build(deps): bump the rust-dependencies group across 1 directory with 20 updates #10

dependabot · 2026-01-04T02:21:13Z

Bumps the rust-dependencies group with 20 updates in the / directory:

Package	From	To
tokio	`1.48.0`	`1.49.0`
serde_json	`1.0.145`	`1.0.148`
tracing	`0.1.43`	`0.1.44`
rand	`0.8.5`	`0.9.2`
jsonschema	`0.18.3`	`0.38.1`
metrics	`0.22.4`	`0.24.3`
criterion	`0.5.1`	`0.8.1`
reqwest	`0.12.25`	`0.13.1`
moka	`0.12.11`	`0.12.12`
async-openai	`0.24.1`	`0.32.2`
axum	`0.8.7`	`0.8.8`
jsonwebtoken	`9.3.1`	`10.2.0`
governor	`0.8.1`	`0.10.4`
tower_governor	`0.5.0`	`0.8.0`
syn	`2.0.111`	`2.0.113`
proc-macro2	`1.0.103`	`1.0.104`
darling	`0.20.11`	`0.23.0`
clap	`4.5.53`	`4.5.54`
colored	`2.2.0`	`3.0.0`
tempfile	`3.23.0`	`3.24.0`

Updates tokio from 1.48.0 to 1.49.0

Release notes

Sourced from tokio's releases.

Tokio v1.49.0

1.49.0 (January 3rd, 2026)

Added

net: add support for TCLASS option on IPv6 (#7781)

runtime: stabilize runtime::id::Id (#7125)

task: implement Extend for JoinSet (#7195)

task: stabilize the LocalSet::id() (#7776)

Changed

net: deprecate {TcpStream,TcpSocket}::set_linger (#7752)

Fixed

macros: fix the hygiene issue of join! and try_join! (#7766)

runtime: revert "replace manual vtable definitions with Wake" (#7699)

sync: return TryRecvError::Disconnected from Receiver::try_recv after Receiver::close (#7686)

task: remove unnecessary trait bounds on the Debug implementation (#7720)

Unstable

fs: handle EINTR in fs::write for io-uring (#7786)

fs: support io-uring with tokio::fs::read (#7696)

runtime: disable io-uring on EPERM (#7724)

time: add alternative timer for better multicore scalability (#7467)

Documented

docs: fix a typos in bounded.rs and park.rs (#7817)

io: add SyncIoBridge cross-references to copy and copy_buf (#7798)

io: doc that AsyncWrite does not inherit from std::io::Write (#7705)

metrics: clarify that num_alive_tasks is not strongly consistent (#7614)

net: clarify the cancellation safety of the TcpStream::peek (#7305)

net: clarify the drop behavior of unix::OwnedWriteHalf (#7742)

net: clarify the platform-dependent backlog in TcpSocket docs (#7738)

runtime: mention LocalRuntime in new_current_thread docs (#7820)

sync: add missing period to mpsc::Sender::try_send docs (#7721)

sync: clarify the cancellation safety of oneshot::Receiver (#7780)

sync: improve the docs for the errors of mpsc (#7722)

task: add example for spawn_local usage on local runtime (#7689)

#7125: tokio-rs/tokio#7125 #7195: tokio-rs/tokio#7195 #7305: tokio-rs/tokio#7305 #7467: tokio-rs/tokio#7467 #7614: tokio-rs/tokio#7614 #7686: tokio-rs/tokio#7686 #7689: tokio-rs/tokio#7689

... (truncated)

Commits

e3b89bb chore: prepare Tokio v1.49.0 (#7824)
4f577b8 Merge 'tokio-1.47.3' into 'master'
f320197 chore: prepare Tokio v1.47.3 (#7823)
ea6b144 ci: freeze rustc on nightly-2025-01-25 in netlify.toml (#7652)
264e703 Merge tokio-1.43.4 into tokio-1.47.x (#7822)
dfb0f00 chore: prepare Tokio v1.43.4 (#7821)
4a91f19 ci: fix wasm32-wasip1 tests (#7788)
601c383 ci: upgrade FreeBSD from 14.2 to 14.3 (#7758)
484cb52 sync: return TryRecvError::Disconnected from Receiver::try_recv after `Re...
16f20c3 rt: mention LocalRuntime in new_current_thread docs (#7820)
Additional commits viewable in compare view

Updates serde_json from 1.0.145 to 1.0.148

Release notes

Sourced from serde_json's releases.

v1.0.148

Update zmij dependency to 1.0

v1.0.147

Switch float-to-string algorithm from Ryū to Żmij for better f32 and f64 serialization performance (#1304)

v1.0.146

Set fast_arithmetic=64 for riscv64 (#1305, thanks @Xeonacid)

Commits

8b291c4 Release 1.0.148
1aefe15 Update to zmij 1.0
62d6e8d Release 1.0.147
fd829a6 Merge pull request #1304 from dtolnay/zmij
e757a3d Switch from ryu -> zmij for float formatting
75ad7e6 Release 1.0.146
bc6c827 Merge pull request #1305 from Xeonacid/patch-1
a09210a Set fast_arithmetic=64 for riscv64
01182e5 Update actions/upload-artifact@v5 -> v6
383b13a Update actions/upload-artifact@v4 -> v5
Additional commits viewable in compare view

Updates tracing from 0.1.43 to 0.1.44

Release notes

Sourced from tracing's releases.

tracing 0.1.44

Fixed

Fix record_all panic (#3432)

Changed

tracing-core: updated to 0.1.36 (#3440)

#3432: tokio-rs/tracing#3432 #3440: tokio-rs/tracing#3440

Commits

2d55f6f chore: prepare tracing 0.1.44 (#3439)
10a9e83 chore: prepare tracing-core 0.1.36 (#3440)
ee82cf9 tracing: fix record_all panic (#3432)
9978c36 chore: prepare tracing-mock 0.1.0-beta.3 (#3429)
cc44064 chore: prepare tracing-subscriber 0.3.22 (#3428)
See full diff in compare view

Updates rand from 0.8.5 to 0.9.2

Changelog

Sourced from rand's changelog.

[0.9.2] - 2025-07-20

Deprecated

Deprecate rand::rngs::mock module and StepRng generator (#1634)

Additions

Enable WeightedIndex<usize> (de)serialization (#1646)

[0.9.1] - 2025-04-17

Security and unsafe

Revise "not a crypto library" policy again (#1565)

Remove zerocopy dependency from rand (#1579)

Fixes

Fix feature simd_support for recent nightly rust (#1586)

Changes

Allow fn rand::seq::index::sample_weighted and fn IndexedRandom::choose_multiple_weighted to return fewer than amount results (#1623), reverting an undocumented change (#1382) to the previous release.

Additions

Add rand::distr::Alphabetic distribution. (#1587)

Re-export rand_core (#1604)

[0.9.0] - 2025-01-27

Security and unsafe

Policy: "rand is not a crypto library" (#1514)

Remove fork-protection from ReseedingRng and ThreadRng. Instead, it is recommended to call ThreadRng::reseed on fork. (#1379)

Use zerocopy to replace some unsafe code (#1349, #1393, #1446, #1502)

Dependencies

Bump the MSRV to 1.63.0 (#1207, #1246, #1269, #1341, #1416, #1536); note that 1.60.0 may work for dependents when using --ignore-rust-version

Update to rand_core v0.9.0 (#1558)

Features

Support std feature without getrandom or rand_chacha (#1354)

Enable feature small_rng by default (#1455)

Remove implicit feature rand_chacha; use std_rng instead. (#1473)

Rename feature serde1 to serde (#1477)

Rename feature getrandom to os_rng (#1537)

Add feature thread_rng (#1547)

API changes: rand_core traits

Add fn RngCore::read_adapter implementing std::io::Read (#1267)

Add trait CryptoBlockRng: BlockRngCore; make trait CryptoRng: RngCore (#1273)

Add traits TryRngCore, TryCryptoRng (#1424, #1499)

Rename fn SeedableRng::from_rng -> try_from_rng and add infallible variant fn from_rng (#1424)

Rename fn SeedableRng::from_entropy -> from_os_rng and add fallible variant fn try_from_os_rng (#1424)

Add bounds Clone and AsRef to associated type SeedableRng::Seed (#1491)

API changes: Rng trait and top-level fns

Rename fn rand::thread_rng() to rand::rng() and remove from the prelude (#1506)

... (truncated)

Commits

d3dd415 Prepare rand_core 0.9.2 (#1605)
99fabd2 Prepare rand_core 0.9.2
c7fe1c4 rand: re-export rand_core (#1604)
db2b1e0 rand: re-export rand_core
ee1d96f rand_core: implement reborrow for UnwrapMut (#1595)
e0eb2ee rand_core: implement reborrow for UnwrapMut
975f602 fixup clippy 1.85 warnings
775b05b Relax Sized requirements for blanket impls (#1593)
ec6d5c0 Prepare rand_core v0.9.1 (#1591)
6a06056 rand_core: introduce an UnwrapMut wrapper (#1589)
Additional commits viewable in compare view

Updates jsonschema from 0.18.3 to 0.38.1

Release notes

Sourced from jsonschema's releases.

[Python] Release 0.38.1

Fixed

multipleOf validation for integer values between 2^53 and i64::MAX.

[Rust] Release 0.38.1

Fixed

multipleOf validation for integer values between 2^53 and i64::MAX with arbitrary-precision feature.

[Python] Release 0.38.0

Added

EmailOptions for configuring email format validation.

Fixed

multipleOf validation for large integers beyond i64::MAX.

Incorrect mask parameter in evaluate docstring.

Removed

with_meta_schemas parameter from type stubs (was removed from the API long ago).

[Rust] Release 0.38.0

Added

EmailOptions for configuring email format validation. #903

Fixed

Use-after-free in async $ref resolution when multiple refs target the same external URL with different fragments. #906

multipleOf validation for large u64 values beyond i64::MAX with arbitrary-precision feature.

Validator not being Send + Sync on WASM targets. #915

[Python] Release 0.37.4

Fixed

Stack overflow during validation of schemas with circular $ref chains (e.g., a -> b -> a).

Local $ref resolution within fragment-extracted external resources. #892

[Rust] Release 0.37.4

Fixed

Stack overflow during validation of schemas with circular $ref chains (e.g., a -> b -> a).

Local $ref resolution within fragment-extracted external resources. #892

Removed

Deprecated PrimitiveType & PrimitiveTypesBitMap.

... (truncated)

Changelog

Sourced from jsonschema's changelog.

[0.38.1] - 2025-12-25

Fixed

multipleOf validation for integer values between 2^53 and i64::MAX with arbitrary-precision feature.

[0.38.0] - 2025-12-24

Added

EmailOptions for configuring email format validation. #903

Fixed

Use-after-free in async $ref resolution when multiple refs target the same external URL with different fragments. #906

multipleOf validation for large u64 values beyond i64::MAX with arbitrary-precision feature.

Validator not being Send + Sync on WASM targets. #915

[0.37.4] - 2025-11-30

Fixed

Stack overflow during validation of schemas with circular $ref chains (e.g., a -> b -> a).

Local $ref resolution within fragment-extracted external resources. #892

Removed

Deprecated PrimitiveType & PrimitiveTypesBitMap.

[0.37.3] - 2025-11-28

Fixed

External resources not discovered within subresources of local $ref targets. #892

[0.37.2] - 2025-11-27

Added

JsonTypeSet::len() and JsonTypeSet::remove() helpers for managing type sets.

Fixed

External resources not discovered through chained local $ref references. #892

[0.37.1] - 2025-11-19

Fixed

Stack overflow on empty $ref value. #886

... (truncated)

Commits

4a61579 chore(rust): Release 0.38.1
597551e fix: multipleOf validation for integer values between 2^53 and i64::MAX...
f99610b fix: multipleOf validation for integer values between 2^53 and i64::MAX...
c07b399 chore(python): Release 0.38.0
b95a9f2 docs: Document panics for blocking code in async context
6f532dc chore(rust): Release 0.38.0
a55f18c fix: Use-after-free in async $ref resolution when multiple refs target the ...
f4bdaa0 chore(python): Remove mask parameter from type stubs of evaluate method
e28b4e8 fix: Validator not being Send + Sync on WASM targets
1227a0f chore(python): Remove with_meta_schemas parameter from type stubs
Additional commits viewable in compare view

Updates metrics from 0.22.4 to 0.24.3

Commits

0b95e10 chore: Release
98eba87 chore: changelog updates
65eff4f feat(prometheus): add render_to_write function (#641)
52c07eb chore(deps): bump hyper from 1.6.0 to 1.8.1 (#642)
c664a01 add KeyName -> std::Cow paths (#640)
4c0a319 fix(metrics-exporter-prometheus): fix visibility issue with LabelSet
fde7e85 actually export LabelSet so it can be used with formatting methods
51fbc50 update CHANGELOG to prepare for release
41a2bb9 enhancement(metrics-exporter-prometheus): implement native histogram support
e182e75 chore(deps): bump hyper-util from 0.1.11 to 0.1.17 (#636)
Additional commits viewable in compare view

Updates criterion from 0.5.1 to 0.8.1

Release notes

Sourced from criterion's releases.

criterion-plot-v0.8.1

Fixed

Typo

criterion-v0.8.1

Fixed

Homepage link

Other

(deps) bump crate-ci/typos from 1.23.5 to 1.40.0

(deps) bump jontze/action-mdbook from 3 to 4

(deps) bump actions/checkout from 4 to 6

criterion-plot-v0.8.0

No release notes provided.

criterion-v0.8.0

BREAKING

Drop async-std support

Changed

Bump MSRV to 1.86, stable to 1.91.1

Added

Add ability to plot throughput on summary page.

Add support for reporting throughput in elements and bytes - Throughput::ElementsAndBytes allows the text summary to report throughput in both units simultaneously.

Add alloca-based memory layout randomisation to mitigate memory effects on measurements.

Add doc comment to benchmark runner in criterion_group macro (removes linter warnings)

Fixed

Fix plotting NaN bug

Other

Remove Master API Docs links temporarily while we restore the docs publishing.

criterion-plot-v0.7.0

No release notes provided.

Changelog

Sourced from criterion's changelog.

0.8.1 - 2025-12-07

Fixed

Homepage link

Other

(deps) bump crate-ci/typos from 1.23.5 to 1.40.0

(deps) bump jontze/action-mdbook from 3 to 4

(deps) bump actions/checkout from 4 to 6

0.8.0 - 2025-11-29

BREAKING

Drop async-std support

Changed

Bump MSRV to 1.86, stable to 1.91.1

Added

Add ability to plot throughput on summary page.

Add support for reporting throughput in elements and bytes - Throughput::ElementsAndBytes allows the text summary to report throughput in both units simultaneously.

Add alloca-based memory layout randomisation to mitigate memory effects on measurements.

Add doc comment to benchmark runner in criterion_group macro (removes linter warnings)

Fixed

Fix plotting NaN bug

Other

Remove Master API Docs links temporarily while we restore the docs publishing.

[0.7.0] - 2025-07-25

Bump version of criterion-plot to align dependencies.

[0.6.0] - 2025-05-17

Changed

MSRV bumped to 1.80

The real_blackbox feature no longer has any impact. Criterion always uses std::hint::black_box() now. Users of criterion::black_box() should switch to std::hint::black_box().

clap dependency unpinned.

Fixed

... (truncated)

Commits

e4e06df chore: release v0.8.1
aa548b9 fix: Homepage link
950c3b7 fix: Typo
7e3e50c chore(deps): bump crate-ci/typos from 1.23.5 to 1.40.0
391a99a chore(deps): bump jontze/action-mdbook from 3 to 4
8fb9a87 chore(deps): bump actions/checkout from 4 to 6
b49ade7 chore: release v0.8.0
c56485f docs: Mark Master API Docs links that need to be updated
86526a4 docs: Remove Master API Docs link temporarily
00a443f docs: Update README links
Additional commits viewable in compare view

Updates reqwest from 0.12.25 to 0.13.1

Release notes

Sourced from reqwest's releases.

v0.13.1

What's Changed

http3: depend on quinn/rustls-aws-lc-rs to avoid ring dependency by @djc in seanmonstar/reqwest#2917

fix rustls on android by @seanmonstar in seanmonstar/reqwest#2918

Full Changelog: seanmonstar/reqwest@v0.13.0...v0.13.1

v0.13.0

Breaking changes

rustls is now the default TLS backend, instead of native-tls.

rustls crypto provider defaults to aws-lc instead of ring. (rustls-no-provider exists if you want a different crypto provider)

rustls-tls has been renamed to rustls.

rustls roots features removed, rustls-platform-verifier is used by default.

To use different roots, call tls_certs_only(your_roots).

native-tls now includes ALPN. To disable, use native-tls-no-alpn.

query and form are now crate features, disabled by default.

Long-deprecated methods and crate features have been removed (such as trust-dns, which was renamed hickory-dns a while ago).

Many TLS-related methods renamed to improve autocompletion and discovery, but previous name left in place with a "soft" deprecation. (just documented, no warnings)

For example, prefer tls_backend_rustls() over use_rustls_tls().

Pull Requests in General

start 0.13 dev by @seanmonstar in seanmonstar/reqwest#2894

Make serde optional by introducing query, form features, and re-working WASM header parsing by @CathalMullan in seanmonstar/reqwest#2858

replace ClientBuilder::dns_resolver with dns_resolver2 by @seanmonstar in seanmonstar/reqwest#2898

feat: make Rustls the default TLS provider by @calavera in seanmonstar/reqwest#2897

feat: consolidate TLS options with rustls-platform-verifier by @seanmonstar in seanmonstar/reqwest#2891

remove long-deprecated methods: trust-dns and non-wasm-cors by @seanmonstar in seanmonstar/reqwest#2899

rename rustls-tls feature to just rustls by @seanmonstar in seanmonstar/reqwest#2900

remove deprecated features trust-dns and macos-system-configuration by @seanmonstar in seanmonstar/reqwest#2901

chore: separate rustls and rustls-no-provider features by @seanmonstar in seanmonstar/reqwest#2903

rustls: allow windows to use extra roots by @seanmonstar in seanmonstar/reqwest#2904

v0.13.0-rc.1 by @seanmonstar in seanmonstar/reqwest#2905

Enable ALPN by default in native-tls by @ducaale in seanmonstar/reqwest#2907

v0.13.0 by @seanmonstar in seanmonstar/reqwest#2915

New Contributors

@CathalMullan made their first contribution in seanmonstar/reqwest#2858

Full Changelog: seanmonstar/reqwest@v0.12.28...v0.13.0

v0.13.0-rc.1

👀 Discussion here if you give it try, thanks!

Main breaking changes

rustls is now default instead of native-tls

rustls provider defaults to aws-lc instead of ring (rustls-no-provider exists if you want to enable a different one)

rustls-tls renamed to rustls

rustls roots features removed, platform-verifier is used instead

... (truncated)

Changelog

Sourced from reqwest's changelog.

v0.13.1

Fixes compiling with rustls on Android targets.

v0.13.0

Breaking changes:

rustls is now the default TLS backend, instead of native-tls.

rustls crypto provider defaults to aws-lc instead of ring. (rustls-no-provider exists if you want a different crypto provider)

rustls-tls has been renamed to rustls.

rustls roots features removed, rustls-platform-verifier is used by default.

To use different roots, call tls_certs_only(your_roots).

native-tls now includes ALPN. To disable, use native-tls-no-alpn.

query and form are now crate features, disabled by default.

Long-deprecated methods and crate features have been removed (such as trust-dns, which was renamed hickory-dns a while ago).

Many TLS-related methods renamed to improve autocompletion and discovery, but previous name left in place with a "soft" deprecation. (just documented, no warnings)

For example, prefer tls_backend_rustls() over use_rustls_tls().

v0.12.28

Fix compiling on Windows if TLS and SOCKS features are not enabled.

v0.12.27

Add ClientBuilder::windows_named_pipe(name) option that will force all requests over that Windows Named Piper.

v0.12.26

Fix sending Accept-Encoding header only with values configured with reqwest, regardless of underlying tower-http config.

Commits

10fb98c v0.13.1
438098a chore: refer to h2 as dep:h2 (#2919)
43aac91 chore(ci): bump actions/checkout from 5 to 6 (#2864)
175f5b2 fix rustls on android (#2918)
1afe88e Depend on quinn/rustls-aws-lc-rs to avoid ring dependency (#2917)
62a80af v0.13.0
e8d89f4 enable ALPN by default in native-tls (#2907)
9a9daa7 v0.13.0-rc.1
d518e45 rustls: allow windows to use extra roots (#2904)
934bc84 chore: separate rustls and rustls-no-provider features (#2903)
Additional commits viewable in compare view

Updates moka from 0.12.11 to 0.12.12

Release notes

Sourced from moka's releases.

Moka 0.12.12

Version 0.12.12

Bumped the minimum supported Rust version (MSRV) to 1.71.1, released on August 3, 2023 (#555 gh-pull-0555).

Fixed

Fixed use-after-free panic in the hierarchical timer wheels when Expiry returns None (#548 gh-pull-0548, by @awarus).

Fixed a subtle undefined behavior (UB) in the internal deque::move_to_back method (found by Miri) (#553 gh-pull-0553).

Added

impl Expiry for some types (#519 gh-pull-0519, by @koushiro).

Removed

Removed several unneeded files from the published package (#541 gh-pull-0541, by @weiznich).

Removed the once_cell crate from the dependencies (#520 gh-pull-0520, by @Expyron).

Removed the rustc_version crate from the dev-dependencies (#554 gh-pull-0554).

Changelog

Sourced from moka's changelog.

Version 0.12.12

Bumped the minimum supported Rust version (MSRV) to 1.71.1, released on August 3, 2023 (#555[gh-pull-0555]).

Fixed

Fixed use-after-free panic in the hierarchical timer wheels when Expiry returns None (#548[gh-pull-0548], by [@awarus][gh-awarus]).

Fixed a subtle undefined behavior (UB) in the internal deque::move_to_back method (found by Miri) (#553[gh-pull-0553]).

Added

impl Expiry for some types (#519[gh-pull-0519], by [@koushiro][gh-koushiro]).

Removed

Removed several unneeded files from the published package (#541[gh-pull-0541], by [@weiznich][gh-weiznich]).

Removed the once_cell crate from the dependencies (#520[gh-pull-0520], by [@Expyron][gh-Expyron]).

Removed the rustc_version crate from the dev-dependencies (#554[gh-pull-0554]).

Commits

4ffcc25 Merge pull request #559 from moka-rs/tweak-changelog-format
c37c952 dox: Fix identation in the CHANGELOG.md
28c692c Merge pull request #558 from moka-rs/prepare-0.12.12
13a8ec9 doc: Update the CHANGELOG and README for v0.12.12
a0b263f doc: Update the CHANGELOG and README for v0.12.12
f3d7822 feat: Version 0.12.12
65cfeb4 Merge pull request #557 from moka-rs/fix-cd/2025-12-20-msrv-1.71.1
78b6299 chore: Fix Clippy warnings
3763451 Merge pull request #553 from moka-rs/fix-deque-ub
7f9c40f Merge pull request #556 from moka-rs/msrv-1.71.1-cargo.toml
Additional commits viewable in compare view

Updates async-openai from 0.24.1 to 0.32.2

Release notes

Sourced from async-openai's releases.

v0.32.2

What's Changed

fix: output_token_details in ImageGenUsage to be Optional by @64bit in 64bit/async-openai#508

Full Changelog: 64bit/async-openai@async-openai-v0.32.1...async-openai-v0.32.2

v0.32.1

What's Changed

feat: WASM support by @64bit in 64bit/async-openai#506

Full Changelog: 64bit/async-openai@async-openai-v0.32.0...async-openai-v0.32.1

v0.32.0

What's Changed

fix: remove duplicate doc comments in byot macro output by @majiayu000 in 64bit/async-openai#501

feat: upstream spec sync by @64bit in 64bit/async-openai#502

Changes in #502

Added:

create voice api

voice consent apis

response compact api

Updated Types A few types have breaking changes from upstream, hence the minor version bump, if you're not using these types then crate version upgrade should be no-op:

RealtimeServerEvent has a new variant InputAudioBufferDtmfEventReceived

Item and OutputItem from types/responses/response.rs has updated variants

ReasoningEffort has a new variant for xhigh

AuditLogEventType has updated variants

ImageModel has updated variants

CreateVideoRequest is updated

Video API types:

renamed VideoJob -> VideoResource and updated field types, VideoJobError -> VideoResourceError; ListVideoResponse -> VideoListResource with updated fields; VideoJobMetadata -> DeletedVideoResource

updated examples/video to use updated types

EvalItemContent and types nested under are updated.

Updated Spec Synced from https://app.stainless.com/api/spec/documented/openai/openapi.documented.yml

New Contributors

@majiayu000 made their first contribution in 64bit/async-openai#501

Full Changelog: 64bit/async-openai@async-openai-v0.31.1...async-openai-v0.32.0

v0.31.1

What's Changed

Fix type issue with ListFilesResponse by @MakotoE in 64bit/async-openai#495

... (truncated)

Commits

37f17d4 chore: Release
f3648a3 output_token_details in ImageGenUsage to be Optional (#508)
a7de582 chore: Release
096f4b8 feat: WASM support (#506)
e258d31 chore: Release
58a4d04 add README.md for async-openai-macros
8fdaa19 asycn-openai-macros 0.1.1
2331b6b feat: upstream spec sync (#502)
c2af0c6 fix: remove duplicate doc comments in byot macro output (#501)
edba47d chore: Release
Additional commits viewable in compare view

Updates axum from 0.8.7 to 0.8.8

Release notes

Sourced from axum's releases.

axum v0.8.8

Clarify documentation for Router::route_layer (#3567)

#3567: tokio-rs/axum#3567

Commits

d07863f Release axum v0.8.8 and axum-extra v0.12.3
287c674 axum-extra: Make typed-routing feature enable routing feature (#3514)
f5804aa SecondElementIs: Correct a small inconsistency (#3559)
f51f3ba axum-extra: Add trailing newline to pretty JSON response (#3526)
816407a Fix integer underflow in try_range_response for empty files (#3566)
78656eb docs: Clarify route_layer does not apply middleware to the fallback handler...
See full diff in compare view

Updates jsonwebtoken from 9.3.1 to 10.2.0

Changelog

Sourced from jsonwebtoken's changelog.

10.2.0 (2025-11-06)

Remove Clone bound from decode functions

10.1.0 (2025-10-18)

add dangerous::insecure_decode

Implement TryFrom &Jwk for DecodingKey

10.0.0 (2025-09-29)

BREAKING: now using traits for crypto backends, you have to choose between aws_lc_rs and rust_crypto

Add Clone bound to decode

Support decoding byte slices

Support JWS

Commits

53a3fc2 Do not fail for clippy
3226cfc Prepare for release
dfe58f9 Remove unnecessary Clone bounds from decode functions (#458)
9b3e19c Fix function names in README ...
Description has been truncated

… 20 updates Bumps the rust-dependencies group with 20 updates in the / directory: | Package | From | To | | --- | --- | --- | | [tokio](https://github.com/tokio-rs/tokio) | `1.48.0` | `1.49.0` | | [serde_json](https://github.com/serde-rs/json) | `1.0.145` | `1.0.148` | | [tracing](https://github.com/tokio-rs/tracing) | `0.1.43` | `0.1.44` | | [rand](https://github.com/rust-random/rand) | `0.8.5` | `0.9.2` | | [jsonschema](https://github.com/Stranger6667/jsonschema) | `0.18.3` | `0.38.1` | | [metrics](https://github.com/metrics-rs/metrics) | `0.22.4` | `0.24.3` | | [criterion](https://github.com/criterion-rs/criterion.rs) | `0.5.1` | `0.8.1` | | [reqwest](https://github.com/seanmonstar/reqwest) | `0.12.25` | `0.13.1` | | [moka](https://github.com/moka-rs/moka) | `0.12.11` | `0.12.12` | | [async-openai](https://github.com/64bit/async-openai) | `0.24.1` | `0.32.2` | | [axum](https://github.com/tokio-rs/axum) | `0.8.7` | `0.8.8` | | [jsonwebtoken](https://github.com/Keats/jsonwebtoken) | `9.3.1` | `10.2.0` | | [governor](https://github.com/boinkor-net/governor) | `0.8.1` | `0.10.4` | | [tower_governor](https://github.com/benwis/tower-governor) | `0.5.0` | `0.8.0` | | [syn](https://github.com/dtolnay/syn) | `2.0.111` | `2.0.113` | | [proc-macro2](https://github.com/dtolnay/proc-macro2) | `1.0.103` | `1.0.104` | | [darling](https://github.com/TedDriggs/darling) | `0.20.11` | `0.23.0` | | [clap](https://github.com/clap-rs/clap) | `4.5.53` | `4.5.54` | | [colored](https://github.com/mackwic/colored) | `2.2.0` | `3.0.0` | | [tempfile](https://github.com/Stebalien/tempfile) | `3.23.0` | `3.24.0` | Updates `tokio` from 1.48.0 to 1.49.0 - [Release notes](https://github.com/tokio-rs/tokio/releases) - [Commits](tokio-rs/tokio@tokio-1.48.0...tokio-1.49.0) Updates `serde_json` from 1.0.145 to 1.0.148 - [Release notes](https://github.com/serde-rs/json/releases) - [Commits](serde-rs/json@v1.0.145...v1.0.148) Updates `tracing` from 0.1.43 to 0.1.44 - [Release notes](https://github.com/tokio-rs/tracing/releases) - [Commits](tokio-rs/tracing@tracing-0.1.43...tracing-0.1.44) Updates `rand` from 0.8.5 to 0.9.2 - [Release notes](https://github.com/rust-random/rand/releases) - [Changelog](https://github.com/rust-random/rand/blob/master/CHANGELOG.md) - [Commits](rust-random/rand@0.8.5...rand_core-0.9.2) Updates `jsonschema` from 0.18.3 to 0.38.1 - [Release notes](https://github.com/Stranger6667/jsonschema/releases) - [Changelog](https://github.com/Stranger6667/jsonschema/blob/master/CHANGELOG.md) - [Commits](Stranger6667/jsonschema@rust-v0.18.3...rust-v0.38.1) Updates `metrics` from 0.22.4 to 0.24.3 - [Changelog](https://github.com/metrics-rs/metrics/blob/main/release.toml) - [Commits](metrics-rs/metrics@metrics-v0.22.4...metrics-v0.24.3) Updates `criterion` from 0.5.1 to 0.8.1 - [Release notes](https://github.com/criterion-rs/criterion.rs/releases) - [Changelog](https://github.com/criterion-rs/criterion.rs/blob/master/CHANGELOG.md) - [Commits](criterion-rs/criterion.rs@0.5.1...criterion-v0.8.1) Updates `reqwest` from 0.12.25 to 0.13.1 - [Release notes](https://github.com/seanmonstar/reqwest/releases) - [Changelog](https://github.com/seanmonstar/reqwest/blob/master/CHANGELOG.md) - [Commits](seanmonstar/reqwest@v0.12.25...v0.13.1) Updates `moka` from 0.12.11 to 0.12.12 - [Release notes](https://github.com/moka-rs/moka/releases) - [Changelog](https://github.com/moka-rs/moka/blob/main/CHANGELOG.md) - [Commits](moka-rs/moka@v0.12.11...v0.12.12) Updates `async-openai` from 0.24.1 to 0.32.2 - [Release notes](https://github.com/64bit/async-openai/releases) - [Commits](64bit/async-openai@async-openai-v0.24.1...async-openai-v0.32.2) Updates `axum` from 0.8.7 to 0.8.8 - [Release notes](https://github.com/tokio-rs/axum/releases) - [Changelog](https://github.com/tokio-rs/axum/blob/main/CHANGELOG.md) - [Commits](tokio-rs/axum@axum-v0.8.7...axum-v0.8.8) Updates `jsonwebtoken` from 9.3.1 to 10.2.0 - [Changelog](https://github.com/Keats/jsonwebtoken/blob/master/CHANGELOG.md) - [Commits](Keats/jsonwebtoken@v9.3.1...v10.2.0) Updates `governor` from 0.8.1 to 0.10.4 - [Release notes](https://github.com/boinkor-net/governor/releases) - [Changelog](https://github.com/boinkor-net/governor/blob/master/release.toml) - [Commits](boinkor-net/governor@v0.8.1...v0.10.4) Updates `tower_governor` from 0.5.0 to 0.8.0 - [Commits](https://github.com/benwis/tower-governor/commits) Updates `syn` from 2.0.111 to 2.0.113 - [Release notes](https://github.com/dtolnay/syn/releases) - [Commits](dtolnay/syn@2.0.111...2.0.113) Updates `proc-macro2` from 1.0.103 to 1.0.104 - [Release notes](https://github.com/dtolnay/proc-macro2/releases) - [Commits](dtolnay/proc-macro2@1.0.103...1.0.104) Updates `darling` from 0.20.11 to 0.23.0 - [Release notes](https://github.com/TedDriggs/darling/releases) - [Changelog](https://github.com/TedDriggs/darling/blob/master/CHANGELOG.md) - [Commits](TedDriggs/darling@v0.20.11...v0.23.0) Updates `clap` from 4.5.53 to 4.5.54 - [Release notes](https://github.com/clap-rs/clap/releases) - [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md) - [Commits](clap-rs/clap@clap_complete-v4.5.53...clap_complete-v4.5.54) Updates `colored` from 2.2.0 to 3.0.0 - [Release notes](https://github.com/mackwic/colored/releases) - [Changelog](https://github.com/colored-rs/colored/blob/master/CHANGELOG.md) - [Commits](colored-rs/colored@v2.2.0...v3.0.0) Updates `tempfile` from 3.23.0 to 3.24.0 - [Changelog](https://github.com/Stebalien/tempfile/blob/master/CHANGELOG.md) - [Commits](Stebalien/tempfile@v3.23.0...v3.24.0) --- updated-dependencies: - dependency-name: tokio dependency-version: 1.49.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rust-dependencies - dependency-name: serde_json dependency-version: 1.0.148 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rust-dependencies - dependency-name: tracing dependency-version: 0.1.44 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rust-dependencies - dependency-name: rand dependency-version: 0.9.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rust-dependencies - dependency-name: jsonschema dependency-version: 0.38.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rust-dependencies - dependency-name: metrics dependency-version: 0.24.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rust-dependencies - dependency-name: criterion dependency-version: 0.8.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rust-dependencies - dependency-name: reqwest dependency-version: 0.13.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rust-dependencies - dependency-name: moka dependency-version: 0.12.12 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rust-dependencies - dependency-name: async-openai dependency-version: 0.32.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rust-dependencies - dependency-name: axum dependency-version: 0.8.8 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rust-dependencies - dependency-name: jsonwebtoken dependency-version: 10.2.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: rust-dependencies - dependency-name: governor dependency-version: 0.10.4 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rust-dependencies - dependency-name: tower_governor dependency-version: 0.8.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rust-dependencies - dependency-name: syn dependency-version: 2.0.113 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rust-dependencies - dependency-name: proc-macro2 dependency-version: 1.0.104 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rust-dependencies - dependency-name: darling dependency-version: 0.23.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rust-dependencies - dependency-name: clap dependency-version: 4.5.54 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rust-dependencies - dependency-name: colored dependency-version: 3.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: rust-dependencies - dependency-name: tempfile dependency-version: 3.24.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rust-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot · 2026-01-11T03:00:54Z

Looks like these dependencies are updatable in another way, so this is no longer needed.

dependabot bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Jan 4, 2026

dependabot bot force-pushed the dependabot/cargo/rust-dependencies-61f21d00d6 branch from 0266561 to 44c3935 Compare January 4, 2026 07:47

dependabot bot force-pushed the dependabot/cargo/rust-dependencies-61f21d00d6 branch from 44c3935 to d8200b8 Compare January 4, 2026 09:55

dependabot bot closed this Jan 11, 2026

dependabot bot deleted the dependabot/cargo/rust-dependencies-61f21d00d6 branch January 11, 2026 03:00

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps): bump the rust-dependencies group across 1 directory with 20 updates #10

build(deps): bump the rust-dependencies group across 1 directory with 20 updates #10

Uh oh!

dependabot bot commented on behalf of github Jan 4, 2026 •

edited

Loading

Uh oh!

dependabot bot commented on behalf of github Jan 11, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

build(deps): bump the rust-dependencies group across 1 directory with 20 updates #10

build(deps): bump the rust-dependencies group across 1 directory with 20 updates #10

Uh oh!

Conversation

dependabot bot commented on behalf of github Jan 4, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Tokio v1.49.0

1.49.0 (January 3rd, 2026)

Added

Changed

Fixed

Unstable

Documented

v1.0.148

v1.0.147

v1.0.146

tracing 0.1.44

Fixed

Changed

[0.9.2] - 2025-07-20

Deprecated

Additions

[0.9.1] - 2025-04-17

Security and unsafe

Fixes

Changes

Additions

[0.9.0] - 2025-01-27

Security and unsafe

Dependencies

Features

API changes: rand_core traits

API changes: Rng trait and top-level fns

[Python] Release 0.38.1

Fixed

[Rust] Release 0.38.1

Fixed

[Python] Release 0.38.0

Added

Fixed

Removed

[Rust] Release 0.38.0

Added

Fixed

[Python] Release 0.37.4

Fixed

[Rust] Release 0.37.4

Fixed

Removed

[0.38.1] - 2025-12-25

Fixed

[0.38.0] - 2025-12-24

Added

Fixed

[0.37.4] - 2025-11-30

Fixed

Removed

[0.37.3] - 2025-11-28

Fixed

[0.37.2] - 2025-11-27

Added

Fixed

[0.37.1] - 2025-11-19

Fixed

criterion-plot-v0.8.1

Fixed

criterion-v0.8.1

Fixed

Other

criterion-plot-v0.8.0

criterion-v0.8.0

BREAKING

Changed

Added

Fixed

Other

criterion-plot-v0.7.0

0.8.1 - 2025-12-07

Fixed

Other

dependabot bot commented on behalf of github Jan 4, 2026 •

edited

Loading