Skip to content

build(deps): bump minreq from 2.13.4 to 2.14.0 in the all-dependencies-cargo group #46

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

build(deps): bump minreq from 2.13.4 to 2.14.0 in the all-dependencies-cargo group #46

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jul 1, 2025
edited
Loading

Bumps the all-dependencies-cargo group with 1 update: minreq.

Updates minreq from 2.13.4 to 2.14.0

Release notes

Sourced from minreq's releases.

2.14.0

Cleaned up the https-bundled and https-bundled-probe code quite a bit. Now it's more "openssl backend" rather than "native-tls backend but vendored", so the features might change their names to https-openssl in the next major version, whenever that ends up happening.

Also, added a new option for requests, Request::with_follow_redirects, which can be used to disable redirection, for cases where you want to read the redirection HTTP responses themselves.

Changed

  • https-bundled, https-bundled-probe: Removed almost all of the bundled native-tls code (~1k LoC), only keeping the relevant part (~30 LoC). There should be no change to the actual code that ends up being ran, but if you're using these features, make sure to test that everything works as you expect, something might have slipped.

Fixed

  • https-*: Refactored the TLS handling code a bit. This should have no visible effect downstream, src/connection.rs is just a little bit more readable now.
  • Removed build.rs, which turned out to be dead code. This should have no effect, but if it does, it should also only affect the https-bundled and https-bundled-probe features.

Added

  • Request::with_follow_redirects for disabling redirection handling. Thanks for the suggestion, @​tachibanayui! (#120)
Changelog

Sourced from minreq's changelog.

[2.14.0] - 2025-06-27

Changed

  • https-bundled, https-bundled-probe: Removed almost all of the bundled native-tls code (~1k LoC), only keeping the relevant part (~30 LoC). There should be no change to the actual code that ends up being ran, but if you're using these features, make sure to test that everything works as you expect, something might have slipped.

Fixed

  • https-*: Refactored the TLS handling code a bit. This should have no visible effect downstream, src/connection.rs is just a little bit more readable now.
  • Removed build.rs, which turned out to be dead code. This should have no effect, but if it does, it should also only affect the https-bundled and https-bundled-probe features.

Added

  • Request::with_follow_redirects for disabling redirection handling. Thanks for the suggestion, @​tachibanayui! (#120)
Commits
  • 13e4ac5 Bump version to 2.14.0
  • 2a7e51e Disable uninlined_format_args lint until an MSRV bump
  • fe90b6a Add Request::with_follow_redirects
  • 42c260f Update changelog
  • c6a7b07 Prune almost everything left of the bundled native-tls openssl code
  • 63f22be Extract tls backend specifics out to separate modules
  • 58e6880 Avoid extern crate native_tls / mod native_tls conflict
  • 2364846 Clean up some code surrounding native_tls.rs
  • 4eb1846 Prune the unnecessary native_tls/native_tls::impl split
  • 96d2218 Prune native_tls.rs harder
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump minreq in the all-dependencies-cargo group
c640682 
Bumps the all-dependencies-cargo group with 1 update: [minreq](https://github.com/neonmoe/minreq).


Updates `minreq` from 2.13.4 to 2.14.0
- [Release notes](https://github.com/neonmoe/minreq/releases)
- [Changelog](https://github.com/neonmoe/minreq/blob/master/CHANGELOG.md)
- [Commits](neonmoe/minreq@2.13.4...2.14.0)

---
updated-dependencies:
- dependency-name: minreq
  dependency-version: 2.14.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-dependencies-cargo
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file rust Pull requests that update Rust code labels Jul 1, 2025
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Aug 1, 2025

Looks like minreq is updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Aug 1, 2025
@dependabot dependabot bot deleted the dependabot/cargo/all-dependencies-cargo-1bf5ef3a99 branch August 1, 2025 08:34
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file rust Pull requests that update Rust code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants