mirror of
https://github.com/servo/servo.git
synced 2025-08-06 22:15:33 +01:00
5180 commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
dependabot[bot]
|
03ab419793
|
build(deps): bump bytemuck_derive from 1.9.3 to 1.10.0 (#38205)
Bumps [bytemuck_derive](https://github.com/Lokathor/bytemuck) from 1.9.3 to 1.10.0. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/Lokathor/bytemuck/blob/main/changelog.md">bytemuck_derive's changelog</a>.</em></p> <blockquote> <h1><code>bytemuck</code> changelog</h1> <h2>1.23.1</h2> <ul> <li>Added a windows-only <code>ZeroableInOption</code> impl for "stdcall" functions.</li> </ul> <h2>1.23</h2> <ul> <li><code>impl_core_error</code> crate feature adds <code>core::error::Error</code> impl.</li> <li>More <code>ZeroableInOption</code> impls.</li> </ul> <h2>1.22</h2> <ul> <li>Add the <code>pod_saturating</code> feature, which adds <code>Pod</code> impls for <code>Saturating<T></code> when <code>T</code> is already <code>Pod</code>.</li> <li>A bump in the minimum <code>bytemuck_derive</code> dependency from 1.4.0 to 1.4.1 to avoid a bug if you have a truly ancient <code>cargo.lock</code> file sitting around.</li> <li>Adds <code>Send</code> and <code>Sync</code> impls to <code>BoxBytes</code>.</li> </ul> <h2>1.21</h2> <ul> <li>Implement <code>Pod</code> and <code>Zeroable</code> for <code>core::arch::{x86, x86_64}::__m512</code>, <code>__m512d</code> and <code>__m512i</code> without nightly. Requires Rust 1.72, and is gated through the <code>avx512_simd</code> cargo feature.</li> <li>Allow the use of <code>must_cast_mut</code> and <code>must_cast_slice_mut</code> in const contexts. Requires Rust 1.83, and is gated through the <code>must_cast_extra</code> cargo feature.</li> <li>internal: introduced the <code>maybe_const_fn</code> macro that allows defining some function to be const depending upon some <code>cfg</code> predicate.</li> </ul> <h2>1.20</h2> <ul> <li>New functions to allocate zeroed <code>Arc</code> and <code>Rc</code>. Requires Rust 1.82</li> <li><code>TransparentWrapper</code> impls for <code>core::cmp::Reverse</code> and <code>core::num::Saturating</code>.</li> <li>internal: Simplified the library's <code>fill_zeroes</code> calls to <code>write_bytes</code></li> </ul> <h2>1.19</h2> <ul> <li>Adds the <code>#[track_caller]</code> attribute to functions which may panic.</li> </ul> <h2>1.18</h2> <ul> <li>Adds the <code>latest_stable_rust</code> cargo feature, which is a blanket feature that turns all other features on that are both sound and compatible with Stable rust.</li> </ul> <h2>1.17.1</h2> <ul> <li>Adds <code>#[repr(C)]</code> to the <code>union Transmute<A, B></code> type that's used internally for most of the transmutations.</li> </ul> <h2>1.17.0</h2> <ul> <li>Makes the <code>must_cast</code> versions of the by-value and by-ref casts be <code>const</code>.</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/Lokathor/bytemuck/commits/bytemuck_derive-v1.10.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
0f55aa292e
|
build(deps): bump serde_json from 1.0.140 to 1.0.141 (#38204)
Bumps [serde_json](https://github.com/serde-rs/json) from 1.0.140 to 1.0.141. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/serde-rs/json/releases">serde_json's releases</a>.</em></p> <blockquote> <h2>v1.0.141</h2> <ul> <li>Optimize string escaping during serialization (<a href="https://redirect.github.com/serde-rs/json/issues/1273">#1273</a>, thanks <a href="https://github.com/conradludgate"><code>@conradludgate</code></a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
2d34a2b13c
|
build(deps): bump async-process from 2.3.1 to 2.4.0 (#38203)
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
50603e5074
|
build(deps): bump libredox from 0.1.4 to 0.1.6 (#38201)
Bumps libredox from 0.1.4 to 0.1.6. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
Josh Matthews
|
b8a6600e9a
|
compositing: Remove unused dependency. (#38179)
There are no uses of `net` within the `compositing` crate. Signed-off-by: Josh Matthews <josh@joshmatthews.net> |
||
Alex Touchet
|
7ab0d91109
|
Update rustc-hash and rustix (#38173)
Update rustc-hash and rustix. Testing: No tests for dependency updates. Signed-off-by: Alex Touchet <26315797+atouchet@users.noreply.github.com> |
||
|
dependabot[bot]
|
a52f9fd9a9
|
build(deps): bump webpki-roots from 1.0.1 to 1.0.2 (#38172)
Bumps [webpki-roots](https://github.com/rustls/webpki-roots) from 1.0.1 to 1.0.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/rustls/webpki-roots/releases">webpki-roots's releases</a>.</em></p> <blockquote> <h2>1.0.2</h2> <ul> <li>Add "TrustAsia TLS ECC Root CA" and "TrustAsia TLS RSA Root CA" <a href="https://bugzilla.mozilla.org/show_bug.cgi?id=1972384">https://bugzilla.mozilla.org/show_bug.cgi?id=1972384</a></li> <li>Add "SwissSign RSA TLS Root CA 2022 - 1" <a href="https://bugzilla.mozilla.org/show_bug.cgi?id=1845047">https://bugzilla.mozilla.org/show_bug.cgi?id=1845047</a></li> </ul> <h2>What's Changed</h2> <ul> <li>Update dependencies by <a href="https://github.com/djc"><code>@djc</code></a> in <a href="https://redirect.github.com/rustls/webpki-roots/pull/102">rustls/webpki-roots#102</a></li> <li>1.0.2: track July 2025 CCADB changes by <a href="https://github.com/ctz"><code>@ctz</code></a> in <a href="https://redirect.github.com/rustls/webpki-roots/pull/103">rustls/webpki-roots#103</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/rustls/webpki-roots/compare/v/1.0.1...v/1.0.2">https://github.com/rustls/webpki-roots/compare/v/1.0.1...v/1.0.2</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
501bd98121
|
build(deps): bump clipboard-win from 5.4.0 to 5.4.1 (#38171)
Bumps [clipboard-win](https://github.com/DoumanAsh/clipboard-win) from 5.4.0 to 5.4.1. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/DoumanAsh/clipboard-win/commits">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
8d9d2ee2c2
|
build(deps): bump sysinfo from 0.36.0 to 0.36.1 (#38170)
Bumps [sysinfo](https://github.com/GuillaumeGomez/sysinfo) from 0.36.0 to 0.36.1. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/GuillaumeGomez/sysinfo/blob/master/CHANGELOG.md">sysinfo's changelog</a>.</em></p> <blockquote> <h1>0.36.1</h1> <ul> <li>Linux: Improve processor CPU usage computation.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
58fee976d9
|
build(deps): bump cc from 1.2.29 to 1.2.30 (#38169)
Bumps [cc](https://github.com/rust-lang/cc-rs) from 1.2.29 to 1.2.30. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/rust-lang/cc-rs/releases">cc's releases</a>.</em></p> <blockquote> <h2>cc-v1.2.30</h2> <h3>Other</h3> <ul> <li>define _REENTRANT by default (<a href="https://redirect.github.com/rust-lang/cc-rs/pull/1496">#1496</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/rust-lang/cc-rs/blob/main/CHANGELOG.md">cc's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/rust-lang/cc-rs/compare/cc-v1.2.29...cc-v1.2.30">1.2.30</a> - 2025-07-18</h2> <h3>Other</h3> <ul> <li>define _REENTRANT by default (<a href="https://redirect.github.com/rust-lang/cc-rs/pull/1496">#1496</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
Alex Touchet
|
adb804772b
|
Update tempfile (#38153)
Update tempfile. Testing: No tests for dependency update. Signed-off-by: Alex Touchet <26315797+atouchet@users.noreply.github.com> |
||
|
dependabot[bot]
|
dcae2dd9fd
|
build(deps): bump ab_glyph from 0.2.30 to 0.2.31 (#38148)
Bumps [ab_glyph](https://github.com/alexheretic/ab-glyph) from 0.2.30 to 0.2.31. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/alexheretic/ab-glyph/releases">ab_glyph's releases</a>.</em></p> <blockquote> <h2>ab-glyph-0.2.31</h2> <ul> <li>Add "gvar-alloc" feature enabled by default (activates <em>ttf-parser</em> "gvar-alloc" feature). Provides full gvar table support.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
d5907a8d66
|
build(deps): bump zbus from 5.8.0 to 5.9.0 (#38144)
Bumps [zbus](https://github.com/dbus2/zbus) from 5.8.0 to 5.9.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/dbus2/zbus/releases">zbus's releases</a>.</em></p> <blockquote> <h2>🔖 zbus 5.9.0</h2> <ul> <li>🧵 Remove deadlocks in Connection name request tasks, resulting in leaks under certain circumstances.</li> <li>🐛 When registering names, allow name replacement by default.</li> <li>✨ Allow setting request name flags in <code>connection::Builder</code>.</li> <li>✨ Proper Default impl for <code>RequestNameFlags</code>. This change is theoretically an API break for users who assumed the default value to be empty.</li> <li>🧑💻 Add <code>fdo::StartServiceReply</code> type. In 6.0 this will be the return type of <code>fdo::DBusProxy::start_service_by_name</code>. For now, just provide a <code>TryFrom<u32></code>.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
sagudev
|
86ea2641f8
|
servoshell: Update egui to 0.32 (#38119)
We also need to bump egui-file-dialog and accesskit_winit. Changes are done based on migration paths provided by egui. Testing: No tests for servoshell Fixes: #38117 Signed-off-by: sagudev <16504129+sagudev@users.noreply.github.com> |
||
|
Alex Touchet
|
8f9d484693
|
Update non-breaking dependencies (#38108)
Update non-breaking dependencies. Testing: No tests for dependency updates. Signed-off-by: Alex Touchet <26315797+atouchet@users.noreply.github.com> |
||
|
Alex Touchet
|
cbdf72b4eb
|
Update wasm-bindgen and associated dependencies (#38103)
Update wasm-bindgen and associated dependencies. Testing: No tests for dependency updates. Signed-off-by: Alex Touchet <26315797+atouchet@users.noreply.github.com> |
||
batu_hoang
|
8e2d2bde6f
|
Webdriver GoBack and GoForward commands wait for navigation complete (#37950)
After sending `GoBack` or `GoForward` command, webdriver wait for the navigation complete. It can be achieved by waiting for `WebViewDelegate::notify_history_changed` Testing: `tests/wpt/meta/webdriver/tests/classic/back/back.py` `tests/wpt/meta/webdriver/tests/classic/forward/forward.py` --------- Signed-off-by: batu_hoang <longvatrong111@gmail.com> Signed-off-by: Josh Matthews <josh@joshmatthews.net> Signed-off-by: batu_hoang <hoang.binh.trong@huawei.com> Co-authored-by: Josh Matthews <josh@joshmatthews.net> |
||
|
Alex Touchet
|
1cd249dfe9
|
Update jobserver (#38074)
Update jobserver. Testing: No tests for dependency update. Signed-off-by: Alex Touchet <26315797+atouchet@users.noreply.github.com> |
||
|
Alex Touchet
|
f5b0165e54
|
Update core-foundation (#38073)
Update core-foundation. Testing: No tests for dependency update. Signed-off-by: Alex Touchet <26315797+atouchet@users.noreply.github.com> |
||
|
dependabot[bot]
|
6ea7638c21
|
build(deps): bump memmap2 from 0.9.5 to 0.9.7 (#38071)
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
18699bedf5
|
build(deps): bump rgb from 0.8.51 to 0.8.52 (#38068)
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
949236c559
|
build(deps): bump hermit-abi from 0.5.0 to 0.5.2 (#38065)
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
449556d421
|
build(deps): bump async-compression from 0.4.25 to 0.4.27 (#38067)
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
8a19bc9145
|
build(deps): bump crc32fast from 1.4.2 to 1.5.0 (#38064)
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
Alex Touchet
|
cd1fdbbeeb
|
Update h2 and hyper (#38039)
Update h2 and hyper. Testing: No tests for dependency updates. Signed-off-by: Alex Touchet <26315797+atouchet@users.noreply.github.com> |
||
|
Alex Touchet
|
833484ca11
|
Update ahash and ppv-lite86 (#38037)
Update ahash and ppv-lite86. Testing: No tests for dependency updates. Signed-off-by: Alex Touchet <26315797+atouchet@users.noreply.github.com> |
||
|
Alex Touchet
|
cd91517a27
|
Update polling and de-dupe hermit-abi (#38013)
Update polling and de-dupe hermit-abi. Testing: No tests for dependency update. --------- Signed-off-by: Alex Touchet <26315797+atouchet@users.noreply.github.com> Signed-off-by: Mukilan Thiyagarajan <mukilan@igalia.com> Co-authored-by: Mukilan Thiyagarajan <mukilan@igalia.com> |
||
|
sagudev
|
9b5b26386c
|
canvas: Use wrapped kurbo::BezPath for path everywhere (#37967)
This PR removes existing path(segment) abstractions in favor of `kurbo::BezPath`, well actually wrapped `kurbo::BezPath`, to ensure building of valid paths. This allows us better Path2D building in script and doing all validation and segmentation there and also allows us remove blocking is_point_in_path on Path2D as we can now do this in script. Current path is still done on canvas thread side as it will be harder to move to script (will be done as a follow up), but it now uses this new path abstraction. Using kurbo also allows us to ditch our manual svgpath parser with the one provided by kurbo. Same code is stolen from: https://github.com/servo/servo/pull/36821. Testing: Existing WPT tests Fixes: #37904 wpt run: https://github.com/sagudev/servo/actions/runs/16172191716 --------- Signed-off-by: sagudev <16504129+sagudev@users.noreply.github.com> |
||
|
dependabot[bot]
|
d40e9f82a2
|
build(deps): bump winnow from 0.7.11 to 0.7.12 (#38011)
Bumps [winnow](https://github.com/winnow-rs/winnow) from 0.7.11 to 0.7.12. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/winnow-rs/winnow/blob/main/CHANGELOG.md">winnow's changelog</a>.</em></p> <blockquote> <h2>[0.7.12] - 2025-07-11</h2> <h3>Features</h3> <ul> <li>Add <code>impl Accumulate for VecDeque</code></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
f75d49e538
|
build(deps): bump h2 from 0.3.26 to 0.3.27 (#38009)
Bumps [h2](https://github.com/hyperium/h2) from 0.3.26 to 0.3.27. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/hyperium/h2/blob/v0.3.27/CHANGELOG.md">h2's changelog</a>.</em></p> <blockquote> <h1>0.3.27 (July 11, 2025)</h1> <ul> <li>Fix notifying wakers when detecting local stream errors.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
36847fcf66
|
build(deps): bump aws-lc-rs from 1.13.1 to 1.13.2 (#38008)
Bumps [aws-lc-rs](https://github.com/aws/aws-lc-rs) from 1.13.1 to 1.13.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/aws/aws-lc-rs/releases">aws-lc-rs's releases</a>.</em></p> <blockquote> <h2>aws-lc-rs v1.13.2</h2> <h2>What's Changed</h2> <ul> <li>aws-lc-sys v0.30.0 is aligned w/ <a href="https://github.com/aws/aws-lc/releases">AWS-LC v1.55.0</a> by <a href="https://github.com/justsmth"><code>@justsmth</code></a> in <a href="https://redirect.github.com/aws/aws-lc-rs/pull/838">aws/aws-lc-rs#838</a></li> <li>expose algorithm used to create ecdsa keypair by <a href="https://github.com/soundofspace"><code>@soundofspace</code></a> in <a href="https://redirect.github.com/aws/aws-lc-rs/pull/834">aws/aws-lc-rs#834</a></li> <li>Change 'try_sign' to pub in ED25519 module by <a href="https://github.com/theswiftfox"><code>@theswiftfox</code></a> in <a href="https://redirect.github.com/aws/aws-lc-rs/pull/832">aws/aws-lc-rs#832</a></li> </ul> <h3>Build improvements</h3> <ul> <li>Fix target-specific env variable usage by <a href="https://github.com/justsmth"><code>@justsmth</code></a> in <a href="https://redirect.github.com/aws/aws-lc-rs/pull/810">aws/aws-lc-rs#810</a></li> <li>Improved support for msys2 and "prebuilt-nasm" by <a href="https://github.com/justsmth"><code>@justsmth</code></a> in <a href="https://redirect.github.com/aws/aws-lc-rs/pull/830">aws/aws-lc-rs#830</a></li> </ul> <h3>Issues Being Resolved</h3> <ul> <li>Failed to Build aws-lc-sys 0.29.0 on Windows with target x86_64-pc-windows-gnu -- <a href="https://redirect.github.com/aws/aws-lc-rs/issues/835">aws/aws-lc-rs#835</a></li> <li>Failed to Build aws-lc-sys 0.29.0 on Windows -- <a href="https://redirect.github.com/aws/aws-lc-rs/issues/833">aws/aws-lc-rs#833</a></li> <li>MSYS2 - "No rule to make target" for libaws_lc_0_29_0_crypto.a -- <a href="https://redirect.github.com/aws/aws-lc-rs/issues/814">aws/aws-lc-rs#814</a></li> </ul> <h2>Other Merged PRs</h2> <ul> <li>Disallow external bindgen when AWS_LC_SYS_EXTERNAL_BINDGEN=0 by <a href="https://github.com/justsmth"><code>@justsmth</code></a> in <a href="https://redirect.github.com/aws/aws-lc-rs/pull/808">aws/aws-lc-rs#808</a></li> <li>Test w/ CMake 4.0 release by <a href="https://github.com/justsmth"><code>@justsmth</code></a> in <a href="https://redirect.github.com/aws/aws-lc-rs/pull/756">aws/aws-lc-rs#756</a></li> <li>Fix CI for i686-pc-windows-gnu by <a href="https://github.com/justsmth"><code>@justsmth</code></a> in <a href="https://redirect.github.com/aws/aws-lc-rs/pull/809">aws/aws-lc-rs#809</a></li> <li>Fix spelling errors by <a href="https://github.com/atouchet"><code>@atouchet</code></a> in <a href="https://redirect.github.com/aws/aws-lc-rs/pull/817">aws/aws-lc-rs#817</a></li> <li>Ensure ConstPointers don't outlive parent by <a href="https://github.com/justsmth"><code>@justsmth</code></a> in <a href="https://redirect.github.com/aws/aws-lc-rs/pull/693">aws/aws-lc-rs#693</a></li> <li>Fix CI for riscv64gc-unknown-linux-gnu by <a href="https://github.com/justsmth"><code>@justsmth</code></a> in <a href="https://redirect.github.com/aws/aws-lc-rs/pull/816">aws/aws-lc-rs#816</a></li> <li>Prepare aws-lc-fips-sys v0.13.7 by <a href="https://github.com/justsmth"><code>@justsmth</code></a> in <a href="https://redirect.github.com/aws/aws-lc-rs/pull/823">aws/aws-lc-rs#823</a></li> <li>Fix CI by <a href="https://github.com/justsmth"><code>@justsmth</code></a> in <a href="https://redirect.github.com/aws/aws-lc-rs/pull/825">aws/aws-lc-rs#825</a></li> <li>Prepare aws-lc-sys v0.30.0 by <a href="https://github.com/justsmth"><code>@justsmth</code></a> in <a href="https://redirect.github.com/aws/aws-lc-rs/pull/829">aws/aws-lc-rs#829</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/atouchet"><code>@atouchet</code></a> made their first contribution in <a href="https://redirect.github.com/aws/aws-lc-rs/pull/817">aws/aws-lc-rs#817</a></li> <li><a href="https://github.com/theswiftfox"><code>@theswiftfox</code></a> made their first contribution in <a href="https://redirect.github.com/aws/aws-lc-rs/pull/832">aws/aws-lc-rs#832</a></li> <li><a href="https://github.com/soundofspace"><code>@soundofspace</code></a> made their first contribution in <a href="https://redirect.github.com/aws/aws-lc-rs/pull/834">aws/aws-lc-rs#834</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/aws/aws-lc-rs/compare/v1.13.1...v1.13.2">https://github.com/aws/aws-lc-rs/compare/v1.13.1...v1.13.2</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
Kingsley Yung
|
464d71ecfc
|
Implement cookie expiry date parsing algorithm (#37715)
The cookie-rs library parses the cookie expiry date based on the format from RFC 2616 (for HTTP/1.1), which is stricter than the format from RFC 6265 (for HTTP cookie). This patch implements the cookie expiry date algorithm from RFC 6265. When Cookie::parse fails in parsing the expiry date, we try to parse the expiry again with this algorithm, to provide extra compatibility with legacy systems. Testing: Pass a WPT test that was expected to fail before, and add a unit test. Fixes: #36452 --------- Signed-off-by: Kingsley Yung <kingsley@kkoyung.dev> |
||
|
dependabot[bot]
|
a02877e6b4
|
build(deps): bump clap from 4.5.40 to 4.5.41 (#37988)
Bumps [clap](https://github.com/clap-rs/clap) from 4.5.40 to 4.5.41. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/clap-rs/clap/blob/master/CHANGELOG.md">clap's changelog</a>.</em></p> <blockquote> <h2>[4.5.41] - 2025-07-09</h2> <h3>Features</h3> <ul> <li>Add <code>Styles::context</code> and <code>Styles::context_value</code> to customize the styling of <code>[default: value]</code> like notes in the <code>--help</code></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
32d889f770
|
build(deps): bump xml-rs from 0.8.26 to 0.8.27 (#37990)
Bumps [xml-rs](https://github.com/kornelski/xml-rs) from 0.8.26 to 0.8.27. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/kornelski/xml-rs/blob/main/Changelog.md">xml-rs's changelog</a>.</em></p> <blockquote> <h2>Version 0.8.27</h2> <ul> <li>Added detection of invalid <code><?</code> in attributes</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
b13d6cfc51
|
build(deps): bump rustls from 0.23.28 to 0.23.29 (#37989)
Bumps [rustls](https://github.com/rustls/rustls) from 0.23.28 to 0.23.29. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
f390cc590c
|
build(deps): bump rustls-webpki from 0.103.3 to 0.103.4 (#37987)
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
JoeDow
|
16aca5516d
|
layout: remove the finished animations to avoid to mark their dom nodes dirty (#37954)
Remove the finished animations to avoid marking their dom nodes dirty. The mainly change happens at [stylo PR 216](https://github.com/servo/stylo/pull/216). In Servo's current animation implementation, the finished animations are retained and continue to mark their corresponding DOM nodes as dirty. This can lead to a significant number of unnecessary and expensive reflow operations. For example, during page scrolling, the dirtied state from finished animations forces the whole reflow process on every update_the_rendering cycle, severely impacting scroll performance. The [code comments in stylo repo](https://github.com/servo/stylo/blob/main/style/matching.rs#L752-L755) stated that retaining finished animations was necessary to correctly compute the final frame state for [animation-fill-mode](https://developer.mozilla.org/en-US/docs/Web/CSS/animation-fill-mode). However, test results—including those from WPT test cases and manual verification—indicate that this functionality is already guaranteed without this overhead. Signed-off-by: Martin Robinson <mrobinson@igalia.com> |
||
Steven Novaryo
|
378c4648e4
|
script: Use an implemented pseudo-element to fortype=color ::color-swatch (#37427)
Implement internal pseudo element, which would be resolved as a "Implemented Pseudo Element" within style computation. This is an concrete element that would has a primary style after the style computation, but could match and style resolved like an pseudo element. Therefore, it would have a different behavior compared to how does `pseudo`s that `ServoLayoutNode` had. Where they would not have a concrete element behind it. Note that, due to the nature of these pseudo elements residing inside a UA widget, these pseudo elements would therefore not be accessible in JavaScript by default. This kind of element is required in order to implement the [form control pseudo element](https://drafts.csswg.org/css-forms-1/#pseudo-elements) like `::placeholder`, `::color-swatch`, `::field-text`, etc. See [this docs](https://hackmd.io/@ChaKweTiau/BJ3zRdLQlg) for more details of the implementation. Then, the implemented pseudo element is utilized to implement style matching for input `type=text`. Servo's side of: https://github.com/servo/stylo/pull/212 Testing: No WPT regression. --------- Signed-off-by: stevennovaryo <steven.novaryo@gmail.com> |
||
Jonathan Schwender
|
cae73341b2
|
Update mozjs to 128.13 (#37933)
Bump to the latest Spidermonkey 128 ESR version. Companion PR to https://github.com/servo/mozjs/pull/590 Testing: Covered by existing tests Signed-off-by: Jonathan Schwender <schwenderjonathan@gmail.com> |
||
Euclid Ye
|
3526b7e86e
|
servoshell: Use DeviceIndependentPixel for WebDriver Rect related requests (#37893)
[Spec](https://w3c.github.io/webdriver/#set-window-rect) expects CSS pixel for input and output. Previously, we use Device Pixel for them instead. Testing: Tested manually with different screen DPR and compared with other browsers. Fixes: Task 4 of https://github.com/servo/servo/issues/37804 --------- Signed-off-by: Euclid Ye <yezhizhenjiakang@gmail.com> |
||
Martin Robinson
|
51367c22a6
|
layout: Store most anonymous pseudo-elements in box slots (#37941)
Previously, anonymous boxes, such for anonymous table parts were not associated with their non-pseudo ancestor DOM nodes. This presents a problem when it comes time to clear layout data during incremental layouts. This change reworks the way that pseudo-elements in general are stored in their non-pseudo ancestor DOM nodes, allowing for any number to be placed there. This trades a bit of performance for space, as just adding a vector to the node would add something like 24 bytes of storage to every node. This change should have a neutral runtime memory usage. Testing: This shouldn't change observable behavior and is thus covered by existing WPT tests. It will allow tests to pass in a subsequent PR. Signed-off-by: Martin Robinson <mrobinson@igalia.com> Co-authored-by: Oriol Brufau <obrufau@igalia.com> |
||
|
dependabot[bot]
|
c4abfa8815
|
build(deps): bump content-security-policy from dc1fd32 to e8d4883 (#37924)
Bumps [content-security-policy](https://github.com/servo/rust-content-security-policy) from `dc1fd32` to `e8d4883`. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
4ba5ea5a96
|
build(deps): bump cc from 1.2.28 to 1.2.29 (#37931)
Bumps [cc](https://github.com/rust-lang/cc-rs) from 1.2.28 to 1.2.29. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/rust-lang/cc-rs/releases">cc's releases</a>.</em></p> <blockquote> <h2>cc-v1.2.29</h2> <h3>Other</h3> <ul> <li>Fix target parsing for powerpc (<a href="https://redirect.github.com/rust-lang/cc-rs/pull/1490">#1490</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/rust-lang/cc-rs/blob/main/CHANGELOG.md">cc's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/rust-lang/cc-rs/compare/cc-v1.2.28...cc-v1.2.29">1.2.29</a> - 2025-07-05</h2> <h3>Other</h3> <ul> <li>Fix target parsing for powerpc (<a href="https://redirect.github.com/rust-lang/cc-rs/pull/1490">#1490</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
4ca9014f0f
|
build(deps): bump cfg-expr from 0.20.0 to 0.20.1 (#37930)
Bumps [cfg-expr](https://github.com/EmbarkStudios/cfg-expr) from 0.20.0 to 0.20.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/EmbarkStudios/cfg-expr/releases">cfg-expr's releases</a>.</em></p> <blockquote> <h2>0.20.1</h2> <h3>Changed</h3> <ul> <li><a href="https://redirect.github.com/EmbarkStudios/cfg-expr/pull/80">PR#80</a> updated the builtin target list to 1.88.0.</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/EmbarkStudios/cfg-expr/blob/main/CHANGELOG.md">cfg-expr's changelog</a>.</em></p> <blockquote> <h2>[0.20.1] - 2025-07-07</h2> <h3>Changed</h3> <ul> <li><a href="https://redirect.github.com/EmbarkStudios/cfg-expr/pull/80">PR#80</a> updated the builtin target list to 1.88.0.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
a4583d4a6b
|
build(deps): bump async-channel from 2.4.0 to 2.5.0 (#37929)
Bumps [async-channel](https://github.com/smol-rs/async-channel) from 2.4.0 to 2.5.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/smol-rs/async-channel/releases">async-channel's releases</a>.</em></p> <blockquote> <h2>v2.5.0</h2> <ul> <li>Add <code>Sender::closed()</code> (<a href="https://redirect.github.com/smol-rs/async-channel/issues/102">#102</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/smol-rs/async-channel/blob/master/CHANGELOG.md">async-channel's changelog</a>.</em></p> <blockquote> <h1>Version 2.5.0</h1> <ul> <li>Add <code>Sender::closed()</code> (<a href="https://redirect.github.com/smol-rs/async-channel/issues/102">#102</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
ae2d572f5c
|
build(deps): bump blocking from 1.6.1 to 1.6.2 (#37928)
Bumps [blocking](https://github.com/smol-rs/blocking) from 1.6.1 to 1.6.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/smol-rs/blocking/releases">blocking's releases</a>.</em></p> <blockquote> <h2>v1.6.2</h2> <ul> <li>Fix build failure with minimal-versions. (<a href="https://redirect.github.com/smol-rs/blocking/issues/71">#71</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/smol-rs/blocking/blob/master/CHANGELOG.md">blocking's changelog</a>.</em></p> <blockquote> <h1>Version 1.6.2</h1> <ul> <li>Fix build failure with minimal-versions. (<a href="https://redirect.github.com/smol-rs/blocking/issues/71">#71</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
8e4dd852f3
|
build(deps): bump hyper-util from 0.1.14 to 0.1.15 (#37927)
Bumps [hyper-util](https://github.com/hyperium/hyper-util) from 0.1.14 to 0.1.15. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/hyperium/hyper-util/releases">hyper-util's releases</a>.</em></p> <blockquote> <h2>v0.1.15</h2> <h2>tl;dr</h2> <ul> <li>Add header casing options to <code>auto::Builder</code>.</li> <li>Fix <code>proxy::Socksv5</code> to check for enough bytes before parsing ipv6 responses.</li> <li>Fix including <code>client-proxy</code> in the <code>full</code> feature set.</li> </ul> <h2>What's Changed</h2> <ul> <li>ci: pin tracing-core in msrv job by <a href="https://github.com/seanmonstar"><code>@seanmonstar</code></a> in <a href="https://redirect.github.com/hyperium/hyper-util/pull/203">hyperium/hyper-util#203</a></li> <li>Cleanup deadcode in <code>client</code> by <a href="https://github.com/howardjohn"><code>@howardjohn</code></a> in <a href="https://redirect.github.com/hyperium/hyper-util/pull/202">hyperium/hyper-util#202</a></li> <li>refactor(socks): deduplicate and reuse shared logic by <a href="https://github.com/0x676e67"><code>@0x676e67</code></a> in <a href="https://redirect.github.com/hyperium/hyper-util/pull/205">hyperium/hyper-util#205</a></li> <li>refactor: include client-proxy in full feature by <a href="https://github.com/seanmonstar"><code>@seanmonstar</code></a> in <a href="https://redirect.github.com/hyperium/hyper-util/pull/206">hyperium/hyper-util#206</a></li> <li>refactor(client): remove old body delay_eof code by <a href="https://github.com/seanmonstar"><code>@seanmonstar</code></a> in <a href="https://redirect.github.com/hyperium/hyper-util/pull/208">hyperium/hyper-util#208</a></li> <li>feat(builder): support header case methods by <a href="https://github.com/AndreyErmilov"><code>@AndreyErmilov</code></a> in <a href="https://redirect.github.com/hyperium/hyper-util/pull/207">hyperium/hyper-util#207</a></li> <li>fix(socks): check for right length before parsing ProxyRes by <a href="https://github.com/seanmonstar"><code>@seanmonstar</code></a> in <a href="https://redirect.github.com/hyperium/hyper-util/pull/210">hyperium/hyper-util#210</a></li> <li>Prepare v0.1.15 by <a href="https://github.com/seanmonstar"><code>@seanmonstar</code></a> in <a href="https://redirect.github.com/hyperium/hyper-util/pull/211">hyperium/hyper-util#211</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/AndreyErmilov"><code>@AndreyErmilov</code></a> made their first contribution in <a href="https://redirect.github.com/hyperium/hyper-util/pull/207">hyperium/hyper-util#207</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/hyperium/hyper-util/compare/v0.1.14...v0.1.15">https://github.com/hyperium/hyper-util/compare/v0.1.14...v0.1.15</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/hyperium/hyper-util/blob/master/CHANGELOG.md">hyper-util's changelog</a>.</em></p> <blockquote> <h1>0.1.15 (2025-07-07)</h1> <ul> <li>Add header casing options to <code>auto::Builder</code>.</li> <li>Fix <code>proxy::Socksv5</code> to check for enough bytes before parsing ipv6 responses.</li> <li>Fix including <code>client-proxy</code> in the <code>full</code> feature set.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
0e27061bd9
|
build(deps): bump tokio from 1.46.0 to 1.46.1 (#37926)
Bumps [tokio](https://github.com/tokio-rs/tokio) from 1.46.0 to 1.46.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/tokio-rs/tokio/releases">tokio's releases</a>.</em></p> <blockquote> <h2>Tokio v1.46.1</h2> <h1>1.46.1 (July 4th, 2025)</h1> <p>This release fixes incorrect spawn locations in runtime task hooks for tasks spawned using <code>tokio::spawn</code> rather than <code>Runtime::spawn</code>. This issue only effected the spawn location in <code>TaskMeta::spawned_at</code>, and did not effect task locations in Tracing events.</p> <h2>Unstable</h2> <ul> <li>runtime: add <code>TaskMeta::spawn_location</code> tracking where a task was spawned (<a href="https://redirect.github.com/tokio-rs/tokio/issues/7440">#7440</a>)</li> </ul> <p><a href="https://redirect.github.com/tokio-rs/tokio/issues/7440">#7440</a>: <a href="https://redirect.github.com/tokio-rs/tokio/pull/7440">tokio-rs/tokio#7440</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
21084f2b1b
|
build(deps): bump rgb from 0.8.50 to 0.8.51 (#37923)
Bumps [rgb](https://github.com/kornelski/rust-rgb) from 0.8.50 to 0.8.51. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/kornelski/rust-rgb/commits">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
72b1331949
|
build(deps): bump cc from 1.2.27 to 1.2.28 (#37884)
Bumps [cc](https://github.com/rust-lang/cc-rs) from 1.2.27 to 1.2.28. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/rust-lang/cc-rs/releases">cc's releases</a>.</em></p> <blockquote> <h2>cc-v1.2.28</h2> <h3>Other</h3> <ul> <li>Recognize <code>mlibc</code> environment (<a href="https://redirect.github.com/rust-lang/cc-rs/pull/1488">#1488</a>)</li> <li>Fix clippy warnings about not using variables in <code>format!</code> strings (<a href="https://redirect.github.com/rust-lang/cc-rs/pull/1489">#1489</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/rust-lang/cc-rs/blob/main/CHANGELOG.md">cc's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/rust-lang/cc-rs/compare/cc-v1.2.27...cc-v1.2.28">1.2.28</a> - 2025-07-04</h2> <h3>Other</h3> <ul> <li>Recognize <code>mlibc</code> environment (<a href="https://redirect.github.com/rust-lang/cc-rs/pull/1488">#1488</a>)</li> <li>Fix clippy warnings about not using variables in <code>format!</code> strings (<a href="https://redirect.github.com/rust-lang/cc-rs/pull/1489">#1489</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |