Latest Results
chore(deps): bump arrow 58→59, pyo3-arrow 0.17→0.18, lockfile update (#153)
* chore(deps): bump arrow 58→59, pyo3-arrow 0.17→0.18, lockfile update
- arrow/arrow-{array,buffer,data,schema}: 58.3 → 59.0
- pyo3-arrow: 0.17 → 0.18
- lockfile: ~100 packages updated (aws-lc-rs, bitflags, chrono,
hashbrown, hyper, libc, uuid, windows-sys, zerocopy, zeroize, and more)
- python: remove <25 upper cap on pyarrow in pandas extra
Also fix three pre-existing rustdoc broken-intra-doc-link errors:
- builders/mod.rs: qualify HanaCompatibleBuilder link with crate path
- traits/sealed.rs: de-link private::Sealed reference
- security/query_guard.rs: fix Self::execute_with_error → QueryGuard::execute_with_error
* chore(deps): update python/uv.lock
* chore(deps): suppress RUSTSEC-2026-0176 and -0177 in deny.toml
Both advisories affect pyo3 0.28 and are not reachable in this project:
- RUSTSEC-2026-0176: OOB read in PyList/PyTuple nth/nth_back iterators;
project never calls .nth()/.nth_back() on Python sequence iterators
- RUSTSEC-2026-0177: missing Sync bound on PyCFunction::new_closure;
project does not use new_closure
Fixed in pyo3 0.29; upgrade blocked by pyo3-arrow 0.18 requiring pyo3 ^0.28.
Add pin comment in Cargo.toml explaining the constraint.
* chore(deps): update CHANGELOG for dependency bump Latest Branches
-22%
0%
feature/codspeed-memory-walltime 0%
feature/ci-moonrepo-setup © 2026 CodSpeed Technology