Skip to content

fix(deps): bump rand from 0.8 to 0.9#1

Closed
raffaelschneider wants to merge 1 commit intomainfrom
deps/bump-rand-0.9
Closed

fix(deps): bump rand from 0.8 to 0.9#1
raffaelschneider wants to merge 1 commit intomainfrom
deps/bump-rand-0.9

Conversation

@raffaelschneider
Copy link
Copy Markdown

@raffaelschneider raffaelschneider commented Apr 16, 2026

Summary

  • Bumps rand from 0.8 to 0.9 across 7 crates to address RUSTSEC advisory (unsoundness with custom loggers using rand::rng())
  • Mechanical API migration: thread_rng()rng(), .gen().random(), .gen_range().random_range(), SliceRandomIndexedRandom, distributionsdistr
  • 16 files changed, 29 insertions, 29 deletions

Test plan

  • cargo check --workspace passes
  • cargo test --workspace --lib — all 454 tests pass
  • CI

@raffaelschneider
fix(deps): bump rand from 0.8 to 0.9 to fix unsoundness advisory
dce176b 
Addresses RUSTSEC advisory for rand <0.9.3 (unsound with custom
loggers using rand::rng()). Mechanical API migration across 7 crates:

- thread_rng() -> rng()
- .gen() -> .random()
- .gen_range() -> .random_range()
- SliceRandom -> IndexedRandom
- rand::prelude::ThreadRng -> rand::rngs::ThreadRng
- rand::distributions -> rand::distr
@raffaelschneider
Copy link
Copy Markdown
Author

raffaelschneider commented Apr 16, 2026

Superseded — rebased onto zentinel-0.8.0 branch in PR #2

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@raffaelschneider