• 368a871 chore: Release
• 4d5c297 docs: Update changelog
• 263b34c Merge pull request #284 from hanna-kruppe/windows-sys-0.61
• 8029e72 Merge pull request #286 from epage/template
• 5b1cab4 fix(syntect): Update a windows minimal dep
• 21b13fa chore(ci): Run more jobs on Windows
• 51e86fa chore: Update from '_rust/main' template
• b0881a6 chore(ci): Give more control over where alt version jobs run
• 829ebd7 chore(deps): Allow windows-sys 0.61
• 36dd1a2 Merge pull request #285 from epage/template
• Additional commits viewable in compare view

• 368a871 chore: Release
• 4d5c297 docs: Update changelog
• 263b34c Merge pull request #284 from hanna-kruppe/windows-sys-0.61
• 8029e72 Merge pull request #286 from epage/template
• 5b1cab4 fix(syntect): Update a windows minimal dep
• 21b13fa chore(ci): Run more jobs on Windows
• 51e86fa chore: Update from '_rust/main' template
• b0881a6 chore(ci): Give more control over where alt version jobs run
• 829ebd7 chore(deps): Allow windows-sys 0.61
• 36dd1a2 Merge pull request #285 from epage/template
• Additional commits viewable in compare view

Sourced from bytes's releases.

Bytes v1.11.0

1.11.0 (November 14th, 2025)

• Bump MSRV to 1.57 (#788)

Fixed

• fix: BytesMut only reuse if src has remaining (#803)
• Specialize BytesMut::put::<Bytes> (#793)
• Reserve capacity in BytesMut::put (#794)
• Change BytesMut::remaining_mut to use isize::MAX instead of usize::MAX (#795)

Internal changes

• Guarantee address in slice() for empty slices. (#780)
• Rename Vtable::to_* -> Vtable::into_* (#776)
• Fix latest clippy warnings (#787)
• Ignore BytesMut::freeze doctest on wasm (#790)
• Move drop_fn of from_owner into vtable (#801)

Sourced from bytes's changelog.

1.11.0 (November 14th, 2025)

• Bump MSRV to 1.57 (#788)

Fixed

• fix: BytesMut only reuse if src has remaining (#803)
• Specialize BytesMut::put::<Bytes> (#793)
• Reserve capacity in BytesMut::put (#794)
• Change BytesMut::remaining_mut to use isize::MAX instead of usize::MAX (#795)

Internal changes

• Guarantee address in slice() for empty slices. (#780)
• Rename Vtable::to_* -> Vtable::into_* (#776)
• Fix latest clippy warnings (#787)
• Ignore BytesMut::freeze doctest on wasm (#790)
• Move drop_fn of from_owner into vtable (#801)

• a7952fb chore: prepare bytes v1.11.0 (#804)
• 60cbb77 fix: BytesMut only reuse if src has remaining (#803)
• 7ce330f Move drop_fn of from_owner into vtable (#801)
• 4b53a29 Tweak BytesMut::remaining_mut (#795)
• 016fdbd Reserve capacity in BytesMut::put (#794)
• ef7f257 Specialize BytesMut::put::<Bytes> (#793)
• 8b4f54d Ignore BytesMut::freeze doctest on wasm (#790)
• 16132ad Fix latest clippy warnings (#787)
• 3e44f88 Bump MSRV to 1.57 (#788)
• f29e939 Add some tests for Limit, BytesMut and Reader (#785)
• Additional commits viewable in compare view

Sourced from cc's releases.

cc-v1.2.46

Other

• Add Visual Studio 2026 support (#1609)

Sourced from cc's changelog.

1.2.46 - 2025-11-14

Other

• Add Visual Studio 2026 support (#1609)

• 15145d1 chore: release (#1611)
• ef4d378 Add Visual Studio 2026 support (#1609)
• See full diff in compare view

Sourced from find-msvc-tools's releases.

find-msvc-tools-v0.1.5

Other

• Add Visual Studio 2026 support (#1609)

• 15145d1 chore: release (#1611)
• ef4d378 Add Visual Studio 2026 support (#1609)
• df67ed3 chore(cc): release v1.2.45 (#1607)
• 0c15d10 Regenerate target info (#1606)
• c1fa376 Use a default check for the "env" variable in apple_sdk_name (#1605)
• 514e4d1 chore(cc): release v1.2.44 (#1603)
• 2a2eee3 Fix debug assertion for env/abi mismatch (#1604)
• 97281b6 Update CHANGELOG for version 1.2.43 (#1602)
• 8a45e2b Stop passing an invalid target to llvm-mingw's cross-compilation wrappers (...
• a0b2fd6 Mark static_flag and shared_flag as deprecated (#1582)
• Additional commits viewable in compare view

Sourced from hyper's releases.

v1.8.1

Bug Fixes

• http1: fix consuming extra CPU from previous change (#3977) (4492f31e)

Full Changelog: hyperium/hyper@v1.8.0...v1.8.1

v1.8.0

Highlights

Features

• rt: add Timer::now() method to allow overriding the instant returned (#3965) (5509ebe6)

Bug Fixes

• http1: fix rare missed write wakeup on connections (#3952) (2377b893)
• http2: fix internals of HTTP/2 CONNECT upgrades (#3967) (58e0e7dc, closes #3966)

Breaking Changes

While technically breaking, it's assumed you will not need to do anything or be affected.

• The HTTP/2 client connection no longer allows an executor that can not spawn itself.

  This was an oversight originally. The client connection will now include spawning a future that keeps a copy of the executor to spawn other futures. Thus, if it is !Send, it needs to spawn !Send futures. The likelihood of executors that match the previously allowed behavior should be very remote.

  There is also technically a semver break in here, which is that the Http2ClientConnExec trait no longer dyn-compatible, because it now expects to be Clone. This should not break usage of the conn builder, because it already separately had E: Clone bounds. If someone were using dyn Http2ClientConnExec, that will break. However, there is no purpose for doing so, and it is not usable otherwise, since the trait only exists to propagate bounds into hyper. Thus, the breakage should not affect anyone. (58e0e7dc)

What's Changed

• chore(ci): update to actions/checkout@v5 by @​tottoto in hyperium/hyper#3935
• refactor(ffi): specify "C" ABI explicitly in ffi_fn! macro by @​1911860538 in hyperium/hyper#3937
• Update documented default values for http1::Builder by @​Will-Low in hyperium/hyper#3938
• fix(client): port tests to in-memory socket by @​cratelyn in hyperium/hyper#3947
• feat: allow overriding the instant returned from Timer by @​arielb1 in hyperium/hyper#3965
• fix(http1): poll_loop writes when ready by @​lthiery in hyperium/hyper#3952
• test(ready_stream): replace tracing with printlns by @​seanmonstar in hyperium/hyper#3973

... (truncated)

Sourced from hyper's changelog.

v1.8.1 (2025-11-13)

Bug Fixes

• http1: fix consuming extra CPU from previous change (#3977) (4492f31e)

v1.8.0 (2025-11-11)

Bug Fixes

• http1: fix rare missed write wakeup on connections (#3952) (2377b893)
• http2: fix internals of HTTP/2 CONNECT upgrades (#3967) (58e0e7dc, closes #3966)

Features

• rt: add Timer::now() method to allow overriding the instant returned (#3965) (5509ebe6)

Breaking Changes

• The HTTP/2 client connection no longer allows an executor that can not spawn itself.

  This was an oversight originally. The client connection will now include spawning a future that keeps a copy of the executor to spawn other futures. Thus, if it is !Send, it needs to spawn !Send futures. The likelihood of executors that match the previously allowed behavior should be very remote.

  There is also technically a semver break in here, which is that the Http2ClientConnExec trait no longer dyn-compatible, because it now expects to be Clone. This should not break usage of the conn builder, because it already separately had E: Clone bounds. If someone were using dyn Http2ClientConnExec, that will break. However, there is no purpose for doing so, and it is not usable otherwise, since the trait only exists to propagate bounds into hyper. Thus, the breakage should not affect anyone. (58e0e7dc)

• 166c6ca v1.8.1
• 4492f31 fix(http1): fix consuming extra CPU from previous change (#3977)
• dbe6f25 v1.8.0
• 58e0e7d fix(http2): fix internals of HTTP/2 CONNECT upgrades (#3967)
• 0a37a8c test(ready_stream): replace tracing with printlns (#3973)
• 2377b89 fix(http1): fix rare missed write wakeup on connections (#3952)
• 5509ebe feat(rt): add Timer::now() method to allow overriding the instant returned ...
• f9f8f44 tests(client): port tests to in-memory socket (#3947)
• 5803a9c docs(server): update default values for http1::Builder (#3938)
• e1e1f2b refactor(ffi): specify "C" ABI explicitly in ffi_fn! macro (#3937)
• Additional commits viewable in compare view

Sourced from hyper-util's releases.

v0.1.18

Highlights

• Fix rt::TokioTimer to support Tokio's paused time.
• Fix client::proxy::match::Matcher to parse auth without passwords.

What's Changed

• chore(ci): add a github actions workflow to preview rustdocs of a PR by @​seanmonstar in hyperium/hyper-util#229
• chore(ci): fix rustdoc preview job by @​seanmonstar in hyperium/hyper-util#231
• chore(ci): fix rustdoc preview workflow typo by @​seanmonstar in hyperium/hyper-util#232
• docs: replace auto_doc_cfg by @​seanmonstar in hyperium/hyper-util#237
• perf(client): avoid redundant memory copies of Host header by @​0x676e67 in hyperium/hyper-util#235
• chore: bump windows-registry to 0.6 by @​Vaiz in hyperium/hyper-util#236
• fix: fix msrv on windows and macos target by @​tottoto in hyperium/hyper-util#239
• chore(ci): update to actions/checkout@v5 by @​tottoto in hyperium/hyper-util#240
• fix: allow proxy env URIs without password by @​karanabe in hyperium/hyper-util#241
• fix: support fake time by @​arielb1 in hyperium/hyper-util#238

New Contributors

• @​Vaiz made their first contribution in hyperium/hyper-util#236
• @​karanabe made their first contribution in hyperium/hyper-util#241
• @​arielb1 made their first contribution in hyperium/hyper-util#238

Thanks

• @​tottoto
• @​seanmonstar

Full Changelog: hyperium/hyper-util@v0.1.17...v0.1.18

Sourced from hyper-util's changelog.

0.1.18 (2025-11-13)

• Fix rt::TokioTimer to support Tokio's paused time.
• Fix client::proxy::match::Matcher to parse auth without passwords.

• 203c956 v0.1.18
• d91ea8e fix(rt): support fake time in legacy client and TokioTimer (#238)
• dde14d3 fix(client): Proxy Matcher to handle proxy auth without password (#241)
• b9dc3d2 chore(ci): update to actions/checkout@v5 (#240)
• d4f5706 ci: fix msrv on windows and macos target (#239)
• 3c8dbe4 chore: bump windows-registry to 0.6 (#236)
• 72bbd22 perf(client): avoid redundant memory copies of Host header (#235)
• 1c8f7c6 docs: replace auto_doc_cfg (#237)
• 66afc93 chore(ci): use auto pr ref in rustdoc-preview workflow
• faf5ca2 chore(ci): fix rustdoc preview workflow typo (#232)
• Additional commits viewable in compare view

Sourced from image's changelog.

Version 0.25.9

Features:

• Support extracting XMP metadata from PNG, JPEG, GIF, WebP and TIFF files (#2567, #2634, #2644)
• Support reading IPTC metadata from PNG and JPG files (#2611)
• Support reading ICC profile from GIF files (#2644)
• Allow setting a specific DEFLATE compression level when writing PNG (#2583)
• Initial support for 16-bit CMYK TIFF files (#2588)
• Allow extracting the alpha channel of a Pixel in a generic way (#2638)

Structural changes:

• EXR format decoding now only uses multi-threading via Rayon when the rayon feature is enabled (#2643)
• Upgraded zune-jpeg to 0.5.x, ravif to 0.12.x, gif to 0.14.x
• pnm: parse integers in PBM/PGM/PPM headers without allocations (#2620)
• Replace doc_auto_cfg with doc_cfg (#2637)

Bug fixes:

• Do not encode empty JPEG images (#2624)
• tga: reject empty images (#2614)
• tga: fix orientation flip for color mapped images (#2607)
• tga: adjust colormap lookup to match tga 2.0 spec (#2608)

• 5ceb6af Merge pull request #2640 from Shnatsel/release-v0.25.9
• 282d7b3 Merge pull request #2646 from oligamiq/main
• 5412aee Amend the note in accordance with the advice of 197g.
• 4e8a4ed Clarify default features in README and add usage note
• ca8fa52 Merge pull request #2644 from image-rs/gif-0.14
• d9bc8fe mention GIF 0.14 changes
• 053220a Provide gif's XMP and ICC metadata
• 2ec20b3 Prepare codec with [email protected]
• 31939fa Mention EXR rayon change
• c7f68be Merge pull request #2643 from Shnatsel/really-optional-rayon
• Additional commits viewable in compare view

• See full diff in compare view

Sourced from weezl's changelog.

Version 0.1.12

• Further adjusted a debug assertion for TIFF compatibility. It still had one of its OR conditions formulated incorrectly, relying on equality of the code word mask and the size switch code. In TIFF we hit the limit of the code dictionary (all 12-bit words) one code later than we would detect a code switch that we need to ignore.

• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions