Skip to content

build(deps): bump tokio-postgres from 0.7.17 to 0.7.18#305

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/tokio-postgres-0.7.18
Closed

build(deps): bump tokio-postgres from 0.7.17 to 0.7.18#305
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/tokio-postgres-0.7.18

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 15, 2026

Copy link
Copy Markdown
Contributor

Bumps tokio-postgres from 0.7.17 to 0.7.18.

Release notes

Sourced from tokio-postgres's releases.

tokio-postgres v0.7.18

Fixed

  • Error instead of panicking on DataRow field/column count mismatch.
Commits
  • f1cb6ec Release tokio-postgres v0.7.18
  • 70cf8eb Release postgres-types v0.2.14
  • 5cdab55 Release postgres-derive v0.4.9
  • 76062c9 Release postgres-protocol v0.6.12
  • b661993 fix(derive): error instead of panicking on incomplete composite values
  • d40097a fix(protocol): bound the SCRAM iteration count to prevent a DoS
  • 2af79a0 fix(types): avoid panic decoding out-of-range time 0.2 dates/timestamps
  • 7a00ffa fix(tokio): reject DataRow with a field count that differs from the columns
  • a7cf84b fix(protocol): avoid panic on out-of-bounds hstore key/value length
  • 7cf186f test(protocol): add test for SCRAM error value parsing
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [tokio-postgres](https://github.com/rust-postgres/rust-postgres) from 0.7.17 to 0.7.18.
- [Release notes](https://github.com/rust-postgres/rust-postgres/releases)
- [Commits](rust-postgres/rust-postgres@tokio-postgres-v0.7.17...tokio-postgres-v0.7.18)

---
updated-dependencies:
- dependency-name: tokio-postgres
  dependency-version: 0.7.18
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update Rust code labels Jun 15, 2026
@djc djc closed this Jun 15, 2026
@dependabot @github

dependabot Bot commented on behalf of github Jun 15, 2026

Copy link
Copy Markdown
Contributor Author

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot dependabot Bot deleted the dependabot/cargo/tokio-postgres-0.7.18 branch June 15, 2026 11:54
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update Rust code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant