Skip to content

Bump the rust-deps group across 1 directory with 18 updates#74

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/rust-deps-708914e2b6
Open

Bump the rust-deps group across 1 directory with 18 updates#74
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/rust-deps-708914e2b6

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 24, 2026

Bumps the rust-deps group with 15 updates in the / directory:

Package From To
axum 0.8.8 0.8.9
tokio 1.50.0 1.52.3
tower-http 0.6.8 0.6.11
aws-config 1.8.15 1.8.16
aws-sdk-bedrock 1.138.0 1.142.0
aws-sdk-bedrockruntime 1.128.0 1.131.0
aws-sdk-eventbridge 1.104.0 1.106.0
aws-sdk-pricing 1.101.0 1.103.0
aws-sdk-sns 1.98.0 1.100.0
aws-sdk-servicequotas 1.99.0 1.101.0
serde_json 1.0.149 1.0.150
rcgen 0.14.7 0.14.8
rustls 0.23.37 0.23.40
uuid 1.22.0 1.23.1
clap 4.6.0 4.6.1

Updates axum from 0.8.8 to 0.8.9

Release notes

Sourced from axum's releases.

axum-v0.8.9

  • added: WebSocketUpgrade::{requested_protocols, set_selected_protocol} for more flexible subprotocol selection (#3597)
  • changed: Update minimum rust version to 1.80 (#3620)
  • fixed: Set connect endpoint on correct field in MethodRouter (#3656)
  • fixed: Return specific error message when multipart body limit is exceeded (#3611)

#3597: tokio-rs/axum#3597 #3620: tokio-rs/axum#3620 #3656: tokio-rs/axum#3656 #3611: tokio-rs/axum#3611

Commits

Updates tokio from 1.50.0 to 1.52.3

Release notes

Sourced from tokio's releases.

Tokio v1.52.3

1.52.3 (May 8th, 2026)

Fixed

  • sync: fix underflow in mpsc channel len() (#8062)
  • sync: notify receivers in mpsc OwnedPermit::release() method (#8075)
  • sync: require that an RwLock has max_readers != 0 (#8076)
  • sync: return Empty from try_recv() when mpsc is closed with outstanding permits (#8074)

#8062: tokio-rs/tokio#8062 #8074: tokio-rs/tokio#8074 #8075: tokio-rs/tokio#8075 #8076: tokio-rs/tokio#8076

Tokio v1.52.2

1.52.2 (May 4th, 2026)

This release reverts the LIFO slot stealing change introduced in 1.51.0 (#7431), due to [its performance impact]#8065. (#8100)

#7431: tokio-rs/tokio#7431 #8065: tokio-rs/tokio#8065 #8100: tokio-rs/tokio#8100

Tokio v1.52.1

1.52.1 (April 16th, 2026)

Fixed

  • runtime: revert #7757 to fix [a regression]#8056 that causes spawn_blocking to hang (#8057)

#7757: tokio-rs/tokio#7757 #8056: tokio-rs/tokio#8056 #8057: tokio-rs/tokio#8057

Tokio v1.52.0

1.52.0 (April 14th, 2026)

Added

  • io: AioSource::register_borrowed for I/O safety support (#7992)
  • net: add try_io function to unix::pipe sender and receiver types (#8030)

Added (unstable)

  • runtime: Builder::enable_eager_driver_handoff setting enable eager hand off of the I/O and time drivers before polling tasks (#8010)
  • taskdump: add trace_with() for customized task dumps (#8025)
  • taskdump: allow impl FnMut() in trace_with instead of just fn() (#8040)
  • fs: support io_uring in AsyncRead for File (#7907)

... (truncated)

Commits

Updates tower-http from 0.6.8 to 0.6.11

Release notes

Sourced from tower-http's releases.

tower-http-0.6.11

Added

  • set-header: add SetMultipleResponseHeadersLayer and SetMultipleResponseHeader for setting multiple response headers at once. Supports overriding, appending, and if_not_present modes. Header values can be fixed or computed dynamically via closures (#672)

    use http::{Response, header::{self, HeaderValue}};
use http_body::Body as _;
use tower_http::set_header::response::SetMultipleResponseHeadersLayer;
let layer = SetMultipleResponseHeadersLayer::overriding(vec![
(header::X_FRAME_OPTIONS, HeaderValue::from_static("DENY")).into(),
(header::CONTENT_LENGTH, |res: &Response<MyBody>| {
res.body().size_hint().exact()
.map(|size| HeaderValue::from_str(&size.to_string()).unwrap())
}).into(),
]);

  • set-header: add SetMultipleRequestHeadersLayer and SetMultipleRequestHeaders for setting multiple request headers at once, mirroring the response-side API (#677)

  • classify: add From<i32> and From<NonZeroI32> impls for GrpcCode. Unrecognized status codes map to GrpcCode::Unknown (#506)

Changed

  • compression: compress application/grpc-web responses. Previously all application/grpc* content types were excluded from compression; now only application/grpc (non-web) is excluded (#408)

Fixed

  • fs: fix ServeDir returning 500 instead of 405 for non-GET/HEAD requests when call_fallback_on_method_not_allowed is enabled but no fallback service is configured (#587)
  • fs: remove duplicate cfg attribute on is_reserved_dos_name (#675)

#408: tower-rs/tower-http#408 #506: tower-rs/tower-http#506 #587: tower-rs/tower-http#587 #672: tower-rs/tower-http#672 #675: tower-rs/tower-http#675 #677: tower-rs/tower-http#677

All PRs

... (truncated)

Commits
  • 1d082ef v0.6.11
  • 9c3117d feat: set multiple request header (#677)
  • 667e7c7 Remove duplicate cfg attribute for is_reserved_dos_name (#675)
  • 7551a9b feat(set_header): refactor and improve multiple header middleware (#672)
  • 991e9ee add From<i32> impl for GrpcCode (#506)
  • 3962dba Do compress grpc-web responses (#408)
  • f0b3bb6 Fix serve_dir method not allowed handling when no fallback is configured (#587)
  • d1a571b ci: use static timeout in stress-test workflow (#671)
  • 309555a ci: fix flaky encoding test, add nightly stress test job (#670)
  • 4532fc2 v0.6.10
  • Additional commits viewable in compare view

Updates aws-config from 1.8.15 to 1.8.16

Commits

Updates aws-sdk-bedrock from 1.138.0 to 1.142.0

Commits

Updates aws-sdk-bedrockruntime from 1.128.0 to 1.131.0

Commits

Updates aws-sdk-eventbridge from 1.104.0 to 1.106.0

Commits

Updates aws-sdk-pricing from 1.101.0 to 1.103.0

Commits

Updates aws-sdk-sns from 1.98.0 to 1.100.0

Commits

Updates aws-sdk-servicequotas from 1.99.0 to 1.101.0

Commits

Updates aws-sdk-sts from 1.101.0 to 1.104.0

Commits

Updates aws-sigv4 from 1.4.2 to 1.4.4

Commits

Updates aws-smithy-types from 1.4.7 to 1.4.8

Commits

Updates serde_json from 1.0.149 to 1.0.150

Release notes

Sourced from serde_json's releases.

v1.0.150

Commits
  • a1ae73a Release 1.0.150
  • 1a360b0 Merge pull request #1324 from puneetdixit200/reject-non-string-enum-keys
  • 2037b63 Reject non-string enum object keys
  • 5d30df6 Resolve manual_assert_eq pedantic clippy lint
  • dc8003a Raise required compiler for preserve_order feature to 1.85
  • a42fa98 Unpin CI miri toolchain
  • 684a60e Pin CI miri to nightly-2026-02-11
  • 7c7da33 Raise required compiler to Rust 1.71
  • acf4850 Simplify Number::is_f64
  • 6b8ceab Resolve unnecessary_map_or clippy lint
  • Additional commits viewable in compare view

Updates rcgen from 0.14.7 to 0.14.8

Release notes

Sourced from rcgen's releases.

0.14.8

What's Changed

Commits
  • a70f083 Bump version to 0.14.8
  • a32fdb1 Fix encoding of directoryName constraints
  • 7111a79 update key_pair to signing_key
  • 10664c9 Take semver-compatible dependency updates
  • 0ec4d09 Add testing of CSR serializing basic constraints
  • 5f94ef9 Add support for serializing BasicConstraints in CSR's
  • fb835c1 Add writing basic constraints logic
  • 0cf161d Bump codecov/codecov-action from 5 to 6
  • 4909041 Add testing of CSR Params parsing Basic Constraints variants
  • 6675a94 Add support for is_ca in CSR Params
  • Additional commits viewable in compare view

Updates rustls from 0.23.37 to 0.23.40

Commits
  • b44c09f Prepare 0.23.40
  • e7a555f Prefer Ord::max to core::cmp
  • c0005be ech: base inner name padding on actual extension
  • 4e49529 ech: test inner name padding
  • 3e06ef1 ech: add both name and "gross" padding
  • c574ffd ech: avoid short-lived allocation for padding
  • 8bf935c ech: pop comment from match arm
  • 9088004 ech: expand maximum_name_length to usize ASAP
  • a612901 Default require_ems based on CryptoProvider FIPS status
  • 0541605 Cargo: version 0.23.38 -> 0.23.39
  • Additional commits viewable in compare view

Updates uuid from 1.22.0 to 1.23.1

Release notes

Sourced from uuid's releases.

v1.23.1

What's Changed

New Contributors

Full Changelog: uuid-rs/uuid@v1.23.0...v1.23.1

v1.23.0

What's Changed

New Contributors

Special thanks

@​meng-xu-cs raised a series of bugs against the timestamp logic in uuid using automated tooling. The issues themselves were reasonably and responsibly presented and the end result is a better uuid library for everyone. Thanks!

Deprecations

This release includes the following deprecations:

  • Context: Renamed to ContextV1
  • Timestamp::from_gregorian: Renamed to Timestamp::from_gregorian_time

Change to Version::Max

Version::Max's u8 representation has changed from 0xff to 0x0f to match the value returned by Uuid::get_version_num.

Change to Uuid::get_version for the max UUID

Uuid::get_version will only return Some(Version::Max) if the UUID is actually the max UUID (all bytes are 0xff). Previously it would return Some if only the version field was 0x0f. This change matches the behaviour of the nil UUID, which only returns Some(Version::Nil) if the UUID is the nil UUID (all bytes are 0x00).

Full Changelog: uuid-rs/uuid@v1.22.0...v1.23.0

Commits
  • ca0c85f Merge pull request #879 from uuid-rs/cargo/v1.23.1
  • b4db015 prepare for 1.23.1 release
  • 771069d Merge pull request #878 from aznashwan/fix-from-gregorian-deprecation-note
  • 80994a2 fix: Timestamp::from_gregorian deprecation note
  • 90c5be8 Merge pull request #877 from guybedford/remove-wasm-bindgen-msrv
  • 8b8c4f4 Remove deprecated feature from wasm-bindgen dependency
  • 00ab922 Merge pull request #876 from uuid-rs/cargo/v1.23.0
  • 726ba45 prepare for 1.23.0 release
  • 996dade Merge pull request #875 from uuid-rs/fix/context-ordering
  • e140479 simplify a use stmt
  • Additional commits viewable in compare view

Updates clap from 4.6.0 to 4.6.1

Release notes

Sourced from clap's releases.

v4.6.1

[4.6.1] - 2026-04-15

Fixes

  • (derive) Ensure rebuilds happen when an read env variable is changed
Changelog

Sourced from clap's changelog.

[4.6.1] - 2026-04-15

Fixes

  • (derive) Ensure rebuilds happen when an read env variable is changed
Commits
  • 1420275 chore: Release
  • d2c817d docs: Update changelog
  • f88c94e Merge pull request #6341 from epage/sep
  • acbb822 fix(complete): Reduce risk of conflict with actual subcommands
  • a49fadb refactor(complete): Pull out subcommand separator
  • ddc008b Merge pull request #6332 from epage/update
  • 497dc50 chore: Update compatible dependencies
  • dca2326 Merge pull request #6331 from clap-rs/renovate/j178-prek-action-2.x
  • 54bdaa3 chore(deps): Update j178/prek-action action to v2
  • f0d30d9 chore: Release
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the rust-deps group across 1 directory with 18 updates
7731c0c 
Bumps the rust-deps group with 15 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [axum](https://github.com/tokio-rs/axum) | `0.8.8` | `0.8.9` |
| [tokio](https://github.com/tokio-rs/tokio) | `1.50.0` | `1.52.3` |
| [tower-http](https://github.com/tower-rs/tower-http) | `0.6.8` | `0.6.11` |
| [aws-config](https://github.com/smithy-lang/smithy-rs) | `1.8.15` | `1.8.16` |
| [aws-sdk-bedrock](https://github.com/awslabs/aws-sdk-rust) | `1.138.0` | `1.142.0` |
| [aws-sdk-bedrockruntime](https://github.com/awslabs/aws-sdk-rust) | `1.128.0` | `1.131.0` |
| [aws-sdk-eventbridge](https://github.com/awslabs/aws-sdk-rust) | `1.104.0` | `1.106.0` |
| [aws-sdk-pricing](https://github.com/awslabs/aws-sdk-rust) | `1.101.0` | `1.103.0` |
| [aws-sdk-sns](https://github.com/awslabs/aws-sdk-rust) | `1.98.0` | `1.100.0` |
| [aws-sdk-servicequotas](https://github.com/awslabs/aws-sdk-rust) | `1.99.0` | `1.101.0` |
| [serde_json](https://github.com/serde-rs/json) | `1.0.149` | `1.0.150` |
| [rcgen](https://github.com/rustls/rcgen) | `0.14.7` | `0.14.8` |
| [rustls](https://github.com/rustls/rustls) | `0.23.37` | `0.23.40` |
| [uuid](https://github.com/uuid-rs/uuid) | `1.22.0` | `1.23.1` |
| [clap](https://github.com/clap-rs/clap) | `4.6.0` | `4.6.1` |



Updates `axum` from 0.8.8 to 0.8.9
- [Release notes](https://github.com/tokio-rs/axum/releases)
- [Changelog](https://github.com/tokio-rs/axum/blob/main/CHANGELOG.md)
- [Commits](tokio-rs/axum@axum-v0.8.8...axum-v0.8.9)

Updates `tokio` from 1.50.0 to 1.52.3
- [Release notes](https://github.com/tokio-rs/tokio/releases)
- [Commits](tokio-rs/tokio@tokio-1.50.0...tokio-1.52.3)

Updates `tower-http` from 0.6.8 to 0.6.11
- [Release notes](https://github.com/tower-rs/tower-http/releases)
- [Commits](tower-rs/tower-http@tower-http-0.6.8...tower-http-0.6.11)

Updates `aws-config` from 1.8.15 to 1.8.16
- [Release notes](https://github.com/smithy-lang/smithy-rs/releases)
- [Changelog](https://github.com/smithy-lang/smithy-rs/blob/main/CHANGELOG.md)
- [Commits](https://github.com/smithy-lang/smithy-rs/commits)

Updates `aws-sdk-bedrock` from 1.138.0 to 1.142.0
- [Release notes](https://github.com/awslabs/aws-sdk-rust/releases)
- [Commits](https://github.com/awslabs/aws-sdk-rust/commits)

Updates `aws-sdk-bedrockruntime` from 1.128.0 to 1.131.0
- [Release notes](https://github.com/awslabs/aws-sdk-rust/releases)
- [Commits](https://github.com/awslabs/aws-sdk-rust/commits)

Updates `aws-sdk-eventbridge` from 1.104.0 to 1.106.0
- [Release notes](https://github.com/awslabs/aws-sdk-rust/releases)
- [Commits](https://github.com/awslabs/aws-sdk-rust/commits)

Updates `aws-sdk-pricing` from 1.101.0 to 1.103.0
- [Release notes](https://github.com/awslabs/aws-sdk-rust/releases)
- [Commits](https://github.com/awslabs/aws-sdk-rust/commits)

Updates `aws-sdk-sns` from 1.98.0 to 1.100.0
- [Release notes](https://github.com/awslabs/aws-sdk-rust/releases)
- [Commits](https://github.com/awslabs/aws-sdk-rust/commits)

Updates `aws-sdk-servicequotas` from 1.99.0 to 1.101.0
- [Release notes](https://github.com/awslabs/aws-sdk-rust/releases)
- [Commits](https://github.com/awslabs/aws-sdk-rust/commits)

Updates `aws-sdk-sts` from 1.101.0 to 1.104.0
- [Release notes](https://github.com/awslabs/aws-sdk-rust/releases)
- [Commits](https://github.com/awslabs/aws-sdk-rust/commits)

Updates `aws-sigv4` from 1.4.2 to 1.4.4
- [Release notes](https://github.com/smithy-lang/smithy-rs/releases)
- [Changelog](https://github.com/smithy-lang/smithy-rs/blob/main/CHANGELOG.md)
- [Commits](https://github.com/smithy-lang/smithy-rs/commits)

Updates `aws-smithy-types` from 1.4.7 to 1.4.8
- [Release notes](https://github.com/smithy-lang/smithy-rs/releases)
- [Changelog](https://github.com/smithy-lang/smithy-rs/blob/main/CHANGELOG.md)
- [Commits](https://github.com/smithy-lang/smithy-rs/commits)

Updates `serde_json` from 1.0.149 to 1.0.150
- [Release notes](https://github.com/serde-rs/json/releases)
- [Commits](serde-rs/json@v1.0.149...v1.0.150)

Updates `rcgen` from 0.14.7 to 0.14.8
- [Release notes](https://github.com/rustls/rcgen/releases)
- [Commits](rustls/rcgen@v0.14.7...v0.14.8)

Updates `rustls` from 0.23.37 to 0.23.40
- [Release notes](https://github.com/rustls/rustls/releases)
- [Changelog](https://github.com/rustls/rustls/blob/main/CHANGELOG.md)
- [Commits](rustls/rustls@v/0.23.37...v/0.23.40)

Updates `uuid` from 1.22.0 to 1.23.1
- [Release notes](https://github.com/uuid-rs/uuid/releases)
- [Commits](uuid-rs/uuid@v1.22.0...v1.23.1)

Updates `clap` from 4.6.0 to 4.6.1
- [Release notes](https://github.com/clap-rs/clap/releases)
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md)
- [Commits](clap-rs/clap@clap_complete-v4.6.0...clap_complete-v4.6.1)

---
updated-dependencies:
- dependency-name: axum
  dependency-version: 0.8.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-deps
- dependency-name: tokio
  dependency-version: 1.52.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: rust-deps
- dependency-name: tower-http
  dependency-version: 0.6.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-deps
- dependency-name: aws-config
  dependency-version: 1.8.16
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-deps
- dependency-name: aws-sdk-bedrock
  dependency-version: 1.142.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: rust-deps
- dependency-name: aws-sdk-bedrockruntime
  dependency-version: 1.131.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: rust-deps
- dependency-name: aws-sdk-eventbridge
  dependency-version: 1.106.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: rust-deps
- dependency-name: aws-sdk-pricing
  dependency-version: 1.103.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: rust-deps
- dependency-name: aws-sdk-sns
  dependency-version: 1.100.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: rust-deps
- dependency-name: aws-sdk-servicequotas
  dependency-version: 1.101.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: rust-deps
- dependency-name: aws-sdk-sts
  dependency-version: 1.104.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: rust-deps
- dependency-name: aws-sigv4
  dependency-version: 1.4.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-deps
- dependency-name: aws-smithy-types
  dependency-version: 1.4.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-deps
- dependency-name: serde_json
  dependency-version: 1.0.150
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-deps
- dependency-name: rcgen
  dependency-version: 0.14.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-deps
- dependency-name: rustls
  dependency-version: 0.23.40
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-deps
- dependency-name: uuid
  dependency-version: 1.23.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: rust-deps
- dependency-name: clap
  dependency-version: 4.6.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: rust-deps
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels May 24, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update rust code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants