Skip to content

Commit f5e5b29

Browse files
iawia002alexcrichton
iawia002
and
alexcrichton
authored
Bump tokio version to 1.30 to avoid duplicate socket2 dependency (bytecodealliance#9043)
* Bump tokio version to 1.30 to avoid duplicate socket2 dependency * Update vets --------- Co-authored-by: Alex Crichton <[email protected]>
1 parent 87817f3 commit f5e5b29

File tree

5 files changed

+21
-19
lines changed

5 files changed

+21
-19
lines changed

Cargo.lock

Lines changed: 6 additions & 17 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

Cargo.toml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -313,7 +313,7 @@ tempfile = "3.1.0"
313313
filecheck = "0.5.0"
314314
libc = { version = "0.2.112", default-features = true }
315315
file-per-thread-logger = "0.2.0"
316-
tokio = { version = "1.26.0", features = [ "rt", "time" ] }
316+
tokio = { version = "1.30.0", features = [ "rt", "time" ] }
317317
hyper = "1.0.1"
318318
http = "1.0.0"
319319
http-body = "1.0.0"

supply-chain/audits.toml

Lines changed: 6 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -2226,6 +2226,12 @@ a few `unsafe` blocks related to utf-8 validation which are locally verifiable
22262226
as correct and otherwise this crate is good to go.
22272227
"""
22282228

2229+
[[audits.pin-project-lite]]
2230+
who = "Alex Crichton <[email protected]>"
2231+
criteria = "safe-to-deploy"
2232+
delta = "0.2.13 -> 0.2.14"
2233+
notes = "No substantive changes in this update"
2234+
22292235
[[audits.pin-utils]]
22302236
who = "Pat Hickey <[email protected]>"
22312237
criteria = "safe-to-deploy"

supply-chain/config.toml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -592,7 +592,7 @@ version = "1.2.1"
592592
criteria = "safe-to-run"
593593

594594
[[exemptions.tokio]]
595-
version = "1.29.1"
595+
version = "1.30.0"
596596
criteria = "safe-to-deploy"
597597
notes = "we are exempting tokio, hyper, and their tightly coupled dependencies by the same authors, expecting that the authors at aws will publish attestions we can import at some point soon"
598598

supply-chain/imports.lock

Lines changed: 7 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -4008,6 +4008,13 @@ version = "0.2.9"
40084008
notes = "Reviewed on https://fxrev.dev/824504"
40094009
aggregated-from = "https://fuchsia.googlesource.com/fuchsia/+/refs/heads/main/third_party/rust_crates/supply-chain/audits.toml?format=TEXT"
40104010

4011+
[[audits.google.audits.pin-project-lite]]
4012+
who = "David Koloski <[email protected]>"
4013+
criteria = "safe-to-deploy"
4014+
delta = "0.2.9 -> 0.2.13"
4015+
notes = "Audited at https://fxrev.dev/946396"
4016+
aggregated-from = "https://fuchsia.googlesource.com/fuchsia/+/refs/heads/main/third_party/rust_crates/supply-chain/audits.toml?format=TEXT"
4017+
40114018
[[audits.google.audits.socket2]]
40124019
who = "David Koloski <[email protected]>"
40134020
criteria = "safe-to-deploy"

0 commit comments

Comments
 (0)