deps: Update Rust Dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
axum	dependencies	minor	0.7 → 0.8
clap	dependencies	patch	4.5.53 → 4.5.54
reqwest	dependencies	minor	0.12 → 0.13
serde_json	dependencies	patch	1.0.145 → 1.0.149
serenity	dependencies	patch	0.12.4 → 0.12.5
tokio (source)	dependencies	minor	1.48.0 → 1.49.0
tokio-stream (source)	dependencies	patch	0.1.17 → 0.1.18
tower-http	dependencies	minor	0.5 → 0.6
tracing (source)	dependencies	patch	0.1.43 → 0.1.44
url	dependencies	patch	2.5.7 → 2.5.8

---

Release Notes

tokio-rs/axum (axum)

v0.8.8: axum v0.8.8

Compare Source

• Clarify documentation for Router::route_layer (#​3567)

v0.8.7: axum v0.8.7

Compare Source

• Relax implicit Send / Sync bounds on RouterAsService, RouterIntoService (#​3555)
• Make it easier to visually scan for default features (#​3550)
• Fix some documentation typos

v0.8.6

Compare Source

v0.8.5: axum v0.8.5

Compare Source

• fixed: Reject JSON request bodies with trailing characters after the JSON document (#​3453)
• added: Implement OptionalFromRequest for Multipart (#​3220)
• added: Getter methods Location::{status_code, location}
• added: Support for writing arbitrary binary data into server-sent events (#​3425)]
• added: middleware::ResponseAxumBodyLayer for mapping response body to axum::body::Body (#​3469)
• added: impl FusedStream for WebSocket (#​3443)
• changed: The sse module and Sse type no longer depend on the tokio feature (#​3154)
• changed: If the location given to one of Redirects constructors is not a valid header value, instead of panicking on construction, the IntoResponse impl now returns an HTTP 500, just like Json does when serialization fails (#​3377)
• changed: Update minimum rust version to 1.78 (#​3412)

v0.8.4: axum v0.8.4

Compare Source

• added: Router::reset_fallback (#​3320)
• added: WebSocketUpgrade::selected_protocol (#​3248)
• fixed: Panic location for overlapping method routes (#​3319)
• fixed: Don't leak a tokio task when using serve without graceful shutdown (#​3129)

v0.8.3: axum v0.8.3

Compare Source

• added: Implement From<Bytes> for Message (#​3273)
• added: Implement OptionalFromRequest for Json (#​3142)
• added: Implement OptionalFromRequest for Extension (#​3157)
• added: Allow setting the read buffer capacity of WebSocketUpgrade (#​3178)
• changed: Improved code size / compile time of dependent crates (#​3285, #​3294)

v0.8.2: axum v0.8.2

Yanked from crates.io due to unforeseen breaking change, see #​3190 for details

---

• added: Implement OptionalFromRequest for Json (#​3142)
• added: Implement OptionalFromRequest for Extension (#​3157)
• changed: Make the status function of rejections a const function, such
  as JsonRejection, QueryRejection and PathRejection (#​3168)

v0.8.0: axum v0.8.0

Compare Source

since rc.1

Details

• breaking: axum::extract::ws::Message now uses Bytes in place of Vec<u8>,
  and a new Utf8Bytes type in place of String, for its variants (#​3078)
• breaking: Remove OptionalFromRequestParts impl for Query (#​3088)
• changed: Upgraded tokio-tungstenite to 0.26 (#​3078)
• changed: Query/Form: Use serde_path_to_error to report fields that failed to parse (#​3081)

full changelog

You can also read the blog post on tokio

Note: there are further relevant changes in axum-core's changelog

• breaking: Upgrade matchit to 0.8, changing the path parameter syntax from /:single and /*many to /{single} and /{*many}; the old syntax produces a panic to avoid silent change in behavior (#​2645)
• breaking: Require Sync for all handlers and services added to Router and MethodRouter (#​2473)
• breaking: The tuple and tuple_struct Path extractor deserializers now check that the number of parameters matches the tuple length exactly (#​2931)
• breaking: Move Host extractor to axum-extra (#​2956)
• breaking: Remove WebSocket::close. Users should explicitly send close messages themselves. (#​2974)
• breaking: Make serve generic over the listener and IO types (#​2941)
• breaking: Remove Serve::tcp_nodelay and WithGracefulShutdown::tcp_nodelay.
  See serve::ListenerExt for an API that let you set arbitrary TCP stream properties. (#​2941)
• breaking: Option<Path<T>> no longer swallows all error conditions,
  instead rejecting the request in many cases; see its documentation for details (#​2475)
• breaking: axum::extract::ws::Message now uses Bytes in place of Vec<u8>,
  and a new Utf8Bytes type in place of String, for its variants (#​3078)
• fixed: Skip SSE incompatible chars of serde_json::RawValue in Event::json_data (#​2992)
• fixed: Don't panic when array type is used for path segment (#​3039)
• fixed: Avoid setting content-length before middleware.
  This allows middleware to add bodies to requests without needing to manually set content-length (#​2897)
• change: Update minimum rust version to 1.75 (#​2943)
• changed: Upgraded tokio-tungstenite to 0.26 (#​3078)
• changed: Query/Form: Use serde_path_to_error to report fields that failed to parse (#​3081)
• added: Add method_not_allowed_fallback to set a fallback when a path matches but there is no handler for the given HTTP method (#​2903)
• added: Add NoContent as a self-described shortcut for StatusCode::NO_CONTENT (#​2978)
• added: Add support for WebSockets over HTTP/2. They can be enabled by changing get(ws_endpoint) handlers to any(ws_endpoint) (#​2894)
• added: Add MethodFilter::CONNECT, routing::connect[_service] and MethodRouter::connect[_service] (#​2961)
• added: Extend FailedToDeserializePathParams::kind enum with (ErrorKind::DeserializeError). This new variant captures both key, value, and message from named path parameters parse errors, instead of only deserialization error message in ErrorKind::Message. (#​2720)

clap-rs/clap (clap)

v4.5.54

Compare Source

seanmonstar/reqwest (reqwest)

v0.13.1

Compare Source

• Fixes compiling with rustls on Android targets.

v0.13.0

Compare Source

• Breaking changes:
  • rustls is now the default TLS backend, instead of native-tls.
  • rustls crypto provider defaults to aws-lc instead of ring. (rustls-no-provider exists if you want a different crypto provider)
  • rustls-tls has been renamed to rustls.
  • rustls roots features removed, rustls-platform-verifier is used by default.
    • To use different roots, call tls_certs_only(your_roots).
  • native-tls now includes ALPN. To disable, use native-tls-no-alpn.
  • query and form are now crate features, disabled by default.
  • Long-deprecated methods and crate features have been removed (such as trust-dns, which was renamed hickory-dns a while ago).
• Many TLS-related methods renamed to improve autocompletion and discovery, but previous name left in place with a "soft" deprecation. (just documented, no warnings)
  • For example, prefer tls_backend_rustls() over use_rustls_tls().

v0.12.28

• Fix compiling on Windows if TLS and SOCKS features are not enabled.

v0.12.27

• Add ClientBuilder::windows_named_pipe(name) option that will force all requests over that Windows Named Piper.

v0.12.26

• Fix sending Accept-Encoding header only with values configured with reqwest, regardless of underlying tower-http config.

v0.12.25

• Add Error::is_upgrade() to determine if the error was from an HTTP upgrade.
• Fix sending Proxy-Authorization if only username is configured.
• Fix sending Proxy-Authorization to HTTPS proxies when the target is HTTP.
• Refactor internal decompression handling to use tower-http.

v0.12.24

• Refactor cookie handling to an internal middleware.
• Refactor internal random generator.
• Refactor base64 encoding to reduce a copy.
• Documentation updates.

v0.12.23

• Add ClientBuilder::unix_socket(path) option that will force all requests over that Unix Domain Socket.
• Add ClientBuilder::retry(policy) and reqwest::retry::Builder to configure automatic retries.
• Add ClientBuilder::dns_resolver2() with more ergonomic argument bounds, allowing more resolver implementations.
• Add http3_* options to blocking::ClientBuilder.
• Fix default TCP timeout values to enabled and faster.
• Fix SOCKS proxies to default to port 1080
• (wasm) Add cache methods to RequestBuilder.

v0.12.22

• Fix socks proxies when resolving IPv6 destinations.

v0.12.21

• Fix socks proxy to use socks4a:// instead of socks4h://.
• Fix Error::is_timeout() to check for hyper and IO timeouts too.
• Fix request Error to again include URLs when possible.
• Fix socks connect error to include more context.
• (wasm) implement Default for Body.

v0.12.20

• Add ClientBuilder::tcp_user_timeout(Duration) option to set TCP_USER_TIMEOUT.
• Fix proxy headers only using the first matched proxy.
• (wasm) Fix re-adding Error::is_status().

v0.12.19

• Fix redirect that changes the method to GET should remove payload headers.
• Fix redirect to only check the next scheme if the policy action is to follow.
• (wasm) Fix compilation error if cookies feature is enabled (by the way, it's a noop feature in wasm).

v0.12.18

• Fix compilation when socks enabled without TLS.

v0.12.17

• Fix compilation on macOS.

v0.12.16

• Add ClientBuilder::http3_congestion_bbr() to enable BBR congestion control.
• Add ClientBuilder::http3_send_grease() to configure whether to send use QUIC grease.
• Add ClientBuilder::http3_max_field_section_size() to configure the maximum response headers.
• Add ClientBuilder::tcp_keepalive_interval() to configure TCP probe interval.
• Add ClientBuilder::tcp_keepalive_retries() to configure TCP probe count.
• Add Proxy::headers() to add extra headers that should be sent to a proxy.
• Fix redirect::Policy::limit() which had an off-by-1 error, allowing 1 more redirect than specified.
• Fix HTTP/3 to support streaming request bodies.
• (wasm) Fix null bodies when calling Response::bytes_stream().

v0.12.15

• Fix Windows to support both ProxyOverride and NO_PROXY.
• Fix http3 to support streaming response bodies.
• Fix http3 dependency from public API misuse.

v0.12.14

• Fix missing fetch_mode_no_cors(), marking as deprecated when not on WASM.

v0.12.13

• Add Form::into_reader() for blocking multipart forms.
• Add Form::into_stream() for async multipart forms.
• Add support for SOCKS4a proxies.
• Fix decoding responses with multiple zstd frames.
• Fix RequestBuilder::form() from overwriting a previously set Content-Type header, like the other builder methods.
• Fix cloning of request timeout in blocking::Request.
• Fix http3 synchronization of connection creation, reducing unneccesary extra connections.
• Fix Windows system proxy to use ProxyOverride as a NO_PROXY value.
• Fix blocking read to correctly reserve and zero read buffer.
• (wasm) Add support for request timeouts.
• (wasm) Fix Error::is_timeout() to return true when from a request timeout.

v0.12.12

• (wasm) Fix compilation by not compiler tokio/time on WASM.

v0.12.11

• Fix decompression returning an error when HTTP/2 ends with an empty data frame.

v0.12.10

• Add ClientBuilder::connector_layer() to allow customizing the connector stack.
• Add ClientBuilder::http2_max_header_list_size() option.
• Fix propagating body size hint (content-length) information when wrapping bodies.
• Fix decompression of chunked bodies so the connections can be reused more often.

v0.12.9

• Add tls::CertificateRevocationLists support.
• Add crate features to enable webpki roots without selecting a rustls provider.
• Fix connection_verbose() to output read logs.
• Fix multipart::Part::file() to automatically include content-length.
• Fix proxy to internally no longer cache system proxy settings.

v0.12.8

• Add support for SOCKS4 proxies.
• Add multipart::Form::file() method for adding files easily.
• Add Body::wrap() to wrap any http_body::Body type.
• Fix the pool configuration to use a timer to remove expired connections.

v0.12.7

• Revert adding impl Service<http::Request<_>> for Client.

v0.12.6

• Add support for danger_accept_invalid_hostnames for rustls.
• Add impl Service<http::Request<Body>> for Client and &'_ Client.
• Add support for !Sync bodies in Body::wrap_stream().
• Enable happy eyeballs when hickory-dns is used.
• Fix Proxy so that HTTP(S)_PROXY values take precedence over ALL_PROXY.
• Fix blocking::RequestBuilder::header() from unsetting sensitive on passed header values.

v0.12.5

• Add blocking::ClientBuilder::dns_resolver() method to change DNS resolver in blocking client.
• Add http3 feature back, still requiring reqwest_unstable.
• Add rustls-tls-no-provider Cargo feature to use rustls without a crypto provider.
• Fix Accept-Encoding header combinations.
• Fix http3 resolving IPv6 addresses.
• Internal: upgrade to rustls 0.23.

v0.12.4

• Add zstd support, enabled with zstd Cargo feature.
• Add ClientBuilder::read_timeout(Duration), which applies the duration for each read operation. The timeout resets after a successful read.

v0.12.3

• Add FromStr for dns::Name.
• Add ClientBuilder::built_in_webpki_certs(bool) to enable them separately.
• Add ClientBuilder::built_in_native_certs(bool) to enable them separately.
• Fix sending content-length: 0 for GET requests.
• Fix response body content_length() to return value when timeout is configured.
• Fix ClientBuilder::resolve() to use lowercase domain names.

v0.12.2

• Fix missing ALPN when connecting to socks5 proxy with rustls.
• Fix TLS version limits with rustls.
• Fix not detected ALPN h2 from server with native-tls.

v0.12.1

• Fix ClientBuilder::interface() when no TLS is enabled.
• Fix TlsInfo::peer_certificate() being truncated with rustls.
• Fix panic if http2 feature disabled but TLS negotiated h2 in ALPN.
• Fix Display for Error to not include its source error.

v0.12.28

Compare Source

• Fix compiling on Windows if TLS and SOCKS features are not enabled.

v0.12.27

Compare Source

• Add ClientBuilder::windows_named_pipe(name) option that will force all requests over that Windows Named Piper.

serde-rs/json (serde_json)

v1.0.149

Compare Source

• Align arbitrary_precision number strings with zmij's formatting (#​1306, thanks @​b41sh)

v1.0.148

Compare Source

• Update zmij dependency to 1.0

v1.0.147

Compare Source

• Switch float-to-string algorithm from Ryū to Żmij for better f32 and f64 serialization performance (#​1304)

v1.0.146

Compare Source

• Set fast_arithmetic=64 for riscv64 (#​1305, thanks @​Xeonacid)

serenity-rs/serenity (serenity)

v0.12.5

Compare Source

This compiles all of the changes that had accumulated since the prior release,
and, unless another minor release is warranted, constitutes as the last release
for the 0.12.x series.

We also extend our heartfelt thanks to [@​jamesbt365], who passed away a few
months ago. We deeply appreciate his code contributions, which started back in
2023, as well as his social contributions for helping people with using
Serenity, Songbird, and Poise, on Github and/or Discord. We were saddened to
hear that he's no longer with us, but we hope he rests well.

Thanks to the following for their contributions:

• [@​AshleyBilbrey]
• [@​DPlayer234]
• [@​DerPlayer2001]
• [@​GnomedDev]
• [@​KiloOscarSix]
• [@​Legorooj]
• [@​LikeLakers2]
• [@​Nonanti]
• [@​TapGhoul]
• [@​archanyhm]
• [@​arqunis]
• [@​cheesycod]
• [@​dis-archive]
• [@​ivinjabraham]
• [@​jamesbt365]
• [@​mkrasnitski]
• [@​nomanoma121]
• [@​nwerosama]
• [@​smolestcookie]
• [@​valentinegb]

Deprecations

• #​3083 Deprecate Member::distinct
• #​3090 Deprecate ContentSafeOptions::show_discriminator
• #​3348 Deprecate creating a guild

Additions

• #​2956 Add support for PURCHASE_NOTIFICATION message type
• #​3020 Add Consume Entitlement endpoint and missing fields for SKUs and Entitlements
• #​3070 Add helper for extracting the guild ID out of an interaction
• #​3092 Add Message::message_snapshots
• #​3094 Implement PartialEq and Eq for ActivityData
• #​3307 Support ?with_components in webhooks
• #​3319 Add avatar field to PartialMember
• #​3321 Make ImageHash usable as key in std containers
• #​3362 Add support for fetching a single guild ban
• #​3368 Add banner to Member and PartialMember
• #​3374, #​3435 Add soundboard support
• #​3380 Add flags to EditWebhookMessage and EditInteractionResponse
• #​3394 Add get_user_voice_state endpoint
• #​3395 #​3397 Add new AutoMod type for quarantined users, add AutoMod type for quarantined guild tag
• #​3400 Add resolved data to ComponentInteractionData
• #​3437 Add the applied_tags field to ExecuteWebhook
• #​3452 Add guild role member counts endpoint
• #​3456 Add attachment_size_limit field

Removals

• #​3063 Remove broken Message::super_react

Fixes

• #​3059 Fix incorrect parameters for retrieving invites
• #​3105 Fix Heartbeat gateway event handling
• #​3377 Fix Ord impl for Role

Documentation improvements

• #​3128 Update maximum limit of guilds returned by get_guilds to the new limit (200)
• #​3408 Remove duplicate items from Guild::features documentation
• #​3413 Fix documentation for Guild::preferred_locale, it is only available to guilds with the COMMUNITY feature

Miscellaneous

• #​3421 Switch fxhash dependency with rustc-hash
• #​3433 Update CreatePoll to use u16 for duration

tokio-rs/tokio (tokio)

v1.49.0: Tokio v1.49.0

Compare Source

1.49.0 (January 3rd, 2026)

Added

• net: add support for TCLASS option on IPv6 (#​7781)
• runtime: stabilize runtime::id::Id (#​7125)
• task: implement Extend for JoinSet (#​7195)
• task: stabilize the LocalSet::id() (#​7776)

Changed

• net: deprecate {TcpStream,TcpSocket}::set_linger (#​7752)

Fixed

• macros: fix the hygiene issue of join! and try_join! (#​7766)
• runtime: revert "replace manual vtable definitions with Wake" (#​7699)
• sync: return TryRecvError::Disconnected from Receiver::try_recv after Receiver::close (#​7686)
• task: remove unnecessary trait bounds on the Debug implementation (#​7720)

Unstable

• fs: handle EINTR in fs::write for io-uring (#​7786)
• fs: support io-uring with tokio::fs::read (#​7696)
• runtime: disable io-uring on EPERM (#​7724)
• time: add alternative timer for better multicore scalability (#​7467)

Documented

• docs: fix a typos in bounded.rs and park.rs (#​7817)
• io: add SyncIoBridge cross-references to copy and copy_buf (#​7798)
• io: doc that AsyncWrite does not inherit from std::io::Write (#​7705)
• metrics: clarify that num_alive_tasks is not strongly consistent (#​7614)
• net: clarify the cancellation safety of the TcpStream::peek (#​7305)
• net: clarify the drop behavior of unix::OwnedWriteHalf (#​7742)
• net: clarify the platform-dependent backlog in TcpSocket docs (#​7738)
• runtime: mention LocalRuntime in new_current_thread docs (#​7820)
• sync: add missing period to mpsc::Sender::try_send docs (#​7721)
• sync: clarify the cancellation safety of oneshot::Receiver (#​7780)
• sync: improve the docs for the errors of mpsc (#​7722)
• task: add example for spawn_local usage on local runtime (#​7689)

tower-rs/tower-http (tower-http)

v0.6.8

Compare Source

Fixed

• Disable multiple_members in Gzip decoder, since HTTP context only uses one
  member. (#​621)

What's Changed

• Disable multiple_members option for gzip decoder by @​ducaale in #​621
• ci: Pin tracing in MSRV job by @​ducaale in #​622
• ci: Switch cargo-public-api-crates to cargo-check-external-types by @​tottoto in #​613
• Remove deprecated annotations and Refactor From implementations by @​sinder38 in #​608
• v0.6.8 by @​seanmonstar in #​624

New Contributors

• @​sinder38 made their first contribution in #​608

Full Changelog: tower-rs/tower-http@tower-http-0.6.7...tower-http-0.6.8

v0.6.7

Compare Source

Added

• TimeoutLayer::with_status_code(status) to define the status code returned
  when timeout is reached. (#​599)

Deprecated

• auth::require_authorization is too basic for real-world. (#​591)
• TimeoutLayer::new() should be replaced with
  TimeoutLayer::with_status_code(). (Previously was
  StatusCode::REQUEST_TIMEOUT) (#​599)

Fixed

• on_eos is now called even for successful responses. (#​580)
• ServeDir: call fallback when filename is invalid (#​586)
• decompression will not fail when body is empty (#​618)

New Contributors

• @​mladedav made their first contribution in #​580
• @​aryaveersr made their first contribution in #​586
• @​soerenmeier made their first contribution in #​588
• @​gjabell made their first contribution in #​591
• @​FalkWoldmann made their first contribution in #​599
• @​ducaale made their first contribution in #​618

Full Changelog: tower-rs/tower-http@tower-http-0.6.6...tower-http-0.6.7

v0.6.6

Compare Source

Fixed

• compression: fix panic when looking in vary header (#​578)

New Contributors

• @​sulami made their first contribution in #​578

Full Changelog: tower-rs/tower-http@tower-http-0.6.5...tower-http-0.6.6

v0.6.5

Compare Source

Added

• normalize_path: add append_trailing_slash() mode (#​547)

Fixed

• redirect: remove payload headers if redirect changes method to GET (#​575)
• compression: avoid setting vary: accept-encoding if already set (#​572)

New Contributors

• @​daalfox made their first contribution in #​547
• @​mherrerarendon made their first contribution in #​574
• @​linyihai made their first contribution in #​575

Full Changelog: tower-rs/tower-http@tower-http-0.6.4...tower-http-0.6.5

v0.6.4: tower-http 0.6.4

Compare Source

Added

• decompression: Support HTTP responses containing multiple ZSTD frames (#​548)
• The ServiceExt trait for chaining layers onto an arbitrary http service just
  like ServiceBuilderExt allows for ServiceBuilder (#​563)

Fixed

• Remove unnecessary trait bounds on S::Error for Service impls of
  RequestBodyTimeout<S> and ResponseBodyTimeout<S> (#​533)
• compression: Respect is_end_stream (#​535)
• Fix a rare panic in fs::ServeDir (#​553)
• Fix invalid content-lenght of 1 in response to range requests to empty
  files (#​556)
• In AsyncRequireAuthorization, use the original inner service after it is
  ready, instead of using a clone (#​561)

v0.6.3: tower-http 0.6.3

Compare Source

This release was yanked because its definition of ServiceExt was quite unhelpful, in a way that's very unlikely that anybody would start depending on within the small timeframe before this was yanked, but that was technically breaking to change.

v0.6.2

Compare Source

Changed:

• CompressionBody<B> now propagates B's size hint in its http_body::Body
  implementation, if compression is disabled (#​531)
  • this allows a content-length to be included in an HTTP message with this
    body for those cases

New Contributors

• @​musicinmybrain made their first contribution in #​524
• @​SabrinaJewson made their first contribution in #​531

Full Changelog: tower-rs/tower-http@tower-http-0.6.1...tower-http-0.6.2

v0.6.1: v0.6.1

Compare Source

Fixed

• decompression: reuse scratch buffer to significantly reduce allocations and improve performance (#​521)

New Contributors

• @​magurotuna made their first contribution in #​521

v0.6.0: v0.6.0

Compare Source

Changed:

• body module is disabled except for catch-panic, decompression-*, fs, or limit features (BREAKING) (#​477)
• Update to tower 0.5 (#​503)

Fixed

• fs: Precompression of static files now supports files without a file extension (#​507)

tokio-rs/tracing (tracing)

v0.1.44: tracing 0.1.44

Compare Source

Fixed

• Fix record_all panic (#​3432)

Changed

• tracing-core: updated to 0.1.36 (#​3440)

servo/rust-url (url)

v2.5.8

Compare Source

---

Configuration

📅 Schedule: Branch creation - "before 7pm" in timezone Asia/Tokyo, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

⚠ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: Cargo.lock

Command failed: cargo update --config net.git-fetch-with-cli=true --manifest-path Cargo.toml --workspace
    Updating crates.io index
error: failed to select a version for `image`.
    ... required by package `rusty-ponyo v2024.1.9 (/tmp/renovate/repos/github/approvers/rusty-ponyo)`
versions that meet the requirements `^0.25` are: 0.25.1, 0.25.0

the package `rusty-ponyo` depends on `image`, with features: `webp-encoder` but `image` does not have these features.


failed to select a version for `image` which could resolve this conflict

[renovate]

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: Cargo.lock

Command failed: cargo update --config net.git-fetch-with-cli=true --manifest-path Cargo.toml --package axum@0.7.9 --precise 0.8.8
    Updating git repository `https://github.com/servo/pathfinder.git`
From https://github.com/servo/pathfinder
 * [new ref]           3d0b936f4032435b9935e30850f830e89f751022 -> refs/commit/3d0b936f4032435b9935e30850f830e89f751022
    Updating crates.io index
error: failed to select a version for `reqwest`.
    ... required by package `rusty-ponyo v2025.12.20 (/tmp/renovate/repos/github/approvers/rusty-ponyo)`
versions that meet the requirements `^0.13` are: 0.13.1, 0.13.0

package `rusty-ponyo` depends on `reqwest` with feature `rustls-tls` but `reqwest` does not have that feature.


failed to select a version for `reqwest` which could resolve this conflict