chore(deps): bump the cargo-dependencies group with 7 updates

[dependabot]

Bumps the cargo-dependencies group with 7 updates:

Package	From	To
backon	0.4.3	0.4.4
prost	0.12.3	0.12.4
reqwest	0.11.26	0.12.2
tokio	1.36.0	1.37.0
axum	0.7.4	0.7.5
axum-otel-metrics	0.8.0	0.8.1
opentelemetry	0.21.0	0.22.0

Updates backon from 0.4.3 to 0.4.4

Release notes

Sourced from backon's releases.

v0.4.4

What's Changed

• docs: Update README by @​Xuanwo in Xuanwo/backon#76
• chore(deps): update reqwest requirement from 0.11 to 0.12 by @​dependabot in Xuanwo/backon#78
• feat: Add blocking retry with context support by @​Xuanwo in Xuanwo/backon#80
• Bump backon to 0.4.4 by @​Xuanwo in Xuanwo/backon#81

Full Changelog: Xuanwo/backon@v0.4.3...v0.4.4

Commits

• 7e90660 Bump backon to 0.4.4 (#81)
• 53fb634 feat: Add blocking retry with context support (#80)
• 9e90135 chore(deps): update reqwest requirement from 0.11 to 0.12 (#78)
• 4cd72bb docs: Update README (#76)
• See full diff in compare view

Updates prost from 0.12.3 to 0.12.4

Commits

• 38a00d8 chore: Release version 0.12.4 (#1024)
• b3de938 docs: Document feature flags (#1003)
• 12260d1 build(deps): Allow multimap 0.10 (#1013)
• 2b6140c build(deps): Allow heck 0.5 (#1012)
• 50bab4f chore: Split prost-types lib.rs into separate modules. (#1007)
• 0bd9482 Minor clippy lint fixes. (#1006)
• 82d7774 Allow itertools 0.12 (#948)
• 2a4aeaf feat: add derive feature (#992)
• e3d708c Improve protoc not found error message (#937)
• 145fd47 improve encode_varint performance by bounding its loop (#940)
• Additional commits viewable in compare view

Updates reqwest from 0.11.26 to 0.12.2

Release notes

Sourced from reqwest's releases.

v0.12.2

What's Changed

• Fix missing ALPN when connecting to socks5 proxy with rustls.
• Fix TLS version limits with rustls.
• Fix not detected ALPN h2 from server with native-tls.

New Contributors

• @​cxw620 made their first contribution in seanmonstar/reqwest#2165

Full Changelog: seanmonstar/reqwest@v0.12.1...v0.12.2

v0.12.1

What's Changed

• Fix ClientBuilder::interface() when no TLS is enabled.
• Fix TlsInfo::peer_certificate() being truncated with rustls.
• Fix panic if http2 feature disabled but TLS negotiated h2 in ALPN.
• Fix Display for Error to not include its source error.

New Contributors

• @​atouchet made their first contribution in seanmonstar/reqwest#2193
• @​mbme made their first contribution in seanmonstar/reqwest#2195

Full Changelog: seanmonstar/reqwest@v0.12.0...v0.12.1

v0.12.0

What's Changed

• Upgrade to hyper, http, and http-body v1.
• Add better support for converting to and from http::Request and http::Response.
• Add http2 optional cargo feature, default on.
• Add charset optional cargo feature, default on.
• Add macos-system-configuration cargo feature, default on.
• Change all optional dependencies to no longer be exposed as implicit features.
• Add ClientBuilder::interface(str) to specify the local interface to bind to.
• Experimental: disables the http3 feature temporarily.

Full Changelog: seanmonstar/reqwest@v0.11.27...v0.12.0

v0.11.27

What's Changed

• Add hickory-dns feature, deprecating trust-dns.
• (wasm) Fix Form::text() to not set octet-stream for plain text fields.

New Contributors

• @​ashdnazg made their first contribution in seanmonstar/reqwest#2174

Full Changelog: seanmonstar/reqwest@v0.11.26...v0.11.27

Changelog

Sourced from reqwest's changelog.

v0.12.2

• Fix missing ALPN when connecting to socks5 proxy with rustls.
• Fix TLS version limits with rustls.
• Fix not detected ALPN h2 from server with native-tls.

v0.12.1

• Fix ClientBuilder::interface() when no TLS is enabled.
• Fix TlsInfo::peer_certificate() being truncated with rustls.
• Fix panic if http2 feature disabled but TLS negotiated h2 in ALPN.
• Fix Display for Error to not include its source error.

v0.12.0

• Upgrade to hyper, http, and http-body v1.
• Add better support for converting to and from http::Request and http::Response.
• Add http2 optional cargo feature, default on.
• Add charset optional cargo feature, default on.
• Add macos-system-configuration cargo feature, default on.
• Change all optional dependencies to no longer be exposed as implicit features.
• Add ClientBuilder::interface(str) to specify the local interface to bind to.
• Experimental: disables the http3 feature temporarily.

v0.11.27

• Add hickory-dns feature, deprecating trust-dns.
• (wasm) Fix Form::text() to not set octet-stream for plain text fields.

Commits

• 6768a8e v0.12.2
• fff307b fix(connect): ALPN missed when using socks5 proxy with rustls backend (#2164)
• 04bf45f fix: tls version limit for rustls (#2203)
• 056f8c4 fix(connect): not negotiate h2 when using native-tls backend (#2165)
• e0ea15b v0.12.1
• 3d78fcb fix: Display for Error shouldn't include source (#2199)
• c535724 Fix binding interface when no TLS is used (#2200)
• d5adcba fix: rustls extraction of TlsInfo::peer_certificate() being truncated (#2195)
• 7a5df21 fix: could panic if http2 disabled but TLS negotiated h2 (#2194)
• d5051f9 Update version number in Readme
• Additional commits viewable in compare view

Updates tokio from 1.36.0 to 1.37.0

Release notes

Sourced from tokio's releases.

Tokio v1.37.0

1.37.0 (March 28th, 2024)

Added

• fs: add set_max_buf_size to tokio::fs::File (#6411)
• io: add try_new and try_with_interest to AsyncFd (#6345)
• sync: add forget_permits method to semaphore (#6331)
• sync: add is_closed, is_empty, and len to mpsc receivers (#6348)
• sync: add a rwlock() method to owned RwLock guards (#6418)
• sync: expose strong and weak counts of mpsc sender handles (#6405)
• sync: implement Clone for watch::Sender (#6388)
• task: add TaskLocalFuture::take_value (#6340)
• task: implement FromIterator for JoinSet (#6300)

Changed

• io: make io::split use a mutex instead of a spinlock (#6403)

Fixed

• docs: fix docsrs build without net feature (#6360)
• macros: allow select with only else branch (#6339)
• runtime: fix leaking registration entries when os registration fails (#6329)

Documented

• io: document cancel safety of AsyncBufReadExt::fill_buf (#6431)
• io: document cancel safety of AsyncReadExt's primitive read functions (#6337)
• runtime: add doc link from Runtime to #[tokio::main] (#6366)
• runtime: make the enter example deterministic (#6351)
• sync: add Semaphore example for limiting the number of outgoing requests (#6419)
• sync: fix missing period in broadcast docs (#6377)
• sync: mark mpsc::Sender::downgrade with #[must_use] (#6326)
• sync: reorder const_new before new_with (#6392)
• sync: update watch channel docs (#6395)
• task: fix documentation links (#6336)

Changed (unstable)

• runtime: include task Id in taskdumps (#6328)
• runtime: panic if unhandled_panic is enabled when not supported (#6410)

#6300: tokio-rs/tokio#6300 #6326: tokio-rs/tokio#6326 #6328: tokio-rs/tokio#6328 #6329: tokio-rs/tokio#6329 #6331: tokio-rs/tokio#6331 #6336: tokio-rs/tokio#6336 #6337: tokio-rs/tokio#6337

... (truncated)

Commits

• 9c337ca chore: prepare Tokio v1.37.0 (#6435)
• e542501 io: document cancel safety of AsyncBufReadExt::fill_buf (#6431)
• 4601c84 stream: add next_many and poll_next_many to StreamMap (#6409)
• deff252 util: document cancel safety of SinkExt::send and StreamExt::next (#6417)
• 4565b81 sync: add a rwlock() method to owned RwLock guards (#6418)
• 3ce4720 sync: add is_closed, is_empty, and len to mpsc receivers (#6348)
• 8342e4b util: assert compatibility between LengthDelimitedCodec options (#6414)
• 4c453e9 readme: add description about benchmarks (#6425)
• 1846483 sync: expose strong and weak counts of mpsc sender handles (#6405)
• baad270 sync: add Semaphore example for limiting the number of outgoing requests (#6419)
• Additional commits viewable in compare view

Updates axum from 0.7.4 to 0.7.5

Release notes

Sourced from axum's releases.

axum-extra - v0.7.5

• fixed: Remove explicit auto deref from PrivateCookieJar example (#2028)

#2028: tokio-rs/axum#2028

axum - v0.7.5

• fixed: Fixed layers being cloned when calling axum::serve directly with a Router or MethodRouter (#2586)
• fixed: h2 is no longer pulled as a dependency unless the http2 feature is enabled (#2605)

#2586: tokio-rs/axum#2586 #2605: tokio-rs/axum#2605

Commits

• ef8a9e8 Release axum and axum-extra (#2676)
• c6fd852 Update sync_wrapper to 1.0.0 from 0.1.1
• 2ec68d6 Add rejection tracing to all extractors (#2584)
• 2ce382f Remove h2 from dependencies when http2 feature is off (#2605)
• 8b13d4c Add axum-typed-routing to ECOSYSTEM.md (#2608)
• 19f6f79 Fix layers being cloned for each request (#2586)
• 3569950 Make nightly_error_messages feature compatible with latest nightly
• b6b203b fix typo in prometheus_metrics_example (#2627)
• b03f6c1 Fix typo in CONTRIBUTING.md (#2612)
• 4d65ba0 ci: Unbreak cargo-deny action (#2613)
• Additional commits viewable in compare view

Updates axum-otel-metrics from 0.8.0 to 0.8.1

Commits

• 9492a8c chore: bump version to 0.8.1
• 0e83463 chore: update crates
• 9ba9951 chore(deps): bump h2 from 0.4.2 to 0.4.4 in /examples/axum-metrics-demo
• 55d0a98 chore(deps): bump pin-project-lite from 0.2.13 to 0.2.14
• cede9fe chore(deps): bump tokio from 1.36.0 to 1.37.0
• 533291d chore(deps): bump axum from 0.7.4 to 0.7.5
• 7d38586 chore: update example deps
• 1f29898 chore: update Cargo.lock
• 46952d9 chore(deps): bump http from 1.0.0 to 1.1.0
• 9709ebd chore(deps): bump opentelemetry_sdk from 0.22.0 to 0.22.1
• Additional commits viewable in compare view

Updates opentelemetry from 0.21.0 to 0.22.0

Release notes

Sourced from opentelemetry's releases.

v0.22.0

API

Added

• open-telemetry/opentelemetry-rust#1410 Add experimental synchronous gauge. This is behind the feature flag, and can be enabled by enabling the feature otel_unstable for opentelemetry crate.

• open-telemetry/opentelemetry-rust#1410 Guidelines to add new unstable/experimental features.

Changed

• Modified AnyValue.Map to be backed by HashMap instead of custom OrderMap, which internally used IndexMap. There was no requirement to maintain the order of entries, so moving from IndexMap to HashMap offers slight performance gains, and avoids IndexMap dependency. This affects body and attributes of LogRecord. open-telemetry/opentelemetry-rust#1353
• Add TextMapCompositePropagator open-telemetry/opentelemetry-rust#1373
• Turned off events for NoopLogger to save on operations open-telemetry/opentelemetry-rust#1455

Removed

• Removed OrderMap type as there was no requirement to use this over regular HashMap. open-telemetry/opentelemetry-rust#1353
• Remove API for Creating Histograms with signed integers. open-telemetry/opentelemetry-rust#1371
• Remove global::shutdown_meter_provider, use SdkMeterProvider::shutdown directly instead (#1412).

SDK

Deprecated

• XrayIdGenerator in the opentelemetry-sdk has been deprecated and moved to version 0.10.0 of the opentelemetry-aws crate.

Added

• #1410 Add experimental synchronous gauge

• #1471 Configure batch log record processor via OTEL_BLRP_* environment variables and via OtlpLogPipeline::with_batch_config

• #1503 Make the documentation for In-Memory exporters visible.

• #1526 Performance Improvement : Creating Spans and LogRecords are now faster, by avoiding expensive cloning of Resource for every Span/LogRecord.

Changed

• Breaking #1313 #1350 Changes how Span links/events are stored to achieve performance gains. See below for details:

  Behavior Change: When enforcing max_links_per_span, max_events_per_span from SpanLimits, links/events are kept in the first-come order. The previous "eviction" based approach is no longer performed.

  Breaking Change Affecting Exporter authors:

  SpanData now stores links as SpanLinks instead of EvictedQueue where SpanLinks is a struct with a Vec of links and dropped_count.

  SpanData now stores events as SpanEvents instead of EvictedQueue where SpanEvents is a struct with a Vec of events and dropped_count.

• Breaking Remove TextMapCompositePropagator #1373. Use TextMapCompositePropagator in opentelemetry API.

... (truncated)

Commits

• ab9415a Bump versions to prepare for release v0.22 (#1539)
• 6422524 fix: disable workspace default feature (#1562)
• d88e83d Fix invalid import paths under "Getting Started" (#1574)
• 27cf653 Deprecate AWS XrayIdGenerator (#1573)
• 188a26c Switch from the chrono clock feature to now (#1569)
• 47b928e Disable default features on reqwest (#1570)
• 98cd103 chore: skip coverage check for dependencies update (#1558)
• 36c2a8e deprecation(opentelemetry-jaeger): Add deprecation notice. (#1560)
• 1169445 opentelemetry-otlp: Default the port correctly. (#1556)
• 4c22cf6 Safer endpoint Uri construction (#1553)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.