Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[RUSTSEC-2024-0363] Support sqlx 0.8 #407

Open
rshigapov-bhft opened this issue Sep 13, 2024 · 2 comments · May be fixed by #408
Open

[RUSTSEC-2024-0363] Support sqlx 0.8 #407

rshigapov-bhft opened this issue Sep 13, 2024 · 2 comments · May be fixed by #408

Comments

@rshigapov-bhft
Copy link

sqlx 0.8 has fixed RUSTSEC-2024-0363.

I see two ways to support it:

  • drop sqlx 0.7 support and implement support for sqlx 0.8
  • add an extra feature like "sqlx-07" that allows users to keep working with sqlx 0.7 until they migrate to sqlx 0.8
@ParkMyCar
Copy link
Owner

ParkMyCar commented Sep 14, 2024
edited
Loading

Thanks for the heads up! I'll publish a v0.8.1 and v0.7.2 that has a sqlx_08 feature, which should be semver compatible and allow folks to opt into sqlx 0.8 if need be

Edit: I forgot v0.7 didn't include the sqlx feature, it'll just be an update to v0.8

@ParkMyCar
Copy link
Owner

Darn, the above approach doesn't work because of rust-lang/cargo#10801. We can't have sqlx 0.7 and 0.8 even if both are optional dependencies because Cargo tries to include both in the lockfile and bails because both link sqlite3 but at different versions.

I'll make this change on main and push a 0.9.0-beta.1

@ParkMyCar ParkMyCar linked a pull request Sep 14, 2024 that will close this issue
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

deps: upgrade to sqlx v0.8 ParkMyCar/compact_str
2 participants
@ParkMyCar @rshigapov-bhft