Update Rust crate axum to 0.5.17 - autoclosed #10
Loading…
Reference in New Issue
Block a user
No description provided.
Delete Branch "renovate/axum-0.x"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
This PR contains the following updates:
0.5.6
->0.5.17
Release Notes
tokio-rs/axum
v0.5.17
#[track_caller]
so the errormessage points to where the user added the invalid router, rather than
somewhere internally in axum (#1248)
Multipart
extractor work withRequestBodyLimit
middleware (#1379)DefaultBodyLimit::max
for changing the default body limit (#1397)v0.5.16
Security
breaking: Added default limit to how much data
Bytes::from_request
willconsume. Previously it would attempt to consume the entire request body
without checking its length. This meant if a malicious peer sent an large (or
infinite) request body your server might run out of memory and crash.
The default limit is at 2 MB and can be disabled by adding the new
DefaultBodyLimit::disable()
middleware. See its documentation for moredetails.
This also applies to these extractors which used
Bytes::from_request
internally:
Form
Json
String
Thanks to Shachar Menashe for reporting this vulnerability.
(#1346)
v0.5.15
Note: This is a re-release of 0.5.14 that fixes an accidental breaking change.
QueryRejection
response. (#1171)v0.5.14
Yanked, as it contained an accidental breaking change.
v0.5.13
WebSocketUpgrade
cannot upgrade the connection it will return aWebSocketUpgradeRejection::ConnectionNotUpgradable
rejection (#1135)WebSocketUpgradeRejection
has a new variantConnectionNotUpgradable
variant (#1135)
v0.5.12
debug_handler
which is an attribute macro that improvestype errors when applied to handler function. It is re-exported from
axum-macros
(#1144)v0.5.11
TryFrom<http:: Method>
forMethodFilter
and use newNoMatchingMethodFilter
error in case of failure (#1130)v0.5.10
Router
cheaper to clone (#1123)v0.5.9
headers
is enabled and theform
feature is disabled (#1107)
v0.5.8
Forwarded
header inHost
extractor (#1078)
IntoResponse
forForm
(#1095)v0.5.7
Default
forExtension
(#1043)Vec<(String, String)>
inextract::Path<_>
to get vector ofkey/value pairs (#1059)
extract::ws::close_code
which contains constants for close codes (#1067)impl IntoResponse
less in docs (#1049)Configuration
📅 Schedule: At any time (no schedule defined).
🚦 Automerge: Enabled.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Renovate Bot.
Update Rust crate axum to 0.5.17to Update Rust crate axum to 0.5.17 - autoclosedPull request closed