Skip to content

update: bump lopdf from 0.31.0 to 0.38.0 #1359

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

update: bump lopdf from 0.31.0 to 0.38.0 #1359

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 1, 2025
edited
Loading

Bumps lopdf from 0.31.0 to 0.38.0.

Release notes

Sourced from lopdf's releases.

0.34.0

See CHANGLOG.md for details. Thanks a lot for new contributers: Heinenen, dkaluza, jrmuizel

Changelog

Sourced from lopdf's changelog.

v0.38.0 (2025-08-26)

Add

  • Add enhanced PDF decryption support for encrypted documents with empty passwords
  • Add automatic decryption during document loading for better pdftk compatibility
  • Add raw object extraction before parsing to handle encrypted content
  • Add support for decrypting PDFs with compressed object streams
  • Add comprehensive test suite for PDF decryption functionality
  • Add assets/encrypted.pdf test file for decryption testing
  • Add examples demonstrating decryption capabilities (test_decryption.rs, verify_decryption.rs)

Enhance

  • Enhance Reader::read() to detect and handle encrypted PDFs automatically
  • Enhance document loading to attempt empty password authentication by default
  • Enhance object processing to decrypt objects after parsing
  • Enhance support for encrypted PDFs containing object streams

Fix

  • Fix encrypted object parsing by extracting raw bytes before decryption
  • Fix object stream handling in encrypted documents
  • Fix decryption workflow to match pdftk's approach

Implementation Details

  • Modified src/reader.rs to add load_encrypted_document() method
  • Added extract_raw_object() method for raw byte extraction
  • Added parse_raw_object() method for parsing extracted bytes
  • Store raw object bytes in Reader::raw_objects field for deferred decryption
  • Process compressed objects from object streams after decryption

v0.37.0 (2025-08-08)

Add

  • Add complete PDF object streams write support enabling 11-61% file size reduction (#XXX)
  • Add save_modern() method for easy object streams and cross-reference streams usage
  • Add SaveOptions struct with builder pattern for configuring compression settings
  • Add ObjectStreamBuilder for creating object streams programmatically
  • Add cross-reference stream support for PDF 1.5+ compliance
  • Add replace_partial_text() function for partial text replacement in PDFs
  • Add comprehensive test suite with 50+ tests for object streams functionality
  • Add object streams write capability (previously read-only)
  • Add implementation documentation in OBJECT_STREAMS_IMPLEMENTATION.md

Fix

... (truncated)

Commits

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot bot added dependencies Pull requests that update a dependency file rust Pull requests that update Rust code labels Sep 1, 2025
@dependabot dependabot bot mentioned this pull request Sep 1, 2025
Closed
@dependabot dependabot bot assigned dyro Sep 1, 2025
@dependabot dependabot bot force-pushed the dependabot/cargo/lopdf-0.38.0 branch from 1228023 to eaa7b42 Compare September 3, 2025 16:16
@codspeed-hq CodSpeed HQ
Copy link

codspeed-hq bot commented Sep 3, 2025
edited
Loading

CodSpeed Performance Report

Merging #1359 will not alter performance

Comparing dependabot/cargo/lopdf-0.38.0 (b89eec6) with main (aae8b05)

Summary

✅ 18 untouched benchmarks

@dependabot dependabot bot force-pushed the dependabot/cargo/lopdf-0.38.0 branch from eaa7b42 to ba63991 Compare September 3, 2025 19:02
@dependabot
update: bump lopdf from 0.31.0 to 0.38.0
b89eec6 
Bumps [lopdf](https://github.com/J-F-Liu/lopdf) from 0.31.0 to 0.38.0.
- [Release notes](https://github.com/J-F-Liu/lopdf/releases)
- [Changelog](https://github.com/J-F-Liu/lopdf/blob/main/CHANGELOG.md)
- [Commits](https://github.com/J-F-Liu/lopdf/commits)

---
updated-dependencies:
- dependency-name: lopdf
  dependency-version: 0.38.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/cargo/lopdf-0.38.0 branch from ba63991 to b89eec6 Compare September 6, 2025 05:57
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@dyro dyro

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update Rust code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@dyro