chore(deps): update all dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	New value	References	Sourcegraph
actions/cache	action	major	v4	source
actions/checkout	action	major	v4	source
actions/download-artifact	action	major	v4	source
actions/upload-artifact	action	major	v4	source
anyhow	workspace.dependencies	patch	1.0.89	source
cachix/install-nix-action	action	digest
futures (source)	dependencies	patch	0.3.31	homepage, source
graphql_client	workspace.dependencies	minor	0.14.0	source
keyring	dependencies	major	3.3.0	source
log	dependencies	patch	0.4.22	source
log4rs	dependencies	patch	1.3.0	source
lsp-server (source)	dependencies	patch	0.7.7	source
lsp-types	workspace.dependencies	minor	0.97.0	source
ncipollo/release-action	action	digest
once_cell	dependencies	minor	1.20.1	source
openssl	workspace.dependencies	patch	0.10.66	source
regex	dependencies	minor	1.11.0	source
reqwest	workspace.dependencies	minor	0.12.8	source
serde (source)	workspace.dependencies	patch	1.0.210	homepage, source
serde_json	workspace.dependencies	patch	1.0.128	source
swatinem/rust-cache	action	digest
tokio (source)	workspace.dependencies	patch	1.40.0	homepage, source
ubuntu	github-runner	major	24.04	source
url	workspace.dependencies	patch	2.5.2	source
whoami (source)	dependencies	patch	1.5.2	homepage, source

Test plan: CI should pass with updated dependencies. No review required: this is an automated dependency update PR.

---

Release Notes

actions/cache (actions/cache)

v4

Compare Source

actions/checkout (actions/checkout)

v4

Compare Source

• Bump the minor-npm-dependencies group across 1 directory with 4 updates by @​dependabot in https://github.com/actions/checkout/pull/1739
• Bump actions/checkout from 3 to 4 by @​dependabot in https://github.com/actions/checkout/pull/1697
• Check out other refs/* by commit by @​orhantoy in https://github.com/actions/checkout/pull/1774
• Pin actions/checkout's own workflows to a known, good, stable version. by @​jww3 in https://github.com/actions/checkout/pull/1776

actions/download-artifact (actions/download-artifact)

v4

Compare Source

actions/upload-artifact (actions/upload-artifact)

v4

Compare Source

dtolnay/anyhow (anyhow)

v1.0.89

Compare Source

• Make anyhow::Error's UnwindSafe and RefUnwindSafe impl consistently available between versions of Rust newer and older than 1.72 (#​386)

v1.0.88

Compare Source

• Documentation improvements

rust-lang/futures-rs (futures)

v0.3.31

Compare Source

• Fix use after free of task in FuturesUnordered when dropped future panics (#​2886)
• Fix soundness bug in task::waker_ref (#​2830)
  This is a breaking change but allowed because it is soundness bug fix.
• Fix bugs in AsyncBufRead::read_line and AsyncBufReadExt::lines (#​2884)
• Fix parsing issue in select!/select_biased! (#​2832)
  This is technically a breaking change as it will now reject a very odd undocumented syntax that was previously accidentally accepted.
• Work around issue due to upstream Waker::will_wake change (#​2865)
• Add stream::Iter::{get_ref,get_mut,into_inner} (#​2875)
• Add future::AlwaysReady (#​2825)
• Relax trait bound on non-constructor methods of io::{BufReader,BufWriter} (#​2848)

graphql-rust/graphql-client (graphql_client)

v0.14.0

Compare Source

• Add support for GraphQL’s extend type directive
• Add support for graphqls:// schema
• Expose generate_module_token_stream_from_string to allow custom macro wrappers

hwchen/keyring-rs (keyring)

v3.3.0

Compare Source

• Add support for credential-store attributes other than those used by this crate. This allows the creation of credentials that are more compatible with 3rd-party clients, such as the OS-provided GUIs over credentials.
• Make the textual descriptions of entries consistently follow the form user@service (or user@service:target if a target was specified).

v3.2.1

Compare Source

• Re-enable access to v1 credentials. The fixes of version 3.2 meant that legacy credentials with no target attribute couldn't be accessed.

v3.2.0

Compare Source

• Improve secret-service handling of targets, so that searches on locked items distinguish items with different targets properly.

v3.1.0

Compare Source

• enhance the CLI to allow empty user names and better info about Ambiguous credentials.

v3.0.5

Compare Source

• updated docs and clean up dead code. No code changes.

v3.0.4

Compare Source

• expose a cross-platform module alias via the default module.

v3.0.3

Compare Source

• fix feature linux-native, which was causing compile errors.

v3.0.2

Compare Source

• add missing implementations for iOS set_secret and get_secret

v3.0.1

Compare Source

• add back missing Sync trait on errors.

v3.0.0

Compare Source

• add dbus-secret-service dependency to allow use on *n*x without an async runtime
• (API change) rework feature controls on included keystores: now there is a feature for each keystore, and that keystore is included in a build if and only if its feature is specified and the keystore is supported by the target OS.
• (API change) add direct support for setting and reading binary secret data, not just UTF-8 strings.

gluon-lang/lsp-types (lsp-types)

v0.97.0

Compare Source

v0.97.0 (2024-06-04)

v0.96.0

Compare Source

v0.95.1 (2024-03-18)

v0.95.1

Compare Source

v0.95.1 (2024-03-18)

v0.95.0

Compare Source

v0.94.2 (2023-12-12)

v0.94.1 (2023-08-07)

v0.94.2

Compare Source

v0.94.2 (2023-12-12)

matklad/once_cell (once_cell)

v1.20.1

Compare Source

• Allow using race module using just portable_atomic, without critical_section and provide
  better error messages on targets without atomic CAS instruction,
  #​265.

v1.20.0

Compare Source

rust-lang/regex (regex)

v1.11.0

Compare Source

===================
This is a new minor release of regex that brings in an update to the
Unicode Character Database. Specifically, this updates the Unicode data
used by regex internally to the version 16 release.

New features:

• FEATURE #​1228:
  Add new regex::SetMatches::matched_all method.
• FEATURE #​1229:
  Update to Unicode Character Database (UCD) version 16.

seanmonstar/reqwest (reqwest)

v0.12.8

Compare Source

• Add support for SOCKS4 proxies.
• Add multipart::Form::file() method for adding files easily.
• Add Body::wrap() to wrap any http_body::Body type.
• Fix the pool configuration to use a timer to remove expired connections.

v0.12.7

Compare Source

• Revert adding impl Service<http::Request<_>> for Client.

v0.12.6

Compare Source

• Add support for danger_accept_invalid_hostnames for rustls.
• Add impl Service<http::Request<Body>> for Client and &'_ Client.
• Add support for !Sync bodies in Body::wrap_stream().
• Enable happy eyeballs when hickory-dns is used.
• Fix Proxy so that HTTP(S)_PROXY values take precendence over ALL_PROXY.
• Fix blocking::RequestBuilder::header() from unsetting sensitive on passed header values.

v0.12.5

Compare Source

• Add blocking::ClientBuilder::dns_resolver() method to change DNS resolver in blocking client.
• Add http3 feature back, still requiring reqwest_unstable.
• Add rustls-tls-no-provider Cargo feature to use rustls without a crypto provider.
• Fix Accept-Encoding header combinations.
• Fix http3 resolving IPv6 addresses.
• Internal: upgrade to rustls 0.23.

v0.12.4

Compare Source

• Add zstd support, enabled with zstd Cargo feature.
• Add ClientBuilder::read_timeout(Duration), which applies the duration for each read operation. The timeout resets after a successful read.

v0.12.3

Compare Source

• Add FromStr for dns::Name.
• Add ClientBuilder::built_in_webpki_certs(bool) to enable them separately.
• Add ClientBuilder::built_in_native_certs(bool) to enable them separately.
• Fix sending content-length: 0 for GET requests.
• Fix response body content_length() to return value when timeout is configured.
• Fix ClientBuilder::resolve() to use lowercase domain names.

v0.12.2

Compare Source

• Fix missing ALPN when connecting to socks5 proxy with rustls.
• Fix TLS version limits with rustls.
• Fix not detected ALPN h2 from server with native-tls.

v0.12.1

Compare Source

• Fix ClientBuilder::interface() when no TLS is enabled.
• Fix TlsInfo::peer_certificate() being truncated with rustls.
• Fix panic if http2 feature disabled but TLS negotiated h2 in ALPN.
• Fix Display for Error to not include its source error.

v0.12.0

Compare Source

• Upgrade to hyper, http, and http-body v1.
• Add better support for converting to and from http::Request and http::Response.
• Add http2 optional cargo feature, default on.
• Add charset optional cargo feature, default on.
• Add macos-system-configuration cargo feature, default on.
• Change all optional dependencies to no longer be exposed as implicit features.
• Add ClientBuilder::interface(str) to specify the local interface to bind to.
• Experimental: disables the http3 feature temporarily.

v0.11.27

• Add hickory-dns feature, deprecating trust-dns.
• (wasm) Fix Form::text() to not set octet-stream for plain text fields.

v0.11.26

• Revert system-configuration upgrade, which broke MSRV on macOS.

v0.11.25

• Fix Certificate::from_pem_bundle() parsing.
• Fix Apple linker errors from detecting system proxies.

v0.11.24

• Add Certificate::from_pem_bundle() to add a bundle.
• Add http3_prior_knowledge() to blocking client builder.
• Remove Sync bounds requirement for Body::wrap_stream().
• Fix HTTP/2 to retry REFUSED_STREAM requests.
• Fix instances of converting Url to Uri that could panic.

v0.11.23

• Add Proxy::custom_http_auth(val) for setting the raw Proxy-Authorization header when connecting to proxies.
• Fix redirect to reject locations that are not http:// or https://.
• Fix setting nodelay when TLS is enabled but URL is HTTP.
• (wasm) Add ClientBuilder::user_agent(val).
• (wasm) add multipart::Form::headers(headers).

v0.11.22

• Fix compilation on Windows when trust-dns is enabled.

v0.11.21

• Add automatically detecting macOS proxy settings.
• Add ClientBuilder::tls_info(bool), which will put tls::TlsInfo into the response extensions.
• Fix trust-dns resolver from possible hangs.
• Fix connect timeout to be split among multiple IP addresses.

v0.11.20

• Fix deflate decompression back to using zlib, as outlined in the spec.

v0.11.19

• Add ClientBuilder::http1_ignore_invalid_headers_in_responses() option.
• Add ClientBuilder::http1_allow_spaces_after_header_name_in_responses() option.
• Add support for ALL_PROXY environment variable.
• Add support for use_preconfigured_tls when combined with HTTP/3.
• Fix deflate decompression from using the zlib decoder.
• Fix Response::{text, text_with_charset}() to strip BOM characters.
• Fix a panic when HTTP/3 is used if UDP isn't able to connect.
• Fix some dependencies for HTTP/3.
• Increase MSRV to 1.63.

v0.11.18

• Fix RequestBuilder::json() method from overriding a previously set content-type header. An existing value will be left in place.
• Upgrade internal dependencies for rustls and compression.

v0.11.17

• Upgrade internal dependencies of Experimental HTTP/3 to use quinn v0.9
• (wasm) Fix blob url support

v0.11.16

• Chore: set MSRV in Cargo.toml.
• Docs: fix build on docs.rs

v0.11.15

• Add RequestBuilder methods to split and reconstruct from its parts.
• Add experimental HTTP/3 support.
• Fix connection_verbose to log write_vectored calls.
• (wasm) Make requests actually cancel if the future is dropped.

v0.11.14

• Adds Proxy::no_proxy(url) that works like the NO_PROXY environment variable.
• Adds multipart::Part::headers(headers) method to add custom headers.
• (wasm) Add Response::bytes_stream().
• Perf: several internal optimizations reducing copies and memory allocations.

v0.11.13

• Add ClientBuilder::dns_resolver() option for custom DNS resolvers.
• Add ClientBuilder::tls_sni(bool) option to enable or disable TLS Server Name Indication.
• Add Identity::from_pkcs8_pem() constructor when using native-tls.
• Fix redirect::Policy::limited(0) from following any redirects.

v0.11.12

• Add ClientBuilder::resolve_to_addrs() which allows a slice of IP addresses to be specified for a single host.
• Add Response::upgrade() to await whether the server agrees to an HTTP upgrade.

v0.11.11

• Add HTTP/2 keep-alive configuration methods on ClientBuilder.
• Add ClientBuilder::http1_allow_obsolete_multiline_headers_in_responses().
• Add impl Service<Request> for Client and &'_ Client.
• (wasm) Add RequestBuilder::basic_auth().
• Fix RequestBuilder::header to not override sensitive if user explicitly set on a HeaderValue.
• Fix rustls parsing of elliptic curve private keys.
• Fix Proxy URL parsing of some invalid targets.

v0.11.10

• Add Error::url() to access the URL of an error.
• Add Response::extensions() to access the http::Extensions of a response.
• Fix rustls-native-certs to log an error instead of panicking when loading an invalid system certificate.
• Fix passing Basic Authorization header to proxies.

v0.11.9

• Add ClientBuilder::http09_responses(bool) option to allow receiving HTTP/0.9 responses.
• Fix HTTP/2 to retry requests interrupted by an HTTP/2 graceful shutdown.
• Fix proxy loading from environment variables to ignore empty values.

v0.11.8

• Update internal webpki-roots dependency.

v0.11.7

• Add blocking::ClientBuilder::resolve() option, matching the async builder.
• Implement From<tokio::fs::File> for Body.
• Fix blocking request-scoped timeout applying to bodies as well.
• (wasm) Fix request bodies using multipart vs formdata.
• Update internal rustls to 0.20.

v0.11.6

• (wasm) Fix request bodies more.

v0.11.5

• Add ClientBuilder::http1_only() method.
• Add tls::Version type, and ClientBuilder::min_tls_version() and ClientBuilder::max_tls_version() methods.
• Implement TryFrom<Request> for http::Request.
• Implement Clone for Identity.
• Fix NO_PROXYenvironment variable parsing to more closely match curl's. Comma-separated entries are now trimmed for whitespace, and * is allowed to match everything.
• Fix redirection to respect https_only option.
• (wasm) Add Body::as_bytes() method.
• (wasm) Fix sometimes wrong conversation of bytes into a JsValue.
• (wasm) Avoid dependency on serde-serialize feature.

v0.11.4

• Add ClientBuilder::resolve() option to override DNS resolution for specific domains.
• Add native-tls-alpn Cargo feature to use ALPN with the native-tls backend.
• Add ClientBuilder::deflate() option and deflate Cargo feature to support decoding response bodies using deflate.
• Add RequestBuilder::version() to allow setting the HTTP version of a request.
• Fix allowing "invalid" certificates with the rustls-tls backend, when the server uses TLS v1.2 or v1.3.
• (wasm) Add try_clone to Request and RequestBuilder

v0.11.3

• Add impl From<hyper::Body> for reqwest::Body.
• (wasm) Add credentials mode methods to RequestBuilder.

v0.11.2

• Add CookieStore trait to customize the type that stores and retrieves cookies for a session.
• Add cookie::Jar as a default CookieStore, easing creating some session cookies before creating the Client.
• Add ClientBuilder::http2_adaptive_window() option to configure an adaptive HTTP2 flow control behavior.
• Add ClientBuilder::http2_max_frame_size() option to adjust the maximum HTTP2 frame size that can be received.
• Implement IntoUrl for String, making it more convenient to create requests with format!.

v0.11.1

• Add ClientBuilder::tls_built_in_root_certs() option to disable built-in root certificates.
• Fix rustls-tls glue to more often support ALPN to upgrade to HTTP/2.
• Fix proxy parsing to assume http:// if no scheme is found.
• Fix connection pool idle reaping by enabling hyper's runtime feature.
• (wasm) Add Request::new() constructor.

---

Configuration

📅 Schedule: Branch creation - "on the 1st through 7th day of the month" in timezone America/Los_Angeles, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.