Bump the cargo group across 2 directories with 8 updates by dependabot[bot] · Pull Request #12 · JSTONE1111/solana-arbitrage-bot

dependabot · 2026-02-20T11:37:47Z

Bumps the cargo group with 6 updates in the /client directory:

Package	From	To
bumpalo	`3.9.1`	`3.20.2`
bzip2	`0.4.3`	`0.4.4`
h2	`0.3.11`	`0.3.27`
keccak	`0.1.0`	`0.1.6`
regex	`1.5.4`	`1.5.5`
webpki	`0.22.0`	`0.22.2`

Bumps the cargo group with 3 updates in the /program directory: bumpalo, keccak and regex.

Updates bumpalo from 3.9.1 to 3.20.2

Changelog

Sourced from bumpalo's changelog.

3.20.2

Released 2026-02-19.

Fixed

Restored Send and Sync implementations for Box<T> for T: ?Sized types as well.

3.20.1

Released 2026-02-18.

Fixed

Restored Send and Sync implementations for Box<T> when T: Send and T: Sync respectively.

3.20.0

Released 2026-02-18.

Added

Added the bumpalo::collections::Vec::pop_if method.

Fixed

Fixed a bug in the bumpalo::collections::String::retain method in the face of panics.

Made bumpalo::collections::Box<T> covariant with T (just like std::boxed::Box<T>).

3.19.1

Released 2025-12-16.

Changed

Annotated bumpalo::collections::String::from_str_in as #[inline].

Fixed

Fixed compilation failures with the latest nightly Rust when enabling the

... (truncated)

Commits

1aad072 Bump to version 3.20.2 (#312)
2fb1d6a Add more tests for send and sync behavior, support unsized types (#311)
7c8d1f3 Bump to 3.20.1 (#310)
e06b36b Restore Send and Sync for Box (#309)
cb7f033 Bump to 3.20.0 (#307)
d97d31c Make box covariant (#304)
f9256f7 Pin quickcheck (#306)
a006efb Fix String::retain panic safety yielding invalid UTF-8 (#302)
96ba386 Add pop_if() to Vec (#301)
8c2172a Bump to version 3.19.1 (#300)
Additional commits viewable in compare view

Updates bzip2 from 0.4.3 to 0.4.4

Release notes

Sourced from bzip2's releases.

Version 0.5.2 (and 0.1.13 for bzip2-sys)

Some minor fixes this time

better wasm support (and we test wasm on CI)

make bz_internal_error an extern fn by @folkertdev in trifectatechfoundation/bzip2-rs#135 fixes a soundness issue. This is technically a semver-breaking change, but major versions for -sys crates create a lot of churn. We don't expect users to run into this

What's Changed

fix: libc wasm types by @baszalmstra in trifectatechfoundation/bzip2-rs#131

update LICENSE-MIT by @rootdiae in trifectatechfoundation/bzip2-rs#130

run CI for wasm32-wasip2 by @folkertdev in trifectatechfoundation/bzip2-rs#132

remove libc dependency of bzip2-sys by @folkertdev in trifectatechfoundation/bzip2-rs#133

make bz_internal_error an extern fn by @folkertdev in trifectatechfoundation/bzip2-rs#135

New Contributors

@baszalmstra made their first contribution in trifectatechfoundation/bzip2-rs#131

@rootdiae made their first contribution in trifectatechfoundation/bzip2-rs#130

Full Changelog: trifectatechfoundation/bzip2-rs@v0.5.1...v0.5.2

Version 0.5.1 (and 0.1.12 for bzip2-sys)

Highlights

Most changes relate to libbz2-rs-sys: we no longer enable the static feature, and now including different versions, that use either the C or the rust -sys crate, all work together in the same build.

What's Changed

write::BzDecoder: Fix infinite loop on drop when no data is read or written by @chenxiaolong in trifectatechfoundation/bzip2-rs#118

don't enable the static feature when using libbz2-rs-sys by @folkertdev in trifectatechfoundation/bzip2-rs#122

update libbz2-rs-sys version that we use by @folkertdev in trifectatechfoundation/bzip2-rs#123

use core::ffi::{c_int, c_uint} in favor of libc by @folkertdev in trifectatechfoundation/bzip2-rs#126

Add finisher drop implementation to BzEncoder by @jonasbb in trifectatechfoundation/bzip2-rs#121

Update rand requirement from 0.8 to 0.9 by @dependabot in trifectatechfoundation/bzip2-rs#127

Disable bzip2-sys build script if rust backend is enabled by @NobodyXu in trifectatechfoundation/bzip2-rs#125

deprecate Compression::new by @folkertdev in trifectatechfoundation/bzip2-rs#124

build the docs on CI by @folkertdev in trifectatechfoundation/bzip2-rs#128

bump version to 0.5.1 and 0.1.12 by @folkertdev in trifectatechfoundation/bzip2-rs#129

New Contributors

@chenxiaolong made their first contribution in trifectatechfoundation/bzip2-rs#118

@jonasbb made their first contribution in trifectatechfoundation/bzip2-rs#121

@dependabot made their first contribution in trifectatechfoundation/bzip2-rs#127

@NobodyXu made their first contribution in trifectatechfoundation/bzip2-rs#125

Full Changelog: trifectatechfoundation/bzip2-rs@v0.5.0...v0.5.1

Commits

See full diff in compare view

Updates h2 from 0.3.11 to 0.3.27

Release notes

Sourced from h2's releases.

v0.3.26

What's Changed

Limit number of CONTINUATION frames for misbehaving connections.

See https://seanmonstar.com/blog/hyper-http2-continuation-flood/ for more info.

v0.3.25

What's Changed

perf: optimize header list size calculations by @Noah-Kennedy in hyperium/h2#750

Full Changelog: hyperium/h2@v0.3.24...v0.3.25

v0.3.24

Fixed

Limit error resets for misbehaving connections.

v0.3.23

What's Changed

cherry-pick fix: streams awaiting capacity lockout in hyperium/h2#734

v0.3.22

What's Changed

Add header_table_size(usize) option to client and server builders.

Improve throughput when vectored IO is not available.

Update indexmap to 2.

New Contributors

@tottoto made their first contribution in hyperium/h2#714

@xiaoyawei made their first contribution in hyperium/h2#712

@Protryon made their first contribution in hyperium/h2#719

@4JX made their first contribution in hyperium/h2#638

@vuittont60 made their first contribution in hyperium/h2#724

v0.3.21

What's Changed

Fix opening of new streams over peer's max concurrent limit.

Fix RecvStream to return data even if it has received a CANCEL stream error.

Update MSRV to 1.63.

New Contributors

@DDtKey made their first contribution in hyperium/h2#703

@jwilm made their first contribution in hyperium/h2#707

v0.3.20

Bug Fixes

... (truncated)

Changelog

Sourced from h2's changelog.

0.3.27 (July 11, 2025)

Fix notifying wakers when detecting local stream errors.

0.3.26 (April 3, 2024)

Limit number of CONTINUATION frames for misbehaving connections.

0.3.25 (March 15, 2024)

Improve performance decoding many headers.

0.3.24 (January 17, 2024)

Limit error resets for misbehaving connections.

0.3.23 (January 10, 2024)

Backport fix from 0.4.1 for stream capacity assignment.

0.3.22 (November 15, 2023)

Add header_table_size(usize) option to client and server builders.

Improve throughput when vectored IO is not available.

Update indexmap to 2.

0.3.21 (August 21, 2023)

Fix opening of new streams over peer's max concurrent limit.

Fix RecvStream to return data even if it has received a CANCEL stream error.

Update MSRV to 1.63.

0.3.20 (June 26, 2023)

Fix panic if a server received a request with a :status pseudo header in the 1xx range.

Fix panic if a reset stream had pending push promises that were more than allowed.

Fix potential flow control overflow by subtraction, instead returning a connection error.

0.3.19 (May 12, 2023)

Fix counting reset streams when triggered by a GOAWAY.

Send too_many_resets in opaque debug data of GOAWAY when too many resets received.

0.3.18 (April 17, 2023)

Fix panic because of opposite check in is_remote_local().

0.3.17 (April 13, 2023)

Add Error::is_library() method to check if the originated inside h2.

... (truncated)

Commits

f6237ac v0.3.27
f61332e refactor: change local reset counter to use type system more
3f1a8e3 style: fix anonymous lifetime syntax
778aa7e fix: notify_recv after send_reset() in reset_on_recv_stream_err() to ensure l...
be10b77 ci: pin more deps for MSRV job (#817)
c0d9feb ci: pin deps for MSRV
5ccd9cf lints: fix unexpected cfgs warnings
e6e3e9c fix: return a WriteZero error if frames cannot be written (#783)
357127e v0.3.26
1a357aa fix: limit number of CONTINUATION frames allowed
Additional commits viewable in compare view

Updates keccak from 0.1.0 to 0.1.6

Commits

a8936d9 keccak v0.1.6
40c50c1 keccak v0.1.5 (#69)
2dc13bf keccak: enable asm backend for p1600 (#68)
a3a4e01 Revert "Update Cargo.lock" (#67)
3a9a29e Update Cargo.lock
9e4f6bc keccak: don't test simd feature in minimal-versions workflow (#66)
329d4cd Replace cross tests with MIRI (#63)
48cc4ac build(deps): bump actions/checkout from 3 to 4 (#61)
651a34e keccak: replace CI tests on MIPS with PPC32 (#62)
4730c6f benches: remove criterion deps workaround (#60)
Additional commits viewable in compare view

Updates mio from 0.8.0 to 0.8.11

Changelog

Sourced from mio's changelog.

0.8.11

Fix receiving IOCP events after deregistering a Windows named pipe (tokio-rs/mio#1760, backport pr: tokio-rs/mio#1761).

0.8.10

Added

Solaris support (tokio-rs/mio#1724).

0.8.9

Added

ESP-IDF framework support (tokio-rs/mio#1692).

AIX operating system support (tokio-rs/mio#1704).

Vita support (tokio-rs/mio#1721).

{UnixListener,UnixStream}:bind_addr (tokio-rs/mio#1630).

mio_unsupported_force_poll_poll and mio_unsupported_force_waker_pipe unsupported configuration flags to force a specific poll or waker implementation (tokio-rs/mio#1684, tokio-rs/mio#1685, tokio-rs/mio#1692).

Fixed

The pipe(2) based waker (swapped file descriptors) (tokio-rs/mio#1722).

The duplicate waker check to work correctly with cloned Registrys. (tokio-rs/mio#1706).

0.8.8

Fixed

Fix compilation on WASI (tokio-rs/mio#1676).

0.8.7

Added

Add/fix support for tvOS and watchOS, Mio should now build for tvOS and

... (truncated)

Commits

0328bde Release v0.8.11
7084498 Fix warnings
90d4fe0 named-pipes: fix receiving IOCP events after deregister
c710a30 Add v0.8.x to the CI
c29e21c Release v0.8.10
f6a20da Add Solaris operating system support (#1724)
e80c3b2 Release v0.8.9
862786b Fix importing of IoSourceState
4034872 Add support for vita target
8eb4010 Fix receiver and sender fd in pipe based waker
Additional commits viewable in compare view

Updates regex from 1.5.4 to 1.5.5

Changelog

Sourced from regex's changelog.

1.5.5 (2022-03-08)

This releases fixes a security bug in the regex compiler. This bug permits a vector for a denial-of-service attack in cases where the regex being compiled is untrusted. There are no known problems where the regex is itself trusted, including in cases of untrusted haystacks.

SECURITY #GHSA-m5pq-gvj9-9vr8: Fixes a bug in the regex compiler where empty sub-expressions subverted the existing mitigations in place to enforce a size limit on compiled regexes. The Rust Security Response WG published an advisory about this: https://groups.google.com/g/rustlang-security-announcements/c/NcNNL1Jq7Yw

Commits

d130381 1.5.5
ae70b41 security: fix denial-of-service bug in compiler
b92ffd5 cargo: use SPDX license format
f6e52da syntax: fix 'unused' warnings
5197f21 fuzz: do not use inherits in Cargo.toml
3662851 doc: fix typo
63ee669 syntax/doc: fix 'their' typo
d6bc7a4 readme: remove broken badge
bd74660 fuzz: try to fix build issue
bd0a142 readme: fix badges
Additional commits viewable in compare view

Updates tokio from 1.17.0 to 1.26.0

Release notes

Sourced from tokio's releases.

Tokio v1.26.0

Fixed

macros: fix empty join! and try_join! ([https://redirect.github.com/fix empty join! and try_join! tokio-rs/tokio#5504])

sync: don't leak tracing spans in mutex guards ([https://redirect.github.com/sync: don't leak tracing spans in mutex guards tokio-rs/tokio#5469])

sync: drop wakers after unlocking the mutex in Notify ([https://redirect.github.com/Drop wakers after unlocking the mutex in Notify tokio-rs/tokio#5471])

sync: drop wakers outside lock in semaphore ([https://redirect.github.com/Solve deadlock in Semaphore tokio-rs/tokio#5475])

Added

fs: add fs::try_exists ([https://redirect.github.com/Add fs::try_exists tokio-rs/tokio#4299])

net: add types for named unix pipes ([https://redirect.github.com/net: add types for named Unix pipes tokio-rs/tokio#5351])

sync: add MappedOwnedMutexGuard ([https://redirect.github.com/Add MappedOwnedMutexGuard tokio-rs/tokio#5474])

Changed

chore: update windows-sys to 0.45 ([https://redirect.github.com/chore: update windows-sys to 0.45 tokio-rs/tokio#5386])

net: use Message Read Mode for named pipes ([https://redirect.github.com/Named Pipes: Support Message Read Mode tokio-rs/tokio#5350])

sync: mark lock guards with #[clippy::has_significant_drop] ([https://redirect.github.com/Mark MutexGuard with #[clippy::has_significant_drop] tokio-rs/tokio#5422])

sync: reduce contention in watch channel ([https://redirect.github.com/Reduce contention in watch channel tokio-rs/tokio#5464])

time: remove cache padding in timer entries ([https://redirect.github.com/time: remove cache padding in timer entries tokio-rs/tokio#5468])

time: Improve Instant::now() perf with test-util ([https://redirect.github.com/time: Improve Instant::now() perf with test-util tokio-rs/tokio#5513])

Internal Changes

io: use poll_fn in copy_bidirectional ([https://redirect.github.com/Use poll_fn in copy_bidirectional tokio-rs/tokio#5486])

net: refactor named pipe builders to not use bitfields ([https://redirect.github.com/net: refactor named pipe builders to not use bitfields tokio-rs/tokio#5477])

rt: remove Arc from Clock ([https://redirect.github.com/rt: remove Arc from Clock tokio-rs/tokio#5434])

sync: make notify_waiters calls atomic ([https://redirect.github.com/sync: make notify_waiters calls atomic tokio-rs/tokio#5458])

time: don't store deadline twice in sleep entries ([https://redirect.github.com/remove double store of deadline, saving 128 bytes tokio-rs/tokio#5410])

Unstable

metrics: add a new metric for budget exhaustion yields ([https://redirect.github.com/metrics: add a new metric for budget exhaustion yields tokio-rs/tokio#5517])

Documented

io: improve AsyncFd example ([https://redirect.github.com/io: improve AsyncFd example tokio-rs/tokio#5481])

runtime: document the nature of the main future ([https://redirect.github.com/Document the nature of the main future tokio-rs/tokio#5494])

runtime: remove extra period in docs ([https://redirect.github.com/chore: remove unnecessary dot in comment tokio-rs/tokio#5511])

signal: updated Documentation for Signals ([https://redirect.github.com/Updated Documentation for Signals tokio-rs/tokio#5459])

sync: add doc aliases for blocking_* methods ([https://redirect.github.com/sync: add doc aliases for blocking_* methods tokio-rs/tokio#5448])

sync: fix docs for Send/Sync bounds in broadcast ([https://redirect.github.com/sync: fix docs for Send/Sync bounds in broadcast tokio-rs/tokio#5480])

sync: document drop behavior for channels ([https://redirect.github.com/sync: document drop behavior for channels tokio-rs/tokio#5497])

task: clarify what happens to spawned work during runtime shutdown ([https://redirect.github.com/clarify what happens to spawned work during runtime shutdown tokio-rs/tokio#5394])

task: clarify process::Command docs ([https://redirect.github.com/Clarify process::Command docs (fixing #5406) tokio-rs/tokio#5413])

task: fix wording with 'unsend' ([https://redirect.github.com/fix: fix wording with 'unsend' tokio-rs/tokio#5452])

time: document immediate completion guarantee for timeouts ([https://redirect.github.com/time: document immediate completion guarantee for timeouts tokio-rs/tokio#5509])

tokio: document supported platforms ([https://redirect.github.com/Document supported platforms tokio-rs/tokio#5483])

... (truncated)

Commits

a377240 chore: prepare for Tokio v1.26.0 release (#5521)
52da177 metrics: add a new metric for budget exhaustion yields (#5517)
ee1c940 time: Improve Instant::now() perf with test-util (#5513)
815d89a runtime: remove extra period in docs (#5511)
54aaf3d time: document immediate completion guarantee for timeouts (#5509)
5a3abe5 net: add types for named unix pipes (#5351)
d44b1ca io: ignore SplitByUtf8BoundaryIfWindows test on miri (#5507)
e23c6f3 signal: updated Documentation for Signals (#5459)
0a50cb3 net: fix test compilation failure (#5506)
2298679 runtime: document the nature of the main future (#5494)
Additional commits viewable in compare view

Updates webpki from 0.22.0 to 0.22.2

Commits

See full diff in compare view

Updates bumpalo from 3.9.1 to 3.20.2

Changelog

Sourced from bumpalo's changelog.

3.20.2

Released 2026-02-19.

Fixed

Restored Send and Sync implementations for Box<T> for T: ?Sized types as well.

3.20.1

Released 2026-02-18.

Fixed

Restored Send and Sync implementations for Box<T> when T: Send and T: Sync respectively.

3.20.0

Released 2026-02-18.

Added

Added the bumpalo::collections::Vec::pop_if method.

Fixed

Fixed a bug in the bumpalo::collections::String::retain method in the face of panics.

Made bumpalo::collections::Box<T> covariant with T (just like std::boxed::Box<T>).

3.19.1

Released 2025-12-16.

Changed

Annotated bumpalo::collections::String::from_str_in as #[inline].

Fixed

Fixed compilation failures with the latest nightly Rust when enabling the

... (truncated)

Commits

1aad072 Bump to version 3.20.2 (#312)
2fb1d6a Add more tests for send and sync behavior, support unsized types (#311)
7c8d1f3 Bump to 3.20.1 (#310)
e06b36b Restore Send and Sync for Box (#309)
cb7f033 Bump to 3.20.0 (#307)
d97d31c Make box covariant (#304)
f9256f7 Pin quickcheck (#306)
a006efb Fix String::retain panic safety yielding invalid UTF-8 (#302)
96ba386 Add pop_if() to Vec (#301)
8c2172a Bump to version 3.19.1 (#300)
Additional commits viewable in compare view

Updates keccak from 0.1.0 to 0.1.6

Commits

a8936d9 keccak v0.1.6
40c50c1 keccak v0.1.5 (#69)
2dc13bf keccak: enable asm backend for p1600 (#68)
a3a4e01 Revert "Update Cargo.lock" (#67)
3a9a29e Update Cargo.lock
9e4f6bc keccak: don't test simd feature in minimal-versions workflow (#66)
329d4cd Replace cross tests with MIRI (#63)
48cc4ac build(deps): bump actions/checkout from 3 to 4 (#61)
651a34e keccak: replace CI tests on MIPS with PPC32 (#62)
4730c6f benches: remove criterion deps workaround (#60)
Additional commits viewable in compare view

Updates regex from 1.5.4 to 1.12.3

Changelog

Sourced from regex's changelog.

1.5.5 (2022-03-08)

This releases fixes a security bug in the regex compiler. This bug permits a vector for a denial-of-service attack in cases where the regex being compiled is untrusted. There are no known problems where the regex is itself trusted, including in cases of untrusted haystacks.

SECURITY #GHSA-m5pq-gvj9-9vr8: Fixes a bug in the regex compiler where empty sub-expressions subverted the existing mitigations in place to enforce a size limit on compiled regexes. The Rust Security Response WG published an advisory about this: https://groups.google.com/g/rustlang-security-announcements/c/NcNNL1Jq7Yw

Commits

d130381 1.5.5
ae70b41 security: fix denial-of-service bug in compiler
b92ffd5 cargo: use SPDX license format
f6e52da syntax: fix 'unused' warnings
5197f21 fuzz: do not use inherits in Cargo.toml
3662851 doc: fix typo
63ee669 syntax/doc: fix 'their' typo
d6bc7a4 readme: remove broken badge
bd74660 fuzz: try to fix build issue
bd0a142 readme: fix badges
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps the cargo group with 6 updates in the /client directory: | Package | From | To | | --- | --- | --- | | [bumpalo](https://github.com/fitzgen/bumpalo) | `3.9.1` | `3.20.2` | | [bzip2](https://github.com/trifectatechfoundation/bzip2-rs) | `0.4.3` | `0.4.4` | | [h2](https://github.com/hyperium/h2) | `0.3.11` | `0.3.27` | | [keccak](https://github.com/RustCrypto/sponges) | `0.1.0` | `0.1.6` | | [regex](https://github.com/rust-lang/regex) | `1.5.4` | `1.5.5` | | [webpki](https://github.com/briansmith/webpki) | `0.22.0` | `0.22.2` | Bumps the cargo group with 3 updates in the /program directory: [bumpalo](https://github.com/fitzgen/bumpalo), [keccak](https://github.com/RustCrypto/sponges) and [regex](https://github.com/rust-lang/regex). Updates `bumpalo` from 3.9.1 to 3.20.2 - [Changelog](https://github.com/fitzgen/bumpalo/blob/main/CHANGELOG.md) - [Commits](fitzgen/bumpalo@3.9.1...v3.20.2) Updates `bzip2` from 0.4.3 to 0.4.4 - [Release notes](https://github.com/trifectatechfoundation/bzip2-rs/releases) - [Commits](https://github.com/trifectatechfoundation/bzip2-rs/commits/0.4.4) Updates `h2` from 0.3.11 to 0.3.27 - [Release notes](https://github.com/hyperium/h2/releases) - [Changelog](https://github.com/hyperium/h2/blob/v0.3.27/CHANGELOG.md) - [Commits](hyperium/h2@v0.3.11...v0.3.27) Updates `keccak` from 0.1.0 to 0.1.6 - [Commits](RustCrypto/sponges@keccak-v0.1.0...keccak-v0.1.6) Updates `mio` from 0.8.0 to 0.8.11 - [Release notes](https://github.com/tokio-rs/mio/releases) - [Changelog](https://github.com/tokio-rs/mio/blob/master/CHANGELOG.md) - [Commits](tokio-rs/mio@v0.8.0...v0.8.11) Updates `regex` from 1.5.4 to 1.5.5 - [Release notes](https://github.com/rust-lang/regex/releases) - [Changelog](https://github.com/rust-lang/regex/blob/master/CHANGELOG.md) - [Commits](rust-lang/regex@1.5.4...1.5.5) Updates `tokio` from 1.17.0 to 1.26.0 - [Release notes](https://github.com/tokio-rs/tokio/releases) - [Commits](tokio-rs/tokio@tokio-1.17.0...tokio-1.26.0) Updates `webpki` from 0.22.0 to 0.22.2 - [Commits](https://github.com/briansmith/webpki/commits) Updates `bumpalo` from 3.9.1 to 3.20.2 - [Changelog](https://github.com/fitzgen/bumpalo/blob/main/CHANGELOG.md) - [Commits](fitzgen/bumpalo@3.9.1...v3.20.2) Updates `keccak` from 0.1.0 to 0.1.6 - [Commits](RustCrypto/sponges@keccak-v0.1.0...keccak-v0.1.6) Updates `regex` from 1.5.4 to 1.12.3 - [Release notes](https://github.com/rust-lang/regex/releases) - [Changelog](https://github.com/rust-lang/regex/blob/master/CHANGELOG.md) - [Commits](rust-lang/regex@1.5.4...1.5.5) --- updated-dependencies: - dependency-name: bumpalo dependency-version: 3.20.2 dependency-type: indirect dependency-group: cargo - dependency-name: bzip2 dependency-version: 0.4.4 dependency-type: indirect dependency-group: cargo - dependency-name: h2 dependency-version: 0.3.27 dependency-type: indirect dependency-group: cargo - dependency-name: keccak dependency-version: 0.1.6 dependency-type: indirect dependency-group: cargo - dependency-name: mio dependency-version: 0.8.11 dependency-type: indirect dependency-group: cargo - dependency-name: regex dependency-version: 1.5.5 dependency-type: indirect dependency-group: cargo - dependency-name: tokio dependency-version: 1.26.0 dependency-type: indirect dependency-group: cargo - dependency-name: webpki dependency-version: 0.22.2 dependency-type: indirect dependency-group: cargo - dependency-name: bumpalo dependency-version: 3.20.2 dependency-type: indirect dependency-group: cargo - dependency-name: keccak dependency-version: 0.1.6 dependency-type: indirect dependency-group: cargo - dependency-name: regex dependency-version: 1.12.3 dependency-type: indirect dependency-group: cargo ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Feb 20, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the cargo group across 2 directories with 8 updates#12

Bump the cargo group across 2 directories with 8 updates#12
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/cargo/client/cargo-943dda3a20

dependabot bot commented on behalf of github Feb 20, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot bot commented on behalf of github Feb 20, 2026

3.20.2

Fixed

3.20.1

Fixed

3.20.0

Added

Fixed

3.19.1

Changed

Fixed

Version 0.5.2 (and 0.1.13 for bzip2-sys)

What's Changed

New Contributors

Version 0.5.1 (and 0.1.12 for bzip2-sys)

Highlights

What's Changed

New Contributors

v0.3.26

What's Changed

v0.3.25

What's Changed

v0.3.24

Fixed

v0.3.23

What's Changed

v0.3.22

What's Changed

New Contributors

v0.3.21

What's Changed

New Contributors

v0.3.20

Bug Fixes

0.3.27 (July 11, 2025)

0.3.26 (April 3, 2024)

0.3.25 (March 15, 2024)

0.3.24 (January 17, 2024)

0.3.23 (January 10, 2024)

0.3.22 (November 15, 2023)

0.3.21 (August 21, 2023)

0.3.20 (June 26, 2023)

0.3.19 (May 12, 2023)

0.3.18 (April 17, 2023)

0.3.17 (April 13, 2023)

0.8.11

0.8.10

Added

0.8.9

Added

Fixed

0.8.8

Fixed

0.8.7

Added

1.5.5 (2022-03-08)

Tokio v1.26.0

Fixed

Added

Changed

Internal Changes

Unstable

Documented

3.20.2

Fixed

3.20.1

Fixed

3.20.0

Added

Fixed

3.19.1

Changed

Fixed

1.5.5 (2022-03-08)

Uh oh!

Reviewers

Assignees

Labels

Projects

Version 0.5.2 (and 0.1.13 for `bzip2-sys`)

Version 0.5.1 (and 0.1.12 for `bzip2-sys`)