You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The release 0.5.4 includes changes from #17 where the requirement for http was changed from ^0.2.6 to ^1.0.0.
These are breaking changes because http is a public dependency (its types are leaking into the types defined by rustify) so applying a major semver requirement change on http propagates to rustify.
As an example, this now breaks vaultrs which currently depends on rustify: ^0.5.2 and http: ^0.2.9 and assumes unification between its http version and the one from rustify. See jmgilman/vaultrs#91
I recommend the following actions:
rustify 0.5.4 should be yanked immediately
rustify 0.6.0 should be released
Optional: All public dependencies should be re-exported at the lib root and consumers should avoid relying on implicit cargo version unification
The text was updated successfully, but these errors were encountered:
The release
0.5.4
includes changes from #17 where the requirement forhttp
was changed from^0.2.6
to^1.0.0
.These are breaking changes because
http
is a public dependency (its types are leaking into the types defined byrustify
) so applying a major semver requirement change onhttp
propagates torustify
.As an example, this now breaks vaultrs which currently depends on
rustify: ^0.5.2
andhttp: ^0.2.9
and assumes unification between itshttp
version and the one fromrustify
. See jmgilman/vaultrs#91I recommend the following actions:
rustify 0.5.4
should be yanked immediatelyrustify 0.6.0
should be releasedThe text was updated successfully, but these errors were encountered: