Skip to content

build(deps): bump rustls-webpki from 0.103.12 to 0.103.13 in the cargo group across 1 directory#31

Merged
wiseaidev merged 1 commit into
mainfrom
dependabot/cargo/cargo-8056535635
May 1, 2026
Merged

build(deps): bump rustls-webpki from 0.103.12 to 0.103.13 in the cargo group across 1 directory#31
wiseaidev merged 1 commit into
mainfrom
dependabot/cargo/cargo-8056535635

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Apr 24, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps the cargo group with 1 update in the / directory: rustls-webpki.

Updates rustls-webpki from 0.103.12 to 0.103.13

Release notes

Sourced from rustls-webpki's releases.

0.103.13

  • Fix reachable panic in parsing a CRL. This was reported to us as GHSA-82j2-j2ch-gfr8. Users who don't use CRLs are not affected.
  • For name constraints on URI names, we incorrectly processed excluded subtrees in a way which inverted the desired meaning. See rustls/webpki#471. This was a case missing in the fix for GHSA-965h-392x-2mh5.

What's Changed

Full Changelog: rustls/webpki@v/0.103.12...v/0.103.13

Commits
  • 2879b2c Prepare 0.103.13
  • 2c49773 Improve tests for padding of BitStringFlags
  • 4e3c0b3 Correct validation of BIT STRING constraints
  • 39c91d2 Actually fail closed for URI matching against excluded subtrees
  • See full diff in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Apr 24, 2026
@dependabot
build(deps): bump rustls-webpki in the cargo group across 1 directory
6bd276c 
Bumps the cargo group with 1 update in the / directory: [rustls-webpki](https://github.com/rustls/webpki).


Updates `rustls-webpki` from 0.103.12 to 0.103.13
- [Release notes](https://github.com/rustls/webpki/releases)
- [Commits](rustls/webpki@v/0.103.12...v/0.103.13)

---
updated-dependencies:
- dependency-name: rustls-webpki
  dependency-version: 0.103.13
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/cargo/cargo-8056535635 branch from ce88f1f to 6bd276c Compare April 27, 2026 21:37
@wiseaidev wiseaidev merged commit 3f867cd into main May 1, 2026
6 checks passed
@dependabot dependabot Bot deleted the dependabot/cargo/cargo-8056535635 branch May 1, 2026 08:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update rust code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@wiseaidev