Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump image from 0.23.14 to 0.24.5 #359

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 14, 2022

Bumps image from 0.23.14 to 0.24.5.

Changelog

Sourced from image's changelog.

Version 0.24.5

Structural changes:

  • Increased the minimum supported Rust version (MSRV) to 1.61.
  • Increased the version requirement for the tiff crate to 0.8.0.
  • Increased the version requirement for the jpeg crate to 0.3.0.

Bug fixes:

  • The as_rgb32f function of DynamicImage is now correctly documented.
  • Fixed a crash when decoding ICO images. Added a regression test.
  • Fixed a panic when transforming webp images. Added a regression test.
  • Added a check to prevent integer overflow when calculating file size for BMP images. The missing check could panic in debug mode or else set an incorrect file size in release mode.
  • Upgraded the PNG image encoder to use the newer PngEncoder::write_image instead of the deprecated PngEncoder::encode which did not account for byte order and could result in images with incorrect colors.
  • Fixed InsufficientMemory error when trying to decode a PNG image.
  • Fix warnings and CI issues.
  • Typos and links in the documentation have been corrected.

Performance:

  • Added check for dynamic image dimensions before resizing. This improves performance in cases where the image does not need to be resized or has already been resized.

Version 0.24.4

New Features:

  • Encoding for webp is now available with the native library. This needs to be activate explicitly with the web-encoder feature.
  • exr decoding has gained basic limit support.

Bug fixes:

  • The Iterator::size_hint implementation of pixel iterators has been fixed to return the current length indicated by its ExactSizeIterator hint.
  • Typos and bad references in the documentation have been removed.

Performance:

  • ImageBuffer::get_pixel{,_mut} is now marked inline.
  • resize now short-circuits when image dimensions are unchanged.

Version 0.24.3

New Features:

  • TiffDecoder now supports setting resource limits.

Bug fixes:

  • Fix compile issues on little endian systems.
  • Various panics discovered by fuzzing.

... (truncated)

Commits
  • aa1e81e Changes and release notes for 0.24.5
  • 88aadcb Merge pull request #1821 from micahsnyder/bump-jpeg-dependency
  • dffefce Bump the 'jpeg' version requirement to 0.3.0
  • bf0a96b Merge pull request #1812 from fintelia/png-with-limits
  • a7026e9 Merge pull request #1817 from Flashover89/Check-dimensions-for-dyn-image-befo...
  • 392798c Fix white spacing
  • 2be3d17 Merge branch 'image-rs:master' into Check-dimensions-for-dyn-image-before-res...
  • 4681225 Fix review findings
  • 1361f4a Add PngDecoder::with_limits
  • 1878c88 Merge pull request #1815 from fintelia/fix-ci
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Nov 14, 2022
@dependabot dependabot bot force-pushed the dependabot/cargo/image-0.24.5 branch from df87e24 to 130ac42 Compare March 12, 2023 04:34
Bumps [image](https://github.com/image-rs/image) from 0.23.14 to 0.24.5.
- [Release notes](https://github.com/image-rs/image/releases)
- [Changelog](https://github.com/image-rs/image/blob/master/CHANGES.md)
- [Commits](image-rs/image@v0.23.14...v0.24.5)

---
updated-dependencies:
- dependency-name: image
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/cargo/image-0.24.5 branch from 130ac42 to a975a82 Compare March 12, 2023 04:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants