Sourced from num-bigint's changelog.

Release 0.4.3 (2021-11-02)

• GHSA-v935-pqmr-g8v9: Fix unexpected panics in multiplication.

Contributors: @​arvidn, @​cuviper, @​guidovranken

• e77ffac Merge #228
• 056e0d4 Release 0.4.3
• 8008707 Fix an undersized buffer panic in multiplication
• 0940e50 Fix a mac3 panic when an operand is all-zero
• 1fc2537 Add 0.3.3 release notes
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from tiny_http's changelog.

0.8.0

• Fix RUSTSEC-2020-0031
• Filter out the same socket-closing errors on flush as on write
• response: Drop the use of EqualReader for TransferEncoding::Identity
• Add unblock method for graceful shutdown
• Response: Don't forget chunked_threshold
• Response: Allow manual handling of Range requests
• Feature | Getters for Response Status Code & Data Length Properties

• 8526e35 Prepare for 0.8.0 release
• 172ca81 Merge pull request #190 from fortian/http-request-smuggle
• cbe07c3 Add test suggested (and written) by @​rawler
• 46a14ca Header fields can't contain whitespace.
• 952439b add test
• 36583ed Merge remote-tracking branch 'upstream/master' into http-request-smuggle
• ffbde0d Merge pull request #192 from inrustwetrust/flush-errors
• 476caa2 Filter out the same socket-closing errors on flush as on write
• 623b873 Fix RUSTSEC-2020-0031
• 4770db9 Merge pull request #186 from EstebanBorai/feat/getters-for-response
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from generic-array's changelog.

• 0.12.4

  • Fix unsoundness in the arr! macro.

• 0.12.0

  • Allow trailing commas in arr! macro.
  • BREAKING: Serialize GenericArray using serde tuples, instead of variable-length sequences. This may not be compatible with old serialized data.

• 0.11.0

  • BREAKING Redesign GenericSequence with an emphasis on use in generic type parameters.
  • Add MappedGenericSequence and FunctionalSequence
    • Implements optimized map, zip and fold for GenericArray, &GenericArray and &mut GenericArray
  • BREAKING Remove map_ref, zip_ref and map_slice
    • map_slice is now equivalent to GenericArray::from_iter(slice.iter().map(...))

• 0.10.0

  • Add GenericSequence, Lengthen, Shorten, Split and Concat traits.
  • Redefine transmute to avert errors.

• 0.9.0

  • Rewrite construction methods to be well-defined in panic situations, correctly dropping elements.
  • NoDrop crate replaced by ManuallyDrop as it became stable in Rust core.
  • Add optimized map/map_ref and zip/zip_ref methods to GenericArray

• 0.8.0

  • Implement AsRef, AsMut, Borrow, BorrowMut, Hash for GenericArray
  • Update serde to 1.0
  • Update typenum
  • Make macro arr! non-cloning
  • Implement From<[T; N]> up to N=32
  • Fix #45

• 0.7.0

  • Upgrade serde to 0.9
  • Make serde with no_std
  • Implement PartialOrd/Ord for GenericArray

• 0.6.0

  • Fixed #30
  • Implement Default for GenericArray
  • Implement LowerHex and UpperHex for GenericArray<u8, N>
  • Use precision formatting field in hex representation
  • Add as_slice, as_mut_slice
  • Remove GenericArray::new in favor of Default trait
  • Add from_slice and from_mut_slice
  • no_std and core for crate.

• 0.5.0

  • Update serde
  • remove no_std feature, fixed #19

• 0.4.0

  • Re-export typenum

• 0.3.0

  • Implement IntoIter for GenericArray
  • Add map method
  • Add optional serde (de)serialization support feature.

• < 0.3.0

... (truncated)

• 42843cd Bump version
• 59dad41 Fixed lifetime unsoundness in arr macro.
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from prost-types's releases.

v0.8.0

PROST! is a Protocol Buffers implementation for the Rust Language. prost generates simple, idiomatic Rust code from proto2 and proto3 files.

NOTE: This version contains a security fix for prost-types and is recommend that you upgrade to it from <0.7.

prost 0.8.0 includes breaking changes:

• Timestamp's From implementation for converting into SystemTime has been converted to a fallible TryFrom implementation.
• prost-build's compile_protos now takes impl AsRef<Path> to allow each parameter to use its own generic type.
• Bundled protoc version bumped to 3.15.8

As well as many new (non-breaking) changes:

• @​pluth enabled zero-copy support for Bytes based fields.
• @​sfackler for fixing message optionals and oneofs in prost-build.
• @​rubdos for adding the ability to encode prost messages directly to a Vec<u8>.

and numerous smaller fixes. Many thanks to the generous contributors who have helped out since 0.7:

• @​dfreese
• @​carols10cents
• @​pluth
• @​jfornoff
• @​sphw
• @​bpowers
• @​sfackler
• @​koushiro
• @​dbrgn
• @​argv-minus-one
• @​nagisa
• @​evanj
• @​aquarhead

v0.7.0

PROST! is a Protocol Buffers implementation for the Rust Language. prost generates simple, idiomatic Rust code from proto2 and proto3 files.

prost 0.7.0 includes breaking changes:

• The minimum-supported Rust version (MSRV) is now 1.46.0.
• The bytes public dependency version is now 1.0.
• The bundled protoc version is now 3.14.0.

As well as many new (non-breaking) features and improvements:

• @​hockeybuggy added support for deprecated field annotations.
• @​garbageslam and @​dflemstr added no_std support.
• @​joseph-wakeling-frequenz fixed a bug in Timestamp SystemTime conversions.
• @​rolftimmermans added support for generating Rust bytes::Bytes fields from protobuf bytes fields. When deserializing from a Bytes instance, this enables zero-copy deserialization for bytes fields!
• @​olix0r bumped the bytes dependency to 0.6, which included most of the heavy lifting for the subsequent move to bytes 1.0.
• @​danburkert added support for the experimental proto3 optional field presence feature.

... (truncated)

• 998f288 release 0.8.0
• edb1464 derive: Fix unstable fn name collision warning (#499)
• 4ae66cc Remove path type generic for better ergonomic (#496)
• 5d93c55 Bundled protoc only if the interpreter exists (#459)
• fdc319c prost-build lib.rs: Minor doc comment edits (#498)
• d8cb390 Add encode to Vec<u8> (#378)
• 59f2a73 Fix #438: Check for overflow in Duration and Timestamp processing (#439)
• 0833d46 Add afl fuzz tests (#272)
• c8691b7 Update repository & author references to tokio-rs (#489)
• 6cf97ea Update outdated dependencies (#474)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from nix's changelog.

[0.24.1] - 2022-04-22

Added

Changed

Fixed

• Fixed UnixAddr::size on Linux-based OSes. (#1702)

Removed

[0.24.0] - 2022-04-21

Added

• Added fine-grained features flags. Most Nix functionality can now be conditionally enabled. By default, all features are enabled. (#1611)
• Added statfs FS type magic constants for target_os = "android" and synced constants with libc v0.2.121. (#1690)
• Added fexecve on DragonFly. (#1577)
• sys::uio::IoVec is now Send and Sync (#1582)
• Added EPOLLEXCLUSIVE on Android. (#1567)
• Added fdatasync for FreeBSD, Fuchsia, NetBSD, and OpenBSD. (#1581)
• Added sched_setaffinity and sched_getaffinity on DragonFly. (#1537)
• Added posix_fallocate on DragonFly. (#1621)
• Added SO_TIMESTAMPING support (#1547)
• Added getter methods to MqAttr struct (#1619)
• Added the TxTime sockopt and control message. (#1564)
• Added POSIX per-process timer support (#1622)
• Added sendfile on DragonFly. (#1615)
• Added UMOUNT_NOFOLLOW, FUSE_SUPER_MAGIC on Linux. (#1634)
• Added getresuid, setresuid, getresgid, and setresgid on DragonFly, FreeBSD, and OpenBSD. (#1628)
• Added MAP_FIXED_NOREPLACE on Linux. (#1636)
• Added fspacectl on FreeBSD (#1640)
• Added accept4 on DragonFly, Emscripten, Fuchsia, Illumos, and NetBSD.

... (truncated)

• f1a1e2d (cargo-release) version 0.24.1
• 2854888 Merge #1702
• db969c5 Fix UnixAddr::size on Linux and Android
• 9793aaf Merge #1701
• a06114a Document pushing the release tag to GitHub
• 7f5907c (cargo-release) version 0.24.0
• bfb290b Merge #1698
• f05789c Merge #1694
• 7497b8a Update FreeBSD CI image to 12.3. 12.2 is EoL.
• 23f18df Pin nightly compiler used in CI for uclibc
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from nix's changelog.

