Package updates #52
Open
Package updates #52
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Let's stay modern.
This is actually a single major version release from 0.6. The new version standardizes on the Digest trait used in other digest crates. That means its API is now consistent with other crates used by this package. One notable difference is the new Digest trait doesn't have an easy way to format the digest to hex. So we just feed the binary data into hex::encode().
This seems pretty straightforward.
Let's stay modern. This upgrade is pretty impactful for me because all crates in a dependency graph using zstd must agree on the same version because of the library dependency. And the Rust crates ecosystem largely adopts newer versions as they are released.
|
@Richterrettich Can we get this merged with a new patch release? |
pgp 0.8.0 was released a few days ago and upgrades a bunch of cryptograph dependencies. We need to upgrade rsa with pgp to keep dependency resolution happy.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
I ran into "dependency hell" related to rpm-rs using old crate versions when trying to upgrade dependencies in https://github.com/indygreg/PyOxidizer/. It's unfortunate that this happens in the first place. But it is what it is.
I pieced together a few commits to upgrade most of the crates in this project to their latest versions.
cargo upgrades(fromcargo-upgradescrate) tells me only thersaandrsa-dercrates are lagging behind after this change. Unfortunately, it appears we can't touch either due to the latest version of thepgpcrate depending on the current versions. So this PR takes us as far as we can currently go.While I'm here, could you please set expectations on ETA for a new release? I'd like to decide if I should wait for a new version of this crate or temporarily disable some projects due to crate incompatibilities. (I wish I didn't have to burden you with this request. But that's the world that crates.io crates for us for better or for worse.)