Skip to content

Bump the major group across 1 directory with 2 updates #1009

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dependabot wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Bump the major group across 1 directory with 2 updates #1009

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 5, 2025
edited
Loading

Bumps the major group with 2 updates in the / directory: bson and tokio-tungstenite.

Updates bson from 2.15.0 to 3.1.0

Release notes

Sourced from bson's releases.

v3.1.0

The MongoDB Rust driver team is pleased to announce the v3.1.0 release of the bson crate.

Full Release Notes

See this GitHub query for a full list of changes.

New Features

  • Add const array bson conversion (#601)

v3.0.0

The MongoDB Rust driver team is pleased to announce the v3.0.0 release of the bson crate.

Highlighted Changes

3.0 updates several APIs in backwards-incompatible ways; in most cases these changes should require only minor updates in application code.

Most notably:

  • Unified Error Hierarchy: 3.0 adds the bson::error::Error type, with fields for values common across errors like message or associated key and a kind enum that provides granular root cause information.
  • &CStr: The bson crate now provides types that directly model the BSON spec "cstring" type, removing a potential source of panic!s and allowing validation at either run-time or compile-time for constant strings.
  • Optional serde: Integration with serde is now an optional feature; in support of this, the API has been updated to clarify where methods are for encoding (directly converting Rust BSON values into BSON bytes) or for serialization (converting arbitrary Rust structs to BSON values or bytes via the serde crate).

For detailed information on breaking changes and code examples, please see the migration guide.

Release Notes

Impactful changes are listed below; for a full list of changes see this GitHub query.

Breaking Changes

  • RUST-1906 Remove human readable options (#531)
  • RUST-1380 Drop support for uuid 0.8 (#534)
  • RUST-2169 Clean up and future-proof features (#544)
  • RUST-1887 Convince append to be more accepting (#541)
  • RUST-1960 Make large-dates time feature optional (#546)
  • RUST-1406 Add crate-wide error types, convert value access errors (#551)
  • RUST-1406 Convert raw errors to standard error type (#552)
  • RUST-1998 Remove lossy utf8 as a decoder option (#550)
  • RUST-1869 Rename RawElement::len to RawElement::size (#557)
  • RUST-1992 Make serde an optional feature (#554)
  • RUST-1406 Add type-specific errors to standard error type (#555)
  • RUST-1406 Convert serde errors to standard error type (#562)
  • RUST-1887 Make BindRawBsonRef a little more user-friendly (#565)
  • RUST-1748 Convert serde helpers to serde_with::(De)SerializeAs implementations for some converters between ObjectId, String, and DateTime (#559)
  • RUST-1992 Introduce the &CStr and CString types for keys and regular expressions (#563)
  • RUST-2241 Convert panic from malformed input to error (#568)
  • RUST-2240 Move serde_json API behind a feature flag (#567)
  • RUST-1748 Convert unsigned serde helpers to use serde_conv (#575)
  • RUST-1748 Convert UUID serde helpers to use serde_conv (#579)
  • RUST-2228 Normalize conversions between raw types and base crate types (#580)

... (truncated)

Commits
  • 8b8bdd3 release v3.1.0 (#621)
  • 516f780 Bump the rust-dependencies group with 4 updates (#620)
  • 6dca3c7 Bump the rust-dependencies group with 4 updates (#619)
  • a9b8734 Bump the rust-dependencies group with 3 updates (#618)
  • 7349e4d Bump the rust-dependencies group with 7 updates (#617)
  • e573000 RUST-2294 Fold serde-tests into regular tests (#616)
  • ab8109e Bump the rust-dependencies group with 9 updates (#614)
  • ff50662 Bump wasi from 0.14.2+wasi-0.2.4 to 0.14.7+wasi-0.2.4 (#615)
  • 5bfe2a4 deps: drop getrandom 0.2 dependency (#613)
  • 407efa4 minor: move serde_json preserve_order to dev-dependencies (#612)
  • Additional commits viewable in compare view

Updates tokio-tungstenite from 0.24.0 to 0.28.0

Changelog

Sourced from tokio-tungstenite's changelog.

0.28.0

0.27.0

0.26.2

0.26.1

  • Update tungstenite to address an issue that might cause UB in certain cases.

0.26.0

0.25.0

Commits
  • 35d110c Implement into_inner to get the underlying stream (#367)
  • f3ae75d Update tungstenite version and fix bugs
  • 25b544e Allow getting a reference to the shared inner stream (#363)
  • e855f9e Fix errors in the examples caused by Utf8Error
  • 21c5d19 Bump version
  • fbd1471 Update performance notes in README
  • a8d9f19 Bump version
  • aafb2f9 Bump version
  • 0eefa27 Bump version
  • 2d23077 Update to new tungstenite and bump version
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Pull requests that update a dependency file rust Pull requests that update Rust code labels Dec 5, 2025
@dependabot
Bump the major group across 1 directory with 2 updates
4dc556c 
Bumps the major group with 2 updates in the / directory: [bson](https://github.com/mongodb/bson-rust) and [tokio-tungstenite](https://github.com/snapview/tokio-tungstenite).


Updates `bson` from 2.15.0 to 3.1.0
- [Release notes](https://github.com/mongodb/bson-rust/releases)
- [Commits](mongodb/bson-rust@v2.15.0...v3.1.0)

Updates `tokio-tungstenite` from 0.24.0 to 0.28.0
- [Changelog](https://github.com/snapview/tokio-tungstenite/blob/master/CHANGELOG.md)
- [Commits](snapview/tokio-tungstenite@v0.24.0...v0.28.0)

---
updated-dependencies:
- dependency-name: bson
  dependency-version: 3.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: major
- dependency-name: tokio-tungstenite
  dependency-version: 0.28.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/cargo/major-c757573076 branch from 8ec5e8f to 4dc556c Compare December 6, 2025 11:04
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update Rust code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant