build(deps): bump reqwest from 0.11.24 to 0.12.4 #477

dependabot · 2024-04-19T19:56:09Z

Bumps reqwest from 0.11.24 to 0.12.4.

Release notes

v0.12.4

What's Changed

Add zstd support, enabled with zstd Cargo feature (thanks @paolobarbolini!)

Add ClientBuilder::read_timeout(Duration), which applies the duration for each read operation. The timeout resets after a successful read.

New Contributors

@SamuelMarks made their first contribution in seanmonstar/reqwest#2245

v0.12.3

What's Changed

Add FromStr for dns::Name.

Add ClientBuilder::built_in_webpki_certs(bool) to enable them separately.

Add ClientBuilder::built_in_native_certs(bool) to enable them separately.

Fix sending content-length: 0 for GET requests.

Fix response body content_length() to return value when timeout is configured.

Fix ClientBuilder::resolve() to use lowercase domain names.

New Contributors

@zuisong made their first contribution in seanmonstar/reqwest#2207

@djc made their first contribution in seanmonstar/reqwest#2222

@krant made their first contribution in seanmonstar/reqwest#2226

@Kriskras99 made their first contribution in seanmonstar/reqwest#2236

Full Changelog: seanmonstar/reqwest@v0.12.2...v0.12.3

v0.12.2

What's Changed

Fix missing ALPN when connecting to socks5 proxy with rustls.

Fix TLS version limits with rustls.

Fix not detected ALPN h2 from server with native-tls.

New Contributors

@cxw620 made their first contribution in seanmonstar/reqwest#2165

Full Changelog: seanmonstar/reqwest@v0.12.1...v0.12.2

v0.12.1

What's Changed

Fix ClientBuilder::interface() when no TLS is enabled.

Fix TlsInfo::peer_certificate() being truncated with rustls.

Fix panic if http2 feature disabled but TLS negotiated h2 in ALPN.

Fix Display for Error to not include its source error.

New Contributors

@atouchet made their first contribution in seanmonstar/reqwest#2193

@mbme made their first contribution in seanmonstar/reqwest#2195

Full Changelog: seanmonstar/reqwest@v0.12.0...v0.12.1

... (truncated)

Changelog

Sourced from reqwest's changelog.

v0.12.4

Add zstd support, enabled with zstd Cargo feature.

Add ClientBuilder::read_timeout(Duration), which applies the duration for each read operation. The timeout resets after a successful read.

v0.12.3

Add FromStr for dns::Name.

Add ClientBuilder::built_in_webpki_certs(bool) to enable them separately.

Add ClientBuilder::built_in_native_certs(bool) to enable them separately.

Fix sending content-length: 0 for GET requests.

Fix response body content_length() to return value when timeout is configured.

Fix ClientBuilder::resolve() to use lowercase domain names.

v0.12.2

Fix missing ALPN when connecting to socks5 proxy with rustls.

Fix TLS version limits with rustls.

Fix not detected ALPN h2 from server with native-tls.

v0.12.1

Fix ClientBuilder::interface() when no TLS is enabled.

Fix TlsInfo::peer_certificate() being truncated with rustls.

Fix panic if http2 feature disabled but TLS negotiated h2 in ALPN.

Fix Display for Error to not include its source error.

v0.12.0

Upgrade to hyper, http, and http-body v1.

Add better support for converting to and from http::Request and http::Response.

Add http2 optional cargo feature, default on.

Add charset optional cargo feature, default on.

Add macos-system-configuration cargo feature, default on.

Change all optional dependencies to no longer be exposed as implicit features.

Add ClientBuilder::interface(str) to specify the local interface to bind to.

Experimental: disables the http3 feature temporarily.

v0.11.27

Add hickory-dns feature, deprecating trust-dns.

(wasm) Fix Form::text() to not set octet-stream for plain text fields.

v0.11.26

Revert system-configuration upgrade, which broke MSRV on macOS.

v0.11.25

Fix Certificate::from_pem_bundle() parsing.

... (truncated)

Commits

de5dbb1 v0.12.4
0f126f5 tests: fix blocking test about empty bodies and content-length
1073881 feat: add zstd support (#1866)
1af8945 feat: add ClientBuilder::read_timeout(dur) (#2241)
e99da85 refactor: fix warnings related to mutability of self (#2245)
0720159 v0.12.3
9209695 Remove duplicate example for ClientBuilder::default_headers (#2236)
e3a1565 fix: use lower case domain string when using resolve and resolve_to_addrs...
b4c491a feat: allow fine-grained root certs for rustls (#2232)
cf4295d chore: update winreg to 0.52.0 (#2226)
Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot will merge this PR once CI passes on it, as requested by @mdn-bot.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

mdn-bot

@dependabot squash and merge

dependabot · 2024-04-19T19:58:52Z

One of your CI runs failed on this pull request, so Dependabot won't merge it.

Dependabot will still automatically merge this pull request if you amend it and your tests pass.

mdn-bot

@dependabot squash and merge

mdn-bot

@dependabot squash and merge

mdn-bot

@dependabot squash and merge

mdn-bot

@dependabot squash and merge

mdn-bot

@dependabot squash and merge

mdn-bot

@dependabot squash and merge

mdn-bot

@dependabot squash and merge

mdn-bot

@dependabot squash and merge

mdn-bot

@dependabot squash and merge

mdn-bot

@dependabot squash and merge

mdn-bot

@dependabot squash and merge

mdn-bot

@dependabot squash and merge

mdn-bot

@dependabot squash and merge

mdn-bot

@dependabot squash and merge

mdn-bot

@dependabot squash and merge

mdn-bot

@dependabot squash and merge

mdn-bot

@dependabot squash and merge

mdn-bot

@dependabot squash and merge

mdn-bot

@dependabot squash and merge

mdn-bot

@dependabot squash and merge

mdn-bot

@dependabot squash and merge

mdn-bot

@dependabot squash and merge

Bumps [reqwest](https://github.com/seanmonstar/reqwest) from 0.11.24 to 0.12.4. - [Release notes](https://github.com/seanmonstar/reqwest/releases) - [Changelog](https://github.com/seanmonstar/reqwest/blob/master/CHANGELOG.md) - [Commits](seanmonstar/reqwest@v0.11.24...v0.12.4) --- updated-dependencies: - dependency-name: reqwest dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

mdn-bot

@dependabot squash and merge

caugner · 2024-05-17T18:13:49Z

I was unable to resolve the remaining issue:

error[E0277]: `?` couldn't convert the error to `FxaError`
   --> src/fxa/mod.rs:178:57
    |
178 |         let http_response = async_http_client(req).await?;
    |                                                         ^ the trait `std::convert::From<openidconnect::reqwest::Error<reqwest::error::Error>>` is not implemented for `FxaError`
    |
    = note: the question mark operation (`?`) implicitly performs a conversion on the error value using the `From` trait
    = help: the following other types implement trait `std::convert::From<T>`:
              <FxaError as std::convert::From<r2d2::Error>>
              <FxaError as std::convert::From<serde_json::Error>>
              <FxaError as std::convert::From<anyhow::Error>>
              <FxaError as std::convert::From<url::ParseError>>
              <FxaError as std::convert::From<openidconnect::reqwest::Error<reqwest::Error>>>
              <FxaError as std::convert::From<BlockingError>>
              <FxaError as std::convert::From<diesel::result::Error>>
    = note: required for `Result<FxAUser, FxaError>` to implement `FromResidual<Result<Infallible, openidconnect::reqwest::Error<reqwest::error::Error>>>`

I came across ramosbugs/oauth2-rs#238, which might explain this, and will be available in oauth2 v5.

argl · 2024-05-27T08:45:56Z

Indeed, it will all come together with openidconnect-rs version 4 it seems, still in alpha.

argl · 2024-05-27T08:56:09Z

openidconnect-rs is still dependent on reqwest 0.11, which does not play nicely with the bump to 0.12 here. When openidconnect-rs gets to major version 4.x, this should be resolved (barring other code changes because of changes in reqwest 0.12)

dependabot · 2024-05-27T08:56:11Z

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

dependabot bot requested a review from mdn-bot as a code owner April 19, 2024 19:56

dependabot bot added the dependencies Pull requests that update a dependency file label Apr 19, 2024

dependabot bot mentioned this pull request Apr 19, 2024

build(deps): bump reqwest from 0.11.24 to 0.12.3 #472

Closed