/json/issues/1324\"\u003e#1324\u003c/a\u003e, thanks \u003ca href=\"https://github.com/puneetdixit200\"\u003e\u003ccode\u003e@​puneetdixit200\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/serde-rs/json/commit/a1ae73ac6a6940a4a57c673aebaa13ed4dfe3e8c\"\u003e\u003ccode\u003ea1ae73a\u003c/code\u003e\u003c/a\u003e Release 1.0.150\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/serde-rs/json/commit/1a360b0a6c003912afc3503c834b0edd798bca28\"\u003e\u003ccode\u003e1a360b0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/serde-rs/json/issues/1324\"\u003e#1324\u003c/a\u003e from puneetdixit200/reject-non-string-enum-keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/serde-rs/json/commit/2037b634f9dccbddc11cff189ebeb5854fa0e01c\"\u003e\u003ccode\u003e2037b63\u003c/code\u003e\u003c/a\u003e Reject non-string enum object keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/serde-rs/json/commit/5d30df60e916e9b8fc46c74794007ff271fdfbbf\"\u003e\u003ccode\u003e5d30df6\u003c/code\u003e\u003c/a\u003e Resolve manual_assert_eq pedantic clippy lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/serde-rs/json/commit/dc8003a88e7142529cf4a7429c4778af31dadf50\"\u003e\u003ccode\u003edc8003a\u003c/code\u003e\u003c/a\u003e Raise required compiler for preserve_order feature to 1.85\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/serde-rs/json/commit/a42fa980f8556cda36d896fa3713544b2e5eaa2c\"\u003e\u003ccode\u003ea42fa98\u003c/code\u003e\u003c/a\u003e Unpin CI miri toolchain\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/serde-rs/json/commit/684a60eba18abfc0e0f7ddb0c2cd39f8f60249cf\"\u003e\u003ccode\u003e684a60e\u003c/code\u003e\u003c/a\u003e Pin CI miri to nightly-2026-02-11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/serde-rs/json/commit/7c7da3302b6b1cdab7f11ea49ca1a74422ab4551\"\u003e\u003ccode\u003e7c7da33\u003c/code\u003e\u003c/a\u003e Raise required compiler to Rust 1.71\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/serde-rs/json/commit/acf4850e2969f1caccab2c4727a90ed006ba35bb\"\u003e\u003ccode\u003eacf4850\u003c/code\u003e\u003c/a\u003e Simplify Number::is_f64\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/serde-rs/json/commit/6b8ceab565dcfe4f83dfaacd287d11c8bd8f306c\"\u003e\u003ccode\u003e6b8ceab\u003c/code\u003e\u003c/a\u003e Resolve unnecessary_map_or clippy lint\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/serde-rs/json/compare/v1.0.149...v1.0.150\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `libc` from 0.2.180 to 0.2.186\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/libc/releases\"\u003elibc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.2.186\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eApple: Add \u003ccode\u003eKEVENT_FLAG_*\u003c/code\u003e constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5070\"\u003e#5070\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add \u003ccode\u003ePR_SET_MEMORY_MERGE\u003c/code\u003e and \u003ccode\u003ePR_GET_MEMORY_MERGE\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5060\"\u003e#5060\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCI: Migrate FreeBSD CI from Cirrus CI to GitHub Actions (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5058\"\u003e#5058\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.2.185\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEspIDF: Add \u003ccode\u003eespidf_picolibc\u003c/code\u003e cfg for picolibc \u003ccode\u003eO_*\u003c/code\u003e flag values (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5035\"\u003e#5035\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHexagon: add missing constants and fix types for linux-musl (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5042\"\u003e#5042\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRedox: Add semaphore functions (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5051\"\u003e#5051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eWindows: Add \u003ccode\u003esprintf\u003c/code\u003e, \u003ccode\u003esnprintf\u003c/code\u003e, and the \u003ccode\u003escanf\u003c/code\u003e family (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5024\"\u003e#5024\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eHexagon: Decouple \u003ccode\u003etime64\u003c/code\u003e types from musl symbol redirects (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5040\"\u003e#5040\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHorizon: Change \u003ccode\u003ePOLL\u003c/code\u003e constants from \u003ccode\u003ec_short\u003c/code\u003e to \u003ccode\u003ec_int\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5045\"\u003e#5045\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.2.184\u003c/h2\u003e\n\u003ch3\u003eMSRV\u003c/h3\u003e\n\u003cp\u003eThis release increases the MSRV of \u003ccode\u003elibc\u003c/code\u003e to 1.65. With this update, you can now always use the\n\u003ccode\u003ecore::ffi::c_*\u003c/code\u003e types with \u003ccode\u003elibc\u003c/code\u003e definitions, since \u003ccode\u003elibc\u003c/code\u003e has been changed to reexport from\n\u003ccode\u003ecore\u003c/code\u003e rather than redefining them. (This \u003cem\u003eusually\u003c/em\u003e worked before but had edge cases.)\n(\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4972\"\u003e#4972\u003c/a\u003e)\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBSD: Add \u003ccode\u003eIP_MINTTL\u003c/code\u003e to bsd (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5026\"\u003e#5026\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCygwin: Add \u003ccode\u003eTIOCM_DSR\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5031\"\u003e#5031\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFreeBSD: Added \u003ccode\u003exfile\u003c/code\u003e structe and file descriptor types (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5002\"\u003e#5002\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add CAN netlink bindings (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5011\"\u003e#5011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add \u003ccode\u003estruct ethhdr\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4239\"\u003e#4239\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add \u003ccode\u003estruct ifinfomsg\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5012\"\u003e#5012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Define \u003ccode\u003emax_align_t\u003c/code\u003e for riscv64 (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5029\"\u003e#5029\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNetBSD: Add missing \u003ccode\u003eCLOCK_\u003c/code\u003e constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5020\"\u003e#5020\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNuttX: Add \u003ccode\u003e_SC_HOST_NAME_MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5004\"\u003e#5004\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVxWorks: Add \u003ccode\u003eflock\u003c/code\u003e and \u003ccode\u003eF_*LCK\u003c/code\u003e constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4043\"\u003e#4043\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eWASI: Add all \u003ccode\u003e_SC_*\u003c/code\u003e sysconf constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5023\"\u003e#5023\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cp\u003eThe remaining fixed-width integer aliases, \u003ccode\u003e__uint128_t\u003c/code\u003e, \u003ccode\u003e__uint128\u003c/code\u003e, \u003ccode\u003e__int128_t\u003c/code\u003e, and \u003ccode\u003e__int128\u003c/code\u003e,\nhave been deprecated. Use \u003ccode\u003ei128\u003c/code\u003e and \u003ccode\u003eu128\u003c/code\u003e instead. (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4343\"\u003e#4343\u003c/a\u003e)\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/libc/blob/0.2.186/CHANGELOG.md\"\u003elibc's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/libc/compare/0.2.185...0.2.186\"\u003e0.2.186\u003c/a\u003e - 2026-04-24\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eApple: Add \u003ccode\u003eKEVENT_FLAG_*\u003c/code\u003e constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5070\"\u003e#5070\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add \u003ccode\u003ePR_SET_MEMORY_MERGE\u003c/code\u003e and \u003ccode\u003ePR_GET_MEMORY_MERGE\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5060\"\u003e#5060\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCI: Migrate FreeBSD CI from Cirrus CI to GitHub Actions (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5058\"\u003e#5058\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/libc/compare/0.2.184...0.2.185\"\u003e0.2.185\u003c/a\u003e - 2026-04-13\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEspIDF: Add \u003ccode\u003eespidf_picolibc\u003c/code\u003e cfg for picolibc \u003ccode\u003eO_*\u003c/code\u003e flag values (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5035\"\u003e#5035\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHexagon: add missing constants and fix types for linux-musl (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5042\"\u003e#5042\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRedox: Add semaphore functions (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5051\"\u003e#5051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eWindows: Add \u003ccode\u003esprintf\u003c/code\u003e, \u003ccode\u003esnprintf\u003c/code\u003e, and the \u003ccode\u003escanf\u003c/code\u003e family (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5024\"\u003e#5024\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eHexagon: Decouple \u003ccode\u003etime64\u003c/code\u003e types from musl symbol redirects (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5040\"\u003e#5040\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHorizon: Change \u003ccode\u003ePOLL\u003c/code\u003e constants from \u003ccode\u003ec_short\u003c/code\u003e to \u003ccode\u003ec_int\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5045\"\u003e#5045\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/libc/compare/0.2.183...0.2.184\"\u003e0.2.184\u003c/a\u003e - 2026-04-01\u003c/h2\u003e\n\u003ch3\u003eMSRV\u003c/h3\u003e\n\u003cp\u003eThis release increases the MSRV of \u003ccode\u003elibc\u003c/code\u003e to 1.65. With this update, you can now always use the\n\u003ccode\u003ecore::ffi::c_*\u003c/code\u003e types with \u003ccode\u003elibc\u003c/code\u003e definitions, since \u003ccode\u003elibc\u003c/code\u003e has been changed to reexport from\n\u003ccode\u003ecore\u003c/code\u003e rather than redefining them. (This \u003cem\u003eusually\u003c/em\u003e worked before but had edge cases.)\n(\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4972\"\u003e#4972\u003c/a\u003e)\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBSD: Add \u003ccode\u003eIP_MINTTL\u003c/code\u003e to bsd (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5026\"\u003e#5026\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCygwin: Add \u003ccode\u003eTIOCM_DSR\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5031\"\u003e#5031\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFreeBSD: Added \u003ccode\u003exfile\u003c/code\u003e structe and file descriptor types (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5002\"\u003e#5002\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add CAN netlink bindings (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5011\"\u003e#5011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add \u003ccode\u003estruct ethhdr\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4239\"\u003e#4239\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add \u003ccode\u003estruct ifinfomsg\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5012\"\u003e#5012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Define \u003ccode\u003emax_align_t\u003c/code\u003e for riscv64 (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5029\"\u003e#5029\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNetBSD: Add missing \u003ccode\u003eCLOCK_\u003c/code\u003e constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5020\"\u003e#5020\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNuttX: Add \u003ccode\u003e_SC_HOST_NAME_MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5004\"\u003e#5004\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVxWorks: Add \u003ccode\u003eflock\u003c/code\u003e and \u003ccode\u003eF_*LCK\u003c/code\u003e constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4043\"\u003e#4043\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eWASI: Add all \u003ccode\u003e_SC_*\u003c/code\u003e sysconf constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5023\"\u003e#5023\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/42620ffc4109dc32e02f1cae9e63a3f4311b4b71\"\u003e\u003ccode\u003e42620ff\u003c/code\u003e\u003c/a\u003e [0.2] libc: Release 0.2.186\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/9db2eaaaaea60e0b048785e41ca4eb9c50d30ad5\"\u003e\u003ccode\u003e9db2eaa\u003c/code\u003e\u003c/a\u003e apple: add KEVENT_FLAG_* constants\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/38409392ffb50288aa84e94b75fc37bd565fd5bc\"\u003e\u003ccode\u003e3840939\u003c/code\u003e\u003c/a\u003e Add PR_SET_MEMORY_MERGE and PR_GET_MEMORY_MERGE for linux\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/f697deb9440a8f916ec2fb95bef9e06fc847b6f7\"\u003e\u003ccode\u003ef697deb\u003c/code\u003e\u003c/a\u003e chore: migrate from Cirrus CI to GHA\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/71d5bfcc1bda05da1783666fc2cd7d9669c9c4c8\"\u003e\u003ccode\u003e71d5bfc\u003c/code\u003e\u003c/a\u003e libc: Release 0.2.185\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/1027d1c23bd3f07ba3dc6ab4a4eb4660cc91e509\"\u003e\u003ccode\u003e1027d1c\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;ci: Pin nightly to 2026-04-01\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/0e9c6e53cca07b36239a6dc4e65d8b691b39023a\"\u003e\u003ccode\u003e0e9c6e5\u003c/code\u003e\u003c/a\u003e redox: Add semaphore functions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/24ef457ddd312f8b8055a8ed07f5376c5792c211\"\u003e\u003ccode\u003e24ef457\u003c/code\u003e\u003c/a\u003e feat: add back support for gnu windows x86 in ci\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/aa75caf30c0153647c9ab9fc0fe382bce2564b0c\"\u003e\u003ccode\u003eaa75caf\u003c/code\u003e\u003c/a\u003e horizon: Change POLL constants from c_short to c_int\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/b7eda5a40c678c4a195a389a329d85008eabaf2d\"\u003e\u003ccode\u003eb7eda5a\u003c/code\u003e\u003c/a\u003e hexagon: add missing constants and fix types for linux-musl\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-lang/libc/compare/0.2.180...0.2.186\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `env_logger` from 0.11.8 to 0.11.10\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-cli/env_logger/releases\"\u003eenv_logger's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.11.10\u003c/h2\u003e\n\u003ch2\u003e[0.11.10] - 2026-03-23\u003c/h2\u003e\n\u003ch3\u003eInternal\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.11.9\u003c/h2\u003e\n\u003ch2\u003e[0.11.9] - 2026-02-11\u003c/h2\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-cli/env_logger/blob/main/CHANGELOG.md\"\u003eenv_logger's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.11.10] - 2026-03-23\u003c/h2\u003e\n\u003ch3\u003eInternal\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.11.9] - 2026-02-11\u003c/h2\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/41320bf391e3d62cc0171f83403c6d684686ac98\"\u003e\u003ccode\u003e41320bf\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/de8c74f47cb137541ac3c740b1fa77f46554dc25\"\u003e\u003ccode\u003ede8c74f\u003c/code\u003e\u003c/a\u003e docs: Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/d550741cdcd1d64f8a564158d9d0b2554f5d900d\"\u003e\u003ccode\u003ed550741\u003c/code\u003e\u003c/a\u003e docs(gh): Add sponsor link\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/458b07544b86495075418e4d81cc048c98f362b6\"\u003e\u003ccode\u003e458b075\u003c/code\u003e\u003c/a\u003e chore(deps): Update Rust Stable to v1.94 (\u003ca href=\"https://redirect.github.com/rust-cli/env_logger/issues/401\"\u003e#401\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/8bc3fc3e1db40d82a40b485e4c7971ac257d17a2\"\u003e\u003ccode\u003e8bc3fc3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-cli/env_logger/issues/400\"\u003e#400\u003c/a\u003e from epage/update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/143fa647ab33ed3acc9f160dfa3cb075cc62b5a3\"\u003e\u003ccode\u003e143fa64\u003c/code\u003e\u003c/a\u003e chore: Upgrade incompatible\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/b687a2418ab8eeb031a55f561be50742ede27baf\"\u003e\u003ccode\u003eb687a24\u003c/code\u003e\u003c/a\u003e chore: Upgrade compatible\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/8cf1ba99129eeccc9914f9c3059ac6acc0686ba4\"\u003e\u003ccode\u003e8cf1ba9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-cli/env_logger/issues/397\"\u003e#397\u003c/a\u003e from rust-cli/renovate/crate-ci-typos-1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/094ecf7a8adbf013877f7e0883774008a95dbe3d\"\u003e\u003ccode\u003e094ecf7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-cli/env_logger/issues/396\"\u003e#396\u003c/a\u003e from rust-cli/renovate/crate-ci-committed-1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/env_logger/commit/34ad62679742adceb156ce5a59b0a277a8b67771\"\u003e\u003ccode\u003e34ad626\u003c/code\u003e\u003c/a\u003e chore(deps): Update pre-commit hook crate-ci/typos to v1.44.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-cli/env_logger/compare/v0.11.8...v0.11.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `anstyle` from 1.0.13 to 1.0.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/anstyle/commit/0fe6f0ff6d52e9f91d4071199bd0b24bd46f3d35\"\u003e\u003ccode\u003e0fe6f0f\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/anstyle/commit/332016ed167c53752a4ab11f22317745b2aa6763\"\u003e\u003ccode\u003e332016e\u003c/code\u003e\u003c/a\u003e docs: Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/anstyle/commit/dd73f64cf6287fb70578e3ad12079aad4f93a04b\"\u003e\u003ccode\u003edd73f64\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-cli/anstyle/issues/301\"\u003e#301\u003c/a\u003e from Muscraft/fix-some-escape-codes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/anstyle/commit/e2d2fb53a71cd95ed0c2f50bc8a73f86c9e6bb37\"\u003e\u003ccode\u003ee2d2fb5\u003c/code\u003e\u003c/a\u003e fix: Make 4:0 removes all underline styles\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/anstyle/commit/d82d083aa05ee4ddc059631f083047cbf32cc9ae\"\u003e\u003ccode\u003ed82d083\u003c/code\u003e\u003c/a\u003e feat: Support SGR 59 (reset underline color to default)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/anstyle/commit/85c9a86d4cb8bb2fb1c4a7729e2c70965ad38688\"\u003e\u003ccode\u003e85c9a86\u003c/code\u003e\u003c/a\u003e feat: Support SGR 22-29 (off codes)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/anstyle/commit/ac5c23b73200b8bfa6b016736a951d413fc0536d\"\u003e\u003ccode\u003eac5c23b\u003c/code\u003e\u003c/a\u003e refactor: Reorder SGR match arms to follow numerical order\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/anstyle/commit/2234b680fb3816a8b9ebccefd7cbb4b90b98553d\"\u003e\u003ccode\u003e2234b68\u003c/code\u003e\u003c/a\u003e test: Add tests for SGR off codes, underline subparams, and underline color r...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/anstyle/commit/ffb555fe2bd93b50eee1c8181195fc2fe532c4fc\"\u003e\u003ccode\u003effb555f\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-cli/anstyle/commit/55de8a6470a6ed490efe46e47ccfae313c1a2d35\"\u003e\u003ccode\u003e55de8a6\u003c/code\u003e\u003c/a\u003e chore: Download libc to match cargo\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-cli/anstyle/compare/v1.0.13...v1.0.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `autocfg` from 1.5.0 to 1.5.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cuviper/autocfg/commit/2799b09c24e6632f8e653c5cd8fc303e85a906ba\"\u003e\u003ccode\u003e2799b09\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/cuviper/autocfg/issues/80\"\u003e#80\u003c/a\u003e from cuviper/noscript\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cuviper/autocfg/commit/8e7f49a2a26f1601013f11ed8c186ab8f3e0e38d\"\u003e\u003ccode\u003e8e7f49a\u003c/code\u003e\u003c/a\u003e ci: extend the tested versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cuviper/autocfg/commit/303aa6add847f44a9786eec0d20f31c409bcb841\"\u003e\u003ccode\u003e303aa6a\u003c/code\u003e\u003c/a\u003e Release 1.5.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cuviper/autocfg/commit/73483fb2dc247aa06ed01264967cdac800271bbe\"\u003e\u003ccode\u003e73483fb\u003c/code\u003e\u003c/a\u003e Make \u003ccode\u003etests/wrappers\u003c/code\u003e work without a script\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/cuviper/autocfg/compare/1.5.0...1.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bumpalo` from 3.19.1 to 3.20.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fitzgen/bumpalo/blob/main/CHANGELOG.md\"\u003ebumpalo's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.20.3\u003c/h2\u003e\n\u003cp\u003eReleased 2026-05-22.\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed the \u003ccode\u003etry_alloc_slice_fill_with\u003c/code\u003e, \u003ccode\u003ealloc_slice_try_fill_with\u003c/code\u003e,\n\u003ccode\u003ealloc_slice_fill_with\u003c/code\u003e methods to properly rewind the bump pointer on\nallocation, initialization, and panic failure and avoid wasting bump capacity.\u003c/li\u003e\n\u003cli\u003eFixed a drop bug in \u003ccode\u003ebumpalo::collections::vec::DrainFilter\u003c/code\u003e (used by \u003ccode\u003eretain\u003c/code\u003e\nand \u003ccode\u003eretain_mut\u003c/code\u003e) when the predicate panics.\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003ch2\u003e3.20.2\u003c/h2\u003e\n\u003cp\u003eReleased 2026-02-19.\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRestored \u003ccode\u003eSend\u003c/code\u003e and \u003ccode\u003eSync\u003c/code\u003e implementations for \u003ccode\u003eBox\u0026lt;T\u0026gt;\u003c/code\u003e for \u003ccode\u003eT: ?Sized\u003c/code\u003e types\nas well.\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003ch2\u003e3.20.1\u003c/h2\u003e\n\u003cp\u003eReleased 2026-02-18.\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRestored \u003ccode\u003eSend\u003c/code\u003e and \u003ccode\u003eSync\u003c/code\u003e implementations for \u003ccode\u003eBox\u0026lt;T\u0026gt;\u003c/code\u003e when \u003ccode\u003eT: Send\u003c/code\u003e and \u003ccode\u003eT: Sync\u003c/code\u003e respectively.\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003ch2\u003e3.20.0\u003c/h2\u003e\n\u003cp\u003eReleased 2026-02-18.\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded the \u003ccode\u003ebumpalo::collections::Vec::pop_if\u003c/code\u003e method.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a bug in the \u003ccode\u003ebumpalo::collections::String::retain\u003c/code\u003e method in the face\nof panics.\u003c/li\u003e\n\u003cli\u003eMade \u003ccode\u003ebumpalo::collections::Box\u0026lt;T\u0026gt;\u003c/code\u003e covariant with \u003ccode\u003eT\u003c/code\u003e (just like\n\u003ccode\u003estd::boxed::Box\u0026lt;T\u0026gt;\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fitzgen/bumpalo/commit/84654ace6be4444da3ff102a0a0af3b38c4df4fb\"\u003e\u003ccode\u003e84654ac\u003c/code\u003e\u003c/a\u003e Rewind on slice allocation failure (\u003ca href=\"https://redirect.github.com/fitzgen/bumpalo/issues/324\"\u003e#324\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fitzgen/bumpalo/commit/5325624d38c9f290a3d41344ef2aa5badac1a538\"\u003e\u003ccode\u003e5325624\u003c/code\u003e\u003c/a\u003e Fix a couple bugs (\u003ca href=\"https://redirect.github.com/fitzgen/bumpalo/issues/323\"\u003e#323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fitzgen/bumpalo/commit/fcf8370e7358852493c8b30c8536de3ce9c3c481\"\u003e\u003ccode\u003efcf8370\u003c/code\u003e\u003c/a\u003e Fix UB in \u003ccode\u003eAllocator::grow_zeroed\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/fitzgen/bumpalo/issues/321\"\u003e#321\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fitzgen/bumpalo/commit/657caf85e7984b0aa8bc114c09d9cc2afeaf240d\"\u003e\u003ccode\u003e657caf8\u003c/code\u003e\u003c/a\u003e test: fix test for OOM instead of overflow (\u003ca href=\"https://redirect.github.com/fitzgen/bumpalo/issues/320\"\u003e#320\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fitzgen/bumpalo/commit/1db9be965675c79517e646a628e16493683194f3\"\u003e\u003ccode\u003e1db9be9\u003c/code\u003e\u003c/a\u003e fix: fix typo in comment (\u003ca href=\"https://redirect.github.com/fitzgen/bumpalo/issues/318\"\u003e#318\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fitzgen/bumpalo/commit/a47f6d6b7b5fee9c99a285f0de80257a0a982ef3\"\u003e\u003ccode\u003ea47f6d6\u003c/code\u003e\u003c/a\u003e fix: bump pointer/bump chunk debug assertion (\u003ca href=\"https://redirect.github.com/fitzgen/bumpalo/issues/313\"\u003e#313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fitzgen/bumpalo/commit/0b12966abfa96aace02abe5e1adeab0df942ef35\"\u003e\u003ccode\u003e0b12966\u003c/code\u003e\u003c/a\u003e Update Cargo.toml with keywords (\u003ca href=\"https://redirect.github.com/fitzgen/bumpalo/issues/303\"\u003e#303\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fitzgen/bumpalo/commit/1aad072f93d8a4cf5885446ead554927c7c94f9c\"\u003e\u003ccode\u003e1aad072\u003c/code\u003e\u003c/a\u003e Bump to version 3.20.2 (\u003ca href=\"https://redirect.github.com/fitzgen/bumpalo/issues/312\"\u003e#312\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fitzgen/bumpalo/commit/2fb1d6ae40c56e875cbef9767ae0773e32d60387\"\u003e\u003ccode\u003e2fb1d6a\u003c/code\u003e\u003c/a\u003e Add more tests for send and sync behavior, support unsized types (\u003ca href=\"https://redirect.github.com/fitzgen/bumpalo/issues/311\"\u003e#311\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fitzgen/bumpalo/commit/7c8d1f3870ef2317b1c9b3ef36f6439a6144448e\"\u003e\u003ccode\u003e7c8d1f3\u003c/code\u003e\u003c/a\u003e Bump to 3.20.1 (\u003ca href=\"https://redirect.github.com/fitzgen/bumpalo/issues/310\"\u003e#310\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fitzgen/bumpalo/compare/v3.19.1...v3.20.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.11.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.11.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `cc` from 1.2.55 to 1.2.62\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/cc-rs/releases\"\u003ecc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ecc-v1.2.62\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegenerate target info (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1721\"\u003e#1721\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow exceptions on wasm platforms (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1714\"\u003e#1714\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd relibc env (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1710\"\u003e#1710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erecognize sh4 architecture in parse_arch() (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1712\"\u003e#1712\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ecc-v1.2.61\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix \u003ccode\u003eOutputKind::Capture\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1705\"\u003e#1705\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ecc-v1.2.60\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(ar)\u003c/em\u003e suppress warnings from \u003ccode\u003eD\u003c/code\u003e modifier probe (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1700\"\u003e#1700\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ecc-v1.2.59\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(ar)\u003c/em\u003e deterministic archives with \u003ccode\u003eD\u003c/code\u003e modifier (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegenerate target info (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1698\"\u003e#1698\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix target abi parsing for sanitiser targets (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1695\"\u003e#1695\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ecc-v1.2.58\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate Compile-time Requirements to add info about clang-cl.exe (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1693\"\u003e#1693\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ecc-v1.2.57\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSize archiver batches according to argument length not argument count (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1689\"\u003e#1689\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eBuild::env\u003c/code\u003e for setting environment variables of compiler invocations and other child processes (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1656\"\u003e#1656\u003c/a\u003e \u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1682\"\u003e#1682\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ecc-v1.2.56\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegenerate target info (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1676\"\u003e#1676\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eclang-cl\u003c/code\u003e target when cross-compiling (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1670\"\u003e#1670\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/cc-rs/blob/main/CHANGELOG.md\"\u003ecc's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/compare/cc-v1.2.61...cc-v1.2.62\"\u003e1.2.62\u003c/a\u003e - 2026-05-08\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegenerate target info (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1721\"\u003e#1721\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow exceptions on wasm platforms (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1714\"\u003e#1714\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd relibc env (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1710\"\u003e#1710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erecognize sh4 architecture in parse_arch() (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1712\"\u003e#1712\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/compare/cc-v1.2.60...cc-v1.2.61\"\u003e1.2.61\u003c/a\u003e - 2026-04-24\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix \u003ccode\u003eOutputKind::Capture\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1705\"\u003e#1705\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/compare/cc-v1.2.59...cc-v1.2.60\"\u003e1.2.60\u003c/a\u003e - 2026-04-10\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(ar)\u003c/em\u003e suppress warnings from \u003ccode\u003eD\u003c/code\u003e modifier probe (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1700\"\u003e#1700\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/compare/cc-v1.2.58...cc-v1.2.59\"\u003e1.2.59\u003c/a\u003e - 2026-04-03\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(ar)\u003c/em\u003e deterministic archives with \u003ccode\u003eD\u003c/code\u003e modifier (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegenerate target info (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1698\"\u003e#1698\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix target abi parsing for sanitiser targets (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1695\"\u003e#1695\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/compare/cc-v1.2.57...cc-v1.2.58\"\u003e1.2.58\u003c/a\u003e - 2026-03-27\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate Compile-time Requirements to add info about clang-cl.exe (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1693\"\u003e#1693\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/compare/cc-v1.2.56...cc-v1.2.57\"\u003e1.2.57\u003c/a\u003e - 2026-03-13\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSize archiver batches according to argument length not argument count (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1689\"\u003e#1689\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eBuild::env\u003c/code\u003e for setting environment variables of compiler invocations and other child processes (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1656\"\u003e#1656\u003c/a\u003e \u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1682\"\u003e#1682\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/compare/cc-v1.2.55...cc-v1.2.56\"\u003e1.2.56\u003c/a\u003e - 2026-02-13\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegenerate target info (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/pull/1676\"\u003e#1676\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/commit/37a5f8f4e1a2eaf4cf483fc0fb97d35761b720c5\"\u003e\u003ccode\u003e37a5f8f\u003c/code\u003e\u003c/a\u003e chore(cc): release v1.2.62 (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/commit/34a2218d15abcf6cf943b9cc41a8fd9b034cad68\"\u003e\u003ccode\u003e34a2218\u003c/code\u003e\u003c/a\u003e Regenerate target info (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/issues/1721\"\u003e#1721\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/commit/a9d86324573dee124970d217b8c7f35a43e21249\"\u003e\u003ccode\u003ea9d8632\u003c/code\u003e\u003c/a\u003e Allow exceptions on wasm platforms (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/issues/1714\"\u003e#1714\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/commit/ce036b3d5f55b32e5d56517015d71241307d77e1\"\u003e\u003ccode\u003ece036b3\u003c/code\u003e\u003c/a\u003e Add relibc env (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/issues/1710\"\u003e#1710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/commit/18ed3dc8ec1999e742596270c4ffb465585b6056\"\u003e\u003ccode\u003e18ed3dc\u003c/code\u003e\u003c/a\u003e target: recognize sh4 architecture in parse_arch() (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/issues/1712\"\u003e#1712\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/commit/33f84c5c780b1fa3ba00f6038c2f91c1e4130117\"\u003e\u003ccode\u003e33f84c5\u003c/code\u003e\u003c/a\u003e Bump taiki-e/install-action from 2.75.18 to 2.75.19 (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/issues/1709\"\u003e#1709\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/commit/cbd4c092da80dbfc01d8e3bdc1a5bf9936eebe67\"\u003e\u003ccode\u003ecbd4c09\u003c/code\u003e\u003c/a\u003e Bump taiki-e/install-action from 2.75.17 to 2.75.18 (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/issues/1708\"\u003e#1708\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/commit/360f69119862eb26b44253f09f9ce60be5b3011b\"\u003e\u003ccode\u003e360f691\u003c/code\u003e\u003c/a\u003e chore(cc): release v1.2.61 (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/commit/17a2788f499da76bf7a6b404367ab37613b8fa00\"\u003e\u003ccode\u003e17a2788\u003c/code\u003e\u003c/a\u003e Bump taiki-e/install-action from 2.75.16 to 2.75.17 (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/issues/1706\"\u003e#1706\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/cc-rs/commit/da52db738b1b1ea89cc176dfd718e0de6bef742a\"\u003e\u003ccode\u003eda52db7\u003c/code\u003e\u003c/a\u003e command_helpers.rs: fix \u003ccode\u003eOutputKind::Capture\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/rust-lang/cc-rs/issues/1705\"\u003e#1705\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-lang/cc-rs/compare/cc-v1.2.55...cc-v1.2.62\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `clap_builder` from 4.5.56 to 4.5.60\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/clap-rs/clap/releases\"\u003eclap_builder's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.5.60\u003c/h2\u003e\n\u003ch2\u003e[4.5.60] - 2026-02-19\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(help)\u003c/em\u003e Quote empty default values, possible values\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.59\u003c/h2\u003e\n\u003ch2\u003e[4.5.59] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eCommand::ignore_errors\u003c/code\u003e no longer masks help/version on subcommands\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.58\u003c/h2\u003e\n\u003ch2\u003e[4.5.58] - 2026-02-11\u003c/h2\u003e\n\u003ch2\u003ev4.5.57\u003c/h2\u003e\n\u003ch2\u003e[4.5.57] - 2026-02-03\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegression from 4.5.55 where having an argument with \u003ccode\u003e.value_terminator(\u0026quot;--\u0026quot;)\u003c/code\u003e caused problems with an argument with \u003ccode\u003e.last(true)\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/clap-rs/clap/blob/master/CHANGELOG.md\"\u003eclap_builder's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.5.60] - 2026-02-19\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(help)\u003c/em\u003e Quote empty default values, possible values\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.59] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eCommand::ignore_errors\u003c/code\u003e no longer masks help/version on subcommands\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.58] - 2026-02-11\u003c/h2\u003e\n\u003ch2\u003e[4.5.57] - 2026-02-03\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegression from 4.5.55 where having an argument with \u003ccode\u003e.value_terminator(\u0026quot;--\u0026quot;)\u003c/code\u003e caused problems with an argument with \u003ccode\u003e.last(true)\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/20aac9d46e0852292bd43d845b6d9cb69c598c9e\"\u003e\u003ccode\u003e20aac9d\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/d1c520b9374380474b887036357c2ae013a808c7\"\u003e\u003ccode\u003ed1c520b\u003c/code\u003e\u003c/a\u003e docs: Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/862fff68a91b16f2719b88d69024deac80c38f85\"\u003e\u003ccode\u003e862fff6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6278\"\u003e#6278\u003c/a\u003e from yash27-lab/fix-4976-empty-default-display\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/420669948a1f637e0ee707d907053beb104bfc3d\"\u003e\u003ccode\u003e4206699\u003c/code\u003e\u003c/a\u003e fix(builder): Quote empty default values\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/eb16ae4d25bf3a7300b4a51bf953bf0d6e6fa62c\"\u003e\u003ccode\u003eeb16ae4\u003c/code\u003e\u003c/a\u003e refactor(builder): Consolidate escaping with Escape\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/806d98164ce4ec62aa97c771006d782090a08520\"\u003e\u003ccode\u003e806d981\u003c/code\u003e\u003c/a\u003e test(help): Add coverage for empty default values\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/68b5ff900bae8ee1a0e328c1a2301a7985e4f1c6\"\u003e\u003ccode\u003e68b5ff9\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/df54af5a06002392681b4b469df43bc1b2ffcf01\"\u003e\u003ccode\u003edf54af5\u003c/code\u003e\u003c/a\u003e docs: Ipdate changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/97805e4abad1bcedf2e53f91dc453c9c0bcdc9a0\"\u003e\u003ccode\u003e97805e4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6276\"\u003e#6276\u003c/a\u003e from epage/ignore\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/144e5cb46d946f97e51b7122eadd3134ee127bef\"\u003e\u003ccode\u003e144e5cb\u003c/code\u003e\u003c/a\u003e fix(parser): Allow --help to propagate up through subcommands with ignore_erros\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/clap-rs/clap/compare/v4.5.56...v4.5.60\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `clap_lex` from 0.7.7 to 1.1.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/clap-rs/clap/blob/master/CHANGELOG.md\"\u003eclap_lex's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.0 (2015-07-16)\u003c/h2\u003e\n\u003ch4\u003eFeatures\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eallows creating unified help messages, a la docopt or getopts (\u003ca href=\"https://github.com/clap-rs/clap/commit/52bcd892ea51564ce463bc5865acd64f8fe91cb1\"\u003e52bcd892\u003c/a\u003e, closes \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/158\"\u003e#158\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eallows stating all subcommands should \u003cem\u003enot\u003c/em\u003e have --version flags (\u003ca href=\"https://github.com/clap-rs/clap/commit/336c476f631d512b54ac56fdca6f29ebdc2c00c5\"\u003e336c476f\u003c/a\u003e, closes \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/156\"\u003e#156\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eallows setting version number to auto-propagate through subcommands (\u003ca href=\"https://github.com/clap-rs/clap/commit/bc66d3c6deedeca62463fff95369ab1cfcdd366b\"\u003ebc66d3c6\u003c/a\u003e, closes \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/157\"\u003e#157\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eImprovements\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHelp Strings\u003c/strong\u003e  properly aligns and handles newlines in long help strings (\u003ca href=\"https://github.com/clap-rs/clap/commit/f9800a29696dd2cc0b0284bf693b3011831e556f\"\u003ef9800a29\u003c/a\u003e, closes \u003ca href=\"https://redirect.github.com/clap-...\n\n_Description has been truncated_","html_url":"https://github.com/Arkael-Dev/VortexSU/pull/21","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Arkael-Dev%2FVortexSU/issues/21","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/21/packages"}},{"old_version":"1.11.0","new_version":"1.11.1","update_type":"patch","path":null,"pr_created_at":"2026-05-18T23:25:41.000Z","version_change":"1.11.0 → 1.11.1","issue":{"uuid":"4473253599","node_id":"PR_kwDOMVjeKs7c2_Ah","number":866,"state":"closed","title":"Bump the cargo group across 6 directories with 5 updates","user":"dependabot[bot]","labels":["dependencies","rust"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-18T23:30:01.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-18T23:25:41.000Z","updated_at":"2026-05-18T23:30:03.000Z","time_to_close":260,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"cargo","update_count":5,"packages":[{"name":"rand","old_version":"0.8.5","new_version":"0.8.6","repository_url":"https://github.com/rust-random/rand"},{"name":"rand","old_version":"0.8.5","new_version":"0.8.6","repository_url":"https://github.com/rust-random/rand"},{"name":"rand","old_version":"0.8.5","new_version":"0.8.6","repository_url":"https://github.com/rust-random/rand"},{"name":"rand","old_version":"0.8.5","new_version":"0.8.6","repository_url":"https://github.com/rust-random/rand"},{"name":"rand","old_version":"0.8.5","new_version":"0.8.6","repository_url":"https://github.com/rust-random/rand"},{"name":"rand","old_version":"0.8.5","new_version":"0.8.6","repository_url":"https://github.com/rust-random/rand"},{"name":"bytes","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"rand","old_version":"0.9.2","new_version":"0.9.4","repository_url":"https://github.com/rust-random/rand"},{"name":"bytes","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"quinn-proto","old_version":"0.11.13","new_version":"0.11.14","repository_url":"https://github.com/quinn-rs/quinn"},{"name":"rand","old_version":"0.9.2","new_version":"0.9.4","repository_url":"https://github.com/rust-random/rand"},{"name":"rustls-webpki","old_version":"0.103.8","new_version":"0.103.13","repository_url":"https://github.com/rustls/webpki"},{"name":"bytes","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"quinn-proto","old_version":"0.11.13","new_version":"0.11.14","repository_url":"https://github.com/quinn-rs/quinn"},{"name":"rand","old_version":"0.9.2","new_version":"0.9.4","repository_url":"https://github.com/rust-random/rand"},{"name":"rustls-webpki","old_version":"0.103.8","new_version":"0.103.13","repository_url":"https://github.com/rustls/webpki"},{"name":"bytes","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"quinn-proto","old_version":"0.11.13","new_version":"0.11.14","repository_url":"https://github.com/quinn-rs/quinn"},{"name":"rand","old_version":"0.9.2","new_version":"0.9.4","repository_url":"https://github.com/rust-random/rand"},{"name":"rustls-webpki","old_version":"0.103.8","new_version":"0.103.13","repository_url":"https://github.com/rustls/webpki"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 1 update in the /mobile/apps/photos/rust directory: [rand](https://github.com/rust-random/rand).\nBumps the cargo group with 4 updates in the /mobile/packages/rust/rust directory: [bytes](https://github.com/tokio-rs/bytes), [rand](https://github.com/rust-random/rand), [quinn-proto](https://github.com/quinn-rs/quinn) and [rustls-webpki](https://github.com/rustls/webpki).\nBumps the cargo group with 2 updates in the /rust/apps/ensu/src-tauri directory: [rustls-webpki](https://github.com/rustls/webpki) and [openssl](https://github.com/rust-openssl/rust-openssl).\nBumps the cargo group with 2 updates in the /rust/e2e directory: [rustls-webpki](https://github.com/rustls/webpki) and [openssl](https://github.com/rust-openssl/rust-openssl).\nBumps the cargo group with 1 update in the /rust/photos directory: [rand](https://github.com/rust-random/rand).\nBumps the cargo group with 4 updates in the /web/packages/wasm directory: [bytes](https://github.com/tokio-rs/bytes), [rand](https://github.com/rust-random/rand), [quinn-proto](https://github.com/quinn-rs/quinn) and [rustls-webpki](https://github.com/rustls/webpki).\n\nUpdates `rand` from 0.8.5 to 0.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.8.5 to 0.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.8.5 to 0.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.8.5 to 0.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.8.5 to 0.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.8.5 to 0.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.11.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.11.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.9.2 to 0.9.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.11.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.11.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `quinn-proto` from 0.11.13 to 0.11.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quinn-rs/quinn/releases\"\u003equinn-proto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003equinn-proto 0.11.14\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jxs\"\u003e\u003ccode\u003e@​jxs\u003c/code\u003e\u003c/a\u003e reported a denial of service issue in quinn-proto 5 days ago:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\"\u003ehttps://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eWe coordinated with them to release this version to patch the issue. Unfortunately the maintainers missed these issues during code review and we did not have enough fuzzing coverage -- we regret the oversight and have added an additional fuzzing target.\u003c/p\u003e\n\u003cp\u003eOrganizations that want to participate in coordinated disclosure can contact us privately to discuss terms.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix over-permissive proto dependency edge by \u003ca href=\"https://github.com/Ralith\"\u003e\u003ccode\u003e@​Ralith\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2385\"\u003equinn-rs/quinn#2385\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e0.11.x: avoid unwrapping VarInt decoding during parameter parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2559\"\u003equinn-rs/quinn#2559\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/2c315aa7f9c2a6c1db87f8f51f40623a427c78fd\"\u003e\u003ccode\u003e2c315aa\u003c/code\u003e\u003c/a\u003e proto: bump version to 0.11.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8ad47f431e7deb82c08b09c2e33ef85aa88fd212\"\u003e\u003ccode\u003e8ad47f4\u003c/code\u003e\u003c/a\u003e Use newer rustls-pki-types PEM parser API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c81c0289abe30d8437ccbf9b6304e2bc9c707cea\"\u003e\u003ccode\u003ec81c028\u003c/code\u003e\u003c/a\u003e ci: fix workflow syntax\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/0050172969f7e69e136c433181330da7790d8d73\"\u003e\u003ccode\u003e0050172\u003c/code\u003e\u003c/a\u003e ci: pin wasm-bindgen-cli version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8a6f82c58d1c565eab78f986e614223e6ed76a85\"\u003e\u003ccode\u003e8a6f82c\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/e52db4ad8df0f9720e7b0e32ecc0e48c9a93de0f\"\u003e\u003ccode\u003ee52db4a\u003c/code\u003e\u003c/a\u003e Apply suggestions from clippy 1.91\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/6df7275c582ca9b7225e0ccf9f9871a55eb73155\"\u003e\u003ccode\u003e6df7275\u003c/code\u003e\u003c/a\u003e chore: Fix \u003ccode\u003eunnecessary_unwrap\u003c/code\u003e clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c8eefa07e087b06d8f2b78ff262ce8ac952994f1\"\u003e\u003ccode\u003ec8eefa0\u003c/code\u003e\u003c/a\u003e proto: avoid unwrapping varint decoding during parameters parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/9723a977754c8662001b0fef97aab8f3ddf1df92\"\u003e\u003ccode\u003e9723a97\u003c/code\u003e\u003c/a\u003e fuzz: add fuzzing target for parsing transport parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/eaf0ef30252cef4acec21f150427e604cd4271c9\"\u003e\u003ccode\u003eeaf0ef3\u003c/code\u003e\u003c/a\u003e Fix over-permissive proto dependency edge (\u003ca href=\"https://redirect.github.com/quinn-rs/quinn/issues/2385\"\u003e#2385\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quinn-rs/quinn/compare/quinn-proto-0.11.13...quinn-proto-0.11.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.9.2 to 0.9.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls-webpki` from 0.103.8 to 0.103.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rustls/webpki/releases\"\u003erustls-webpki's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.103.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix reachable panic in parsing a CRL\u003c/strong\u003e. This was reported to us as \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-82j2-j2ch-gfr8\"\u003eGHSA-82j2-j2ch-gfr8\u003c/a\u003e. Users who don't use CRLs are not affected.\u003c/li\u003e\n\u003cli\u003eFor name constraints on URI names, we incorrectly processed excluded subtrees in a way which inverted the desired meaning. See \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/471\"\u003erustls/webpki#471\u003c/a\u003e. This was a case missing in the fix for \u003ca href=\"https://github.com/advisories/GHSA-965h-392x-2mh5\"\u003ehttps://github.com/advisories/GHSA-965h-392x-2mh5\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eActually fail closed for URI matching against excluded subtrees by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/473\"\u003erustls/webpki#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.13 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/474\"\u003erustls/webpki#474\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.12\u003c/h2\u003e\n\u003cp\u003eThis release fixes two bugs in name constraint enforcement:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-965h-392x-2mh5\u003c/strong\u003e: name constraints for URI names were ignored and therefore accepted. URI name constraints are now rejected unconditionally. Note this library does not provide an API for asserting URI names, and URI name constraints are otherwise not implemented.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-xgp8-3hg3-c2mh\u003c/strong\u003e: permitted subtree name constraints for DNS names were accepted for certificates asserting a wildcard name. This was incorrect because, given a name constraint of \u003ccode\u003eaccept.example.com\u003c/code\u003e, \u003ccode\u003e*.example.com\u003c/code\u003e could feasibly allow a name of \u003ccode\u003ereject.example.com\u003c/code\u003e which is outside the constraint. This is very similar to \u003ca href=\"https://go.dev/issue/76442\"\u003eCVE-2025-61727\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSince name constraints are restrictions on otherwise properly-issued certificates, these bugs are reachable only after signature verification and require misissuance to exploit.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrepare 0.103.12 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/470\"\u003erustls/webpki#470\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.11\u003c/h2\u003e\n\u003cp\u003eIn response to \u003ca href=\"https://redirect.github.com/rustls/webpki/issues/464\"\u003e#464\u003c/a\u003e, we've slightly relaxed requirements for \u003ccode\u003eanchor_from_trust_cert()\u003c/code\u003e to ignore unknown extensions even if they're marked as critical. This only affects parsing a \u003ccode\u003eTrustAnchor\u003c/code\u003e from DER, for which most extensions are ignored anyway.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport parsing trust anchors with unknown critical extensions to 0.103 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/466\"\u003erustls/webpki#466\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.103.10\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eCorrect selection of candidate CRLs by Distribution Point and Issuing Distribution Point\u003c/strong\u003e. If a certificate had more than one \u003ccode\u003edistributionPoint\u003c/code\u003e, then only the first \u003ccode\u003edistributionPoint\u003c/code\u003e would be considered against each CRL's \u003ccode\u003eIssuingDistributionPoint\u003c/code\u003e \u003ccode\u003edistributionPoint\u003c/code\u003e, and then the certificate's subsequent \u003ccode\u003edistributionPoint\u003c/code\u003es would be ignored.\u003c/p\u003e\n\u003cp\u003eThe impact was that correctly provided CRLs would not be consulted to check revocation. With \u003ccode\u003eUnknownStatusPolicy::Deny\u003c/code\u003e (the default) this would lead to incorrect but safe \u003ccode\u003eError::UnknownRevocationStatus\u003c/code\u003e. With \u003ccode\u003eUnknownStatusPolicy::Allow\u003c/code\u003e this would lead to inappropriate acceptance of revoked certificates.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is thought to be of limited impact. This is because both the certificate and CRL are signed -- an attacker would need to compromise a trusted issuing authority to trigger this bug.  An attacker with such capabilities could likely bypass revocation checking through other more impactful means (such as publishing a valid, empty CRL.)\u003c/p\u003e\n\u003cp\u003eMore likely, this bug would be latent in normal use, and an attacker could leverage faulty revocation checking to continue using a revoked credential.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is identified by \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-pwjx-qhcg-rvj4\"\u003eGHSA-pwjx-qhcg-rvj4\u003c/a\u003e. Thank you to \u003ca href=\"https://github.com/1seal\"\u003e\u003ccode\u003e@​1seal\u003c/code\u003e\u003c/a\u003e for the report.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFreshen up rel-0.103 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/455\"\u003erustls/webpki#455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.10 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/458\"\u003erustls/webpki#458\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2879b2ce7a476181ac3050f73fe0835f04728e86\"\u003e\u003ccode\u003e2879b2c\u003c/code\u003e\u003c/a\u003e Prepare 0.103.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2c49773d823f48c87db30db7a66c25993c847007\"\u003e\u003ccode\u003e2c49773\u003c/code\u003e\u003c/a\u003e Improve tests for padding of \u003ccode\u003eBitStringFlags\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/4e3c0b393a7bfb9cbe6dcdc8309cbadf8ee00c51\"\u003e\u003ccode\u003e4e3c0b3\u003c/code\u003e\u003c/a\u003e Correct validation of BIT STRING constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/39c91d2525a542a7f651a1a62c3462e8115cc39e\"\u003e\u003ccode\u003e39c91d2\u003c/code\u003e\u003c/a\u003e Actually fail closed for URI matching against excluded subtrees\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/27131d476e2b68a537e629d6d012bef8dad6efd3\"\u003e\u003ccode\u003e27131d4\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/6ecb8769cde2246e761e058709421c14a7dee6b1\"\u003e\u003ccode\u003e6ecb876\u003c/code\u003e\u003c/a\u003e Clean up stuttery enum variant names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/318b3e6e03ca2bc21600ca6bb0d0c6439b9e6aeb\"\u003e\u003ccode\u003e318b3e6\u003c/code\u003e\u003c/a\u003e Ignore wildcard labels when matching name constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/12196229a327d3d670798688254bd3ea24aba24b\"\u003e\u003ccode\u003e1219622\u003c/code\u003e\u003c/a\u003e Rewrite constraint matching to avoid permissive catch-all branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/57bc62ce538c2d0d31d44b3eb8c58e6a0a764b47\"\u003e\u003ccode\u003e57bc62c\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/d0fa01ee0a76b7585c13ec43de5854955146ffef\"\u003e\u003ccode\u003ed0fa01e\u003c/code\u003e\u003c/a\u003e Allow parsing trust anchors with unknown criticial extensions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.8...v/0.103.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.11.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.11.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `quinn-proto` from 0.11.13 to 0.11.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quinn-rs/quinn/releases\"\u003equinn-proto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003equinn-proto 0.11.14\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jxs\"\u003e\u003ccode\u003e@​jxs\u003c/code\u003e\u003c/a\u003e reported a denial of service issue in quinn-proto 5 days ago:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\"\u003ehttps://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eWe coordinated with them to release this version to patch the issue. Unfortunately the maintainers missed these issues during code review and we did not have enough fuzzing coverage -- we regret the oversight and have added an additional fuzzing target.\u003c/p\u003e\n\u003cp\u003eOrganizations that want to participate in coordinated disclosure can contact us privately to discuss terms.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix over-permissive proto dependency edge by \u003ca href=\"https://github.com/Ralith\"\u003e\u003ccode\u003e@​Ralith\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2385\"\u003equinn-rs/quinn#2385\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e0.11.x: avoid unwrapping VarInt decoding during parameter parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2559\"\u003equinn-rs/quinn#2559\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/2c315aa7f9c2a6c1db87f8f51f40623a427c78fd\"\u003e\u003ccode\u003e2c315aa\u003c/code\u003e\u003c/a\u003e proto: bump version to 0.11.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8ad47f431e7deb82c08b09c2e33ef85aa88fd212\"\u003e\u003ccode\u003e8ad47f4\u003c/code\u003e\u003c/a\u003e Use newer rustls-pki-types PEM parser API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c81c0289abe30d8437ccbf9b6304e2bc9c707cea\"\u003e\u003ccode\u003ec81c028\u003c/code\u003e\u003c/a\u003e ci: fix workflow syntax\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/0050172969f7e69e136c433181330da7790d8d73\"\u003e\u003ccode\u003e0050172\u003c/code\u003e\u003c/a\u003e ci: pin wasm-bindgen-cli version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8a6f82c58d1c565eab78f986e614223e6ed76a85\"\u003e\u003ccode\u003e8a6f82c\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/e52db4ad8df0f9720e7b0e32ecc0e48c9a93de0f\"\u003e\u003ccode\u003ee52db4a\u003c/code\u003e\u003c/a\u003e Apply suggestions from clippy 1.91\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/6df7275c582ca9b7225e0ccf9f9871a55eb73155\"\u003e\u003ccode\u003e6df7275\u003c/code\u003e\u003c/a\u003e chore: Fix \u003ccode\u003eunnecessary_unwrap\u003c/code\u003e clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c8eefa07e087b06d8f2b78ff262ce8ac952994f1\"\u003e\u003ccode\u003ec8eefa0\u003c/code\u003e\u003c/a\u003e proto: avoid unwrapping varint decoding during parameters parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/9723a977754c8662001b0fef97aab8f3ddf1df92\"\u003e\u003ccode\u003e9723a97\u003c/code\u003e\u003c/a\u003e fuzz: add fuzzing target for parsing transport parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/eaf0ef30252cef4acec21f150427e604cd4271c9\"\u003e\u003ccode\u003eeaf0ef3\u003c/code\u003e\u003c/a\u003e Fix over-permissive proto dependency edge (\u003ca href=\"https://redirect.github.com/quinn-rs/quinn/issues/2385\"\u003e#2385\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quinn-rs/quinn/compare/quinn-proto-0.11.13...quinn-proto-0.11.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.9.2 to 0.9.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls-webpki` from 0.103.8 to 0.103.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rustls/webpki/releases\"\u003erustls-webpki's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.103.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix reachable panic in parsing a CRL\u003c/strong\u003e. This was reported to us as \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-82j2-j2ch-gfr8\"\u003eGHSA-82j2-j2ch-gfr8\u003c/a\u003e. Users who don't use CRLs are not affected.\u003c/li\u003e\n\u003cli\u003eFor name constraints on URI names, we incorrectly processed excluded subtrees in a way which inverted the desired meaning. See \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/471\"\u003erustls/webpki#471\u003c/a\u003e. This was a case missing in the fix for \u003ca href=\"https://github.com/advisories/GHSA-965h-392x-2mh5\"\u003ehttps://github.com/advisories/GHSA-965h-392x-2mh5\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eActually fail closed for URI matching against excluded subtrees by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/473\"\u003erustls/webpki#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.13 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/474\"\u003erustls/webpki#474\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.12\u003c/h2\u003e\n\u003cp\u003eThis release fixes two bugs in name constraint enforcement:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-965h-392x-2mh5\u003c/strong\u003e: name constraints for URI names were ignored and therefore accepted. URI name constraints are now rejected unconditionally. Note this library does not provide an API for asserting URI names, and URI name constraints are otherwise not implemented.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-xgp8-3hg3-c2mh\u003c/strong\u003e: permitted subtree name constraints for DNS names were accepted for certificates asserting a wildcard name. This was incorrect because, given a name constraint of \u003ccode\u003eaccept.example.com\u003c/code\u003e, \u003ccode\u003e*.example.com\u003c/code\u003e could feasibly allow a name of \u003ccode\u003ereject.example.com\u003c/code\u003e which is outside the constraint. This is very similar to \u003ca href=\"https://go.dev/issue/76442\"\u003eCVE-2025-61727\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSince name constraints are restrictions on otherwise properly-issued certificates, these bugs are reachable only after signature verification and require misissuance to exploit.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrepare 0.103.12 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/470\"\u003erustls/webpki#470\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.11\u003c/h2\u003e\n\u003cp\u003eIn response to \u003ca href=\"https://redirect.github.com/rustls/webpki/issues/464\"\u003e#464\u003c/a\u003e, we've slightly relaxed requirements for \u003ccode\u003eanchor_from_trust_cert()\u003c/code\u003e to ignore unknown extensions even if they're marked as critical. This only affects parsing a \u003ccode\u003eTrustAnchor\u003c/code\u003e from DER, for which most extensions are ignored anyway.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport parsing trust anchors with unknown critical extensions to 0.103 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/466\"\u003erustls/webpki#466\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.103.10\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eCorrect selection of candidate CRLs by Distribution Point and Issuing Distribution Point\u003c/strong\u003e. If a certificate had more than one \u003ccode\u003edistributionPoint\u003c/code\u003e, then only the first \u003ccode\u003edistributionPoint\u003c/code\u003e would be considered against each CRL's \u003ccode\u003eIssuingDistributionPoint\u003c/code\u003e \u003ccode\u003edistributionPoint\u003c/code\u003e, and then the certificate's subsequent \u003ccode\u003edistributionPoint\u003c/code\u003es would be ignored.\u003c/p\u003e\n\u003cp\u003eThe impact was that correctly provided CRLs would not be consulted to check revocation. With \u003ccode\u003eUnknownStatusPolicy::Deny\u003c/code\u003e (the default) this would lead to incorrect but safe \u003ccode\u003eError::UnknownRevocationStatus\u003c/code\u003e. With \u003ccode\u003eUnknownStatusPolicy::Allow\u003c/code\u003e this would lead to inappropriate acceptance of revoked certificates.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is thought to be of limited impact. This is because both the certificate and CRL are signed -- an attacker would need to compromise a trusted issuing authority to trigger this bug.  An attacker with such capabilities could likely bypass revocation checking through other more impactful means (such as publishing a valid, empty CRL.)\u003c/p\u003e\n\u003cp\u003eMore likely, this bug would be latent in normal use, and an attacker could leverage faulty revocation checking to continue using a revoked credential.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is identified by \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-pwjx-qhcg-rvj4\"\u003eGHSA-pwjx-qhcg-rvj4\u003c/a\u003e. Thank you to \u003ca href=\"https://github.com/1seal\"\u003e\u003ccode\u003e@​1seal\u003c/code\u003e\u003c/a\u003e for the report.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFreshen up rel-0.103 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/455\"\u003erustls/webpki#455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.10 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/458\"\u003erustls/webpki#458\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2879b2ce7a476181ac3050f73fe0835f04728e86\"\u003e\u003ccode\u003e2879b2c\u003c/code\u003e\u003c/a\u003e Prepare 0.103.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2c49773d823f48c87db30db7a66c25993c847007\"\u003e\u003ccode\u003e2c49773\u003c/code\u003e\u003c/a\u003e Improve tests for padding of \u003ccode\u003eBitStringFlags\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/4e3c0b393a7bfb9cbe6dcdc8309cbadf8ee00c51\"\u003e\u003ccode\u003e4e3c0b3\u003c/code\u003e\u003c/a\u003e Correct validation of BIT STRING constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/39c91d2525a542a7f651a1a62c3462e8115cc39e\"\u003e\u003ccode\u003e39c91d2\u003c/code\u003e\u003c/a\u003e Actually fail closed for URI matching against excluded subtrees\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/27131d476e2b68a537e629d6d012bef8dad6efd3\"\u003e\u003ccode\u003e27131d4\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/6ecb8769cde2246e761e058709421c14a7dee6b1\"\u003e\u003ccode\u003e6ecb876\u003c/code\u003e\u003c/a\u003e Clean up stuttery enum variant names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/318b3e6e03ca2bc21600ca6bb0d0c6439b9e6aeb\"\u003e\u003ccode\u003e318b3e6\u003c/code\u003e\u003c/a\u003e Ignore wildcard labels when matching name constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/12196229a327d3d670798688254bd3ea24aba24b\"\u003e\u003ccode\u003e1219622\u003c/code\u003e\u003c/a\u003e Rewrite constraint matching to avoid permissive catch-all branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/57bc62ce538c2d0d31d44b3eb8c58e6a0a764b47\"\u003e\u003ccode\u003e57bc62c\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/d0fa01ee0a76b7585c13ec43de5854955146ffef\"\u003e\u003ccode\u003ed0fa01e\u003c/code\u003e\u003c/a\u003e Allow parsing trust anchors with unknown criticial extensions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.8...v/0.103.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.11.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.11.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `quinn-proto` from 0.11.13 to 0.11.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quinn-rs/quinn/releases\"\u003equinn-proto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003equinn-proto 0.11.14\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jxs\"\u003e\u003ccode\u003e@​jxs\u003c/code\u003e\u003c/a\u003e reported a denial of service issue in quinn-proto 5 days ago:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\"\u003ehttps://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eWe coordinated with them to release this version to patch the issue. Unfortunately the maintainers missed these issues during code review and we did not have enough fuzzing coverage -- we regret the oversight and have added an additional fuzzing target.\u003c/p\u003e\n\u003cp\u003eOrganizations that want to participate in coordinated disclosure can contact us privately to discuss terms.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix over-permissive proto dependency edge by \u003ca href=\"https://github.com/Ralith\"\u003e\u003ccode\u003e@​Ralith\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2385\"\u003equinn-rs/quinn#2385\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e0.11.x: avoid unwrapping VarInt decoding during parameter parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2559\"\u003equinn-rs/quinn#2559\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/2c315aa7f9c2a6c1db87f8f51f40623a427c78fd\"\u003e\u003ccode\u003e2c315aa\u003c/code\u003e\u003c/a\u003e proto: bump version to 0.11.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8ad47f431e7deb82c08b09c2e33ef85aa88fd212\"\u003e\u003ccode\u003e8ad47f4\u003c/code\u003e\u003c/a\u003e Use newer rustls-pki-types PEM parser API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c81c0289abe30d8437ccbf9b6304e2bc9c707cea\"\u003e\u003ccode\u003ec81c028\u003c/code\u003e\u003c/a\u003e ci: fix workflow syntax\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/0050172969f7e69e136c433181330da7790d8d73\"\u003e\u003ccode\u003e0050172\u003c/code\u003e\u003c/a\u003e ci: pin wasm-bindgen-cli version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8a6f82c58d1c565eab78f986e614223e6ed76a85\"\u003e\u003ccode\u003e8a6f82c\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/e52db4ad8df0f9720e7b0e32ecc0e48c9a93de0f\"\u003e\u003ccode\u003ee52db4a\u003c/code\u003e\u003c/a\u003e Apply suggestions from clippy 1.91\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/6df7275c582ca9b7225e0ccf9f9871a55eb73155\"\u003e\u003ccode\u003e6df7275\u003c/code\u003e\u003c/a\u003e chore: Fix \u003ccode\u003eunnecessary_unwrap\u003c/code\u003e clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c8eefa07e087b06d8f2b78ff262ce8ac952994f1\"\u003e\u003ccode\u003ec8eefa0\u003c/code\u003e\u003c/a\u003e proto: avoid unwrapping varint decoding during parameters parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/9723a977754c8662001b0fef97aab8f3ddf1df92\"\u003e\u003ccode\u003e9723a97\u003c/code\u003e\u003c/a\u003e fuzz: add fuzzing target for parsing transport parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/eaf0ef30252cef4acec21f150427e604cd4271c9\"\u003e\u003ccode\u003eeaf0ef3\u003c/code\u003e\u003c/a\u003e Fix over-permissive proto dependency edge (\u003ca href=\"https://redirect.github.com/quinn-rs/quinn/issues/2385\"\u003e#2385\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quinn-rs/quinn/compare/quinn-proto-0.11.13...quinn-proto-0.11.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.9.2 to 0.9.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls-webpki` from 0.103.8 to 0.103.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rustls/webpki/releases\"\u003erustls-webpki's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.103.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix reachable panic in parsing a CRL\u003c/strong\u003e. This was reported to us as \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-82j2-j2ch-gfr8\"\u003eGHSA-82j2-j2ch-gfr8\u003c/a\u003e. Users who don't use CRLs are not affected.\u003c/li\u003e\n\u003cli\u003eFor name constraints on URI names, we incorrectly processed excluded subtrees in a way which inverted the desired meaning. See \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/471\"\u003erustls/webpki#471\u003c/a\u003e. This was a case missing in the fix for \u003ca href=\"https://github.com/advisories/GHSA-965h-392x-2mh5\"\u003ehttps://github.com/advisories/GHSA-965h-392x-2mh5\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eActually fail closed for URI matching against excluded subtrees by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/473\"\u003erustls/webpki#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.13 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/474\"\u003erustls/webpki#474\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.12\u003c/h2\u003e\n\u003cp\u003eThis release fixes two bugs in name constraint enforcement:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-965h-392x-2mh5\u003c/strong\u003e: name constraints for URI names were ignored and therefore accepted. URI name constraints are now rejected unconditionally. Note this library does not provide an API for asserting URI names, and URI name constraints are otherwise not implemented.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-xgp8-3hg3-c2mh\u003c/strong\u003e: permitted subtree name constraints for DNS names were accepted for certificates asserting a wildcard name. This was incorrect because, given a name constraint of \u003ccode\u003eaccept.example.com\u003c/code\u003e, \u003ccode\u003e*.example.com\u003c/code\u003e could feasibly allow a name of \u003ccode\u003ereject.example.com\u003c/code\u003e which is outside the constraint. This is very similar to \u003ca href=\"https://go.dev/issue/76442\"\u003eCVE-2025-61727\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSince name constraints are restrictions on otherwise properly-issued certificates, these bugs are reachable only after signature verification and require misissuance to exploit.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrepare 0.103.12 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/470\"\u003erustls/webpki#470\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.11\u003c/h2\u003e\n\u003cp\u003eIn response to \u003ca href=\"https://redirect.github.com/rustls/webpki/issues/464\"\u003e#464\u003c/a\u003e, we've slightly relaxed requirements for \u003ccode\u003eanchor_from_trust_cert()\u003c/code\u003e to ignore unknown extensions even if they're marked as critical. This only affects parsing a \u003ccode\u003eTrustAnchor\u003c/code\u003e from DER, for which most extensions are ignored anyway.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport parsing trust anchors with unknown critical extensions to 0.103 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/466\"\u003erustls/webpki#466\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.103.10\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eCorrect selection of candidate CRLs by Distribution Point and Issuing Distribution Point\u003c/strong\u003e. If a certificate had more than one \u003ccode\u003edistributionPoint\u003c/code\u003e, then only the first \u003ccode\u003edistributionPoint\u003c/code\u003e would be considered against each CRL's \u003ccode\u003eIssuingDistributionPoint\u003c/code\u003e \u003ccode\u003edistributionPoint\u003c/code\u003e, and then the certificate's subsequent \u003ccode\u003edistributionPoint\u003c/code\u003es would be ignored.\u003c/p\u003e\n\u003cp\u003eThe impact was that correctly provided CRLs would not be consulted to check revocation. With \u003ccode\u003eUnknownStatusPolicy::Deny\u003c/code\u003e (the default) this would lead to incorrect but safe \u003ccode\u003eError::UnknownRevocationStatus\u003c/code\u003e. With \u003ccode\u003eUnknownStatusPolicy::Allow\u003c/code\u003e this would lead to inappropriate acceptance of revoked certificates.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is thought to be of limited impact. This is because both the certificate and CRL are signed -- an attacker would need to compromise a trusted issuing authority to trigger this bug.  An attacker with such capa...\n\n_Description has been truncated_","html_url":"https://github.com/Klomgor/ente/pull/866","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Klomgor%2Fente/issues/866","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/866/packages"}},{"old_version":"1.10.1","new_version":"1.11.1","update_type":"minor","path":null,"pr_created_at":"2026-05-15T18:20:54.000Z","version_change":"1.10.1 → 1.11.1","issue":{"uuid":"4456055210","node_id":"PR_kwDONiSlpc7cBdJk","number":1042,"state":"closed","title":"build(deps): bump the cargo group across 3 directories with 7 updates","user":"dependabot[bot]","labels":["dependencies","rust"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-05-19T00:06:22.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-15T18:20:54.000Z","updated_at":"2026-05-19T00:06:24.000Z","time_to_close":279928,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"cargo","update_count":7,"packages":[{"name":"bytes","old_version":"1.10.1","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"rand","old_version":"0.8.5","new_version":"0.8.6","repository_url":"https://github.com/rust-random/rand"},{"name":"lru","old_version":"0.16.2","new_version":"0.16.4","repository_url":"https://github.com/jeromefroe/lru-rs"},{"name":"time","old_version":"0.3.37","new_version":"0.3.47","repository_url":"https://github.com/time-rs/time"},{"name":"oneshot","old_version":"0.1.8","new_version":"0.1.13","repository_url":"https://github.com/faern/oneshot"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 4 updates in the /crates/next-error-code-swc-plugin directory: [bytes](https://github.com/tokio-rs/bytes), [rand](https://github.com/rust-random/rand), [tracing-subscriber](https://github.com/tokio-rs/tracing) and [rkyv](https://github.com/rkyv/rkyv).\nBumps the cargo group with 5 updates in the /rspack directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.10.1` | `1.11.1` |\n| [rand](https://github.com/rust-random/rand) | `0.8.5` | `0.8.6` |\n| [lru](https://github.com/jeromefroe/lru-rs) | `0.16.2` | `0.16.4` |\n| [time](https://github.com/time-rs/time) | `0.3.37` | `0.3.47` |\n| [oneshot](https://github.com/faern/oneshot) | `0.1.8` | `0.1.13` |\n\nBumps the cargo group with 2 updates in the /test/e2e/swc-plugins-env/plugin directory: [rand](https://github.com/rust-random/rand) and [rkyv](https://github.com/rkyv/rkyv).\n\nUpdates `bytes` from 1.9.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.10.1\u003c/h2\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/bytes/pull/773\"\u003etokio-rs/bytes#773\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eBytes v1.10.0\u003c/h2\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.9.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.8.5 to 0.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tracing-subscriber` from 0.3.19 to 0.3.20\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/tracing/releases\"\u003etracing-subscriber's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003etracing-subscriber 0.3.20\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eSecurity Fix\u003c/strong\u003e: ANSI Escape Sequence Injection (CVE-TBD)\u003c/p\u003e\n\u003ch2\u003eImpact\u003c/h2\u003e\n\u003cp\u003ePrevious versions of tracing-subscriber were vulnerable to ANSI escape sequence injection attacks. Untrusted user input containing ANSI escape sequences could be injected into terminal output when logged, potentially allowing attackers to:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eManipulate terminal title bars\u003c/li\u003e\n\u003cli\u003eClear screens or modify terminal display\u003c/li\u003e\n\u003cli\u003ePotentially mislead users through terminal manipulation\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eIn isolation, impact is minimal, however security issues have been found in terminal emulators that enabled an attacker to use ANSI escape sequences via logs to exploit vulnerabilities in the terminal emulator.\u003c/p\u003e\n\u003ch2\u003eSolution\u003c/h2\u003e\n\u003cp\u003eVersion 0.3.20 fixes this vulnerability by escaping ANSI control characters in when writing events to destinations that may be printed to the terminal.\u003c/p\u003e\n\u003ch2\u003eAffected Versions\u003c/h2\u003e\n\u003cp\u003eAll versions of tracing-subscriber prior to 0.3.20 are affected by this vulnerability.\u003c/p\u003e\n\u003ch2\u003eRecommendations\u003c/h2\u003e\n\u003cp\u003eImmediate Action Required: We recommend upgrading to tracing-subscriber 0.3.20 immediately, especially if your application:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eLogs user-provided input (form data, HTTP headers, query parameters, etc.)\u003c/li\u003e\n\u003cli\u003eRuns in environments where terminal output is displayed to users\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eMigration\u003c/h2\u003e\n\u003cp\u003eThis is a patch release with no breaking API changes. Simply update your Cargo.toml:\u003c/p\u003e\n\u003cpre lang=\"toml\"\u003e\u003ccode\u003e[dependencies]\r\ntracing-subscriber = \u0026quot;0.3.20\u0026quot;\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch2\u003eAcknowledgments\u003c/h2\u003e\n\u003cp\u003eWe would like to thank \u003ca href=\"http://github.com/zefr0x\"\u003ezefr0x\u003c/a\u003e who responsibly reported the issue at \u003ccode\u003esecurity@tokio.rs\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eIf you believe you have found a security vulnerability in any tokio-rs project, please email us at \u003ccode\u003esecurity@tokio.rs\u003c/code\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/4c52ca5266a3920fc5dfeebda2accf15ee7fb278\"\u003e\u003ccode\u003e4c52ca5\u003c/code\u003e\u003c/a\u003e fmt: fix ANSI escape sequence injection vulnerability (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3368\"\u003e#3368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/f71cebe41e4c12735b1d19ca804428d4ff7d905d\"\u003e\u003ccode\u003ef71cebe\u003c/code\u003e\u003c/a\u003e subscriber: impl Clone for EnvFilter (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3360\"\u003e#3360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/3a1f571102b38bcdca13d59f3c454989d179055d\"\u003e\u003ccode\u003e3a1f571\u003c/code\u003e\u003c/a\u003e Fix CI (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3361\"\u003e#3361\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/e63ef57f3d686abe3727ddd586eb9af73d6715b7\"\u003e\u003ccode\u003ee63ef57\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-attributes 0.1.30 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3316\"\u003e#3316\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/6e59a13b1a7bcdd78b8b5a7cbcf70a0b2cdd76f0\"\u003e\u003ccode\u003e6e59a13\u003c/code\u003e\u003c/a\u003e attributes: fix tracing::instrument regression around shadowing (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3311\"\u003e#3311\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/e4df76127538aa8370d7dee32a6f84bbec6bbf10\"\u003e\u003ccode\u003ee4df761\u003c/code\u003e\u003c/a\u003e tracing: update core to 0.1.34 and attributes to 0.1.29 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3305\"\u003e#3305\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/643f392ebb73c4fb856f56a78c066c82582dd22c\"\u003e\u003ccode\u003e643f392\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-attributes 0.1.29 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3304\"\u003e#3304\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/d08e7a6eea1833810ea527e18ea03b08cd402c9d\"\u003e\u003ccode\u003ed08e7a6\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-core 0.1.34 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3302\"\u003e#3302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/6e70c571d319a033d5f37c885ccf99aa675a9eac\"\u003e\u003ccode\u003e6e70c57\u003c/code\u003e\u003c/a\u003e tracing-subscriber: count numbers of enters in \u003ccode\u003eTimings\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/2944\"\u003e#2944\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/c01d4fd9def2fb061669a310598095c789ca0a32\"\u003e\u003ccode\u003ec01d4fd\u003c/code\u003e\u003c/a\u003e fix docs and enable CI on \u003ccode\u003emain\u003c/code\u003e branch (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3295\"\u003e#3295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/tracing/compare/tracing-subscriber-0.3.19...tracing-subscriber-0.3.20\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rkyv` from 0.8.10 to 0.8.16\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rkyv/rkyv/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.10.1 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.10.1\u003c/h2\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/bytes/pull/773\"\u003etokio-rs/bytes#773\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eBytes v1.10.0\u003c/h2\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.9.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.8.5 to 0.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lru` from 0.16.2 to 0.16.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jeromefroe/lru-rs/blob/master/CHANGELOG.md\"\u003elru's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/jeromefroe/lru-rs/tree/0.16.4\"\u003ev0.16.4\u003c/a\u003e - 2026-04-13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eget_or_insert_with_key\u003c/code\u003e and variants.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/jeromefroe/lru-rs/tree/0.16.3\"\u003ev0.16.3\u003c/a\u003e - 2026-01-07\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix Stacked Borrows violation in \u003ccode\u003eIterMut\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jeromefroe/lru-rs/commit/d8c7f5ca51a86a8f561c14e21508a0f757aa05ad\"\u003e\u003ccode\u003ed8c7f5c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jeromefroe/lru-rs/issues/230\"\u003e#230\u003c/a\u003e from jeromefroe/jerome/prepare-0-16-4-release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jeromefroe/lru-rs/commit/bd5261b49947950e1b13f4d854327b33590d9d55\"\u003e\u003ccode\u003ebd5261b\u003c/code\u003e\u003c/a\u003e Prepare 0.16.4 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jeromefroe/lru-rs/commit/16e161d5ed5335b6e771aa7476560f2d9b67ce8b\"\u003e\u003ccode\u003e16e161d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jeromefroe/lru-rs/issues/229\"\u003e#229\u003c/a\u003e from pikatos/get_or_insert_with_key\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jeromefroe/lru-rs/commit/5135e8eb2639efbe4a061deebae5752ea88592b5\"\u003e\u003ccode\u003e5135e8e\u003c/code\u003e\u003c/a\u003e Apply suggestions from code review\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jeromefroe/lru-rs/commit/81c2ef05fd44c2b549fd4f316b3d44b220ef4e67\"\u003e\u003ccode\u003e81c2ef0\u003c/code\u003e\u003c/a\u003e Add get_or_insert_with_key variants\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jeromefroe/lru-rs/commit/af233e5c36a6b1be65e1c6d67ebf9601a71150fb\"\u003e\u003ccode\u003eaf233e5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jeromefroe/lru-rs/issues/225\"\u003e#225\u003c/a\u003e from jeromefroe/jerome/prepare-0-16-3-release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jeromefroe/lru-rs/commit/cf56f9a5ddfd435bf1905cf9c8815a582d0f7146\"\u003e\u003ccode\u003ecf56f9a\u003c/code\u003e\u003c/a\u003e Prepare 0.16.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jeromefroe/lru-rs/commit/62be24c96137fcf5c6323607ff15ed878b157ee2\"\u003e\u003ccode\u003e62be24c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jeromefroe/lru-rs/issues/224\"\u003e#224\u003c/a\u003e from paolobarbolini/iter-mut-stacked-borrows-violation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jeromefroe/lru-rs/commit/25669e76110133c73d72f1db0069934ba590162a\"\u003e\u003ccode\u003e25669e7\u003c/code\u003e\u003c/a\u003e Add regression test for \u003ccode\u003eIterMut\u003c/code\u003e stacked borrows violation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jeromefroe/lru-rs/commit/b9bca3492d75139097df3b018b6abdf5825ee868\"\u003e\u003ccode\u003eb9bca34\u003c/code\u003e\u003c/a\u003e Fix stacked borrows violation in \u003ccode\u003eIterMut::next\u003c/code\u003e and \u003ccode\u003eIterMut::next_back\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/jeromefroe/lru-rs/compare/0.16.2...0.16.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.37 to 0.3.47\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.47\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.46\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.45\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.44\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.43\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.42\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.41\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.40\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.39\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.38\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003etime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.47 [2026-02-05]\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eThe possibility of a stack exhaustion denial of service attack when parsing RFC 2822 has been\neliminated. Previously, it was possible to craft input that would cause unbounded recursion. Now,\nthe depth of the recursion is tracked, causing an error to be returned if it exceeds a reasonable\nlimit.\u003c/p\u003e\n\u003cp\u003eThis attack vector requires parsing user-provided input, with any type, using the RFC 2822 format.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCompatibility\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAttempting to format a value with a well-known format (i.e. RFC 3339, RFC 2822, or ISO 8601) will\nerror at compile time if the type being formatted does not provide sufficient information. This\nwould previously fail at runtime. Similarly, attempting to format a value with ISO 8601 that is\nonly configured for parsing (i.e. \u003ccode\u003eIso8601::PARSING\u003c/code\u003e) will error at compile time.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBuilder methods for format description modifiers, eliminating the need for verbose initialization\nwhen done manually.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edate!(2026-W01-2)\u003c/code\u003e is now supported. Previously, a space was required between \u003ccode\u003eW\u003c/code\u003e and \u003ccode\u003e01\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[end]\u003c/code\u003e now has a \u003ccode\u003etrailing_input\u003c/code\u003e modifier which can either be \u003ccode\u003eprohibit\u003c/code\u003e (the default) or\n\u003ccode\u003ediscard\u003c/code\u003e. When it is \u003ccode\u003ediscard\u003c/code\u003e, all remaining input is ignored. Note that if there are components\nafter \u003ccode\u003e[end]\u003c/code\u003e, they will still attempt to be parsed, likely resulting in an error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMore performance gains when parsing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIf manually formatting a value, the number of bytes written was one short for some components.\nThis has been fixed such that the number of bytes written is always correct.\u003c/li\u003e\n\u003cli\u003eThe possibility of integer overflow when parsing an owned format description has been effectively\neliminated. This would previously wrap when overflow checks were disabled. Instead of storing the\ndepth as \u003ccode\u003eu8\u003c/code\u003e, it is stored as \u003ccode\u003eu32\u003c/code\u003e. This would require multiple gigabytes of nested input to\noverflow, at which point we've got other problems and trivial mitigations are available by\ndownstream users.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.46 [2026-01-23]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAll possible panics are now documented for the relevant methods.\u003c/li\u003e\n\u003cli\u003eThe need to use \u003ccode\u003e#[serde(default)]\u003c/code\u003e when using custom \u003ccode\u003eserde\u003c/code\u003e formats is documented. This applies\nonly when deserializing an \u003ccode\u003eOption\u0026lt;T\u0026gt;\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDuration::nanoseconds_i128\u003c/code\u003e has been made public, mirroring\n\u003ccode\u003estd::time::Duration::from_nanos_u128\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/d5144cd2874862d46466c900910cd8577d066019\"\u003e\u003ccode\u003ed5144cd\u003c/code\u003e\u003c/a\u003e v0.3.47 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/f6206b050fd54817d8872834b4d61f605570e89b\"\u003e\u003ccode\u003ef6206b0\u003c/code\u003e\u003c/a\u003e Guard against integer overflow in release mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/1c63dc7985b8fa26bd8c689423cc56b7a03841ee\"\u003e\u003ccode\u003e1c63dc7\u003c/code\u003e\u003c/a\u003e Avoid denial of service when parsing Rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/5940df6e72efb63d246ca1ca59a0f836ad32ad8a\"\u003e\u003ccode\u003e5940df6\u003c/code\u003e\u003c/a\u003e Add builder methods to avoid verbose construction\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/00881a4da1bc5a6cb6313052e5017dbd7daa40f0\"\u003e\u003ccode\u003e00881a4\u003c/code\u003e\u003c/a\u003e Manually format macros everywhere\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/bb723b6d826e46c174d75cd08987061984b0ceb7\"\u003e\u003ccode\u003ebb723b6\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003etrailing_input\u003c/code\u003e modifier to \u003ccode\u003eend\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/31c4f8e0b56e6ae24fe0d6ef0e492b6741dda783\"\u003e\u003ccode\u003e31c4f8e\u003c/code\u003e\u003c/a\u003e Permit \u003ccode\u003eW12\u003c/code\u003e in \u003ccode\u003edate!\u003c/code\u003e macro\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/490a17bf306576850f33a86d3ca95d96db7b1dcd\"\u003e\u003ccode\u003e490a17b\u003c/code\u003e\u003c/a\u003e Mark error paths in well-known formats as cold\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6cb1896a600be1538ecfab8f233fe9cfe9fa8951\"\u003e\u003ccode\u003e6cb1896\u003c/code\u003e\u003c/a\u003e Optimize \u003ccode\u003eRfc2822\u003c/code\u003e parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6d264d59c25e3da0453c3defebf4640b0086a006\"\u003e\u003ccode\u003e6d264d5\u003c/code\u003e\u003c/a\u003e Remove erroneous \u003ccode\u003e#[inline(never)]\u003c/code\u003e attributes\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/time-rs/time/compare/v0.3.37...v0.3.47\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `oneshot` from 0.1.8 to 0.1.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/faern/oneshot/releases\"\u003eoneshot's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.1.13\u003c/h2\u003e\n\u003ch2\u003e[0.1.13] - 2026-01-26\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix documentation building on docs.rs by not using removed \u003ccode\u003edoc_auto_cfg\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/faern/oneshot/blob/main/CHANGELOG.md\"\u003eoneshot's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.1.13] - 2026-01-26\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix documentation building on docs.rs by not using removed \u003ccode\u003edoc_auto_cfg\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.1.12] - 2026-01-25\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix race condition that could lead to use-after-free if the \u003ccode\u003eReceiver\u003c/code\u003e was polled asynchronously,\nbut then dropped before completion. \u003ca href=\"https://redirect.github.com/faern/oneshot/pull/74\"\u003efaern/oneshot#74\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix race conditions/UB around atomic memory orderings. These were found by running tests under\nmiri. \u003ca href=\"https://redirect.github.com/faern/oneshot/pull/72\"\u003efaern/oneshot#72\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.1.11] - 2025-02-22\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eHandle the \u003ccode\u003eUNPARKING\u003c/code\u003e state correctly in \u003ccode\u003eReceiver::drop()\u003c/code\u003e. Fixes a panic that could\noccur if a \u003ccode\u003eReceiver\u003c/code\u003e had been first polled as a future and then was being dropped\nin parallel with the \u003ccode\u003eSender\u003c/code\u003e sending a message.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.1.10] - 2025-02-04\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eis_closed\u003c/code\u003e and \u003ccode\u003ehas_message\u003c/code\u003e to the \u003ccode\u003eReceiver\u003c/code\u003e. Allows polling for the channel\nstate without modifying the channel or pulling the message from it.\u003c/li\u003e\n\u003cli\u003eMake the cargo features show up on docs.rs for better discoverability.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.1.9] - 2025-02-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImplement \u003ccode\u003eSync\u003c/code\u003e for \u003ccode\u003eSender\u003c/code\u003e. There is not a whole lot someone can do with a \u003ccode\u003e\u0026amp;Sender\u003c/code\u003e,\nbut this allows storing the sender in places that are overly conservative and require\na \u003ccode\u003eSync\u003c/code\u003e bound on the content.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/a6a03981ec4d9aa3abb4445f0b90919d08a746ad\"\u003e\u003ccode\u003ea6a0398\u003c/code\u003e\u003c/a\u003e Bump version to 0.1.13 and fix changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/7615d9e008a36396f84202b23f4a5caa36722e22\"\u003e\u003ccode\u003e7615d9e\u003c/code\u003e\u003c/a\u003e Stop using removed doc_auto_cfg feature when building for docs.rs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/537d5de4b6a8e1f2cb8224a2a7c91b851f0226d0\"\u003e\u003ccode\u003e537d5de\u003c/code\u003e\u003c/a\u003e Bump version to 0.1.12 and fix changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/9cc3153a7d1bd577644b04978f30f2761ebdeb44\"\u003e\u003ccode\u003e9cc3153\u003c/code\u003e\u003c/a\u003e Merge branch 'improve-start_recv_ref'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/cc3d6a2b962c87012448af83644ee13b300cebaa\"\u003e\u003ccode\u003ecc3d6a2\u003c/code\u003e\u003c/a\u003e Improve start_recv_ref to be more like regular recv method\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/78c74769797a404100c675cd11ff685e91e871f8\"\u003e\u003ccode\u003e78c7476\u003c/code\u003e\u003c/a\u003e Merge branch 'update-documentation'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/38d7f6f2cd3b1e8676ee7761c08f962e517cfdf1\"\u003e\u003ccode\u003e38d7f6f\u003c/code\u003e\u003c/a\u003e Add clarifying documentation on sender observing RECEIVING state\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/21e03100742110fe61b87c0350dafa2254c70d11\"\u003e\u003ccode\u003e21e0310\u003c/code\u003e\u003c/a\u003e Synchronize readme with crate documentation in lib.rs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/def74fc6fe2f7aa9dccb67214896e2bd0173baa1\"\u003e\u003ccode\u003edef74fc\u003c/code\u003e\u003c/a\u003e Fix spelling and grammar errors in documentation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/faern/oneshot/commit/70031a4282ac78ccb412bdb9163c8f185e13a519\"\u003e\u003ccode\u003e70031a4\u003c/code\u003e\u003c/a\u003e Add documentation about how send and receive are synchronized\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/faern/oneshot/compare/v0.1.8...v0.1.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.8.5 to 0.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rkyv` from 0.8.15 to 0.8.16\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rkyv/rkyv/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Pcnaid-Dev/Next.js-Coder/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Pcnaid-Dev/Next.js-Coder/pull/1042","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Pcnaid-Dev%2FNext.js-Coder/issues/1042","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1042/packages"}},{"old_version":"1.10.1","new_version":"1.11.1","update_type":"minor","path":null,"pr_created_at":"2026-05-15T00:40:08.000Z","version_change":"1.10.1 → 1.11.1","issue":{"uuid":"4450335173","node_id":"PR_kwDOEMu_tc7bvFY2","number":105,"state":"open","title":"Bump the security group across 1 directory with 6 updates","user":"dependabot[bot]","labels":["cause::dependency","automation::dependabot","type::chore","ecosystem::rust"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-15T00:40:08.000Z","updated_at":"2026-05-20T19:46:48.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"security","update_count":6,"packages":[{"name":"git2","old_version":"0.20.2","new_version":"0.21.0","repository_url":"https://github.com/rust-lang/git2-rs"},{"name":"time","old_version":"0.3.44","new_version":"0.3.47","repository_url":"https://github.com/time-rs/time"},{"name":"actix-http","old_version":"3.11.1","new_version":"3.12.1","repository_url":"https://github.com/actix/actix-web"},{"name":"bytes","old_version":"1.10.1","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"gix-date","old_version":"0.11.0","new_version":"0.11.1","repository_url":"https://github.com/GitoxideLabs/gitoxide"},{"name":"rustls-webpki","old_version":"0.103.8","new_version":"0.103.13","repository_url":"https://github.com/rustls/webpki"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the security group with 6 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [git2](https://github.com/rust-lang/git2-rs) | `0.20.2` | `0.21.0` |\n| [time](https://github.com/time-rs/time) | `0.3.44` | `0.3.47` |\n| [actix-http](https://github.com/actix/actix-web) | `3.11.1` | `3.12.1` |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.10.1` | `1.11.1` |\n| [gix-date](https://github.com/GitoxideLabs/gitoxide) | `0.11.0` | `0.11.1` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.103.8` | `0.103.13` |\n\n\nUpdates `git2` from 0.20.2 to 0.21.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/git2-rs/blob/main/CHANGELOG.md\"\u003egit2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.21.0 - TBD\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/compare/git2-0.20.4...main\"\u003e0.20.4...main\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded experimental SHA256 repository support behind the new \u003ccode\u003eunstable-sha256\u003c/code\u003e Cargo feature,\nalong with \u003ccode\u003e*_ext\u003c/code\u003e API variants that accept an \u003ccode\u003eObjectFormat\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1206\"\u003e#1206\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eopts::set_cache_max_size()\u003c/code\u003e and \u003ccode\u003eopts::get_cached_memory()\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1188\"\u003e#1188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eRepository::object_format()\u003c/code\u003e and a new \u003ccode\u003eObjectFormat\u003c/code\u003e enum.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1204\"\u003e#1204\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eRepository::set_config()\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1208\"\u003e#1208\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003emerge_file()\u003c/code\u003e along with \u003ccode\u003eMergeFileInput\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1210\"\u003e#1210\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eRepository::refdb_compress()\u003c/code\u003e for packing loose refs.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1221\"\u003e#1221\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded public \u003ccode\u003eRefdb\u003c/code\u003e type, along with \u003ccode\u003eRepository::refdb()\u003c/code\u003e and \u003ccode\u003eRepository::set_refdb()\u003c/code\u003e. \u003ccode\u003eRepository::refdb_compress()\u003c/code\u003e now delegates to \u003ccode\u003eRefdb::compress()\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1228\"\u003e#1228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eRevspec::into_objects()\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1230\"\u003e#1230\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eBlameHunk::final_committer()\u003c/code\u003e, \u003ccode\u003eBlameHunk::orig_committer()\u003c/code\u003e, \u003ccode\u003eBlameHunk::summary()\u003c/code\u003e, and \u003ccode\u003eBlameHunk::summary_bytes()\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1231\"\u003e#1231\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImplemented \u003ccode\u003eClone\u003c/code\u003e for \u003ccode\u003eReference\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1233\"\u003e#1233\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eRepository::author_from_env()\u003c/code\u003e and \u003ccode\u003eRepository::committer_from_env()\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1237\"\u003e#1237\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eimpl From\u0026lt;Utf8Error\u0026gt; for Error\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1239\"\u003e#1239\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e❗ The \u003ccode\u003essh\u003c/code\u003e, \u003ccode\u003ehttps\u003c/code\u003e, and \u003ccode\u003ecred\u003c/code\u003e Cargo features are no longer enabled by default.\nPreviously \u003ccode\u003edefault = [\u0026quot;ssh\u0026quot;, \u0026quot;https\u0026quot;]\u003c/code\u003e; now \u003ccode\u003edefault = []\u003c/code\u003e.\nEnable them explicitly if you rely on credential helpers or transport support.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1168\"\u003e#1168\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e❗ \u003ccode\u003eCredentialHelper\u003c/code\u003e and the \u003ccode\u003eurl\u003c/code\u003e dependency are now gated behind the new \u003ccode\u003ecred\u003c/code\u003e Cargo feature.\nEnabling \u003ccode\u003essh\u003c/code\u003e or \u003ccode\u003ehttps\u003c/code\u003e transitively enables \u003ccode\u003ecred\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1168\"\u003e#1168\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e❗ Updated to the 2021 edition.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1173\"\u003e#1173\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e❗ Many string accessors that previously returned \u003ccode\u003eOption\u0026lt;\u0026amp;str\u0026gt;\u003c/code\u003e\nnow return \u003ccode\u003eResult\u0026lt;\u0026amp;str, Error\u0026gt;\u003c/code\u003e or \u003ccode\u003eResult\u0026lt;Option\u0026lt;\u0026amp;str\u0026gt;, Error\u0026gt;\u003c/code\u003e,\nso callers can distinguish a missing value from a non-UTF-8 one.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1241\"\u003e#1241\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e❗ \u003ccode\u003eBlameHunk::final_signature\u003c/code\u003e, \u003ccode\u003eBlameHunk::final_committer\u003c/code\u003e, \u003ccode\u003eBlameHunk::orig_signature\u003c/code\u003e, and \u003ccode\u003eBlameHunk::orig_committer\u003c/code\u003e\nnow return \u003ccode\u003eOption\u003c/code\u003e to avoid segfaults when signature information is missing.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1254\"\u003e#1254\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumped requirement to libgit2-sys 0.18.4, which updates libgit2 to 1.9.3.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/dffaf272eb0e62ac15b74283c4e488252db9afc3\"\u003e\u003ccode\u003edffaf27\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/issues/1256\"\u003e#1256\u003c/a\u003e from weihanglo/changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/84b9c76ee516cc514978db0e51fd6750cc215326\"\u003e\u003ccode\u003e84b9c76\u003c/code\u003e\u003c/a\u003e docs: changelog for git2@0.21\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/8c6dc4a336a2671c4a56e15159c4ea4e102388f6\"\u003e\u003ccode\u003e8c6dc4a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/issues/1206\"\u003e#1206\u003c/a\u003e from weihanglo/sha256-git2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/7bd145ee23884f19d1d79ce0e46c1ab105784040\"\u003e\u003ccode\u003e7bd145e\u003c/code\u003e\u003c/a\u003e fix: import \u003ccode\u003eObjectFormat\u003c/code\u003e in one place\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/fc8af6ad26b0e1bc126d997cf30407e8561195c6\"\u003e\u003ccode\u003efc8af6a\u003c/code\u003e\u003c/a\u003e test(oid): split \u003ccode\u003e_ext\u003c/code\u003e to test each format separately\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/b9bde87d80eb58cc87afe22e16bd581c2bb11618\"\u003e\u003ccode\u003eb9bde87\u003c/code\u003e\u003c/a\u003e test: oid length sanity check\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/57a68e0729a014e92e0704c3382037f36979c13d\"\u003e\u003ccode\u003e57a68e0\u003c/code\u003e\u003c/a\u003e feat(oid): impl Display for ObjectFormat\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/7acee09983d45fb6b3c0680e59838fb9619e5149\"\u003e\u003ccode\u003e7acee09\u003c/code\u003e\u003c/a\u003e chore(ci): test git2 sha256 support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/bdf5b7bf4aa13b9a2ed6e85d8d2d884b83fffcc7\"\u003e\u003ccode\u003ebdf5b7b\u003c/code\u003e\u003c/a\u003e fix: init example with \u003ccode\u003e--object-format\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/9fb4e6aeaeb17868c5e86e8ee67545c57d070ced\"\u003e\u003ccode\u003e9fb4e6a\u003c/code\u003e\u003c/a\u003e refactor(util): drop \u003ccode\u003eunsafe\u003c/code\u003e from \u003ccode\u003ezeroed_raw_oid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-lang/git2-rs/compare/git2-0.20.2...git2-0.21.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.44 to 0.3.47\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.47\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.46\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.45\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003etime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.47 [2026-02-05]\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eThe possibility of a stack exhaustion denial of service attack when parsing RFC 2822 has been\neliminated. Previously, it was possible to craft input that would cause unbounded recursion. Now,\nthe depth of the recursion is tracked, causing an error to be returned if it exceeds a reasonable\nlimit.\u003c/p\u003e\n\u003cp\u003eThis attack vector requires parsing user-provided input, with any type, using the RFC 2822 format.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCompatibility\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAttempting to format a value with a well-known format (i.e. RFC 3339, RFC 2822, or ISO 8601) will\nerror at compile time if the type being formatted does not provide sufficient information. This\nwould previously fail at runtime. Similarly, attempting to format a value with ISO 8601 that is\nonly configured for parsing (i.e. \u003ccode\u003eIso8601::PARSING\u003c/code\u003e) will error at compile time.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBuilder methods for format description modifiers, eliminating the need for verbose initialization\nwhen done manually.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edate!(2026-W01-2)\u003c/code\u003e is now supported. Previously, a space was required between \u003ccode\u003eW\u003c/code\u003e and \u003ccode\u003e01\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[end]\u003c/code\u003e now has a \u003ccode\u003etrailing_input\u003c/code\u003e modifier which can either be \u003ccode\u003eprohibit\u003c/code\u003e (the default) or\n\u003ccode\u003ediscard\u003c/code\u003e. When it is \u003ccode\u003ediscard\u003c/code\u003e, all remaining input is ignored. Note that if there are components\nafter \u003ccode\u003e[end]\u003c/code\u003e, they will still attempt to be parsed, likely resulting in an error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMore performance gains when parsing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIf manually formatting a value, the number of bytes written was one short for some components.\nThis has been fixed such that the number of bytes written is always correct.\u003c/li\u003e\n\u003cli\u003eThe possibility of integer overflow when parsing an owned format description has been effectively\neliminated. This would previously wrap when overflow checks were disabled. Instead of storing the\ndepth as \u003ccode\u003eu8\u003c/code\u003e, it is stored as \u003ccode\u003eu32\u003c/code\u003e. This would require multiple gigabytes of nested input to\noverflow, at which point we've got other problems and trivial mitigations are available by\ndownstream users.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.46 [2026-01-23]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAll possible panics are now documented for the relevant methods.\u003c/li\u003e\n\u003cli\u003eThe need to use \u003ccode\u003e#[serde(default)]\u003c/code\u003e when using custom \u003ccode\u003eserde\u003c/code\u003e formats is documented. This applies\nonly when deserializing an \u003ccode\u003eOption\u0026lt;T\u0026gt;\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDuration::nanoseconds_i128\u003c/code\u003e has been made public, mirroring\n\u003ccode\u003estd::time::Duration::from_nanos_u128\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/d5144cd2874862d46466c900910cd8577d066019\"\u003e\u003ccode\u003ed5144cd\u003c/code\u003e\u003c/a\u003e v0.3.47 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/f6206b050fd54817d8872834b4d61f605570e89b\"\u003e\u003ccode\u003ef6206b0\u003c/code\u003e\u003c/a\u003e Guard against integer overflow in release mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/1c63dc7985b8fa26bd8c689423cc56b7a03841ee\"\u003e\u003ccode\u003e1c63dc7\u003c/code\u003e\u003c/a\u003e Avoid denial of service when parsing Rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/5940df6e72efb63d246ca1ca59a0f836ad32ad8a\"\u003e\u003ccode\u003e5940df6\u003c/code\u003e\u003c/a\u003e Add builder methods to avoid verbose construction\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/00881a4da1bc5a6cb6313052e5017dbd7daa40f0\"\u003e\u003ccode\u003e00881a4\u003c/code\u003e\u003c/a\u003e Manually format macros everywhere\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/bb723b6d826e46c174d75cd08987061984b0ceb7\"\u003e\u003ccode\u003ebb723b6\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003etrailing_input\u003c/code\u003e modifier to \u003ccode\u003eend\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/31c4f8e0b56e6ae24fe0d6ef0e492b6741dda783\"\u003e\u003ccode\u003e31c4f8e\u003c/code\u003e\u003c/a\u003e Permit \u003ccode\u003eW12\u003c/code\u003e in \u003ccode\u003edate!\u003c/code\u003e macro\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/490a17bf306576850f33a86d3ca95d96db7b1dcd\"\u003e\u003ccode\u003e490a17b\u003c/code\u003e\u003c/a\u003e Mark error paths in well-known formats as cold\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6cb1896a600be1538ecfab8f233fe9cfe9fa8951\"\u003e\u003ccode\u003e6cb1896\u003c/code\u003e\u003c/a\u003e Optimize \u003ccode\u003eRfc2822\u003c/code\u003e parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6d264d59c25e3da0453c3defebf4640b0086a006\"\u003e\u003ccode\u003e6d264d5\u003c/code\u003e\u003c/a\u003e Remove erroneous \u003ccode\u003e#[inline(never)]\u003c/code\u003e attributes\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/time-rs/time/compare/v0.3.44...v0.3.47\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actix-http` from 3.11.1 to 3.12.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actix/actix-web/releases\"\u003eactix-http's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eactix-http: v3.12.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eNotice: This release contains a security fix. Users are encouraged to update to this version ASAP.\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eSECURITY: Reject HTTP/1 requests with ambiguous request framing from \u003ccode\u003eContent-Length\u003c/code\u003e and \u003ccode\u003eTransfer-Encoding\u003c/code\u003e headers to prevent request smuggling.\u003c/li\u003e\n\u003cli\u003eEncode the HTTP/1 \u003ccode\u003eConnection: Upgrade\u003c/code\u003e header in Camel-Case when camel-case header formatting is enabled.\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3953\"\u003e#3953\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eHeaderMap\u003c/code\u003e iterators' \u003ccode\u003elen()\u003c/code\u003e and \u003ccode\u003esize_hint()\u003c/code\u003e implementations for multi-value headers.\u003c/li\u003e\n\u003cli\u003eUpdate \u003ccode\u003erand\u003c/code\u003e dependency to \u003ccode\u003e0.10\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eUpdate \u003ccode\u003esha1\u003c/code\u003e dependency to \u003ccode\u003e0.11\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3953\"\u003e#3953\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/actix/actix-web/pull/3953\"\u003eactix/actix-web#3953\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eactix-http: v3.12.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMinimum supported Rust version (MSRV) is now 1.88.\u003c/li\u003e\n\u003cli\u003eIncrease default HTTP/2 flow control window sizes. \u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3638\"\u003e#3638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose configuration methods to improve upload throughput. \u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3638\"\u003e#3638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix truncated body ending without error when connection closed abnormally. \u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3067\"\u003e#3067\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd config/method for \u003ccode\u003eTCP_NODELAY\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3918\"\u003e#3918\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDo not compress 206 Partial Content responses. \u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3191\"\u003e#3191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix lingering sockets and client stalls when responding early to dropped chunked request payloads. \u003ca href=\"https://redirect.github.com/actix/actix-web/issues/2972\"\u003e#2972\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3638\"\u003e#3638\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3638\"\u003eactix/actix-web#3638\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3067\"\u003e#3067\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/actix/actix-web/pull/3067\"\u003eactix/actix-web#3067\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3918\"\u003e#3918\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/actix/actix-web/pull/3918\"\u003eactix/actix-web#3918\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3191\"\u003e#3191\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/actix/actix-web/issues/3191\"\u003eactix/actix-web#3191\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/2972\"\u003e#2972\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/actix/actix-web/issues/2972\"\u003eactix/actix-web#2972\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eactix-http: v3.11.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eProperly wake Payload receivers when feeding errors or EOF.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eServiceConfigBuilder\u003c/code\u003e type to facilitate future configuration extensions.\u003c/li\u003e\n\u003cli\u003eAdd a configuration option to allow/disallow half closed connections in HTTP/1. This defaults to allow, reverting the change made in 3.11.1.\u003c/li\u003e\n\u003cli\u003eShutdown connections when HTTP Responses are written without reading full Requests.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actix/actix-web/commit/0fb89457eda4a78a4cb7ccb3fdebe49a143ce2d5\"\u003e\u003ccode\u003e0fb8945\u003c/code\u003e\u003c/a\u003e chore(http): prepare v3.12.1 (\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/4029\"\u003e#4029\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actix/actix-web/commit/3c056bd36128d41ba130a8704ef5d648de3f2870\"\u003e\u003ccode\u003e3c056bd\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actix/actix-web/commit/e6d09913d9ebac53c8654a3574c19861900227f5\"\u003e\u003ccode\u003ee6d0991\u003c/code\u003e\u003c/a\u003e chore(multipart,derive): prepare 0.8.0 (\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/4027\"\u003e#4027\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actix/actix-web/commit/4434a494eef7706aa3fbd82fe77e1be92e943f2e\"\u003e\u003ccode\u003e4434a49\u003c/code\u003e\u003c/a\u003e fix(multipart): count ignored fields towards \u003ccode\u003eMultipartFormConfig\u003c/code\u003e li… (\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/4026\"\u003e#4026\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actix/actix-web/commit/be62050f9d7f3aa92812870d87bd6635fae7fdc9\"\u003e\u003ccode\u003ebe62050\u003c/code\u003e\u003c/a\u003e fix(multipart): set cap for parser buffering (\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/4025\"\u003e#4025\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actix/actix-web/commit/be4566d669a8e3900526616f9df6ec0ee71856c2\"\u003e\u003ccode\u003ebe4566d\u003c/code\u003e\u003c/a\u003e fix(multipart): do not parse with fixed index not to panic (\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/4024\"\u003e#4024\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actix/actix-web/commit/6d2c2f44622aef2ad5e115a3dba3bb80f12e020e\"\u003e\u003ccode\u003e6d2c2f4\u003c/code\u003e\u003c/a\u003e chore(http): upgrade \u003ccode\u003esha1\u003c/code\u003e to 0.11 (\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/4022\"\u003e#4022\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actix/actix-web/commit/253cd4f9771c3094b6cdb4350b9e8e7ae53fad75\"\u003e\u003ccode\u003e253cd4f\u003c/code\u003e\u003c/a\u003e chore: address new advisories (\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/4023\"\u003e#4023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actix/actix-web/commit/e766ca61f14a5614aebe58d164df49d8de118606\"\u003e\u003ccode\u003ee766ca6\u003c/code\u003e\u003c/a\u003e chore: upgrade rand to 0.10.1 (\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/4021\"\u003e#4021\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actix/actix-web/commit/d7479594c432f4400d3c7d07f899b11102653b45\"\u003e\u003ccode\u003ed747959\u003c/code\u003e\u003c/a\u003e build(deps): bump EmbarkStudios/cargo-deny-action from 2.0.15 to 2.0.16 (\u003ca href=\"https://redirect.github.com/actix/actix-web/issues/4018\"\u003e#4018\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actix/actix-web/compare/http-v3.11.1...http-v3.12.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.10.1 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.10.1...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `gix-date` from 0.11.0 to 0.11.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/GitoxideLabs/gitoxide/blob/main/CHANGELOG.md\"\u003egix-date's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003cp\u003eAll notable changes to this project will be documented in this file.\u003c/p\u003e\n\u003cp\u003eThe format is based on \u003ca href=\"https://keepachangelog.com/en/1.0.0/\"\u003eKeep a Changelog\u003c/a\u003e,\nand this project adheres to \u003ca href=\"https://semver.org/spec/v2.0.0.html\"\u003eSemantic Versioning\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003e0.53.0 (2026-04-28)\u003c/h2\u003e\n\u003ch2\u003e0.52.1 (2026-04-24)\u003c/h2\u003e\n\u003ch3\u003eNew Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e add \u003ccode\u003egix free trust\u003c/code\u003e to easily check the assigned trust level of any given path\nThis is particularly useful on Windows, which makes it easy to probe existing paths\nwith ownership that might be complex to reproduce otherwise.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommit Statistics\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cul\u003e\n\u003cli\u003e6 commits contributed to the release over the course of 27 calendar days.\u003c/li\u003e\n\u003cli\u003e32 days passed between releases.\u003c/li\u003e\n\u003cli\u003e1 commit was understood as \u003ca href=\"https://www.conventionalcommits.org\"\u003econventional\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e0 issues like '(#ID)' were seen in commit messages\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks Clippy\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/rust-lang/rust-clippy\"\u003eClippy\u003c/a\u003e helped 1 time to make code idiomatic.\u003c/p\u003e\n\u003ch3\u003eCommit Details\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eUncategorized\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003eMerge pull request \u003ca href=\"https://redirect.github.com/GitoxideLabs/gitoxide/issues/2510\"\u003e#2510\u003c/a\u003e from GitoxideLabs/folder-identity-on-windows (\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/a96587c23b267f74065ac9bed2e50de69113e67f\"\u003e\u003ccode\u003ea96587c\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003egix free trust\u003c/code\u003e to easily check the assigned trust level of any given path (\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/ab2016f634d3138ec9312b541558bbb2da27f3c7\"\u003e\u003ccode\u003eab2016f\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMerge pull request \u003ca href=\"https://redirect.github.com/GitoxideLabs/gitoxide/issues/2513\"\u003e#2513\u003c/a\u003e from GitoxideLabs/v2-diff (\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/2a5db88d0330b0d125de4b6f3819f17a7f76f4b8\"\u003e\u003ccode\u003e2a5db88\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThanks clippy (\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/e4f380eff3b0440002f7e9b64a14ddcfbe63192a\"\u003e\u003ccode\u003ee4f380e\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMerge pull request \u003ca href=\"https://redirect.github.com/GitoxideLabs/gitoxide/issues/2494\"\u003e#2494\u003c/a\u003e from GitoxideLabs/improvements (\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/50fb46f17acba7d75d4ed6795b7b9cef484e34c6\"\u003e\u003ccode\u003e50fb46f\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdapt to changes in \u003ccode\u003egix-config\u003c/code\u003e. (\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/344218a4946008f54bda2f1a6bbce15e84c1df3c\"\u003e\u003ccode\u003e344218a\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e0.52.0 (2026-03-22)\u003c/h2\u003e\n\u003ch2\u003e0.51.0 (2026-02-22)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/21fecdf928336ac5fa3dd1402f92e8200d8aff62\"\u003e\u003ccode\u003e21fecdf\u003c/code\u003e\u003c/a\u003e Release gix-date v0.11.1, gix-actor v0.36.1, gix-trace v0.1.16, gix-features ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/b1616eb08e3114415aa1b94d1a3bfe1a499daec6\"\u003e\u003ccode\u003eb1616eb\u003c/code\u003e\u003c/a\u003e Add report for December 25\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/3cf78c37fec010f22f8dea338d8d353de7312590\"\u003e\u003ccode\u003e3cf78c3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/GitoxideLabs/gitoxide/issues/2272\"\u003e#2272\u003c/a\u003e from GitoxideLabs/copilot/add-gix-date-baseline-tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/fad821910b7ec420e2924d895c646c291ad7b8aa\"\u003e\u003ccode\u003efad8219\u003c/code\u003e\u003c/a\u003e refactor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/7dfb2dab7cb2998c824cb85ee73b22b22752eb0a\"\u003e\u003ccode\u003e7dfb2da\u003c/code\u003e\u003c/a\u003e feat: Add comprehensive data parsing support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/25099c8e3675da0fa7e9e97f6adace3c8a4a45ea\"\u003e\u003ccode\u003e25099c8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/GitoxideLabs/gitoxide/issues/2294\"\u003e#2294\u003c/a\u003e from GitoxideLabs/copilot/replace-zip-crate-with-rawzip\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/fb6386b319bcadcbda8982cec745c66f13fd2a5f\"\u003e\u003ccode\u003efb6386b\u003c/code\u003e\u003c/a\u003e Address copilot review\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/8c9b4d6234e7fe2cd3208fa8b1e9791129c671c1\"\u003e\u003ccode\u003e8c9b4d6\u003c/code\u003e\u003c/a\u003e refactor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/60290f10d5da07552d93a36d1cd76ee45a9883e6\"\u003e\u003ccode\u003e60290f1\u003c/code\u003e\u003c/a\u003e Replace zip crate with rawzip in gix-archive\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GitoxideLabs/gitoxide/commit/b77744f599d57d2fc9a710daf06c74387f6a60f9\"\u003e\u003ccode\u003eb77744f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/GitoxideLabs/gitoxide/issues/2298\"\u003e#2298\u003c/a\u003e from GitoxideLabs/copilot/replace-libz-rs-sys-with-z...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/GitoxideLabs/gitoxide/compare/gix-date-v0.11.0...gix-date-v0.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls-webpki` from 0.103.8 to 0.103.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rustls/webpki/releases\"\u003erustls-webpki's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.103.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix reachable panic in parsing a CRL\u003c/strong\u003e. This was reported to us as \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-82j2-j2ch-gfr8\"\u003eGHSA-82j2-j2ch-gfr8\u003c/a\u003e. Users who don't use CRLs are not affected.\u003c/li\u003e\n\u003cli\u003eFor name constraints on URI names, we incorrectly processed excluded subtrees in a way which inverted the desired meaning. See \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/471\"\u003erustls/webpki#471\u003c/a\u003e. This was a case missing in the fix for \u003ca href=\"https://github.com/advisories/GHSA-965h-392x-2mh5\"\u003ehttps://github.com/advisories/GHSA-965h-392x-2mh5\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eActually fail closed for URI matching against excluded subtrees by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/473\"\u003erustls/webpki#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.13 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/474\"\u003erustls/webpki#474\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.12\u003c/h2\u003e\n\u003cp\u003eThis release fixes two bugs in name constraint enforcement:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-965h-392x-2mh5\u003c/strong\u003e: name constraints for URI names were ignored and therefore accepted. URI name constraints are now rejected unconditionally. Note this library does not provide an API for asserting URI names, and URI name constraints are otherwise not implemented.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-xgp8-3hg3-c2mh\u003c/strong\u003e: permitted subtree name constraints for DNS names were accepted for certificates asserting a wildcard name. This was incorrect because, given a name constraint of \u003ccode\u003eaccept.example.com\u003c/code\u003e, \u003ccode\u003e*.example.com\u003c/code\u003e could feasibly allow a name of \u003ccode\u003ereject.example.com\u003c/code\u003e which is outside the constraint. This is very similar to \u003ca href=\"https://go.dev/issue/76442\"\u003eCVE-2025-61727\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSince name constraints are restrictions on otherwise properly-issued certificates, these bugs are reachable only after signature verification and require misissuance to exploit.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrepare 0.103.12 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/470\"\u003erustls/webpki#470\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.11\u003c/h2\u003e\n\u003cp\u003eIn response to \u003ca href=\"https://redirect.github.com/rustls/webpki/issues/464\"\u003e#464\u003c/a\u003e, we've slightly relaxed requirements for \u003ccode\u003eanchor_from_trust_cert()\u003c/code\u003e to ignore unknown extensions even if they're marked as critical. This only affects parsing a \u003ccode\u003eTrustAnchor\u003c/code\u003e from DER, for which most extensions are ignored anyway.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport parsing trust anchors with unknown critical extensions to 0.103 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/466\"\u003erustls/webpki#466\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.103.10\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eCorrect selection of candidate CRLs by Distribution Point and Issuing Distribution Point\u003c/strong\u003e. If a certificate had more than one \u003ccode\u003edistributionPoint\u003c/code\u003e, then only the first \u003ccode\u003edistributionPoint\u003c/code\u003e would be considered against each CRL's \u003ccode\u003eIssuingDistributionPoint\u003c/code\u003e \u003ccode\u003edistributionPoint\u003c/code\u003e, and then the certificate's subsequent \u003ccode\u003edistributionPoint\u003c/code\u003es would be ignored.\u003c/p\u003e\n\u003cp\u003eThe impact was that correctly provided CRLs would not be consulted to check revocation. With \u003ccode\u003eUnknownStatusPolicy::Deny\u003c/code\u003e (the default) this would lead to incorrect but safe \u003ccode\u003eError::UnknownRevocationStatus\u003c/code\u003e. With \u003ccode\u003eUnknownStatusPolicy::Allow\u003c/code\u003e this would lead to inappropriate acceptance of revoked certificates.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is thought to be of limited impact. This is because both the certificate and CRL are signed -- an attacker would need to compromise a trusted issuing authority to trigger this bug.  An attacker with such capabilities could likely bypass revocation checking through other more impactful means (such as publishing a valid, empty CRL.)\u003c/p\u003e\n\u003cp\u003eMore likely, this bug would be latent in normal use, and an attacker could leverage faulty revocation checking to continue using a revoked credential.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is identified by \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-pwjx-qhcg-rvj4\"\u003eGHSA-pwjx-qhcg-rvj4\u003c/a\u003e. Thank you to \u003ca href=\"https://github.com/1seal\"\u003e\u003ccode\u003e@​1seal\u003c/code\u003e\u003c/a\u003e for the report.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFreshen up rel-0.103 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/455\"\u003erustls/webpki#455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.10 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/458\"\u003erustls/webpki#458\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2879b2ce7a476181ac3050f73fe0835f04728e86\"\u003e\u003ccode\u003e2879b2c\u003c/code\u003e\u003c/a\u003e Prepare 0.103.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2c49773d823f48c87db30db7a66c25993c847007\"\u003e\u003ccode\u003e2c49773\u003c/code\u003e\u003c/a\u003e Improve tests for padding of \u003ccode\u003eBitStringFlags\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/4e3c0b393a7bfb9cbe6dcdc8309cbadf8ee00c51\"\u003e\u003ccode\u003e4e3c0b3\u003c/code\u003e\u003c/a\u003e Correct validation of BIT STRING constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/39c91d2525a542a7f651a1a62c3462e8115cc39e\"\u003e\u003ccode\u003e39c91d2\u003c/code\u003e\u003c/a\u003e Actually fail closed for URI matching against excluded subtrees\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/27131d476e2b68a537e629d6d012bef8dad6efd3\"\u003e\u003ccode\u003e27131d4\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/6ecb8769cde2246e761e058709421c14a7dee6b1\"\u003e\u003ccode\u003e6ecb876\u003c/code\u003e\u003c/a\u003e Clean up stuttery enum variant names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/318b3e6e03ca2bc21600ca6bb0d0c6439b9e6aeb\"\u003e\u003ccode\u003e318b3e6\u003c/code\u003e\u003c/a\u003e Ignore wildcard labels when matching name constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/12196229a327d3d670798688254bd3ea24aba24b\"\u003e\u003ccode\u003e1219622\u003c/code\u003e\u003c/a\u003e Rewrite constraint matching to avoid permissive catch-all branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/57bc62ce538c2d0d31d44b3eb8c58e6a0a764b47\"\u003e\u003ccode\u003e57bc62c\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/d0fa01ee0a76b7585c13ec43de5854955146ffef\"\u003e\u003ccode\u003ed0fa01e\u003c/code\u003e\u003c/a\u003e Allow parsing trust anchors with unknown criticial extensions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.8...v/0.103.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n","html_url":"https://github.com/mellowagain/gitarena/pull/105","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/mellowagain%2Fgitarena/issues/105","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/105/packages"}},{"old_version":"1.6.0","new_version":"1.11.1","update_type":"minor","path":null,"pr_created_at":"2026-05-10T21:36:07.000Z","version_change":"1.6.0 → 1.11.1","issue":{"uuid":"4416907902","node_id":"PR_kwDOHI3i2M7aDT-E","number":257,"state":"open","title":"Bump bytes from 1.6.0 to 1.11.1","user":"dependabot[bot]","labels":["dependencies","rust"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-10T21:36:07.000Z","updated_at":"2026-05-10T21:36:46.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"bytes","old_version":"1.6.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"}],"path":null,"ecosystem":"cargo"},"body":"Bumps [bytes](https://github.com/tokio-rs/bytes) from 1.6.0 to 1.11.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.10.1\u003c/h2\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/bytes/pull/773\"\u003etokio-rs/bytes#773\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eBytes v1.10.0\u003c/h2\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.9.0 (November 27, 2024)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eBytes::from_owner\u003c/code\u003e to enable externally-allocated memory (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/742\"\u003e#742\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumented\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.6.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=bytes\u0026package-manager=cargo\u0026previous-version=1.6.0\u0026new-version=1.11.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/surrealdb/surrealdb.py/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/surrealdb/surrealdb.py/pull/257","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/surrealdb%2Fsurrealdb.py/issues/257","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/257/packages"}},{"old_version":"1.11.0","new_version":"1.11.1","update_type":"patch","path":null,"pr_created_at":"2026-05-10T05:35:24.000Z","version_change":"1.11.0 → 1.11.1","issue":{"uuid":"4414764496","node_id":"PR_kwDOQxTZfc7Z88k-","number":34,"state":"closed","title":"fix(deps): bump the cargo-minor-and-patch-dependencies group across 1 directory with 30 updates","user":"dependabot[bot]","labels":["dependencies","rust"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-24T05:33:52.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-10T05:35:24.000Z","updated_at":"2026-05-24T05:33:54.000Z","time_to_close":1209508,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"fix(deps): bump","group_name":"cargo-minor-and-patch-dependencies","update_count":30,"packages":[{"name":"anyhow","old_version":"1.0.100","new_version":"1.0.102","repository_url":"https://github.com/dtolnay/anyhow"},{"name":"bytes","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"chrono","old_version":"0.4.43","new_version":"0.4.44","repository_url":"https://github.com/chronotope/chrono"},{"name":"clap","old_version":"4.5.55","new_version":"4.6.1","repository_url":"https://github.com/clap-rs/clap"},{"name":"clap_complete","old_version":"4.5.65","new_version":"4.6.4","repository_url":"https://github.com/clap-rs/clap"},{"name":"criterion","old_version":"0.8.1","new_version":"0.8.2","repository_url":"https://github.com/criterion-rs/criterion.rs"},{"name":"futures","old_version":"0.3.31","new_version":"0.3.32","repository_url":"https://github.com/rust-lang/futures-rs"},{"name":"hyper","old_version":"1.8.1","new_version":"1.9.0","repository_url":"https://github.com/hyperium/hyper"},{"name":"indexmap","old_version":"2.13.0","new_version":"2.14.0","repository_url":"https://github.com/indexmap-rs/indexmap"},{"name":"indicatif","old_version":"0.18.3","new_version":"0.18.4","repository_url":"https://github.com/console-rs/indicatif"},{"name":"libc","old_version":"0.2.180","new_version":"0.2.186","repository_url":"https://github.com/rust-lang/libc"},{"name":"once_cell","old_version":"1.21.3","new_version":"1.21.4","repository_url":"https://github.com/matklad/once_cell"},{"name":"pin-project","old_version":"1.1.10","new_version":"1.1.12","repository_url":"https://github.com/taiki-e/pin-project"},{"name":"rayon","old_version":"1.11.0","new_version":"1.12.0","repository_url":"https://github.com/rayon-rs/rayon"},{"name":"regex","old_version":"1.12.2","new_version":"1.12.3","repository_url":"https://github.com/rust-lang/regex"},{"name":"rustls","old_version":"0.23.36","new_version":"0.23.40","repository_url":"https://github.com/rustls/rustls"},{"name":"serde_with","old_version":"3.16.1","new_version":"3.19.0","repository_url":"https://github.com/jonasbb/serde_with"},{"name":"tempfile","old_version":"3.24.0","new_version":"3.27.0","repository_url":"https://github.com/Stebalien/tempfile"},{"name":"tonic","old_version":"0.14.2","new_version":"0.14.6","repository_url":"https://github.com/hyperium/tonic"},{"name":"tracing-subscriber","old_version":"0.3.22","new_version":"0.3.23","repository_url":"https://github.com/tokio-rs/tracing"},{"name":"utoipa","old_version":"5.4.0","new_version":"5.5.0","repository_url":"https://github.com/juhaku/utoipa"},{"name":"uuid","old_version":"1.20.0","new_version":"1.23.1","repository_url":"https://github.com/uuid-rs/uuid"},{"name":"aws-config","old_version":"1.8.12","new_version":"1.8.13","repository_url":"https://github.com/smithy-lang/smithy-rs"},{"name":"aws-sdk-ec2","old_version":"1.204.0","new_version":"1.208.0","repository_url":"https://github.com/awslabs/aws-sdk-rust"},{"name":"flate2","old_version":"1.1.8","new_version":"1.1.9","repository_url":"https://github.com/rust-lang/flate2-rs"},{"name":"moka","old_version":"0.12.13","new_version":"0.12.15","repository_url":"https://github.com/moka-rs/moka"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo-minor-and-patch-dependencies group with 26 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [anyhow](https://github.com/dtolnay/anyhow) | `1.0.100` | `1.0.102` |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.11.0` | `1.11.1` |\n| [chrono](https://github.com/chronotope/chrono) | `0.4.43` | `0.4.44` |\n| [clap](https://github.com/clap-rs/clap) | `4.5.55` | `4.6.1` |\n| [clap_complete](https://github.com/clap-rs/clap) | `4.5.65` | `4.6.4` |\n| [criterion](https://github.com/criterion-rs/criterion.rs) | `0.8.1` | `0.8.2` |\n| [futures](https://github.com/rust-lang/futures-rs) | `0.3.31` | `0.3.32` |\n| [hyper](https://github.com/hyperium/hyper) | `1.8.1` | `1.9.0` |\n| [indexmap](https://github.com/indexmap-rs/indexmap) | `2.13.0` | `2.14.0` |\n| [indicatif](https://github.com/console-rs/indicatif) | `0.18.3` | `0.18.4` |\n| [libc](https://github.com/rust-lang/libc) | `0.2.180` | `0.2.186` |\n| [once_cell](https://github.com/matklad/once_cell) | `1.21.3` | `1.21.4` |\n| [pin-project](https://github.com/taiki-e/pin-project) | `1.1.10` | `1.1.12` |\n| [rayon](https://github.com/rayon-rs/rayon) | `1.11.0` | `1.12.0` |\n| [regex](https://github.com/rust-lang/regex) | `1.12.2` | `1.12.3` |\n| [rustls](https://github.com/rustls/rustls) | `0.23.36` | `0.23.40` |\n| [serde_with](https://github.com/jonasbb/serde_with) | `3.16.1` | `3.19.0` |\n| [tempfile](https://github.com/Stebalien/tempfile) | `3.24.0` | `3.27.0` |\n| [tonic](https://github.com/hyperium/tonic) | `0.14.2` | `0.14.6` |\n| [tracing-subscriber](https://github.com/tokio-rs/tracing) | `0.3.22` | `0.3.23` |\n| [utoipa](https://github.com/juhaku/utoipa) | `5.4.0` | `5.5.0` |\n| [uuid](https://github.com/uuid-rs/uuid) | `1.20.0` | `1.23.1` |\n| [aws-config](https://github.com/smithy-lang/smithy-rs) | `1.8.12` | `1.8.13` |\n| [aws-sdk-ec2](https://github.com/awslabs/aws-sdk-rust) | `1.204.0` | `1.208.0` |\n| [flate2](https://github.com/rust-lang/flate2-rs) | `1.1.8` | `1.1.9` |\n| [moka](https://github.com/moka-rs/moka) | `0.12.13` | `0.12.15` |\n\n\nUpdates `anyhow` from 1.0.100 to 1.0.102\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dtolnay/anyhow/releases\"\u003eanyhow's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.0.102\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove backtrace dependency (\u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/438\"\u003e#438\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/439\"\u003e#439\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/440\"\u003e#440\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/441\"\u003e#441\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.0.101\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd #[inline] to anyhow::Ok helper (\u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/437\"\u003e#437\u003c/a\u003e, thanks \u003ca href=\"https://github.com/Ibitier\"\u003e\u003ccode\u003e@​Ibitier\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/5c657b32522023a9f7ef883fb08582fd8e656b1a\"\u003e\u003ccode\u003e5c657b3\u003c/code\u003e\u003c/a\u003e Release 1.0.102\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/e737fb63918e8c71a3d0a968004a9c7ed7942283\"\u003e\u003ccode\u003ee737fb6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/442\"\u003e#442\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/7fe62b51c62804f8b84443affeacfb3810ed2516\"\u003e\u003ccode\u003e7fe62b5\u003c/code\u003e\u003c/a\u003e Further simply backtrace conditional compilation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/c8cb5cae23e57a2dbb87bf05cba04f1df1f1660b\"\u003e\u003ccode\u003ec8cb5ca\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/441\"\u003e#441\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/de27df7e0f510d543c18e50a0736566b66e62baf\"\u003e\u003ccode\u003ede27df7\u003c/code\u003e\u003c/a\u003e Delete CI use of --features=backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/9b67e5dd608658d805640cf1b6f6c9d091686ec1\"\u003e\u003ccode\u003e9b67e5d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/440\"\u003e#440\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/efdb11a259ca58a2e505ef50486cf2d6b5ddc42a\"\u003e\u003ccode\u003eefdb11a\u003c/code\u003e\u003c/a\u003e Simplify \u003ccode\u003estd_backtrace\u003c/code\u003e conditional code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/b8a9a707838969721a86b28e3c45ce27e279e981\"\u003e\u003ccode\u003eb8a9a70\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dtolnay/anyhow/issues/439\"\u003e#439\u003c/a\u003e from dtolnay/backtrace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/a42fc2c21846ba459df43a3f8b4996a2074909cb\"\u003e\u003ccode\u003ea42fc2c\u003c/code\u003e\u003c/a\u003e Remove \u003ccode\u003efeature = \u0026quot;backtrace\u0026quot;\u003c/code\u003e conditional code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dtolnay/anyhow/commit/2a2a3ceb4cbc409fd99613ab5744b21e825e7908\"\u003e\u003ccode\u003e2a2a3ce\u003c/code\u003e\u003c/a\u003e Re-word backtrace feature comment\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dtolnay/anyhow/compare/1.0.100...1.0.102\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.11.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.11.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `chrono` from 0.4.43 to 0.4.44\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/chronotope/chrono/releases\"\u003echrono's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.44\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: match MSRV with \u003ccode\u003eCargo.toml\u003c/code\u003e contents by \u003ca href=\"https://github.com/coryan\"\u003e\u003ccode\u003e@​coryan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1772\"\u003echronotope/chrono#1772\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd track_caller to non-deprecated functions by \u003ca href=\"https://github.com/svix-jplatte\"\u003e\u003ccode\u003e@​svix-jplatte\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/chronotope/chrono/pull/1774\"\u003echronotope/chrono#1774\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/c14b4599d07ef36ffa1f8a531fb0bc7eb3b42464\"\u003e\u003ccode\u003ec14b459\u003c/code\u003e\u003c/a\u003e Bump version to 0.4.44\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/ea832c5090369eefa2cb6a47d643e2f7ade7ffa7\"\u003e\u003ccode\u003eea832c5\u003c/code\u003e\u003c/a\u003e Add track_caller to non-deprecated functions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/cfae889a3a23507acf49b605794abba17effd2d7\"\u003e\u003ccode\u003ecfae889\u003c/code\u003e\u003c/a\u003e Fix panic message in to_rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chronotope/chrono/commit/f8900b5a44228a7f6282c65e8c407d3ecb6dcb7b\"\u003e\u003ccode\u003ef8900b5\u003c/code\u003e\u003c/a\u003e docs: match MSRV with \u003ccode\u003eCargo.toml\u003c/code\u003e contents\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/chronotope/chrono/compare/v0.4.43...v0.4.44\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `clap` from 4.5.55 to 4.6.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/clap-rs/clap/releases\"\u003eclap's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.6.1\u003c/h2\u003e\n\u003ch2\u003e[4.6.1] - 2026-04-15\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(derive)\u003c/em\u003e Ensure rebuilds happen when an read env variable is changed\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.60\u003c/h2\u003e\n\u003ch2\u003e[4.5.60] - 2026-02-19\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(help)\u003c/em\u003e Quote empty default values, possible values\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.59\u003c/h2\u003e\n\u003ch2\u003e[4.5.59] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eCommand::ignore_errors\u003c/code\u003e no longer masks help/version on subcommands\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.58\u003c/h2\u003e\n\u003ch2\u003e[4.5.58] - 2026-02-11\u003c/h2\u003e\n\u003ch2\u003ev4.5.57\u003c/h2\u003e\n\u003ch2\u003e[4.5.57] - 2026-02-03\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegression from 4.5.55 where having an argument with \u003ccode\u003e.value_terminator(\u0026quot;--\u0026quot;)\u003c/code\u003e caused problems with an argument with \u003ccode\u003e.last(true)\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.5.56\u003c/h2\u003e\n\u003ch2\u003e[4.5.56] - 2026-01-29\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOn conflict error, don't show conflicting arguments in the usage\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/clap-rs/clap/blob/master/CHANGELOG.md\"\u003eclap's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.6.1] - 2026-04-15\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(derive)\u003c/em\u003e Ensure rebuilds happen when an read env variable is changed\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.6.0] - 2026-03-12\u003c/h2\u003e\n\u003ch3\u003eCompatibility\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate MSRV to 1.85\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.61] - 2026-03-12\u003c/h2\u003e\n\u003ch3\u003eInternal\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.60] - 2026-02-19\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(help)\u003c/em\u003e Quote empty default values, possible values\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.59] - 2026-02-16\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eCommand::ignore_errors\u003c/code\u003e no longer masks help/version on subcommands\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.58] - 2026-02-11\u003c/h2\u003e\n\u003ch2\u003e[4.5.57] - 2026-02-03\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRegression from 4.5.55 where having an argument with \u003ccode\u003e.value_terminator(\u0026quot;--\u0026quot;)\u003c/code\u003e caused problems with an argument with \u003ccode\u003e.last(true)\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.5.56] - 2026-01-29\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOn conflict error, don't show conflicting arguments in the usage\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/14202755e52802a3d294c4ceeadd703d24b21fe6\"\u003e\u003ccode\u003e1420275\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/d2c817d151db23e0bff70d3df5f9dd9fc311ad5d\"\u003e\u003ccode\u003ed2c817d\u003c/code\u003e\u003c/a\u003e docs: Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/f88c94e53d40c2427450ed65ec025951906eb1d4\"\u003e\u003ccode\u003ef88c94e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6341\"\u003e#6341\u003c/a\u003e from epage/sep\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/acbb8225054e0a498f6941f278ad0095a893efe8\"\u003e\u003ccode\u003eacbb822\u003c/code\u003e\u003c/a\u003e fix(complete): Reduce risk of conflict with actual subcommands\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/a49fadbf4acf1853f52ae43a445c8f3c81096b01\"\u003e\u003ccode\u003ea49fadb\u003c/code\u003e\u003c/a\u003e refactor(complete): Pull out subcommand separator\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/ddc008bbbc1924fbda5d6f2c66bcf4d165984977\"\u003e\u003ccode\u003eddc008b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6332\"\u003e#6332\u003c/a\u003e from epage/update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/497dc50aebe9384dc229e1b4e92850306231f9c9\"\u003e\u003ccode\u003e497dc50\u003c/code\u003e\u003c/a\u003e chore: Update compatible dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/dca2326243615b2375cccb709b19de912910413d\"\u003e\u003ccode\u003edca2326\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6331\"\u003e#6331\u003c/a\u003e from clap-rs/renovate/j178-prek-action-2.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/54bdaa340ed434535bbd2d95a05b69d8abd2eb34\"\u003e\u003ccode\u003e54bdaa3\u003c/code\u003e\u003c/a\u003e chore(deps): Update j178/prek-action action to v2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/f0d30d961d26f8fb636b33242256fca73a717f77\"\u003e\u003ccode\u003ef0d30d9\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/clap-rs/clap/compare/clap_complete-v4.5.55...clap_complete-v4.6.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `clap_complete` from 4.5.65 to 4.6.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/clap-rs/clap/releases\"\u003eclap_complete's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.6.1\u003c/h2\u003e\n\u003ch2\u003e[4.6.1] - 2026-04-15\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(derive)\u003c/em\u003e Ensure rebuilds happen when an read env variable is changed\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/87ec1ad80dc174563cba130772823562e4427560\"\u003e\u003ccode\u003e87ec1ad\u003c/code\u003e\u003c/a\u003e chore: Release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/78f2529351ad2133c453005e54f6b35ce3ae800b\"\u003e\u003ccode\u003e78f2529\u003c/code\u003e\u003c/a\u003e docs: Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/b61f270930e60ee4968dfed7dc81eef51232f22b\"\u003e\u003ccode\u003eb61f270\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6369\"\u003e#6369\u003c/a\u003e from Metbcy/fix/zsh-completion-ordering\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/74c6666698e90ff0141eb50dd169915f59fa7bcf\"\u003e\u003ccode\u003e74c6666\u003c/code\u003e\u003c/a\u003e fix(complete): Keep zsh candidate order\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/d142d8f96650c49302aeab87814d5bf352dbf4db\"\u003e\u003ccode\u003ed142d8f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6360\"\u003e#6360\u003c/a\u003e from epage/string\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/ba89563c9d4c806afba2002c345b7108b64f1a1e\"\u003e\u003ccode\u003eba89563\u003c/code\u003e\u003c/a\u003e style: Prefer explicit string operations\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/bea966e84a50dc375d75baecbd469362b4f66281\"\u003e\u003ccode\u003ebea966e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6359\"\u003e#6359\u003c/a\u003e from epage/man\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/b811986e6d8eeeba679e43ddc07bcd06ee6da17b\"\u003e\u003ccode\u003eb811986\u003c/code\u003e\u003c/a\u003e chore(man):Remove unused required-features\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/0010bf290aae52b827134d7a88ecb58a8e3e88aa\"\u003e\u003ccode\u003e0010bf2\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6358\"\u003e#6358\u003c/a\u003e from clap-rs/renovate/crate-ci-typos-1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clap-rs/clap/commit/bab9b24b129f5bfd6f5680cd5273d4d6be7cb37d\"\u003e\u003ccode\u003ebab9b24\u003c/code\u003e\u003c/a\u003e chore(deps): Update compatible (dev) (\u003ca href=\"https://redirect.github.com/clap-rs/clap/issues/6357\"\u003e#6357\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/clap-rs/clap/compare/clap_complete-v4.5.65...clap_complete-v4.6.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `criterion` from 0.8.1 to 0.8.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/criterion-rs/criterion.rs/releases\"\u003ecriterion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ecriterion-plot-v0.8.2\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate Readme\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ecriterion-v0.8.2\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edon't build alloca on unsupported targets\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(deps)\u003c/em\u003e bump crate-ci/typos from 1.40.0 to 1.43.0\u003c/li\u003e\n\u003cli\u003eFix panic with uniform iteration durations in benchmarks\u003c/li\u003e\n\u003cli\u003eUpdate Readme\u003c/li\u003e\n\u003cli\u003eExclude development scripts from published package\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/criterion-rs/criterion.rs/blob/master/CHANGELOG.md\"\u003ecriterion's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/criterion-rs/criterion.rs/compare/criterion-v0.8.1...criterion-v0.8.2\"\u003e0.8.2\u003c/a\u003e - 2026-02-04\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edon't build alloca on unsupported targets\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(deps)\u003c/em\u003e bump crate-ci/typos from 1.40.0 to 1.43.0\u003c/li\u003e\n\u003cli\u003eFix panic with uniform iteration durations in benchmarks\u003c/li\u003e\n\u003cli\u003eUpdate Readme\u003c/li\u003e\n\u003cli\u003eExclude development scripts from published package\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/criterion-rs/criterion.rs/commit/7f0d745532e3c7b2e11bbf9de9b911f91790d3b1\"\u003e\u003ccode\u003e7f0d745\u003c/code\u003e\u003c/a\u003e chore: release v0.8.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/criterion-rs/criterion.rs/commit/4a467ce964052ae9bd9266c0706b470b817613e0\"\u003e\u003ccode\u003e4a467ce\u003c/code\u003e\u003c/a\u003e chore(deps): bump crate-ci/typos from 1.40.0 to 1.43.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/criterion-rs/criterion.rs/commit/b277a751453cf9ce0595e41bddf819210a6d6e47\"\u003e\u003ccode\u003eb277a75\u003c/code\u003e\u003c/a\u003e Fix panic with uniform iteration durations in benchmarks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/criterion-rs/criterion.rs/commit/828af1450d648c599a92a077b75e292747761d99\"\u003e\u003ccode\u003e828af14\u003c/code\u003e\u003c/a\u003e fix: don't build alloca on unsupported targets\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/criterion-rs/criterion.rs/commit/b01316b76e42028f3b1cf3731f643bea7f354f39\"\u003e\u003ccode\u003eb01316b\u003c/code\u003e\u003c/a\u003e Update Readme\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/criterion-rs/criterion.rs/commit/4c02a3b4e560fe1f296c0ed1e9b53e3154a3cac6\"\u003e\u003ccode\u003e4c02a3b\u003c/code\u003e\u003c/a\u003e Exclude development scripts from published package\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/criterion-rs/criterion.rs/compare/criterion-v0.8.1...criterion-v0.8.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `futures` from 0.3.31 to 0.3.32\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/futures-rs/releases\"\u003efutures's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.32\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV of utility crates to 1.71. (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2989\"\u003e#2989\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSoft-deprecate \u003ccode\u003eready!\u003c/code\u003e macro in favor of \u003ccode\u003estd::task::ready!\u003c/code\u003e added in Rust 1.64 (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2925\"\u003e#2925\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSoft-deprecate \u003ccode\u003epin_mut!\u003c/code\u003e macro in favor of \u003ccode\u003estd::pin::pin!\u003c/code\u003e added in Rust 1.68 (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2929\"\u003e#2929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eFuturesOrdered::clear\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2927\"\u003e#2927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003empsc::*Receiver::recv\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2947\"\u003e#2947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003empsc::*Receiver::try_recv\u003c/code\u003e and deprecate \u003ccode\u003empsc::*Receiver::::try_next\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2944\"\u003e#2944\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eFusedStream\u003c/code\u003e for \u003ccode\u003esink::With\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2948\"\u003e#2948\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eno_std\u003c/code\u003e support for \u003ccode\u003eshared\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2868\"\u003e#2868\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMake \u003ccode\u003eMutex::new()\u003c/code\u003e const (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2956\"\u003e#2956\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e#[clippy::has_significant_drop]\u003c/code\u003e to guards (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2967\"\u003e#2967\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove dependency to \u003ccode\u003epin-utils\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2929\"\u003e#2929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove dependency on \u003ccode\u003enum_cpus\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2946\"\u003e#2946\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePerformance improvements (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2983\"\u003e#2983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocumentation improvements (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2925\"\u003e#2925\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2926\"\u003e#2926\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2940\"\u003e#2940\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2971\"\u003e#2971\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/futures-rs/blob/master/CHANGELOG.md\"\u003efutures's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e0.3.32 - 2026-02-15\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV of utility crates to 1.71. (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2989\"\u003e#2989\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSoft-deprecate \u003ccode\u003eready!\u003c/code\u003e macro in favor of \u003ccode\u003estd::task::ready!\u003c/code\u003e added in Rust 1.64 (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2925\"\u003e#2925\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSoft-deprecate \u003ccode\u003epin_mut!\u003c/code\u003e macro in favor of \u003ccode\u003estd::pin::pin!\u003c/code\u003e added in Rust 1.68 (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2929\"\u003e#2929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eFuturesOrdered::clear\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2927\"\u003e#2927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003empsc::*Receiver::recv\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2947\"\u003e#2947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003empsc::*Receiver::try_recv\u003c/code\u003e and deprecate \u003ccode\u003empsc::*Receiver::::try_next\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2944\"\u003e#2944\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eFusedStream\u003c/code\u003e for \u003ccode\u003esink::With\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2948\"\u003e#2948\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eno_std\u003c/code\u003e support for \u003ccode\u003eshared\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2868\"\u003e#2868\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMake \u003ccode\u003eMutex::new()\u003c/code\u003e const (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2956\"\u003e#2956\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e#[clippy::has_significant_drop]\u003c/code\u003e to guards (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2967\"\u003e#2967\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove dependency to \u003ccode\u003epin-utils\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2929\"\u003e#2929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove dependency on \u003ccode\u003enum_cpus\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2946\"\u003e#2946\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePerformance improvements (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2983\"\u003e#2983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocumentation improvements (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2925\"\u003e#2925\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2926\"\u003e#2926\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2940\"\u003e#2940\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2971\"\u003e#2971\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/d9bba94c239daa1175a5bb2958f37a5c72db3f6a\"\u003e\u003ccode\u003ed9bba94\u003c/code\u003e\u003c/a\u003e Release 0.3.32\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/151e0b90dec62103df5239f0612f42467994f406\"\u003e\u003ccode\u003e151e0b9\u003c/code\u003e\u003c/a\u003e Add comments on rust-version field in Cargo.toml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/4aaf00c35176d7180557559f54b0c151e2e608aa\"\u003e\u003ccode\u003e4aaf00c\u003c/code\u003e\u003c/a\u003e Bump MSRV of utility crates to 1.71\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/a4cce12c55942c6e1f2a507061fc6ca94c5b8862\"\u003e\u003ccode\u003ea4cce12\u003c/code\u003e\u003c/a\u003e perf: improve AtomicWaker::wake performance (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2983\"\u003e#2983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/ba9d102ca6e4a941a5068a1a8dcf0ff3a6c9085a\"\u003e\u003ccode\u003eba9d102\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003e#[clippy::has_significant_drop]\u003c/code\u003e to guards (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2967\"\u003e#2967\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/20396a83eff35414d17320dc35858243e54f0bc8\"\u003e\u003ccode\u003e20396a8\u003c/code\u003e\u003c/a\u003e Fix rustdoc::broken_intra_doc_links warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/815f6eb4e40ca9ff81d7d9a25a863d3c1ffdb79e\"\u003e\u003ccode\u003e815f6eb\u003c/code\u003e\u003c/a\u003e Fix documentation of \u003ccode\u003eBiLock::lock\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2971\"\u003e#2971\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/0f0db0421d4edc9fc56c3643f7e7f3bd23058023\"\u003e\u003ccode\u003e0f0db04\u003c/code\u003e\u003c/a\u003e futures-util: make \u003ccode\u003eMutex::new()\u003c/code\u003e const (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2956\"\u003e#2956\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/5d6fc5e4083f5da376ccc7a50403d842e553e286\"\u003e\u003ccode\u003e5d6fc5e\u003c/code\u003e\u003c/a\u003e ci: Test big-endian target (s390x Linux)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/9f739fe40b9c3e80b8f40054a739a220428a4675\"\u003e\u003ccode\u003e9f739fe\u003c/code\u003e\u003c/a\u003e Ignore dead_code lint on Fn1 trait\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-lang/futures-rs/compare/0.3.31...0.3.32\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `futures-util` from 0.3.31 to 0.3.32\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/futures-rs/releases\"\u003efutures-util's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.32\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV of utility crates to 1.71. (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2989\"\u003e#2989\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSoft-deprecate \u003ccode\u003eready!\u003c/code\u003e macro in favor of \u003ccode\u003estd::task::ready!\u003c/code\u003e added in Rust 1.64 (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2925\"\u003e#2925\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSoft-deprecate \u003ccode\u003epin_mut!\u003c/code\u003e macro in favor of \u003ccode\u003estd::pin::pin!\u003c/code\u003e added in Rust 1.68 (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2929\"\u003e#2929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eFuturesOrdered::clear\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2927\"\u003e#2927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003empsc::*Receiver::recv\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2947\"\u003e#2947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003empsc::*Receiver::try_recv\u003c/code\u003e and deprecate \u003ccode\u003empsc::*Receiver::::try_next\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2944\"\u003e#2944\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eFusedStream\u003c/code\u003e for \u003ccode\u003esink::With\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2948\"\u003e#2948\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eno_std\u003c/code\u003e support for \u003ccode\u003eshared\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2868\"\u003e#2868\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMake \u003ccode\u003eMutex::new()\u003c/code\u003e const (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2956\"\u003e#2956\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e#[clippy::has_significant_drop]\u003c/code\u003e to guards (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2967\"\u003e#2967\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove dependency to \u003ccode\u003epin-utils\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2929\"\u003e#2929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove dependency on \u003ccode\u003enum_cpus\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2946\"\u003e#2946\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePerformance improvements (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2983\"\u003e#2983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocumentation improvements (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2925\"\u003e#2925\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2926\"\u003e#2926\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2940\"\u003e#2940\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2971\"\u003e#2971\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/futures-rs/blob/master/CHANGELOG.md\"\u003efutures-util's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e0.3.32 - 2026-02-15\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV of utility crates to 1.71. (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2989\"\u003e#2989\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSoft-deprecate \u003ccode\u003eready!\u003c/code\u003e macro in favor of \u003ccode\u003estd::task::ready!\u003c/code\u003e added in Rust 1.64 (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2925\"\u003e#2925\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSoft-deprecate \u003ccode\u003epin_mut!\u003c/code\u003e macro in favor of \u003ccode\u003estd::pin::pin!\u003c/code\u003e added in Rust 1.68 (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2929\"\u003e#2929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eFuturesOrdered::clear\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2927\"\u003e#2927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003empsc::*Receiver::recv\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2947\"\u003e#2947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003empsc::*Receiver::try_recv\u003c/code\u003e and deprecate \u003ccode\u003empsc::*Receiver::::try_next\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2944\"\u003e#2944\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eFusedStream\u003c/code\u003e for \u003ccode\u003esink::With\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2948\"\u003e#2948\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eno_std\u003c/code\u003e support for \u003ccode\u003eshared\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2868\"\u003e#2868\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMake \u003ccode\u003eMutex::new()\u003c/code\u003e const (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2956\"\u003e#2956\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e#[clippy::has_significant_drop]\u003c/code\u003e to guards (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2967\"\u003e#2967\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove dependency to \u003ccode\u003epin-utils\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2929\"\u003e#2929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove dependency on \u003ccode\u003enum_cpus\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2946\"\u003e#2946\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePerformance improvements (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2983\"\u003e#2983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocumentation improvements (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2925\"\u003e#2925\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2926\"\u003e#2926\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2940\"\u003e#2940\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2971\"\u003e#2971\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/d9bba94c239daa1175a5bb2958f37a5c72db3f6a\"\u003e\u003ccode\u003ed9bba94\u003c/code\u003e\u003c/a\u003e Release 0.3.32\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/151e0b90dec62103df5239f0612f42467994f406\"\u003e\u003ccode\u003e151e0b9\u003c/code\u003e\u003c/a\u003e Add comments on rust-version field in Cargo.toml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/4aaf00c35176d7180557559f54b0c151e2e608aa\"\u003e\u003ccode\u003e4aaf00c\u003c/code\u003e\u003c/a\u003e Bump MSRV of utility crates to 1.71\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/a4cce12c55942c6e1f2a507061fc6ca94c5b8862\"\u003e\u003ccode\u003ea4cce12\u003c/code\u003e\u003c/a\u003e perf: improve AtomicWaker::wake performance (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2983\"\u003e#2983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/ba9d102ca6e4a941a5068a1a8dcf0ff3a6c9085a\"\u003e\u003ccode\u003eba9d102\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003e#[clippy::has_significant_drop]\u003c/code\u003e to guards (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2967\"\u003e#2967\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/20396a83eff35414d17320dc35858243e54f0bc8\"\u003e\u003ccode\u003e20396a8\u003c/code\u003e\u003c/a\u003e Fix rustdoc::broken_intra_doc_links warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/815f6eb4e40ca9ff81d7d9a25a863d3c1ffdb79e\"\u003e\u003ccode\u003e815f6eb\u003c/code\u003e\u003c/a\u003e Fix documentation of \u003ccode\u003eBiLock::lock\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2971\"\u003e#2971\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/0f0db0421d4edc9fc56c3643f7e7f3bd23058023\"\u003e\u003ccode\u003e0f0db04\u003c/code\u003e\u003c/a\u003e futures-util: make \u003ccode\u003eMutex::new()\u003c/code\u003e const (\u003ca href=\"https://redirect.github.com/rust-lang/futures-rs/issues/2956\"\u003e#2956\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/5d6fc5e4083f5da376ccc7a50403d842e553e286\"\u003e\u003ccode\u003e5d6fc5e\u003c/code\u003e\u003c/a\u003e ci: Test big-endian target (s390x Linux)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/futures-rs/commit/9f739fe40b9c3e80b8f40054a739a220428a4675\"\u003e\u003ccode\u003e9f739fe\u003c/code\u003e\u003c/a\u003e Ignore dead_code lint on Fn1 trait\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-lang/futures-rs/compare/0.3.31...0.3.32\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `hyper` from 1.8.1 to 1.9.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hyperium/hyper/releases\"\u003ehyper's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.9.0\u003c/h2\u003e\n\u003ch2\u003eFeatures\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclient:\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003eexpose HTTP/2 current max stream count (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4026\"\u003e#4026\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/d51cb71569bbca7927b3828ef11e3bec4fa97eb4\"\u003ed51cb715\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd HTTP/2 \u003ccode\u003emax_local_error_reset_streams\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4021\"\u003e#4021\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/577874591cae246dfb2d72d7140d794ac2fa605a\"\u003e57787459\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eerror:\u003c/strong\u003e add 'Error::is_parse_version_h2' method (\u003ca href=\"https://github.com/hyperium/hyper/commit/393c77c71138ff6e33d7089deac770a3f3f1436b\"\u003e393c77c7\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ehttp1:\u003c/strong\u003e add UpgradeableConnection::into_parts (\u003ca href=\"https://github.com/hyperium/hyper/commit/e21205cfe4066edbcddc56150d963dabbc7d3ec4\"\u003ee21205cf\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003effi:\u003c/strong\u003e validate null pointers before dereferencing in request/response functions (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4038\"\u003e#4038\u003c/a\u003e (\u003ca href=\"https://github.com/hyperium/hyper/commit/28e73ccd230cff8d7e5b5880ce2ab5fb8ced36be\"\u003e28e73ccd\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ehttp1:\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003eallow keep-alive for chunked requests with trailers (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4043\"\u003e#4043\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/7211ec25eff2ea6ee783817fee2a221d4eb2ed03\"\u003e7211ec25\u003c/a\u003e, closes \u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4044\"\u003e#4044\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003euse case-insensitive matching for trailer fields (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4011\"\u003e#4011\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/3b344cac9f96a9365409086dde51d06aa797ffc3\"\u003e3b344cac\u003c/a\u003e, closes \u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4010\"\u003e#4010\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003euse httparse config for Servers (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4002\"\u003e#4002\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/bcb8ec576619650d3388604e6c246829e7be133a\"\u003ebcb8ec57\u003c/a\u003e, closes \u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/3923\"\u003e#3923\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ehttp2:\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003ecancel sending client request body on response future drop (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4042\"\u003e#4042\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/5b17a69ebcf969471c1a19b25ed2cb81299d1be6\"\u003e5b17a69e\u003c/a\u003e, closes \u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4040\"\u003e#4040\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003enon-utf8 char in Connection header may cause panic when calling to_str (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4019\"\u003e#4019\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/c36ca8a5c50e4a05a78aa3e158f13456ee674fb1\"\u003ec36ca8a5\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRefactors and chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs(error): add more information about is_incomplete_message by \u003ca href=\"https://github.com/seanmonstar\"\u003e\u003ccode\u003e@​seanmonstar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/3978\"\u003ehyperium/hyper#3978\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun cargo-audit in CI to check for known vulnerabilities in dependencies. by \u003ca href=\"https://github.com/f0rki\"\u003e\u003ccode\u003e@​f0rki\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/3246\"\u003ehyperium/hyper#3246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor(http1): simplify match of Token parse error by \u003ca href=\"https://github.com/seanmonstar\"\u003e\u003ccode\u003e@​seanmonstar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/3981\"\u003ehyperium/hyper#3981\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor(http1): use saturating_sub instead of manual impl by \u003ca href=\"https://github.com/seanmonstar\"\u003e\u003ccode\u003e@​seanmonstar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/3983\"\u003ehyperium/hyper#3983\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor(http1): replace many args of Chunked::step with struct by \u003ca href=\"https://github.com/seanmonstar\"\u003e\u003ccode\u003e@​seanmonstar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/3982\"\u003ehyperium/hyper#3982\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix comment in \u003ccode\u003eput_slice()\u003c/code\u003e by \u003ca href=\"https://github.com/coryan\"\u003e\u003ccode\u003e@​coryan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/3986\"\u003ehyperium/hyper#3986\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest(lib): fix unused warnings due to feature gating test imports by \u003ca href=\"https://github.com/seanmonstar\"\u003e\u003ccode\u003e@​seanmonstar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/3997\"\u003ehyperium/hyper#3997\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: improve Read trait and ReadBufCursor documentation by \u003ca href=\"https://github.com/majiayu000\"\u003e\u003ccode\u003e@​majiayu000\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4000\"\u003ehyperium/hyper#4000\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: use h1 parser config when parsing server req by \u003ca href=\"https://github.com/0xPoe\"\u003e\u003ccode\u003e@​0xPoe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4002\"\u003ehyperium/hyper#4002\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest(server): fix flaky disable_keep_alive_mid_request by \u003ca href=\"https://github.com/seanmonstar\"\u003e\u003ccode\u003e@​seanmonstar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4009\"\u003ehyperium/hyper#4009\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(ci): update to actions/checkout@v6 by \u003ca href=\"https://github.com/tottoto\"\u003e\u003ccode\u003e@​tottoto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4005\"\u003ehyperium/hyper#4005\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(ci): update to cargo-check-external-types 0.4.0 by \u003ca href=\"https://github.com/tottoto\"\u003e\u003ccode\u003e@​tottoto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4006\"\u003ehyperium/hyper#4006\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate copyright year to 2026 by \u003ca href=\"https://github.com/jasmyhigh\"\u003e\u003ccode\u003e@​jasmyhigh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4007\"\u003ehyperium/hyper#4007\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: avoid unwrap examples by \u003ca href=\"https://github.com/0xPoe\"\u003e\u003ccode\u003e@​0xPoe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4001\"\u003ehyperium/hyper#4001\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(http1): use case-insensitive matching for trailer fields by \u003ca href=\"https://github.com/HueCodes\"\u003e\u003ccode\u003e@​HueCodes\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4011\"\u003ehyperium/hyper#4011\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: convert bug report template to GitHub form by \u003ca href=\"https://github.com/njg7194\"\u003e\u003ccode\u003e@​njg7194\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4015\"\u003ehyperium/hyper#4015\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(ci): force toml mode in yq selecting msrv by \u003ca href=\"https://github.com/seanmonstar\"\u003e\u003ccode\u003e@​seanmonstar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4020\"\u003ehyperium/hyper#4020\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: non-utf8 char may cause panic when calling to_str by \u003ca href=\"https://github.com/cuiweixie\"\u003e\u003ccode\u003e@​cuiweixie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4019\"\u003ehyperium/hyper#4019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(http2/client): add \u003ccode\u003emax_local_error_reset_streams\u003c/code\u003e option by \u003ca href=\"https://github.com/ffuugoo\"\u003e\u003ccode\u003e@​ffuugoo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4021\"\u003ehyperium/hyper#4021\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: drop pin-utils dependency by \u003ca href=\"https://github.com/tottoto\"\u003e\u003ccode\u003e@​tottoto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4023\"\u003ehyperium/hyper#4023\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[minor] doc: Fix HTTP/2 max concurrent stream link by \u003ca href=\"https://github.com/dentiny\"\u003e\u003ccode\u003e@​dentiny\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4037\"\u003ehyperium/hyper#4037\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(ffi): validate null pointers before dereferencing in request/resp… by \u003ca href=\"https://github.com/DhruvaD1\"\u003e\u003ccode\u003e@​DhruvaD1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4038\"\u003ehyperium/hyper#4038\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eh2: expose current max stream count by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4026\"\u003ehyperium/hyper#4026\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(http1): allow keep-alive for chunked requests with trailers by \u003ca href=\"https://github.com/wi-adam\"\u003e\u003ccode\u003e@​wi-adam\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4043\"\u003ehyperium/hyper#4043\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(http2): cancel pipe_task and send RST_STREAM on response future drop by \u003ca href=\"https://github.com/mmishra100\"\u003e\u003ccode\u003e@​mmishra100\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/4042\"\u003ehyperium/hyper#4042\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd APIs to allow switching an HTTP1 connection to HTTP2 if H2 preface is seen by \u003ca href=\"https://github.com/pborzenkov\"\u003e\u003ccode\u003e@​pborzenkov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hyperium/hyper/pull/3996\"\u003ehyperium/hyper#3996\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hyperium/hyper/blob/master/CHANGELOG.md\"\u003ehyper's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.9.0 (2026-03-31)\u003c/h2\u003e\n\u003ch4\u003eBug Fixes\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003effi:\u003c/strong\u003e validate null pointers before dereferencing in request/response functions (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4038\"\u003e#4038\u003c/a\u003e (\u003ca href=\"https://github.com/hyperium/hyper/commit/28e73ccd230cff8d7e5b5880ce2ab5fb8ced36be\"\u003e28e73ccd\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ehttp1:\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003eallow keep-alive for chunked requests with trailers (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4043\"\u003e#4043\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/7211ec25eff2ea6ee783817fee2a221d4eb2ed03\"\u003e7211ec25\u003c/a\u003e, closes \u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4044\"\u003e#4044\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003euse case-insensitive matching for trailer fields (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4011\"\u003e#4011\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/3b344cac9f96a9365409086dde51d06aa797ffc3\"\u003e3b344cac\u003c/a\u003e, closes \u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4010\"\u003e#4010\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003euse httparse config for Servers (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4002\"\u003e#4002\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/bcb8ec576619650d3388604e6c246829e7be133a\"\u003ebcb8ec57\u003c/a\u003e, closes \u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/3923\"\u003e#3923\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ehttp2:\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003ecancel sending client request body on response future drop (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4042\"\u003e#4042\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/5b17a69ebcf969471c1a19b25ed2cb81299d1be6\"\u003e5b17a69e\u003c/a\u003e, closes \u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4040\"\u003e#4040\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003enon-utf8 char in Connection header may cause panic when calling to_str (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4019\"\u003e#4019\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/c36ca8a5c50e4a05a78aa3e158f13456ee674fb1\"\u003ec36ca8a5\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eFeatures\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclient:\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003eexpose HTTP/2 current max stream count (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4026\"\u003e#4026\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/d51cb71569bbca7927b3828ef11e3bec4fa97eb4\"\u003ed51cb715\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd HTTP/2 \u003ccode\u003emax_local_error_reset_streams\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4021\"\u003e#4021\u003c/a\u003e) (\u003ca href=\"https://github.com/hyperium/hyper/commit/577874591cae246dfb2d72d7140d794ac2fa605a\"\u003e57787459\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eerror:\u003c/strong\u003e add 'Error::is_parse_version_h2' method (\u003ca href=\"https://github.com/hyperium/hyper/commit/393c77c71138ff6e33d7089deac770a3f3f1436b\"\u003e393c77c7\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ehttp1:\u003c/strong\u003e add UpgradeableConnection::into_parts (\u003ca href=\"https://github.com/hyperium/hyper/commit/e21205cfe4066edbcddc56150d963dabbc7d3ec4\"\u003ee21205cf\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/hyper/commit/0d6c7d5469baa09e2fb127ee3758a79b3271a4f0\"\u003e\u003ccode\u003e0d6c7d5\u003c/code\u003e\u003c/a\u003e v1.9.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/hyper/commit/e21205cfe4066edbcddc56150d963dabbc7d3ec4\"\u003e\u003ccode\u003ee21205c\u003c/code\u003e\u003c/a\u003e feat(http1): add UpgradeableConnection::into_parts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/hyper/commit/393c77c71138ff6e33d7089deac770a3f3f1436b\"\u003e\u003ccode\u003e393c77c\u003c/code\u003e\u003c/a\u003e feat(error): add 'Error::is_parse_version_h2' method\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/hyper/commit/5b17a69ebcf969471c1a19b25ed2cb81299d1be6\"\u003e\u003ccode\u003e5b17a69\u003c/code\u003e\u003c/a\u003e fix(http2): cancel sending client request body on response future drop (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4042\"\u003e#4042\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/hyper/commit/7211ec25eff2ea6ee783817fee2a221d4eb2ed03\"\u003e\u003ccode\u003e7211ec2\u003c/code\u003e\u003c/a\u003e fix(http1): allow keep-alive for chunked requests with trailers (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4043\"\u003e#4043\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/hyper/commit/d51cb71569bbca7927b3828ef11e3bec4fa97eb4\"\u003e\u003ccode\u003ed51cb71\u003c/code\u003e\u003c/a\u003e feat(client): expose HTTP/2 current max stream count (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4026\"\u003e#4026\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/hyper/commit/28e73ccd230cff8d7e5b5880ce2ab5fb8ced36be\"\u003e\u003ccode\u003e28e73cc\u003c/code\u003e\u003c/a\u003e fix(ffi): validate null pointers before dereferencing in request/response fun...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/hyper/commit/e13e783927d429fc03038fe512eeb4d379cf1a70\"\u003e\u003ccode\u003ee13e783\u003c/code\u003e\u003c/a\u003e docs(client): fix HTTP/2 max concurrent stream link to spec (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4037\"\u003e#4037\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/hyper/commit/8ba900853b0f619b165e8530fc8c310bc13e056b\"\u003e\u003ccode\u003e8ba9008\u003c/code\u003e\u003c/a\u003e chore(dependencies): drop pin-utils dependency (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4023\"\u003e#4023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hyperium/hyper/commit/577874591cae246dfb2d72d7140d794ac2fa605a\"\u003e\u003ccode\u003e5778745\u003c/code\u003e\u003c/a\u003e feat(client): add HTTP/2 \u003ccode\u003emax_local_error_reset_streams\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/hyperium/hyper/issues/4021\"\u003e#4021\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hyperium/hyper/compare/v1.8.1...v1.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `indexmap` from 2.13.0 to 2.14.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/indexmap-rs/indexmap/blob/main/RELEASES.md\"\u003eindexmap's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.14.0 (2026-04-09)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eMSRV\u003c/strong\u003e: Rust 1.85.0 or later is now required.\u003c/li\u003e\n\u003cli\u003eUpdated the \u003ccode\u003ehashbrown\u003c/code\u003e dependency to 0.17.\u003c/li\u003e\n\u003cli\u003eMade more \u003ccode\u003emap::Slice\u003c/code\u003e methods \u003ccode\u003econst\u003c/code\u003e: \u003ccode\u003enew_mut\u003c/code\u003e, \u003ccode\u003efirst_mut\u003c/code\u003e, \u003ccode\u003elast_mut\u003c/code\u003e,\n\u003ccode\u003esplit_at_mut\u003c/code\u003e, \u003ccode\u003esplit_at_mut_checked\u003c/code\u003e, \u003ccode\u003esplit_first_mut\u003c/code\u003e, \u003ccode\u003esplit_last_mut\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.13.1 (2026-04-02)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMade some \u003ccode\u003eSlice\u003c/code\u003e methods \u003ccode\u003econst\u003c/code\u003e:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003emap::Slice::{first,last,split_at,split_at_checked,split_first,split_last}\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eset::Slice::{first,last,split_at,split_at_checked,split_first,split_last}\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/bcd165baeb12bdf6e57a31d9869e9839e25679c6\"\u003e\u003ccode\u003ebcd165b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/indexmap-rs/indexmap/issues/439\"\u003e#439\u003c/a\u003e from cuviper/release-2.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/4ef06a729e0af095d2f39ec4bda5e0882054726e\"\u003e\u003ccode\u003e4ef06a7\u003c/code\u003e\u003c/a\u003e Release 2.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/d21826ca9351e968e7c5cff4f818e7a5e3cc481b\"\u003e\u003ccode\u003ed21826c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/indexmap-rs/indexmap/issues/438\"\u003e#438\u003c/a\u003e from cuviper/hashbrown-0.17\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/2566bec20dfbca0fa037939e67df4938c0f60f01\"\u003e\u003ccode\u003e2566bec\u003c/code\u003e\u003c/a\u003e Upgrade to \u003ccode\u003ehashbrown v0.17\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/4b62776c3f7dec98a5b89f907c3add5c603343b0\"\u003e\u003ccode\u003e4b62776\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/indexmap-rs/indexmap/issues/437\"\u003e#437\u003c/a\u003e from cuviper/disjoint-panic\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/478fba2eb0594f0fdc70b6b93e90fae820bdf82e\"\u003e\u003ccode\u003e478fba2\u003c/code\u003e\u003c/a\u003e Normalize the panic doc of \u003ccode\u003eget_disjoint_mut\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/fb6dafda4ee443864c88b61a4dfc8982012d3d39\"\u003e\u003ccode\u003efb6dafd\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/indexmap-rs/indexmap/issues/436\"\u003e#436\u003c/a\u003e from cuviper/const-slice-mut\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/5c237a2ab7db4017b057f6b52e28c78dd427cd94\"\u003e\u003ccode\u003e5c237a2\u003c/code\u003e\u003c/a\u003e Make \u003ccode\u003eSlice::{first,last,split_*}_mut\u003c/code\u003e methods \u003ccode\u003econst\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/48ff9ce2e3a2a464e4f599691df62dff178d655b\"\u003e\u003ccode\u003e48ff9ce\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/indexmap-rs/indexmap/issues/435\"\u003e#435\u003c/a\u003e from cuviper/edition-2024\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indexmap-rs/indexmap/commit/648be98a3112278e1aea7c5b7d3c3a4f77e1eddb\"\u003e\u003ccode\u003e648be98\u003c/code\u003e\u003c/a\u003e \u003ccode\u003ecargo fmt\u003c/code\u003e with edition 2024\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/indexmap-rs/indexmap/compare/2.13.0...2.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `indicatif` from 0.18.3 to 0.18.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/console-rs/indicatif/releases\"\u003eindicatif's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.18.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einitial draft oft hold_max with heuristic by \u003ca href=\"https://github.com/djugei\"\u003e\u003ccode\u003e@​djugei\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/657\"\u003econsole-rs/indicatif#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix duration after finish by \u003ca href=\"https://github.com/luolong\"\u003e\u003ccode\u003e@​luolong\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/748\"\u003econsole-rs/indicatif#748\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd refresh rate warning for ProgressDrawTarget::term_like() by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/750\"\u003econsole-rs/indicatif#750\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSeeking heuristic tweaks by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/751\"\u003econsole-rs/indicatif#751\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose the current tab width by \u003ca href=\"https://github.com/alexisfontaine\"\u003e\u003ccode\u003e@​alexisfontaine\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/754\"\u003econsole-rs/indicatif#754\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake WASM support optional via a feature flag by \u003ca href=\"https://github.com/SvenFinn\"\u003e\u003ccode\u003e@​SvenFinn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/761\"\u003econsole-rs/indicatif#761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: respect NO_COLOR and TERM=dumb environment variables by \u003ca href=\"https://github.com/shaanmajid\"\u003e\u003ccode\u003e@​shaanmajid\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/console-rs/indicatif/pull/764\"\u003econsole-rs/indicatif#764\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/4de2f604c3f5af5556db0a1d15e296102879c8d9\"\u003e\u003ccode\u003e4de2f60\u003c/code\u003e\u003c/a\u003e Bump version to 0.18.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/8e0ab0e6b2b098afa68e62a9b41c6c9d6f74811d\"\u003e\u003ccode\u003e8e0ab0e\u003c/code\u003e\u003c/a\u003e fix: respect NO_COLOR and TERM=dumb environment variables\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/781b2d045bfecc61880ac7dbc171b72cc92eebab\"\u003e\u003ccode\u003e781b2d0\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/34aee0740c59ad5ba5688328aec122b05b3c2dea\"\u003e\u003ccode\u003e34aee07\u003c/code\u003e\u003c/a\u003e Introduce unicode-width feature\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/51d284f25dc6fa2b4d5b25b6d13201f683119c9a\"\u003e\u003ccode\u003e51d284f\u003c/code\u003e\u003c/a\u003e Introduce wasmbind feature\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/ee057e542d0c587c57871aa1487b3f828dd99bbf\"\u003e\u003ccode\u003eee057e5\u003c/code\u003e\u003c/a\u003e Bump tokio from 1.48.0 to 1.49.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/31bcea3a68acc00363c5be5d69d5f7c8b3a27ed5\"\u003e\u003ccode\u003e31bcea3\u003c/code\u003e\u003c/a\u003e Bump portable-atomic from 1.11.1 to 1.12.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/dbd26eb18157e5fad18c79e1933ad5f249165d6c\"\u003e\u003ccode\u003edbd26eb\u003c/code\u003e\u003c/a\u003e Bump console from 0.16.1 to 0.16.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/7ac4a0d1b8bb698619f9880105dc9d27799a3d55\"\u003e\u003ccode\u003e7ac4a0d\u003c/code\u003e\u003c/a\u003e Expose the current tab width\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/console-rs/indicatif/commit/95088ffd980a6f0cdd6571418fd9c6d6fd1603d1\"\u003e\u003ccode\u003e95088ff\u003c/code\u003e\u003c/a\u003e iter: clean up variable names, casting\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/console-rs/indicatif/compare/0.18.3...0.18.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `libc` from 0.2.180 to 0.2.186\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/libc/releases\"\u003elibc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.2.186\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eApple: Add \u003ccode\u003eKEVENT_FLAG_*\u003c/code\u003e constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5070\"\u003e#5070\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add \u003ccode\u003ePR_SET_MEMORY_MERGE\u003c/code\u003e and \u003ccode\u003ePR_GET_MEMORY_MERGE\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5060\"\u003e#5060\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCI: Migrate FreeBSD CI from Cirrus CI to GitHub Actions (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5058\"\u003e#5058\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.2.185\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEspIDF: Add \u003ccode\u003eespidf_picolibc\u003c/code\u003e cfg for picolibc \u003ccode\u003eO_*\u003c/code\u003e flag values (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5035\"\u003e#5035\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHexagon: add missing constants and fix types for linux-musl (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5042\"\u003e#5042\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRedox: Add semaphore functions (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5051\"\u003e#5051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eWindows: Add \u003ccode\u003esprintf\u003c/code\u003e, \u003ccode\u003esnprintf\u003c/code\u003e, and the \u003ccode\u003escanf\u003c/code\u003e family (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5024\"\u003e#5024\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eHexagon: Decouple \u003ccode\u003etime64\u003c/code\u003e types from musl symbol redirects (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5040\"\u003e#5040\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHorizon: Change \u003ccode\u003ePOLL\u003c/code\u003e constants from \u003ccode\u003ec_short\u003c/code\u003e to \u003ccode\u003ec_int\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5045\"\u003e#5045\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.2.184\u003c/h2\u003e\n\u003ch3\u003eMSRV\u003c/h3\u003e\n\u003cp\u003eThis release increases the MSRV of \u003ccode\u003elibc\u003c/code\u003e to 1.65. With this update, you can now always use the\n\u003ccode\u003ecore::ffi::c_*\u003c/code\u003e types with \u003ccode\u003elibc\u003c/code\u003e definitions, since \u003ccode\u003elibc\u003c/code\u003e has been changed to reexport from\n\u003ccode\u003ecore\u003c/code\u003e rather than redefining them. (This \u003cem\u003eusually\u003c/em\u003e worked before but had edge cases.)\n(\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4972\"\u003e#4972\u003c/a\u003e)\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBSD: Add \u003ccode\u003eIP_MINTTL\u003c/code\u003e to bsd (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5026\"\u003e#5026\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCygwin: Add \u003ccode\u003eTIOCM_DSR\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5031\"\u003e#5031\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFreeBSD: Added \u003ccode\u003exfile\u003c/code\u003e structe and file descriptor types (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5002\"\u003e#5002\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add CAN netlink bindings (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5011\"\u003e#5011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add \u003ccode\u003estruct ethhdr\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4239\"\u003e#4239\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add \u003ccode\u003estruct ifinfomsg\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5012\"\u003e#5012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Define \u003ccode\u003emax_align_t\u003c/code\u003e for riscv64 (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5029\"\u003e#5029\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNetBSD: Add missing \u003ccode\u003eCLOCK_\u003c/code\u003e constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5020\"\u003e#5020\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNuttX: Add \u003ccode\u003e_SC_HOST_NAME_MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5004\"\u003e#5004\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVxWorks: Add \u003ccode\u003eflock\u003c/code\u003e and \u003ccode\u003eF_*LCK\u003c/code\u003e constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4043\"\u003e#4043\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eWASI: Add all \u003ccode\u003e_SC_*\u003c/code\u003e sysconf constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5023\"\u003e#5023\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cp\u003eThe remaining fixed-width integer aliases, \u003ccode\u003e__uint128_t\u003c/code\u003e, \u003ccode\u003e__uint128\u003c/code\u003e, \u003ccode\u003e__int128_t\u003c/code\u003e, and \u003ccode\u003e__int128\u003c/code\u003e,\nhave been deprecated. Use \u003ccode\u003ei128\u003c/code\u003e and \u003ccode\u003eu128\u003c/code\u003e instead. (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4343\"\u003e#4343\u003c/a\u003e)\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/libc/blob/0.2.186/CHANGELOG.md\"\u003elibc's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/libc/compare/0.2.185...0.2.186\"\u003e0.2.186\u003c/a\u003e - 2026-04-24\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eApple: Add \u003ccode\u003eKEVENT_FLAG_*\u003c/code\u003e constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5070\"\u003e#5070\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add \u003ccode\u003ePR_SET_MEMORY_MERGE\u003c/code\u003e and \u003ccode\u003ePR_GET_MEMORY_MERGE\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5060\"\u003e#5060\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCI: Migrate FreeBSD CI from Cirrus CI to GitHub Actions (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5058\"\u003e#5058\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/libc/compare/0.2.184...0.2.185\"\u003e0.2.185\u003c/a\u003e - 2026-04-13\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEspIDF: Add \u003ccode\u003eespidf_picolibc\u003c/code\u003e cfg for picolibc \u003ccode\u003eO_*\u003c/code\u003e flag values (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5035\"\u003e#5035\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHexagon: add missing constants and fix types for linux-musl (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5042\"\u003e#5042\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRedox: Add semaphore functions (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5051\"\u003e#5051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eWindows: Add \u003ccode\u003esprintf\u003c/code\u003e, \u003ccode\u003esnprintf\u003c/code\u003e, and the \u003ccode\u003escanf\u003c/code\u003e family (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5024\"\u003e#5024\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eHexagon: Decouple \u003ccode\u003etime64\u003c/code\u003e types from musl symbol redirects (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5040\"\u003e#5040\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHorizon: Change \u003ccode\u003ePOLL\u003c/code\u003e constants from \u003ccode\u003ec_short\u003c/code\u003e to \u003ccode\u003ec_int\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5045\"\u003e#5045\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/rust-lang/libc/compare/0.2.183...0.2.184\"\u003e0.2.184\u003c/a\u003e - 2026-04-01\u003c/h2\u003e\n\u003ch3\u003eMSRV\u003c/h3\u003e\n\u003cp\u003eThis release increases the MSRV of \u003ccode\u003elibc\u003c/code\u003e to 1.65. With this update, you can now always use the\n\u003ccode\u003ecore::ffi::c_*\u003c/code\u003e types with \u003ccode\u003elibc\u003c/code\u003e definitions, since \u003ccode\u003elibc\u003c/code\u003e has been changed to reexport from\n\u003ccode\u003ecore\u003c/code\u003e rather than redefining them. (This \u003cem\u003eusually\u003c/em\u003e worked before but had edge cases.)\n(\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4972\"\u003e#4972\u003c/a\u003e)\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBSD: Add \u003ccode\u003eIP_MINTTL\u003c/code\u003e to bsd (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5026\"\u003e#5026\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCygwin: Add \u003ccode\u003eTIOCM_DSR\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5031\"\u003e#5031\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFreeBSD: Added \u003ccode\u003exfile\u003c/code\u003e structe and file descriptor types (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5002\"\u003e#5002\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add CAN netlink bindings (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5011\"\u003e#5011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add \u003ccode\u003estruct ethhdr\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4239\"\u003e#4239\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Add \u003ccode\u003estruct ifinfomsg\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5012\"\u003e#5012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLinux: Define \u003ccode\u003emax_align_t\u003c/code\u003e for riscv64 (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5029\"\u003e#5029\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNetBSD: Add missing \u003ccode\u003eCLOCK_\u003c/code\u003e constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5020\"\u003e#5020\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNuttX: Add \u003ccode\u003e_SC_HOST_NAME_MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5004\"\u003e#5004\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVxWorks: Add \u003ccode\u003eflock\u003c/code\u003e and \u003ccode\u003eF_*LCK\u003c/code\u003e constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/4043\"\u003e#4043\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eWASI: Add all \u003ccode\u003e_SC_*\u003c/code\u003e sysconf constants (\u003ca href=\"https://redirect.github.com/rust-lang/libc/pull/5023\"\u003e#5023\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/42620ffc4109dc32e02f1cae9e63a3f4311b4b71\"\u003e\u003ccode\u003e42620ff\u003c/code\u003e\u003c/a\u003e [0.2] libc: Release 0.2.186\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/9db2eaaaaea60e0b048785e41ca4eb9c50d30ad5\"\u003e\u003ccode\u003e9db2eaa\u003c/code\u003e\u003c/a\u003e apple: add KEVENT_FLAG_* constants\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/38409392ffb50288aa84e94b75fc37bd565fd5bc\"\u003e\u003ccode\u003e3840939\u003c/code\u003e\u003c/a\u003e Add PR_SET_MEMORY_MERGE and PR_GET_MEMORY_MERGE for linux\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/f697deb9440a8f916ec2fb95bef9e06fc847b6f7\"\u003e\u003ccode\u003ef697deb\u003c/code\u003e\u003c/a\u003e chore: migrate from Cirrus CI to GHA\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/71d5bfcc1bda05da1783666fc2cd7d9669c9c4c8\"\u003e\u003ccode\u003e71d5bfc\u003c/code\u003e\u003c/a\u003e libc: Release 0.2.185\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/1027d1c23bd3f07ba3dc6ab4a4eb4660cc91e509\"\u003e\u003ccode\u003e1027d1c\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;ci: Pin nightly to 2026-04-01\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/0e9c6e53cca07b36239a6dc4e65d8b691b39023a\"\u003e\u003ccode\u003e0e9c6e5\u003c/code\u003e\u003c/a\u003e redox: Add semaphore functions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/24ef457ddd312f8b8055a8ed07f5376c5792c211\"\u003e\u003ccode\u003e24ef457\u003c/code\u003e\u003c/a\u003e feat: add back support for gnu windows x86 in ci\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/aa75caf30c0153647c9ab9fc0fe382bce2564b0c\"\u003e\u003ccode\u003eaa75caf\u003c/code\u003e\u003c/a\u003e horizon: Change POLL constants from c_short to c_int\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/libc/commit/b7eda5a40c678c4a195a389a329d85008eabaf2d\"\u003e\u003ccode\u003eb7eda5a\u003c/code\u003e\u003c/a\u003e hexagon: add missing constants and fix types for linux-musl\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-lang/libc/compare/0.2.180...0.2.186\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `once_cell` from 1.21.3 to 1.21.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/matklad/once_cell/blob/master/CHANGELOG.md\"\u003eonce_cell's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.21.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix unsoundness in \u003ccode\u003eOnceCell::wait\u003c/code\u003e under \u003ccode\u003e--features=parking_lot\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/matklad/once_cell/pull/295\"\u003e#295\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eIf thread A calls \u003ccode\u003ewait\u003c/code\u003e, while thread B calls \u003ccode\u003eget_or_try_init(f)\u003c/code\u003e, and, furthermore, \u003ccode\u003ef\u003c/code\u003e panics,\nthe \u003ccode\u003ewait\u003c/code\u003e incorrectly returns and thread A observes uninitialized memory.\u003c/p\u003e\n\u003cp\u003eKudos to \u003ca href=\"https://github.com/meng-xu-cs\"\u003e\u003ccode\u003e@​meng-xu-cs\u003c/code\u003e\u003c/a\u003e for a nice find!\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/80fe900b21f6d76c1a2ed74d3343e8a3a88c46d0\"\u003e\u003ccode\u003e80fe900\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/matklad/once_cell/issues/296\"\u003e#296\u003c/a\u003e from matklad/matklad/plfix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/a5e09c971c23afb1a3be8ae32794e2dca940ccd4\"\u003e\u003ccode\u003ea5e09c9\u003c/code\u003e\u003c/a\u003e release 1.21.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/2426d45d85841879e71a880af543fd3d2be78db1\"\u003e\u003ccode\u003e2426d45\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/matklad/once_cell/issues/295\"\u003e#295\u003c/a\u003e from matklad/matklad/plfix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matklad/once_cell/commit/a1441215db85adb6a47b0aa1062d1eea7c5fba65\"\u003e\u003ccode\u003ea144121\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/mat...\n\n_Description has been truncated_","html_url":"https://github.com/donnyoregon/walrus/pull/34","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/donnyoregon%2Fwalrus/issues/34","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/34/packages"}},{"old_version":"1.7.1","new_version":"1.11.1","update_type":"minor","path":null,"pr_created_at":"2026-05-08T21:02:05.000Z","version_change":"1.7.1 → 1.11.1","issue":{"uuid":"4409375150","node_id":"PR_kwDOSMp2Uc7Zr6Do","number":23,"state":"closed","title":"Bump the cargo group across 2 directories with 8 updates","user":"dependabot[bot]","labels":["dependencies","rust"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-19T22:19:50.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-08T21:02:05.000Z","updated_at":"2026-05-19T22:19:52.000Z","time_to_close":955065,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"cargo","update_count":8,"packages":[{"name":"borsh","old_version":"0.10.3","new_version":"1.5.1","repository_url":"https://github.com/near/borsh-rs"},{"name":"tokio","old_version":"1.40.0","new_version":"1.42.1","repository_url":"https://github.com/tokio-rs/tokio"},{"name":"bytes","old_version":"1.7.1","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"crossbeam-channel","old_version":"0.5.13","new_version":"0.5.15","repository_url":"https://github.com/crossbeam-rs/crossbeam"},{"name":"keccak","old_version":"0.1.5","new_version":"0.1.6","repository_url":"https://github.com/RustCrypto/sponges"},{"name":"tar","old_version":"0.4.41","new_version":"0.4.45","repository_url":"https://github.com/alexcrichton/tar-rs"},{"name":"time","old_version":"0.3.36","new_version":"0.3.47","repository_url":"https://github.com/time-rs/time"},{"name":"tracing-subscriber","old_version":"0.3.18","new_version":"0.3.19","repository_url":"https://github.com/tokio-rs/tracing"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 8 updates in the /programs/mpl-token-metadata-main/clients/rust directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [borsh](https://github.com/near/borsh-rs) | `0.10.3` | `1.5.1` |\n| [tokio](https://github.com/tokio-rs/tokio) | `1.40.0` | `1.42.1` |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.7.1` | `1.11.1` |\n| [crossbeam-channel](https://github.com/crossbeam-rs/crossbeam) | `0.5.13` | `0.5.15` |\n| [keccak](https://github.com/RustCrypto/sponges) | `0.1.5` | `0.1.6` |\n| [tar](https://github.com/alexcrichton/tar-rs) | `0.4.41` | `0.4.45` |\n| [time](https://github.com/time-rs/time) | `0.3.36` | `0.3.47` |\n| [tracing-subscriber](https://github.com/tokio-rs/tracing) | `0.3.18` | `0.3.19` |\n\nBumps the cargo group with 2 updates in the /programs/mpl-token-metadata-main/programs/token-metadata directory: [borsh](https://github.com/near/borsh-rs) and [tokio](https://github.com/tokio-rs/tokio).\n\nUpdates `borsh` from 0.10.3 to 1.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/near/borsh-rs/releases\"\u003eborsh's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eborsh-derive-v1.5.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.5.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-derive-v1.5.0\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.5.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimplement \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eVecDeque\u003c/code\u003e and \u003ccode\u003eLinkedList\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/291\"\u003e#291\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix repository field of borsh-derive (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/288\"\u003e#288\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.4.0\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.4.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimpl \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eCow\u0026lt;'a, T\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eBorshSerialize\u003c/code\u003e/\u003ccode\u003eBoshDeserialize\u003c/code\u003e/\u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eCell\u003c/code\u003e/\u003ccode\u003eRefCell\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ereorg tests (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/285\"\u003e#285\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove conflicts with \u003ccode\u003eW\u003c/code\u003e/\u003ccode\u003eR\u003c/code\u003e parameters for \u003ccode\u003eBorshSerialize\u003c/code\u003e/\u003ccode\u003eBorshDeserialize\u003c/code\u003e derives (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix \u003ccode\u003etest_exhaustive_checks\u003c/code\u003e step + downgrade package for MSRV test (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/280\"\u003e#280\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.3.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.3.1\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix clippy (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebump \u003ccode\u003eproc-macro-crate\u003c/code\u003e to \u003ccode\u003e3\u003c/code\u003e; bump MSRV to \u003ccode\u003e1.67\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/274\"\u003e#274\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.3.0\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.3.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimpl \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eRc\u003c/code\u003e and \u003ccode\u003eArc\u003c/code\u003e; add doc for \u003ccode\u003erc\u003c/code\u003e feature (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.2.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.2.1\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eoptimize \u003ccode\u003eBorshSerialize\u003c/code\u003e derive for enums with unit variants (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/262\"\u003e#262\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/near/borsh-rs/blob/master/CHANGELOG.md\"\u003eborsh's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.5.0...borsh-v1.5.1\"\u003e1.5.1\u003c/a\u003e - 2024-05-30\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(schema)\u003c/em\u003e for \u003ccode\u003eHashMap\u0026lt;K, V\u0026gt;\u003c/code\u003e -\u0026gt; \u003ccode\u003eHashMap\u0026lt;K, V, S\u0026gt;\u003c/code\u003e, for \u003ccode\u003eHashSet\u0026lt;T\u0026gt;\u003c/code\u003e -\u0026gt; \u003ccode\u003eHashSet\u0026lt;T, S\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/294\"\u003e#294\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efixed linting warnings for Rust 1.78 stable,  1.80 nightly (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/295\"\u003e#295\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.4.0...borsh-v1.5.0\"\u003e1.5.0\u003c/a\u003e - 2024-04-29\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimplement \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eVecDeque\u003c/code\u003e and \u003ccode\u003eLinkedList\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/291\"\u003e#291\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix repository field of borsh-derive (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/288\"\u003e#288\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.3.1...borsh-v1.4.0\"\u003e1.4.0\u003c/a\u003e - 2024-03-25\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimpl \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eCow\u0026lt;'a, T\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eBorshSerialize\u003c/code\u003e/\u003ccode\u003eBoshDeserialize\u003c/code\u003e/\u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eCell\u003c/code\u003e/\u003ccode\u003eRefCell\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ereorg tests (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/285\"\u003e#285\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove conflicts with \u003ccode\u003eW\u003c/code\u003e/\u003ccode\u003eR\u003c/code\u003e parameters for \u003ccode\u003eBorshSerialize\u003c/code\u003e/\u003ccode\u003eBorshDeserialize\u003c/code\u003e derives (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix \u003ccode\u003etest_exhaustive_checks\u003c/code\u003e step + downgrade package for MSRV test (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/280\"\u003e#280\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.3.0...borsh-v1.3.1\"\u003e1.3.1\u003c/a\u003e - 2024-01-10\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix clippy (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebump \u003ccode\u003eproc-macro-crate\u003c/code\u003e to \u003ccode\u003e3\u003c/code\u003e; bump MSRV to \u003ccode\u003e1.67\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/274\"\u003e#274\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.2.1...borsh-v1.3.0\"\u003e1.3.0\u003c/a\u003e - 2023-12-07\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimpl \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eRc\u003c/code\u003e and \u003ccode\u003eArc\u003c/code\u003e; add doc for \u003ccode\u003erc\u003c/code\u003e feature (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.2.0...borsh-v1.2.1\"\u003e1.2.1\u003c/a\u003e - 2023-12-06\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eoptimize \u003ccode\u003eBorshSerialize\u003c/code\u003e derive for enums with unit variants (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/262\"\u003e#262\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix \u003ccode\u003erelease-plz\u003c/code\u003e error; exclude \u003ccode\u003e*.snap\u003c/code\u003e from \u003ccode\u003eborsh-derive\u003c/code\u003e publish (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/263\"\u003e#263\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.1.2...borsh-v1.2.0\"\u003e1.2.0\u003c/a\u003e - 2023-11-13\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd support for types from \u003ccode\u003eascii\u003c/code\u003e crate (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/255\"\u003e#255\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.1.1...borsh-v1.1.2\"\u003e1.1.2\u003c/a\u003e - 2023-11-08\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/f16cd07e3c982539352aa43f65abf3607461a7bc\"\u003e\u003ccode\u003ef16cd07\u003c/code\u003e\u003c/a\u003e chore: release (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/298\"\u003e#298\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/cdb8fa9bf7652df1b5e85b985045ee30e62ba5ae\"\u003e\u003ccode\u003ecdb8fa9\u003c/code\u003e\u003c/a\u003e feat(schema): for \u003ccode\u003eHashMap\\\u0026lt;K, V\u0026gt;\u003c/code\u003e -\u0026gt; \u003ccode\u003eHashMap\\\u0026lt;K, V, S\u0026gt;\u003c/code\u003e, for \u003ccode\u003eHashSet\\\u0026lt;T\u0026gt;\u003c/code\u003e -\u0026gt; ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/fa6225c26dc57cc061651050be651f4b2fcdb19a\"\u003e\u003ccode\u003efa6225c\u003c/code\u003e\u003c/a\u003e fix: fixed linting warnings for Rust 1.78 stable,  1.80 nightly (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/295\"\u003e#295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/6fa3057b0892360ec3e10ba5c897bb058c09580b\"\u003e\u003ccode\u003e6fa3057\u003c/code\u003e\u003c/a\u003e chore: release (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/289\"\u003e#289\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/238ea42994fd4f85ca03046aac1f676866492783\"\u003e\u003ccode\u003e238ea42\u003c/code\u003e\u003c/a\u003e feat: implement \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eVecDeque\u003c/code\u003e and \u003ccode\u003eLinkedList\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/291\"\u003e#291\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/96268f2970d1954f7481a381be9ab245c1d7518f\"\u003e\u003ccode\u003e96268f2\u003c/code\u003e\u003c/a\u003e Fix repository field of borsh-derive (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/288\"\u003e#288\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/410cab82204eaa884be64c4d6b9812e405de7f5e\"\u003e\u003ccode\u003e410cab8\u003c/code\u003e\u003c/a\u003e chore: release (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/f65fcce463f49c8935d65a3fd0573f6145e66a3a\"\u003e\u003ccode\u003ef65fcce\u003c/code\u003e\u003c/a\u003e test: reorg tests (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/285\"\u003e#285\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/5f33c594ee18b880fbd903aeb3875675ea8088a2\"\u003e\u003ccode\u003e5f33c59\u003c/code\u003e\u003c/a\u003e feat: impl \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eCow\\\u0026lt;'a, T\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/fbcfd1df492e45dfe5fcb2a5d8482e6d62cb2e45\"\u003e\u003ccode\u003efbcfd1d\u003c/code\u003e\u003c/a\u003e chore: remove conflicts with \u003ccode\u003eW\u003c/code\u003e/\u003ccode\u003eR\u003c/code\u003e parameters for \u003ccode\u003eBorshSerialize\u003c/code\u003e/`BorshDe...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v0.10.3...borsh-v1.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tokio` from 1.40.0 to 1.42.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/tokio/releases\"\u003etokio's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eTokio v1.42.1\u003c/h2\u003e\n\u003cp\u003eThis release fixes a soundness issue in the broadcast channel. The channel accepts values that are \u003ccode\u003eSend\u003c/code\u003e but \u003ccode\u003e!Sync\u003c/code\u003e. Previously, the channel called \u003ccode\u003eclone()\u003c/code\u003e on these values without synchronizing. This release fixes the channel by synchronizing calls to \u003ccode\u003e.clone()\u003c/code\u003e (Thanks Austin Bonander for finding and reporting the issue).\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esync: synchronize \u003ccode\u003eclone()\u003c/code\u003e call in broadcast channel (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/7232\"\u003e#7232\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/7232\"\u003e#7232\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tokio/pull/7232\"\u003etokio-rs/tokio#7232\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eTokio v1.42.0\u003c/h2\u003e\n\u003ch1\u003e1.42.0 (Dec 3rd, 2024)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eio: add \u003ccode\u003eAsyncFd::{try_io, try_io_mut}\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6967\"\u003e#6967\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eio: avoid \u003ccode\u003eptr-\u0026gt;ref-\u0026gt;ptr\u003c/code\u003e roundtrip in RegistrationSet (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6929\"\u003e#6929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eruntime: do not defer \u003ccode\u003eyield_now\u003c/code\u003e inside \u003ccode\u003eblock_in_place\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6999\"\u003e#6999\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eio: simplify io readiness logic (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6966\"\u003e#6966\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumented\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003enet: fix docs for \u003ccode\u003etokio::net::unix::{pid_t, gid_t, uid_t}\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6791\"\u003e#6791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etime: fix a typo in \u003ccode\u003eInstant\u003c/code\u003e docs (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6982\"\u003e#6982\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6791\"\u003e#6791\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tokio/pull/6791\"\u003etokio-rs/tokio#6791\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6929\"\u003e#6929\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tokio/pull/6929\"\u003etokio-rs/tokio#6929\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6966\"\u003e#6966\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tokio/pull/6966\"\u003etokio-rs/tokio#6966\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6967\"\u003e#6967\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tokio/pull/6967\"\u003etokio-rs/tokio#6967\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6982\"\u003e#6982\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tokio/pull/6982\"\u003etokio-rs/tokio#6982\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6999\"\u003e#6999\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tokio/pull/6999\"\u003etokio-rs/tokio#6999\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eTokio v1.41.1\u003c/h2\u003e\n\u003ch1\u003e1.41.1 (Nov 7th, 2024)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emetrics: fix bug with wrong number of buckets for the histogram (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6957\"\u003e#6957\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003enet: display \u003ccode\u003enet\u003c/code\u003e requirement for \u003ccode\u003enet::UdpSocket\u003c/code\u003e in docs (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6938\"\u003e#6938\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003enet: fix typo in \u003ccode\u003eTcpStream\u003c/code\u003e internal comment (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6944\"\u003e#6944\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6957\"\u003e#6957\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tokio/pull/6957\"\u003etokio-rs/tokio#6957\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6938\"\u003e#6938\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tokio/pull/6938\"\u003etokio-rs/tokio#6938\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6944\"\u003e#6944\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tokio/pull/6944\"\u003etokio-rs/tokio#6944\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/f7fb0bdc7a4b8db7b44aa34bf869cc76e61ef246\"\u003e\u003ccode\u003ef7fb0bd\u003c/code\u003e\u003c/a\u003e chore: prepare Tokio v1.42.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/9faea740df38c3691eb558b4a9387e2195960a85\"\u003e\u003ccode\u003e9faea74\u003c/code\u003e\u003c/a\u003e Merge 'tokio-1.38.x' into 'tokio.1.42.x'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/aa303bc2051f7c21b48bb7bfcafe8fd4f39afd21\"\u003e\u003ccode\u003eaa303bc\u003c/code\u003e\u003c/a\u003e chore: prepare Tokio v1.38.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/7b6ccb515ff067151ed62db835f735e5653f8784\"\u003e\u003ccode\u003e7b6ccb5\u003c/code\u003e\u003c/a\u003e chore: backport CI fixes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/4b174ce2c95fe1d1a217917db93fcc935e17e0da\"\u003e\u003ccode\u003e4b174ce\u003c/code\u003e\u003c/a\u003e sync: fix cloning value when receiving from broadcast channel\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/bb9d57017e100985f86d8ca41ac105ee9140423e\"\u003e\u003ccode\u003ebb9d570\u003c/code\u003e\u003c/a\u003e chore: prepare Tokio v1.42.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/7005\"\u003e#7005\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/af9c683d52415bf01709197778d49eec1ff78c44\"\u003e\u003ccode\u003eaf9c683\u003c/code\u003e\u003c/a\u003e tests: fix typo in build test instructions (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/7004\"\u003e#7004\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/4bc5a1a05862bad71f85a38bf3c56f721a97b43f\"\u003e\u003ccode\u003e4bc5a1a\u003c/code\u003e\u003c/a\u003e ci: allow Unicode-3.0 license for unicode-ident (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/7006\"\u003e#7006\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/f8948ea021bd4b5626bbd8dee89bee51ba766326\"\u003e\u003ccode\u003ef8948ea\u003c/code\u003e\u003c/a\u003e runtime: do not defer \u003ccode\u003eyield_now\u003c/code\u003e inside \u003ccode\u003eblock_in_place\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6999\"\u003e#6999\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/bce9780dd3127cd937923d975e356299226a39aa\"\u003e\u003ccode\u003ebce9780\u003c/code\u003e\u003c/a\u003e time: use \u003ccode\u003earray::from_fn\u003c/code\u003e instead of manually creating array (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/7000\"\u003e#7000\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/tokio/compare/tokio-1.40.0...tokio-1.42.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.7.1 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.10.1\u003c/h2\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/bytes/pull/773\"\u003etokio-rs/bytes#773\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eBytes v1.10.0\u003c/h2\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.9.0 (November 27, 2024)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eBytes::from_owner\u003c/code\u003e to enable externally-allocated memory (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/742\"\u003e#742\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumented\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.7.1...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `crossbeam-channel` from 0.5.13 to 0.5.15\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/crossbeam-rs/crossbeam/releases\"\u003ecrossbeam-channel's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ecrossbeam-channel 0.5.15\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix regression introduced in 0.5.12 that can lead to a double free when dropping unbounded channel. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1187\"\u003e#1187\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ecrossbeam-channel 0.5.14\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix stack overflow when sending large value to unbounded channel. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1146\"\u003e#1146\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1147\"\u003e#1147\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eSelect::new_biased\u003c/code\u003e function. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1150\"\u003e#1150\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove inefficient spinning. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1154\"\u003e#1154\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSuppress buggy \u003ccode\u003eclippy::zero_repeat_side_effects\u003c/code\u003e lint in macro generated code. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1123\"\u003e#1123\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/d35ffde18a76ae9667f602d8c0127ff89ac2e4d4\"\u003e\u003ccode\u003ed35ffde\u003c/code\u003e\u003c/a\u003e Prepare for the next release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/6ec74ecae896df5fc239518b45a1bfd258c9db68\"\u003e\u003ccode\u003e6ec74ec\u003c/code\u003e\u003c/a\u003e crossbeam-channel: prevent double free on Drop (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1187\"\u003e#1187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/ccd83ac4108a2a1b41e9c6e79c87267167d18dfa\"\u003e\u003ccode\u003eccd83ac\u003c/code\u003e\u003c/a\u003e Prepare for the next release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/54988eb2399c889fb82926c1508bb0ec31bedba2\"\u003e\u003ccode\u003e54988eb\u003c/code\u003e\u003c/a\u003e Calculate layout in const context\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/761d0b67e2849479f7b376b4c02a191f6ed796aa\"\u003e\u003ccode\u003e761d0b6\u003c/code\u003e\u003c/a\u003e Port \u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1146\"\u003e#1146\u003c/a\u003e \u0026amp; \u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1147\"\u003e#1147\u003c/a\u003e to deque::Injector and queue::SegQueue\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/8144fbb41e67046d341034843887b0dd5963cddb\"\u003e\u003ccode\u003e8144fbb\u003c/code\u003e\u003c/a\u003e Remove optimistic spinning from Context::wait_until\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/a92f6c4fbb5527ef4f86239fd18df426b4e1d84f\"\u003e\u003ccode\u003ea92f6c4\u003c/code\u003e\u003c/a\u003e Bump peter-evans/create-pull-request from 5 to 7 (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1153\"\u003e#1153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/66d41a904f8f51d82d806b86856d72290202d491\"\u003e\u003ccode\u003e66d41a9\u003c/code\u003e\u003c/a\u003e channel: Add new_biased constructor for biased channel selection (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1150\"\u003e#1150\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/d0d0a80be89a976a66292ed7d3fb562f9d3d590b\"\u003e\u003ccode\u003ed0d0a80\u003c/code\u003e\u003c/a\u003e CachePadded: Use 128-byte alignment on arm64ec\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/f757eefca227f67cb9dc8b90c07500728151f501\"\u003e\u003ccode\u003ef757eef\u003c/code\u003e\u003c/a\u003e Add comment about fixed rustc bug\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/crossbeam-rs/crossbeam/compare/crossbeam-channel-0.5.13...crossbeam-channel-0.5.15\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `keccak` from 0.1.5 to 0.1.6\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/sponges/commit/a8936d9662ca92fd177d289580066ceabb937b0c\"\u003e\u003ccode\u003ea8936d9\u003c/code\u003e\u003c/a\u003e keccak v0.1.6\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/RustCrypto/sponges/compare/keccak-v0.1.5...keccak-v0.1.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 0.4.41 to 0.4.45\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/096e3d16d14fefac51bc4d94d616b21546ea8bcc\"\u003e\u003ccode\u003e096e3d1\u003c/code\u003e\u003c/a\u003e Bump to 0.4.45 (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/443\"\u003e#443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/17b1fd84e632071cb8eef9d3709bf347bd266446\"\u003e\u003ccode\u003e17b1fd8\u003c/code\u003e\u003c/a\u003e archive: Prevent symlink-directory collision chmod attack (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/de1a5870e603758f430073688691165f21a33946\"\u003e\u003ccode\u003ede1a587\u003c/code\u003e\u003c/a\u003e archive: Unconditionally honor PAX size (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/441\"\u003e#441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/6071cbe74acefa8c8322809bfd43c825e5f16b60\"\u003e\u003ccode\u003e6071cbe\u003c/code\u003e\u003c/a\u003e ci: Consolidate workflows (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/439\"\u003e#439\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/ad1fde9edfb9657d17666bbec2933119ce527359\"\u003e\u003ccode\u003ead1fde9\u003c/code\u003e\u003c/a\u003e build-sys: Promote unused_code to an error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/c8cb250e8bc3f28bd69406b396bb8a92b40012c1\"\u003e\u003ccode\u003ec8cb250\u003c/code\u003e\u003c/a\u003e tests: Squash a warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/638c495a480d2a50099d55f445ece9e5f544b49d\"\u003e\u003ccode\u003e638c495\u003c/code\u003e\u003c/a\u003e ci: Add xtask infra + reverse dependency testing (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/435\"\u003e#435\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/32a9bbb26468cbdecbf73fe8eb249284d4a718ed\"\u003e\u003ccode\u003e32a9bbb\u003c/code\u003e\u003c/a\u003e tests: Add RandomReader to exercise partial-read resilience (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/436\"\u003e#436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/9c5df0bfd70d1b063516b90fca2cf2e0dbe8b758\"\u003e\u003ccode\u003e9c5df0b\u003c/code\u003e\u003c/a\u003e Fix GNU long-name extension stream corruption on validation error (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/88b1e3b0da65b0c5b9750d1a75516145488f4793\"\u003e\u003ccode\u003e88b1e3b\u003c/code\u003e\u003c/a\u003e Fix docs typo in header.rs (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alexcrichton/tar-rs/compare/0.4.41...0.4.45\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.36 to 0.3.47\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.47\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.46\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.45\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.44\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.43\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.42\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.41\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.40\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.39\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.38\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.37\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003etime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.47 [2026-02-05]\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eThe possibility of a stack exhaustion denial of service attack when parsing RFC 2822 has been\neliminated. Previously, it was possible to craft input that would cause unbounded recursion. Now,\nthe depth of the recursion is tracked, causing an error to be returned if it exceeds a reasonable\nlimit.\u003c/p\u003e\n\u003cp\u003eThis attack vector requires parsing user-provided input, with any type, using the RFC 2822 format.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCompatibility\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAttempting to format a value with a well-known format (i.e. RFC 3339, RFC 2822, or ISO 8601) will\nerror at compile time if the type being formatted does not provide sufficient information. This\nwould previously fail at runtime. Similarly, attempting to format a value with ISO 8601 that is\nonly configured for parsing (i.e. \u003ccode\u003eIso8601::PARSING\u003c/code\u003e) will error at compile time.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBuilder methods for format description modifiers, eliminating the need for verbose initialization\nwhen done manually.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edate!(2026-W01-2)\u003c/code\u003e is now supported. Previously, a space was required between \u003ccode\u003eW\u003c/code\u003e and \u003ccode\u003e01\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[end]\u003c/code\u003e now has a \u003ccode\u003etrailing_input\u003c/code\u003e modifier which can either be \u003ccode\u003eprohibit\u003c/code\u003e (the default) or\n\u003ccode\u003ediscard\u003c/code\u003e. When it is \u003ccode\u003ediscard\u003c/code\u003e, all remaining input is ignored. Note that if there are components\nafter \u003ccode\u003e[end]\u003c/code\u003e, they will still attempt to be parsed, likely resulting in an error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMore performance gains when parsing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIf manually formatting a value, the number of bytes written was one short for some components.\nThis has been fixed such that the number of bytes written is always correct.\u003c/li\u003e\n\u003cli\u003eThe possibility of integer overflow when parsing an owned format description has been effectively\neliminated. This would previously wrap when overflow checks were disabled. Instead of storing the\ndepth as \u003ccode\u003eu8\u003c/code\u003e, it is stored as \u003ccode\u003eu32\u003c/code\u003e. This would require multiple gigabytes of nested input to\noverflow, at which point we've got other problems and trivial mitigations are available by\ndownstream users.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.46 [2026-01-23]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAll possible panics are now documented for the relevant methods.\u003c/li\u003e\n\u003cli\u003eThe need to use \u003ccode\u003e#[serde(default)]\u003c/code\u003e when using custom \u003ccode\u003eserde\u003c/code\u003e formats is documented. This applies\nonly when deserializing an \u003ccode\u003eOption\u0026lt;T\u0026gt;\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDuration::nanoseconds_i128\u003c/code\u003e has been made public, mirroring\n\u003ccode\u003estd::time::Duration::from_nanos_u128\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/d5144cd2874862d46466c900910cd8577d066019\"\u003e\u003ccode\u003ed5144cd\u003c/code\u003e\u003c/a\u003e v0.3.47 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/f6206b050fd54817d8872834b4d61f605570e89b\"\u003e\u003ccode\u003ef6206b0\u003c/code\u003e\u003c/a\u003e Guard against integer overflow in release mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/1c63dc7985b8fa26bd8c689423cc56b7a03841ee\"\u003e\u003ccode\u003e1c63dc7\u003c/code\u003e\u003c/a\u003e Avoid denial of service when parsing Rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/5940df6e72efb63d246ca1ca59a0f836ad32ad8a\"\u003e\u003ccode\u003e5940df6\u003c/code\u003e\u003c/a\u003e Add builder methods to avoid verbose construction\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/00881a4da1bc5a6cb6313052e5017dbd7daa40f0\"\u003e\u003ccode\u003e00881a4\u003c/code\u003e\u003c/a\u003e Manually format macros everywhere\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/bb723b6d826e46c174d75cd08987061984b0ceb7\"\u003e\u003ccode\u003ebb723b6\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003etrailing_input\u003c/code\u003e modifier to \u003ccode\u003eend\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/31c4f8e0b56e6ae24fe0d6ef0e492b6741dda783\"\u003e\u003ccode\u003e31c4f8e\u003c/code\u003e\u003c/a\u003e Permit \u003ccode\u003eW12\u003c/code\u003e in \u003ccode\u003edate!\u003c/code\u003e macro\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/490a17bf306576850f33a86d3ca95d96db7b1dcd\"\u003e\u003ccode\u003e490a17b\u003c/code\u003e\u003c/a\u003e Mark error paths in well-known formats as cold\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6cb1896a600be1538ecfab8f233fe9cfe9fa8951\"\u003e\u003ccode\u003e6cb1896\u003c/code\u003e\u003c/a\u003e Optimize \u003ccode\u003eRfc2822\u003c/code\u003e parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6d264d59c25e3da0453c3defebf4640b0086a006\"\u003e\u003ccode\u003e6d264d5\u003c/code\u003e\u003c/a\u003e Remove erroneous \u003ccode\u003e#[inline(never)]\u003c/code\u003e attributes\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/time-rs/time/compare/v0.3.36...v0.3.47\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tracing-subscriber` from 0.3.18 to 0.3.19\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/tracing/releases\"\u003etracing-subscriber's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003etracing-subscriber 0.3.19\u003c/h2\u003e\n\u003cp\u003e[ [crates.io][crate-0.3.19] ] | [ [docs.rs][docs-0.3.19] ]\u003c/p\u003e\n\u003cp\u003eThis release updates the \u003ccode\u003etracing\u003c/code\u003e dependency to [v0.1.41][tracing-0.1.41] and\nthe \u003ccode\u003etracing-serde\u003c/code\u003e dependency to [v0.2.0][tracing-serde-0.2.0].\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eset_span_events\u003c/code\u003e to \u003ccode\u003efmt::Subscriber\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/2962\"\u003e#2962\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etracing\u003c/strong\u003e: Allow \u003ccode\u003e\u0026amp;[u8]\u003c/code\u003e to be recorded as event/span field (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/2954\"\u003e#2954\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSet \u003ccode\u003elog\u003c/code\u003e max level when reloading (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/1270\"\u003e#1270\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump MSRV to 1.63 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/2793\"\u003e#2793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse const \u003ccode\u003ethread_local\u003c/code\u003es when possible (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/2838\"\u003e#2838\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDon't gate \u003ccode\u003ewith_ansi()\u003c/code\u003e on the \u0026quot;ansi\u0026quot; feature (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3020\"\u003e#3020\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdated tracing-serde to 0.2.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3160\"\u003e#3160\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/1270\"\u003e#1270\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tracing/pull/1270\"\u003etokio-rs/tracing#1270\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/2793\"\u003e#2793\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tracing/pull/2793\"\u003etokio-rs/tracing#2793\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/2838\"\u003e#2838\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tracing/pull/2838\"\u003etokio-rs/tracing#2838\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/2954\"\u003e#2954\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tracing/pull/2954\"\u003etokio-rs/tracing#2954\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/2962\"\u003e#2962\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tracing/pull/2962\"\u003etokio-rs/tracing#2962\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3020\"\u003e#3020\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tracing/pull/3020\"\u003etokio-rs/tracing#3020\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3160\"\u003e#3160\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tracing/pull/3160\"\u003etokio-rs/tracing#3160\u003c/a\u003e\n[tracing-0.1.41]:\n\u003ca href=\"https://github.com/tokio-rs/tracing/releases/tag/tracing-0.1.41\"\u003ehttps://github.com/tokio-rs/tracing/releases/tag/tracing-0.1.41\u003c/a\u003e\n[tracing-serde-0.2.0]:\n\u003ca href=\"https://github.com/tokio-rs/tracing/releases/tag/tracing-serde-0.2.0\"\u003ehttps://github.com/tokio-rs/tracing/releases/tag/tracing-serde-0.2.0\u003c/a\u003e\n[docs-0.3.19]: \u003ca href=\"https://docs.rs/tracing-subscriber/0.3.19/tracing_subscriber/\"\u003ehttps://docs.rs/tracing-subscriber/0.3.19/tracing_subscriber/\u003c/a\u003e\n[crate-0.3.19]: \u003ca href=\"https://crates.io/crates/tracing-subscriber/0.3.19\"\u003ehttps://crates.io/crates/tracing-subscriber/0.3.19\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/311c31321657ba657ccf63e10bc92a45a079fa2b\"\u003e\u003ccode\u003e311c313\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-subscriber 0.3.19 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3162\"\u003e#3162\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/35f360a1924319c822f20da412be66854bf9428b\"\u003e\u003ccode\u003e35f360a\u003c/code\u003e\u003c/a\u003e chore: fix new Clippy lints in Rust 1.83.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3165\"\u003e#3165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/c66a692e671903712c1bd598082fc018f7f8568e\"\u003e\u003ccode\u003ec66a692\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-serde 0.2.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3160\"\u003e#3160\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/0ca78870815a34a345a908f48db057057e8803d2\"\u003e\u003ccode\u003e0ca7887\u003c/code\u003e\u003c/a\u003e chore: prepare tracing 0.1.41 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3159\"\u003e#3159\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/504a287abbf93ef0ffae09688210f423e8061160\"\u003e\u003ccode\u003e504a287\u003c/code\u003e\u003c/a\u003e tracing: update core to v0.1.33 and attributes to v0.1.28 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3156\"\u003e#3156\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/baa54894067b245bad0af8e45f92279e25820659\"\u003e\u003ccode\u003ebaa5489\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-attributes 0.1.28 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3155\"\u003e#3155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/cb0f0e71dd1020d63f2190ffef298b989c9e88b0\"\u003e\u003ccode\u003ecb0f0e7\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-core 0.1.33 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3153\"\u003e#3153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/11c82730359f60b290cba0a405947b23c0a68d7b\"\u003e\u003ccode\u003e11c8273\u003c/code\u003e\u003c/a\u003e subscriber: don't gate \u003ccode\u003ewith_ansi()\u003c/code\u003e on the \u0026quot;ansi\u0026quot; feature (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3020\"\u003e#3020\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/8a25a16873d2970a6ac0577a0ceea916f3013424\"\u003e\u003ccode\u003e8a25a16\u003c/code\u003e\u003c/a\u003e core: fix missed \u003ccode\u003eregister_callsite\u003c/code\u003e error (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/2938\"\u003e#2938\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/6f08af07f249a88aa5b34be98c3eb596aef9fc15\"\u003e\u003ccode\u003e6f08af0\u003c/code\u003e\u003c/a\u003e subscriber: set \u003ccode\u003elog\u003c/code\u003e max level when reloading (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/1270\"\u003e#1270\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/tracing/compare/tracing-subscriber-0.3.18...tracing-subscriber-0.3.19\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `borsh` from 0.10.3 to 1.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/near/borsh-rs/releases\"\u003eborsh's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eborsh-derive-v1.5.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.5.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-derive-v1.5.0\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.5.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimplement \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eVecDeque\u003c/code\u003e and \u003ccode\u003eLinkedList\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/291\"\u003e#291\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix repository field of borsh-derive (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/288\"\u003e#288\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.4.0\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.4.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimpl \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eCow\u0026lt;'a, T\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eBorshSerialize\u003c/code\u003e/\u003ccode\u003eBoshDeserialize\u003c/code\u003e/\u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eCell\u003c/code\u003e/\u003ccode\u003eRefCell\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ereorg tests (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/285\"\u003e#285\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove conflicts with \u003ccode\u003eW\u003c/code\u003e/\u003ccode\u003eR\u003c/code\u003e parameters for \u003ccode\u003eBorshSerialize\u003c/code\u003e/\u003ccode\u003eBorshDeserialize\u003c/code\u003e derives (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix \u003ccode\u003etest_exhaustive_checks\u003c/code\u003e step + downgrade package for MSRV test (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/280\"\u003e#280\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.3.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.3.1\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix clippy (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebump \u003ccode\u003eproc-macro-crate\u003c/code\u003e to \u003ccode\u003e3\u003c/code\u003e; bump MSRV to \u003ccode\u003e1.67\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/274\"\u003e#274\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.3.0\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.3.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimpl \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eRc\u003c/code\u003e and \u003ccode\u003eArc\u003c/code\u003e; add doc for \u003ccode\u003erc\u003c/code\u003e feature (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eborsh-derive-v1.2.1\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003eborsh-v1.2.1\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eoptimize \u003ccode\u003eBorshSerialize\u003c/code\u003e derive for enums with unit variants (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/262\"\u003e#262\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/near/borsh-rs/blob/master/CHANGELOG.md\"\u003eborsh's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.5.0...borsh-v1.5.1\"\u003e1.5.1\u003c/a\u003e - 2024-05-30\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(schema)\u003c/em\u003e for \u003ccode\u003eHashMap\u0026lt;K, V\u0026gt;\u003c/code\u003e -\u0026gt; \u003ccode\u003eHashMap\u0026lt;K, V, S\u0026gt;\u003c/code\u003e, for \u003ccode\u003eHashSet\u0026lt;T\u0026gt;\u003c/code\u003e -\u0026gt; \u003ccode\u003eHashSet\u0026lt;T, S\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/294\"\u003e#294\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efixed linting warnings for Rust 1.78 stable,  1.80 nightly (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/295\"\u003e#295\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.4.0...borsh-v1.5.0\"\u003e1.5.0\u003c/a\u003e - 2024-04-29\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimplement \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eVecDeque\u003c/code\u003e and \u003ccode\u003eLinkedList\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/291\"\u003e#291\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix repository field of borsh-derive (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/288\"\u003e#288\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.3.1...borsh-v1.4.0\"\u003e1.4.0\u003c/a\u003e - 2024-03-25\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimpl \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eCow\u0026lt;'a, T\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eBorshSerialize\u003c/code\u003e/\u003ccode\u003eBoshDeserialize\u003c/code\u003e/\u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eCell\u003c/code\u003e/\u003ccode\u003eRefCell\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/265\"\u003e#265\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ereorg tests (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/285\"\u003e#285\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove conflicts with \u003ccode\u003eW\u003c/code\u003e/\u003ccode\u003eR\u003c/code\u003e parameters for \u003ccode\u003eBorshSerialize\u003c/code\u003e/\u003ccode\u003eBorshDeserialize\u003c/code\u003e derives (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/283\"\u003e#283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix \u003ccode\u003etest_exhaustive_checks\u003c/code\u003e step + downgrade package for MSRV test (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/280\"\u003e#280\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.3.0...borsh-v1.3.1\"\u003e1.3.1\u003c/a\u003e - 2024-01-10\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix clippy (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/275\"\u003e#275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebump \u003ccode\u003eproc-macro-crate\u003c/code\u003e to \u003ccode\u003e3\u003c/code\u003e; bump MSRV to \u003ccode\u003e1.67\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/274\"\u003e#274\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.2.1...borsh-v1.3.0\"\u003e1.3.0\u003c/a\u003e - 2023-12-07\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimpl \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eRc\u003c/code\u003e and \u003ccode\u003eArc\u003c/code\u003e; add doc for \u003ccode\u003erc\u003c/code\u003e feature (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/268\"\u003e#268\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.2.0...borsh-v1.2.1\"\u003e1.2.1\u003c/a\u003e - 2023-12-06\u003c/h2\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eoptimize \u003ccode\u003eBorshSerialize\u003c/code\u003e derive for enums with unit variants (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/262\"\u003e#262\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix \u003ccode\u003erelease-plz\u003c/code\u003e error; exclude \u003ccode\u003e*.snap\u003c/code\u003e from \u003ccode\u003eborsh-derive\u003c/code\u003e publish (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/263\"\u003e#263\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.1.2...borsh-v1.2.0\"\u003e1.2.0\u003c/a\u003e - 2023-11-13\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd support for types from \u003ccode\u003eascii\u003c/code\u003e crate (\u003ca href=\"https://redirect.github.com/near/borsh-rs/pull/255\"\u003e#255\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v1.1.1...borsh-v1.1.2\"\u003e1.1.2\u003c/a\u003e - 2023-11-08\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/f16cd07e3c982539352aa43f65abf3607461a7bc\"\u003e\u003ccode\u003ef16cd07\u003c/code\u003e\u003c/a\u003e chore: release (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/298\"\u003e#298\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/cdb8fa9bf7652df1b5e85b985045ee30e62ba5ae\"\u003e\u003ccode\u003ecdb8fa9\u003c/code\u003e\u003c/a\u003e feat(schema): for \u003ccode\u003eHashMap\\\u0026lt;K, V\u0026gt;\u003c/code\u003e -\u0026gt; \u003ccode\u003eHashMap\\\u0026lt;K, V, S\u0026gt;\u003c/code\u003e, for \u003ccode\u003eHashSet\\\u0026lt;T\u0026gt;\u003c/code\u003e -\u0026gt; ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/fa6225c26dc57cc061651050be651f4b2fcdb19a\"\u003e\u003ccode\u003efa6225c\u003c/code\u003e\u003c/a\u003e fix: fixed linting warnings for Rust 1.78 stable,  1.80 nightly (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/295\"\u003e#295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/6fa3057b0892360ec3e10ba5c897bb058c09580b\"\u003e\u003ccode\u003e6fa3057\u003c/code\u003e\u003c/a\u003e chore: release (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/289\"\u003e#289\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/238ea42994fd4f85ca03046aac1f676866492783\"\u003e\u003ccode\u003e238ea42\u003c/code\u003e\u003c/a\u003e feat: implement \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eVecDeque\u003c/code\u003e and \u003ccode\u003eLinkedList\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/291\"\u003e#291\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/96268f2970d1954f7481a381be9ab245c1d7518f\"\u003e\u003ccode\u003e96268f2\u003c/code\u003e\u003c/a\u003e Fix repository field of borsh-derive (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/288\"\u003e#288\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/410cab82204eaa884be64c4d6b9812e405de7f5e\"\u003e\u003ccode\u003e410cab8\u003c/code\u003e\u003c/a\u003e chore: release (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/282\"\u003e#282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/f65fcce463f49c8935d65a3fd0573f6145e66a3a\"\u003e\u003ccode\u003ef65fcce\u003c/code\u003e\u003c/a\u003e test: reorg tests (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/285\"\u003e#285\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/5f33c594ee18b880fbd903aeb3875675ea8088a2\"\u003e\u003ccode\u003e5f33c59\u003c/code\u003e\u003c/a\u003e feat: impl \u003ccode\u003eBorshSchema\u003c/code\u003e for \u003ccode\u003eCow\\\u0026lt;'a, T\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/near/borsh-rs/issues/284\"\u003e#284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/near/borsh-rs/commit/fbcfd1df492e45dfe5fcb2a5d8482e6d62cb2e45\"\u003e\u003ccode\u003efbcfd1d\u003c/code\u003e\u003c/a\u003e chore: remove conflicts with \u003ccode\u003eW\u003c/code\u003e/\u003ccode\u003eR\u003c/code\u003e parameters for \u003ccode\u003eBorshSerialize\u003c/code\u003e/`BorshDe...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/near/borsh-rs/compare/borsh-v0.10.3...borsh-v1.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.7.1 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.10.1\u003c/h2\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/bytes/pull/773\"\u003etokio-rs/bytes#773\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eBytes v1.10.0\u003c/h2\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.9.0 (November 27, 2024)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eBytes::from_owner\u003c/code\u003e to enable externally-allocated memory (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/742\"\u003e#742\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumented\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.7.1...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `crossbeam-channel` from 0.5.13 to 0.5.15\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/crossbeam-rs/crossbeam/releases\"\u003ecrossbeam-channel's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ecrossbeam-channel 0.5.15\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix regression introduced in 0.5.12 that can lead to a double free when dropping unbounded channel. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1187\"\u003e#1187\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ecrossbeam-channel 0.5.14\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix stack overflow when sending large value to unbounded channel. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1146\"\u003e#1146\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1147\"\u003e#1147\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eSelect::new_biased\u003c/code\u003e function. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1150\"\u003e#1150\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove inefficient spinning. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1154\"\u003e#1154\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSuppress buggy \u003ccode\u003eclippy::zero_repeat_side_effects\u003c/code\u003e lint in macro generated code. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1123\"\u003e#1123\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/d35ffde18a76ae9667f602d8c0127ff89ac2e4d4\"\u003e\u003ccode\u003ed35ffde\u003c/code\u003e\u003c/a\u003e Prepare for the next release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/6ec74ecae896df5fc239518b45a1bfd258c9db68\"\u003e\u003ccode\u003e6ec74ec\u003c/code\u003e\u003c/a\u003e crossbeam-channel: prevent double free on Drop (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1187\"\u003e#1187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/ccd83ac4108a2a1b41e9c6e79c87267167d18dfa\"\u003e\u003ccode\u003eccd83ac\u003c/code\u003e\u003c/a\u003e Prepare for the next release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/54988eb2399c889fb82926c1508bb0ec31bedba2\"\u003e\u003ccode\u003e54988eb\u003c/code\u003e\u003c/a\u003e Calculate layout in const context\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/761d0b67e2849479f7b376b4c02a191f6ed796aa\"\u003e\u003ccode\u003e761d0b6\u003c/code\u003e\u003c/a\u003e Port \u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1146\"\u003e#1146\u003c/a\u003e \u0026amp; \u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1147\"\u003e#1147\u003c/a\u003e to deque::Injector and queue::SegQueue\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/8144fbb41e67046d3410...\n\n_Description has been truncated_","html_url":"https://github.com/clawdsolana/OpenClawd/pull/23","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/clawdsolana%2FOpenClawd/issues/23","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/23/packages"}},{"old_version":"1.8.0","new_version":"1.11.1","update_type":"minor","path":null,"pr_created_at":"2026-05-08T15:58:57.000Z","version_change":"1.8.0 → 1.11.1","issue":{"uuid":"4407668333","node_id":"PR_kwDONNVomc7ZmPQD","number":8,"state":"closed","title":"Bump the cargo group across 2 directories with 17 updates","user":"dependabot[bot]","labels":["dependencies","rust"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-28T17:26:49.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-08T15:58:57.000Z","updated_at":"2026-05-28T17:26:52.000Z","time_to_close":1733272,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"cargo","update_count":17,"packages":[{"name":"tokio","old_version":"1.38.1","new_version":"1.38.2","repository_url":"https://github.com/tokio-rs/tokio"},{"name":"sequoia-openpgp","old_version":"1.21.2","new_version":"2.1.0"},{"name":"rand","old_version":"0.8.5","new_version":"0.8.6","repository_url":"https://github.com/rust-random/rand"},{"name":"rsa","old_version":"0.9.6","new_version":"0.9.10","repository_url":"https://github.com/RustCrypto/RSA"},{"name":"lz4_flex","old_version":"0.11.3","new_version":"0.11.6","repository_url":"https://github.com/pseitz/lz4_flex"},{"name":"rustls","old_version":"0.23.16","new_version":"0.23.18","repository_url":"https://github.com/rustls/rustls"},{"name":"ring","old_version":"0.17.8","new_version":"0.17.13","repository_url":"https://github.com/briansmith/ring"},{"name":"bytes","old_version":"1.8.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"zip","old_version":"2.2.0","new_version":"2.3.0","repository_url":"https://github.com/zip-rs/zip2"},{"name":"rpassword","old_version":"7.3.1","new_version":"7.5.0","repository_url":"https://github.com/conradkleinespel/rpassword"},{"name":"crossbeam-channel","old_version":"0.5.13","new_version":"0.5.15","repository_url":"https://github.com/crossbeam-rs/crossbeam"},{"name":"hickory-proto","old_version":"0.24.1","new_version":"0.24.4","repository_url":"https://github.com/hickory-dns/hickory-dns"},{"name":"openssl","old_version":"0.10.68","new_version":"0.10.79","repository_url":"https://github.com/rust-openssl/rust-openssl"},{"name":"quinn-proto","old_version":"0.11.8","new_version":"0.11.14","repository_url":"https://github.com/quinn-rs/quinn"},{"name":"time","old_version":"0.3.36","new_version":"0.3.44","repository_url":"https://github.com/time-rs/time"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 15 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [tokio](https://github.com/tokio-rs/tokio) | `1.38.1` | `1.38.2` |\n| [sequoia-openpgp](https://gitlab.com/sequoia-pgp/sequoia) | `1.21.2` | `2.1.0` |\n| [rand](https://github.com/rust-random/rand) | `0.8.5` | `0.8.6` |\n| [rsa](https://github.com/RustCrypto/RSA) | `0.9.6` | `0.9.10` |\n| [lz4_flex](https://github.com/pseitz/lz4_flex) | `0.11.3` | `0.11.6` |\n| [rustls](https://github.com/rustls/rustls) | `0.23.16` | `0.23.18` |\n| [ring](https://github.com/briansmith/ring) | `0.17.8` | `0.17.13` |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.8.0` | `1.11.1` |\n| [zip](https://github.com/zip-rs/zip2) | `2.2.0` | `2.3.0` |\n| [rpassword](https://github.com/conradkleinespel/rpassword) | `7.3.1` | `7.5.0` |\n| [crossbeam-channel](https://github.com/crossbeam-rs/crossbeam) | `0.5.13` | `0.5.15` |\n| [hickory-proto](https://github.com/hickory-dns/hickory-dns) | `0.24.1` | `0.24.4` |\n| [openssl](https://github.com/rust-openssl/rust-openssl) | `0.10.68` | `0.10.79` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.8` | `0.11.14` |\n| [time](https://github.com/time-rs/time) | `0.3.36` | `0.3.44` |\n\nBumps the cargo group with 4 updates in the /crates/store directory: [tokio](https://github.com/tokio-rs/tokio), [rand](https://github.com/rust-random/rand), [mio](https://github.com/tokio-rs/mio) and [shlex](https://github.com/comex/rust-shlex).\n\nUpdates `tokio` from 1.38.1 to 1.38.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/tokio/releases\"\u003etokio's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eTokio v1.38.2\u003c/h2\u003e\n\u003cp\u003eThis release fixes a soundness issue in the broadcast channel. The channel accepts values that are \u003ccode\u003eSend\u003c/code\u003e but \u003ccode\u003e!Sync\u003c/code\u003e. Previously, the channel called \u003ccode\u003eclone()\u003c/code\u003e on these values without synchronizing. This release fixes the channel by synchronizing calls to \u003ccode\u003e.clone()\u003c/code\u003e (Thanks Austin Bonander for finding and reporting the issue).\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esync: synchronize \u003ccode\u003eclone()\u003c/code\u003e call in broadcast channel (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/7232\"\u003e#7232\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/7232\"\u003e#7232\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tokio/pull/7232\"\u003etokio-rs/tokio#7232\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/aa303bc2051f7c21b48bb7bfcafe8fd4f39afd21\"\u003e\u003ccode\u003eaa303bc\u003c/code\u003e\u003c/a\u003e chore: prepare Tokio v1.38.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/7b6ccb515ff067151ed62db835f735e5653f8784\"\u003e\u003ccode\u003e7b6ccb5\u003c/code\u003e\u003c/a\u003e chore: backport CI fixes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/4b174ce2c95fe1d1a217917db93fcc935e17e0da\"\u003e\u003ccode\u003e4b174ce\u003c/code\u003e\u003c/a\u003e sync: fix cloning value when receiving from broadcast channel\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/9681ce2b95ae7271c041f69b9fc48912259a7ea8\"\u003e\u003ccode\u003e9681ce2\u003c/code\u003e\u003c/a\u003e chore: make 1.38 an LTS (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6706\"\u003e#6706\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/tokio/compare/tokio-1.38.1...tokio-1.38.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `sequoia-openpgp` from 1.21.2 to 2.1.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://gitlab.com/sequoia-pgp/sequoia/commit/02d387c16b83e3dac598b4f2e76e278e6452e2b8\"\u003e\u003ccode\u003e02d387c\u003c/code\u003e\u003c/a\u003e openpgp: Release 2.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://gitlab.com/sequoia-pgp/sequoia/commit/50b521322749ad884c7d73f736bdee86c6ece22a\"\u003e\u003ccode\u003e50b5213\u003c/code\u003e\u003c/a\u003e Update Cargo.lock.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://gitlab.com/sequoia-pgp/sequoia/commit/8455e532d28fae2be7c6c48d47de91b0248644c9\"\u003e\u003ccode\u003e8455e53\u003c/code\u003e\u003c/a\u003e meta: Use cargo's MSRV-aware resolver, if available.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://gitlab.com/sequoia-pgp/sequoia/commit/62f508db3219dfb05be2163bdad813c1e66fa1aa\"\u003e\u003ccode\u003e62f508d\u003c/code\u003e\u003c/a\u003e openpgp: Partially address rustc warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://gitlab.com/sequoia-pgp/sequoia/commit/2affea78a614524a67ddb636ed4ccb26df6e3f33\"\u003e\u003ccode\u003e2affea7\u003c/code\u003e\u003c/a\u003e openpgp: Map EdDSA to its own policy.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://gitlab.com/sequoia-pgp/sequoia/commit/36ee206ba4b63aa66b061a401afbedc0aafd3843\"\u003e\u003ccode\u003e36ee206\u003c/code\u003e\u003c/a\u003e openpgp: Fix comment.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://gitlab.com/sequoia-pgp/sequoia/commit/a780dace86df7ed6d83a1ebbb58f5be629874660\"\u003e\u003ccode\u003ea780dac\u003c/code\u003e\u003c/a\u003e openpgp: Add a separate policy for EdDSA.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://gitlab.com/sequoia-pgp/sequoia/commit/2a12d54baef4e74b8bb71c15c656b01bd0121294\"\u003e\u003ccode\u003e2a12d54\u003c/code\u003e\u003c/a\u003e openpgp: Don't import variants to avoid naming clashes.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://gitlab.com/sequoia-pgp/sequoia/commit/e55c1e46c74d82bc73fba8d7ec7b9063f8bfcdbe\"\u003e\u003ccode\u003ee55c1e4\u003c/code\u003e\u003c/a\u003e openpgp: Fix fuzzer crypto backend.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://gitlab.com/sequoia-pgp/sequoia/commit/b59886e5e7bdf7169ed330f309a6633d131776e5\"\u003e\u003ccode\u003eb59886e\u003c/code\u003e\u003c/a\u003e openpgp: Fix an underflow in aes_key_unwrap.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://gitlab.com/sequoia-pgp/sequoia/compare/openpgp/v1.21.2...openpgp/v2.1.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.8.5 to 0.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rsa` from 0.9.6 to 0.9.10\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/RustCrypto/RSA/blob/v0.9.10/CHANGELOG.md\"\u003ersa's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.9.10 (2026-01-06)\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edo not panic on a prime being 1 when loading a secret key (\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/624\"\u003e#624\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/624\"\u003e#624\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/RustCrypto/RSA/pull/624\"\u003eRustCrypto/RSA#624\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.9.9 (2025-11-13)\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for cryptographic operations with larger keys (\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/594\"\u003e#594\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/594\"\u003e#594\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/RustCrypto/RSA/pull/594\"\u003eRustCrypto/RSA#594\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.9.8 (2025-03-12)\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDoc comments to specify the \u003ccode\u003erand\u003c/code\u003e version (\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/473\"\u003e#473\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/473\"\u003e#473\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/RustCrypto/RSA/pull/473\"\u003eRustCrypto/RSA#473\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.9.7 (2024-11-26)\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ealways validate keys in from_components\u003c/li\u003e\n\u003cli\u003edo not crash when handling tiny keys in PKCS1v15\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/da2af9a0ff814762957c428460e4098720f394a6\"\u003e\u003ccode\u003eda2af9a\u003c/code\u003e\u003c/a\u003e chore: release v0.9.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/2926c91bef7cb14a7ccd42220a698cf4b1b692f7\"\u003e\u003ccode\u003e2926c91\u003c/code\u003e\u003c/a\u003e fix: do not panic on a prime being 1 when loading a secret key (\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/624\"\u003e#624\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/488d2ad6090e54b5125dfeefeda53a1adb4b67c0\"\u003e\u003ccode\u003e488d2ad\u003c/code\u003e\u003c/a\u003e chore: release 0.9.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/c1f00a32c5ef97ca2bc121ee28b7ea907b6f936d\"\u003e\u003ccode\u003ec1f00a3\u003c/code\u003e\u003c/a\u003e Support for cryptographic operations with larger keys (\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/594\"\u003e#594\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/85f03b569b7771e6d9c270c0a938930ecc69e07c\"\u003e\u003ccode\u003e85f03b5\u003c/code\u003e\u003c/a\u003e Release v0.9.8 (\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/495\"\u003e#495\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/bd3575b67f404408e9a05367ce1bdad33d8e9439\"\u003e\u003ccode\u003ebd3575b\u003c/code\u003e\u003c/a\u003e Add comment to specify the rand version (\u003ca href=\"https://redirect.github.com/RustCrypto/RSA/issues/473\"\u003e#473\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/551f6e5dcbefa89c030a4fda5534782e6fb8bdb4\"\u003e\u003ccode\u003e551f6e5\u003c/code\u003e\u003c/a\u003e release: v0.9.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/2edd47929f7298bddde8f682ded330dbaf9c43a6\"\u003e\u003ccode\u003e2edd479\u003c/code\u003e\u003c/a\u003e fix: always validate keys in from_components\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/RSA/commit/201ad812a0fdbd43808b1717a66936a0348cf1b1\"\u003e\u003ccode\u003e201ad81\u003c/code\u003e\u003c/a\u003e fix: handle tiny keys\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/RustCrypto/RSA/compare/v0.9.6...v0.9.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lz4_flex` from 0.11.3 to 0.11.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/PSeitz/lz4_flex/blob/main/CHANGELOG.md\"\u003elz4_flex's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e0.11.6 (2026-03-14)\u003c/h1\u003e\n\u003ch3\u003eSecurity Fix\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix handling of invalid match offsets during decompression \u003ca href=\"https://github.com/PSeitz/lz4_flex/commit/84cdafb\"\u003e#84cdafb\u003c/a\u003e (thanks \u003ca href=\"https://github.com/Marcono1234\"\u003e\u003ccode\u003e@​Marcono1234\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre\u003e\u003ccode\u003eInvalid match offsets (offset == 0) during decompression were not properly\nhandled, which could lead to invalid memory reads on untrusted input.\nUsers on 0.11.x should upgrade to 0.11.6.\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch1\u003e0.11.5 (2025-06-19)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect rust-version field name in Cargo.toml \u003ca href=\"https://redirect.github.com/PSeitz/lz4_flex/pull/187\"\u003e#187\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e0.11.4 (2025-06-14)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to twox-hash 2.0\u003ca href=\"https://redirect.github.com/PSeitz/lz4_flex/pull/175\"\u003e#175\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBetter \u003ccode\u003eno_std\u003c/code\u003e compatibility \u003ca href=\"https://redirect.github.com/PSeitz/lz4_flex/pull/180\"\u003e#180\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/pseitz/lz4_flex/commits/0.11.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls` from 0.23.16 to 0.23.18\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/33af2c38b0f1e4abf44d59d5b74ccf12f5cf5e56\"\u003e\u003ccode\u003e33af2c3\u003c/code\u003e\u003c/a\u003e Prepare 0.23.18\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/ffe646d1ff07d3e1d9f009daadd94228d462425d\"\u003e\u003ccode\u003effe646d\u003c/code\u003e\u003c/a\u003e Add reproducer for bug 2227\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/69b6f7473a7ae096a9cf9e2d6eb3cd8b22743597\"\u003e\u003ccode\u003e69b6f74\u003c/code\u003e\u003c/a\u003e Record and restore the processed cursor in first_handshake_message\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/4ef3532cf2fceda9fdd19947f871adf7020d0b49\"\u003e\u003ccode\u003e4ef3532\u003c/code\u003e\u003c/a\u003e Upgrade to mio 1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/092a16427e81e58ecd6bcfdacc0b49f02bad8db3\"\u003e\u003ccode\u003e092a164\u003c/code\u003e\u003c/a\u003e Manage dependencies via the workspace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/a01bd6bcb536c6cdd490942b0eae2903abcfcab3\"\u003e\u003ccode\u003ea01bd6b\u003c/code\u003e\u003c/a\u003e rustls-bench: fix warnings with no features\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/7d74de2c1bdf265531036f50abd3fc04df8c148a\"\u003e\u003ccode\u003e7d74de2\u003c/code\u003e\u003c/a\u003e tests: linearize new test code helper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/499d797b267e0b548fef5225b044b99fc215a8ff\"\u003e\u003ccode\u003e499d797\u003c/code\u003e\u003c/a\u003e fix: do not send session_ticket(35) extension for TLS 1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/faca28904efcb3b5a4a5f05be8e03374bf5086df\"\u003e\u003ccode\u003efaca289\u003c/code\u003e\u003c/a\u003e chore(deps): lock file maintenance\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/rustls/commit/d12f42385c2da74e1ec16826af68d17a13101152\"\u003e\u003ccode\u003ed12f423\u003c/code\u003e\u003c/a\u003e fix(deps): update rust crate asn1 to 0.20\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rustls/rustls/compare/v/0.23.16...v/0.23.18\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ring` from 0.17.8 to 0.17.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/briansmith/ring/blob/main/RELEASES.md\"\u003ering's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eVersion 0.17.13 (2025-03-06)\u003c/h1\u003e\n\u003cp\u003eIncreased MSRV to 1.66.0 to avoid bugs in earlier versions so that we can\nsafely use \u003ccode\u003ecore::arch::x86_64::__cpuid\u003c/code\u003e and \u003ccode\u003ecore::arch::x86::__cpuid\u003c/code\u003e from\nRust in future releases.\u003c/p\u003e\n\u003cp\u003eAVX2-based VAES-CLMUL implementation. This will be a notable performance\nimprovement for most newish x86-64 systems. This will likely raise the minimum\nbinutils version supported for very old Linux distros.\u003c/p\u003e\n\u003ch1\u003eVersion 0.17.12 (2025-03-05)\u003c/h1\u003e\n\u003cp\u003eBug fix: \u003ca href=\"https://redirect.github.com/briansmith/ring/pull/2447\"\u003ebriansmith/ring#2447\u003c/a\u003e for denial of service (DoS).\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFixes a panic in \u003ccode\u003ering::aead::quic::HeaderProtectionKey::new_mask()\u003c/code\u003e when\ninteger overflow checking is enabled. In the QUIC protocol, an attacker can\ninduce this panic by sending a specially-crafted packet. Even unintentionally\nit is likely to occur in 1 out of every 2**32 packets sent and/or received.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixes a panic on 64-bit targets in \u003ccode\u003ering::aead::{AES_128_GCM, AES_256_GCM}\u003c/code\u003e\nwhen overflow checking is enabled, when encrypting/decrypting approximately\n68,719,476,700 bytes (about 64 gigabytes) of data in a single chunk. Protocols\nlike TLS and SSH are not affected by this because those protocols break large\namounts of data into small chunks. Similarly, most applications will not\nattempt to encrypt/decrypt 64GB of data in one chunk.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eOverflow checking is not enabled in release mode by default, but\n\u003ccode\u003eRUSTFLAGS=\u0026quot;-C overflow-checks\u0026quot;\u003c/code\u003e or \u003ccode\u003eoverflow-checks = true\u003c/code\u003e in the Cargo.toml\nprofile can override this. Overflow checking is usually enabled by default in\ndebug mode.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/briansmith/ring/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.8.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.10.1\u003c/h2\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/bytes/pull/773\"\u003etokio-rs/bytes#773\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eBytes v1.10.0\u003c/h2\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.9.0 (November 27, 2024)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eBytes::from_owner\u003c/code\u003e to enable externally-allocated memory (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/742\"\u003e#742\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumented\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.8.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `zip` from 2.2.0 to 2.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/zip-rs/zip2/releases\"\u003ezip's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.3.0\u003c/h2\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for NTFS extra field (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/279\"\u003e#279\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🐛 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(test)\u003c/em\u003e Conditionalize a zip64 doctest (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/308\"\u003e#308\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix failing tests, remove symlink loop check\u003c/li\u003e\n\u003cli\u003eCanonicalize output path to avoid false negatives\u003c/li\u003e\n\u003cli\u003eSymlink handling in stream extraction\u003c/li\u003e\n\u003cli\u003eCanonicalize output paths and symlink targets, and ensure they descend from the destination\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e⚙️ Miscellaneous Tasks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix clippy and cargo fmt warnings (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/310\"\u003e#310\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.2.3\u003c/h2\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🚜 Refactor\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eChange the inner structure of \u003ccode\u003eDateTime\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/267\"\u003e#267\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e⚙️ Miscellaneous Tasks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ecargo fix --edition\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.2.2\u003c/h2\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🐛 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erewrite the EOCD/EOCD64 detection to fix extreme performance regression (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/247\"\u003e#247\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.2.1\u003c/h2\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🐛 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eremove executable bit (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/238\"\u003e#238\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cem\u003e(lzma)\u003c/em\u003e fixed panic in case of invalid lzma stream (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eresolve new clippy warnings on nightly (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/262\"\u003e#262\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eresolve clippy warning in nightly (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e⚡ Performance\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFaster cde rejection (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/255\"\u003e#255\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/zip-rs/zip2/blob/master/CHANGELOG.md\"\u003ezip's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/zip-rs/zip2/compare/v2.2.3...v2.3.0\"\u003e2.3.0\u003c/a\u003e - 2025-03-16\u003c/h2\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for NTFS extra field (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/279\"\u003e#279\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🐛 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(test)\u003c/em\u003e Conditionalize a zip64 doctest (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/308\"\u003e#308\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix failing tests, remove symlink loop check\u003c/li\u003e\n\u003cli\u003eCanonicalize output path to avoid false negatives\u003c/li\u003e\n\u003cli\u003eSymlink handling in stream extraction\u003c/li\u003e\n\u003cli\u003eCanonicalize output paths and symlink targets, and ensure they descend from the destination (\u003ca href=\"https://github.com/zip-rs/zip2/security/advisories/GHSA-94vh-gphv-8pm8\"\u003eCVE-2025-29787\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e⚙️ Miscellaneous Tasks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix clippy and cargo fmt warnings (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/310\"\u003e#310\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/zip-rs/zip2/compare/v2.2.2...v2.2.3\"\u003e2.2.3\u003c/a\u003e - 2025-02-26\u003c/h2\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🚜 Refactor\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eChange the inner structure of \u003ccode\u003eDateTime\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/267\"\u003e#267\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e⚙️ Miscellaneous Tasks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ecargo fix --edition\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/zip-rs/zip2/compare/v2.2.1...v2.2.2\"\u003e2.2.2\u003c/a\u003e - 2024-12-16\u003c/h2\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🐛 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erewrite the EOCD/EOCD64 detection to fix extreme performance regression (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/247\"\u003e#247\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/zip-rs/zip2/compare/v2.2.0...v2.2.1\"\u003e2.2.1\u003c/a\u003e - 2024-11-20\u003c/h2\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🐛 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eremove executable bit (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/238\"\u003e#238\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cem\u003e(lzma)\u003c/em\u003e fixed panic in case of invalid lzma stream (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eresolve new clippy warnings on nightly (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/262\"\u003e#262\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eresolve clippy warning in nightly (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e⚡ Performance\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFaster cde rejection (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/255\"\u003e#255\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/6eab5f5cc64cf051f2712428745ca2fea088097c\"\u003e\u003ccode\u003e6eab5f5\u003c/code\u003e\u003c/a\u003e chore: release v2.3.0 (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/300\"\u003e#300\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/e4aee2050f4fb303ea8d6c56b0b70434265517a9\"\u003e\u003ccode\u003ee4aee20\u003c/code\u003e\u003c/a\u003e implement \u003ccode\u003eZipFile::options\u003c/code\u003e + refactor options normalization (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/305\"\u003e#305\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/ea8a7bba241731cd6aefd7705fd527e5b2928213\"\u003e\u003ccode\u003eea8a7bb\u003c/code\u003e\u003c/a\u003e fix(test): Conditionalize a zip64 doctest (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/308\"\u003e#308\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/365c81a39f526173b534c9de3a4302107fd51cd5\"\u003e\u003ccode\u003e365c81a\u003c/code\u003e\u003c/a\u003e Use \u003ccode\u003exz2\u003c/code\u003e crate instead of a custom implementation (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/306\"\u003e#306\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/ae94b3452b9d92cbf955c3117eddbb0326acacdd\"\u003e\u003ccode\u003eae94b34\u003c/code\u003e\u003c/a\u003e chore: Fix clippy and cargo fmt warnings (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/310\"\u003e#310\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/a2e062f37066c3b12860a32eb1cb44856cfb7afe\"\u003e\u003ccode\u003ea2e062f\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/0199ac2cb8e9a5d7e645e53d51838655d8e15148\"\u003e\u003ccode\u003e0199ac2\u003c/code\u003e\u003c/a\u003e Simplify handling for symlink targets\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/977bb9479d7aadbc10b8c04533bd37121f9cd34b\"\u003e\u003ccode\u003e977bb94\u003c/code\u003e\u003c/a\u003e fix failing tests, remove symlink loop check\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/3cb29e70d15af93a117f0d4d1bba736d2923c844\"\u003e\u003ccode\u003e3cb29e7\u003c/code\u003e\u003c/a\u003e Partial fix for tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/2182b0768633e58b6292af9e2633d920b499850b\"\u003e\u003ccode\u003e2182b07\u003c/code\u003e\u003c/a\u003e Refactor\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/zip-rs/zip2/compare/v2.2.0...v2.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rpassword` from 7.3.1 to 7.5.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/conradkleinespel/rpassword/releases\"\u003erpassword's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.5.0\u003c/h2\u003e\n\u003cp\u003eThis release comes with lots of stuff. It should be fully backward compatible.\u003c/p\u003e\n\u003ch2\u003eNew features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for masking or partially masking a password as it's being typed. Thank you, \u003ca href=\"https://github.com/chipsenkbeil\"\u003e\u003ccode\u003e@​chipsenkbeil\u003c/code\u003e\u003c/a\u003e, for your contribution.\u003c/li\u003e\n\u003cli\u003eNew API. The documentation has been vastly improved to support this, see \u003ca href=\"https://docs.rs/rpassword/\"\u003ehttps://docs.rs/rpassword/\u003c/a\u003e. To sum up, you can now call \u003ccode\u003eread_password_with_config(config)\u003c/code\u003e and there is a \u003ccode\u003eConfigBuilder\u003c/code\u003e that allows you to configure how passwords should be read. This makes the library much more flexible and means new options will be added without breaking existing code.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix for CVE-2025-64170 which affects \u003ccode\u003erpassword\u003c/code\u003e on versions v7.4.0 and below. Thank you, \u003ca href=\"https://github.com/squell\"\u003e\u003ccode\u003e@​squell\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/DevLaTron\"\u003e\u003ccode\u003e@​DevLaTron\u003c/code\u003e\u003c/a\u003e, for reporting this.\u003c/li\u003e\n\u003cli\u003eBetter support for multibyte characters and more reliable handling of control characters and terminal escape sequences. Thank you again, \u003ca href=\"https://github.com/chipsenkbeil\"\u003e\u003ccode\u003e@​chipsenkbeil\u003c/code\u003e\u003c/a\u003e, for your contribution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDeprecations\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e_from_bufread\u003c/code\u003e functions have been deprecated. You are encouraged to migrate to \u003ccode\u003e_with_config\u003c/code\u003e functions. See \u003ca href=\"https://github.com/conradkleinespel/rpassword/blob/main/UPGRADE.md\"\u003eUPGRADE.md\u003c/a\u003e as well as the \u003ca href=\"https://docs.rs/rpassword/latest/rpassword/fn.read_password_from_bufread.html\"\u003edocumentation which has examples\u003c/a\u003e that you can most likely drop into your code without other changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eMisc\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate of the \u003ccode\u003ewindows-sys\u003c/code\u003e dependency.\u003c/li\u003e\n\u003cli\u003eUpdate Rust edition from 2018 to 2024.\u003c/li\u003e\n\u003cli\u003eBetter cross-platform testing, through more unit tests and a CI that runs Linux, Windows and Wasm.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFeedback is very much welcome.\u003c/p\u003e\n\u003ch2\u003ev7.4.0\u003c/h2\u003e\n\u003cp\u003eChanges and updates in this release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUpdates \u003ccode\u003ewindows-sys\u003c/code\u003e from \u003ccode\u003e0.52\u003c/code\u003e to \u003ccode\u003e0.59\u003c/code\u003e, see \u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/cb2244aba3e6b4358cf489e61c8e35c564e31952\"\u003ehttps://github.com/conradkleinespel/rpassword/commit/cb2244aba3e6b4358cf489e61c8e35c564e31952\u003c/a\u003e;\u003c/li\u003e\n\u003cli\u003eImproves Chinese character handling, the commit is in the \u003ccode\u003ertoolbox\u003c/code\u003e crate (\u003ca href=\"https://github.com/conradkleinespel/rtoolbox\"\u003ehttps://github.com/conradkleinespel/rtoolbox\u003c/a\u003e). Thank you \u003ca href=\"https://github.com/Jordan-Haidee\"\u003e\u003ccode\u003e@​Jordan-Haidee\u003c/code\u003e\u003c/a\u003e for providing a fix in \u003ca href=\"https://redirect.github.com/conradkleinespel/rpassword/issues/97\"\u003econradkleinespel/rpassword#97\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eI've noticed after publishing the release that the size of the crate on crates.io went from \u003ccode\u003e7KiB\u003c/code\u003e to \u003ccode\u003e121KiB\u003c/code\u003e. That's due to the addition of an image in the \u003ccode\u003eREADME.md\u003c/code\u003e, which I did not anticipate would be distributed to everyone. The fix (\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/7c30111dda0242967bd5ac494fbf3089d3d74dc6\"\u003ehttps://github.com/conradkleinespel/rpassword/commit/7c30111dda0242967bd5ac494fbf3089d3d74dc6\u003c/a\u003e) will be included in the next release.\u003c/p\u003e\n\u003cp\u003eNo functionality changes in this release. It is backwards compatible.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/2d9873eb198dd49dafef2e3263a035ac3614982c\"\u003e\u003ccode\u003e2d9873e\u003c/code\u003e\u003c/a\u003e release v7.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/e67e3b45673e51e7155d80970d2e4c80152324dc\"\u003e\u003ccode\u003ee67e3b4\u003c/code\u003e\u003c/a\u003e removes commented out code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/fdde958f1c4753ebc22509b73da9156952c86e33\"\u003e\u003ccode\u003efdde958\u003c/code\u003e\u003c/a\u003e remove .idea from .gitignore\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/d531c5992a5303fe418e95959a70459fb286c6b9\"\u003e\u003ccode\u003ed531c59\u003c/code\u003e\u003c/a\u003e allow reading from any Read and writing to any Write\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/205dfb2eb76d8b460f210a4541374a495a1974fa\"\u003e\u003ccode\u003e205dfb2\u003c/code\u003e\u003c/a\u003e differentiate Input and Output targets\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/6aa333a6513f3efa4b461659974a06426363447d\"\u003e\u003ccode\u003e6aa333a\u003c/code\u003e\u003c/a\u003e make PasswordFeedback internal though ConfigBuilder\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/aadeef20d93b5cc7dc20823c35b697caa5201d46\"\u003e\u003ccode\u003eaadeef2\u003c/code\u003e\u003c/a\u003e allow more flexible input/output\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/ff7be55fc47280cacd49f86dd188614157c03f77\"\u003e\u003ccode\u003eff7be55\u003c/code\u003e\u003c/a\u003e add support for Ctrl-W\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/c56fefad218ec00d5309e8ec1d2a52ef31f86693\"\u003e\u003ccode\u003ec56fefa\u003c/code\u003e\u003c/a\u003e format rust files with cargo fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/conradkleinespel/rpassword/commit/c6f4f19528553302a6d08f26d0f1daf8a9b94386\"\u003e\u003ccode\u003ec6f4f19\u003c/code\u003e\u003c/a\u003e handle character encodings more reliably\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/conradkleinespel/rpassword/compare/v7.3.1...v7.5.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `crossbeam-channel` from 0.5.13 to 0.5.15\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/crossbeam-rs/crossbeam/releases\"\u003ecrossbeam-channel's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ecrossbeam-channel 0.5.15\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix regression introduced in 0.5.12 that can lead to a double free when dropping unbounded channel. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1187\"\u003e#1187\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ecrossbeam-channel 0.5.14\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix stack overflow when sending large value to unbounded channel. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1146\"\u003e#1146\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1147\"\u003e#1147\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eSelect::new_biased\u003c/code\u003e function. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1150\"\u003e#1150\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove inefficient spinning. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1154\"\u003e#1154\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSuppress buggy \u003ccode\u003eclippy::zero_repeat_side_effects\u003c/code\u003e lint in macro generated code. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1123\"\u003e#1123\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/d35ffde18a76ae9667f602d8c0127ff89ac2e4d4\"\u003e\u003ccode\u003ed35ffde\u003c/code\u003e\u003c/a\u003e Prepare for the next release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/6ec74ecae896df5fc239518b45a1bfd258c9db68\"\u003e\u003ccode\u003e6ec74ec\u003c/code\u003e\u003c/a\u003e crossbeam-channel: prevent double free on Drop (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1187\"\u003e#1187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/ccd83ac4108a2a1b41e9c6e79c87267167d18dfa\"\u003e\u003ccode\u003eccd83ac\u003c/code\u003e\u003c/a\u003e Prepare for the next release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/54988eb2399c889fb82926c1508bb0ec31bedba2\"\u003e\u003ccode\u003e54988eb\u003c/code\u003e\u003c/a\u003e Calculate layout in const context\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/761d0b67e2849479f7b376b4c02a191f6ed796aa\"\u003e\u003ccode\u003e761d0b6\u003c/code\u003e\u003c/a\u003e Port \u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1146\"\u003e#1146\u003c/a\u003e \u0026amp; \u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1147\"\u003e#1147\u003c/a\u003e to deque::Injector and queue::SegQueue\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/8144fbb41e67046d341034843887b0dd5963cddb\"\u003e\u003ccode\u003e8144fbb\u003c/code\u003e\u003c/a\u003e Remove optimistic spinning from Context::wait_until\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/a92f6c4fbb5527ef4f86239fd18df426b4e1d84f\"\u003e\u003ccode\u003ea92f6c4\u003c/code\u003e\u003c/a\u003e Bump peter-evans/create-pull-request from 5 to 7 (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1153\"\u003e#1153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/66d41a904f8f51d82d806b86856d72290202d491\"\u003e\u003ccode\u003e66d41a9\u003c/code\u003e\u003c/a\u003e channel: Add new_biased constructor for biased channel selection (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1150\"\u003e#1150\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/d0d0a80be89a976a66292ed7d3fb562f9d3d590b\"\u003e\u003ccode\u003ed0d0a80\u003c/code\u003e\u003c/a\u003e CachePadded: Use 128-byte alignment on arm64ec\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/f757eefca227f67cb9dc8b90c07500728151f501\"\u003e\u003ccode\u003ef757eef\u003c/code\u003e\u003c/a\u003e Add comment about fixed rustc bug\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/crossbeam-rs/crossbeam/compare/crossbeam-channel-0.5.13...crossbeam-channel-0.5.15\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `hickory-proto` from 0.24.1 to 0.24.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hickory-dns/hickory-dns/releases\"\u003ehickory-proto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.24.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[0.24] Use cargo environment variables for path to executable by \u003ca href=\"https://github.com/msrd0\"\u003e\u003ccode\u003e@​msrd0\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hickory-dns/hickory-dns/pull/2773\"\u003ehickory-dns/hickory-dns#2773\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[0.24] bump ring to 0.17.8 by \u003ca href=\"https://github.com/drahnr\"\u003e\u003ccode\u003e@​drahnr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hickory-dns/hickory-dns/pull/2759\"\u003ehickory-dns/hickory-dns#2759\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.24.4 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hickory-dns/hickory-dns/pull/2784\"\u003ehickory-dns/hickory-dns#2784\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.24.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix tests on 0.24 release branch by \u003ca href=\"https://github.com/divergentdave\"\u003e\u003ccode\u003e@​divergentdave\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hickory-dns/hickory-dns/pull/2752\"\u003ehickory-dns/hickory-dns#2752\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hickory-dns/hickory-dns/compare/v0.24.2...v0.24.3\"\u003ehttps://github.com/hickory-dns/hickory-dns/compare/v0.24.2...v0.24.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.24.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e0.24: upgrade to idna 1 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hickory-dns/hickory-dns/pull/2664\"\u003ehickory-dns/hickory-dns#2664\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hickory-dns/hickory-dns/commit/b00cc1052cf769250063005e9fa268519522778f\"\u003e\u003ccode\u003eb00cc10\u003c/code\u003e\u003c/a\u003e Bump versions to 0.24.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hickory-dns/hickory-dns/commit/653d03eb9e8afe994bf4dc011c924830c0beeeba\"\u003e\u003ccode\u003e653d03e\u003c/code\u003e\u003c/a\u003e fix/test: use .1 ending of IP address in test, .0 will yield a different error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hickory-dns/hickory-dns/commit/5a5c9810458c4b0084050216b720c8c6fe02ffe9\"\u003e\u003ccode\u003e5a5c981\u003c/code\u003e\u003c/a\u003e feat: add err log if not matching the expected kind\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hickory-dns/hickory-dns/commit/321d53f8b69b74ee5627721114479c1c4438e875\"\u003e\u003ccode\u003e321d53f\u003c/code\u003e\u003c/a\u003e chore/dependency(ring): bump to 0.17.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hickory-dns/hickory-dns/commit/39bf9c824679b8e851623e78a07a1adce07ae50f\"\u003e\u003ccode\u003e39bf9c8\u003c/code\u003e\u003c/a\u003e [0.24] Use cargo environment variables for path to executable (\u003ca href=\"https://redirect.github.com/hickory-dns/hickory-dns/issues/2773\"\u003e#2773\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hickory-dns/hickory-dns/commit/7df98a4a5b8ec28969c2886f811425d824074f92\"\u003e\u003ccode\u003e7df98a4\u003c/code\u003e\u003c/a\u003e Fix tests on 0.24 release branch (\u003ca href=\"https://redirect.github.com/hickory-dns/hickory-dns/issues/2752\"\u003e#2752\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hickory-dns/hickory-dns/commit/fd25a74a9add698badf6975d6ef7b92fd78265bd\"\u003e\u003ccode\u003efd25a74\u003c/code\u003e\u003c/a\u003e Bump version to 0.24.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hickory-dns/hickory-dns/commit/e118c6eec569f4340421f86ee0686714010c63e9\"\u003e\u003ccode\u003ee118c6e\u003c/code\u003e\u003c/a\u003e Check RRSIG over DNSKEY RRset w/ authenticated key\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hickory-dns/hickory-dns/commit/9cdb4845a5f3f1485cc0766ee56532d575d042d6\"\u003e\u003ccode\u003e9cdb484\u003c/code\u003e\u003c/a\u003e Bump version to 0.24.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hickory-dns/hickory-dns/commit/1b84e3acf6e5e9c1ee741da6fe60a00bae315bba\"\u003e\u003ccode\u003e1b84e3a\u003c/code\u003e\u003c/a\u003e Upgrade h3 and h3-quinn to avoid instant\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hickory-dns/hickory-dns/compare/v0.24.1...v0.24.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openssl` from 0.10.68 to 0.10.79\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-openssl/rust-openssl/releases\"\u003eopenssl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eopenssl-v0.10.79\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/cache from 5.0.4 to 5.0.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2610\"\u003erust-openssl/rust-openssl#2610\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTry to fix OpenSSL 1.1.0l download by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2614\"\u003erust-openssl/rust-openssl#2614\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRequire \u0026amp;mut BigNumContextRef for EcPointRef mul/invert by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2615\"\u003erust-openssl/rust-openssl#2615\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix UB in EcGroupRef::generator on groups without a generator by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2617\"\u003erust-openssl/rust-openssl#2617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace \u003ccode\u003euse libc::*;\u003c/code\u003e with targeted imports in openssl-sys by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2618\"\u003erust-openssl/rust-openssl#2618\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKeyRef::is_a and KeyType for name-based key identification by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2619\"\u003erust-openssl/rust-openssl#2619\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKey::{public,private}_key_from_raw_bytes_ex by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2620\"\u003erust-openssl/rust-openssl#2620\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump MSRV to 1.80 by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2622\"\u003erust-openssl/rust-openssl#2622\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop once_cell in favor of std::sync::{LazyLock, OnceLock} by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2623\"\u003erust-openssl/rust-openssl#2623\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKey::private_key_from_seed for ML-DSA/ML-KEM key import by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2621\"\u003erust-openssl/rust-openssl#2621\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eparallelize more builds in CI for cold caches by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2625\"\u003erust-openssl/rust-openssl#2625\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2626\"\u003erust-openssl/rust-openssl#2626\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix process abort when verify/PSK callbacks fire after SSL_CTX swap by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2624\"\u003erust-openssl/rust-openssl#2624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBind OSSL_PARAM_modified and use it for seed_into by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2628\"\u003erust-openssl/rust-openssl#2628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PkeyCtxRef::set_context_string for ML-DSA by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2629\"\u003erust-openssl/rust-openssl#2629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2631\"\u003erust-openssl/rust-openssl#2631\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix output buffer overflow for AES key-wrap-with-padding ciphers by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2630\"\u003erust-openssl/rust-openssl#2630\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl 0.10.79 and openssl-sys 0.9.115 by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2632\"\u003erust-openssl/rust-openssl#2632\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.78...openssl-v0.10.79\"\u003ehttps://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.78...openssl-v0.10.79\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eopenssl-v0.10.78\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix Suite B flag assignments in verify.rs by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2592\"\u003erust-openssl/rust-openssl#2592\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse cvt_p for OPENSSL_malloc error handling by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2593\"\u003erust-openssl/rust-openssl#2593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMark BIO_get_mem_data on AWS-LC to be unsafe by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2594\"\u003erust-openssl/rust-openssl#2594\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSet timeout for package installation step by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2595\"\u003erust-openssl/rust-openssl#2595\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePanic in Crypter::new when IV is required but not provided by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2596\"\u003erust-openssl/rust-openssl#2596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eopenssl 4 support by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2591\"\u003erust-openssl/rust-openssl#2591\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid panic for overlong OIDs by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2598\"\u003erust-openssl/rust-openssl#2598\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix dangling stack pointer in custom extension add callback by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2599\"\u003erust-openssl/rust-openssl#2599\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for LibreSSL 4.3.x by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2603\"\u003erust-openssl/rust-openssl#2603\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix inverted bounds assertion in AES key unwrap by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2604\"\u003erust-openssl/rust-openssl#2604\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject oversized length returns from password callback trampoline by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2605\"\u003erust-openssl/rust-openssl#2605\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eValidate callback-returned lengths in PSK and cookie trampolines by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2607\"\u003erust-openssl/rust-openssl#2607\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eError for short out in MdCtxRef::digest_final() by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2608\"\u003erust-openssl/rust-openssl#2608\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck derive output buffer length on OpenSSL 1.1.x by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2606\"\u003erust-openssl/rust-openssl#2606\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl v0.10.78 and openssl-sys v0.9.114 by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2609\"\u003erust-openssl/rust-openssl#2609\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.77...openssl-v0.10.78\"\u003ehttps://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.77...openssl-v0.10.78\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eopenssl-v0.10.77\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCI: Hash-pin all action usage, avoid credential persistence in actions/checkout by \u003ca href=\"https://github.com/woodruffw\"\u003e\u003ccode\u003e@​woodruffw\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2587\"\u003erust-openssl/rust-openssl#2587\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump aws-lc-sys to 0.39 by \u003ca href=\"https://github.com/goffrie\"\u003e\u003ccode\u003e@​goffrie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2588\"\u003erust-openssl/rust-openssl#2588\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emd_ctx: enable sign/verify/reset on BoringSSL, LibreSSL, and AWS-LC by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2589\"\u003erust-openssl/rust-openssl#2589\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/649f2d9e37f3aa701e20bd8ab5cd7eb5afa0a90f\"\u003e\u003ccode\u003e649f2d9\u003c/code\u003e\u003c/a\u003e Release openssl 0.10.79 and openssl-sys 0.9.115 (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2632\"\u003e#2632\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/257f9b20c001b888986f93579f118fa2a57d4f45\"\u003e\u003ccode\u003e257f9b2\u003c/code\u003e\u003c/a\u003e Fix output buffer overflow for AES key-wrap-with-padding ciphers (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2630\"\u003e#2630\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/d43e9179b1885fc66269a42361cc7a80f631ac8f\"\u003e\u003ccode\u003ed43e917\u003c/code\u003e\u003c/a\u003e Reject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2631\"\u003e#2631\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/f46519c8694a3e121091dafe38aab77c2f756546\"\u003e\u003ccode\u003ef46519c\u003c/code\u003e\u003c/a\u003e Add PkeyCtxRef::set_context_string for ML-DSA (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2629\"\u003e#2629\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/ad9ae312771f898749a9471549519d45eba6a033\"\u003e\u003ccode\u003ead9ae31\u003c/code\u003e\u003c/a\u003e Bind OSSL_PARAM_modified and use it for seed_into (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2628\"\u003e#2628\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/4e25c9be20dae1e78f1a3815950cd0973addae82\"\u003e\u003ccode\u003e4e25c9b\u003c/code\u003e\u003c/a\u003e Fix process abort when verify/PSK callbacks fire after SSL_CTX swap (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2624\"\u003e#2624\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/3dd8f425ef34a069b5bec46f3971b67db1c295c7\"\u003e\u003ccode\u003e3dd8f42\u003c/code\u003e\u003c/a\u003e Add PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2626\"\u003e#2626\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/2c5e5a8f1483d5ec85580c07f721de9057d58e69\"\u003e\u003ccode\u003e2c5e5a8\u003c/code\u003e\u003c/a\u003e parallelize more builds in CI for cold caches (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2625\"\u003e#2625\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/668559171168538cd190574373abfc9e120263ca\"\u003e\u003ccode\u003e6685591\u003c/code\u003e\u003c/a\u003e Add PKey::private_key_from_seed for ML-DSA/ML-KEM key import (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2621\"\u003e#2621\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/8f8fdce627fb3c553673b8c688d9f1dc10ea0cc8\"\u003e\u003ccode\u003e8f8fdce\u003c/code\u003e\u003c/a\u003e Drop once_cell in favor of std::sync::{LazyLock, OnceLock} (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2623\"\u003e#2623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.68...openssl-v0.10.79\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `quinn-proto` from 0.11.8 to 0.11.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quinn-rs/quinn/releases\"\u003equinn-proto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003equinn-proto 0.11.14\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jxs\"\u003e\u003ccode\u003e@​jxs\u003c/code\u003e\u003c/a\u003e reported a denial of service issue in quinn-proto 5 days ago:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\"\u003ehttps://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eWe coordinated with them to release this version to patch the issue. Unfortunately the maintainers missed these issues during code review and we did not have enough fuzzing coverage -- we regret the oversight and have added an additional fuzzing target.\u003c/p\u003e\n\u003cp\u003eOrganizations that want to participate in coordinated disclosure can contact us privately to discuss terms.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix over-permissive proto dependency edge by \u003ca href=\"https://github.com/Ralith\"\u003e\u003ccode\u003e@​Ralith\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2385\"\u003equinn-rs/quinn#2385\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e0.11.x: avoid unwrapping VarInt decoding during parameter parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2559\"\u003equinn-rs/quinn#2559\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003equinn-proto 0.11.11\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrefer sending extra ping again by \u003ca href=\"https://github.com/flub\"\u003e\u003ccode\u003e@​flub\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2172\"\u003equinn-rs/quinn#2172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Do not produce tail-loss probes larger than segment size by \u003ca href=\"https://github.com/flub\"\u003e\u003ccode\u003e@​flub\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2167\"\u003equinn-rs/quinn#2167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid inference hazard for integer comparisons by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2188\"\u003equinn-rs/quinn#2188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: respecting max_datagrams in poll_transmit by \u003ca href=\"https://github.com/filipe-cantarelli\"\u003e\u003ccode\u003e@​filipe-cantarelli\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2185\"\u003equinn-rs/quinn#2185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the quinn-proto version to 0.11.11 for release by \u003ca href=\"https://github.com/faern\"\u003e\u003ccode\u003e@​faern\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2209\"\u003equinn-rs/quinn#2209\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/2c315aa7f9c2a6c1db87f8f51f40623a427c78fd\"\u003e\u003ccode\u003e2c315aa\u003c/code\u003e\u003c/a\u003e proto: bump version to 0.11.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8ad47f431e7deb82c08b09c2e33ef85aa88fd212\"\u003e\u003ccode\u003e8ad47f4\u003c/code\u003e\u003c/a\u003e Use newer rustls-pki-types PEM parser API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c81c0289abe30d8437ccbf9b6304e2bc9c707cea\"\u003e\u003ccode\u003ec81c028\u003c/code\u003e\u003c/a\u003e ci: fix workflow syntax\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/0050172969f7e69e136c433181330da7790d8d73\"\u003e\u003ccode\u003e0050172\u003c/code\u003e\u003c/a\u003e ci: pin wasm-bindgen-cli version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8a6f82c58d1c565eab78f986e614223e6ed76a85\"\u003e\u003ccode\u003e8a6f82c\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/e52db4ad8df0f9720e7b0e32ecc0e48c9a93de0f\"\u003e\u003ccode\u003ee52db4a\u003c/code\u003e\u003c/a\u003e Apply suggestions from clippy 1.91\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/6df7275c582ca9b7225e0ccf9f9871a55eb73155\"\u003e\u003ccode\u003e6df7275\u003c/code\u003e\u003c/a\u003e chore: Fix \u003ccode\u003eunnecessary_unwrap\u003c/code\u003e clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c8eefa07e087b06d8f2b78ff262ce8ac952994f1\"\u003e\u003ccode\u003ec8eefa0\u003c/code\u003e\u003c/a\u003e proto: avoid unwrapping varint decoding during parameters parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/9723a977754c8662001b0fef97aab8f3ddf1df92\"\u003e\u003ccode\u003e9723a97\u003c/code\u003e\u003c/a\u003e fuzz: add fuzzing target for parsing transport parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/eaf0ef30252cef4acec21f150427e604cd4271c9\"\u003e\u003ccode\u003eeaf0ef3\u003c/code\u003e\u003c/a\u003e Fix over-permissive proto dependency edge (\u003ca href=\"https://redirect.github.com/quinn-rs/quinn/issues/2385\"\u003e#2385\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quinn-rs/quinn/compare/quinn-proto-0.11.8...quinn-proto-0.11.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.36 to 0.3.44\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.44\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.43\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.42\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.41\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.40\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.39\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.38\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.37\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003etime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.44 [2025-09-19]\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eComparisons of \u003ccode\u003ePrimitiveDateTime\u003c/code\u003e, \u003ccode\u003eUtcDateTime\u003c/code\u003e, and \u003ccode\u003eOffsetDateTime\u003c/code\u003e with differing signs (i.e.\none negative and one positive year) would return the inverse result of what was expected. This was\nintroduced in v0.3.42 and has been fixed.\u003c/li\u003e\n\u003cli\u003eType inference would fail due to feature unification when \u003ccode\u003ewasm-bindgen\u003c/code\u003e enabled \u003ccode\u003eserde_json\u003c/code\u003e.\nThis has been fixed by explicitly specifying the type in the relevant locations.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.43 [2025-09-02]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for \u003ccode\u003erand\u003c/code\u003e 0.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIn the \u003ccode\u003econvert\u003c/code\u003e module, any use of \u003ccode\u003eper\u003c/code\u003e with types that were not the same (such as\n\u003ccode\u003eNanosecond::per(Second)\u003c/code\u003e) w...\n\n_Description has been truncated_","html_url":"https://github.com/hirehamir/mail-server/pull/8","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/hirehamir%2Fmail-server/issues/8","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/8/packages"}},{"old_version":"1.5.0","new_version":"1.11.1","update_type":"minor","path":null,"pr_created_at":"2026-05-08T15:57:13.000Z","version_change":"1.5.0 → 1.11.1","issue":{"uuid":"4407658730","node_id":"PR_kwDOMksAz87ZmNQw","number":28,"state":"closed","title":"Bump the cargo group across 1 directory with 14 updates","user":"dependabot[bot]","labels":["dependencies","rust"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-05-19T20:10:46.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-08T15:57:13.000Z","updated_at":"2026-05-19T20:10:49.000Z","time_to_close":965613,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"cargo","update_count":14,"packages":[{"name":"diesel","old_version":"2.1.4","new_version":"2.1.6","repository_url":"https://github.com/diesel-rs/diesel"},{"name":"tracing-subscriber","old_version":"0.3.17","new_version":"0.3.20","repository_url":"https://github.com/tokio-rs/tracing"},{"name":"tokio","old_version":"1.38.1","new_version":"1.38.2","repository_url":"https://github.com/tokio-rs/tokio"},{"name":"bytes","old_version":"1.5.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"keccak","old_version":"0.1.4","new_version":"0.1.6","repository_url":"https://github.com/RustCrypto/sponges"},{"name":"lz4_flex","old_version":"0.11.3","new_version":"0.11.6","repository_url":"https://github.com/pseitz/lz4_flex"},{"name":"mio","old_version":"0.8.10","new_version":"0.8.11","repository_url":"https://github.com/tokio-rs/mio"},{"name":"openssl","old_version":"0.10.62","new_version":"0.10.79","repository_url":"https://github.com/rust-openssl/rust-openssl"},{"name":"rand","old_version":"0.8.5","new_version":"0.8.6","repository_url":"https://github.com/rust-random/rand"},{"name":"rustix","old_version":"0.37.23","new_version":"0.37.28","repository_url":"https://github.com/bytecodealliance/rustix"},{"name":"rustls-webpki","old_version":"0.100.1","new_version":"0.100.3","repository_url":"https://github.com/rustls/webpki"},{"name":"time","old_version":"0.3.36","new_version":"0.3.44","repository_url":"https://github.com/time-rs/time"},{"name":"webpki","old_version":"0.22.0","new_version":"0.22.4","repository_url":"https://github.com/briansmith/webpki"},{"name":"whoami","old_version":"1.4.1","new_version":"1.6.1","repository_url":"https://github.com/ardaku/whoami"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 14 updates in the /rust directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [diesel](https://github.com/diesel-rs/diesel) | `2.1.4` | `2.1.6` |\n| [tracing-subscriber](https://github.com/tokio-rs/tracing) | `0.3.17` | `0.3.20` |\n| [tokio](https://github.com/tokio-rs/tokio) | `1.38.1` | `1.38.2` |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.5.0` | `1.11.1` |\n| [keccak](https://github.com/RustCrypto/sponges) | `0.1.4` | `0.1.6` |\n| [lz4_flex](https://github.com/pseitz/lz4_flex) | `0.11.3` | `0.11.6` |\n| [mio](https://github.com/tokio-rs/mio) | `0.8.10` | `0.8.11` |\n| [openssl](https://github.com/rust-openssl/rust-openssl) | `0.10.62` | `0.10.79` |\n| [rand](https://github.com/rust-random/rand) | `0.8.5` | `0.8.6` |\n| [rustix](https://github.com/bytecodealliance/rustix) | `0.37.23` | `0.37.28` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.100.1` | `0.100.3` |\n| [time](https://github.com/time-rs/time) | `0.3.36` | `0.3.44` |\n| [webpki](https://github.com/briansmith/webpki) | `0.22.0` | `0.22.4` |\n| [whoami](https://github.com/ardaku/whoami) | `1.4.1` | `1.6.1` |\n\n\nUpdates `diesel` from 2.1.4 to 2.1.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/diesel-rs/diesel/blob/main/CHANGELOG.md\"\u003ediesel's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[2.1.6] 2024-04-19\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix using \u003ccode\u003eBoxableExpression\u003c/code\u003e with having clauses\u003c/li\u003e\n\u003cli\u003eFix using numeric expressions with aliased fields\u003c/li\u003e\n\u003cli\u003eMinor documentation fixes\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[2.1.5] 2024-03-15\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003eimpl SqlOrd\u003c/code\u003e postgres \u0026gt; postgres_backend feature flag.\u003c/li\u003e\n\u003cli\u003eAllow \u003ccode\u003eQueryable\u003c/code\u003e to be used with multiple table names.\u003c/li\u003e\n\u003cli\u003eFix an inconsistent unit test\u003c/li\u003e\n\u003cli\u003eFix a clippy lint\u003c/li\u003e\n\u003cli\u003eFix ./bin/test feature flag calls.\u003c/li\u003e\n\u003cli\u003eUpdate \u003ccode\u003elibsqlite3-sys\u003c/code\u003e to allow version 0.28 as well\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/26c6be4db843c5d2d5507850f2112ae828f9779f\"\u003e\u003ccode\u003e26c6be4\u003c/code\u003e\u003c/a\u003e Preapare a diesel 2.1.6 patch release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/2dc6cc12964443c80d60184d0951a49128067bde\"\u003e\u003ccode\u003e2dc6cc1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/diesel-rs/diesel/issues/3956\"\u003e#3956\u003c/a\u003e from Tanguille/docs/clarify-as-expression-to-sql\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/ca6617340d46aa7487f0307099b6e85b78bc9320\"\u003e\u003ccode\u003eca66173\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/diesel-rs/diesel/issues/3980\"\u003e#3980\u003c/a\u003e from kornelski/dev-cycle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/45915ac65483f3866f2597f4c386b1827d9b1c92\"\u003e\u003ccode\u003e45915ac\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/diesel-rs/diesel/issues/3971\"\u003e#3971\u003c/a\u003e from Ten0/fix_missing_skip_insertion_attribute_in_un...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/26b88035b78348df5cdea7b2a5ad6c5b84c0b5f5\"\u003e\u003ccode\u003e26b8803\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/diesel-rs/diesel/issues/3979\"\u003e#3979\u003c/a\u003e from formlogic-kirk/alias_op_impls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/6a9bfdfa19cd19c4cde2ef6a4c578280741954ce\"\u003e\u003ccode\u003e6a9bfdf\u003c/code\u003e\u003c/a\u003e Fix the having clause tests + add a test for normal select queries\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/0799a444fb67ba7f4470b49f3cff9cac73acef2d\"\u003e\u003ccode\u003e0799a44\u003c/code\u003e\u003c/a\u003e Add ValidGrouping to boxed having expression\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/5d6637ffaefa7f6fbfbb4f73e0e1c4d8a5cf3da2\"\u003e\u003ccode\u003e5d6637f\u003c/code\u003e\u003c/a\u003e Try explicitly implementing FromClause\u0026lt;F\u0026gt; for HavingDsl\u0026lt;Predicate\u0026gt;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/b4776a3c8e29e16e5f74eed05c92bd2c47c7a820\"\u003e\u003ccode\u003eb4776a3\u003c/code\u003e\u003c/a\u003e Add test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/c96c870be768e3f5115a9cdd220f0da53a1abd34\"\u003e\u003ccode\u003ec96c870\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/diesel-rs/diesel/issues/3959\"\u003e#3959\u003c/a\u003e from 1Dragoon/backports/2.1.4\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/diesel-rs/diesel/compare/v2.1.4...v2.1.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tracing-subscriber` from 0.3.17 to 0.3.20\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/tracing/releases\"\u003etracing-subscriber's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003etracing-subscriber 0.3.20\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eSecurity Fix\u003c/strong\u003e: ANSI Escape Sequence Injection (CVE-TBD)\u003c/p\u003e\n\u003ch2\u003eImpact\u003c/h2\u003e\n\u003cp\u003ePrevious versions of tracing-subscriber were vulnerable to ANSI escape sequence injection attacks. Untrusted user input containing ANSI escape sequences could be injected into terminal output when logged, potentially allowing attackers to:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eManipulate terminal title bars\u003c/li\u003e\n\u003cli\u003eClear screens or modify terminal display\u003c/li\u003e\n\u003cli\u003ePotentially mislead users through terminal manipulation\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eIn isolation, impact is minimal, however security issues have been found in terminal emulators that enabled an attacker to use ANSI escape sequences via logs to exploit vulnerabilities in the terminal emulator.\u003c/p\u003e\n\u003ch2\u003eSolution\u003c/h2\u003e\n\u003cp\u003eVersion 0.3.20 fixes this vulnerability by escaping ANSI control characters in when writing events to destinations that may be printed to the terminal.\u003c/p\u003e\n\u003ch2\u003eAffected Versions\u003c/h2\u003e\n\u003cp\u003eAll versions of tracing-subscriber prior to 0.3.20 are affected by this vulnerability.\u003c/p\u003e\n\u003ch2\u003eRecommendations\u003c/h2\u003e\n\u003cp\u003eImmediate Action Required: We recommend upgrading to tracing-subscriber 0.3.20 immediately, especially if your application:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eLogs user-provided input (form data, HTTP headers, query parameters, etc.)\u003c/li\u003e\n\u003cli\u003eRuns in environments where terminal output is displayed to users\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eMigration\u003c/h2\u003e\n\u003cp\u003eThis is a patch release with no breaking API changes. Simply update your Cargo.toml:\u003c/p\u003e\n\u003cpre lang=\"toml\"\u003e\u003ccode\u003e[dependencies]\r\ntracing-subscriber = \u0026quot;0.3.20\u0026quot;\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch2\u003eAcknowledgments\u003c/h2\u003e\n\u003cp\u003eWe would like to thank \u003ca href=\"http://github.com/zefr0x\"\u003ezefr0x\u003c/a\u003e who responsibly reported the issue at \u003ccode\u003esecurity@tokio.rs\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eIf you believe you have found a security vulnerability in any tokio-rs project, please email us at \u003ccode\u003esecurity@tokio.rs\u003c/code\u003e.\u003c/p\u003e\n\u003ch2\u003etracing-subscriber 0.3.19\u003c/h2\u003e\n\u003cp\u003e[ [crates.io][crate-0.3.19] ] | [ [docs.rs][docs-0.3.19] ]\u003c/p\u003e\n\u003cp\u003eThis release updates the \u003ccode\u003etracing\u003c/code\u003e dependency to [v0.1.41][tracing-0.1.41] and\nthe \u003ccode\u003etracing-serde\u003c/code\u003e dependency to [v0.2.0][tracing-serde-0.2.0].\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/4c52ca5266a3920fc5dfeebda2accf15ee7fb278\"\u003e\u003ccode\u003e4c52ca5\u003c/code\u003e\u003c/a\u003e fmt: fix ANSI escape sequence injection vulnerability (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3368\"\u003e#3368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/f71cebe41e4c12735b1d19ca804428d4ff7d905d\"\u003e\u003ccode\u003ef71cebe\u003c/code\u003e\u003c/a\u003e subscriber: impl Clone for EnvFilter (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3360\"\u003e#3360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/3a1f571102b38bcdca13d59f3c454989d179055d\"\u003e\u003ccode\u003e3a1f571\u003c/code\u003e\u003c/a\u003e Fix CI (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3361\"\u003e#3361\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/e63ef57f3d686abe3727ddd586eb9af73d6715b7\"\u003e\u003ccode\u003ee63ef57\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-attributes 0.1.30 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3316\"\u003e#3316\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/6e59a13b1a7bcdd78b8b5a7cbcf70a0b2cdd76f0\"\u003e\u003ccode\u003e6e59a13\u003c/code\u003e\u003c/a\u003e attributes: fix tracing::instrument regression around shadowing (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3311\"\u003e#3311\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/e4df76127538aa8370d7dee32a6f84bbec6bbf10\"\u003e\u003ccode\u003ee4df761\u003c/code\u003e\u003c/a\u003e tracing: update core to 0.1.34 and attributes to 0.1.29 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3305\"\u003e#3305\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/643f392ebb73c4fb856f56a78c066c82582dd22c\"\u003e\u003ccode\u003e643f392\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-attributes 0.1.29 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3304\"\u003e#3304\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/d08e7a6eea1833810ea527e18ea03b08cd402c9d\"\u003e\u003ccode\u003ed08e7a6\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-core 0.1.34 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3302\"\u003e#3302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/6e70c571d319a033d5f37c885ccf99aa675a9eac\"\u003e\u003ccode\u003e6e70c57\u003c/code\u003e\u003c/a\u003e tracing-subscriber: count numbers of enters in \u003ccode\u003eTimings\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/2944\"\u003e#2944\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/c01d4fd9def2fb061669a310598095c789ca0a32\"\u003e\u003ccode\u003ec01d4fd\u003c/code\u003e\u003c/a\u003e fix docs and enable CI on \u003ccode\u003emain\u003c/code\u003e branch (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3295\"\u003e#3295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/tracing/compare/tracing-subscriber-0.3.17...tracing-subscriber-0.3.20\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tokio` from 1.38.1 to 1.38.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/tokio/releases\"\u003etokio's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eTokio v1.38.2\u003c/h2\u003e\n\u003cp\u003eThis release fixes a soundness issue in the broadcast channel. The channel accepts values that are \u003ccode\u003eSend\u003c/code\u003e but \u003ccode\u003e!Sync\u003c/code\u003e. Previously, the channel called \u003ccode\u003eclone()\u003c/code\u003e on these values without synchronizing. This release fixes the channel by synchronizing calls to \u003ccode\u003e.clone()\u003c/code\u003e (Thanks Austin Bonander for finding and reporting the issue).\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esync: synchronize \u003ccode\u003eclone()\u003c/code\u003e call in broadcast channel (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/7232\"\u003e#7232\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/7232\"\u003e#7232\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/tokio/pull/7232\"\u003etokio-rs/tokio#7232\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/aa303bc2051f7c21b48bb7bfcafe8fd4f39afd21\"\u003e\u003ccode\u003eaa303bc\u003c/code\u003e\u003c/a\u003e chore: prepare Tokio v1.38.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/7b6ccb515ff067151ed62db835f735e5653f8784\"\u003e\u003ccode\u003e7b6ccb5\u003c/code\u003e\u003c/a\u003e chore: backport CI fixes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/4b174ce2c95fe1d1a217917db93fcc935e17e0da\"\u003e\u003ccode\u003e4b174ce\u003c/code\u003e\u003c/a\u003e sync: fix cloning value when receiving from broadcast channel\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/9681ce2b95ae7271c041f69b9fc48912259a7ea8\"\u003e\u003ccode\u003e9681ce2\u003c/code\u003e\u003c/a\u003e chore: make 1.38 an LTS (\u003ca href=\"https://redirect.github.com/tokio-rs/tokio/issues/6706\"\u003e#6706\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/tokio/compare/tokio-1.38.1...tokio-1.38.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.5.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.10.1\u003c/h2\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/bytes/pull/773\"\u003etokio-rs/bytes#773\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eBytes v1.10.0\u003c/h2\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.0 (February 3rd, 2025)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd feature to support platforms without atomic CAS (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/467\"\u003e#467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etry_get_*\u003c/code\u003e methods for \u003ccode\u003eBuf\u003c/code\u003e trait (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eTake\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImplement \u003ccode\u003eBuf::chunks_vectored\u003c/code\u003e for \u003ccode\u003eVecDeque\u0026lt;u8\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove incorrect guarantee for \u003ccode\u003echunks_vectored\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that tests pass under \u003ccode\u003epanic=abort\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.9.0 (November 27, 2024)\u003c/h1\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eBytes::from_owner\u003c/code\u003e to enable externally-allocated memory (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/742\"\u003e#742\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumented\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.5.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `keccak` from 0.1.4 to 0.1.6\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/sponges/commit/a8936d9662ca92fd177d289580066ceabb937b0c\"\u003e\u003ccode\u003ea8936d9\u003c/code\u003e\u003c/a\u003e keccak v0.1.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/sponges/commit/40c50c16410392439e2ac4ee0286285db479a106\"\u003e\u003ccode\u003e40c50c1\u003c/code\u003e\u003c/a\u003e keccak v0.1.5 (\u003ca href=\"https://redirect.github.com/RustCrypto/sponges/issues/69\"\u003e#69\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/sponges/commit/2dc13bf92e6a20b7342aab54f5124495415d697d\"\u003e\u003ccode\u003e2dc13bf\u003c/code\u003e\u003c/a\u003e keccak: enable asm backend for p1600 (\u003ca href=\"https://redirect.github.com/RustCrypto/sponges/issues/68\"\u003e#68\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/sponges/commit/a3a4e01607500af1542cb9c5ebfcc7374d051935\"\u003e\u003ccode\u003ea3a4e01\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;Update Cargo.lock\u0026quot; (\u003ca href=\"https://redirect.github.com/RustCrypto/sponges/issues/67\"\u003e#67\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/sponges/commit/3a9a29ef77f4718b6a385d08779d098dded51ef7\"\u003e\u003ccode\u003e3a9a29e\u003c/code\u003e\u003c/a\u003e Update Cargo.lock\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/sponges/commit/9e4f6bc6954fe4301b6d4367867177d220f09bd3\"\u003e\u003ccode\u003e9e4f6bc\u003c/code\u003e\u003c/a\u003e keccak: don't test \u003ccode\u003esimd\u003c/code\u003e feature in \u003ccode\u003eminimal-versions\u003c/code\u003e workflow (\u003ca href=\"https://redirect.github.com/RustCrypto/sponges/issues/66\"\u003e#66\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/sponges/commit/329d4cdcb19d77658267367e8e3ce49e2e91c64e\"\u003e\u003ccode\u003e329d4cd\u003c/code\u003e\u003c/a\u003e Replace cross tests with MIRI (\u003ca href=\"https://redirect.github.com/RustCrypto/sponges/issues/63\"\u003e#63\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/sponges/commit/48cc4acf38bd5b88acf96599dd50d0fc91a13a3a\"\u003e\u003ccode\u003e48cc4ac\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/checkout from 3 to 4 (\u003ca href=\"https://redirect.github.com/RustCrypto/sponges/issues/61\"\u003e#61\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/sponges/commit/651a34ea2f97a9cd8ace1a63cbf9118009fa4167\"\u003e\u003ccode\u003e651a34e\u003c/code\u003e\u003c/a\u003e keccak: replace CI tests on MIPS with PPC32 (\u003ca href=\"https://redirect.github.com/RustCrypto/sponges/issues/62\"\u003e#62\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/RustCrypto/sponges/commit/4730c6fbba0b7a0766cb1a6d323f1412667eb6cf\"\u003e\u003ccode\u003e4730c6f\u003c/code\u003e\u003c/a\u003e benches: remove criterion deps workaround (\u003ca href=\"https://redirect.github.com/RustCrypto/sponges/issues/60\"\u003e#60\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/RustCrypto/sponges/compare/keccak/v0.1.4...keccak-v0.1.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lz4_flex` from 0.11.3 to 0.11.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/PSeitz/lz4_flex/blob/main/CHANGELOG.md\"\u003elz4_flex's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e0.11.6 (2026-03-14)\u003c/h1\u003e\n\u003ch3\u003eSecurity Fix\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix handling of invalid match offsets during decompression \u003ca href=\"https://github.com/PSeitz/lz4_flex/commit/84cdafb\"\u003e#84cdafb\u003c/a\u003e (thanks \u003ca href=\"https://github.com/Marcono1234\"\u003e\u003ccode\u003e@​Marcono1234\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre\u003e\u003ccode\u003eInvalid match offsets (offset == 0) during decompression were not properly\nhandled, which could lead to invalid memory reads on untrusted input.\nUsers on 0.11.x should upgrade to 0.11.6.\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch1\u003e0.11.5 (2025-06-19)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect rust-version field name in Cargo.toml \u003ca href=\"https://redirect.github.com/PSeitz/lz4_flex/pull/187\"\u003e#187\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e0.11.4 (2025-06-14)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to twox-hash 2.0\u003ca href=\"https://redirect.github.com/PSeitz/lz4_flex/pull/175\"\u003e#175\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBetter \u003ccode\u003eno_std\u003c/code\u003e compatibility \u003ca href=\"https://redirect.github.com/PSeitz/lz4_flex/pull/180\"\u003e#180\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/pseitz/lz4_flex/commits/0.11.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `mio` from 0.8.10 to 0.8.11\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/mio/blob/master/CHANGELOG.md\"\u003emio's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e0.8.11\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix receiving IOCP events after deregistering a Windows named pipe\n(\u003ca href=\"https://redirect.github.com/tokio-rs/mio/pull/1760\"\u003etokio-rs/mio#1760\u003c/a\u003e, backport pr:\n\u003ca href=\"https://redirect.github.com/tokio-rs/mio/pull/1761\"\u003etokio-rs/mio#1761\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/mio/commit/0328bdef900b6396b8d00d33c825cd8af748553d\"\u003e\u003ccode\u003e0328bde\u003c/code\u003e\u003c/a\u003e Release v0.8.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/mio/commit/708449851283b57eb6f514c8f289b66e982720b3\"\u003e\u003ccode\u003e7084498\u003c/code\u003e\u003c/a\u003e Fix warnings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/mio/commit/90d4fe00df870acd3d38f3dc4face9aacab8fbb9\"\u003e\u003ccode\u003e90d4fe0\u003c/code\u003e\u003c/a\u003e named-pipes: fix receiving IOCP events after deregister\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/mio/commit/c710a307f8627c4d63ac1003252aa45175e08399\"\u003e\u003ccode\u003ec710a30\u003c/code\u003e\u003c/a\u003e Add v0.8.x to the CI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/mio/commit/c29e21c244b2b835e8b3e015b92c708c33c7d70a\"\u003e\u003ccode\u003ec29e21c\u003c/code\u003e\u003c/a\u003e Release v0.8.10\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/mio/compare/v0.8.10...v0.8.11\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openssl` from 0.10.62 to 0.10.79\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-openssl/rust-openssl/releases\"\u003eopenssl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eopenssl-v0.10.79\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/cache from 5.0.4 to 5.0.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2610\"\u003erust-openssl/rust-openssl#2610\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTry to fix OpenSSL 1.1.0l download by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2614\"\u003erust-openssl/rust-openssl#2614\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRequire \u0026amp;mut BigNumContextRef for EcPointRef mul/invert by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2615\"\u003erust-openssl/rust-openssl#2615\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix UB in EcGroupRef::generator on groups without a generator by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2617\"\u003erust-openssl/rust-openssl#2617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace \u003ccode\u003euse libc::*;\u003c/code\u003e with targeted imports in openssl-sys by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2618\"\u003erust-openssl/rust-openssl#2618\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKeyRef::is_a and KeyType for name-based key identification by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2619\"\u003erust-openssl/rust-openssl#2619\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKey::{public,private}_key_from_raw_bytes_ex by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2620\"\u003erust-openssl/rust-openssl#2620\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump MSRV to 1.80 by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2622\"\u003erust-openssl/rust-openssl#2622\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop once_cell in favor of std::sync::{LazyLock, OnceLock} by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2623\"\u003erust-openssl/rust-openssl#2623\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKey::private_key_from_seed for ML-DSA/ML-KEM key import by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2621\"\u003erust-openssl/rust-openssl#2621\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eparallelize more builds in CI for cold caches by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2625\"\u003erust-openssl/rust-openssl#2625\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2626\"\u003erust-openssl/rust-openssl#2626\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix process abort when verify/PSK callbacks fire after SSL_CTX swap by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2624\"\u003erust-openssl/rust-openssl#2624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBind OSSL_PARAM_modified and use it for seed_into by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2628\"\u003erust-openssl/rust-openssl#2628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PkeyCtxRef::set_context_string for ML-DSA by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2629\"\u003erust-openssl/rust-openssl#2629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2631\"\u003erust-openssl/rust-openssl#2631\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix output buffer overflow for AES key-wrap-with-padding ciphers by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2630\"\u003erust-openssl/rust-openssl#2630\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl 0.10.79 and openssl-sys 0.9.115 by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2632\"\u003erust-openssl/rust-openssl#2632\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.78...openssl-v0.10.79\"\u003ehttps://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.78...openssl-v0.10.79\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eopenssl-v0.10.78\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix Suite B flag assignments in verify.rs by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2592\"\u003erust-openssl/rust-openssl#2592\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse cvt_p for OPENSSL_malloc error handling by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2593\"\u003erust-openssl/rust-openssl#2593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMark BIO_get_mem_data on AWS-LC to be unsafe by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2594\"\u003erust-openssl/rust-openssl#2594\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSet timeout for package installation step by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2595\"\u003erust-openssl/rust-openssl#2595\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePanic in Crypter::new when IV is required but not provided by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2596\"\u003erust-openssl/rust-openssl#2596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eopenssl 4 support by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2591\"\u003erust-openssl/rust-openssl#2591\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid panic for overlong OIDs by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2598\"\u003erust-openssl/rust-openssl#2598\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix dangling stack pointer in custom extension add callback by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2599\"\u003erust-openssl/rust-openssl#2599\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for LibreSSL 4.3.x by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2603\"\u003erust-openssl/rust-openssl#2603\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix inverted bounds assertion in AES key unwrap by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2604\"\u003erust-openssl/rust-openssl#2604\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject oversized length returns from password callback trampoline by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2605\"\u003erust-openssl/rust-openssl#2605\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eValidate callback-returned lengths in PSK and cookie trampolines by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2607\"\u003erust-openssl/rust-openssl#2607\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eError for short out in MdCtxRef::digest_final() by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2608\"\u003erust-openssl/rust-openssl#2608\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck derive output buffer length on OpenSSL 1.1.x by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2606\"\u003erust-openssl/rust-openssl#2606\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl v0.10.78 and openssl-sys v0.9.114 by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2609\"\u003erust-openssl/rust-openssl#2609\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.77...openssl-v0.10.78\"\u003ehttps://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.77...openssl-v0.10.78\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eopenssl-v0.10.77\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCI: Hash-pin all action usage, avoid credential persistence in actions/checkout by \u003ca href=\"https://github.com/woodruffw\"\u003e\u003ccode\u003e@​woodruffw\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2587\"\u003erust-openssl/rust-openssl#2587\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump aws-lc-sys to 0.39 by \u003ca href=\"https://github.com/goffrie\"\u003e\u003ccode\u003e@​goffrie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2588\"\u003erust-openssl/rust-openssl#2588\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emd_ctx: enable sign/verify/reset on BoringSSL, LibreSSL, and AWS-LC by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2589\"\u003erust-openssl/rust-openssl#2589\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/649f2d9e37f3aa701e20bd8ab5cd7eb5afa0a90f\"\u003e\u003ccode\u003e649f2d9\u003c/code\u003e\u003c/a\u003e Release openssl 0.10.79 and openssl-sys 0.9.115 (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2632\"\u003e#2632\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/257f9b20c001b888986f93579f118fa2a57d4f45\"\u003e\u003ccode\u003e257f9b2\u003c/code\u003e\u003c/a\u003e Fix output buffer overflow for AES key-wrap-with-padding ciphers (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2630\"\u003e#2630\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/d43e9179b1885fc66269a42361cc7a80f631ac8f\"\u003e\u003ccode\u003ed43e917\u003c/code\u003e\u003c/a\u003e Reject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2631\"\u003e#2631\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/f46519c8694a3e121091dafe38aab77c2f756546\"\u003e\u003ccode\u003ef46519c\u003c/code\u003e\u003c/a\u003e Add PkeyCtxRef::set_context_string for ML-DSA (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2629\"\u003e#2629\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/ad9ae312771f898749a9471549519d45eba6a033\"\u003e\u003ccode\u003ead9ae31\u003c/code\u003e\u003c/a\u003e Bind OSSL_PARAM_modified and use it for seed_into (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2628\"\u003e#2628\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/4e25c9be20dae1e78f1a3815950cd0973addae82\"\u003e\u003ccode\u003e4e25c9b\u003c/code\u003e\u003c/a\u003e Fix process abort when verify/PSK callbacks fire after SSL_CTX swap (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2624\"\u003e#2624\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/3dd8f425ef34a069b5bec46f3971b67db1c295c7\"\u003e\u003ccode\u003e3dd8f42\u003c/code\u003e\u003c/a\u003e Add PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2626\"\u003e#2626\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/2c5e5a8f1483d5ec85580c07f721de9057d58e69\"\u003e\u003ccode\u003e2c5e5a8\u003c/code\u003e\u003c/a\u003e parallelize more builds in CI for cold caches (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2625\"\u003e#2625\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/668559171168538cd190574373abfc9e120263ca\"\u003e\u003ccode\u003e6685591\u003c/code\u003e\u003c/a\u003e Add PKey::private_key_from_seed for ML-DSA/ML-KEM key import (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2621\"\u003e#2621\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/8f8fdce627fb3c553673b8c688d9f1dc10ea0cc8\"\u003e\u003ccode\u003e8f8fdce\u003c/code\u003e\u003c/a\u003e Drop once_cell in favor of std::sync::{LazyLock, OnceLock} (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2623\"\u003e#2623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.62...openssl-v0.10.79\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.8.5 to 0.8.6\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.8.6/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.8.6] - 2026-04-14\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1772\"\u003erust-random/rand#1772\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop the experimental \u003ccode\u003esimd_support\u003c/code\u003e feature.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5309f25bb5e7d21ac01c5b6f476badd06f9cdc3f\"\u003e\u003ccode\u003e5309f25\u003c/code\u003e\u003c/a\u003e 0.8.6 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1772\"\u003e#1772\u003c/a\u003e): update for recent nightly rustc and backport \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1126d03a5cbd725aad239efb0d537c9130a76b26\"\u003e\u003ccode\u003e1126d03\u003c/code\u003e\u003c/a\u003e When testing rustc 1.36, use compatible dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/143b60280f79a5f1992445b3df0e0599841f9821\"\u003e\u003ccode\u003e143b602\u003c/code\u003e\u003c/a\u003e Add Cargo.lock.msrv.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9be86f2d8140139800989ac93399b9cd49108fb8\"\u003e\u003ccode\u003e9be86f2\u003c/code\u003e\u003c/a\u003e Fix cross build test.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/5e0d50d7706281ae67e69ff64105baf3c94d6ef8\"\u003e\u003ccode\u003e5e0d50d\u003c/code\u003e\u003c/a\u003e Drop simd_support.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/8ff02f0568d2f8fddda74b47613a3daaa5e2a879\"\u003e\u003ccode\u003e8ff02f0\u003c/code\u003e\u003c/a\u003e Upgrade cache action.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/4ad0cc34fc847d4d59ffdcdfbf189482601aa6b9\"\u003e\u003ccode\u003e4ad0cc3\u003c/code\u003e\u003c/a\u003e Don't test for unsupported target architecture.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/258e6d04a681321e0c4b16e3785063ed9b9e744d\"\u003e\u003ccode\u003e258e6d0\u003c/code\u003e\u003c/a\u003e Address warning.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/9f0e676362f9599941f00bccc5310135b7c19f89\"\u003e\u003ccode\u003e9f0e676\u003c/code\u003e\u003c/a\u003e Mark some internal traits as potentially unused.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6f123c178eee4563876bdd50f4ac0621b21ce2b8\"\u003e\u003ccode\u003e6f123c1\u003c/code\u003e\u003c/a\u003e Workaround never constructed and never used warning.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.8.5...0.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustix` from 0.37.23 to 0.37.28\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/89b7a8de7e09c2e5c4b28582970932800bb14a19\"\u003e\u003ccode\u003e89b7a8d\u003c/code\u003e\u003c/a\u003e chore: Release rustix version 0.37.28\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/f51ecb123ef8007c8ea5919fc3659492da479784\"\u003e\u003ccode\u003ef51ecb1\u003c/code\u003e\u003c/a\u003e Check for a missing \u003ccode\u003eDT_HASH\u003c/code\u003e section in the VDSO parser (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/1254\"\u003e#1254\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/1257\"\u003e#1257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/b720e07733115753886b84138fbaec05b241a288\"\u003e\u003ccode\u003eb720e07\u003c/code\u003e\u003c/a\u003e Remove naked_functions feature usage for x86 (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/722\"\u003e#722\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/1182\"\u003e#1182\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/b38dc512628b5db8d08c26449ee2beed7ed51dcc\"\u003e\u003ccode\u003eb38dc51\u003c/code\u003e\u003c/a\u003e chore: Release rustix version 0.37.27\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/a2d9c8ee1a0c1548f17e5ec6096f3a005111d481\"\u003e\u003ccode\u003ea2d9c8e\u003c/code\u003e\u003c/a\u003e Fix p{read,write}v{,v2}'s encoding of the offset argument on Linux. (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/896\"\u003e#896\u003c/a\u003e) (#...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/dce277762238d5fd40c57ccf0151645d8de3d33d\"\u003e\u003ccode\u003edce2777\u003c/code\u003e\u003c/a\u003e chore: Release rustix version 0.37.26\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/06dbe83c60cbfa603c9437aef9dfd119f068b1df\"\u003e\u003ccode\u003e06dbe83\u003c/code\u003e\u003c/a\u003e Fix \u003ccode\u003esendmsg_unix\u003c/code\u003e's address encoding. (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/885\"\u003e#885\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/bytecodealliance/rustix/issues/886\"\u003e#886\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/00b84d6aac2364455eab2c68e42afee63d6e3ad3\"\u003e\u003ccode\u003e00b84d6\u003c/code\u003e\u003c/a\u003e chore: Release rustix version 0.37.25\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/cad15a7076d493a0651fb0b7889bd5e5a72a8f17\"\u003e\u003ccode\u003ecad15a7\u003c/code\u003e\u003c/a\u003e Fixes for \u003ccode\u003eDir\u003c/code\u003e on macOS, FreeBSD, and WASI.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bytecodealliance/rustix/commit/df3c3a192cf144af0da8a57417fb4addbdc611f6\"\u003e\u003ccode\u003edf3c3a1\u003c/code\u003e\u003c/a\u003e Merge pull request from GHSA-c827-hfw6-qwvm\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bytecodealliance/rustix/compare/v0.37.23...v0.37.28\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls-webpki` from 0.100.1 to 0.100.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rustls/webpki/releases\"\u003erustls-webpki's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.100.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePath building complexity is now limited to a maximum budget of path finding operations, avoiding exponential processing time when encountering certificate chains containing many certificates with the same subject/issuer distinguished name but different subject public key information.\u003c/li\u003e\n\u003cli\u003eName constraints evaluation is now limited to a maximum number of comparison operations, avoiding exponential processing time when encountering certificate chains containing many name constraints and subject alternate names.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eThe following PRs were backported to the rel-0.100 branch in  \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/172\"\u003erustls/webpki#172\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFurther limits on expensive path building (\u003ca href=\"https://redirect.github.com/rustls/webpki/pull/163\"\u003erustls/webpki#163\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBudget tweaks (\u003ca href=\"https://redirect.github.com/rustls/webpki/pull/164\"\u003erustls/webpki#164\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBound name constraint comparisons (\u003ca href=\"https://redirect.github.com/rustls/webpki/pull/165\"\u003erustls/webpki#165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCorrect handling of fatal errors (\u003ca href=\"https://redirect.github.com/rustls/webpki/pull/168\"\u003erustls/webpki#168\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.100.2...v/0.100.3\"\u003ehttps://github.com/rustls/webpki/compare/v/0.100.2...v/0.100.3\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThanks to all who have contributed, on behalf of the rustls team (\u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/cpu\"\u003e\u003ccode\u003e@​cpu\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e)!\u003c/p\u003e\n\u003ch2\u003ev/0.100.2\u003c/h2\u003e\n\u003ch2\u003eRelease notes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ecertificate path building and verification is now capped at 100 signature validation operations to avoid the risk of CPU usage denial-of-service attack when validating crafted certificate chains producing quadratic runtime. This risk affected both clients, as well as servers that verified client certificates.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ev0.100.2 prep by \u003ca href=\"https://github.com/cpu\"\u003e\u003ccode\u003e@​cpu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/154\"\u003erustls/webpki#154\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.100.1...v/0.100.2\"\u003ehttps://github.com/rustls/webpki/compare/v/0.100.1...v/0.100.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/5649c6a65073a0b2320bb5337d603b22426dbd4e\"\u003e\u003ccode\u003e5649c6a\u003c/code\u003e\u003c/a\u003e Cargo: bump version 0.100.2 -\u0026gt; 0.100.3.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/86f4cb29749d88eaf6d80d7f185e1c62b1354ebc\"\u003e\u003ccode\u003e86f4cb2\u003c/code\u003e\u003c/a\u003e verify_cert: use enum for build chain error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/50a293091c1e4c1b1cab8c147fbb0981671f971b\"\u003e\u003ccode\u003e50a2930\u003c/code\u003e\u003c/a\u003e verify_cert: correct handling of fatal errors\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/0651f72569f9f207acfc66091a83922fd032be5f\"\u003e\u003ccode\u003e0651f72\u003c/code\u003e\u003c/a\u003e error: add is_fatal helper, use in verify_cert\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/0598dd29f86d65ea79211744341e0176099192ef\"\u003e\u003ccode\u003e0598dd2\u003c/code\u003e\u003c/a\u003e verify_cert: optional \u003ccode\u003eBudget\u003c/code\u003e arg for \u003ccode\u003everify_chain\u003c/code\u003e helper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/277fb4be2bb4af71ff8ef814936aeeb6079e777f\"\u003e\u003ccode\u003e277fb4b\u003c/code\u003e\u003c/a\u003e verify_cert: take references in verify_chain helper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/63f78e052eac57d6a91e7c6401a76e276934f4eb\"\u003e\u003ccode\u003e63f78e0\u003c/code\u003e\u003c/a\u003e verify_cert: name constraint checking on verified chain\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/f55622a54befabaf3c994a71b987adb4d3ace3ca\"\u003e\u003ccode\u003ef55622a\u003c/code\u003e\u003c/a\u003e verify_cert: budget for name constraint comparisons\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/141ddcb13dcf42d18e1c3ce8eb8855b133713f84\"\u003e\u003ccode\u003e141ddcb\u003c/code\u003e\u003c/a\u003e verify_cert: pull out \u003ccode\u003everify_chain\u003c/code\u003e test helper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/eb07f2f679e7073d359c465dcb09088b2eee271b\"\u003e\u003ccode\u003eeb07f2f\u003c/code\u003e\u003c/a\u003e verify_cert: pull out \u003ccode\u003emake_end_entity\u003c/code\u003e test helper\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.100.1...v/0.100.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.36 to 0.3.44\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.44\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.43\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.42\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.41\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.40\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.39\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.38\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.37\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003etime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.44 [2025-09-19]\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eComparisons of \u003ccode\u003ePrimitiveDateTime\u003c/code\u003e, \u003ccode\u003eUtcDateTime\u003c/code\u003e, and \u003ccode\u003eOffsetDateTime\u003c/code\u003e with differing signs (i.e.\none negative and one positive year) would return the inverse result of what was expected. This was\nintroduced in v0.3.42 and has been fixed.\u003c/li\u003e\n\u003cli\u003eType inference would fail due to feature unification when \u003ccode\u003ewasm-bindgen\u003c/code\u003e enabled \u003ccode\u003eserde_json\u003c/code\u003e.\nThis has been fixed by explicitly specifying the type in the relevant locations.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.43 [2025-09-02]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for \u003ccode\u003erand\u003c/code\u003e 0.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIn the \u003ccode\u003econvert\u003c/code\u003e module, any use of \u003ccode\u003eper\u003c/code\u003e with types that were not the same (such as\n\u003ccode\u003eNanosecond::per(Second)\u003c/code\u003e) would not compile due to a bug. This has been fixed.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.42 [2025-08-31]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eTime::duration_until\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eTime::duration_since\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eper_t\u003c/code\u003e method for all types in \u003ccode\u003etime::convert\u003c/code\u003e. This is similar to the existing \u003ccode\u003eper\u003c/code\u003e method, but\ncan return any of the primitive numeric types that can represent the result. This will cut down on\n\u003ccode\u003eas\u003c/code\u003e casts while ensuring correctness. Type inference isn't perfect, so you may need to provide a\ntype annotation in some situations.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eimpl PartialOrd for Month\u003c/code\u003e and \u003ccode\u003eimpl Ord for Month\u003c/code\u003e; this assumes the months are in the same year\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eSystemTimeExt\u003c/code\u003e trait, adding methods for checked arithmetic with \u003ccode\u003etime::Duration\u003c/code\u003e and obtaining\nthe difference between two \u003ccode\u003eSystemTime\u003c/code\u003es as a \u003ccode\u003etime::Duration\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003ePermit using \u003ccode\u003eUtcDateTime\u003c/code\u003e with \u003ccode\u003erand\u003c/code\u003e (this was inadvertently omitted previously)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eimpl core::error::Error\u003c/code\u003e for all error types (now available when the \u003ccode\u003estd\u003c/code\u003e feature is disabled)\u003c/li\u003e\n\u003cli\u003eMacOS can now obtain the local UTC offset in multi-threaded programs as the system APIs are\nthread-safe.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e#[track_caller]\u003c/code\u003e has been added to all relevant methods.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe minimum supported Rust version is now 1.81.0.\u003c/li\u003e\n\u003cli\u003eThe dependency on \u003ccode\u003eitoa\u003c/code\u003e has been removed, as the standard library now has similar functionality\nby default.\u003c/li\u003e\n\u003cli\u003eFormatting a component that involves a floating point number is now guaranteed to be\ndeterministic, avoiding any subtle differences between platforms or compiler versions.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/04c0ef283828e25a0c7fc270f28c053ceb26afcf\"\u003e\u003ccode\u003e04c0ef2\u003c/code\u003e\u003c/a\u003e v0.3.44 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/b9420633a30925696f9b859dccb86fd3645639c4\"\u003e\u003ccode\u003eb942063\u003c/code\u003e\u003c/a\u003e Compare datetimes with signed integers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/dcdfbf62a956dd9641ba4b1ca40c5a5b234e28c6\"\u003e\u003ccode\u003edcdfbf6\u003c/code\u003e\u003c/a\u003e Add explicit type to avoid inference errors\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/f20385296a658a6d90edfaa8e3f95e7e9cfab843\"\u003e\u003ccode\u003ef203852\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;Remove dependency on \u003ccode\u003eitoa\u003c/code\u003e\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/45b9932e57ffedb43257bf2837c171ebc37a73c3\"\u003e\u003ccode\u003e45b9932\u003c/code\u003e\u003c/a\u003e v0.3.43 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/8cbf0dbff0556c1d5df2c08cf8a047f903362c9d\"\u003e\u003ccode\u003e8cbf0db\u003c/code\u003e\u003c/a\u003e Fix bug with \u003ccode\u003econvert\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/3343e8582696361e118a0045f6e8e36ae3484a5e\"\u003e\u003ccode\u003e3343e85\u003c/code\u003e\u003c/a\u003e Add support for rand 0.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/afb2574f9421f326417980e94198523fec8f85b0\"\u003e\u003ccode\u003eafb2574\u003c/code\u003e\u003c/a\u003e Add note about MSRV\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/ed2852e3b2d6a2e4205675891d2682fd5aa4fc73\"\u003e\u003ccode\u003eed2852e\u003c/code\u003e\u003c/a\u003e v0.3.42 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/1067543c7f794b8a10009b298d15c6d2d4e327ef\"\u003e\u003ccode\u003e1067543\u003c/code\u003e\u003c/a\u003e Fix copied comment\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/time-rs/time/compare/v0.3.36...v0.3.44\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `webpki` from 0.22.0 to 0.22.4\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/briansmith/webpki/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `whoami` from 1.4.1 to 1.6.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ardaku/whoami/releases\"\u003ewhoami's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003eAdded\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for GNU/Hurd\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eChanged\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemoved comment about hostname being limited to ASCII due to Unicode hostnames being supported on Windows\u003c/li\u003e\n\u003cli\u003eMore descriptive error messages on the web target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eFixed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eaccount()\u003c/code\u003e always returning username instead of user principal name on Windows\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elangs()\u003c/code\u003e now returns a list accurate to the POSIX locale spec\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ehostname()\u003c/code\u003e on Windows now returns \u003ccode\u003ePhysicalDnsHostname\u003c/code\u003e instead of \u003ccode\u003eNetBIOS\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edevicename()\u003c/code\u003e: Fixed reading escaped unix pretty names\u003c/li\u003e\n\u003cli\u003eLink error on Windows (in future Rust version)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove comment about hostname being limited to ASCII by \u003ca href=\"https://github.com/davidkna\"\u003e\u003ccode\u003e@​davidkna\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/119\"\u003eardaku/whoami#119\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for GNU/Hurd by \u003ca href=\"https://github.com/pinotree\"\u003e\u003ccode\u003e@​pinotree\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/120\"\u003eardaku/whoami#120\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApply target rename wasm32-wasip1 by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/124\"\u003eardaku/whoami#124\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackport Update copyright (\u003ca href=\"https://redirect.github.com/ardaku/whoami/issues/129\"\u003e#129\u003c/a\u003e) by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/130\"\u003eardaku/whoami#130\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump version to 1.6.0-pre.0 by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/132\"\u003eardaku/whoami#132\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackport v2 -\u0026gt; v1: Fix clippy duplicate attribute for MacOS by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/135\"\u003eardaku/whoami#135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev1: Update wasm-bindgen to v0.2.89 by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/138\"\u003eardaku/whoami#138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackport v2 -\u0026gt; v1: Check more environment variables for language by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/146\"\u003eardaku/whoami#146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackport v2 -\u0026gt; v1: Switch Windows \u003ccode\u003ehostname()\u003c/code\u003e to return \u003ccode\u003ePhysicalDnsHostname\u003c/code\u003e by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/148\"\u003eardaku/whoami#148\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackport v2 -\u0026gt; v1: Improved error handling by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/149\"\u003eardaku/whoami#149\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e1.6.0-pre.1 and Backport v2 -\u0026gt; v1: Adjusts langs() to match POSIX locale spec by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/151\"\u003eardaku/whoami#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackport v2 -\u0026gt; v1: Fix license link by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/154\"\u003eardaku/whoami#154\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd discriminants to ExtendedNameFormat enum by \u003ca href=\"https://github.com/Batch21\"\u003e\u003ccode\u003e@​Batch21\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/156\"\u003eardaku/whoami#156\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eVersion 1.6.0 pre.2 by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/158\"\u003eardaku/whoami#158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackport v2-\u0026gt;v1: Fix reading escaped unix pretty names by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/178\"\u003eardaku/whoami#178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease v1.6.0 by \u003ca href=\"https://github.com/AldaronLau\"\u003e\u003ccode\u003e@​AldaronLau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/162\"\u003eardaku/whoami#162\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/davidkna\"\u003e\u003ccode\u003e@​davidkna\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/119\"\u003eardaku/whoami#119\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pinotree\"\u003e\u003ccode\u003e@​pinotree\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/120\"\u003eardaku/whoami#120\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Batch21\"\u003e\u003ccode\u003e@​Batch21\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/ardaku/whoami/pull/156\"\u003eardaku/whoami#156\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/ardaku/whoami/compare/v1.5.2...v1.6.0\"\u003ehttps://github.com/ardaku/whoami/compare/v1.5.2...v1.6.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ardaku/whoami/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/bwarelabs/aptos-indexer-processors/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/bwarelabs/aptos-indexer-processors/pull/28","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/bwarelabs%2Faptos-indexer-processors/issues/28","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/28/packages"}},{"old_version":"1.10.0","new_version":"1.11.1","update_type":"minor","path":null,"pr_created_at":"2026-05-08T11:28:42.000Z","version_change":"1.10.0 → 1.11.1","issue":{"uuid":"4406011827","node_id":"PR_kwDON5N0qs7Zguwv","number":13,"state":"closed","title":"build(deps): bump the cargo group across 1 directory with 16 updates","user":"dependabot[bot]","labels":["dependencies","rust"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-19T20:03:55.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-08T11:28:42.000Z","updated_at":"2026-05-19T20:03:58.000Z","time_to_close":981313,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"cargo","update_count":16,"packages":[{"name":"aws-sdk-cloudfront","old_version":"1.64.1","new_version":"1.67.1","repository_url":"https://github.com/awslabs/aws-sdk-rust"},{"name":"diesel","old_version":"2.2.7","new_version":"2.2.12","repository_url":"https://github.com/diesel-rs/diesel"},{"name":"diesel-async","old_version":"0.5.2","new_version":"0.6.1","repository_url":"https://github.com/weiznich/diesel_async"},{"name":"rand","old_version":"0.9.0","new_version":"0.9.3","repository_url":"https://github.com/rust-random/rand"},{"name":"tar","old_version":"0.4.43","new_version":"0.4.45","repository_url":"https://github.com/alexcrichton/tar-rs"},{"name":"tokio","old_version":"1.43.0","new_version":"1.43.1","repository_url":"https://github.com/tokio-rs/tokio"},{"name":"tracing-subscriber","old_version":"0.3.19","new_version":"0.3.20","repository_url":"https://github.com/tokio-rs/tracing"},{"name":"bytes","old_version":"1.10.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"zip","old_version":"2.2.2","new_version":"2.3.0","repository_url":"https://github.com/zip-rs/zip2"},{"name":"git2","old_version":"0.20.0","new_version":"0.20.4","repository_url":"https://github.com/rust-lang/git2-rs"},{"name":"ammonia","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/rust-ammonia/ammonia"},{"name":"crossbeam-channel","old_version":"0.5.14","new_version":"0.5.15","repository_url":"https://github.com/crossbeam-rs/crossbeam"},{"name":"openssl","old_version":"0.10.70","new_version":"0.10.79","repository_url":"https://github.com/rust-openssl/rust-openssl"},{"name":"quinn-proto","old_version":"0.11.9","new_version":"0.11.14","repository_url":"https://github.com/quinn-rs/quinn"},{"name":"ring","old_version":"0.17.8","new_version":"0.17.14","repository_url":"https://github.com/briansmith/ring"},{"name":"time","old_version":"0.3.37","new_version":"0.3.44","repository_url":"https://github.com/time-rs/time"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 16 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [aws-sdk-cloudfront](https://github.com/awslabs/aws-sdk-rust) | `1.64.1` | `1.67.1` |\n| [diesel](https://github.com/diesel-rs/diesel) | `2.2.7` | `2.2.12` |\n| [diesel-async](https://github.com/weiznich/diesel_async) | `0.5.2` | `0.6.1` |\n| [rand](https://github.com/rust-random/rand) | `0.9.0` | `0.9.3` |\n| [tar](https://github.com/alexcrichton/tar-rs) | `0.4.43` | `0.4.45` |\n| [tokio](https://github.com/tokio-rs/tokio) | `1.43.0` | `1.43.1` |\n| [tracing-subscriber](https://github.com/tokio-rs/tracing) | `0.3.19` | `0.3.20` |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.10.0` | `1.11.1` |\n| [zip](https://github.com/zip-rs/zip2) | `2.2.2` | `2.3.0` |\n| [git2](https://github.com/rust-lang/git2-rs) | `0.20.0` | `0.20.4` |\n| [ammonia](https://github.com/rust-ammonia/ammonia) | `4.0.0` | `4.0.1` |\n| [crossbeam-channel](https://github.com/crossbeam-rs/crossbeam) | `0.5.14` | `0.5.15` |\n| [openssl](https://github.com/rust-openssl/rust-openssl) | `0.10.70` | `0.10.79` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.9` | `0.11.14` |\n| [ring](https://github.com/briansmith/ring) | `0.17.8` | `0.17.14` |\n| [time](https://github.com/time-rs/time) | `0.3.37` | `0.3.44` |\n\n\nUpdates `aws-sdk-cloudfront` from 1.64.1 to 1.67.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/awslabs/aws-sdk-rust/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `diesel` from 2.2.7 to 2.2.12\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/diesel-rs/diesel/blob/main/CHANGELOG.md\"\u003ediesel's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[2.2.12] 2025-07-11\u003c/h2\u003e\n\u003ch2\u003eFixed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded support for libsqlite3-sys 0.35.0\u003c/li\u003e\n\u003cli\u003eFixed a wrong oid for the \u003ccode\u003eoid[]\u003c/code\u003e type in the PostgreSQL backend\u003c/li\u003e\n\u003cli\u003eWorked around an issue with broken nullable detection with certain versions of libmysqlclient shipped by ubuntu\u003c/li\u003e\n\u003cli\u003eImproved compiler errors in many more cases\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[2.2.11] 2025-06-12\u003c/h2\u003e\n\u003ch2\u003eFixed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDisallow mixing aggregate and non-aggregate expressions in \u003ccode\u003eDISTINCT ON\u003c/code\u003e clauses\u003c/li\u003e\n\u003cli\u003eFixed an item referenced by a non-absolute path in \u003ccode\u003e#[derive(MultiConnection)]\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eImproved compiler errors in some cases\u003c/li\u003e\n\u003cli\u003eImproved the documentation for creating SqliteConnections for concurrent applications\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[2.2.10] 2025-04-25\u003c/h2\u003e\n\u003ch2\u003eFixed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for libsqlite3-sys 0.35.0\u003c/li\u003e\n\u003cli\u003eFixed potential ambiguities in code generated by various derives\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[2.2.9] 2025-04-04\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix an issue where \u003ccode\u003ediesel migration generate --diff-schema\u003c/code\u003e incorrectly uses the primary key of table B as the referenced column rather than the primary key of table A when B has a foreign key pointing to table A.\u003c/li\u003e\n\u003cli\u003eBump maximal supported libsqlite3-sys version to 0.32.0 and add explicit feature entries for the \u003ccode\u003euuid\u003c/code\u003e and \u003ccode\u003eserde_json\u003c/code\u003e feature.\u003c/li\u003e\n\u003cli\u003eFixed an issue where diesel generated unnamed prepared statements would fail with an \u003ccode\u003eunanmed prepared statement not found\u003c/code\u003e error with pgbouncer.\u003c/li\u003e\n\u003cli\u003eFix an issue with converting \u003ccode\u003eipnet::Ipnet\u003c/code\u003e values with an subnet to SQL values\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[2.2.8] 2025-03-03\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAllow \u003ccode\u003e#[diesel(check_for_backend(_))]\u003c/code\u003e to check fields with \u003ccode\u003e#[diesel(embed)]\u003c/code\u003e annotations\u003c/li\u003e\n\u003cli\u003eImprove custom compile error message around \u003ccode\u003eCompatibleType\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix a bug that restricted the number of allowed columns in \u003ccode\u003eCOPY FROM\u003c/code\u003e statements to 12\u003c/li\u003e\n\u003cli\u003eExpose some SqliteValue helper functions\u003c/li\u003e\n\u003cli\u003eUse consistent whitespace in \u003ccode\u003eASC\u003c/code\u003e/\u003ccode\u003eDESC\u003c/code\u003e, \u003ccode\u003eDISTINCT ON\u003c/code\u003e, and \u003ccode\u003eDELETE FROM\u003c/code\u003e clauses\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/1073cea3f80110792e911f4af64596c84d7cdc17\"\u003e\u003ccode\u003e1073cea\u003c/code\u003e\u003c/a\u003e Try to fix window release workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/b200d8a0f76a6c3e34b892378265be18acc7ad07\"\u003e\u003ccode\u003eb200d8a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/diesel-rs/diesel/issues/4672\"\u003e#4672\u003c/a\u003e from weiznich/prepare/diesel_2.2.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/2a4692f40a50ff7a8a42eaa0247f78efcb4619e0\"\u003e\u003ccode\u003e2a4692f\u003c/code\u003e\u003c/a\u003e Prepare diesel 2.2.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/0681a66839f9aad075037162c224f975627f220a\"\u003e\u003ccode\u003e0681a66\u003c/code\u003e\u003c/a\u003e Bump thiserror to 2.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/74f55d4b2419f76f7c203135000f3bd76796bb70\"\u003e\u003ccode\u003e74f55d4\u003c/code\u003e\u003c/a\u003e Bump to toml 0.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/6539b03a61fc6a9282184f8fa96c2fcc30fe687f\"\u003e\u003ccode\u003e6539b03\u003c/code\u003e\u003c/a\u003e Revert rusqlite to 0.32 for diesel_bench (\u003ca href=\"https://redirect.github.com/diesel-rs/diesel/issues/4676\"\u003e#4676\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/729ff146e0fcc2b34ea53ee2a88796e55622a92a\"\u003e\u003ccode\u003e729ff14\u003c/code\u003e\u003c/a\u003e Add support for libsqlite3-sys 0.35 (\u003ca href=\"https://redirect.github.com/diesel-rs/diesel/issues/4676\"\u003e#4676\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/e2125075a8079d80200b20c967bd22fd4f18512a\"\u003e\u003ccode\u003ee212507\u003c/code\u003e\u003c/a\u003e More uppercase fixes for diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/746d5ca8502f99348a79fbb83c13b19688d539ff\"\u003e\u003ccode\u003e746d5ca\u003c/code\u003e\u003c/a\u003e Bump to rust 1.88\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel/commit/0c02a66c49a18db787ff4713d030c77f9b20ec89\"\u003e\u003ccode\u003e0c02a66\u003c/code\u003e\u003c/a\u003e Fix print-schema crash with mariadb client library\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/diesel-rs/diesel/compare/v2.2.7...v2.2.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `diesel-async` from 0.5.2 to 0.6.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/weiznich/diesel_async/releases\"\u003ediesel-async's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDiesel-Async 0.6.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix building with different feature combinations\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eYou can support the development of diesel-async by contributions or by sponsoring the project on GitHub.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/weiznich/diesel_async/compare/v0.6.0...v0.6.1\"\u003ehttps://github.com/weiznich/diesel_async/compare/v0.6.0...v0.6.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eDiesel-Async 0.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAllow to control the statement cache size\u003c/li\u003e\n\u003cli\u003eMinimize dependencies features\u003c/li\u003e\n\u003cli\u003eBump minimal supported mysql_async version to 0.36.0\u003c/li\u003e\n\u003cli\u003eFixing a bug in how we tracked open transaction that could lead to dangling transactions is specific cases\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eYou can support the development of diesel-async by contributions or by sponsoring the project on GitHub.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/weiznich/diesel_async/compare/v0.5.2...v0.6.0\"\u003ehttps://github.com/weiznich/diesel_async/compare/v0.5.2...v0.6.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/diesel-rs/diesel_async/blob/main/CHANGELOG.md\"\u003ediesel-async's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.6.1] - 2025-07-03\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix features for some dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.6.0] - 2025-07-02\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAllow to control the statement cache size\u003c/li\u003e\n\u003cli\u003eMinimize dependencies features\u003c/li\u003e\n\u003cli\u003eBump minimal supported mysql_async version to 0.36.0\u003c/li\u003e\n\u003cli\u003eFixing a bug in how we tracked open transaction that could lead to dangling transactions is specific cases\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel_async/commit/82b8c375c80c59f986e07b0fe7eaee30112648a4\"\u003e\u003ccode\u003e82b8c37\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/weiznich/diesel_async/issues/245\"\u003e#245\u003c/a\u003e from weiznich/fix/244\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel_async/commit/6a413a84800c87c2397eef8d8fb9249168ac1df4\"\u003e\u003ccode\u003e6a413a8\u003c/code\u003e\u003c/a\u003e Fix building with different feature combinations\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel_async/commit/52dc60134a3e2221d84212a69b5854b3d9b51917\"\u003e\u003ccode\u003e52dc601\u003c/code\u003e\u003c/a\u003e Fix Changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel_async/commit/f043b13e93c16d08925ebc3178d49c7abfe6810a\"\u003e\u003ccode\u003ef043b13\u003c/code\u003e\u003c/a\u003e Prepare a diesel_async 0.6.0 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel_async/commit/a9f7a35f7a3b3d32f6316a6b83a8ad9bdfebbbce\"\u003e\u003ccode\u003ea9f7a35\u003c/code\u003e\u003c/a\u003e Copy new statement cache form diesel to unblock a release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel_async/commit/f8263a18147c49bc2a4d24707540c9731a814777\"\u003e\u003ccode\u003ef8263a1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/weiznich/diesel_async/issues/240\"\u003e#240\u003c/a\u003e from progval/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel_async/commit/5f4aae077dd1bb48bc149f1ff0735a2e5ae59409\"\u003e\u003ccode\u003e5f4aae0\u003c/code\u003e\u003c/a\u003e Fix documentation link to SyncConnectionWrapper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel_async/commit/540b1a5a44eeb0e7cad63c008d931671d38cd8cc\"\u003e\u003ccode\u003e540b1a5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/weiznich/diesel_async/issues/242\"\u003e#242\u003c/a\u003e from weiznich/fix/241\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel_async/commit/2e4075aae1af8eaaf957b134913804e87dcbc573\"\u003e\u003ccode\u003e2e4075a\u003c/code\u003e\u003c/a\u003e Fix a bug in how we handle serialization errors\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/diesel-rs/diesel_async/commit/7d456345484c4aa44998707a69633ecfb2653ee3\"\u003e\u003ccode\u003e7d45634\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/weiznich/diesel_async/issues/239\"\u003e#239\u003c/a\u003e from weiznich/fix/bump_msrv_1.84\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/weiznich/diesel_async/compare/v0.5.2...v0.6.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rand` from 0.9.0 to 0.9.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-random/rand/blob/0.9.3/CHANGELOG.md\"\u003erand's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.9.3] — 2026-02-11\u003c/h2\u003e\n\u003cp\u003eThis release back-ports a fix from v0.10. See also \u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReplace usages of \u003ccode\u003edoc_auto_cfg\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1763\"\u003e#1763\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/rust-random/rand/pull/1763\"\u003erust-random/rand#1763\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e[0.9.2] — 2025-07-20\u003c/h2\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003erand::rngs::mock\u003c/code\u003e module and \u003ccode\u003eStepRng\u003c/code\u003e generator (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1634\"\u003e#1634\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdditions\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnable \u003ccode\u003eWeightedIndex\u0026lt;usize\u0026gt;\u003c/code\u003e (de)serialization (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1646\"\u003e#1646\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.9.1] - 2025-04-17\u003c/h2\u003e\n\u003ch3\u003eSecurity and unsafe\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevise \u0026quot;not a crypto library\u0026quot; policy again (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1565\"\u003e#1565\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRemove \u003ccode\u003ezerocopy\u003c/code\u003e dependency from \u003ccode\u003erand\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1579\"\u003e#1579\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix feature \u003ccode\u003esimd_support\u003c/code\u003e for recent nightly rust (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1586\"\u003e#1586\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAllow \u003ccode\u003efn rand::seq::index::sample_weighted\u003c/code\u003e and \u003ccode\u003efn IndexedRandom::choose_multiple_weighted\u003c/code\u003e to return fewer than \u003ccode\u003eamount\u003c/code\u003e results (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1623\"\u003e#1623\u003c/a\u003e), reverting an undocumented change (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1382\"\u003e#1382\u003c/a\u003e) to the previous release.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdditions\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003erand::distr::Alphabetic\u003c/code\u003e distribution. (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1587\"\u003e#1587\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRe-export \u003ccode\u003erand_core\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1604\"\u003e#1604\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/1aeee9f4c506f9f737c6c37c169ccdc365bfbabf\"\u003e\u003ccode\u003e1aeee9f\u003c/code\u003e\u003c/a\u003e Prepare v0.9.3: deprecate feature \u003ccode\u003elog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1764\"\u003e#1764\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/98473ee6f9b44eb85154b59b67adade7f2a9b8a1\"\u003e\u003ccode\u003e98473ee\u003c/code\u003e\u003c/a\u003e Prepare rand 0.9.2 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1648\"\u003e#1648\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/031a1f5589e487ce95972cb3acc0833ef64cfc10\"\u003e\u003ccode\u003e031a1f5\u003c/code\u003e\u003c/a\u003e \u003ccode\u003eexamples/print-next.rs\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1647\"\u003e#1647\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/6cb75ee59eda73967b6a3cae4fdcf2c21f6e0e4e\"\u003e\u003ccode\u003e6cb75ee\u003c/code\u003e\u003c/a\u003e Make UniformUsize serializable (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1646\"\u003e#1646\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/0c955c5b7a079bc2fe67fe946a8deb46c4bc58d8\"\u003e\u003ccode\u003e0c955c5\u003c/code\u003e\u003c/a\u003e Add some tests for BlockRng, BlockRng64 and Xoshiro RNGs (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1639\"\u003e#1639\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/204084a35fc7289e9a38575fdd80869818484517\"\u003e\u003ccode\u003e204084a\u003c/code\u003e\u003c/a\u003e Fix: Remove accidental editor swap file (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1636\"\u003e#1636\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/86262ac190ec20a79293607fb2347dc74c99122e\"\u003e\u003ccode\u003e86262ac\u003c/code\u003e\u003c/a\u003e Deprecate rand::rngs::mock module and StepRng (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1634\"\u003e#1634\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/a6e217f4a3ce78223a59cc1ff9afb2b5e589d785\"\u003e\u003ccode\u003ea6e217f\u003c/code\u003e\u003c/a\u003e Update statrs link (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1630\"\u003e#1630\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/db993ec12676119251eaf9f2cba8389a1b07abef\"\u003e\u003ccode\u003edb993ec\u003c/code\u003e\u003c/a\u003e Prepare rand v0.9.1 (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1629\"\u003e#1629\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-random/rand/commit/3057641020408f64a4618b1c582cad45a9304811\"\u003e\u003ccode\u003e3057641\u003c/code\u003e\u003c/a\u003e Remove zerocopy from rand (\u003ca href=\"https://redirect.github.com/rust-random/rand/issues/1579\"\u003e#1579\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-random/rand/compare/0.9.0...0.9.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 0.4.43 to 0.4.45\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/096e3d16d14fefac51bc4d94d616b21546ea8bcc\"\u003e\u003ccode\u003e096e3d1\u003c/code\u003e\u003c/a\u003e Bump to 0.4.45 (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/443\"\u003e#443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/17b1fd84e632071cb8eef9d3709bf347bd266446\"\u003e\u003ccode\u003e17b1fd8\u003c/code\u003e\u003c/a\u003e archive: Prevent symlink-directory collision chmod attack (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/de1a5870e603758f430073688691165f21a33946\"\u003e\u003ccode\u003ede1a587\u003c/code\u003e\u003c/a\u003e archive: Unconditionally honor PAX size (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/441\"\u003e#441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/6071cbe74acefa8c8322809bfd43c825e5f16b60\"\u003e\u003ccode\u003e6071cbe\u003c/code\u003e\u003c/a\u003e ci: Consolidate workflows (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/439\"\u003e#439\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/ad1fde9edfb9657d17666bbec2933119ce527359\"\u003e\u003ccode\u003ead1fde9\u003c/code\u003e\u003c/a\u003e build-sys: Promote unused_code to an error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/c8cb250e8bc3f28bd69406b396bb8a92b40012c1\"\u003e\u003ccode\u003ec8cb250\u003c/code\u003e\u003c/a\u003e tests: Squash a warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/638c495a480d2a50099d55f445ece9e5f544b49d\"\u003e\u003ccode\u003e638c495\u003c/code\u003e\u003c/a\u003e ci: Add xtask infra + reverse dependency testing (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/435\"\u003e#435\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/32a9bbb26468cbdecbf73fe8eb249284d4a718ed\"\u003e\u003ccode\u003e32a9bbb\u003c/code\u003e\u003c/a\u003e tests: Add RandomReader to exercise partial-read resilience (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/436\"\u003e#436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/9c5df0bfd70d1b063516b90fca2cf2e0dbe8b758\"\u003e\u003ccode\u003e9c5df0b\u003c/code\u003e\u003c/a\u003e Fix GNU long-name extension stream corruption on validation error (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/88b1e3b0da65b0c5b9750d1a75516145488f4793\"\u003e\u003ccode\u003e88b1e3b\u003c/code\u003e\u003c/a\u003e Fix docs typo in header.rs (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alexcrichton/tar-rs/compare/0.4.43...0.4.45\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tokio` from 1.43.0 to 1.43.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/a7b658c35bd40f6811e557aeb97cbb361b612c56\"\u003e\u003ccode\u003ea7b658c\u003c/code\u003e\u003c/a\u003e chore: prepare Tokio v1.43.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/c1c8d1033d637d7027fdc137ec8008c5801cbc0d\"\u003e\u003ccode\u003ec1c8d10\u003c/code\u003e\u003c/a\u003e Merge remote-tracking branch 'origin/tokio-1.38.x' into forward-port-1.38.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/aa303bc2051f7c21b48bb7bfcafe8fd4f39afd21\"\u003e\u003ccode\u003eaa303bc\u003c/code\u003e\u003c/a\u003e chore: prepare Tokio v1.38.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/7b6ccb515ff067151ed62db835f735e5653f8784\"\u003e\u003ccode\u003e7b6ccb5\u003c/code\u003e\u003c/a\u003e chore: backport CI fixes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tokio/commit/4b174ce2c95fe1d1a217917db93fcc935e17e0da\"\u003e\u003ccode\u003e4b174ce\u003c/code\u003e\u003c/a\u003e sync: fix cloning value when receiving from broadcast channel\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/tokio/compare/tokio-1.43.0...tokio-1.43.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tracing-subscriber` from 0.3.19 to 0.3.20\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/tracing/releases\"\u003etracing-subscriber's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003etracing-subscriber 0.3.20\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eSecurity Fix\u003c/strong\u003e: ANSI Escape Sequence Injection (CVE-TBD)\u003c/p\u003e\n\u003ch2\u003eImpact\u003c/h2\u003e\n\u003cp\u003ePrevious versions of tracing-subscriber were vulnerable to ANSI escape sequence injection attacks. Untrusted user input containing ANSI escape sequences could be injected into terminal output when logged, potentially allowing attackers to:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eManipulate terminal title bars\u003c/li\u003e\n\u003cli\u003eClear screens or modify terminal display\u003c/li\u003e\n\u003cli\u003ePotentially mislead users through terminal manipulation\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eIn isolation, impact is minimal, however security issues have been found in terminal emulators that enabled an attacker to use ANSI escape sequences via logs to exploit vulnerabilities in the terminal emulator.\u003c/p\u003e\n\u003ch2\u003eSolution\u003c/h2\u003e\n\u003cp\u003eVersion 0.3.20 fixes this vulnerability by escaping ANSI control characters in when writing events to destinations that may be printed to the terminal.\u003c/p\u003e\n\u003ch2\u003eAffected Versions\u003c/h2\u003e\n\u003cp\u003eAll versions of tracing-subscriber prior to 0.3.20 are affected by this vulnerability.\u003c/p\u003e\n\u003ch2\u003eRecommendations\u003c/h2\u003e\n\u003cp\u003eImmediate Action Required: We recommend upgrading to tracing-subscriber 0.3.20 immediately, especially if your application:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eLogs user-provided input (form data, HTTP headers, query parameters, etc.)\u003c/li\u003e\n\u003cli\u003eRuns in environments where terminal output is displayed to users\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eMigration\u003c/h2\u003e\n\u003cp\u003eThis is a patch release with no breaking API changes. Simply update your Cargo.toml:\u003c/p\u003e\n\u003cpre lang=\"toml\"\u003e\u003ccode\u003e[dependencies]\r\ntracing-subscriber = \u0026quot;0.3.20\u0026quot;\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch2\u003eAcknowledgments\u003c/h2\u003e\n\u003cp\u003eWe would like to thank \u003ca href=\"http://github.com/zefr0x\"\u003ezefr0x\u003c/a\u003e who responsibly reported the issue at \u003ccode\u003esecurity@tokio.rs\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eIf you believe you have found a security vulnerability in any tokio-rs project, please email us at \u003ccode\u003esecurity@tokio.rs\u003c/code\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/4c52ca5266a3920fc5dfeebda2accf15ee7fb278\"\u003e\u003ccode\u003e4c52ca5\u003c/code\u003e\u003c/a\u003e fmt: fix ANSI escape sequence injection vulnerability (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3368\"\u003e#3368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/f71cebe41e4c12735b1d19ca804428d4ff7d905d\"\u003e\u003ccode\u003ef71cebe\u003c/code\u003e\u003c/a\u003e subscriber: impl Clone for EnvFilter (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3360\"\u003e#3360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/3a1f571102b38bcdca13d59f3c454989d179055d\"\u003e\u003ccode\u003e3a1f571\u003c/code\u003e\u003c/a\u003e Fix CI (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3361\"\u003e#3361\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/e63ef57f3d686abe3727ddd586eb9af73d6715b7\"\u003e\u003ccode\u003ee63ef57\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-attributes 0.1.30 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3316\"\u003e#3316\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/6e59a13b1a7bcdd78b8b5a7cbcf70a0b2cdd76f0\"\u003e\u003ccode\u003e6e59a13\u003c/code\u003e\u003c/a\u003e attributes: fix tracing::instrument regression around shadowing (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3311\"\u003e#3311\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/e4df76127538aa8370d7dee32a6f84bbec6bbf10\"\u003e\u003ccode\u003ee4df761\u003c/code\u003e\u003c/a\u003e tracing: update core to 0.1.34 and attributes to 0.1.29 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3305\"\u003e#3305\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/643f392ebb73c4fb856f56a78c066c82582dd22c\"\u003e\u003ccode\u003e643f392\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-attributes 0.1.29 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3304\"\u003e#3304\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/d08e7a6eea1833810ea527e18ea03b08cd402c9d\"\u003e\u003ccode\u003ed08e7a6\u003c/code\u003e\u003c/a\u003e chore: prepare tracing-core 0.1.34 (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3302\"\u003e#3302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/6e70c571d319a033d5f37c885ccf99aa675a9eac\"\u003e\u003ccode\u003e6e70c57\u003c/code\u003e\u003c/a\u003e tracing-subscriber: count numbers of enters in \u003ccode\u003eTimings\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/2944\"\u003e#2944\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/tracing/commit/c01d4fd9def2fb061669a310598095c789ca0a32\"\u003e\u003ccode\u003ec01d4fd\u003c/code\u003e\u003c/a\u003e fix docs and enable CI on \u003ccode\u003emain\u003c/code\u003e branch (\u003ca href=\"https://redirect.github.com/tokio-rs/tracing/issues/3295\"\u003e#3295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/tracing/compare/tracing-subscriber-0.3.19...tracing-subscriber-0.3.20\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bytes` from 1.10.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.11.0\u003c/h2\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBytes v1.10.1\u003c/h2\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/tokio-rs/bytes/pull/773\"\u003etokio-rs/bytes#773\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.11.0 (November 14th, 2025)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBump MSRV to 1.57 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/788\"\u003e#788\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSpecialize \u003ccode\u003eBytesMut::put::\u0026lt;Bytes\u0026gt;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReserve capacity in \u003ccode\u003eBytesMut::put\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003eBytesMut::remaining_mut\u003c/code\u003e to use \u003ccode\u003eisize::MAX\u003c/code\u003e instead of \u003ccode\u003eusize::MAX\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuarantee address in \u003ccode\u003eslice()\u003c/code\u003e for empty slices. (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename \u003ccode\u003eVtable::to_*\u003c/code\u003e -\u0026gt; \u003ccode\u003eVtable::into_*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore \u003ccode\u003eBytesMut::freeze\u003c/code\u003e doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove \u003ccode\u003edrop_fn\u003c/code\u003e of \u003ccode\u003efrom_owner\u003c/code\u003e into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.10.1 (March 5th, 2025)\u003c/h1\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix memory leak when using \u003ccode\u003eto_vec\u003c/code\u003e with \u003ccode\u003eBytes::from_owner\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/a7952fb4478f6dc226f623b217432fbc6f8dad24\"\u003e\u003ccode\u003ea7952fb\u003c/code\u003e\u003c/a\u003e chore: prepare bytes v1.11.0 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/60cbb776f22e4ef2268c026e88a24d6ed75b3776\"\u003e\u003ccode\u003e60cbb77\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eBytesMut\u003c/code\u003e only reuse if src has remaining (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/803\"\u003e#803\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/7ce330f5192a322fb1efefe7ac9a3850b27162a1\"\u003e\u003ccode\u003e7ce330f\u003c/code\u003e\u003c/a\u003e Move drop_fn of from_owner into vtable (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/801\"\u003e#801\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/4b53a29eb26716592ef2f00f925ef58ccb182e61\"\u003e\u003ccode\u003e4b53a29\u003c/code\u003e\u003c/a\u003e Tweak BytesMut::remaining_mut (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/016fdbdc7a95f6764186dacfcaeef94d77e89cd1\"\u003e\u003ccode\u003e016fdbd\u003c/code\u003e\u003c/a\u003e Reserve capacity in BytesMut::put (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/ef7f25736cfe48db5b42f2aa3225cace4126d2ac\"\u003e\u003ccode\u003eef7f257\u003c/code\u003e\u003c/a\u003e Specialize BytesMut::put::\u0026lt;Bytes\u0026gt; (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/8b4f54d0f317724bfeab29232f8a9333b3d8625e\"\u003e\u003ccode\u003e8b4f54d\u003c/code\u003e\u003c/a\u003e Ignore BytesMut::freeze doctest on wasm (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/790\"\u003e#790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/16132ad2593402aa7dbd882b0ce22a40bfacfd96\"\u003e\u003ccode\u003e16132ad\u003c/code\u003e\u003c/a\u003e Fix latest clippy warnings (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/787\"\u003e#787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.10.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `zip` from 2.2.2 to 2.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/zip-rs/zip2/releases\"\u003ezip's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.3.0\u003c/h2\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for NTFS extra field (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/279\"\u003e#279\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🐛 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(test)\u003c/em\u003e Conditionalize a zip64 doctest (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/308\"\u003e#308\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix failing tests, remove symlink loop check\u003c/li\u003e\n\u003cli\u003eCanonicalize output path to avoid false negatives\u003c/li\u003e\n\u003cli\u003eSymlink handling in stream extraction\u003c/li\u003e\n\u003cli\u003eCanonicalize output paths and symlink targets, and ensure they descend from the destination\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e⚙️ Miscellaneous Tasks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix clippy and cargo fmt warnings (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/310\"\u003e#310\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.2.3\u003c/h2\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🚜 Refactor\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eChange the inner structure of \u003ccode\u003eDateTime\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/267\"\u003e#267\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e⚙️ Miscellaneous Tasks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ecargo fix --edition\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/zip-rs/zip2/blob/master/CHANGELOG.md\"\u003ezip's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/zip-rs/zip2/compare/v2.2.3...v2.3.0\"\u003e2.3.0\u003c/a\u003e - 2025-03-16\u003c/h2\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for NTFS extra field (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/279\"\u003e#279\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🐛 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003e(test)\u003c/em\u003e Conditionalize a zip64 doctest (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/308\"\u003e#308\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix failing tests, remove symlink loop check\u003c/li\u003e\n\u003cli\u003eCanonicalize output path to avoid false negatives\u003c/li\u003e\n\u003cli\u003eSymlink handling in stream extraction\u003c/li\u003e\n\u003cli\u003eCanonicalize output paths and symlink targets, and ensure they descend from the destination (\u003ca href=\"https://github.com/zip-rs/zip2/security/advisories/GHSA-94vh-gphv-8pm8\"\u003eCVE-2025-29787\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e⚙️ Miscellaneous Tasks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix clippy and cargo fmt warnings (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/310\"\u003e#310\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/zip-rs/zip2/compare/v2.2.2...v2.2.3\"\u003e2.2.3\u003c/a\u003e - 2025-02-26\u003c/h2\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e🚜 Refactor\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eChange the inner structure of \u003ccode\u003eDateTime\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/pull/267\"\u003e#267\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003c!-- raw HTML omitted --\u003e⚙️ Miscellaneous Tasks\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ecargo fix --edition\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/6eab5f5cc64cf051f2712428745ca2fea088097c\"\u003e\u003ccode\u003e6eab5f5\u003c/code\u003e\u003c/a\u003e chore: release v2.3.0 (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/300\"\u003e#300\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/e4aee2050f4fb303ea8d6c56b0b70434265517a9\"\u003e\u003ccode\u003ee4aee20\u003c/code\u003e\u003c/a\u003e implement \u003ccode\u003eZipFile::options\u003c/code\u003e + refactor options normalization (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/305\"\u003e#305\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/ea8a7bba241731cd6aefd7705fd527e5b2928213\"\u003e\u003ccode\u003eea8a7bb\u003c/code\u003e\u003c/a\u003e fix(test): Conditionalize a zip64 doctest (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/308\"\u003e#308\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/365c81a39f526173b534c9de3a4302107fd51cd5\"\u003e\u003ccode\u003e365c81a\u003c/code\u003e\u003c/a\u003e Use \u003ccode\u003exz2\u003c/code\u003e crate instead of a custom implementation (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/306\"\u003e#306\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/ae94b3452b9d92cbf955c3117eddbb0326acacdd\"\u003e\u003ccode\u003eae94b34\u003c/code\u003e\u003c/a\u003e chore: Fix clippy and cargo fmt warnings (\u003ca href=\"https://redirect.github.com/zip-rs/zip2/issues/310\"\u003e#310\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/a2e062f37066c3b12860a32eb1cb44856cfb7afe\"\u003e\u003ccode\u003ea2e062f\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/0199ac2cb8e9a5d7e645e53d51838655d8e15148\"\u003e\u003ccode\u003e0199ac2\u003c/code\u003e\u003c/a\u003e Simplify handling for symlink targets\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/977bb9479d7aadbc10b8c04533bd37121f9cd34b\"\u003e\u003ccode\u003e977bb94\u003c/code\u003e\u003c/a\u003e fix failing tests, remove symlink loop check\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/3cb29e70d15af93a117f0d4d1bba736d2923c844\"\u003e\u003ccode\u003e3cb29e7\u003c/code\u003e\u003c/a\u003e Partial fix for tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zip-rs/zip2/commit/2182b0768633e58b6292af9e2633d920b499850b\"\u003e\u003ccode\u003e2182b07\u003c/code\u003e\u003c/a\u003e Refactor\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/zip-rs/zip2/compare/v2.2.2...v2.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `git2` from 0.20.0 to 0.20.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-lang/git2-rs/blob/git2-0.20.4/CHANGELOG.md\"\u003egit2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.20.4 - 2026-02-02\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/compare/git2-0.20.3...git2-0.20.4\"\u003e0.20.3...0.20.4\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix undefined behavior when dereferencing empty \u003ccode\u003eBuf\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1213\"\u003e#1213\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.20.3 - 2025-12-06\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/compare/git2-0.20.2...git2-0.20.3\"\u003e0.20.2...0.20.3\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBumped requirement to libgit2-sys 0.18.3, which updates libgit2 from 1.9.0 to 1.9.2.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1197\"\u003e#1197\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.20.2 - 2025-05-05\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/compare/git2-0.20.1...git2-0.20.2\"\u003e0.20.1...0.20.2\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eStatus::WT_UNREADABLE\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1151\"\u003e#1151\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded missing codes for \u003ccode\u003eGIT_EDIRECTORY\u003c/code\u003e, \u003ccode\u003eGIT_EMERGECONFLICT\u003c/code\u003e, \u003ccode\u003eGIT_EUNCHANGED\u003c/code\u003e, \u003ccode\u003eGIT_ENOTSUPPORTED\u003c/code\u003e, and \u003ccode\u003eGIT_EREADONLY\u003c/code\u003e to \u003ccode\u003eError::raw_code\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1153\"\u003e#1153\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed missing initialization in \u003ccode\u003eIndexer::new\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1160\"\u003e#1160\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.20.1 - 2025-03-17\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/compare/git2-0.20.0...git2-0.20.1\"\u003e0.20.0...0.20.1\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eRepository::branch_upstream_merge()\u003c/code\u003e\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1131\"\u003e#1131\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eIndex::conflict_get()\u003c/code\u003e\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1134\"\u003e#1134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eIndex::conflict_remove()\u003c/code\u003e\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1133\"\u003e#1133\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eopts::set_cache_object_limit()\u003c/code\u003e\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1118\"\u003e#1118\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eRepo::merge_file_from_index()\u003c/code\u003e and associated \u003ccode\u003eMergeFileOptions\u003c/code\u003e and \u003ccode\u003eMergeFileResult\u003c/code\u003e.\n\u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/pull/1062\"\u003e#1062\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe \u003ccode\u003eurl\u003c/code\u003e dependency minimum raised to 2.5.4\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/8852d7dabd38d0df6d4524e04a1c2ee520ac7203\"\u003e\u003ccode\u003e8852d7d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/issues/1214\"\u003e#1214\u003c/a\u003e from weihanglo/backport-from-raw-parts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/0b274f76f70f717c3bda4be1f79ba8e1cb11afd4\"\u003e\u003ccode\u003e0b274f7\u003c/code\u003e\u003c/a\u003e Bump to 0.20.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/73a5d5d7c49a7eb9d17c2ab6e40dafe3765ebf4d\"\u003e\u003ccode\u003e73a5d5d\u003c/code\u003e\u003c/a\u003e Add test for dereference of an empty Buf\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/ce566831eb188b0fdb27962e154b8da6103071bf\"\u003e\u003ccode\u003ece56683\u003c/code\u003e\u003c/a\u003e fix: check ptr nullity before calling from_raw_parts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/7cf345c4f7967b7da3c728db6766362e51540cbe\"\u003e\u003ccode\u003e7cf345c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/issues/1197\"\u003e#1197\u003c/a\u003e from ehuss/git2-0.20-br\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/dd41077750fe30bf780c9e7f7ab4717d264e098d\"\u003e\u003ccode\u003edd41077\u003c/code\u003e\u003c/a\u003e Bump git2 to 0.20.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/a6a58e2b0fd409ae33f2f6a68927ce62ebd114f0\"\u003e\u003ccode\u003ea6a58e2\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/issues/1195\"\u003e#1195\u003c/a\u003e from ehuss/update-libgit2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/1fb5f64819a9f5b175e0fb09dc369d0a2ccd355a\"\u003e\u003ccode\u003e1fb5f64\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/issues/1161\"\u003e#1161\u003c/a\u003e from ehuss/bump-version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/26bfd30ef25e6f7d7eab361f0ab118df3d1f6161\"\u003e\u003ccode\u003e26bfd30\u003c/code\u003e\u003c/a\u003e Update version of git2 to 0.20.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-lang/git2-rs/commit/eef4592abf3f688e1058e00b9297f6baf9026f22\"\u003e\u003ccode\u003eeef4592\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/rust-lang/git2-rs/issues/1160\"\u003e#1160\u003c/a\u003e from ehuss/indexer-init\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-lang/git2-rs/compare/git2-0.20.0...git2-0.20.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ammonia` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-ammonia/ammonia/releases\"\u003eammonia's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: unexpected namespace switches after cleanup can cause mXSS (reported by \u003ca href=\"mailto:zzm0902@shu.edu.cn\"\u003ezzm0902@shu.edu.cn\u003c/a\u003e, backport 4.1.2)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-ammonia/ammonia/blob/master/CHANGELOG.md\"\u003eammonia's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e4.0.1\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix: unexpected namespace switches after cleanup can cause mXSS (backport 4.1.2)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-ammonia/ammonia/commit/05b13afb77d98c4918e3ef9ddb170f69c84b463b\"\u003e\u003ccode\u003e05b13af\u003c/code\u003e\u003c/a\u003e Release 4.0.1 with security fix\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rust-ammonia/ammonia/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `crossbeam-channel` from 0.5.14 to 0.5.15\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/crossbeam-rs/crossbeam/releases\"\u003ecrossbeam-channel's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ecrossbeam-channel 0.5.15\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix regression introduced in 0.5.12 that can lead to a double free when dropping unbounded channel. (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1187\"\u003e#1187\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/d35ffde18a76ae9667f602d8c0127ff89ac2e4d4\"\u003e\u003ccode\u003ed35ffde\u003c/code\u003e\u003c/a\u003e Prepare for the next release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/crossbeam-rs/crossbeam/commit/6ec74ecae896df5fc239518b45a1bfd258c9db68\"\u003e\u003ccode\u003e6ec74ec\u003c/code\u003e\u003c/a\u003e crossbeam-channel: prevent double free on Drop (\u003ca href=\"https://redirect.github.com/crossbeam-rs/crossbeam/issues/1187\"\u003e#1187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/crossbeam-rs/crossbeam/compare/crossbeam-channel-0.5.14...crossbeam-channel-0.5.15\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openssl` from 0.10.70 to 0.10.79\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rust-openssl/rust-openssl/releases\"\u003eopenssl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eopenssl-v0.10.79\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/cache from 5.0.4 to 5.0.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2610\"\u003erust-openssl/rust-openssl#2610\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTry to fix OpenSSL 1.1.0l download by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2614\"\u003erust-openssl/rust-openssl#2614\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRequire \u0026amp;mut BigNumContextRef for EcPointRef mul/invert by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2615\"\u003erust-openssl/rust-openssl#2615\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix UB in EcGroupRef::generator on groups without a generator by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2617\"\u003erust-openssl/rust-openssl#2617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace \u003ccode\u003euse libc::*;\u003c/code\u003e with targeted imports in openssl-sys by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2618\"\u003erust-openssl/rust-openssl#2618\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKeyRef::is_a and KeyType for name-based key identification by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2619\"\u003erust-openssl/rust-openssl#2619\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKey::{public,private}_key_from_raw_bytes_ex by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2620\"\u003erust-openssl/rust-openssl#2620\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump MSRV to 1.80 by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2622\"\u003erust-openssl/rust-openssl#2622\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop once_cell in favor of std::sync::{LazyLock, OnceLock} by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2623\"\u003erust-openssl/rust-openssl#2623\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKey::private_key_from_seed for ML-DSA/ML-KEM key import by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2621\"\u003erust-openssl/rust-openssl#2621\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eparallelize more builds in CI for cold caches by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2625\"\u003erust-openssl/rust-openssl#2625\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2626\"\u003erust-openssl/rust-openssl#2626\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix process abort when verify/PSK callbacks fire after SSL_CTX swap by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2624\"\u003erust-openssl/rust-openssl#2624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBind OSSL_PARAM_modified and use it for seed_into by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2628\"\u003erust-openssl/rust-openssl#2628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd PkeyCtxRef::set_context_string for ML-DSA by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2629\"\u003erust-openssl/rust-openssl#2629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2631\"\u003erust-openssl/rust-openssl#2631\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix output buffer overflow for AES key-wrap-with-padding ciphers by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2630\"\u003erust-openssl/rust-openssl#2630\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl 0.10.79 and openssl-sys 0.9.115 by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2632\"\u003erust-openssl/rust-openssl#2632\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.78...openssl-v0.10.79\"\u003ehttps://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.78...openssl-v0.10.79\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eopenssl-v0.10.78\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix Suite B flag assignments in verify.rs by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2592\"\u003erust-openssl/rust-openssl#2592\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse cvt_p for OPENSSL_malloc error handling by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2593\"\u003erust-openssl/rust-openssl#2593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMark BIO_get_mem_data on AWS-LC to be unsafe by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2594\"\u003erust-openssl/rust-openssl#2594\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSet timeout for package installation step by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2595\"\u003erust-openssl/rust-openssl#2595\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePanic in Crypter::new when IV is required but not provided by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2596\"\u003erust-openssl/rust-openssl#2596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eopenssl 4 support by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2591\"\u003erust-openssl/rust-openssl#2591\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid panic for overlong OIDs by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2598\"\u003erust-openssl/rust-openssl#2598\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix dangling stack pointer in custom extension add callback by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2599\"\u003erust-openssl/rust-openssl#2599\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for LibreSSL 4.3.x by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2603\"\u003erust-openssl/rust-openssl#2603\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix inverted bounds assertion in AES key unwrap by \u003ca href=\"https://github.com/reaperhulk\"\u003e\u003ccode\u003e@​reaperhulk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2604\"\u003erust-openssl/rust-openssl#2604\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject oversized length returns from password callback trampoline by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2605\"\u003erust-openssl/rust-openssl#2605\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eValidate callback-returned lengths in PSK and cookie trampolines by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2607\"\u003erust-openssl/rust-openssl#2607\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eError for short out in MdCtxRef::digest_final() by \u003ca href=\"https://github.com/botovq\"\u003e\u003ccode\u003e@​botovq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2608\"\u003erust-openssl/rust-openssl#2608\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck derive output buffer length on OpenSSL 1.1.x by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2606\"\u003erust-openssl/rust-openssl#2606\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease openssl v0.10.78 and openssl-sys v0.9.114 by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2609\"\u003erust-openssl/rust-openssl#2609\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.77...openssl-v0.10.78\"\u003ehttps://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.77...openssl-v0.10.78\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eopenssl-v0.10.77\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCI: Hash-pin all action usage, avoid credential persistence in actions/checkout by \u003ca href=\"https://github.com/woodruffw\"\u003e\u003ccode\u003e@​woodruffw\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2587\"\u003erust-openssl/rust-openssl#2587\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump aws-lc-sys to 0.39 by \u003ca href=\"https://github.com/goffrie\"\u003e\u003ccode\u003e@​goffrie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2588\"\u003erust-openssl/rust-openssl#2588\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emd_ctx: enable sign/verify/reset on BoringSSL, LibreSSL, and AWS-LC by \u003ca href=\"https://github.com/alex\"\u003e\u003ccode\u003e@​alex\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/pull/2589\"\u003erust-openssl/rust-openssl#2589\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/649f2d9e37f3aa701e20bd8ab5cd7eb5afa0a90f\"\u003e\u003ccode\u003e649f2d9\u003c/code\u003e\u003c/a\u003e Release openssl 0.10.79 and openssl-sys 0.9.115 (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2632\"\u003e#2632\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/257f9b20c001b888986f93579f118fa2a57d4f45\"\u003e\u003ccode\u003e257f9b2\u003c/code\u003e\u003c/a\u003e Fix output buffer overflow for AES key-wrap-with-padding ciphers (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2630\"\u003e#2630\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/d43e9179b1885fc66269a42361cc7a80f631ac8f\"\u003e\u003ccode\u003ed43e917\u003c/code\u003e\u003c/a\u003e Reject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2631\"\u003e#2631\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/f46519c8694a3e121091dafe38aab77c2f756546\"\u003e\u003ccode\u003ef46519c\u003c/code\u003e\u003c/a\u003e Add PkeyCtxRef::set_context_string for ML-DSA (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2629\"\u003e#2629\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/ad9ae312771f898749a9471549519d45eba6a033\"\u003e\u003ccode\u003ead9ae31\u003c/code\u003e\u003c/a\u003e Bind OSSL_PARAM_modified and use it for seed_into (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2628\"\u003e#2628\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/4e25c9be20dae1e78f1a3815950cd0973addae82\"\u003e\u003ccode\u003e4e25c9b\u003c/code\u003e\u003c/a\u003e Fix process abort when verify/PSK callbacks fire after SSL_CTX swap (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2624\"\u003e#2624\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/3dd8f425ef34a069b5bec46f3971b67db1c295c7\"\u003e\u003ccode\u003e3dd8f42\u003c/code\u003e\u003c/a\u003e Add PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2626\"\u003e#2626\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/2c5e5a8f1483d5ec85580c07f721de9057d58e69\"\u003e\u003ccode\u003e2c5e5a8\u003c/code\u003e\u003c/a\u003e parallelize more builds in CI for cold caches (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2625\"\u003e#2625\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/668559171168538cd190574373abfc9e120263ca\"\u003e\u003ccode\u003e6685591\u003c/code\u003e\u003c/a\u003e Add PKey::private_key_from_seed for ML-DSA/ML-KEM key import (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2621\"\u003e#2621\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rust-openssl/rust-openssl/commit/8f8fdce627fb3c553673b8c688d9f1dc10ea0cc8\"\u003e\u003ccode\u003e8f8fdce\u003c/code\u003e\u003c/a\u003e Drop once_cell in favor of std::sync::{LazyLock, OnceLock} (\u003ca href=\"https://redirect.github.com/rust-openssl/rust-openssl/issues/2623\"\u003e#2623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rust-openssl/rust-openssl/compare/openssl-v0.10.70...openssl-v0.10.79\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `quinn-proto` from 0.11.9 to 0.11.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quinn-rs/quinn/releases\"\u003equinn-proto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003equinn-proto 0.11.14\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jxs\"\u003e\u003ccode\u003e@​jxs\u003c/code\u003e\u003c/a\u003e reported a denial of service issue in quinn-proto 5 days ago:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\"\u003ehttps://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eWe coordinated with them to release this version to patch the issue. Unfortunately the maintainers missed these issues during code review and we did not have enough fuzzing coverage -- we regret the oversight and have added an additional fuzzing target.\u003c/p\u003e\n\u003cp\u003eOrganizations that want to participate in coordinated disclosure can contact us privately to discuss terms.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix over-permissive proto dependency edge by \u003ca href=\"https://github.com/Ralith\"\u003e\u003ccode\u003e@​Ralith\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2385\"\u003equinn-rs/quinn#2385\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e0.11.x: avoid unwrapping VarInt decoding during parameter parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2559\"\u003equinn-rs/quinn#2559\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003equinn-proto 0.11.11\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrefer sending extra ping again by \u003ca href=\"https://github.com/flub\"\u003e\u003ccode\u003e@​flub\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2172\"\u003equinn-rs/quinn#2172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Do not produce tail-loss probes larger than segment size by \u003ca href=\"https://github.com/flub\"\u003e\u003ccode\u003e@​flub\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2167\"\u003equinn-rs/quinn#2167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid inference hazard for integer comparisons by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2188\"\u003equinn-rs/quinn#2188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: respecting max_datagrams in poll_transmit by \u003ca href=\"https://github.com/filipe-cantarelli\"\u003e\u003ccode\u003e@​filipe-cantarelli\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2185\"\u003equinn-rs/quinn#2185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the quinn-proto version to 0.11.11 for release by \u003ca href=\"https://github.com/faern\"\u003e\u003ccode\u003e@​faern\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2209\"\u003equinn-rs/quinn#2209\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/2c315aa7f9c2a6c1db87f8f51f40623a427c78fd\"\u003e\u003ccode\u003e2c315aa\u003c/code\u003e\u003c/a\u003e proto: bump version to 0.11.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8ad47f431e7deb82c08b09c2e33ef85aa88fd212\"\u003e\u003ccode\u003e8ad47f4\u003c/code\u003e\u003c/a\u003e Use newer rustls-pki-types PEM parser API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c81c0289abe30d8437ccbf9b6304e2bc9c707cea\"\u003e\u003ccode\u003ec81c028\u003c/code\u003e\u003c/a\u003e ci: fix workflow syntax\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/0050172969f7e69e136c433181330da7790d8d73\"\u003e\u003ccode\u003e0050172\u003c/code\u003e\u003c/a\u003e ci: pin wasm-bindgen-cli version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8a6f82c58d1c565eab78f986e614223e6ed76a85\"\u003e\u003ccode\u003e8a6f82c\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/e52db4ad8df0f9720e7b0e32ecc0e48c9a93de0f\"\u003e\u003ccode\u003ee52db4a\u003c/code\u003e\u003c/a\u003e Apply suggestions from clippy 1.91\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/6df7275c582ca9b7225e0ccf9f9871a55eb73155\"\u003e\u003ccode\u003e6df7275\u003c/code\u003e\u003c/a\u003e chore: Fix \u003ccode\u003eunnecessary_unwrap\u003c/code\u003e clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c8eefa07e087b06d8f2b78ff262ce8ac952994f1\"\u003e\u003ccode\u003ec8eefa0\u003c/code\u003e\u003c/a\u003e proto: avoid unwrapping varint decoding during parameters parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/9723a977754c8662001b0fef97aab8f3ddf1df92\"\u003e\u003ccode\u003e9723a97\u003c/code\u003e\u003c/a\u003e fuzz: add fuzzing target for parsing transport parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/eaf0ef30252cef4acec21f150427e604cd4271c9\"\u003e\u003ccode\u003eeaf0ef3\u003c/code\u003e\u003c/a\u003e Fix over-permissive proto dependency edge (\u003ca href=\"https://redirect.github.com/quinn-rs/quinn/issues/2385\"\u003e#2385\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quinn-rs/quinn/compare/quinn-proto-0.11.9...quinn-proto-0.11.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ring` from 0.17.8 to 0.17.14\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/briansmith/ring/blob/main/RELEASES.md\"\u003ering's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eVersion 0.17.14 (2025-03-11)\u003c/h1\u003e\n\u003cp\u003eFixed a performance bug in the AVX2-based AES-GCM implementation added in\n\u003cem\u003ering\u003c/em\u003e 0.17.13. This will be another notable performance improvement for most\nnewish x86-64 systems. The performance issue impacted not just AES-GCM.\u003c/p\u003e\n\u003cp\u003eCompatibility with GNU binutils 2.29 (used on Amazon Linux 2), and probably\neven earlier versions, was restored. It is expected that \u003cem\u003ering\u003c/em\u003e 0.17.14 will\nbuild on all the systems that 0.17.12 would build on.\u003c/p\u003e\n\u003ch1\u003eVersion 0.17.13 (2025-03-06)\u003c/h1\u003e\n\u003cp\u003eIncreased MSRV to 1.66.0 to avoid bugs in earlier versions so that we can\nsafely use \u003ccode\u003ecore::arch::x86_64::__cpuid\u003c/code\u003e and \u003ccode\u003ecore::arch::x86::__cpuid\u003c/code\u003e from\nRust in future releases.\u003c/p\u003e\n\u003cp\u003eAVX2-based VAES-CLMUL implementation. This will be a notable performance\nimprovement for most newish x86-64 systems. This will likely raise the minimum\nbinutils version supported for very old Linux distros.\u003c/p\u003e\n\u003ch1\u003eVersion 0.17.12 (2025-03-05)\u003c/h1\u003e\n\u003cp\u003eBug fix: \u003ca href=\"https://redirect.github.com/briansmith/ring/pull/2447\"\u003ebriansmith/ring#2447\u003c/a\u003e for denial of service (DoS).\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFixes a panic in \u003ccode\u003ering::aead::quic::HeaderProtectionKey::new_mask()\u003c/code\u003e when\ninteger overflow checking is enabled. In the QUIC protocol, an attacker can\ninduce this panic by sending a specially-crafted packet. Even unintentionally\nit is likely to occur in 1 out of every 2**32 packets sent and/or received.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixes a panic on 64-bit targets in \u003ccode\u003ering::aead::{AES_128_GCM, AES_256_GCM}\u003c/code\u003e\nwhen overflow checking is enabled, when encrypting/decrypting approximately\n68,719,476,700 bytes (about 64 gigabytes) of data in a single chunk. Protocols\nlike TLS and SSH are not affected by this because those protocols break large\namounts of data into small chunks. Similarly, most applications will not\nattempt to encrypt/decrypt 64GB of data in one chunk.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eOverflow checking is not enabled in release mode by default, but\n\u003ccode\u003eRUSTFLAGS=\u0026quot;-C overflow-checks\u0026quot;\u003c/code\u003e or \u003ccode\u003eoverflow-checks = true\u003c/code\u003e in the Cargo.toml\nprofile can override this. Overflow checking is usually enabled by default in\ndebug mode.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/briansmith/ring/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.37 to 0.3.44\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.44\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.43\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.42\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.41\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.40\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.39\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.38\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003etime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.44 [2025-09-19]\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eComparisons of \u003ccode\u003ePrimitiveDateTime\u003c/code\u003e, \u003ccode\u003eUtcDateTime\u003c/code\u003e, and \u003ccode\u003eOffsetDateTime\u003c/code\u003e with differing signs (i.e.\none negative and one positive year) would return the inverse result of what was expected. This was\nintroduced in v0.3.42 and has been fixed.\u003c/li\u003e\n\u003cli\u003eType inference would fail due to feature unification when \u003ccode\u003ewasm-bindgen\u003c/code\u003e enabled \u003ccode\u003eserde_json\u003c/code\u003e.\nThis has been fixed by explicitly specifying the type in the relevant locations.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.43 [2025-09-02]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for \u003ccode\u003erand\u003c/code\u003e 0.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIn the \u003ccode\u003econvert\u003c/code\u003e module, any use of \u003ccode\u003eper\u003c/code\u003e with types that were not the same (such as\n\u003ccode\u003eNanosecond::per(Second)\u003c/code\u003e) would not compile due to a bug. This has been fixed.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.42 [2025-08-31]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eTime::duration_until\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eTime::duration_since\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eper_t\u003c/code\u003e method for all types in \u003ccode\u003etime::convert\u003c/code\u003e. This is similar to the existing \u003ccode\u003eper\u003c/code\u003e method, but\ncan return any of the primitive numeric types that can represent the result. This will cut down on\n\u003ccode\u003eas\u003c/code\u003e casts while ensuring correctness. Type inference isn't perfect, so you may need to provide a\ntype annotation in some situations.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eimpl PartialOrd for Month\u003c/code\u003e and \u003ccode\u003eimpl Ord for Month\u003c/code\u003e; this assumes the months are in the same year\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eSystemTimeExt\u003c/code\u003e trait, adding methods for checked arithmetic wi...\n\n_Description has been truncated_","html_url":"https://github.com/cyborg-ai-git/crates.io/pull/13","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/cyborg-ai-git%2Fcrates.io/issues/13","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/13/packages"}},{"old_version":"1.11.0","new_version":"1.11.1","update_type":"patch","path":null,"pr_created_at":"2026-05-08T04:15:32.000Z","version_change":"1.11.0 → 1.11.1","issue":{"uuid":"4403727627","node_id":"PR_kwDORzChSs7ZZLSZ","number":10,"state":"closed","title":"chore(deps): bump the cargo group across 1 directory with 5 updates","user":"dependabot[bot]","labels":["dependencies","needs:issue","rust"],"assignees":[],"locked":false,"comments_count":4,"pull_request":true,"closed_at":"2026-05-08T07:06:55.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-08T04:15:32.000Z","updated_at":"2026-05-08T07:07:03.000Z","time_to_close":10283,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"cargo","update_count":5,"packages":[{"name":"bytes","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"quinn-proto","old_version":"0.11.13","new_version":"0.11.14","repository_url":"https://github.com/quinn-rs/quinn"},{"name":"rustls-webpki","old_version":"0.103.8","new_version":"0.103.13","repository_url":"https://github.com/rustls/webpki"},{"name":"tar","old_version":"0.4.44","new_version":"0.4.45","repository_url":"https://github.com/alexcrichton/tar-rs"},{"name":"time","old_version":"0.3.44","new_version":"0.3.47","repository_url":"https://github.com/time-rs/time"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 5 updates in the /packages/desktop/src-tauri directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.11.0` | `1.11.1` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.13` | `0.11.14` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.103.8` | `0.103.13` |\n| [tar](https://github.com/alexcrichton/tar-rs) | `0.4.44` | `0.4.45` |\n| [time](https://github.com/time-rs/time) | `0.3.44` | `0.3.47` |\n\n\nUpdates `bytes` from 1.11.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.11.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `quinn-proto` from 0.11.13 to 0.11.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quinn-rs/quinn/releases\"\u003equinn-proto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003equinn-proto 0.11.14\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jxs\"\u003e\u003ccode\u003e@​jxs\u003c/code\u003e\u003c/a\u003e reported a denial of service issue in quinn-proto 5 days ago:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\"\u003ehttps://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eWe coordinated with them to release this version to patch the issue. Unfortunately the maintainers missed these issues during code review and we did not have enough fuzzing coverage -- we regret the oversight and have added an additional fuzzing target.\u003c/p\u003e\n\u003cp\u003eOrganizations that want to participate in coordinated disclosure can contact us privately to discuss terms.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix over-permissive proto dependency edge by \u003ca href=\"https://github.com/Ralith\"\u003e\u003ccode\u003e@​Ralith\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2385\"\u003equinn-rs/quinn#2385\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e0.11.x: avoid unwrapping VarInt decoding during parameter parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2559\"\u003equinn-rs/quinn#2559\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/2c315aa7f9c2a6c1db87f8f51f40623a427c78fd\"\u003e\u003ccode\u003e2c315aa\u003c/code\u003e\u003c/a\u003e proto: bump version to 0.11.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8ad47f431e7deb82c08b09c2e33ef85aa88fd212\"\u003e\u003ccode\u003e8ad47f4\u003c/code\u003e\u003c/a\u003e Use newer rustls-pki-types PEM parser API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c81c0289abe30d8437ccbf9b6304e2bc9c707cea\"\u003e\u003ccode\u003ec81c028\u003c/code\u003e\u003c/a\u003e ci: fix workflow syntax\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/0050172969f7e69e136c433181330da7790d8d73\"\u003e\u003ccode\u003e0050172\u003c/code\u003e\u003c/a\u003e ci: pin wasm-bindgen-cli version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8a6f82c58d1c565eab78f986e614223e6ed76a85\"\u003e\u003ccode\u003e8a6f82c\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/e52db4ad8df0f9720e7b0e32ecc0e48c9a93de0f\"\u003e\u003ccode\u003ee52db4a\u003c/code\u003e\u003c/a\u003e Apply suggestions from clippy 1.91\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/6df7275c582ca9b7225e0ccf9f9871a55eb73155\"\u003e\u003ccode\u003e6df7275\u003c/code\u003e\u003c/a\u003e chore: Fix \u003ccode\u003eunnecessary_unwrap\u003c/code\u003e clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c8eefa07e087b06d8f2b78ff262ce8ac952994f1\"\u003e\u003ccode\u003ec8eefa0\u003c/code\u003e\u003c/a\u003e proto: avoid unwrapping varint decoding during parameters parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/9723a977754c8662001b0fef97aab8f3ddf1df92\"\u003e\u003ccode\u003e9723a97\u003c/code\u003e\u003c/a\u003e fuzz: add fuzzing target for parsing transport parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/eaf0ef30252cef4acec21f150427e604cd4271c9\"\u003e\u003ccode\u003eeaf0ef3\u003c/code\u003e\u003c/a\u003e Fix over-permissive proto dependency edge (\u003ca href=\"https://redirect.github.com/quinn-rs/quinn/issues/2385\"\u003e#2385\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quinn-rs/quinn/compare/quinn-proto-0.11.13...quinn-proto-0.11.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls-webpki` from 0.103.8 to 0.103.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rustls/webpki/releases\"\u003erustls-webpki's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.103.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix reachable panic in parsing a CRL\u003c/strong\u003e. This was reported to us as \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-82j2-j2ch-gfr8\"\u003eGHSA-82j2-j2ch-gfr8\u003c/a\u003e. Users who don't use CRLs are not affected.\u003c/li\u003e\n\u003cli\u003eFor name constraints on URI names, we incorrectly processed excluded subtrees in a way which inverted the desired meaning. See \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/471\"\u003erustls/webpki#471\u003c/a\u003e. This was a case missing in the fix for \u003ca href=\"https://github.com/advisories/GHSA-965h-392x-2mh5\"\u003ehttps://github.com/advisories/GHSA-965h-392x-2mh5\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eActually fail closed for URI matching against excluded subtrees by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/473\"\u003erustls/webpki#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.13 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/474\"\u003erustls/webpki#474\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.12\u003c/h2\u003e\n\u003cp\u003eThis release fixes two bugs in name constraint enforcement:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-965h-392x-2mh5\u003c/strong\u003e: name constraints for URI names were ignored and therefore accepted. URI name constraints are now rejected unconditionally. Note this library does not provide an API for asserting URI names, and URI name constraints are otherwise not implemented.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-xgp8-3hg3-c2mh\u003c/strong\u003e: permitted subtree name constraints for DNS names were accepted for certificates asserting a wildcard name. This was incorrect because, given a name constraint of \u003ccode\u003eaccept.example.com\u003c/code\u003e, \u003ccode\u003e*.example.com\u003c/code\u003e could feasibly allow a name of \u003ccode\u003ereject.example.com\u003c/code\u003e which is outside the constraint. This is very similar to \u003ca href=\"https://go.dev/issue/76442\"\u003eCVE-2025-61727\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSince name constraints are restrictions on otherwise properly-issued certificates, these bugs are reachable only after signature verification and require misissuance to exploit.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrepare 0.103.12 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/470\"\u003erustls/webpki#470\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.11\u003c/h2\u003e\n\u003cp\u003eIn response to \u003ca href=\"https://redirect.github.com/rustls/webpki/issues/464\"\u003e#464\u003c/a\u003e, we've slightly relaxed requirements for \u003ccode\u003eanchor_from_trust_cert()\u003c/code\u003e to ignore unknown extensions even if they're marked as critical. This only affects parsing a \u003ccode\u003eTrustAnchor\u003c/code\u003e from DER, for which most extensions are ignored anyway.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport parsing trust anchors with unknown critical extensions to 0.103 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/466\"\u003erustls/webpki#466\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.103.10\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eCorrect selection of candidate CRLs by Distribution Point and Issuing Distribution Point\u003c/strong\u003e. If a certificate had more than one \u003ccode\u003edistributionPoint\u003c/code\u003e, then only the first \u003ccode\u003edistributionPoint\u003c/code\u003e would be considered against each CRL's \u003ccode\u003eIssuingDistributionPoint\u003c/code\u003e \u003ccode\u003edistributionPoint\u003c/code\u003e, and then the certificate's subsequent \u003ccode\u003edistributionPoint\u003c/code\u003es would be ignored.\u003c/p\u003e\n\u003cp\u003eThe impact was that correctly provided CRLs would not be consulted to check revocation. With \u003ccode\u003eUnknownStatusPolicy::Deny\u003c/code\u003e (the default) this would lead to incorrect but safe \u003ccode\u003eError::UnknownRevocationStatus\u003c/code\u003e. With \u003ccode\u003eUnknownStatusPolicy::Allow\u003c/code\u003e this would lead to inappropriate acceptance of revoked certificates.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is thought to be of limited impact. This is because both the certificate and CRL are signed -- an attacker would need to compromise a trusted issuing authority to trigger this bug.  An attacker with such capabilities could likely bypass revocation checking through other more impactful means (such as publishing a valid, empty CRL.)\u003c/p\u003e\n\u003cp\u003eMore likely, this bug would be latent in normal use, and an attacker could leverage faulty revocation checking to continue using a revoked credential.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is identified by \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-pwjx-qhcg-rvj4\"\u003eGHSA-pwjx-qhcg-rvj4\u003c/a\u003e. Thank you to \u003ca href=\"https://github.com/1seal\"\u003e\u003ccode\u003e@​1seal\u003c/code\u003e\u003c/a\u003e for the report.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFreshen up rel-0.103 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/455\"\u003erustls/webpki#455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.10 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/458\"\u003erustls/webpki#458\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2879b2ce7a476181ac3050f73fe0835f04728e86\"\u003e\u003ccode\u003e2879b2c\u003c/code\u003e\u003c/a\u003e Prepare 0.103.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2c49773d823f48c87db30db7a66c25993c847007\"\u003e\u003ccode\u003e2c49773\u003c/code\u003e\u003c/a\u003e Improve tests for padding of \u003ccode\u003eBitStringFlags\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/4e3c0b393a7bfb9cbe6dcdc8309cbadf8ee00c51\"\u003e\u003ccode\u003e4e3c0b3\u003c/code\u003e\u003c/a\u003e Correct validation of BIT STRING constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/39c91d2525a542a7f651a1a62c3462e8115cc39e\"\u003e\u003ccode\u003e39c91d2\u003c/code\u003e\u003c/a\u003e Actually fail closed for URI matching against excluded subtrees\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/27131d476e2b68a537e629d6d012bef8dad6efd3\"\u003e\u003ccode\u003e27131d4\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/6ecb8769cde2246e761e058709421c14a7dee6b1\"\u003e\u003ccode\u003e6ecb876\u003c/code\u003e\u003c/a\u003e Clean up stuttery enum variant names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/318b3e6e03ca2bc21600ca6bb0d0c6439b9e6aeb\"\u003e\u003ccode\u003e318b3e6\u003c/code\u003e\u003c/a\u003e Ignore wildcard labels when matching name constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/12196229a327d3d670798688254bd3ea24aba24b\"\u003e\u003ccode\u003e1219622\u003c/code\u003e\u003c/a\u003e Rewrite constraint matching to avoid permissive catch-all branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/57bc62ce538c2d0d31d44b3eb8c58e6a0a764b47\"\u003e\u003ccode\u003e57bc62c\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/d0fa01ee0a76b7585c13ec43de5854955146ffef\"\u003e\u003ccode\u003ed0fa01e\u003c/code\u003e\u003c/a\u003e Allow parsing trust anchors with unknown criticial extensions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.8...v/0.103.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 0.4.44 to 0.4.45\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/096e3d16d14fefac51bc4d94d616b21546ea8bcc\"\u003e\u003ccode\u003e096e3d1\u003c/code\u003e\u003c/a\u003e Bump to 0.4.45 (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/443\"\u003e#443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/17b1fd84e632071cb8eef9d3709bf347bd266446\"\u003e\u003ccode\u003e17b1fd8\u003c/code\u003e\u003c/a\u003e archive: Prevent symlink-directory collision chmod attack (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/de1a5870e603758f430073688691165f21a33946\"\u003e\u003ccode\u003ede1a587\u003c/code\u003e\u003c/a\u003e archive: Unconditionally honor PAX size (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/441\"\u003e#441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/6071cbe74acefa8c8322809bfd43c825e5f16b60\"\u003e\u003ccode\u003e6071cbe\u003c/code\u003e\u003c/a\u003e ci: Consolidate workflows (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/439\"\u003e#439\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/ad1fde9edfb9657d17666bbec2933119ce527359\"\u003e\u003ccode\u003ead1fde9\u003c/code\u003e\u003c/a\u003e build-sys: Promote unused_code to an error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/c8cb250e8bc3f28bd69406b396bb8a92b40012c1\"\u003e\u003ccode\u003ec8cb250\u003c/code\u003e\u003c/a\u003e tests: Squash a warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/638c495a480d2a50099d55f445ece9e5f544b49d\"\u003e\u003ccode\u003e638c495\u003c/code\u003e\u003c/a\u003e ci: Add xtask infra + reverse dependency testing (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/435\"\u003e#435\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/32a9bbb26468cbdecbf73fe8eb249284d4a718ed\"\u003e\u003ccode\u003e32a9bbb\u003c/code\u003e\u003c/a\u003e tests: Add RandomReader to exercise partial-read resilience (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/436\"\u003e#436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/9c5df0bfd70d1b063516b90fca2cf2e0dbe8b758\"\u003e\u003ccode\u003e9c5df0b\u003c/code\u003e\u003c/a\u003e Fix GNU long-name extension stream corruption on validation error (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/88b1e3b0da65b0c5b9750d1a75516145488f4793\"\u003e\u003ccode\u003e88b1e3b\u003c/code\u003e\u003c/a\u003e Fix docs typo in header.rs (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alexcrichton/tar-rs/compare/0.4.44...0.4.45\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.44 to 0.3.47\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.47\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.46\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.45\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003etime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.47 [2026-02-05]\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eThe possibility of a stack exhaustion denial of service attack when parsing RFC 2822 has been\neliminated. Previously, it was possible to craft input that would cause unbounded recursion. Now,\nthe depth of the recursion is tracked, causing an error to be returned if it exceeds a reasonable\nlimit.\u003c/p\u003e\n\u003cp\u003eThis attack vector requires parsing user-provided input, with any type, using the RFC 2822 format.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCompatibility\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAttempting to format a value with a well-known format (i.e. RFC 3339, RFC 2822, or ISO 8601) will\nerror at compile time if the type being formatted does not provide sufficient information. This\nwould previously fail at runtime. Similarly, attempting to format a value with ISO 8601 that is\nonly configured for parsing (i.e. \u003ccode\u003eIso8601::PARSING\u003c/code\u003e) will error at compile time.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBuilder methods for format description modifiers, eliminating the need for verbose initialization\nwhen done manually.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edate!(2026-W01-2)\u003c/code\u003e is now supported. Previously, a space was required between \u003ccode\u003eW\u003c/code\u003e and \u003ccode\u003e01\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[end]\u003c/code\u003e now has a \u003ccode\u003etrailing_input\u003c/code\u003e modifier which can either be \u003ccode\u003eprohibit\u003c/code\u003e (the default) or\n\u003ccode\u003ediscard\u003c/code\u003e. When it is \u003ccode\u003ediscard\u003c/code\u003e, all remaining input is ignored. Note that if there are components\nafter \u003ccode\u003e[end]\u003c/code\u003e, they will still attempt to be parsed, likely resulting in an error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMore performance gains when parsing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIf manually formatting a value, the number of bytes written was one short for some components.\nThis has been fixed such that the number of bytes written is always correct.\u003c/li\u003e\n\u003cli\u003eThe possibility of integer overflow when parsing an owned format description has been effectively\neliminated. This would previously wrap when overflow checks were disabled. Instead of storing the\ndepth as \u003ccode\u003eu8\u003c/code\u003e, it is stored as \u003ccode\u003eu32\u003c/code\u003e. This would require multiple gigabytes of nested input to\noverflow, at which point we've got other problems and trivial mitigations are available by\ndownstream users.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.46 [2026-01-23]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAll possible panics are now documented for the relevant methods.\u003c/li\u003e\n\u003cli\u003eThe need to use \u003ccode\u003e#[serde(default)]\u003c/code\u003e when using custom \u003ccode\u003eserde\u003c/code\u003e formats is documented. This applies\nonly when deserializing an \u003ccode\u003eOption\u0026lt;T\u0026gt;\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDuration::nanoseconds_i128\u003c/code\u003e has been made public, mirroring\n\u003ccode\u003estd::time::Duration::from_nanos_u128\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/d5144cd2874862d46466c900910cd8577d066019\"\u003e\u003ccode\u003ed5144cd\u003c/code\u003e\u003c/a\u003e v0.3.47 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/f6206b050fd54817d8872834b4d61f605570e89b\"\u003e\u003ccode\u003ef6206b0\u003c/code\u003e\u003c/a\u003e Guard against integer overflow in release mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/1c63dc7985b8fa26bd8c689423cc56b7a03841ee\"\u003e\u003ccode\u003e1c63dc7\u003c/code\u003e\u003c/a\u003e Avoid denial of service when parsing Rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/5940df6e72efb63d246ca1ca59a0f836ad32ad8a\"\u003e\u003ccode\u003e5940df6\u003c/code\u003e\u003c/a\u003e Add builder methods to avoid verbose construction\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/00881a4da1bc5a6cb6313052e5017dbd7daa40f0\"\u003e\u003ccode\u003e00881a4\u003c/code\u003e\u003c/a\u003e Manually format macros everywhere\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/bb723b6d826e46c174d75cd08987061984b0ceb7\"\u003e\u003ccode\u003ebb723b6\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003etrailing_input\u003c/code\u003e modifier to \u003ccode\u003eend\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/31c4f8e0b56e6ae24fe0d6ef0e492b6741dda783\"\u003e\u003ccode\u003e31c4f8e\u003c/code\u003e\u003c/a\u003e Permit \u003ccode\u003eW12\u003c/code\u003e in \u003ccode\u003edate!\u003c/code\u003e macro\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/490a17bf306576850f33a86d3ca95d96db7b1dcd\"\u003e\u003ccode\u003e490a17b\u003c/code\u003e\u003c/a\u003e Mark error paths in well-known formats as cold\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6cb1896a600be1538ecfab8f233fe9cfe9fa8951\"\u003e\u003ccode\u003e6cb1896\u003c/code\u003e\u003c/a\u003e Optimize \u003ccode\u003eRfc2822\u003c/code\u003e parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6d264d59c25e3da0453c3defebf4640b0086a006\"\u003e\u003ccode\u003e6d264d5\u003c/code\u003e\u003c/a\u003e Remove erroneous \u003ccode\u003e#[inline(never)]\u003c/code\u003e attributes\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/time-rs/time/compare/v0.3.44...v0.3.47\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/StankySpence/opencode/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/StankySpence/opencode/pull/10","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/StankySpence%2Fopencode/issues/10","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/10/packages"}},{"old_version":"1.11.0","new_version":"1.11.1","update_type":"patch","path":null,"pr_created_at":"2026-05-08T02:30:18.000Z","version_change":"1.11.0 → 1.11.1","issue":{"uuid":"4403351979","node_id":"PR_kwDOQ7Hris7ZX9XW","number":19,"state":"closed","title":"chore(deps): bump the cargo group across 1 directory with 5 updates","user":"dependabot[bot]","labels":["dependencies","needs:issue","rust"],"assignees":[],"locked":false,"comments_count":4,"pull_request":true,"closed_at":"2026-05-08T04:59:17.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-08T02:30:18.000Z","updated_at":"2026-05-08T04:59:26.000Z","time_to_close":8939,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"cargo","update_count":5,"packages":[{"name":"bytes","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"quinn-proto","old_version":"0.11.13","new_version":"0.11.14","repository_url":"https://github.com/quinn-rs/quinn"},{"name":"rustls-webpki","old_version":"0.103.8","new_version":"0.103.13","repository_url":"https://github.com/rustls/webpki"},{"name":"tar","old_version":"0.4.44","new_version":"0.4.45","repository_url":"https://github.com/alexcrichton/tar-rs"},{"name":"time","old_version":"0.3.44","new_version":"0.3.47","repository_url":"https://github.com/time-rs/time"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 5 updates in the /packages/desktop/src-tauri directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.11.0` | `1.11.1` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.13` | `0.11.14` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.103.8` | `0.103.13` |\n| [tar](https://github.com/alexcrichton/tar-rs) | `0.4.44` | `0.4.45` |\n| [time](https://github.com/time-rs/time) | `0.3.44` | `0.3.47` |\n\n\nUpdates `bytes` from 1.11.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.11.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `quinn-proto` from 0.11.13 to 0.11.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quinn-rs/quinn/releases\"\u003equinn-proto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003equinn-proto 0.11.14\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jxs\"\u003e\u003ccode\u003e@​jxs\u003c/code\u003e\u003c/a\u003e reported a denial of service issue in quinn-proto 5 days ago:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\"\u003ehttps://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eWe coordinated with them to release this version to patch the issue. Unfortunately the maintainers missed these issues during code review and we did not have enough fuzzing coverage -- we regret the oversight and have added an additional fuzzing target.\u003c/p\u003e\n\u003cp\u003eOrganizations that want to participate in coordinated disclosure can contact us privately to discuss terms.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix over-permissive proto dependency edge by \u003ca href=\"https://github.com/Ralith\"\u003e\u003ccode\u003e@​Ralith\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2385\"\u003equinn-rs/quinn#2385\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e0.11.x: avoid unwrapping VarInt decoding during parameter parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2559\"\u003equinn-rs/quinn#2559\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/2c315aa7f9c2a6c1db87f8f51f40623a427c78fd\"\u003e\u003ccode\u003e2c315aa\u003c/code\u003e\u003c/a\u003e proto: bump version to 0.11.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8ad47f431e7deb82c08b09c2e33ef85aa88fd212\"\u003e\u003ccode\u003e8ad47f4\u003c/code\u003e\u003c/a\u003e Use newer rustls-pki-types PEM parser API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c81c0289abe30d8437ccbf9b6304e2bc9c707cea\"\u003e\u003ccode\u003ec81c028\u003c/code\u003e\u003c/a\u003e ci: fix workflow syntax\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/0050172969f7e69e136c433181330da7790d8d73\"\u003e\u003ccode\u003e0050172\u003c/code\u003e\u003c/a\u003e ci: pin wasm-bindgen-cli version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8a6f82c58d1c565eab78f986e614223e6ed76a85\"\u003e\u003ccode\u003e8a6f82c\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/e52db4ad8df0f9720e7b0e32ecc0e48c9a93de0f\"\u003e\u003ccode\u003ee52db4a\u003c/code\u003e\u003c/a\u003e Apply suggestions from clippy 1.91\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/6df7275c582ca9b7225e0ccf9f9871a55eb73155\"\u003e\u003ccode\u003e6df7275\u003c/code\u003e\u003c/a\u003e chore: Fix \u003ccode\u003eunnecessary_unwrap\u003c/code\u003e clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c8eefa07e087b06d8f2b78ff262ce8ac952994f1\"\u003e\u003ccode\u003ec8eefa0\u003c/code\u003e\u003c/a\u003e proto: avoid unwrapping varint decoding during parameters parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/9723a977754c8662001b0fef97aab8f3ddf1df92\"\u003e\u003ccode\u003e9723a97\u003c/code\u003e\u003c/a\u003e fuzz: add fuzzing target for parsing transport parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/eaf0ef30252cef4acec21f150427e604cd4271c9\"\u003e\u003ccode\u003eeaf0ef3\u003c/code\u003e\u003c/a\u003e Fix over-permissive proto dependency edge (\u003ca href=\"https://redirect.github.com/quinn-rs/quinn/issues/2385\"\u003e#2385\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quinn-rs/quinn/compare/quinn-proto-0.11.13...quinn-proto-0.11.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls-webpki` from 0.103.8 to 0.103.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rustls/webpki/releases\"\u003erustls-webpki's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.103.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix reachable panic in parsing a CRL\u003c/strong\u003e. This was reported to us as \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-82j2-j2ch-gfr8\"\u003eGHSA-82j2-j2ch-gfr8\u003c/a\u003e. Users who don't use CRLs are not affected.\u003c/li\u003e\n\u003cli\u003eFor name constraints on URI names, we incorrectly processed excluded subtrees in a way which inverted the desired meaning. See \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/471\"\u003erustls/webpki#471\u003c/a\u003e. This was a case missing in the fix for \u003ca href=\"https://github.com/advisories/GHSA-965h-392x-2mh5\"\u003ehttps://github.com/advisories/GHSA-965h-392x-2mh5\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eActually fail closed for URI matching against excluded subtrees by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/473\"\u003erustls/webpki#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.13 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/474\"\u003erustls/webpki#474\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.12\u003c/h2\u003e\n\u003cp\u003eThis release fixes two bugs in name constraint enforcement:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-965h-392x-2mh5\u003c/strong\u003e: name constraints for URI names were ignored and therefore accepted. URI name constraints are now rejected unconditionally. Note this library does not provide an API for asserting URI names, and URI name constraints are otherwise not implemented.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-xgp8-3hg3-c2mh\u003c/strong\u003e: permitted subtree name constraints for DNS names were accepted for certificates asserting a wildcard name. This was incorrect because, given a name constraint of \u003ccode\u003eaccept.example.com\u003c/code\u003e, \u003ccode\u003e*.example.com\u003c/code\u003e could feasibly allow a name of \u003ccode\u003ereject.example.com\u003c/code\u003e which is outside the constraint. This is very similar to \u003ca href=\"https://go.dev/issue/76442\"\u003eCVE-2025-61727\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSince name constraints are restrictions on otherwise properly-issued certificates, these bugs are reachable only after signature verification and require misissuance to exploit.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrepare 0.103.12 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/470\"\u003erustls/webpki#470\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.11\u003c/h2\u003e\n\u003cp\u003eIn response to \u003ca href=\"https://redirect.github.com/rustls/webpki/issues/464\"\u003e#464\u003c/a\u003e, we've slightly relaxed requirements for \u003ccode\u003eanchor_from_trust_cert()\u003c/code\u003e to ignore unknown extensions even if they're marked as critical. This only affects parsing a \u003ccode\u003eTrustAnchor\u003c/code\u003e from DER, for which most extensions are ignored anyway.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport parsing trust anchors with unknown critical extensions to 0.103 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/466\"\u003erustls/webpki#466\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.103.10\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eCorrect selection of candidate CRLs by Distribution Point and Issuing Distribution Point\u003c/strong\u003e. If a certificate had more than one \u003ccode\u003edistributionPoint\u003c/code\u003e, then only the first \u003ccode\u003edistributionPoint\u003c/code\u003e would be considered against each CRL's \u003ccode\u003eIssuingDistributionPoint\u003c/code\u003e \u003ccode\u003edistributionPoint\u003c/code\u003e, and then the certificate's subsequent \u003ccode\u003edistributionPoint\u003c/code\u003es would be ignored.\u003c/p\u003e\n\u003cp\u003eThe impact was that correctly provided CRLs would not be consulted to check revocation. With \u003ccode\u003eUnknownStatusPolicy::Deny\u003c/code\u003e (the default) this would lead to incorrect but safe \u003ccode\u003eError::UnknownRevocationStatus\u003c/code\u003e. With \u003ccode\u003eUnknownStatusPolicy::Allow\u003c/code\u003e this would lead to inappropriate acceptance of revoked certificates.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is thought to be of limited impact. This is because both the certificate and CRL are signed -- an attacker would need to compromise a trusted issuing authority to trigger this bug.  An attacker with such capabilities could likely bypass revocation checking through other more impactful means (such as publishing a valid, empty CRL.)\u003c/p\u003e\n\u003cp\u003eMore likely, this bug would be latent in normal use, and an attacker could leverage faulty revocation checking to continue using a revoked credential.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is identified by \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-pwjx-qhcg-rvj4\"\u003eGHSA-pwjx-qhcg-rvj4\u003c/a\u003e. Thank you to \u003ca href=\"https://github.com/1seal\"\u003e\u003ccode\u003e@​1seal\u003c/code\u003e\u003c/a\u003e for the report.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFreshen up rel-0.103 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/455\"\u003erustls/webpki#455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.10 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/458\"\u003erustls/webpki#458\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2879b2ce7a476181ac3050f73fe0835f04728e86\"\u003e\u003ccode\u003e2879b2c\u003c/code\u003e\u003c/a\u003e Prepare 0.103.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2c49773d823f48c87db30db7a66c25993c847007\"\u003e\u003ccode\u003e2c49773\u003c/code\u003e\u003c/a\u003e Improve tests for padding of \u003ccode\u003eBitStringFlags\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/4e3c0b393a7bfb9cbe6dcdc8309cbadf8ee00c51\"\u003e\u003ccode\u003e4e3c0b3\u003c/code\u003e\u003c/a\u003e Correct validation of BIT STRING constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/39c91d2525a542a7f651a1a62c3462e8115cc39e\"\u003e\u003ccode\u003e39c91d2\u003c/code\u003e\u003c/a\u003e Actually fail closed for URI matching against excluded subtrees\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/27131d476e2b68a537e629d6d012bef8dad6efd3\"\u003e\u003ccode\u003e27131d4\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/6ecb8769cde2246e761e058709421c14a7dee6b1\"\u003e\u003ccode\u003e6ecb876\u003c/code\u003e\u003c/a\u003e Clean up stuttery enum variant names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/318b3e6e03ca2bc21600ca6bb0d0c6439b9e6aeb\"\u003e\u003ccode\u003e318b3e6\u003c/code\u003e\u003c/a\u003e Ignore wildcard labels when matching name constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/12196229a327d3d670798688254bd3ea24aba24b\"\u003e\u003ccode\u003e1219622\u003c/code\u003e\u003c/a\u003e Rewrite constraint matching to avoid permissive catch-all branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/57bc62ce538c2d0d31d44b3eb8c58e6a0a764b47\"\u003e\u003ccode\u003e57bc62c\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/d0fa01ee0a76b7585c13ec43de5854955146ffef\"\u003e\u003ccode\u003ed0fa01e\u003c/code\u003e\u003c/a\u003e Allow parsing trust anchors with unknown criticial extensions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.8...v/0.103.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 0.4.44 to 0.4.45\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/096e3d16d14fefac51bc4d94d616b21546ea8bcc\"\u003e\u003ccode\u003e096e3d1\u003c/code\u003e\u003c/a\u003e Bump to 0.4.45 (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/443\"\u003e#443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/17b1fd84e632071cb8eef9d3709bf347bd266446\"\u003e\u003ccode\u003e17b1fd8\u003c/code\u003e\u003c/a\u003e archive: Prevent symlink-directory collision chmod attack (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/de1a5870e603758f430073688691165f21a33946\"\u003e\u003ccode\u003ede1a587\u003c/code\u003e\u003c/a\u003e archive: Unconditionally honor PAX size (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/441\"\u003e#441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/6071cbe74acefa8c8322809bfd43c825e5f16b60\"\u003e\u003ccode\u003e6071cbe\u003c/code\u003e\u003c/a\u003e ci: Consolidate workflows (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/439\"\u003e#439\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/ad1fde9edfb9657d17666bbec2933119ce527359\"\u003e\u003ccode\u003ead1fde9\u003c/code\u003e\u003c/a\u003e build-sys: Promote unused_code to an error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/c8cb250e8bc3f28bd69406b396bb8a92b40012c1\"\u003e\u003ccode\u003ec8cb250\u003c/code\u003e\u003c/a\u003e tests: Squash a warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/638c495a480d2a50099d55f445ece9e5f544b49d\"\u003e\u003ccode\u003e638c495\u003c/code\u003e\u003c/a\u003e ci: Add xtask infra + reverse dependency testing (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/435\"\u003e#435\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/32a9bbb26468cbdecbf73fe8eb249284d4a718ed\"\u003e\u003ccode\u003e32a9bbb\u003c/code\u003e\u003c/a\u003e tests: Add RandomReader to exercise partial-read resilience (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/436\"\u003e#436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/9c5df0bfd70d1b063516b90fca2cf2e0dbe8b758\"\u003e\u003ccode\u003e9c5df0b\u003c/code\u003e\u003c/a\u003e Fix GNU long-name extension stream corruption on validation error (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/88b1e3b0da65b0c5b9750d1a75516145488f4793\"\u003e\u003ccode\u003e88b1e3b\u003c/code\u003e\u003c/a\u003e Fix docs typo in header.rs (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alexcrichton/tar-rs/compare/0.4.44...0.4.45\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.44 to 0.3.47\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.47\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.46\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.45\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003etime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.47 [2026-02-05]\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eThe possibility of a stack exhaustion denial of service attack when parsing RFC 2822 has been\neliminated. Previously, it was possible to craft input that would cause unbounded recursion. Now,\nthe depth of the recursion is tracked, causing an error to be returned if it exceeds a reasonable\nlimit.\u003c/p\u003e\n\u003cp\u003eThis attack vector requires parsing user-provided input, with any type, using the RFC 2822 format.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCompatibility\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAttempting to format a value with a well-known format (i.e. RFC 3339, RFC 2822, or ISO 8601) will\nerror at compile time if the type being formatted does not provide sufficient information. This\nwould previously fail at runtime. Similarly, attempting to format a value with ISO 8601 that is\nonly configured for parsing (i.e. \u003ccode\u003eIso8601::PARSING\u003c/code\u003e) will error at compile time.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBuilder methods for format description modifiers, eliminating the need for verbose initialization\nwhen done manually.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edate!(2026-W01-2)\u003c/code\u003e is now supported. Previously, a space was required between \u003ccode\u003eW\u003c/code\u003e and \u003ccode\u003e01\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[end]\u003c/code\u003e now has a \u003ccode\u003etrailing_input\u003c/code\u003e modifier which can either be \u003ccode\u003eprohibit\u003c/code\u003e (the default) or\n\u003ccode\u003ediscard\u003c/code\u003e. When it is \u003ccode\u003ediscard\u003c/code\u003e, all remaining input is ignored. Note that if there are components\nafter \u003ccode\u003e[end]\u003c/code\u003e, they will still attempt to be parsed, likely resulting in an error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMore performance gains when parsing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIf manually formatting a value, the number of bytes written was one short for some components.\nThis has been fixed such that the number of bytes written is always correct.\u003c/li\u003e\n\u003cli\u003eThe possibility of integer overflow when parsing an owned format description has been effectively\neliminated. This would previously wrap when overflow checks were disabled. Instead of storing the\ndepth as \u003ccode\u003eu8\u003c/code\u003e, it is stored as \u003ccode\u003eu32\u003c/code\u003e. This would require multiple gigabytes of nested input to\noverflow, at which point we've got other problems and trivial mitigations are available by\ndownstream users.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.46 [2026-01-23]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAll possible panics are now documented for the relevant methods.\u003c/li\u003e\n\u003cli\u003eThe need to use \u003ccode\u003e#[serde(default)]\u003c/code\u003e when using custom \u003ccode\u003eserde\u003c/code\u003e formats is documented. This applies\nonly when deserializing an \u003ccode\u003eOption\u0026lt;T\u0026gt;\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDuration::nanoseconds_i128\u003c/code\u003e has been made public, mirroring\n\u003ccode\u003estd::time::Duration::from_nanos_u128\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/d5144cd2874862d46466c900910cd8577d066019\"\u003e\u003ccode\u003ed5144cd\u003c/code\u003e\u003c/a\u003e v0.3.47 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/f6206b050fd54817d8872834b4d61f605570e89b\"\u003e\u003ccode\u003ef6206b0\u003c/code\u003e\u003c/a\u003e Guard against integer overflow in release mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/1c63dc7985b8fa26bd8c689423cc56b7a03841ee\"\u003e\u003ccode\u003e1c63dc7\u003c/code\u003e\u003c/a\u003e Avoid denial of service when parsing Rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/5940df6e72efb63d246ca1ca59a0f836ad32ad8a\"\u003e\u003ccode\u003e5940df6\u003c/code\u003e\u003c/a\u003e Add builder methods to avoid verbose construction\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/00881a4da1bc5a6cb6313052e5017dbd7daa40f0\"\u003e\u003ccode\u003e00881a4\u003c/code\u003e\u003c/a\u003e Manually format macros everywhere\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/bb723b6d826e46c174d75cd08987061984b0ceb7\"\u003e\u003ccode\u003ebb723b6\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003etrailing_input\u003c/code\u003e modifier to \u003ccode\u003eend\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/31c4f8e0b56e6ae24fe0d6ef0e492b6741dda783\"\u003e\u003ccode\u003e31c4f8e\u003c/code\u003e\u003c/a\u003e Permit \u003ccode\u003eW12\u003c/code\u003e in \u003ccode\u003edate!\u003c/code\u003e macro\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/490a17bf306576850f33a86d3ca95d96db7b1dcd\"\u003e\u003ccode\u003e490a17b\u003c/code\u003e\u003c/a\u003e Mark error paths in well-known formats as cold\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6cb1896a600be1538ecfab8f233fe9cfe9fa8951\"\u003e\u003ccode\u003e6cb1896\u003c/code\u003e\u003c/a\u003e Optimize \u003ccode\u003eRfc2822\u003c/code\u003e parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6d264d59c25e3da0453c3defebf4640b0086a006\"\u003e\u003ccode\u003e6d264d5\u003c/code\u003e\u003c/a\u003e Remove erroneous \u003ccode\u003e#[inline(never)]\u003c/code\u003e attributes\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/time-rs/time/compare/v0.3.44...v0.3.47\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/nordicfactory/lumicode/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/nordicfactory/lumicode/pull/19","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/nordicfactory%2Flumicode/issues/19","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/19/packages"}},{"old_version":"1.11.0","new_version":"1.11.1","update_type":"patch","path":null,"pr_created_at":"2026-05-08T02:05:29.000Z","version_change":"1.11.0 → 1.11.1","issue":{"uuid":"4403244065","node_id":"PR_kwDOQKReU87ZXmu2","number":5,"state":"open","title":"chore(deps): bump the cargo group across 1 directory with 5 updates","user":"dependabot[bot]","labels":["dependencies","needs:compliance","needs:issue","rust"],"assignees":[],"locked":false,"comments_count":4,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-08T02:05:29.000Z","updated_at":"2026-05-08T06:04:36.497Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"cargo","update_count":5,"packages":[{"name":"bytes","old_version":"1.11.0","new_version":"1.11.1","repository_url":"https://github.com/tokio-rs/bytes"},{"name":"quinn-proto","old_version":"0.11.13","new_version":"0.11.14","repository_url":"https://github.com/quinn-rs/quinn"},{"name":"rustls-webpki","old_version":"0.103.8","new_version":"0.103.13","repository_url":"https://github.com/rustls/webpki"},{"name":"tar","old_version":"0.4.44","new_version":"0.4.45","repository_url":"https://github.com/alexcrichton/tar-rs"},{"name":"time","old_version":"0.3.44","new_version":"0.3.47","repository_url":"https://github.com/time-rs/time"}],"path":null,"ecosystem":"cargo"},"body":"Bumps the cargo group with 5 updates in the /packages/desktop/src-tauri directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [bytes](https://github.com/tokio-rs/bytes) | `1.11.0` | `1.11.1` |\n| [quinn-proto](https://github.com/quinn-rs/quinn) | `0.11.13` | `0.11.14` |\n| [rustls-webpki](https://github.com/rustls/webpki) | `0.103.8` | `0.103.13` |\n| [tar](https://github.com/alexcrichton/tar-rs) | `0.4.44` | `0.4.45` |\n| [time](https://github.com/time-rs/time) | `0.3.44` | `0.3.47` |\n\n\nUpdates `bytes` from 1.11.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/releases\"\u003ebytes's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eBytes v1.11.1\u003c/h2\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md\"\u003ebytes's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.11.1 (February 3rd, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix integer overflow in \u003ccode\u003eBytesMut::reserve\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/417dccdeff249e0c011327de7d92e0d6fbe7cc43\"\u003e\u003ccode\u003e417dccd\u003c/code\u003e\u003c/a\u003e Release bytes v1.11.1 (\u003ca href=\"https://redirect.github.com/tokio-rs/bytes/issues/820\"\u003e#820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\"\u003e\u003ccode\u003ed0293b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tokio-rs/bytes/compare/v1.11.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `quinn-proto` from 0.11.13 to 0.11.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quinn-rs/quinn/releases\"\u003equinn-proto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003equinn-proto 0.11.14\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jxs\"\u003e\u003ccode\u003e@​jxs\u003c/code\u003e\u003c/a\u003e reported a denial of service issue in quinn-proto 5 days ago:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\"\u003ehttps://github.com/quinn-rs/quinn/security/advisories/GHSA-6xvm-j4wr-6v98\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eWe coordinated with them to release this version to patch the issue. Unfortunately the maintainers missed these issues during code review and we did not have enough fuzzing coverage -- we regret the oversight and have added an additional fuzzing target.\u003c/p\u003e\n\u003cp\u003eOrganizations that want to participate in coordinated disclosure can contact us privately to discuss terms.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix over-permissive proto dependency edge by \u003ca href=\"https://github.com/Ralith\"\u003e\u003ccode\u003e@​Ralith\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2385\"\u003equinn-rs/quinn#2385\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e0.11.x: avoid unwrapping VarInt decoding during parameter parsing by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quinn-rs/quinn/pull/2559\"\u003equinn-rs/quinn#2559\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/2c315aa7f9c2a6c1db87f8f51f40623a427c78fd\"\u003e\u003ccode\u003e2c315aa\u003c/code\u003e\u003c/a\u003e proto: bump version to 0.11.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8ad47f431e7deb82c08b09c2e33ef85aa88fd212\"\u003e\u003ccode\u003e8ad47f4\u003c/code\u003e\u003c/a\u003e Use newer rustls-pki-types PEM parser API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c81c0289abe30d8437ccbf9b6304e2bc9c707cea\"\u003e\u003ccode\u003ec81c028\u003c/code\u003e\u003c/a\u003e ci: fix workflow syntax\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/0050172969f7e69e136c433181330da7790d8d73\"\u003e\u003ccode\u003e0050172\u003c/code\u003e\u003c/a\u003e ci: pin wasm-bindgen-cli version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/8a6f82c58d1c565eab78f986e614223e6ed76a85\"\u003e\u003ccode\u003e8a6f82c\u003c/code\u003e\u003c/a\u003e Take semver-compatible dependency updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/e52db4ad8df0f9720e7b0e32ecc0e48c9a93de0f\"\u003e\u003ccode\u003ee52db4a\u003c/code\u003e\u003c/a\u003e Apply suggestions from clippy 1.91\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/6df7275c582ca9b7225e0ccf9f9871a55eb73155\"\u003e\u003ccode\u003e6df7275\u003c/code\u003e\u003c/a\u003e chore: Fix \u003ccode\u003eunnecessary_unwrap\u003c/code\u003e clippy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/c8eefa07e087b06d8f2b78ff262ce8ac952994f1\"\u003e\u003ccode\u003ec8eefa0\u003c/code\u003e\u003c/a\u003e proto: avoid unwrapping varint decoding during parameters parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/9723a977754c8662001b0fef97aab8f3ddf1df92\"\u003e\u003ccode\u003e9723a97\u003c/code\u003e\u003c/a\u003e fuzz: add fuzzing target for parsing transport parameters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quinn-rs/quinn/commit/eaf0ef30252cef4acec21f150427e604cd4271c9\"\u003e\u003ccode\u003eeaf0ef3\u003c/code\u003e\u003c/a\u003e Fix over-permissive proto dependency edge (\u003ca href=\"https://redirect.github.com/quinn-rs/quinn/issues/2385\"\u003e#2385\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quinn-rs/quinn/compare/quinn-proto-0.11.13...quinn-proto-0.11.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `rustls-webpki` from 0.103.8 to 0.103.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rustls/webpki/releases\"\u003erustls-webpki's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.103.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix reachable panic in parsing a CRL\u003c/strong\u003e. This was reported to us as \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-82j2-j2ch-gfr8\"\u003eGHSA-82j2-j2ch-gfr8\u003c/a\u003e. Users who don't use CRLs are not affected.\u003c/li\u003e\n\u003cli\u003eFor name constraints on URI names, we incorrectly processed excluded subtrees in a way which inverted the desired meaning. See \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/471\"\u003erustls/webpki#471\u003c/a\u003e. This was a case missing in the fix for \u003ca href=\"https://github.com/advisories/GHSA-965h-392x-2mh5\"\u003ehttps://github.com/advisories/GHSA-965h-392x-2mh5\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eActually fail closed for URI matching against excluded subtrees by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/473\"\u003erustls/webpki#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.13 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/474\"\u003erustls/webpki#474\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.12...v/0.103.13\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.12\u003c/h2\u003e\n\u003cp\u003eThis release fixes two bugs in name constraint enforcement:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-965h-392x-2mh5\u003c/strong\u003e: name constraints for URI names were ignored and therefore accepted. URI name constraints are now rejected unconditionally. Note this library does not provide an API for asserting URI names, and URI name constraints are otherwise not implemented.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-xgp8-3hg3-c2mh\u003c/strong\u003e: permitted subtree name constraints for DNS names were accepted for certificates asserting a wildcard name. This was incorrect because, given a name constraint of \u003ccode\u003eaccept.example.com\u003c/code\u003e, \u003ccode\u003e*.example.com\u003c/code\u003e could feasibly allow a name of \u003ccode\u003ereject.example.com\u003c/code\u003e which is outside the constraint. This is very similar to \u003ca href=\"https://go.dev/issue/76442\"\u003eCVE-2025-61727\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSince name constraints are restrictions on otherwise properly-issued certificates, these bugs are reachable only after signature verification and require misissuance to exploit.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrepare 0.103.12 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/470\"\u003erustls/webpki#470\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.11...v/0.103.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.103.11\u003c/h2\u003e\n\u003cp\u003eIn response to \u003ca href=\"https://redirect.github.com/rustls/webpki/issues/464\"\u003e#464\u003c/a\u003e, we've slightly relaxed requirements for \u003ccode\u003eanchor_from_trust_cert()\u003c/code\u003e to ignore unknown extensions even if they're marked as critical. This only affects parsing a \u003ccode\u003eTrustAnchor\u003c/code\u003e from DER, for which most extensions are ignored anyway.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport parsing trust anchors with unknown critical extensions to 0.103 by \u003ca href=\"https://github.com/djc\"\u003e\u003ccode\u003e@​djc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/466\"\u003erustls/webpki#466\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.103.10\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eCorrect selection of candidate CRLs by Distribution Point and Issuing Distribution Point\u003c/strong\u003e. If a certificate had more than one \u003ccode\u003edistributionPoint\u003c/code\u003e, then only the first \u003ccode\u003edistributionPoint\u003c/code\u003e would be considered against each CRL's \u003ccode\u003eIssuingDistributionPoint\u003c/code\u003e \u003ccode\u003edistributionPoint\u003c/code\u003e, and then the certificate's subsequent \u003ccode\u003edistributionPoint\u003c/code\u003es would be ignored.\u003c/p\u003e\n\u003cp\u003eThe impact was that correctly provided CRLs would not be consulted to check revocation. With \u003ccode\u003eUnknownStatusPolicy::Deny\u003c/code\u003e (the default) this would lead to incorrect but safe \u003ccode\u003eError::UnknownRevocationStatus\u003c/code\u003e. With \u003ccode\u003eUnknownStatusPolicy::Allow\u003c/code\u003e this would lead to inappropriate acceptance of revoked certificates.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is thought to be of limited impact. This is because both the certificate and CRL are signed -- an attacker would need to compromise a trusted issuing authority to trigger this bug.  An attacker with such capabilities could likely bypass revocation checking through other more impactful means (such as publishing a valid, empty CRL.)\u003c/p\u003e\n\u003cp\u003eMore likely, this bug would be latent in normal use, and an attacker could leverage faulty revocation checking to continue using a revoked credential.\u003c/p\u003e\n\u003cp\u003eThis vulnerability is identified by \u003ca href=\"https://github.com/rustls/webpki/security/advisories/GHSA-pwjx-qhcg-rvj4\"\u003eGHSA-pwjx-qhcg-rvj4\u003c/a\u003e. Thank you to \u003ca href=\"https://github.com/1seal\"\u003e\u003ccode\u003e@​1seal\u003c/code\u003e\u003c/a\u003e for the report.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFreshen up rel-0.103 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/455\"\u003erustls/webpki#455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare 0.103.10 by \u003ca href=\"https://github.com/ctz\"\u003e\u003ccode\u003e@​ctz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/rustls/webpki/pull/458\"\u003erustls/webpki#458\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\"\u003ehttps://github.com/rustls/webpki/compare/v/0.103.9...v/0.103.10\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2879b2ce7a476181ac3050f73fe0835f04728e86\"\u003e\u003ccode\u003e2879b2c\u003c/code\u003e\u003c/a\u003e Prepare 0.103.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/2c49773d823f48c87db30db7a66c25993c847007\"\u003e\u003ccode\u003e2c49773\u003c/code\u003e\u003c/a\u003e Improve tests for padding of \u003ccode\u003eBitStringFlags\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/4e3c0b393a7bfb9cbe6dcdc8309cbadf8ee00c51\"\u003e\u003ccode\u003e4e3c0b3\u003c/code\u003e\u003c/a\u003e Correct validation of BIT STRING constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/39c91d2525a542a7f651a1a62c3462e8115cc39e\"\u003e\u003ccode\u003e39c91d2\u003c/code\u003e\u003c/a\u003e Actually fail closed for URI matching against excluded subtrees\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/27131d476e2b68a537e629d6d012bef8dad6efd3\"\u003e\u003ccode\u003e27131d4\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/6ecb8769cde2246e761e058709421c14a7dee6b1\"\u003e\u003ccode\u003e6ecb876\u003c/code\u003e\u003c/a\u003e Clean up stuttery enum variant names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/318b3e6e03ca2bc21600ca6bb0d0c6439b9e6aeb\"\u003e\u003ccode\u003e318b3e6\u003c/code\u003e\u003c/a\u003e Ignore wildcard labels when matching name constraints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/12196229a327d3d670798688254bd3ea24aba24b\"\u003e\u003ccode\u003e1219622\u003c/code\u003e\u003c/a\u003e Rewrite constraint matching to avoid permissive catch-all branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/57bc62ce538c2d0d31d44b3eb8c58e6a0a764b47\"\u003e\u003ccode\u003e57bc62c\u003c/code\u003e\u003c/a\u003e Bump version to 0.103.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rustls/webpki/commit/d0fa01ee0a76b7585c13ec43de5854955146ffef\"\u003e\u003ccode\u003ed0fa01e\u003c/code\u003e\u003c/a\u003e Allow parsing trust anchors with unknown criticial extensions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/rustls/webpki/compare/v/0.103.8...v/0.103.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 0.4.44 to 0.4.45\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/096e3d16d14fefac51bc4d94d616b21546ea8bcc\"\u003e\u003ccode\u003e096e3d1\u003c/code\u003e\u003c/a\u003e Bump to 0.4.45 (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/443\"\u003e#443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/17b1fd84e632071cb8eef9d3709bf347bd266446\"\u003e\u003ccode\u003e17b1fd8\u003c/code\u003e\u003c/a\u003e archive: Prevent symlink-directory collision chmod attack (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/de1a5870e603758f430073688691165f21a33946\"\u003e\u003ccode\u003ede1a587\u003c/code\u003e\u003c/a\u003e archive: Unconditionally honor PAX size (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/441\"\u003e#441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/6071cbe74acefa8c8322809bfd43c825e5f16b60\"\u003e\u003ccode\u003e6071cbe\u003c/code\u003e\u003c/a\u003e ci: Consolidate workflows (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/439\"\u003e#439\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/ad1fde9edfb9657d17666bbec2933119ce527359\"\u003e\u003ccode\u003ead1fde9\u003c/code\u003e\u003c/a\u003e build-sys: Promote unused_code to an error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/c8cb250e8bc3f28bd69406b396bb8a92b40012c1\"\u003e\u003ccode\u003ec8cb250\u003c/code\u003e\u003c/a\u003e tests: Squash a warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/638c495a480d2a50099d55f445ece9e5f544b49d\"\u003e\u003ccode\u003e638c495\u003c/code\u003e\u003c/a\u003e ci: Add xtask infra + reverse dependency testing (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/435\"\u003e#435\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/32a9bbb26468cbdecbf73fe8eb249284d4a718ed\"\u003e\u003ccode\u003e32a9bbb\u003c/code\u003e\u003c/a\u003e tests: Add RandomReader to exercise partial-read resilience (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/436\"\u003e#436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/9c5df0bfd70d1b063516b90fca2cf2e0dbe8b758\"\u003e\u003ccode\u003e9c5df0b\u003c/code\u003e\u003c/a\u003e Fix GNU long-name extension stream corruption on validation error (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexcrichton/tar-rs/commit/88b1e3b0da65b0c5b9750d1a75516145488f4793\"\u003e\u003ccode\u003e88b1e3b\u003c/code\u003e\u003c/a\u003e Fix docs typo in header.rs (\u003ca href=\"https://redirect.github.com/alexcrichton/tar-rs/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alexcrichton/tar-rs/compare/0.4.44...0.4.45\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `time` from 0.3.44 to 0.3.47\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/releases\"\u003etime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.3.47\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.46\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev0.3.45\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/time-rs/time/blob/main/CHANGELOG.md\"\u003etime's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.47 [2026-02-05]\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eThe possibility of a stack exhaustion denial of service attack when parsing RFC 2822 has been\neliminated. Previously, it was possible to craft input that would cause unbounded recursion. Now,\nthe depth of the recursion is tracked, causing an error to be returned if it exceeds a reasonable\nlimit.\u003c/p\u003e\n\u003cp\u003eThis attack vector requires parsing user-provided input, with any type, using the RFC 2822 format.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCompatibility\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAttempting to format a value with a well-known format (i.e. RFC 3339, RFC 2822, or ISO 8601) will\nerror at compile time if the type being formatted does not provide sufficient information. This\nwould previously fail at runtime. Similarly, attempting to format a value with ISO 8601 that is\nonly configured for parsing (i.e. \u003ccode\u003eIso8601::PARSING\u003c/code\u003e) will error at compile time.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBuilder methods for format description modifiers, eliminating the need for verbose initialization\nwhen done manually.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edate!(2026-W01-2)\u003c/code\u003e is now supported. Previously, a space was required between \u003ccode\u003eW\u003c/code\u003e and \u003ccode\u003e01\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[end]\u003c/code\u003e now has a \u003ccode\u003etrailing_input\u003c/code\u003e modifier which can either be \u003ccode\u003eprohibit\u003c/code\u003e (the default) or\n\u003ccode\u003ediscard\u003c/code\u003e. When it is \u003ccode\u003ediscard\u003c/code\u003e, all remaining input is ignored. Note that if there are components\nafter \u003ccode\u003e[end]\u003c/code\u003e, they will still attempt to be parsed, likely resulting in an error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMore performance gains when parsing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIf manually formatting a value, the number of bytes written was one short for some components.\nThis has been fixed such that the number of bytes written is always correct.\u003c/li\u003e\n\u003cli\u003eThe possibility of integer overflow when parsing an owned format description has been effectively\neliminated. This would previously wrap when overflow checks were disabled. Instead of storing the\ndepth as \u003ccode\u003eu8\u003c/code\u003e, it is stored as \u003ccode\u003eu32\u003c/code\u003e. This would require multiple gigabytes of nested input to\noverflow, at which point we've got other problems and trivial mitigations are available by\ndownstream users.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.3.46 [2026-01-23]\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAll possible panics are now documented for the relevant methods.\u003c/li\u003e\n\u003cli\u003eThe need to use \u003ccode\u003e#[serde(default)]\u003c/code\u003e when using custom \u003ccode\u003eserde\u003c/code\u003e formats is documented. This applies\nonly when deserializing an \u003ccode\u003eOption\u0026lt;T\u0026gt;\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDuration::nanoseconds_i128\u003c/code\u003e has been made public, mirroring\n\u003ccode\u003estd::time::Duration::from_nanos_u128\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/d5144cd2874862d46466c900910cd8577d066019\"\u003e\u003ccode\u003ed5144cd\u003c/code\u003e\u003c/a\u003e v0.3.47 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/f6206b050fd54817d8872834b4d61f605570e89b\"\u003e\u003ccode\u003ef6206b0\u003c/code\u003e\u003c/a\u003e Guard against integer overflow in release mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/1c63dc7985b8fa26bd8c689423cc56b7a03841ee\"\u003e\u003ccode\u003e1c63dc7\u003c/code\u003e\u003c/a\u003e Avoid denial of service when parsing Rfc2822\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/5940df6e72efb63d246ca1ca59a0f836ad32ad8a\"\u003e\u003ccode\u003e5940df6\u003c/code\u003e\u003c/a\u003e Add builder methods to avoid verbose construction\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/00881a4da1bc5a6cb6313052e5017dbd7daa40f0\"\u003e\u003ccode\u003e00881a4\u003c/code\u003e\u003c/a\u003e Manually format macros everywhere\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/bb723b6d826e46c174d75cd08987061984b0ceb7\"\u003e\u003ccode\u003ebb723b6\u003c/code\u003e\u003c/a\u003e Add \u003ccode\u003etrailing_input\u003c/code\u003e modifier to \u003ccode\u003eend\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/31c4f8e0b56e6ae24fe0d6ef0e492b6741dda783\"\u003e\u003ccode\u003e31c4f8e\u003c/code\u003e\u003c/a\u003e Permit \u003ccode\u003eW12\u003c/code\u003e in \u003ccode\u003edate!\u003c/code\u003e macro\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/490a17bf306576850f33a86d3ca95d96db7b1dcd\"\u003e\u003ccode\u003e490a17b\u003c/code\u003e\u003c/a\u003e Mark error paths in well-known formats as cold\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6cb1896a600be1538ecfab8f233fe9cfe9fa8951\"\u003e\u003ccode\u003e6cb1896\u003c/code\u003e\u003c/a\u003e Optimize \u003ccode\u003eRfc2822\u003c/code\u003e parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/time-rs/time/commit/6d264d59c25e3da0453c3defebf4640b0086a006\"\u003e\u003ccode\u003e6d264d5\u003c/code\u003e\u003c/a\u003e Remove erroneous \u003ccode\u003e#[inline(never)]\u003c/code\u003e attributes\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/time-rs/time/compare/v0.3.44...v0.3.47\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/iansherr/opencode/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/iansherr/opencode/pull/5","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/iansherr%2Fopencode/issues/5","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/5/packages"}}]}