[0.20.2] - 28 September 2021

Added

Changed

Fixed

• Fixed buffer overflow in unistd::getgrouplist. (#1545)

[0.20.1] - 13 August 2021

Added

Changed

Fixed

• Locked bitflags to < 1.3.0 to fix the build with rust < 1.46.0.

Removed

• Removed a couple of termios constants on redox that were never actually supported. (#1483)

[0.20.0] - 20 February 2021

Added

• Added a passwd field to Group (#1338)
• Added mremap (#1306)
• Added personality (#1331)
• Added limited Fuchsia support (#1285)
• Added getpeereid (#1342)
• Implemented IntoIterator for Dir (#1333).

Changed

• Minimum supported Rust version is now 1.40.0. (#1356)
• i686-apple-darwin has been demoted to Tier 2 support, because it's deprecated by Xcode. (#1350)
• Fixed calling recvfrom on an AddrFamily::Packet socket (#1344)

Fixed

• TimerFd now closes the underlying fd on drop. (#1381)
• Define *_MAGIC filesystem constants on Linux s390x (#1372)
• mqueue, sysinfo, timespec, statfs, test_ptrace_syscall() on x32 (#1366)

... (truncated)

• 72d805a (cargo-release) version 0.20.2
• 199acc7 [skip ci] update version in README
• 94ccf88 Fix memory unsafety in unistd::getgrouplist
• de534c1 Release 0.20.1
• b13f73c Fix a non_fmt_panic warning with Rustc 1.52.0
• c0a9fd7 Use memoffset::offset_of instead of homegrown macro
• e266b7c Fix test_vsock failure on VMADDR_CID_LOCAL testing
• feb8fe6 Remove some actually unsupported termios iflags on redox
• 97f6ec5 Lock bitflags to < 1.3.0 to fix the build with rust < 1.46.0
• 4c70217 Merge pull request #1389 from asomers/r0.20.0
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from psutil's changelog.

5.6.6

2019-11-25

Bug fixes

• 1179_, [Linux]: Process.cmdline()_ now takes into account misbehaving processes renaming the command line and using inappropriate chars to separate args.
• 1616_, [critical]: use of Py_DECREF instead of Py_CLEAR will result in double free() and segfault (CVE-2019-18874 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18874>__). (patch by Riccardo Schirone)
• 1619_, [OpenBSD], [critical]: compilation fails due to C syntax error. (patch by Nathan Houghton)

5.6.5

2019-11-06

Bug fixes

• 1615_: remove pyproject.toml as it was causing installation issues.

5.6.4

2019-11-04

Enhancements

• 1527_, [Linux]: added Process.cpu_times()_ iowait counter, which is the time spent waiting for blocking I/O to complete.
• 1565_: add PEP 517/8 build backend and requirements specification for better pip integration. (patch by Bernát Gábor)

Bug fixes

• 875_, [Windows], [critical]: Process.cmdline(), Process.environ() or Process.cwd()_ may occasionally fail with ERROR_PARTIAL_COPY which now gets translated to AccessDenied_.
• 1126_, [Linux], [critical]: Process.cpu_affinity()_ segfaults on CentOS 5 / manylinux. Process.cpu_affinity()_ support for CentOS 5 was removed.
• 1528_, [AIX], [critical]: compilation error on AIX 7.2 due to 32 vs 64 bit differences. (patch by Arnon Yaari)
• 1535_: type and family fields returned by net_connections()_ are not always turned into enums.
• 1536_, [NetBSD]: Process.cmdline()_ erroneously raise ZombieProcess_ error if cmdline has non encodable chars.

... (truncated)

• c6cd256 pre release
• b2414b8 revert #1595
• c63369e updat HISTORY
• edb20f6 linux, cmdline(), fix for #1179, comment 552984549: sometimes string ends wit...
• d739cbb use PROCESS_QUERY_LIMITED_INFORMATION
• f7e898b #1595: use psutil_pid_is_running() instead of GetExitCodeProcess
• 72c84cb #fix #1595 / windows: kill() may not raise AccessDenied
• 1f8d432 Merge branch 'master' of github.com:giampaolo/psutil
• e6faebc release gil around users()/BSD (#1425)
• 5cb1b0b Merge branch 'master' of github.com:giampaolo/psutil
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from json5's releases.

v2.2.2

• Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295).

