[PR #391] [CLOSED] Bump sha2 from 0.10.8 to 0.10.9 #476

New issue

Closed

opened 2026-03-03 13:47:40 +03:00 by kerem · 0 comments

kerem commented

2026-03-03 13:47:40 +03:00

Owner

📋 Pull Request Information

Original PR: https://github.com/gopher64/gopher64/pull/391
Author: @dependabot[bot]
Created: 5/1/2025
Status: ❌ Closed

Base: main ← Head: dependabot/cargo/sha2-0.10.9

📝 Commits (1)

2fc60f2 Bump sha2 from 0.10.8 to 0.10.9

📊 Changes

1 file changed (+2 additions, -2 deletions)

View changed files

📝 Cargo.lock (+2 -2)

📄 Description

Bumps sha2 from 0.10.8 to 0.10.9.

Commits

82c36a4 sha2: add soft-compact backend (backport of #686) (#687)
c1e85ae ci: remove pre-1.56 jobs and other fixes (#688)
a667dd9 skein: fix implementation for output sizes not multiple of 8 (#682)
62b6ff1 Fix blake2 and ascon-hash CI (#521)
f3b657c Expose belt_compress to public (#520)
9f66cb8 md4: Optimize compress to improve hash performance (#519)
70a2b62 Add simpler code snippet to the documentation (#515)
e3ab257 Update Cargo.lock
c640781 ascon-hash: Add Zeroize feature (#480)
cfda39f Update Cargo.lock
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/gopher64/gopher64/pull/391 **Author:** [@dependabot[bot]](https://github.com/apps/dependabot) **Created:** 5/1/2025 **Status:** ❌ Closed **Base:** `main` ← **Head:** `dependabot/cargo/sha2-0.10.9` --- ### 📝 Commits (1) - [`2fc60f2`](https://github.com/gopher64/gopher64/commit/2fc60f281c724e4db32bb67a9e9701ed6a683729) Bump sha2 from 0.10.8 to 0.10.9 ### 📊 Changes **1 file changed** (+2 additions, -2 deletions) <details> <summary>View changed files</summary> 📝 `Cargo.lock` (+2 -2) </details> ### 📄 Description Bumps [sha2](https://github.com/RustCrypto/hashes) from 0.10.8 to 0.10.9. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/RustCrypto/hashes/commit/82c36a428f8d6f05f3bfccdedb243e9d1f85359d"><code>82c36a4</code></a> sha2: add soft-compact backend (backport of <a href="https://redirect.github.com/RustCrypto/hashes/issues/686">#686</a>) (<a href="https://redirect.github.com/RustCrypto/hashes/issues/687">#687</a>)</li> <li><a href="https://github.com/RustCrypto/hashes/commit/c1e85ae6d51e6fea15315c2eced68cc9b1fdf484"><code>c1e85ae</code></a> ci: remove pre-1.56 jobs and other fixes (<a href="https://redirect.github.com/RustCrypto/hashes/issues/688">#688</a>)</li> <li><a href="https://github.com/RustCrypto/hashes/commit/a667dd94f997271c3fa89ffbcc841e0c0f985654"><code>a667dd9</code></a> skein: fix implementation for output sizes not multiple of 8 (<a href="https://redirect.github.com/RustCrypto/hashes/issues/682">#682</a>)</li> <li><a href="https://github.com/RustCrypto/hashes/commit/62b6ff1c59878b4733c49f8164773c3009e4be03"><code>62b6ff1</code></a> Fix blake2 and ascon-hash CI (<a href="https://redirect.github.com/RustCrypto/hashes/issues/521">#521</a>)</li> <li><a href="https://github.com/RustCrypto/hashes/commit/f3b657cfacbb9d8f2f37374717c9b8d64672542e"><code>f3b657c</code></a> Expose belt_compress to public (<a href="https://redirect.github.com/RustCrypto/hashes/issues/520">#520</a>)</li> <li><a href="https://github.com/RustCrypto/hashes/commit/9f66cb810c398e4f6ff8f2ea90196d57f41dd729"><code>9f66cb8</code></a> md4: Optimize compress to improve hash performance (<a href="https://redirect.github.com/RustCrypto/hashes/issues/519">#519</a>)</li> <li><a href="https://github.com/RustCrypto/hashes/commit/70a2b62c50087fa6df5070ab696c5a355072cb12"><code>70a2b62</code></a> Add simpler code snippet to the documentation (<a href="https://redirect.github.com/RustCrypto/hashes/issues/515">#515</a>)</li> <li><a href="https://github.com/RustCrypto/hashes/commit/e3ab2579a0c6d51f6570679b8a7e99d87c4f14c6"><code>e3ab257</code></a> Update Cargo.lock</li> <li><a href="https://github.com/RustCrypto/hashes/commit/c640781bc10cfdb6d652232c492ecd7e27210b26"><code>c640781</code></a> ascon-hash: Add Zeroize feature (<a href="https://redirect.github.com/RustCrypto/hashes/issues/480">#480</a>)</li> <li><a href="https://github.com/RustCrypto/hashes/commit/cfda39f5cf15ffa1a3492ca9fefaf732bd97bf95"><code>cfda39f</code></a> Update Cargo.lock</li> <li>See full diff in <a href="https://github.com/RustCrypto/hashes/compare/sha2-v0.10.8...sha2-v0.10.9">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=sha2&package-manager=cargo&previous-version=0.10.8&new-version=0.10.9)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>