Skip to content

Commit

Permalink
relax regex and zeroize dependencies
Browse files Browse the repository at this point in the history 
These dependencies were bumped without comment or other code change in
ff4beaf.  This reverts that part of
that commit.  "cargo build" and "cargo test" still both pass.

Neither upstream change was necessary to make the package build or
test correctly, from what i can see, and there was no
backward-incompatible API change (the versions are semver-compatible).

There is nothing wrong with raising a dependency when it's needed, but
raising a dependency above the necessary base version makes it harder
to build against older installations.
  • Loading branch information
@dkg
dkg committed Feb 22, 2024
1 parent ff4beaf commit a232e7e
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions Cargo.toml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,14 +23,14 @@ ml-kem-1024 = []


[dependencies]
zeroize = { version = "1.7.0", default-features = false, features = ["zeroize_derive"] }
zeroize = { version = "1.6.0", default-features = false, features = ["zeroize_derive"] }
rand_core = { version = "0.6.4", default-features = false }
sha3 = { version = "0.10.2", default-features = false }


[dev-dependencies]
rand = "0.8.5"
regex = "1.10.3"
regex = "1.10.2"
hex = "0.4.3"
rand_chacha = "0.3.1"
criterion = "0.4.0" # Needed to keep MSRV back at 1.72, newer: "0.5.1"
Expand Down

0 comments on commit a232e7e

Please sign in to comment.