Bumps [rustls](https://github.com/rustls/rustls) from 0.23.19 to
0.23.20.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="b4628c7b61"><code>b4628c7</code></a>
rustls-post-quantum: revert version to 0.2.0</li>
<li><a
href="24d08f3ad5"><code>24d08f3</code></a>
rustls-post-quantum: adjust head doc</li>
<li><a
href="179592f249"><code>179592f</code></a>
verifybench.rs: nightly fmt</li>
<li><a
href="ef3fc21973"><code>ef3fc21</code></a>
nit: remove trailing space from doc comments</li>
<li><a
href="00a3ddb948"><code>00a3ddb</code></a>
fix rustls-provider-example hpke no-std support</li>
<li><a
href="2f74c3d3d0"><code>2f74c3d</code></a>
server: remove ClientHello constructor</li>
<li><a
href="3ba5167630"><code>3ba5167</code></a>
ci: adjust ech-client daily tests</li>
<li><a
href="f5aeb39cd9"><code>f5aeb39</code></a>
examples: use inner hostname in HTTPS DNS query</li>
<li><a
href="e232bcae61"><code>e232bca</code></a>
openssl-tests: install openssl from source</li>
<li><a
href="43cbebb80d"><code>43cbebb</code></a>
unbuffered: add regression tests for fragmented handshakes</li>
<li>Additional commits viewable in <a
href="https://github.com/rustls/rustls/compare/v/0.23.19...v/0.23.20">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [rustls](https://github.com/rustls/rustls) from 0.23.18 to
0.23.19.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="4962141f53"><code>4962141</code></a>
Prepare 0.23.19</li>
<li><a
href="82f5fce1b0"><code>82f5fce</code></a>
Prepare 0.23.18</li>
<li><a
href="183a099393"><code>183a099</code></a>
Add reproducer for bug 2227</li>
<li><a
href="d6d300d198"><code>d6d300d</code></a>
Record and restore the processed cursor in first_handshake_message</li>
<li><a
href="970f5012b7"><code>970f501</code></a>
rustls-bench: fix warnings with no features</li>
<li><a
href="0fabb84b16"><code>0fabb84</code></a>
tests: linearize new test code helper</li>
<li><a
href="976c746cca"><code>976c746</code></a>
fix: do not send session_ticket(35) extension for TLS 1.3</li>
<li><a
href="9a46220ec7"><code>9a46220</code></a>
fix(deps): update rust crate asn1 to 0.20</li>
<li><a
href="9103dc21eb"><code>9103dc2</code></a>
Upgrade hickory-resolver to alpha 3</li>
<li><a
href="fd886396c2"><code>fd88639</code></a>
fix(deps): update rust crate asn1 to 0.19</li>
<li>Additional commits viewable in <a
href="https://github.com/rustls/rustls/compare/v/0.23.18...v/0.23.19">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [rustls](https://github.com/rustls/rustls) from 0.23.17 to
0.23.18.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="33af2c38b0"><code>33af2c3</code></a>
Prepare 0.23.18</li>
<li><a
href="ffe646d1ff"><code>ffe646d</code></a>
Add reproducer for bug 2227</li>
<li><a
href="69b6f7473a"><code>69b6f74</code></a>
Record and restore the processed cursor in first_handshake_message</li>
<li><a
href="4ef3532cf2"><code>4ef3532</code></a>
Upgrade to mio 1</li>
<li><a
href="092a16427e"><code>092a164</code></a>
Manage dependencies via the workspace</li>
<li><a
href="a01bd6bcb5"><code>a01bd6b</code></a>
rustls-bench: fix warnings with no features</li>
<li><a
href="7d74de2c1b"><code>7d74de2</code></a>
tests: linearize new test code helper</li>
<li><a
href="499d797b26"><code>499d797</code></a>
fix: do not send session_ticket(35) extension for TLS 1.3</li>
<li><a
href="faca28904e"><code>faca289</code></a>
chore(deps): lock file maintenance</li>
<li><a
href="d12f42385c"><code>d12f423</code></a>
fix(deps): update rust crate asn1 to 0.20</li>
<li>Additional commits viewable in <a
href="https://github.com/rustls/rustls/compare/v/0.23.17...v/0.23.18">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [rustls](https://github.com/rustls/rustls) from 0.23.16 to
0.23.17.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="5c5cdcc60a"><code>5c5cdcc</code></a>
Prepare 0.23.17</li>
<li><a
href="52d7c3020d"><code>52d7c30</code></a>
chore(deps): update codecov/codecov-action action to v5</li>
<li><a
href="1d0e38c9f2"><code>1d0e38c</code></a>
fix(deps): update rust crate zlib-rs to 0.4</li>
<li><a
href="a9472cff52"><code>a9472cf</code></a>
StoresServerSessions: guarantee keys are high entropy</li>
<li><a
href="271170c0d3"><code>271170c</code></a>
add arm performance results</li>
<li><a
href="b66efddc7c"><code>b66efdd</code></a>
lychee: ignore http responses beyond our control</li>
<li><a
href="af0229b8e9"><code>af0229b</code></a>
deploy static landing page</li>
<li><a
href="42be020ba2"><code>42be020</code></a>
publish performance notes</li>
<li><a
href="a5b53b3a45"><code>a5b53b3</code></a>
add landing page, using zola</li>
<li><a
href="d1c33f8641"><code>d1c33f8</code></a>
bench: support threaded bulk tests</li>
<li>Additional commits viewable in <a
href="https://github.com/rustls/rustls/compare/v/0.23.16...v/0.23.17">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [rustls](https://github.com/rustls/rustls) from 0.23.15 to
0.23.16.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="276eb7442c"><code>276eb74</code></a>
Bump version to 0.23.16 (<a
href="https://redirect.github.com/rustls/rustls/issues/2183">#2183</a>)</li>
<li><a
href="e07bdc91dc"><code>e07bdc9</code></a>
Don't warn on UserCanceled alerts</li>
<li><a
href="a5d6350aa1"><code>a5d6350</code></a>
chore(deps): lock file maintenance</li>
<li><a
href="75e5503ea1"><code>75e5503</code></a>
builder: expose ConfigBuilder::crypto_provider()</li>
<li><a
href="aebe2c3e23"><code>aebe2c3</code></a>
builder: store providers directly into ConfigBuilder</li>
<li><a
href="121d813ca8"><code>121d813</code></a>
Avoid feature unification for bogo</li>
<li><a
href="eb2a1c48dd"><code>eb2a1c4</code></a>
Move from kyber768 to ML-KEM768</li>
<li><a
href="626424311f"><code>6264243</code></a>
fix(deps): update rust crate asn1 to 0.18</li>
<li><a
href="28ec955fba"><code>28ec955</code></a>
ci: loosen lychee-action version</li>
<li><a
href="f7c9c30da7"><code>f7c9c30</code></a>
ci: move lychee step before dir mv</li>
<li>Additional commits viewable in <a
href="https://github.com/rustls/rustls/compare/v/0.23.15...v/0.23.16">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[sqlite-compressions](https://github.com/nyurik/sqlite-compressions)
from 0.2.15 to 0.2.16.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="ab58585c0a"><code>ab58585</code></a>
Update deps, later brotli</li>
<li>See full diff in <a
href="https://github.com/nyurik/sqlite-compressions/compare/v0.2.15...v0.2.16">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
- [x] adds a postgres version check
- [x] added a testcase (using testcontainers) that the version is parsed
correctly
Resolves#1230 (I think at this point the PR can be considered unasigned
again, feel free to reject otherwise. Don't want to step on peoples toes
^^)
Resolves#1229 (by using the minumum supported postgres version for
postgis)
---------
Co-authored-by: Yuri Astrakhan <YuriAstrakhan@gmail.com>
Bumps [rustls](https://github.com/rustls/rustls) from 0.23.14 to
0.23.15.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="3099020a22"><code>3099020</code></a>
Prepare 0.23.15</li>
<li><a
href="9a19b599e3"><code>9a19b59</code></a>
Take pki-types 1.10</li>
<li><a
href="d58f86d3fd"><code>d58f86d</code></a>
bench-measure.mk: rebuild bench each time</li>
<li><a
href="e653618266"><code>e653618</code></a>
bench: decrease bench allocator traffic</li>
<li><a
href="494f4dacb6"><code>494f4da</code></a>
Use re-exported pki-types everywhere</li>
<li><a
href="0254d003c3"><code>0254d00</code></a>
clippy: needless_lifetimes fixes</li>
<li><a
href="25f1e4f42e"><code>25f1e4f</code></a>
outbound: replace manual arithmetic check</li>
<li><a
href="51e783a033"><code>51e783a</code></a>
clippy: address nightly empty_line_after_doc_comments</li>
<li><a
href="422a0c5e67"><code>422a0c5</code></a>
manual: include mention of client-side ECH</li>
<li><a
href="aaeff17fef"><code>aaeff17</code></a>
docs: update cpu project time allotment</li>
<li>Additional commits viewable in <a
href="https://github.com/rustls/rustls/compare/v/0.23.14...v/0.23.15">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [rustls](https://github.com/rustls/rustls) from 0.23.13 to
0.23.14.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="cf736e3d4b"><code>cf736e3</code></a>
Prepare 0.23.14</li>
<li><a
href="262ae99e54"><code>262ae99</code></a>
Accept kyber deprecation</li>
<li><a
href="c9f5734eab"><code>c9f5734</code></a>
Take aws-lc-rs 1.10</li>
<li><a
href="056093826f"><code>0560938</code></a>
Take latest bogo release</li>
<li><a
href="7bf82dc7a3"><code>7bf82dc</code></a>
Send <code>illegal_parameter</code> alert on illegal group</li>
<li><a
href="d752eb209b"><code>d752eb2</code></a>
Send <code>illegal_parameter</code> alert on invalid key share</li>
<li><a
href="2d3b7ab2b7"><code>2d3b7ab</code></a>
default crypto provider improvements</li>
<li><a
href="bcc295d92a"><code>bcc295d</code></a>
Fix new <code>cargo doc</code> warnings in examples</li>
<li><a
href="e7dd2fdff4"><code>e7dd2fd</code></a>
fips.rs: reflect certificate issuance for aws-lc 2.0.0</li>
<li><a
href="58a5891b35"><code>58a5891</code></a>
fix(deps): update rust crate brotli to v7</li>
<li>Additional commits viewable in <a
href="https://github.com/rustls/rustls/compare/v/0.23.13...v/0.23.14">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [sqlite-hashes](https://github.com/nyurik/sqlite-hashes) from
0.7.5 to 0.7.6.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="d78571c4e4"><code>d78571c</code></a>
improve test script</li>
<li><a
href="d668070666"><code>d668070</code></a>
fix ext test file</li>
<li><a
href="f91894c125"><code>f91894c</code></a>
Bump dependencies, better gitignore</li>
<li><a
href="95cf137a0f"><code>95cf137</code></a>
Bump rusqlite from 0.32.0 to 0.32.1 (<a
href="https://redirect.github.com/nyurik/sqlite-hashes/issues/40">#40</a>)</li>
<li><a
href="b68600a26a"><code>b68600a</code></a>
Bump env_logger from 0.11.4 to 0.11.5 (<a
href="https://redirect.github.com/nyurik/sqlite-hashes/issues/39">#39</a>)</li>
<li>See full diff in <a
href="https://github.com/nyurik/sqlite-hashes/compare/v0.7.5...v0.7.6">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[sqlite-compressions](https://github.com/nyurik/sqlite-compressions)
from 0.2.13 to 0.2.14.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/nyurik/sqlite-compressions/releases">sqlite-compressions's
releases</a>.</em></p>
<blockquote>
<h2>v0.2.14</h2>
<h2>What's Changed</h2>
<ul>
<li>Fix release pipeline</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/nyurik/sqlite-compressions/compare/v0.2.13...v0.2.14">https://github.com/nyurik/sqlite-compressions/compare/v0.2.13...v0.2.14</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="342ca4563f"><code>342ca45</code></a>
fix release ci, dep update</li>
<li><a
href="74c36a82ab"><code>74c36a8</code></a>
Bump env_logger from 0.11.3 to 0.11.4 (<a
href="https://redirect.github.com/nyurik/sqlite-compressions/issues/39">#39</a>)</li>
<li><a
href="089cc4e4df"><code>089cc4e</code></a>
bump version</li>
<li>See full diff in <a
href="https://github.com/nyurik/sqlite-compressions/compare/v0.2.13...v0.2.14">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [sqlite-hashes](https://github.com/nyurik/sqlite-hashes) from
0.7.4 to 0.7.5.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/nyurik/sqlite-hashes/releases">sqlite-hashes's
releases</a>.</em></p>
<blockquote>
<h2>v0.7.5</h2>
<h2>What's Changed</h2>
<ul>
<li>Fix CI release process</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/nyurik/sqlite-hashes/compare/v0.7.3...v0.7.5">https://github.com/nyurik/sqlite-hashes/compare/v0.7.3...v0.7.5</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="271d4ff354"><code>271d4ff</code></a>
improve published version check</li>
<li><a
href="56434f0dea"><code>56434f0</code></a>
Bump env_logger from 0.11.3 to 0.11.4 (<a
href="https://redirect.github.com/nyurik/sqlite-hashes/issues/38">#38</a>)</li>
<li><a
href="c74129ea1b"><code>c74129e</code></a>
bump version</li>
<li>See full diff in <a
href="https://github.com/nyurik/sqlite-hashes/compare/v0.7.4...v0.7.5">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [rustls](https://github.com/rustls/rustls) from 0.23.11 to
0.23.12.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="ebda385660"><code>ebda385</code></a>
Update version to 0.23.12</li>
<li><a
href="127a0a769f"><code>127a0a7</code></a>
build(deps): bump openssl from 0.10.64 to 0.10.66</li>
<li><a
href="3cc2c2db8a"><code>3cc2c2d</code></a>
Support P521 SHA-256/SHA-384 signatures with aws-lc-rs (<a
href="https://redirect.github.com/rustls/rustls/issues/2050">#2050</a>)</li>
<li><a
href="e58aaa8487"><code>e58aaa8</code></a>
ci: add rebaseWhen to renovate config</li>
<li><a
href="dfc8ae597a"><code>dfc8ae5</code></a>
ci: remove stabilityDays from renovate config</li>
<li><a
href="49c31cb917"><code>49c31cb</code></a>
chore(deps): lock file maintenance</li>
<li><a
href="63eecac0a2"><code>63eecac</code></a>
chore(deps): update rust crate tikv-jemallocator to 0.6</li>
<li>See full diff in <a
href="https://github.com/rustls/rustls/compare/v/0.23.11...v/0.23.12">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[sqlite-compressions](https://github.com/nyurik/sqlite-compressions)
from 0.2.12 to 0.2.13.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="9c01eced91"><code>9c01ece</code></a>
bump msrv</li>
<li><a
href="1edaa9124d"><code>1edaa91</code></a>
fix msrv</li>
<li><a
href="4f48013e04"><code>4f48013</code></a>
update ci</li>
<li><a
href="4f4f8408de"><code>4f4f840</code></a>
Update deps, update extension registration</li>
<li><a
href="7ed712e36d"><code>7ed712e</code></a>
Bump dependabot/fetch-metadata from 2.1.0 to 2.2.0 (<a
href="https://redirect.github.com/nyurik/sqlite-compressions/issues/37">#37</a>)</li>
<li><a
href="de2a39c96f"><code>de2a39c</code></a>
Bump log from 0.4.21 to 0.4.22 (<a
href="https://redirect.github.com/nyurik/sqlite-compressions/issues/36">#36</a>)</li>
<li><a
href="c567edc61e"><code>c567edc</code></a>
Bump versions</li>
<li>See full diff in <a
href="https://github.com/nyurik/sqlite-compressions/compare/v0.2.12...v0.2.13">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Add an optional web UI interface for Martin, including docker-based cross-compilation support. The UI itself is a placeholder with a logo, but will grow in subsequent PRs.
This was branched off of https://github.com/maplibre/martin/pull/1142 to
address the PR feedback from @nyurik .
---------
Co-authored-by: Yuri Astrakhan <yuriastrakhan@gmail.com>
Co-authored-by: Tomer Ronen <tomer207@gmail.com>
Co-authored-by: tomeronen <45331634+tomeronen@users.noreply.github.com>
Bumps [rustls](https://github.com/rustls/rustls) from 0.23.10 to
0.23.11.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="7b521dadb9"><code>7b521da</code></a>
roadmap: reflect 0.23.11</li>
<li><a
href="cd9be0d031"><code>cd9be0d</code></a>
Prepare 0.23.11</li>
<li><a
href="f781276e6e"><code>f781276</code></a>
x509.rs: move <code>asn1_wrap</code> below callers</li>
<li><a
href="bc1e543e07"><code>bc1e543</code></a>
ring::sign: tidy up pkcs8 conversion</li>
<li><a
href="b5895c717c"><code>b5895c7</code></a>
Add <code>public_key()</code> for all built-in
<code>SigningKey</code>s</li>
<li><a
href="20fdce6ad9"><code>20fdce6</code></a>
Call CertifiedKey::keys_match from ConfigBuilder::with_single_cert*</li>
<li><a
href="54b3b5ed05"><code>54b3b5e</code></a>
Refactor AlwaysResolvesChain to take existing CertifiedKey</li>
<li><a
href="0e2d2ac38a"><code>0e2d2ac</code></a>
chore(deps): lock file maintenance</li>
<li><a
href="8b8d5dc588"><code>8b8d5dc</code></a>
Refactor and explain bulk <code>total_data</code> behaviour</li>
<li><a
href="fefc057f49"><code>fefc057</code></a>
Hoist Arc into <code>make_client/server_config</code> return type</li>
<li>Additional commits viewable in <a
href="https://github.com/rustls/rustls/compare/v/0.23.10...v/0.23.11">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
When applying raw (no gzip) patches, `mbtiles` was trying to un-gzip
them first. Now handles it properly. Also adds a number of tests to catch these cases.
* `mbtiles diff` now has an additional `--patch-type` param with
`whole`, `bin-diff-raw` and `bin-diff-gz` values:
* `whole` stores different tiles as before - as whole tiles in the
`tiles` table
* `bin-diff-raw` computes binary difference between tiles, and stores
them as brotli-encoded value in a `bsdiffraw` table, together with a
`xxh3_64` hash of the tile as it will be stored after patching
* `bin-diff-gz` same as `bin-diff-raw`, but assumes the tiles are
gzip-compressed, so it uncompresses them before comparing. The `xxh3_64`
stores the hash of the uncompressed tile. The data will be stored in the
`bsdiffrawgz` table (identical structure with above)
* `mbtiles copy --apply-patch` will automatically detect if
`bsdiffrawgz` or `bsdiffraw` tables exist, and will use binary patching.
* `mbtiles apply-patch` does not support binary patching yet
* `mbtiles copy --diff-with-file ... --patch-type ...` is an alias to
`mbtiles diff --patch-type ...`
Bumps [sqlite-hashes](https://github.com/nyurik/sqlite-hashes) from
0.7.2 to 0.7.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/nyurik/sqlite-hashes/releases">sqlite-hashes's
releases</a>.</em></p>
<blockquote>
<h2>v0.7.3</h2>
<p>Minor dependency updates and readme fixes</p>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/nyurik/sqlite-hashes/compare/v0.7.2...v0.7.3">https://github.com/nyurik/sqlite-hashes/compare/v0.7.2...v0.7.3</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="51fdad1c2d"><code>51fdad1</code></a>
bump deps, fix readme tests</li>
<li><a
href="d55150b503"><code>d55150b</code></a>
readme</li>
<li><a
href="1930cebc42"><code>1930ceb</code></a>
Fix SQLx example</li>
<li>See full diff in <a
href="https://github.com/nyurik/sqlite-hashes/compare/v0.7.2...v0.7.3">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [rustls](https://github.com/rustls/rustls) from 0.23.8 to 0.23.9.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="e754234b64"><code>e754234</code></a>
Prepare 0.23.9</li>
<li><a
href="590716e478"><code>590716e</code></a>
Fix unstable fmt job</li>
<li><a
href="de851b4601"><code>de851b4</code></a>
unbuffered examples: avoid clippy lint</li>
<li><a
href="5faa88c65b"><code>5faa88c</code></a>
hs.rs: refactor to eliminate conditional allow()</li>
<li><a
href="503d42bd5f"><code>503d42b</code></a>
Tidy away unneeded #[allow()]s</li>
<li><a
href="0c85c0199f"><code>0c85c01</code></a>
Add issue number for server-side ECH in the roadmap.</li>
<li><a
href="bacc19c9f0"><code>bacc19c</code></a>
General roadmap updates.</li>
<li><a
href="4bd989c7ef"><code>4bd989c</code></a>
handshake_test: reorder items in file</li>
<li><a
href="1aba137522"><code>1aba137</code></a>
handshake_test: clarify cloning tests</li>
<li><a
href="d202e0d581"><code>d202e0d</code></a>
handshake_test: remove get_ function prefices</li>
<li>Additional commits viewable in <a
href="https://github.com/rustls/rustls/compare/v/0.23.8...v/0.23.9">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [rustls](https://github.com/rustls/rustls) from 0.23.7 to 0.23.8.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="99abca5e49"><code>99abca5</code></a>
Prepare 0.23.8</li>
<li><a
href="06c777bb3f"><code>06c777b</code></a>
Hide internals from documentation</li>
<li><a
href="091587bc8b"><code>091587b</code></a>
Derive Clone for <code>ServerConfig</code> &
<code>ClientConfig</code></li>
<li><a
href="96648336a7"><code>9664833</code></a>
Refactor construction of <code>CertificatePayloadTls13</code></li>
<li><a
href="45c8a54589"><code>45c8a54</code></a>
Remove <code>PayloadU24::new</code></li>
<li><a
href="04ef27c7eb"><code>04ef27c</code></a>
api.rs: format imports</li>
<li><a
href="572f970b0b"><code>572f970</code></a>
Add test for CRL expiration</li>
<li><a
href="8da353056a"><code>8da3530</code></a>
Add support for enforcing CRL expiration</li>
<li><a
href="c57079361b"><code>c570793</code></a>
Cover <code>HandshakeMessagePayload::into_owned()</code></li>
<li><a
href="125d64164e"><code>125d641</code></a>
Test theoretical support for OCSP pinning</li>
<li>Additional commits viewable in <a
href="https://github.com/rustls/rustls/compare/v/0.23.7...v/0.23.8">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [rustls](https://github.com/rustls/rustls) from 0.23.6 to 0.23.7.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="e45fec43e1"><code>e45fec4</code></a>
Prepare 0.23.7</li>
<li><a
href="2c72fb0c31"><code>2c72fb0</code></a>
Test for more <code>close_notify</code> conditions</li>
<li><a
href="7d4e809e5e"><code>7d4e809</code></a>
Ignore duplicative <code>send_close_notify</code> calls</li>
<li><a
href="ced64bcedf"><code>ced64bc</code></a>
<code>read_tls</code> refuse to read further data after
<code>close_notify</code> alert</li>
<li><a
href="386b6fd2f9"><code>386b6fd</code></a>
Correctly discard data after <code>close_notify</code> alert</li>
<li>See full diff in <a
href="https://github.com/rustls/rustls/compare/v/0.23.6...v/0.23.7">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [rustls](https://github.com/rustls/rustls) from 0.23.5 to 0.23.6.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="06dc1d540c"><code>06dc1d5</code></a>
deps: update cargo semver compatible deps</li>
<li><a
href="252b5d360b"><code>252b5d3</code></a>
Prepare 0.23.6</li>
<li><a
href="55890f0ee6"><code>55890f0</code></a>
Test for junk in unbuffered input after <code>close_notify</code></li>
<li><a
href="972da7ff71"><code>972da7f</code></a>
Test app data after <code>close_notify</code> is ignored</li>
<li><a
href="424bb317ea"><code>424bb31</code></a>
Test for junk in deframer buffer after <code>close_notify</code></li>
<li><a
href="749121a976"><code>749121a</code></a>
Ignore data appearing after <code>close_notify</code></li>
<li><a
href="ef024342d1"><code>ef02434</code></a>
Deduplicate Reader state checks</li>
<li><a
href="ccb352c075"><code>ccb352c</code></a>
Linearize Reader::read() and read_buf()</li>
<li><a
href="27d81e01e8"><code>27d81e0</code></a>
Warn on lints, don't deny</li>
<li><a
href="f214df9826"><code>f214df9</code></a>
bogo: fix config rewriting when cpp is clang</li>
<li>Additional commits viewable in <a
href="https://github.com/rustls/rustls/compare/v/0.23.5...v/0.23.6">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [rustls](https://github.com/rustls/rustls) from 0.23.4 to 0.23.5.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="14cb5d2eac"><code>14cb5d2</code></a>
Prepare 0.23.5</li>
<li><a
href="6e938bcfe8"><code>6e938bc</code></a>
complete_io: bail out if progress is impossible</li>
<li><a
href="2123576840"><code>2123576</code></a>
Regression test for <code>complete_io</code> infinite loop bug</li>
<li><a
href="f45664fbde"><code>f45664f</code></a>
Don't specially handle unauthenticated close_notify alerts</li>
<li><a
href="1f5146cdfa"><code>1f5146c</code></a>
docs: update SECURITY example</li>
<li><a
href="5ea02ed56f"><code>5ea02ed</code></a>
Return <code>Option</code> from <code>handshake_kind()</code></li>
<li><a
href="d2e1e668aa"><code>d2e1e66</code></a>
bogo: verify expected handshake kind</li>
<li><a
href="d8a2ae040c"><code>d8a2ae0</code></a>
Add API exposing shape of the performed handshake</li>
<li><a
href="740ca41773"><code>740ca41</code></a>
tests/api.rs: reformat</li>
<li><a
href="5ed2c9739d"><code>5ed2c97</code></a>
deps: update cargo semver compatible deps</li>
<li>Additional commits viewable in <a
href="https://github.com/rustls/rustls/compare/v/0.23.4...v/0.23.5">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/maplibre/martin/network/alerts).
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Install `nasm` when running CI on Windows (required by rustls new
faster crypto-provider)
* In integration testing, wrap connection in mutex due to `rstest` now
requiring `once` fixtures to be `Sync`
* Upgrade to Brotli v4, and disable FFI due to compilation conflict
Bumps [pbf_font_tools](https://github.com/stadiamaps/sdf_font_tools)
from 2.5.0 to 2.5.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/stadiamaps/sdf_font_tools/releases">pbf_font_tools's
releases</a>.</em></p>
<blockquote>
<h2>tools-v2.5.1</h2>
<h2>What's Changed</h2>
<ul>
<li>Housekeeping by <a
href="https://github.com/ianthetechie"><code>@ianthetechie</code></a>
in <a
href="https://redirect.github.com/stadiamaps/sdf_font_tools/pull/17">stadiamaps/sdf_font_tools#17</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/stadiamaps/sdf_font_tools/compare/cli-v1.4.1...sdf-v1.0.1">https://github.com/stadiamaps/sdf_font_tools/compare/cli-v1.4.1...sdf-v1.0.1</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="011f994a59"><code>011f994</code></a>
Housekeeping (<a
href="https://redirect.github.com/stadiamaps/sdf_font_tools/issues/17">#17</a>)</li>
<li><a
href="97c5634b8e"><code>97c5634</code></a>
Fix CI issues round 2</li>
<li>See full diff in <a
href="https://github.com/stadiamaps/sdf_font_tools/compare/tools-v2.5.0...tools-v2.5.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
This adds the lambda-web crate to adapt the actix App to speak to Lambda
by way of the lambda_runtime crate.
AWS Lambda has native support for scripting languages to
execute a function directly; compiled languages must embed a runtime to
fetch incoming events from Lambda and post the responses. This detects
the environment variables to start up in Lambda mode instead of the
normal HTTP server, and is added as an optional feature.
Lambda has five (!) distinct ways of routing HTTP requests to a
function; this supports some of them. (Specifically, the most obvious
way to do this is with a Function URL, which is newest and simplest, and
perhaps with CloudFront, which speaks to the Function URL and not Lambda
directly.)
The error handling could probably be refined, I was just trying to get
this to compile.
(Supported: API Gateway HTTP API with payload format version 2.0; API
Gateway REST API; Lambda function URLs / Not supported: API Gateway HTTP
API with payload format version 1.0; Application Load Balancer)
Necessary for #1102 to be able to run the released packages directly,
and only having to configure the appropriate environment.
---------
Co-authored-by: Yuri Astrakhan <yuriastrakhan@gmail.com>
Require SQLite v3.44+ ORDER BY clause inside aggregate function instead
of the windowing one - might solve out of memory issues reported by
users - see #1154
dependabot[bot]
Frank Elsinga
Yuri Astrakhan
paigewilliams
Josh Lee