Skip to content

build(deps): bump the simple2 group across 1 directory with 3 updates#35898

Closed
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/cargo/simple2-d4d0adce40
Closed

build(deps): bump the simple2 group across 1 directory with 3 updates#35898
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/cargo/simple2-d4d0adce40

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 7, 2026
edited
Loading

Bumps the simple2 group with 3 updates in the / directory: native-tls, semver and socket2.

Updates native-tls from 0.2.14 to 0.2.18

Release notes

Sourced from native-tls's releases.

v0.2.17

What's Changed

Full Changelog: rust-native-tls/rust-native-tls@v0.2.16...v0.2.17

v0.2.16

Full Changelog: rust-native-tls/rust-native-tls@v0.2.15...v0.2.16

v0.2.15

What's Changed

New Contributors

Full Changelog: rust-native-tls/rust-native-tls@v0.2.14...v0.2.15

Changelog

Sourced from native-tls's changelog.

[v0.2.18]

  • Fixed min/max protocol selection fallback for very old OpenSSL versions.

[v0.2.17]

  • Added support for ALPN on the server side on non-Apple platforms.
  • Fixed iOS + ALPN feature flag.

[v0.2.16]

  • Added TLS 1.3 as an option on non-Apple platforms. Apple platforms will fall back to TLS 1.2 when it's allowed, or fail due to lack of TLS 1.3 in the Security.framework.
  • Added stack_from_pem (except iOS).
  • Upgraded openssl-probe.
  • Upgraded Security.framework bindings.
  • Simplified cfg()s to support all non-macOS Apple platforms.

[v0.2.15]

  • Set default minimum TLS version to 1.2 (TLS 1.1 has been deprecated since 2021)
  • Upgraded code to edition 2021

[v0.2.12]

Fixed

  • Stopped using a deprecated openssl-probe API.

[v0.2.11]

Fixed

  • Removed an unused build dependency.

[v0.2.10]

Fixed

  • Fixed the build for iOS.

[v0.2.9]

Added

  • Added Identity::from_pkcs8.

[v0.2.8]

Fixed

... (truncated)

Commits
  • 3cf1877 TLS 1.3 min/max fallback for old OpenSSL versions
  • a352cb3 Exclude unused files from the package
  • be13f94 Release 0.2.17
  • 8213e1d fmt
  • c250fa7 Test features
  • bd165e9 Work around set_alpn_select_callback lifetime issues
  • 64439ad Use separate feature flag for server-side ALPN
  • aa71c45 Common helper for alpn
  • 1be1ac9 add ALPN server side test
  • f640501 Add ALPN implement for schannel
  • Additional commits viewable in compare view

Updates semver from 1.0.27 to 1.0.28

Release notes

Sourced from semver's releases.

1.0.28

  • Documentation improvements
Commits
  • 7625c7a Release 1.0.28
  • fd404d0 Merge pull request 351 from czy-29/master
  • f75f26e The doc_auto_cfg and doc_cfg features have been merged
  • 9e2bfa2 Enable serde on docs.rs and automatically add serde flag to the docs
  • 8591f23 Unpin CI miri toolchain
  • 66bdd2c Pin CI miri to nightly-2026-02-11
  • 324ffce Switch from cargo bench to criterion
  • 34133a5 Update actions/upload-artifact@v5 -> v6
  • 7f935ff Update actions/upload-artifact@v4 -> v5
  • c07fb91 Switch from test::black_box to std::hint::black_box
  • Additional commits viewable in compare view

Updates socket2 from 0.6.0 to 0.6.3

Changelog

Sourced from socket2's changelog.

0.6.3

  • Added support for wasm32-wasip2.
  • Added Socket::(set_)ip_transparent_v6.
  • Added Socket::set_tcp_ack_frequency.
  • Support windows-sys v0.61 in addition to v0.60.

POTENTIALLY BREAKING The MSRV of windows-sys v0.61 is 1.71. To use socket2 with its MSRV of 1.70, please downgrade windows-sys to v0.60.x. This can be done using: cargo update windows-sys --precise 0.60.2

0.6.2

  • MsgHdr and MsgHdrMut are marked as transparent meaning both have the same layout as msghdr on Unix and WSAMSG on Windows (rust-lang/socket2#635).
  • Don't set SO_NOSIGPIPE when accepting sockets, this is inherited from the parent socket (rust-lang/socket2#632).
  • Fixes Socket::tcp_notsent_lowat by using the correct argument type (rust-lang/socket2#622).

0.6.1

Added

Changed

Commits
  • 642df44 Release v0.6.3
  • e47157c Fix broken Windows MSRV CI (#641)
  • 0955c52 Add wasm32-wasip2 target support (#639)
  • 1a24057 Add Socket::(set_)ip_transparent_v6
  • b1f6b27 Update to windows-sys 0.61
  • 43ba0ed Add capability to set TCP ACK Frequency on Windows (#638)
  • 9a30f4f Release v0.6.2
  • 3403a44 make MsgHdr and MsgHdrMut repr(transparent) to allow legally obtaining ...
  • feac83a Don't set SO_NOSIGPIPE when accepting sockets (#632)
  • 3fe6576 Test MSRV on Windows in CI
  • Additional commits viewable in compare view

@dependabot dependabot Bot added the A-dependencies Area: dependency upgrades label Apr 7, 2026
@dependabot dependabot Bot requested review from a team, DAlperin and SangJunBak as code owners April 7, 2026 19:33
@dependabot dependabot Bot requested a review from pH14 April 7, 2026 19:33
@github-actions
Copy link
Copy Markdown
Contributor

github-actions Bot commented Apr 7, 2026

Thanks for opening this PR! Here are a few tips to help make the review process smooth for everyone.

PR title guidelines

  • Use imperative mood: "Fix X" not "Fixed X" or "Fixes X"
  • Be specific: "Fix panic in catalog sync when controller restarts" not "Fix bug" or "Update catalog code"
  • Prefix with area if helpful: compute: , storage: , adapter: , sql:

Pre-merge checklist

  • The PR title is descriptive and will make sense in the git log.
  • This PR has adequate test coverage / QA involvement has been duly considered. (trigger-ci for additional test/nightly runs)
  • If this PR includes major user-facing behavior changes, I have pinged the relevant PM to schedule a changelog post.
  • This PR has an associated up-to-date design doc, is a design doc (template), or is sufficiently small to not require a design.
  • If this PR evolves an existing $T ⇔ Proto$T mapping (possibly in a backwards-incompatible way), then it is tagged with a T-proto label.
  • If this PR will require changes to cloud orchestration or tests, there is a companion cloud PR to account for those changes that is tagged with the release-blocker label (example).

@dependabot dependabot Bot force-pushed the dependabot/cargo/simple2-d4d0adce40 branch 2 times, most recently from ba3eeb7 to af0419d Compare April 8, 2026 10:04
@dependabot
build(deps): bump the simple2 group across 1 directory with 3 updates
8f3dc66 
Bumps the simple2 group with 3 updates in the / directory: [semver](https://github.com/dtolnay/semver), [native-tls](https://github.com/rust-native-tls/rust-native-tls) and [socket2](https://github.com/rust-lang/socket2).


Updates `semver` from 1.0.27 to 1.0.28
- [Release notes](https://github.com/dtolnay/semver/releases)
- [Commits](dtolnay/semver@1.0.27...1.0.28)

Updates `native-tls` from 0.2.14 to 0.2.18
- [Release notes](https://github.com/rust-native-tls/rust-native-tls/releases)
- [Changelog](https://github.com/rust-native-tls/rust-native-tls/blob/main/CHANGELOG.md)
- [Commits](rust-native-tls/rust-native-tls@v0.2.14...v0.2.18)

Updates `socket2` from 0.6.0 to 0.6.3
- [Release notes](https://github.com/rust-lang/socket2/releases)
- [Changelog](https://github.com/rust-lang/socket2/blob/master/CHANGELOG.md)
- [Commits](rust-lang/socket2@v0.6.0...v0.6.3)

---
updated-dependencies:
- dependency-name: semver
  dependency-version: 1.0.28
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: simple2
- dependency-name: native-tls
  dependency-version: 0.2.18
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: simple2
- dependency-name: socket2
  dependency-version: 0.6.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: simple2
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/cargo/simple2-d4d0adce40 branch from af0419d to 8f3dc66 Compare April 8, 2026 11:46
bosconi
bosconi approved these changes Apr 8, 2026
View reviewed changes
Copy link
Copy Markdown
Member

@bosconi bosconi left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

looks good

@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github Apr 9, 2026

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot Bot closed this Apr 9, 2026
@dependabot dependabot Bot deleted the dependabot/cargo/simple2-d4d0adce40 branch April 9, 2026 01:21
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@bosconi bosconi bosconi approved these changes

@SangJunBak SangJunBak Awaiting requested review from SangJunBak

@DAlperin DAlperin Awaiting requested review from DAlperin

@pH14 pH14 Awaiting requested review from pH14 pH14 was automatically assigned from MaterializeInc/cloud

Assignees

No one assigned

Labels

A-dependencies Area: dependency upgrades

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@bosconi