chore(deps): bump the minor-and-patch group with 6 updates by dependabot[bot] · Pull Request #3186 · apache/iggy

dependabot · 2026-04-27T23:50:53Z

Bumps the minor-and-patch group with 6 updates:

Package	From	To
blake3	`1.8.4`	`1.8.5`
clap_complete	`4.6.2`	`4.6.3`
mimalloc	`0.1.48`	`0.1.50`
octocrab	`0.49.7`	`0.49.9`
reqwest	`0.13.2`	`0.13.3`
zip	`8.5.1`	`8.6.0`

Updates blake3 from 1.8.4 to 1.8.5

Release notes

Sourced from blake3's releases.

1.8.5

version 1.8.5

Changes since 1.8.4:

Forcibly disable LTO when compiling C intrinsics from the Rust build. This fixes a build break on Arch Linux ARM: BLAKE3-team/BLAKE3#550

Commits

93a431c version 1.8.5
299b1e2 fix LTO builds by disabling LTO
6a45fee add LTO builds to CI
15e83a5 c: Use correct SIMD flags when compiling with Clang-Cl (#549)
2e3727d cargo fmt everywhere
See full diff in compare view

Updates clap_complete from 4.6.2 to 4.6.3

Commits

7e0bcca chore: Release
0f09905 docs: Update changelog
9706951 Merge pull request #6353 from truffle-dev/feat-completer-arg-index
ac0d148 feat(complete): Index-aware ValueCompleter
1565a3c test(complete): Cover indexed multi-value case
48fc10a Merge pull request #6350 from stefankreutz/missing_docs
7d4c353 docs: Hint at clippy's missing docs lint
f6a6701 chore(deps): Update Rust Stable to v1.95 (#6347)
ac5fda6 chore: Release
b73c627 docs: Update changelog
Additional commits viewable in compare view

Updates mimalloc from 0.1.48 to 0.1.50

Release notes

Sourced from mimalloc's releases.

Version 0.1.50

Changes

Update to mimalloc v2.3.1 and v3.3.1

Version 0.1.49

Changes

Update to mimalloc v2.3.0 and v3.3.0

Use mimalloc v3 by default.

Commits

e639b55 v0.1.50
5da8f92 Bump to v2.3.1 and v3.3.1
2967f96 libmimalloc-sys v0.1.46
a2a6019 theap
92c240d Wrong feature flags
7b3acdb v0.1.49
c10c6d4 Oops
f88c34e I don't care about clippy right now
8675930 Update extended
d54c2f7 Use v3 by default
Additional commits viewable in compare view

Updates octocrab from 0.49.7 to 0.49.9

Release notes

Sourced from octocrab's releases.

v0.49.9

Other

Add 'tokio' dependency to retry configuration (#875)

v0.49.8

Added

add structured GraphQL response and error (#874)

Fixed

Expose OctoBody (#870)

Changelog

Sourced from octocrab's changelog.

0.49.9 - 2026-04-26

Other

Add 'tokio' dependency to retry configuration (#875)

0.49.8 - 2026-04-24

Added

add structured GraphQL response and error (#874)

Fixed

Expose OctoBody (#870)

Commits

bc392c2 chore: release v0.49.9 (#876)
a56e94b Add 'tokio' dependency to retry configuration (#875)
b234067 chore: release v0.49.8 (#871)
e637ad1 feat: add structured GraphQL response and error (#874)
3fee114 fix: Expose OctoBody (#870)
See full diff in compare view

Updates reqwest from 0.13.2 to 0.13.3

Release notes

Sourced from reqwest's releases.

v0.13.3

tl;dr

Fix CertificateRevocationList parsing of PEM values.

Fix logging in resolver to only show host, not full URL.

Fix hickory-dns to fallback to a default if /etc/resolv.conf fails.

Fix HTTP/3 to handle STOP_SENDING as not an error.

Fix HTTP/3 pool to remove timed out QUIC connections.

Fix HTTP/3 connection establishment picking IPv4 and IPv6.

Upgrade rustls-platform-verifier.

(wasm) Only use wasm-bindgen on unknown-* targets.

What's Changed

Update docs.rs Features by @JamesWiresmith in seanmonstar/reqwest#2961

fix: fallback to hickory_resolver's default config if reading /etc/resolv.conf fails by @monosans in seanmonstar/reqwest#2797

fix: remove timeout con by @cuiweixie in seanmonstar/reqwest#2967

http3: handle stop_sending without error by @anuraaga in seanmonstar/reqwest#2978

resolve: debug log to change only host by @lms0806 in seanmonstar/reqwest#2992

Edit reference link by @lms0806 in seanmonstar/reqwest#2996

docs: more accurate about default HTTP2 window sizes by @seanmonstar in seanmonstar/reqwest#3007

[HTTP/3] Optimize IPv6 fallback and enforce HTTPS scheme #2911 by @lyuzichong in seanmonstar/reqwest#3006

Upgrade rustls-platform-verifier by @jplatte in seanmonstar/reqwest#3010

use wasm-bindgen ecosystem only for wasm32-unknown-* target by @Ludea in seanmonstar/reqwest#3000

fix rustls crl pem parsing by @Threated in seanmonstar/reqwest#3013

docs(retry): include ReqRep in docsrs by @seanmonstar in seanmonstar/reqwest#3020

New Contributors

@JamesWiresmith made their first contribution in seanmonstar/reqwest#2961

@monosans made their first contribution in seanmonstar/reqwest#2797

@cuiweixie made their first contribution in seanmonstar/reqwest#2967

@anuraaga made their first contribution in seanmonstar/reqwest#2978

@lms0806 made their first contribution in seanmonstar/reqwest#2992

@lyuzichong made their first contribution in seanmonstar/reqwest#3006

@Ludea made their first contribution in seanmonstar/reqwest#3000

Full Changelog: seanmonstar/reqwest@v0.13.2...v0.13.3

Changelog

Sourced from reqwest's changelog.

v0.13.3

Fix CertificateRevocationList parsing of PEM values.

Fix logging in resolver to only show host, not full URL.

Fix hickory-dns to fallback to a default if /etc/resolv.conf fails.

Fix HTTP/3 to handle STOP_SENDING as not an error.

Fix HTTP/3 pool to remove timed out QUIC connections.

Fix HTTP/3 connection establishment picking IPv4 and IPv6.

Upgrade rustls-platform-verifier.

(wasm) Only use wasm-bindgen on unknown-* targets.

Commits

a9a88c4 v0.13.3
f3f6d9d docs(retry): include ReqRep in docsrs (#3020)
5f9c231 fix rustls CRL PEM parsing (#3013)
11d835d use wasm-bindgen ecosystem only for wasm32-unknown-* target (#3000)
1f72916 Upgrade rustls-platform-verifier (#3010)
5d5bf35 [HTTP/3] Optimize IPv6 fallback and enforce HTTPS scheme #2911 (#3006)
93dc1b2 docs: more accurate about default HTTP2 window sizes (#3007)
c5e50f0 docs: update outdated link in comments
b25611f resolve: debug log to change only host (#2992)
ca1f479 http3: handle stop_sending without error (#2978)
Additional commits viewable in compare view

Updates zip from 8.5.1 to 8.6.0

Release notes

Sourced from zip's releases.

v8.6.0

🚀 Features

add compression not supported as enum error (#774)

🐛 Bug Fixes

allow for [u8] as filename (#775)

🚜 Refactor

mark ZipFlags as non-exhaustive and add test for HasZipMetadata (#777)

use and simplify is_dir (#776)

Changelog

Sourced from zip's changelog.

8.6.0 - 2026-04-25

🚀 Features

add compression not supported as enum error (#774)

🐛 Bug Fixes

allow for [u8] as filename (#775)

🚜 Refactor

mark ZipFlags as non-exhaustive and add test for HasZipMetadata (#777)

use and simplify is_dir (#776)

Commits

771dfc5 chore: release v8.6.0 (#781)
8e480cc chore(deps): update sha1 requirement from 0.10 to 0.11 (#767)
2513bbe chore(deps): update aes requirement from 0.8 to 0.9 (#787)
957e240 ci(deps): bump actions/cache from 5.0.4 to 5.0.5 (#786)
0329d9d fix: allow for [u8] as filename (#775)
ddcf854 ci(deps): bump github/codeql-action from 4.35.1 to 4.35.2 (#788)
42323a8 ci(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1 (#785)
901014a ci(deps): bump crate-ci/typos from 1.45.0 to 1.45.1 (#784)
07702d4 feat: add compression not supported as enum error (#774)
2d0c46b ci(deps): bump actions/upload-artifact from 7.0.0 to 7.0.1 (#783)
Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the minor-and-patch group with 6 updates: | Package | From | To | | --- | --- | --- | | [blake3](https://github.com/BLAKE3-team/BLAKE3) | `1.8.4` | `1.8.5` | | [clap_complete](https://github.com/clap-rs/clap) | `4.6.2` | `4.6.3` | | [mimalloc](https://github.com/purpleprotocol/mimalloc_rust) | `0.1.48` | `0.1.50` | | [octocrab](https://github.com/XAMPPRocky/octocrab) | `0.49.7` | `0.49.9` | | [reqwest](https://github.com/seanmonstar/reqwest) | `0.13.2` | `0.13.3` | | [zip](https://github.com/zip-rs/zip2) | `8.5.1` | `8.6.0` | Updates `blake3` from 1.8.4 to 1.8.5 - [Release notes](https://github.com/BLAKE3-team/BLAKE3/releases) - [Commits](BLAKE3-team/BLAKE3@1.8.4...1.8.5) Updates `clap_complete` from 4.6.2 to 4.6.3 - [Release notes](https://github.com/clap-rs/clap/releases) - [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md) - [Commits](clap-rs/clap@clap_complete-v4.6.2...clap_complete-v4.6.3) Updates `mimalloc` from 0.1.48 to 0.1.50 - [Release notes](https://github.com/purpleprotocol/mimalloc_rust/releases) - [Commits](purpleprotocol/mimalloc_rust@v0.1.48...v0.1.50) Updates `octocrab` from 0.49.7 to 0.49.9 - [Release notes](https://github.com/XAMPPRocky/octocrab/releases) - [Changelog](https://github.com/XAMPPRocky/octocrab/blob/main/CHANGELOG.md) - [Commits](XAMPPRocky/octocrab@v0.49.7...v0.49.9) Updates `reqwest` from 0.13.2 to 0.13.3 - [Release notes](https://github.com/seanmonstar/reqwest/releases) - [Changelog](https://github.com/seanmonstar/reqwest/blob/master/CHANGELOG.md) - [Commits](seanmonstar/reqwest@v0.13.2...v0.13.3) Updates `zip` from 8.5.1 to 8.6.0 - [Release notes](https://github.com/zip-rs/zip2/releases) - [Changelog](https://github.com/zip-rs/zip2/blob/master/CHANGELOG.md) - [Commits](zip-rs/zip2@v8.5.1...v8.6.0) --- updated-dependencies: - dependency-name: blake3 dependency-version: 1.8.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: clap_complete dependency-version: 4.6.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: mimalloc dependency-version: 0.1.50 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: octocrab dependency-version: 0.49.9 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: reqwest dependency-version: 0.13.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: zip dependency-version: 8.6.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot · 2026-04-27T23:50:54Z

Assignees

The following users could not be added as assignees: apache/iggy-committers. Either the username does not exist or it does not have the correct permissions to be added as an assignee.

Please fix the above issues or remove invalid values from dependabot.yml.

dependabot · 2026-04-29T10:29:47Z

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update Rust code labels Apr 27, 2026

hubcio closed this Apr 29, 2026

dependabot Bot deleted the dependabot/cargo/minor-and-patch-40b4559e32 branch April 29, 2026 10:29

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the minor-and-patch group with 6 updates#3186

chore(deps): bump the minor-and-patch group with 6 updates#3186
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/cargo/minor-and-patch-40b4559e32

dependabot Bot commented on behalf of github Apr 27, 2026

Uh oh!

dependabot Bot commented on behalf of github Apr 27, 2026

Uh oh!

dependabot Bot commented on behalf of github Apr 29, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

dependabot Bot commented on behalf of github Apr 27, 2026

1.8.5

Version 0.1.50

Changes

Version 0.1.49

Changes

v0.49.9

Other

v0.49.8

Added

Fixed

0.49.9 - 2026-04-26

Other

0.49.8 - 2026-04-24

Added

Fixed

v0.13.3

tl;dr

What's Changed

New Contributors

v0.13.3

v8.6.0

🚀 Features

🐛 Bug Fixes

🚜 Refactor

8.6.0 - 2026-04-25

🚀 Features

🐛 Bug Fixes

🚜 Refactor

Uh oh!

dependabot Bot commented on behalf of github Apr 27, 2026

Assignees

Uh oh!

dependabot Bot commented on behalf of github Apr 29, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant