Skip to content

chore(deps): bump reqwest from 0.13.3 to 0.13.4#17

Open
dependabot[bot] wants to merge 5 commits into
mainfrom
dependabot/cargo/reqwest-0.13.4
Open

chore(deps): bump reqwest from 0.13.3 to 0.13.4#17
dependabot[bot] wants to merge 5 commits into
mainfrom
dependabot/cargo/reqwest-0.13.4

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 23, 2026

Copy link
Copy Markdown
Contributor

Bumps reqwest from 0.13.3 to 0.13.4.

Release notes

Sourced from reqwest's releases.

v0.13.4

tl;dr

  • Add ClientBuilder::tls_sslkeylogfile(bool) option to allow using the related environment variable.
  • Add ClientBuilder::http2_keep_alive_* options for the blocking client.
  • Add TLS 1.3 support when using native-tls backend.
  • Fix redirect handling to strip sensitive headers when the scheme changes.
  • Fix HTTP/3 happy-eyeball connection creation.
  • Upgrade hickory-resolver to 0.26.

What's Changed

New Contributors

Full Changelog: seanmonstar/reqwest@v0.13.3...v0.13.4

Changelog

Sourced from reqwest's changelog.

v0.13.4

  • Add ClientBuilder::tls_sslkeylogfile(bool) option to allow using the related environment variable.
  • Add ClientBuilder::http2_keep_alive_* options for the blocking client.
  • Add TLS 1.3 support when using native-tls backend.
  • Fix redirect handling to strip sensitive headers when the scheme changes.
  • Fix HTTP/3 happy-eyeball connection creation.
  • Upgrade hickory-resolver to 0.26.
Commits
  • 11489b3 v0.13.4
  • d31ffbb feat: Expose HTTP2 keep alive configurations in blocking client (#3043)
  • 79ed0d7 feat: support TLS 1.3 as min version under native-tls 🎉 (#2975)
  • fb7bf6a fix: remove unwrap in hickory initialization (#3041)
  • 3da616f fix: update hickory-resolver to 0.26 and adjust code accordingly (#3040)
  • c77e7b2 fix(http3): use happy eyeballs for h3 connect (#3030)
  • 9cbb65b chore: clean up minimal-versions CI job (#3039)
  • 17a7dc5 chore: upgrade MSRV to 1.85 (#3038)
  • 03db63a fix(redirect): strip sensitive headers on scheme change across redirects (#3034)
  • 4b813a8 feat: add tls_sslkeylogfile builder method (#2923)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Jun 23, 2026
spidy and others added 5 commits June 28, 2026 12:54
- Shared: RunCommandResponse fields for truncated/timed_out/duration_ms
- Agent: bounded capture with PGID tracking and output limit
- Server: RunCommand-based API exec with output collection
bump server: sanitize command string before writing to audit log.
Strip control characters, truncate to 512 chars to prevent log injection.
Require explicit trusted-proxy configuration, remove the example administrator login, and build the Kubernetes agent from the committed workspace lock. Helm now refuses implicit default service accounts and drops unused ConfigMap privileges. Update component pointers and prune vulnerable or unmaintained dependency paths.
Use the default GitHub token for public recursive submodules so Dependabot pull requests can run without repository secrets. Include the server workspace member in the Kubernetes agent image checkout and trigger paths because its manifest is required by the hardened Docker build.
Bumps [reqwest](https://github.com/seanmonstar/reqwest) from 0.13.3 to 0.13.4.
- [Release notes](https://github.com/seanmonstar/reqwest/releases)
- [Changelog](https://github.com/seanmonstar/reqwest/blob/master/CHANGELOG.md)
- [Commits](seanmonstar/reqwest@v0.13.3...v0.13.4)

---
updated-dependencies:
- dependency-name: reqwest
  dependency-version: 0.13.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@sppidy
sppidy force-pushed the dependabot/cargo/reqwest-0.13.4 branch from c439093 to 5d8a2a5 Compare June 30, 2026 23:44
@sppidy
sppidy force-pushed the main branch 2 times, most recently from 5c59612 to ef35864 Compare July 3, 2026 18:28
sppidy added a commit that referenced this pull request Jul 16, 2026
HealthProbes manager keyed by probe id, spawning one task per
probe. Sync diffs old vs new spec signature so unchanged probes
keep running. HTTP via reqwest with timeout + optional status/body
expectations; TCP via tokio::net::TcpStream::connect with timeout.
Report only on state transitions (or first sample after sync).
sppidy added a commit that referenced this pull request Jul 16, 2026
- health_probes table with per-agent UNIQUE(agent_id, name).
- /api/health-probes (list + upsert), DELETE /{id}, snapshot endpoint
  for fleet overview aggregation (green/red/unknown counts).
- On every CRUD and on agent register, push the agent's enabled
  probe set via HealthProbeSyncRequest.
- Intercept HealthProbeReport in handle_agent_socket: persist
  last_state/last_latency_ms/last_detail and audit transitions
  (health_probe.green / health_probe.red).
sppidy added a commit that referenced this pull request Jul 16, 2026
- New HealthProbes component: per-agent CRUD with HTTP/TCP probes.
  States rendered as green/red/dashed icons next to each row.
- New "Health" tab in the per-agent navigation.
- FleetOverview gains a per-host probe chip showing N green / M
  total, polled from /api/health-probes/snapshot every 10s.
sppidy added a commit that referenced this pull request Jul 16, 2026
HealthProbes manager keyed by probe id, spawning one task per
probe. Sync diffs old vs new spec signature so unchanged probes
keep running. HTTP via reqwest with timeout + optional status/body
expectations; TCP via tokio::net::TcpStream::connect with timeout.
Report only on state transitions (or first sample after sync).
sppidy added a commit that referenced this pull request Jul 16, 2026
- health_probes table with per-agent UNIQUE(agent_id, name).
- /api/health-probes (list + upsert), DELETE /{id}, snapshot endpoint
  for fleet overview aggregation (green/red/unknown counts).
- On every CRUD and on agent register, push the agent's enabled
  probe set via HealthProbeSyncRequest.
- Intercept HealthProbeReport in handle_agent_socket: persist
  last_state/last_latency_ms/last_detail and audit transitions
  (health_probe.green / health_probe.red).
sppidy added a commit that referenced this pull request Jul 16, 2026
- New HealthProbes component: per-agent CRUD with HTTP/TCP probes.
  States rendered as green/red/dashed icons next to each row.
- New "Health" tab in the per-agent navigation.
- FleetOverview gains a per-host probe chip showing N green / M
  total, polled from /api/health-probes/snapshot every 10s.
sppidy added a commit that referenced this pull request Jul 16, 2026
HealthProbes manager keyed by probe id, spawning one task per
probe. Sync diffs old vs new spec signature so unchanged probes
keep running. HTTP via reqwest with timeout + optional status/body
expectations; TCP via tokio::net::TcpStream::connect with timeout.
Report only on state transitions (or first sample after sync).
sppidy added a commit that referenced this pull request Jul 16, 2026
- health_probes table with per-agent UNIQUE(agent_id, name).
- /api/health-probes (list + upsert), DELETE /{id}, snapshot endpoint
  for fleet overview aggregation (green/red/unknown counts).
- On every CRUD and on agent register, push the agent's enabled
  probe set via HealthProbeSyncRequest.
- Intercept HealthProbeReport in handle_agent_socket: persist
  last_state/last_latency_ms/last_detail and audit transitions
  (health_probe.green / health_probe.red).
sppidy added a commit that referenced this pull request Jul 16, 2026
- New HealthProbes component: per-agent CRUD with HTTP/TCP probes.
  States rendered as green/red/dashed icons next to each row.
- New "Health" tab in the per-agent navigation.
- FleetOverview gains a per-host probe chip showing N green / M
  total, polled from /api/health-probes/snapshot every 10s.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update rust code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant