Skip to content

chore(deps): bump rand from 0.8.6 to 0.9.4#19

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/rand-0.9.4
Open

chore(deps): bump rand from 0.8.6 to 0.9.4#19
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/rand-0.9.4

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Apr 21, 2026
edited
Loading

Copy link
Copy Markdown

Bumps rand from 0.8.6 to 0.9.4.

Changelog

Sourced from rand's changelog.

[0.9.4] — 2026-04-13

Fixes

#1766: rust-random/rand#1766

[0.9.3] — 2026-04-11

This release back-ports a fix from v0.10. See also #1763.

Changes

  • Deprecate feature log (#1764)
  • Replace usages of doc_auto_cfg (#1764)

#1763: rust-random/rand#1763

[0.9.2] — 2025-07-20

Deprecated

  • Deprecate rand::rngs::mock module and StepRng generator (#1634)

Additions

  • Enable WeightedIndex<usize> (de)serialization (#1646)

[0.9.1] - 2025-04-17

Security and unsafe

  • Revise "not a crypto library" policy again (#1565)
  • Remove zerocopy dependency from rand (#1579)

Fixes

  • Fix feature simd_support for recent nightly rust (#1586)

Changes

  • Allow fn rand::seq::index::sample_weighted and fn IndexedRandom::choose_multiple_weighted to return fewer than amount results (#1623), reverting an undocumented change (#1382) to the previous release.

Additions

  • Add rand::distr::Alphabetic distribution. (#1587)
  • Re-export rand_core (#1604)

[0.9.0] - 2025-01-27

Security and unsafe

  • Policy: "rand is not a crypto library" (#1514)
  • Remove fork-protection from ReseedingRng and ThreadRng. Instead, it is recommended to call ThreadRng::reseed on fork. (#1379)
  • Use zerocopy to replace some unsafe code (#1349, #1393, #1446, #1502)

Dependencies

  • Bump the MSRV to 1.63.0 (#1207, #1246, #1269, #1341, #1416, #1536); note that 1.60.0 may work for dependents when using --ignore-rust-version
  • Update to rand_core v0.9.0 (#1558)

Features

  • Support std feature without getrandom or rand_chacha (#1354)
  • Enable feature small_rng by default (#1455)

... (truncated)

Commits

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot @github

dependabot Bot commented on behalf of github Apr 21, 2026

Copy link
Copy Markdown
Author

Labels

The following labels could not be found: dependencies, rust. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@dependabot dependabot Bot requested a review from aaronstevenwhite as a code owner April 21, 2026 22:54
@dependabot dependabot Bot force-pushed the dependabot/cargo/rand-0.9.4 branch from e1c30d6 to d25054e Compare April 21, 2026 23:06
@dependabot dependabot Bot changed the title Build(deps): bump rand from 0.8.6 to 0.9.4 chore(deps): bump rand from 0.8.6 to 0.9.4 Apr 24, 2026
@dependabot dependabot Bot force-pushed the dependabot/cargo/rand-0.9.4 branch 10 times, most recently from 30f6a3f to 76025ce Compare April 29, 2026 13:33
@dependabot dependabot Bot force-pushed the dependabot/cargo/rand-0.9.4 branch from 76025ce to e97bb3a Compare May 4, 2026 19:41
@dependabot dependabot Bot force-pushed the dependabot/cargo/rand-0.9.4 branch 2 times, most recently from 80208b4 to 3e6e10c Compare May 12, 2026 14:55
@dependabot
chore(deps): bump rand from 0.8.6 to 0.9.4
f533b2b 
Bumps [rand](https://github.com/rust-random/rand) from 0.8.6 to 0.9.4.
- [Release notes](https://github.com/rust-random/rand/releases)
- [Changelog](https://github.com/rust-random/rand/blob/0.9.4/CHANGELOG.md)
- [Commits](rust-random/rand@0.8.6...0.9.4)

---
updated-dependencies:
- dependency-name: rand
  dependency-version: 0.9.4
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot Bot force-pushed the dependabot/cargo/rand-0.9.4 branch from 3e6e10c to f533b2b Compare May 12, 2026 16:42
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@aaronstevenwhite aaronstevenwhite Awaiting requested review from aaronstevenwhite aaronstevenwhite is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants