Bump futures from 0.3.9 to 0.3.11
Created by: dependabot[bot]
Bumps futures from 0.3.9 to 0.3.11.
Release notes
Sourced from futures's releases.
0.3.11
- Fixed heap buffer overflow in
AsyncReadExt::{read_to_end, read_to_string}(#2314)0.3.10
- Fixed type-inference in
sink::unfoldby specifying more of its types (breaking change -- see #2311)
Changelog
Sourced from futures's changelog.
0.3.11 - 2021-01-14
- Fixed heap buffer overflow in
AsyncReadExt::{read_to_end, read_to_string}(#2314)0.3.10 - 2021-01-13
- Fixed type-inference in
sink::unfoldby specifying more of its types (breaking change -- see #2311)
Commits
-
7f509b5Release 0.3.11 -
b38805eFix handling of malicious readers in read_to_end (#2314) -
6f948acFix changelog release date -
60b02d2Release 0.3.10 -
b008f34Fix type-inference in sink::unfold() by specifying more of its types (#2311) -
1db2b4eperf: Avoid an Option in theMap*futures (#2306) - See full diff in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
-
@dependabot rebasewill rebase this PR -
@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it -
@dependabot mergewill merge this PR after your CI passes on it -
@dependabot squash and mergewill squash and merge this PR after your CI passes on it -
@dependabot cancel mergewill cancel a previously requested merge and block automerging -
@dependabot reopenwill reopen this PR if it is closed -
@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually -
@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)