-
Notifications
You must be signed in to change notification settings - Fork 195
Update cargo dependencies #1208
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
base: main
Are you sure you want to change the base?
Changes from all commits
File filter
Filter by extension
Conversations
Jump to
Diff view
Diff view
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -64,7 +64,7 @@ yuv-sys = { version = "0.3.14", path = "yuv-sys" } | |
| anyhow = "1.0" | ||
| bytes = "1.10" | ||
| clap = "4.5" | ||
| console-subscriber = "0.1" | ||
| console-subscriber = "0.5" | ||
| env_logger = "0.11" | ||
| from_variants = "1.0.2" | ||
| futures = "0.3" | ||
|
|
@@ -76,7 +76,7 @@ parking_lot = "0.12" | |
| prost = "0.14" | ||
| prost-build = "0.14" | ||
| prost-types = "0.14" | ||
| rand = "0.9" | ||
| rand = "0.10" | ||
|
Comment on lines
76
to
+79
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. 🔍 Cargo.lock not regenerated after dependency version bumps The root (Refers to lines 64-76) Was this helpful? React with 👍 or 👎 to provide feedback.
Comment on lines
76
to
+79
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. 🔴 Dependency lockfile not regenerated after version bumps, causing build failures The dependency version specifications are updated in multiple Cargo.toml files ( Impact: CI and reproducible builds will fail because the lockfile still pins old versions that no longer satisfy the new Cargo.toml requirements. Lockfile vs Cargo.toml version mismatches across the workspaceThe PR updates version requirements in Cargo.toml files but the root
Note that the fuzz sub-lockfile ( (Refers to lines 67-79) Prompt for agentsWas this helpful? React with 👍 or 👎 to provide feedback. There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. 🔍 Example code uses deprecated rand API that will break when lockfile is updated The rpc example at Was this helpful? React with 👍 or 👎 to provide feedback. |
||
| serde = "1" | ||
| serde_json = "1.0" | ||
| thiserror = "2" | ||
|
|
||
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -103,27 +103,27 @@ __rustls-tls = ["tokio-tungstenite?/__rustls-tls", "reqwest?/__rustls"] | |
| livekit-protocol = { workspace = true } | ||
| thiserror = { workspace = true } | ||
| serde = { workspace = true, features = ["derive"] } | ||
| sha2 = "0.10" | ||
| sha2 = "0.11" | ||
| url = "2.3" | ||
| log = { workspace = true } | ||
| parking_lot = { workspace = true } | ||
| prost = "0.12" | ||
| pbjson-types = "0.6" | ||
| prost = "0.14" | ||
| pbjson-types = "0.9" | ||
|
|
||
| # webhooks | ||
| serde_json = { workspace = true, optional = true } | ||
| base64 = { version = "0.21", optional = true, features = ["std"] } | ||
| base64 = { version = "0.22", optional = true, features = ["std"] } | ||
|
|
||
| # access_token: HS256 only, via the in-crate HMAC CryptoProvider (jwt_provider.rs). | ||
| # Dropping jsonwebtoken's rust_crypto bundle avoids linking RSA/EC/EdDSA. | ||
| jsonwebtoken = { version = "10", default-features = false, optional = true } | ||
| hmac = { version = "0.12", optional = true } | ||
| hmac = { version = "0.13", optional = true } | ||
| signature = { version = "2", optional = true } | ||
|
|
||
| # signal_client | ||
| livekit-runtime = { workspace = true, optional = true } | ||
| tokio-tungstenite = { version = "0.29", features = ["url"], optional = true } | ||
| async-tungstenite = { version = "0.29", features = [ "async-std-runtime", "async-native-tls", "url"], optional = true } | ||
| async-tungstenite = { version = "0.34", features = [ "async-std-runtime", "async-native-tls", "url"], optional = true } | ||
| tokio = { workspace = true, default-features = false, features = ["sync", "macros", "signal", "io-util", "net"], optional = true } | ||
|
Comment on lines
+106
to
127
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. 🔍 Multiple semver-breaking bumps for pre-1.0 crates need API compatibility verification For pre-1.0 crates, a minor version bump (e.g., 0.9→0.10) is a breaking change under semver. This PR includes several such bumps: Was this helpful? React with 👍 or 👎 to provide feedback. |
||
| tokio-rustls = { version = "0.26", default-features = false, features = ["logging", "tls12", "ring"], optional = true } | ||
| rustls-native-certs = { version = "0.8", optional = true } | ||
|
|
@@ -132,7 +132,7 @@ bytes = { workspace = true, optional = true } | |
|
|
||
| # This dependency must be kept in sync with reqwest's version | ||
| http = "1.1" | ||
| reqwest = { version = "0.12", default-features = false, features = [ "json" ], optional = true } | ||
| reqwest = { version = "0.13", default-features = false, features = [ "json" ], optional = true } | ||
| isahc = { version = "1.7.2", default-features = false, features = [ "json", "text-decoding" ], optional = true } | ||
|
|
||
| flate2 = { version = "1", optional = true } | ||
|
|
||
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
🟡 Missing changeset file for dependency version bumps
No changeset file was added for this PR (
/.changeset/is unchanged), violating the repository rule that every PR needs a changeset.Impact: The release tooling (knope) will not document these dependency changes, and the PR does not meet the repository's contribution requirements.
AGENTS.md changeset requirement
AGENTS.md states under "Documenting changes":
knope document-changeor create manually in/.changeset"This PR bumps versions of many dependencies across multiple crates (
Cargo.toml:64-76,livekit-api/Cargo.toml:106-135,livekit-protocol/Cargo.toml:10-13,livekit/Cargo.toml:40-52, etc.) but adds no corresponding changeset file. The.changeset/directory contains only pre-existing changesets from prior PRs.(Refers to lines 64-76)
Prompt for agents
Was this helpful? React with 👍 or 👎 to provide feedback.