Sourced from json5's changelog.

v2.2.2 [code, diff]

• Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295).

• 14f8cb1 2.2.2
• 10cc7ca docs: update CHANGELOG for v2.2.2
• 7774c10 fix: add proto to objects and arrays
• edde30a Readme: slight tweak to intro
• 97286f8 Improve example in readme
• d720b4f Improve readme (e.g. explain JSON5 better!) (#291)
• 910ce25 docs: fix spelling of Aseem
• 2aab4dd test: require tap as t in cli tests
• 6d42686 test: remove mocha syntax from tests
• 4798b9d docs: update installation and usage for modules
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from smallvec's releases.

v1.10.0

• Add optional NatVis debugger visualization (#286).
• Mark Array::size as inline (#289).

v1.9.0

• Add retain_mut as an alias for retain, for compatibility with std::vec::Vec (#283).

v1.8.1

• Optimize inserts at the end of the vector (#282).
• Fix possible aliasing issues with raw pointers (#277).
• Fix format of license field in Cargo manifest (#278).

v1.8.0

• Add optional support for the arbitrary crate (#275).

v1.7.0

• new_const and from_const constructors for creating a SmallVec in const contexts. Requires Rust 1.51 and the optional const_new feature. (#265)

v1.6.1

• Fix a possible buffer overflow in insert_many (#252, #254).

v1.6.0

• The "union" feature is now compatible with stable Rust 1.49 (#248, #247).
• Fixed warnings when compiling with Rust 1.51 nightly (#242, #246).

v1.5.1

• Improve performance of push (#241).

v1.5.0

• Add the append method (#237).
• Add support for more array sizes between 17 and 31 (#234).
• Don't panic on deserialization errors (#238).

v1.4.2

• insert_many no longer leaks elements if the provided iterator panics (#213).
• The unstable const_generics and specialization features are updated to work with the most recent nightly Rust toolchain (#232).
• Internal code cleanup (#229, #231).

v1.4.1

• Don't allocate when the size of the element type is zero. Allocating zero bytes is undefined behavior. (#228)

v1.4.0

• Add try_reserve, try_reserve_exact, and try_grow methods (#214).

v1.3.0

• Add a new unstable const_generics feature (#204).
• Improve inlining of constructor functions (#206).
• Add a slice.to_smallvec() convenience method (#203).
• Documentation and testing improvements.

... (truncated)

• c0766a0 Version 1.10.0
• aa7e2cb Skip tests on 1.36
• b960b3a Mark Array::size() as inline
• e01054b Fix broken CI yaml script. Ensure a default value exists for the os matrix ...
• 09b4988 Add Natvis definitions and tests for SmallVec type with and without the `unio...
• 7fa951f Version 1.9.0
• e9c2f0a Add retain_mut method (as an alias to retain)
• 4ce5e16 Version 1.8.1
• 7f9e513 Add a benchmark for the insert case where index == len.
• b233568 Optimize insert for the case where index == len.
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from smallvec's releases.

v1.10.0

• Add optional NatVis debugger visualization (#286).
• Mark Array::size as inline (#289).

v1.9.0

• Add retain_mut as an alias for retain, for compatibility with std::vec::Vec (#283).

v1.8.1

• Optimize inserts at the end of the vector (#282).
• Fix possible aliasing issues with raw pointers (#277).
• Fix format of license field in Cargo manifest (#278).

v1.8.0

• Add optional support for the arbitrary crate (#275).

v1.7.0

• new_const and from_const constructors for creating a SmallVec in const contexts. Requires Rust 1.51 and the optional const_new feature. (#265)

v1.6.1

• Fix a possible buffer overflow in insert_many (#252, #254).

v1.6.0

• The "union" feature is now compatible with stable Rust 1.49 (#248, #247).
• Fixed warnings when compiling with Rust 1.51 nightly (#242, #246).

v1.5.1

• Improve performance of push (#241).

v1.5.0

• Add the append method (#237).
• Add support for more array sizes between 17 and 31 (#234).
• Don't panic on deserialization errors (#238).

v1.4.2

• insert_many no longer leaks elements if the provided iterator panics (#213).
• The unstable const_generics and specialization features are updated to work with the most recent nightly Rust toolchain (#232).
• Internal code cleanup (#229, #231).

v1.4.1

• Don't allocate when the size of the element type is zero. Allocating zero bytes is undefined behavior. (#228)

v1.4.0

• Add try_reserve, try_reserve_exact, and try_grow methods (#214).

v1.3.0

• Add a new unstable const_generics feature (#204).
• Improve inlining of constructor functions (#206).
• Add a slice.to_smallvec() convenience method (#203).
• Documentation and testing improvements.

• c0766a0 Version 1.10.0
• aa7e2cb Skip tests on 1.36
• b960b3a Mark Array::size() as inline
• e01054b Fix broken CI yaml script. Ensure a default value exists for the os matrix ...
• 09b4988 Add Natvis definitions and tests for SmallVec type with and without the `unio...
• 7fa951f Version 1.9.0
• e9c2f0a Add retain_mut method (as an alias to retain)
• 4ce5e16 Version 1.8.1
• 7f9e513 Add a benchmark for the insert case where index == len.
• b233568 Optimize insert for the case where index == len.
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from nix's changelog.

[0.26.1] - 2022-11-29

Fixed

• Fix UB with sys::socket::sockopt::SockType using SOCK_PACKET. (#1821)

[0.26.0] - 2022-11-29

Added

• Added SockaddrStorage::{as_unix_addr, as_unix_addr_mut} (#1871)
• Added MntFlags and unmount on all of the BSDs.
• Added any() and all() to poll::PollFd. (#1877)
• Add MntFlags and unmount on all of the BSDs. (#1849)
• Added a Statfs::flags method. (#1849)
• Added NSFS_MAGIC FsType on Linux and Android. (#1829)
• Added sched_getcpu on platforms that support it. (#1825)
• Added sched_getaffinity and sched_setaffinity on FreeBSD. (#1804)
• Added line_discipline field to Termios on Linux, Android and Haiku (#1805)
• Expose the memfd module on FreeBSD (memfd was added in FreeBSD 13) (#1808)
• Added domainname field of UtsName on Android and Linux (#1817)
• Re-export RLIM_INFINITY from libc (#1831)
• Added syncfs(2) on Linux (#1833)
• Added faccessat(2) on illumos (#1841)
• Added eaccess() on FreeBSD, DragonFly and Linux (glibc and musl). (#1842)
• Added IP_TOS SO_PRIORITY and IPV6_TCLASS sockopts for Linux (#1853)
• Added new_unnamed and is_unnamed for UnixAddr on Linux and Android. (#1857)
• Added SockProtocol::Raw for raw sockets (#1848)
• added IP_MTU (IpMtu) IPPROTO_IP sockopt on Linux and Android. (#1865)

Changed

• The MSRV is now 1.56.1 (#1792)

... (truncated)

• e7a646d (cargo-release) version 0.26.1
• 749bf75 Merge #1821
• 8e91b28 Fix UB in the SO_TYPE sockopt
• 12fb354 [skip ci] add a CHANGELOG section for the next release
• e0af65b (cargo-release) version 0.26.0
• 1e0de75 Merge #1891
• 17e56e1 Prepare for release 0.26.0
• 206556d Merge pull request #1890 from asomers/old-changelogs
• ff219e3 [skip ci] add CHANGELOG entries for old point releases.
• eabcb48 Merge pull request #1888 from asomers/0.26.0-CHANGELOG
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from secp256k1's changelog.

0.22.2 - 2022-12-05

• Backport fix soundness issue with preallocated_gen_new

• 073521c Merge rust-bitcoin/rust-secp256k1256: Backport and bump version to 0.22.2
• 12e67f1 Bump version to 0.22.2
• 7604f32 Add saftey docs for PreallocatedContext trait
• 357e800 context: introduce unsafe PreallocatedContext trait
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

• 9e9e840 2022.12.07
• b81bdb2 2022.09.24
• 939a28f 2022.09.14
• aca828a 2022.06.15.2
• de0eae1 Only use importlib.resources's new files() / Traversable API on Python ≥3.11 ...
• b8eb5e9 2022.06.15.1
• 47fb7ab Fix deprecation warning on Python 3.11 (#199)
• b0b48e0 fixes #198 -- update link in license
• 9d514b4 2022.06.15
• 4151e88 Add py.typed to MANIFEST.in to package in sdist (#196)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.