Skip to content

Bump the prod-dependencies group across 1 directory with 2 updates #4

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
wants to merge 1 commit into
base: main
Choose a base branch
from
Draft

Bump the prod-dependencies group across 1 directory with 2 updates #4

wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 26, 2025

Updates the requirements on alloy and serde to permit the latest version.
Updates alloy to 1.0.30

Release notes

Sourced from alloy's releases.

v1.0.30

What's Changed

Full Changelog: alloy-rs/alloy@v1.0.29...v1.0.30

Changelog

Sourced from alloy's changelog.

1.0.30 - 2025-09-03

Bug Fixes

  • [rpc] Add missing error code eth_sendRawTransactionSync timeout (#2846)

Features

  • Add with_request to storage slot finder (#2847)
  • Re-export signer dep crates (#2845)
  • Add helper json deserde fn (#2841)

Miscellaneous Tasks

  • Release 1.0.30

1.0.29 - 2025-09-03

Dependencies

  • Revert "chore(deps): internal dep bumps" (#2839)

Miscellaneous Tasks

  • Release 1.0.29

1.0.28 - 2025-09-02

Dependencies

  • [deps] Internal dep bumps (#2834)

Documentation

  • Update version in installation example from 1.0.1 to 1.0.27 (#2836)

Features

  • [rpc] Add optional index field to CallLogFrame (#2748)
  • Add Asref for recovered withencoded (#2828)
  • Add helpers for MnemonicBuilder (#2825)
  • Add as_* helper methods to Delta (#2823)

Miscellaneous Tasks

  • Release 1.0.28
  • Use quantity for index (#2837)
  • Add into_envelope helper (#2832)
  • Use trait upcasting (#2827)

... (truncated)

Commits
  • b0e06a0 chore: release 1.0.30
  • e8da7c9 feat: add with_request to storage slot finder (#2847)
  • 588db3f fix(rpc): Add missing error code eth_sendRawTransactionSync timeout (#2846)
  • 36c4bc6 feat: re-export signer dep crates (#2845)
  • 63c4434 feat: add helper json deserde fn (#2841)
  • db0aa6a chore: release 1.0.29
  • b2ad3c3 Revert "chore(deps): internal dep bumps" (#2839)
  • addec3e chore: release 1.0.28
  • 830e4f5 docs: update version in installation example from 1.0.1 to 1.0.27 (#2836)
  • a45fa69 refactor: Change op in StructLog from String to Cow<'static, str> (#2730)
  • Additional commits viewable in compare view

Updates serde to 1.0.228

Release notes

Sourced from serde's releases.

v1.0.228

  • Allow building documentation with RUSTDOCFLAGS='--cfg=docsrs' set for the whole dependency graph (#2995)
Commits
  • a866b33 Release 1.0.228
  • 5adc9e8 Merge pull request #2995 from dtolnay/rustdocflags
  • ab58178 Workaround for RUSTDOCFLAGS='--cfg=docsrs'
  • 415d9fc Release 1.0.227
  • 7c58427 Merge pull request #2991 from dtolnay/inlinecoredoc
  • 9d3410e Merge pull request #2992 from dtolnay/inplaceseed
  • 2fb6748 Remove InPlaceSeed public re-export
  • f8137c7 Inline serde_core into serde in docsrs mode
  • b7dbf7e Merge pull request #2990 from dtolnay/integer128
  • 7c83691 No longer macro_use integer128 module
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the prod-dependencies group across 1 directory with 2 updates
4a93669 
Updates the requirements on [alloy](https://github.com/alloy-rs/alloy) and [serde](https://github.com/serde-rs/serde) to permit the latest version.

Updates `alloy` to 1.0.30
- [Release notes](https://github.com/alloy-rs/alloy/releases)
- [Changelog](https://github.com/alloy-rs/alloy/blob/main/CHANGELOG.md)
- [Commits](alloy-rs/alloy@v0.11.0...v1.0.30)

Updates `serde` to 1.0.228
- [Release notes](https://github.com/serde-rs/serde/releases)
- [Commits](serde-rs/serde@v1.0.220...v1.0.228)

---
updated-dependencies:
- dependency-name: alloy
  dependency-version: 1.0.30
  dependency-type: direct:production
  dependency-group: prod-dependencies
- dependency-name: serde
  dependency-version: 1.0.228
  dependency-type: direct:production
  dependency-group: prod-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Nov 26, 2025
@atodorov atodorov marked this pull request as draft November 26, 2025 15:43
@atodorov
Copy link
Collaborator

atodorov commented Nov 26, 2025

@didac-gluwa , @dlebee alloy is the primary dependency here, however newer versions also include backwards incompatible changes and will require more work. Up to you when you want to schedule this.

Not sure what to do about the serde dependency. IMO it shouldn't be hard-coded b/c alloy specifies its own dependency.

And here the breaking point isn't in the usc-sdk-rs crates precisely but more so in the creditcoin3-next repository which consumes these.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update rust code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@atodorov