fix(deps): upgrade outdated Rust dependencies across services

stream-server (Cargo.toml): - sqlx 0.7 -> 0.8 - redis 0.25 -> 0.27 (fix query_async generic args in revocation_store.rs) - bcrypt 0.15 -> 0.17 - thiserror 1.0 -> 2.0 - dashmap 5.5 -> 6.1 veza-common (Cargo.toml): - sqlx 0.7 -> 0.8 (required to avoid libsqlite3-sys link conflict) - thiserror 1.0 -> 2.0 chat-server (Cargo.toml): - sqlx 0.7 -> 0.8 (alignment with veza-common) Addresses audit findings D2, A06: outdated Rust dependencies. Co-authored-by: Cursor <cursoragent@cursor.com>
2026-02-11 23:18:34 +01:00 · 2026-02-11 23:18:34 +01:00 · 05e26f9342
commit 05e26f9342
parent 40db0b4c43
4 changed files with 10 additions and 10 deletions
--- a/veza-chat-server/Cargo.toml
+++ b/veza-chat-server/Cargo.toml
@ -40,7 +40,7 @@ axum = { version = "0.8", features = ["macros", "ws"] }  # Framework web moderne
 # ═══════════════════════════════════════════════════════════════════════
 # BASE DE DONNÉES ET CACHE
 # ═══════════════════════════════════════════════════════════════════════
-sqlx = { version = "0.7", features = [
+sqlx = { version = "0.8", features = [
    "postgres",           # Support PostgreSQL
    "runtime-tokio-rustls",  # Runtime async avec TLS rustls
    "chrono",            # Support des types de date
--- a/veza-common/Cargo.toml
+++ b/veza-common/Cargo.toml
@ -19,7 +19,7 @@ uuid = { version = "1.0", features = ["v4", "serde"] }
 chrono = { version = "0.4", features = ["serde"] }

 # Error handling
-thiserror = "1.0"
+thiserror = "2.0"
 anyhow = "1.0"

 # Regex support
@ -33,7 +33,7 @@ tokio = { version = "1.0", features = ["full"] }
 async-trait = "0.1"

 # Database
-sqlx = { version = "0.7", features = ["runtime-tokio-rustls", "postgres", "uuid", "chrono", "json"] }
+sqlx = { version = "0.8", features = ["runtime-tokio-rustls", "postgres", "uuid", "chrono", "json"] }

 # Logging
 tracing = "0.1"
--- a/veza-stream-server/Cargo.toml
+++ b/veza-stream-server/Cargo.toml
@ -28,7 +28,7 @@ tower-http = { version = "0.5", features = ["fs", "cors", "compression-gzip", "c
 hyper = { version = "1.0", features = ["full"] }

 # Production performance & concurrency
-dashmap = "5.5"
+dashmap = "6.1"
 parking_lot = "0.12"
 rayon = "1.10"
 crossbeam = "0.8"
@ -75,8 +75,8 @@ lz4_flex = "0.11"
 zstd = "0.13"

 # Database & Cache
-sqlx = { version = "0.7", features = ["runtime-tokio-rustls", "postgres", "chrono", "uuid"] }
-redis = { version = "0.25", features = ["tokio-comp", "connection-manager"] }
+sqlx = { version = "0.8", features = ["runtime-tokio-rustls", "postgres", "chrono", "uuid"] }
+redis = { version = "0.27", features = ["tokio-comp", "connection-manager"] }
 deadpool-redis = "0.15"

 # Metadata extraction
@ -94,7 +94,7 @@ reqwest = { version = "0.11", features = ["json", "stream"] }
 veza-common = { path = "../veza-common" }
 uuid = { version = "1.6", features = ["v4", "serde"] }
 chrono = { version = "0.4", features = ["serde"] }
-thiserror = "1.0"
+thiserror = "2.0"
 anyhow = "1.0"
 async-trait = "0.1"

@ -102,7 +102,7 @@ async-trait = "0.1"
 sha2 = "0.10"
 hmac = "0.12"
 jsonwebtoken = { version = "10", features = ["aws_lc_rs"] }
-bcrypt = "0.15"
+bcrypt = "0.17"
 ring = "0.17"

 # Configuration
--- a/veza-stream-server/src/auth/revocation_store.rs
+++ b/veza-stream-server/src/auth/revocation_store.rs
@ -102,7 +102,7 @@ impl SessionRevocationStore for RedisRevocationStore {
        let key = self.key(session_id);
        redis::cmd("EXISTS")
            .arg(&key)
-            .query_async::<_, bool>(&mut conn)
+            .query_async::<bool>(&mut conn)
            .await
            .unwrap_or(false)
    }
@ -118,7 +118,7 @@ impl SessionRevocationStore for RedisRevocationStore {
            .arg(&key)
            .arg(24 * 3600_i64)
            .arg("1")
-            .query_async::<_, ()>(&mut conn)
+            .query_async::<()>(&mut conn)
            .await;
        Ok(())
    }