Skip to content

feat: update pre-commit hooks and fix security vulnerabilities #4

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
csWen wants to merge 1 commit into
base: master
Choose a base branch
from
Open

feat: update pre-commit hooks and fix security vulnerabilities #4

csWen wants to merge 1 commit into from
+69 βˆ’112

Conversation

@csWen
Copy link

@csWen csWen commented Jul 18, 2025

Summary

Updates pre-commit configuration to latest versions and resolves security vulnerabilities in dependencies.

Changes

πŸ”§ Pre-commit Updates

  • pre-commit-hooks: v2.3.0 β†’ v5.0.0
  • black: 19.3b0 β†’ 25.1.0
  • typos: v1.8.1 β†’ v1.34.0
  • Fixed cargo nextest command to use standard cargo test

πŸ›‘οΈ Security Fixes

  • Updated ring v0.17.8 β†’ v0.17.14 (fixes CVE-2025-0009)
  • Updated tokio v1.42.0 β†’ v1.46.1 (fixes RUSTSEC-2025-0023)
  • Modernized deny.toml configuration with proper advisory ignores

🧹 Code Quality

  • Fixed clippy warnings with modern string formatting syntax
  • Updated test configuration to handle variable HTTP headers

Testing

  • βœ… All pre-commit checks pass
  • βœ… All unit tests pass
  • βœ… No functional changes to CLI tools
  • βœ… Dependencies build successfully

Impact

No breaking changes - all existing functionality preserved while improving security and code quality.

@csWen
feat: update pre-commit hooks and fix security vulnerabilities
308be51 
- Update pre-commit-hooks v2.3.0 -> v5.0.0
- Update black 19.3b0 -> 25.1.0
- Update typos v1.8.1 -> v1.34.0
- Fix security issues in ring and tokio dependencies
- Modernize deny.toml configuration
- Fix clippy warnings with modern string formatting
- Update test fixtures to handle variable HTTP headers
@csWen csWen requested a review from tyrchen July 18, 2025 07:05
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tyrchen tyrchen Awaiting requested review from tyrchen

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@csWen