Skip to content

Update dependencies 23-10-2025 and MSRV to Rust 1.85.0 (2024 Edition) #572

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 6 commits into from
Oct 26, 2025
Merged

Update dependencies 23-10-2025 and MSRV to Rust 1.85.0 (2024 Edition) #572

merged 6 commits into from
Oct 26, 2025

Conversation

@joseluisq
Copy link
Collaborator

@joseluisq joseluisq commented Oct 23, 2025
edited
Loading

Description

This PR updates dependencies as usual to provide security, bug fixes and improvements.

MSRV Upgrade

SWS now requires Rust 1.85.0 (2024 Edition) or later.

Security

It fixes CVE-2025-62518 (a.k.a TARmageddon) - See https://edera.dev/stories/tarmageddon

Related Issue

Motivation and Context

How Has This Been Tested?

Screenshots (if appropriate):

@joseluisq joseluisq added enhancement New feature or request security Related to Security dependency Related to dependencies labels Oct 23, 2025
@semanticdiff-com
Copy link

semanticdiff-com bot commented Oct 23, 2025
edited
Loading

Review changes with  SemanticDiff

Changed Files
File Status
  src/health.rs  100% smaller
  tests/dir_listing_download.rs  100% smaller
  src/metrics.rs  99% smaller
  src/basic_auth.rs  99% smaller
  src/redirects.rs  98% smaller
  src/maintenance_mode.rs  98% smaller
  src/rewrites.rs  95% smaller
  src/cors.rs  72% smaller
  src/settings/mod.rs  61% smaller
  src/response.rs  58% smaller
  src/compression.rs  55% smaller
  src/control_headers.rs  50% smaller
  src/service.rs  38% smaller
  src/testing.rs  38% smaller
  src/mem_cache/cache.rs  36% smaller
  src/signals.rs  29% smaller
  src/server.rs  9% smaller
  tests/cors.rs  8% smaller
  tests/experimental_metrics.rs  8% smaller
  tests/handler.rs  8% smaller
  tests/redirects.rs  8% smaller
  tests/rewrites.rs  8% smaller
  tests/compression.rs  8% smaller
  tests/compression_static.rs  8% smaller
  src/custom_headers.rs  8% smaller
  src/fallback_page.rs  8% smaller
  src/security_headers.rs  8% smaller
  src/handler.rs  7% smaller
  src/error_page.rs  7% smaller
  src/settings/file.rs  6% smaller
  src/winservice.rs  6% smaller
  src/headers_ext/accept_encoding.rs  3% smaller
  src/https_redirect.rs  3% smaller
  src/tls.rs  2% smaller
  src/directory_listing_download.rs  2% smaller
  .github/workflows/devel.yml  0% smaller
  Cargo.lock Unsupported file format
  Cargo.toml Unsupported file format
  benches/control_headers.rs  0% smaller
  benches/http_ext.rs  0% smaller
  benches/static_files.rs  0% smaller
  docs/content/building-from-source.md Unsupported file format
  src/bin/server.rs  0% smaller
  src/compression_static.rs  0% smaller
  src/directory_listing.rs  0% smaller
  src/error.rs  0% smaller
  src/fs/meta.rs  0% smaller
  src/mem_cache/stream.rs  0% smaller
  src/static_files.rs  0% smaller
  src/virtual_hosts.rs  0% smaller

@niklaskorz niklaskorz mentioned this pull request Oct 24, 2025
Closed
15 tasks
@joseluisq joseluisq force-pushed the update-dependencies-23-10-2025 branch from 88f4b4f to 40d9814 Compare October 25, 2025 22:33
@joseluisq joseluisq force-pushed the update-dependencies-23-10-2025 branch from 40d9814 to a62c32e Compare October 25, 2025 22:36
@joseluisq joseluisq changed the title Update dependencies 23-10-2025 Update dependencies 23-10-2025 and MSRV to Rust 1.85.0 (2024 Edition) Oct 25, 2025
@joseluisq joseluisq merged commit 57025e3 into master Oct 26, 2025
28 of 37 checks passed
@joseluisq joseluisq deleted the update-dependencies-23-10-2025 branch October 26, 2025 00:04
@joseluisq joseluisq self-assigned this Oct 26, 2025
@joseluisq joseluisq added this to the v2.39.0 milestone Oct 26, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@joseluisq joseluisq

Labels

dependency Related to dependencies enhancement New feature or request security Related to Security

Projects

None yet

Milestone

v2.39.0

Development

Successfully merging this pull request may close these issues.

2 participants

@joseluisq