deps: bump aes-gcm from 0.10.3 to 0.11.0#53
Conversation
Bumps [aes-gcm](https://github.com/RustCrypto/AEADs) from 0.10.3 to 0.11.0. - [Commits](RustCrypto/AEADs@aes-gcm-v0.10.3...aes-gcm-v0.11.0) --- updated-dependencies: - dependency-name: aes-gcm dependency-version: 0.11.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
LabelsThe following labels could not be found: Please fix the above issues or remove invalid values from |
|
Deferring this one. aes-gcm 0.11 requires Rust edition 2024 / MSRV 1.85, which would raise the whole project's minimum supported Rust to 1.85 — a breaking change for AUR/Debian packagers (they'd need rustc >= 1.85) with no user-facing benefit. aes-gcm 0.10.3 has no known security advisory, so there's no security or functional reason to take 0.11 now. We'll revisit if a CVE lands on 0.10.x or an MSRV bump becomes worthwhile for other reasons — at which point this becomes part of a 0.4.0 cut (with the store.rs from_slice -> try_from migration + a NIST-KAT wire-format test). |
|
@dependabot ignore this major version |
|
OK, I won't notify you about version 0.x.x again, unless you re-open this PR. |
Bumps aes-gcm from 0.10.3 to 0.11.0.
Commits
a10b56faes-gcm v0.11.0 (#852)f042e9caead-stream v0.6.0 (#851)b29735aAdopt Trusted Publishing (#854)a1fe43fxaes-256-gcm: enable and fix workspace level lints (#850)8cf876feax: remove toplevel lint attributes (#849)4661ddfocb3: enable and fix workspace-level lints (#848)c821431eax: enable and fix workspace-level lints (#847)d3684bbdeoxys: enable and fix workspace-level lints (#846)5e016e2chacha20poly1305: enable and fix workspace-level lints (#845)b3524d3ccm: enable and fix workspace-level lints (#844)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)