Skip to content

chore(deps): bump the sidecar-minor group across 1 directory with 12 updates #801

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
dependabot wants to merge 1 commit into from
Closed

chore(deps): bump the sidecar-minor group across 1 directory with 12 updates #801

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Apr 28, 2025
edited
Loading

Bumps the sidecar-minor group with 12 updates in the /bolt-sidecar directory:

Package From To
tokio 1.43.0 1.44.2
tree_hash 0.9.0 0.10.0
tree_hash_derive 0.9.0 0.10.0
secp256k1 0.30.0 0.31.0
alloy 0.11.0 0.11.1
alloy-rpc-types-engine 0.11.0 0.11.1
alloy-transport-http 0.11.0 0.11.1
alloy-provider 0.11.0 0.11.1
uuid 1.12.1 1.16.0
rand 0.8.5 0.9.1
metrics-exporter-prometheus 0.16.2 0.17.0
alloy-node-bindings 0.9.2 0.11.1

Updates tokio from 1.43.0 to 1.44.2

Release notes

Sourced from tokio's releases.

Tokio v1.44.2

This release fixes a soundness issue in the broadcast channel. The channel accepts values that are Send but !Sync. Previously, the channel called clone() on these values without synchronizing. This release fixes the channel by synchronizing calls to .clone() (Thanks Austin Bonander for finding and reporting the issue).

Fixed

  • sync: synchronize clone() call in broadcast channel (#7232)

#7232: tokio-rs/tokio#7232

Tokio v1.44.1

1.44.1 (March 13th, 2025)

Fixed

  • rt: skip defer queue in block_in_place context (#7216)

#7216: tokio-rs/tokio#7216

Tokio v1.44.0

1.44.0 (March 7th, 2025)

This release changes the from_std method on sockets to panic if a blocking socket is provided. We determined this change is not a breaking change as Tokio is not intended to operate using blocking sockets. Doing so results in runtime hangs and should be considered a bug. Accidentally passing a blocking socket to Tokio is one of the most common user mistakes. If this change causes an issue for you, please comment on #7172.

Added

  • coop: add task::coop module (#7116)
  • process: add Command::get_kill_on_drop() (#7086)
  • sync: add broadcast::Sender::closed (#6685, #7090)
  • sync: add broadcast::WeakSender (#7100)
  • sync: add oneshot::Receiver::is_empty() (#7153)
  • sync: add oneshot::Receiver::is_terminated() (#7152)

Fixed

  • fs: empty reads on File should not start a background read (#7139)
  • process: calling start_kill on exited child should not fail (#7160)
  • signal: fix CTRL_CLOSE, CTRL_LOGOFF, CTRL_SHUTDOWN on windows (#7122)
  • sync: properly handle panic during mpsc drop (#7094)

Changes

  • runtime: clean up magic number in registration set (#7112)
  • coop: make coop yield using waker defer strategy (#7185)
  • macros: make select! budget-aware (#7164)
  • net: panic when passing a blocking socket to from_std (#7166)
  • io: clean up buffer casts (#7142)

... (truncated)

Commits
  • ec4b1d7 chore: forward port 1.43.x
  • e3c3a56 Merge branch 'tokio-1.43.x' into forward-port-1.43.x
  • a7b658c chore: prepare Tokio v1.43.1 release
  • c1c8d10 Merge remote-tracking branch 'origin/tokio-1.38.x' into forward-port-1.38.x
  • aa303bc chore: prepare Tokio v1.38.2 release
  • 7b6ccb5 chore: backport CI fixes
  • 4b174ce sync: fix cloning value when receiving from broadcast channel
  • d413c9c chore: prepare Tokio v1.44.1 (#7217)
  • addbfb9 rt: skip defer queue in block_in_place context (#7216)
  • 8182ecf chore: prepare Tokio v1.44.0 (#7202)
  • Additional commits viewable in compare view

Updates tree_hash from 0.9.0 to 0.10.0

Release notes

Sourced from tree_hash's releases.

Release v0.10.0

What's Changed

New Contributors

Full Changelog: sigp/tree_hash@v0.9.1...v0.10.0

Release v0.9.1

What's Changed

Full Changelog: sigp/tree_hash@v0.9.0...v0.9.1

Commits

Updates tree_hash_derive from 0.9.0 to 0.10.0

Release notes

Sourced from tree_hash_derive's releases.

Release v0.10.0

What's Changed

New Contributors

Full Changelog: sigp/tree_hash@v0.9.1...v0.10.0

Release v0.9.1

What's Changed

Full Changelog: sigp/tree_hash@v0.9.0...v0.9.1

Commits

Updates secp256k1 from 0.30.0 to 0.31.0

Changelog

Sourced from secp256k1's changelog.

0.31.0 - 2025-04-21

  • Update rand to 0.9 #788
  • Create keys from owned array values instead of from references #781
  • Add from_u8_masked RecoveryId constructor #778
  • Update upstream to 0cdc758a56360bf58a851fe91085a327ec97685a (secp256k1-sys 0.6) #764
  • Add Keypair::sign_schnorr_no_aux_rand #762
  • Replace Message with Into<Message> in ECDSA signing API #755
  • Deprecate ElligatorSwiftParty in favor of Party #752
Commits

Updates alloy from 0.11.0 to 0.11.1

Release notes

Sourced from alloy's releases.

v0.11.1

What's Changed

New Contributors

... (truncated)

Changelog

Sourced from alloy's changelog.

0.11.1 - 2025-02-12

Bug Fixes

  • Make ChainLayer network agnostic (#2045)
  • [multicall] Impl Error for Failure + clear returns Empty builder. (#2043)
  • Don't validate when ABI decoding (#2041)
  • Overflow on CU offset (#1998)
  • [docs] Update outdated Provider doc comment (#1991)
  • Opt-in to keep stdout (#1985)

Documentation

  • Clean up top level docs (#2028)

Features

  • Add TxSigner support for Either (#2036)
  • [provider] Multicall (#2010)
  • Add try_get_deserialized (#2042)
  • Add helpers for account overrides (#2040)
  • Add builder style account override helpers (#2039)
  • [filler] Add prepare_call method (#2011)
  • [provider] DynProvider added as a helper on provider (#2008)
  • [provider] Expose inner AnvilInstance from AnvilProvider (#2037)
  • Add dynamic dispatch helper trait for (Signer +TxSigner) and (SignerSync + TxSignerSync) (#2035)
  • Builder fns for PrivateTransactionRequest and inner props (#1954) (#2023)
  • Test faulty roundtrip behavior of ExecutionPayload (#2014)
  • Add helpers for the blob gas (#2009)
  • Add Block::apply (#2006)
  • Add auth count helper fn (#2007)
  • Add blob_count helper fn (#2005)
  • [transport] Made avg_cost to be configurable in retrybackoff (#2002)
  • Add helper fn to unwrap Sendable (#2001)
  • Add additional payloadbody conversion fn (#1989)
  • [node-bindings] Expose anvil wallet (#1994)
  • [meta] Enable pubsub,trace,txpool,debug,anvil apis via full (#1992)
  • Add default for blobsbundle (#1990)
  • Add helpers to consume payloadfields (#1984)

Miscellaneous Tasks

  • Release 0.11.1
  • Re-export kzgsettings (#2034)
  • Silence unused warnings (#2031)
  • [serde] Remove quantity_bool (#2026)
  • Nicer error message when HTTP body is empty (#2024)
  • Camelcase serde (#2018)
  • Enable serde in tests (#2013)
  • Add serde support for Eip1559Estimation (#2012)

... (truncated)

Commits

Updates alloy-rpc-types-engine from 0.11.0 to 0.11.1

Release notes

Sourced from alloy-rpc-types-engine's releases.

v0.11.1

What's Changed

New Contributors

... (truncated)

Changelog

Sourced from alloy-rpc-types-engine's changelog.

0.11.1 - 2025-02-12

Bug Fixes

  • Make ChainLayer network agnostic (#2045)
  • [multicall] Impl Error for Failure + clear returns Empty builder. (#2043)
  • Don't validate when ABI decoding (#2041)
  • Overflow on CU offset (#1998)
  • [docs] Update outdated Provider doc comment (#1991)
  • Opt-in to keep stdout (#1985)

Documentation

  • Clean up top level docs (#2028)

Features

  • Add TxSigner support for Either (#2036)
  • [provider] Multicall (#2010)
  • Add try_get_deserialized (#2042)
  • Add helpers for account overrides (#2040)
  • Add builder style account override helpers (#2039)
  • [filler] Add prepare_call method (#2011)
  • [provider] DynProvider added as a helper on provider (#2008)
  • [provider] Expose inner AnvilInstance from AnvilProvider (#2037)
  • Add dynamic dispatch helper trait for (Signer +TxSigner) and (SignerSync + TxSignerSync) (#2035)
  • Builder fns for PrivateTransactionRequest and inner props (#1954) (#2023)
  • Test faulty roundtrip behavior of ExecutionPayload (#2014)
  • Add helpers for the blob gas (#2009)
  • Add Block::apply (#2006)
  • Add auth count helper fn (#2007)
  • Add blob_count helper fn (#2005)
  • [transport] Made avg_cost to be configurable in retrybackoff (#2002)
  • Add helper fn to unwrap Sendable (#2001)
  • Add additional payloadbody conversion fn (#1989)
  • [node-bindings] Expose anvil wallet (#1994)
  • [meta] Enable pubsub,trace,txpool,debug,anvil apis via full (#1992)
  • Add default for blobsbundle (#1990)
  • Add helpers to consume payloadfields (#1984)

Miscellaneous Tasks

  • Release 0.11.1
  • Re-export kzgsettings (#2034)
  • Silence unused warnings (#2031)
  • [serde] Remove quantity_bool (#2026)
  • Nicer error message when HTTP body is empty (#2024)
  • Camelcase serde (#2018)
  • Enable serde in tests (#2013)
  • Add serde support for Eip1559Estimation (#2012)

... (truncated)

Commits

Updates alloy-transport-http from 0.11.0 to 0.11.1

Release notes

Sourced from alloy-transport-http's releases.

v0.11.1

What's Changed

New Contributors

... (truncated)

Changelog

Sourced from alloy-transport-http's changelog.

0.11.1 - 2025-02-12

Bug Fixes

  • Make ChainLayer network agnostic (#2045)
  • [multicall] Impl Error for Failure + clear returns Empty builder. (#2043)
  • Don't validate when ABI decoding (#2041)
  • Overflow on CU offset (#1998)
  • [docs] Update outdated Provider doc com...

    Description has been truncated

@dependabot
chore(deps): bump the sidecar-minor group across 1 directory with 12 …
2b260ed 
…updates

Bumps the sidecar-minor group with 12 updates in the /bolt-sidecar directory:

| Package | From | To |
| --- | --- | --- |
| [tokio](https://github.com/tokio-rs/tokio) | `1.43.0` | `1.44.2` |
| [tree_hash](https://github.com/sigp/tree_hash) | `0.9.0` | `0.10.0` |
| [tree_hash_derive](https://github.com/sigp/tree_hash) | `0.9.0` | `0.10.0` |
| [secp256k1](https://github.com/rust-bitcoin/rust-secp256k1) | `0.30.0` | `0.31.0` |
| [alloy](https://github.com/alloy-rs/alloy) | `0.11.0` | `0.11.1` |
| [alloy-rpc-types-engine](https://github.com/alloy-rs/alloy) | `0.11.0` | `0.11.1` |
| [alloy-transport-http](https://github.com/alloy-rs/alloy) | `0.11.0` | `0.11.1` |
| [alloy-provider](https://github.com/alloy-rs/alloy) | `0.11.0` | `0.11.1` |
| [uuid](https://github.com/uuid-rs/uuid) | `1.12.1` | `1.16.0` |
| [rand](https://github.com/rust-random/rand) | `0.8.5` | `0.9.1` |
| [metrics-exporter-prometheus](https://github.com/metrics-rs/metrics) | `0.16.2` | `0.17.0` |
| [alloy-node-bindings](https://github.com/alloy-rs/alloy) | `0.9.2` | `0.11.1` |



Updates `tokio` from 1.43.0 to 1.44.2
- [Release notes](https://github.com/tokio-rs/tokio/releases)
- [Commits](tokio-rs/tokio@tokio-1.43.0...tokio-1.44.2)

Updates `tree_hash` from 0.9.0 to 0.10.0
- [Release notes](https://github.com/sigp/tree_hash/releases)
- [Commits](sigp/tree_hash@v0.9.0...v0.10.0)

Updates `tree_hash_derive` from 0.9.0 to 0.10.0
- [Release notes](https://github.com/sigp/tree_hash/releases)
- [Commits](sigp/tree_hash@v0.9.0...v0.10.0)

Updates `secp256k1` from 0.30.0 to 0.31.0
- [Changelog](https://github.com/rust-bitcoin/rust-secp256k1/blob/master/CHANGELOG.md)
- [Commits](rust-bitcoin/rust-secp256k1@secp256k1-0.30.0...secp256k1-0.31.0)

Updates `alloy` from 0.11.0 to 0.11.1
- [Release notes](https://github.com/alloy-rs/alloy/releases)
- [Changelog](https://github.com/alloy-rs/alloy/blob/main/CHANGELOG.md)
- [Commits](alloy-rs/alloy@v0.11.0...v0.11.1)

Updates `alloy-rpc-types-engine` from 0.11.0 to 0.11.1
- [Release notes](https://github.com/alloy-rs/alloy/releases)
- [Changelog](https://github.com/alloy-rs/alloy/blob/main/CHANGELOG.md)
- [Commits](alloy-rs/alloy@v0.11.0...v0.11.1)

Updates `alloy-transport-http` from 0.11.0 to 0.11.1
- [Release notes](https://github.com/alloy-rs/alloy/releases)
- [Changelog](https://github.com/alloy-rs/alloy/blob/main/CHANGELOG.md)
- [Commits](alloy-rs/alloy@v0.11.0...v0.11.1)

Updates `alloy-provider` from 0.11.0 to 0.11.1
- [Release notes](https://github.com/alloy-rs/alloy/releases)
- [Changelog](https://github.com/alloy-rs/alloy/blob/main/CHANGELOG.md)
- [Commits](alloy-rs/alloy@v0.11.0...v0.11.1)

Updates `uuid` from 1.12.1 to 1.16.0
- [Release notes](https://github.com/uuid-rs/uuid/releases)
- [Commits](uuid-rs/uuid@1.12.1...v1.16.0)

Updates `rand` from 0.8.5 to 0.9.1
- [Release notes](https://github.com/rust-random/rand/releases)
- [Changelog](https://github.com/rust-random/rand/blob/master/CHANGELOG.md)
- [Commits](rust-random/rand@0.8.5...rand_core-0.9.1)

Updates `metrics-exporter-prometheus` from 0.16.2 to 0.17.0
- [Changelog](https://github.com/metrics-rs/metrics/blob/main/release.toml)
- [Commits](metrics-rs/metrics@metrics-exporter-prometheus-v0.16.2...metrics-exporter-prometheus-v0.17.0)

Updates `alloy-node-bindings` from 0.9.2 to 0.11.1
- [Release notes](https://github.com/alloy-rs/alloy/releases)
- [Changelog](https://github.com/alloy-rs/alloy/blob/main/CHANGELOG.md)
- [Commits](alloy-rs/alloy@v0.9.2...v0.11.1)

---
updated-dependencies:
- dependency-name: tokio
  dependency-version: 1.44.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sidecar-minor
- dependency-name: tree_hash
  dependency-version: 0.10.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sidecar-minor
- dependency-name: tree_hash_derive
  dependency-version: 0.10.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sidecar-minor
- dependency-name: secp256k1
  dependency-version: 0.31.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sidecar-minor
- dependency-name: alloy
  dependency-version: 0.11.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: sidecar-minor
- dependency-name: alloy-rpc-types-engine
  dependency-version: 0.11.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: sidecar-minor
- dependency-name: alloy-transport-http
  dependency-version: 0.11.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: sidecar-minor
- dependency-name: alloy-provider
  dependency-version: 0.11.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: sidecar-minor
- dependency-name: uuid
  dependency-version: 1.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sidecar-minor
- dependency-name: rand
  dependency-version: 0.9.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sidecar-minor
- dependency-name: metrics-exporter-prometheus
  dependency-version: 0.17.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sidecar-minor
- dependency-name: alloy-node-bindings
  dependency-version: 0.11.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sidecar-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the T: security Type: Security label Apr 28, 2025
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github May 5, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this May 5, 2025
@dependabot dependabot bot deleted the dependabot/cargo/bolt-sidecar/sidecar-minor-627f6f7720 branch May 5, 2025 07:32
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

T: security Type: Security

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant