chore(deps): bump tokio from 1.52.1 to 1.52.3#437
Conversation
Bumps [tokio](https://github.com/tokio-rs/tokio) from 1.52.1 to 1.52.3. - [Release notes](https://github.com/tokio-rs/tokio/releases) - [Commits](tokio-rs/tokio@tokio-1.52.1...tokio-1.52.3) --- updated-dependencies: - dependency-name: tokio dependency-version: 1.52.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
|
Warning Review the following alerts detected in dependencies. According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.
|
Bumps tokio from 1.52.1 to 1.52.3.
Release notes
Sourced from tokio's releases.
Commits
d875691chore: prepare Tokio v1.52.3 (#8130)e1aebb0Merge 'tokio-1.51.3' into 'tokio-1.52.x' (#8129)fd63094chore: prepare Tokio v1.51.3 (#8127)8c600d0Merge 'tokio-1.47.5' into 'tokio-1.51.x' (#8123)11bfc13chore: prepare Tokio v1.47.5 (#8122)f085b62sync: notify receivers in mpscOwnedPermit::release()method (#8075)30d25ccsync: require that anRwLockhasmax_readers != 0(#8076)9fccf53sync: returnEmptyfromtry_recv()when mpsc is closed with outstanding p...ebf61b4sync: fix underflow in mpsc channellen()(#8062)4abe9d7chore: prepare Tokio v1.52.2 (#8115)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)Note
Low Risk
Patch-level dependency lockfile update with no application code changes; behavior changes are limited to upstream Tokio bugfixes and a scheduler revert.
Overview
Updates
Cargo.lockonly:tokio1.52.1 → 1.52.3 (used bywalletkit-cliandwalletkit-coreviaversion = "1"). The lockfile also shifts some transitiveitertoolsentries to 0.14.0 as part of resolution.Tokio 1.52.2 reverts the 1.51.0 LIFO slot-stealing scheduler change for performance. 1.52.3 adds sync fixes: mpsc
len()underflow,OwnedPermit::release()receiver notification,RwLockrequiringmax_readers != 0, andtry_recv()returningEmptywhen the channel is closed with outstanding permits.Reviewed by Cursor Bugbot for commit 42dffa6. Bugbot is set up for automated code reviews on this repo. Configure here.