rpms/rust
1
0
Fork 0
Code Issues 2 Pull requests Projects Releases Packages Wiki Activity Actions

Upstream update available: rust 1.88.0 → 1.95.0 #1

New issue
Open
opened 2026-04-28 02:13:43 +03:00 by sbelikov · 0 comments
sbelikov commented 2026-04-28 02:13:43 +03:00
Owner
Copy link

Upstream update available: rust 1.88.01.95.0

Package

  • Package: rust
  • RPM name: rust
  • Branch: niceos-5.2
  • Current EVR: 1.88.0-1
  • Update class: minor
  • Compare method: python_rpm
  • Update policy: leaf
  • Risk tags: github-upstream

Upstream

Signals

  • Security-relevant keywords detected: True
  • Policy blocked: False
  • Policy reason: -
  • Labels: ai-summary, bot, needs-build, needs-triage, priority/high, security-release, update/minor, upstream-update, upstream/github

NiceSOFT AI preliminary stability analysis

Analysis of Upstream Update for Rust Package in NAIOS.OS

1. Key Details

  • Version: 1.95.0 (minor update from 1.88.0)
  • Risk Tags: github-upstream (indicating potential security fixes)
  • Security Keywords: Detected by the script (security_keywords: true)
  • Platform Support:
    • Promoted Tier 2 support for:
      • powerpc64-unknown-linux-musl
      • aarch64-apple-tvos
      • aarch64-apple-tvos-sim
    • No explicit ABI changes mentioned.

2. Risk Assessment

  • Risk Level: Medium

    • Reason:
      • The update includes security patches (e.g., CVE-... fixes).
      • Minor version update (1.95.0) typically carries low risk unless specific vulnerabilities are exposed.
      • Platform support upgrades (Tier 2) are positive for compatibility and reliability.

  • Potential Risks:

    • Unknown Vulnerabilities: While security keywords are detected, no specific CVEs are listed.
    • Build Compatibility: Minor version changes may affect build processes (e.g., compiler versions, toolchains).

3. ABI/API Considerations

  • ABI Changes: No explicit mentions of ABI-breaking changes.
  • API Stability: Likely stable, as minor updates typically focus on feature enhancements or security fixes.
  • Build Impact:
    • The update may require toolchain upgrades (e.g., Rust compiler versions).
    • Ensure compatibility with existing build scripts and dependencies.

4. Recommendation

  • Action: Update the Rust package.
  • Rationale:
    • The update includes security patches (via CVE-... fixes).
    • Platform support upgrades (Tier 2) improve compatibility.
    • Minor version updates are generally safe unless flagged by the security script.

5. Checklists

  • Security:
    • Verify that all security patches (e.g., CVE-...) are applied.
    • Confirm no unlisted vulnerabilities are present.
  • Build:
    • Check for compatibility with current toolchains and dependencies.
    • Validate that the update does not break existing build scripts.

6. Conclusion

The Rust package update (1.95.0) is low-risk but worth updating for security patches and platform support improvements. It is a minor update and should be applied unless there is a specific reason to avoid it (e.g., critical vulnerabilities not listed).

Final Recommendation: Update the Rust package to 1.95.0.

Источники, найденные web_search

  1. GitHub release API: rust-lang/rust 1.95.0
  2. GitHub tag page: rust-lang/rust 1.95.0
  3. GitHub releases page: rust-lang/rust
  4. GitHub compare page: rust-lang/rust 1.88.0...1.95.0
  5. 1.95.0 | Rust Changelogs - releases.rs
  6. Rust Programming Language
  7. Announcing Rust 1.95.0 - Rust Blog
  8. rust-lang/rust: Empowering everyone to build reliable and efficient software.

Upstream release notes / description

Language

Compiler

Platform Support

Refer to Rust's platform support page for more information on Rust's tiered platform support.

Libraries

Stabilized APIs

...[truncated 5105 chars]

NiceOS maintainer checklist

  • Confirm that the detected version is a stable upstream release.
  • Check upstream changelog for security fixes, ABI/API changes and build-system changes.
  • Check ABI/API compatibility and reverse dependencies.
  • Download source into NiceOS lookaside storage.
  • Update Version and related fields in SPECS/*.spec only if policy allows it.
  • Regenerate SOURCES/sources.lock.json, manifests, metadata and SBOM.
  • Build SRPM/RPM in a clean NiceOS buildroot.
  • Run package smoke tests.
  • Link PR/build logs and close this issue after update or triage.

Bot metadata

  • Tool: niceos_upstream_monitor.py 2.1.3-local-websearch-github-release-pages
  • Generated at: 2026-05-28T01:01:04Z
<!-- niceos-upstream-monitor:fingerprint=upstream-update:rust:1.95.0 --> <!-- niceos-upstream-monitor:package=rust --> <!-- niceos-upstream-monitor:current=1.88.0 --> <!-- niceos-upstream-monitor:latest=1.95.0 --> # Upstream update available: `rust` `1.88.0` → `1.95.0` ## Package - Package: `rust` - RPM name: `rust` - Branch: `niceos-5.2` - Current EVR: `1.88.0-1` - Update class: `minor` - Compare method: `python_rpm` - Update policy: `leaf` - Risk tags: `github-upstream` ## Upstream - Upstream type: `github` - Upstream project: `rust-lang/rust` - Upstream URL: <a href="https://github.com/rust-lang/rust" target="_blank" rel="noopener noreferrer">github.com — rust</a> - Detected version: `1.95.0` - Tag/release: `1.95.0` - Source: `github_release_latest` - Published: `2026-04-16T18:19:31Z` - Release URL: <a href="https://github.com/rust-lang/rust/releases/tag/1.95.0" target="_blank" rel="noopener noreferrer">github.com — 1.95.0</a> - Source URL: <a href="https://api.github.com/repos/rust-lang/rust/tarball/1.95.0" target="_blank" rel="noopener noreferrer">api.github.com — 1.95.0</a> - Pre-release: `False` ## Signals - Security-relevant keywords detected: `True` - Policy blocked: `False` - Policy reason: `-` - Labels: `ai-summary, bot, needs-build, needs-triage, priority/high, security-release, update/minor, upstream-update, upstream/github` ## NiceSOFT AI preliminary stability analysis ### **Analysis of Upstream Update for Rust Package in NAIOS.OS** #### **1. Key Details** - **Version**: 1.95.0 (minor update from 1.88.0) - **Risk Tags**: `github-upstream` (indicating potential security fixes) - **Security Keywords**: Detected by the script (`security_keywords: true`) - **Platform Support**: - Promoted Tier 2 support for: - `powerpc64-unknown-linux-musl` - `aarch64-apple-tvos` - `aarch64-apple-tvos-sim` - No explicit ABI changes mentioned. --- #### **2. Risk Assessment** - **Risk Level**: **Medium** - **Reason**: - The update includes **security patches** (e.g., CVE-... fixes). - Minor version update (1.95.0) typically carries **low risk** unless specific vulnerabilities are exposed. - Platform support upgrades (Tier 2) are **positive** for compatibility and reliability. - **Potential Risks**: - **Unknown Vulnerabilities**: While security keywords are detected, **no specific CVEs** are listed. - **Build Compatibility**: Minor version changes may affect build processes (e.g., compiler versions, toolchains). --- #### **3. ABI/API Considerations** - **ABI Changes**: No explicit mentions of ABI-breaking changes. - **API Stability**: Likely stable, as minor updates typically focus on **feature enhancements** or **security fixes**. - **Build Impact**: - The update may require **toolchain upgrades** (e.g., Rust compiler versions). - Ensure compatibility with existing build scripts and dependencies. --- #### **4. Recommendation** - **Action**: **Update** the Rust package. - **Rationale**: - The update includes **security patches** (via CVE-... fixes). - Platform support upgrades (Tier 2) improve **compatibility**. - Minor version updates are generally **safe** unless flagged by the security script. --- #### **5. Checklists** - **Security**: - Verify that all security patches (e.g., CVE-...) are applied. - Confirm no **unlisted vulnerabilities** are present. - **Build**: - Check for compatibility with current toolchains and dependencies. - Validate that the update does not break existing build scripts. --- #### **6. Conclusion** The Rust package update (1.95.0) is **low-risk** but **worth updating** for **security patches** and **platform support improvements**. It is a **minor update** and should be applied unless there is a **specific reason to avoid** it (e.g., critical vulnerabilities not listed). **Final Recommendation**: ✅ **Update the Rust package** to 1.95.0. ### Источники, найденные web_search 1. <a href="https://github.com/rust-lang/rust/releases/tag/1.95.0" target="_blank" rel="noopener noreferrer">GitHub release API: rust-lang/rust 1.95.0</a> 2. <a href="https://github.com/rust-lang/rust/tree/1.95.0" target="_blank" rel="noopener noreferrer">GitHub tag page: rust-lang/rust 1.95.0</a> 3. <a href="https://github.com/rust-lang/rust/releases" target="_blank" rel="noopener noreferrer">GitHub releases page: rust-lang/rust</a> 4. <a href="https://github.com/rust-lang/rust/compare/1.88.0...1.95.0" target="_blank" rel="noopener noreferrer">GitHub compare page: rust-lang/rust 1.88.0...1.95.0</a> 5. <a href="https://releases.rs/docs/1.95.0/" target="_blank" rel="noopener noreferrer">1.95.0 | Rust Changelogs - releases.rs</a> 6. <a href="https://rust-lang.org/" target="_blank" rel="noopener noreferrer">Rust Programming Language</a> 7. <a href="https://blog.rust-lang.org/releases/latest/" target="_blank" rel="noopener noreferrer">Announcing Rust 1.95.0 - Rust Blog</a> 8. <a href="https://github.com/rust-lang/rust" target="_blank" rel="noopener noreferrer">rust-lang/rust: Empowering everyone to build reliable and efficient software.</a> ## Upstream release notes / description <a id="1.95-Language"></a> ## Language - <a href="https://github.com/rust-lang/rust/pull/141295" target="_blank" rel="noopener noreferrer">Stabilize `if let` guards on match arms</a> - <a href="https://github.com/rust-lang/rust/pull/146832" target="_blank" rel="noopener noreferrer">`irrefutable_let_patterns` lint no longer lints on let chains</a> - <a href="https://github.com/rust-lang/rust/pull/146972" target="_blank" rel="noopener noreferrer">Support importing path-segment keywords with renaming</a> - <a href="https://github.com/rust-lang/rust/pull/147996" target="_blank" rel="noopener noreferrer">Stabilize inline assembly for PowerPC and PowerPC64</a> - <a href="https://github.com/rust-lang/rust/pull/148967" target="_blank" rel="noopener noreferrer">const-eval: be more consistent in the behavior of padding during typed copies</a> - <a href="https://github.com/rust-lang/rust/pull/150557" target="_blank" rel="noopener noreferrer">Const blocks are no longer evaluated to determine if expressions involving fallible operations can implicitly be constant-promoted.</a>. Expressions whose ability to implicitly be promoted would depend on the result of a const block are no longer implicitly promoted. - <a href="https://github.com/rust-lang/rust/pull/150681" target="_blank" rel="noopener noreferrer">Make operational semantics of pattern matching independent of crate and module</a> <a id="1.95-Compiler"></a> ## Compiler - <a href="https://github.com/rust-lang/rust/pull/147611" target="_blank" rel="noopener noreferrer">Stabilize `--remap-path-scope` for controlling the scoping of how paths get remapped in the resulting binary</a> - <a href="https://github.com/rust-lang/rust/pull/155171" target="_blank" rel="noopener noreferrer">Apply patches for CVE-2026-6042 and CVE-2026-40200 to vendored musl</a> <a id="1.95-Platform-Support"></a> ## Platform Support - <a href="https://github.com/rust-lang/rust/pull/149962" target="_blank" rel="noopener noreferrer">Promote `powerpc64-unknown-linux-musl` to Tier 2 with host tools</a> - <a href="https://github.com/rust-lang/rust/pull/152021" target="_blank" rel="noopener noreferrer">Promote `aarch64-apple-tvos` to Tier 2</a> - <a href="https://github.com/rust-lang/rust/pull/152021" target="_blank" rel="noopener noreferrer">Promote `aarch64-apple-tvos-sim` to Tier 2</a> - <a href="https://github.com/rust-lang/rust/pull/152021" target="_blank" rel="noopener noreferrer">Promote `aarch64-apple-watchos` to Tier 2</a> - <a href="https://github.com/rust-lang/rust/pull/152021" target="_blank" rel="noopener noreferrer">Promote `aarch64-apple-watchos-sim` to Tier 2</a> - <a href="https://github.com/rust-lang/rust/pull/152021" target="_blank" rel="noopener noreferrer">Promote `aarch64-apple-visionos` to Tier 2</a> - <a href="https://github.com/rust-lang/rust/pull/152021" target="_blank" rel="noopener noreferrer">Promote `aarch64-apple-visionos-sim` to Tier 2</a> Refer to Rust's <a href="https://doc.rust-lang.org/rustc/platform-support.html" target="_blank" rel="noopener noreferrer">platform support page</a> for more information on Rust's tiered platform support. <a id="1.95-Libraries"></a> ## Libraries - <a href="https://github.com/rust-lang/rust/pull/149482" target="_blank" rel="noopener noreferrer">`thread::scope`: document how join interacts with TLS destructors</a> - <a href="https://github.com/rust-lang/rust/pull/152176" target="_blank" rel="noopener noreferrer">Speed up `str::contains` on aarch64 targets with `neon` target feature enabled by default</a> <a id="1.95-Stabilized-APIs"></a> ## Stabilized APIs - [`MaybeUninit<[T; N]>: From<[MaybeUninit<T>; N]>`](<a href="https://doc.rust-lang.org/stable/std/mem/union.MaybeUninit.html#impl-From%3CMaybeUninit%3C%5BT;+N%5D%3E%3E-for-%5BMaybeUninit%3CT%3E;+N%5D" target="_blank" rel="noopener noreferrer">doc.rust-lang.org — union.MaybeUninit.html</a>) - [`MaybeUninit<[T; N]>: AsRef<[MaybeUninit<T>; N]>`](<a href="https://doc.rust-lang.org/stable/std/mem/union.MaybeUninit.html#impl-AsRef%3C%5BMaybeUninit%3CT%3E;+N%5D%3E-for-MaybeUninit%3C%5BT;+N%5D%3E" target="_blank" rel="noopener noreferrer">doc.rust-lang.org — union.MaybeUninit.html</a>) - [`MaybeUninit<[T; N]>: AsRef<[MaybeUninit<T>]>`](<a href="https://doc.rust-lang.org/stable/std/mem/union.MaybeUninit.html#impl-AsRef%3C%5BMaybeUninit%3CT%3E%5D%3E-for-MaybeUninit%3C%5BT;+N%5D%3E" target="_blank" rel="noopener noreferrer">doc.rust-lang.org — union.MaybeUninit.html</a>) - [`MaybeUninit<[T; N]>: AsMut<[MaybeUninit<T>; N]>`](<a href="https://doc.rust-lang.org/beta/std/mem/union.MaybeUninit.html#impl-AsMut%3C%5BMaybeUninit%3CT%3E;+N%5D%3E-for-MaybeUninit%3C%5BT;+N%5D%3E" target="_blank" rel="noopener noreferrer">doc.rust-lang.org — union.MaybeUninit.html</a>) - [`MaybeUninit<[T; N]>: AsMut<[MaybeUninit<T>]>`](<a href="https://doc.rust-lang.org/stable/std/mem/union.MaybeUninit.html#impl-AsMut%3C%5BMaybeUninit%3CT%3E%5D%3E-for-MaybeUninit%3C%5BT;+N%5D%3E" target="_blank" rel="noopener noreferrer">doc.rust-lang.org — union.MaybeUninit.html</a>) - [`[MaybeUninit<T>; N]: From<MaybeUninit<[T; N]>>`](<a href="https://doc.rust-lang.org/stable/std/mem/union.MaybeUninit.html#impl-From%3C%5BMaybeUninit%3CT%3E;+N%5D%3E-for-MaybeUninit%3C%5BT;+N%5D%3E" target="_blank" rel="noopener noreferrer">doc.rust-lang.org — union.MaybeUninit.html</a>) - [`Cell<[T; N]>: AsRef<[Cell<T>; N]>`](<a href="https://doc.rust-lang.org/stable/std/cell/struct.Cell.html#impl-AsRef%3C%5BCell%3CT%3E;+N%5D%3E-for-Cell%3C%5BT;+N%5D%3E" target="_blank" rel="noopener noreferrer">doc.rust-lang.org — struct.Cell.html</a>) - [`Cell<[T; N]>: AsRef<[Cell<T>]>`](<a href="https://doc.rust-lang.org/stable/std/cell/struct.Cell.html#impl-AsRef%3C%5BCell%3CT%3E%5D%3E-for-Cell%3C%5BT;+N%5D%3E" target="_blank" rel="noopener noreferrer">doc.rust-lang.org — struct.Cell.html</a>) - [`Cell<[T]>: AsRef<[Cell<T>]>`](<a href="https://doc.rust-lang.org/stable/std/cell/struct.Cell.html#impl-AsRef%3C%5BCell%3CT%3E%5D%3E-for-Cell%3C%5BT%5D%3E" target="_blank" rel="noopener noreferrer">doc.rust-lang.org — struct.Cell.html</a>) - <a href="https://doc.rust-lang.org/stable/std/primitive.bool.html#impl-TryFrom%3Cu128%3E-for-bool" target="_blank" rel="noopener noreferrer">`bool: TryFrom&lt;{integer}&gt;`</a> - <a href="https://doc.rust-lang.org/stable/std/sync/atomic/struct.AtomicPtr.html#method.update" target="_blank" rel="noopener noreferrer">`AtomicPtr::update`</a> - <a href="https://doc.rust-lang.org/stable/std/sync/atomic/struct.AtomicPtr.html#method.try_update" target="_blank" rel="noopener noreferrer">`AtomicPtr::try_update`</a> - <a href="https://doc.rust-lang.org/stable/std/sync/atomic/struct.AtomicBool.html#method.update" target="_blank" rel="noopener noreferrer">`AtomicBool::update`</a> - <a href="https://doc.rust-lang.org/stable/std/sync/atomic/struct.AtomicBool.html#method.try_update" target="_blank" rel="noopener noreferrer">`AtomicBool::try_update`</a> - <a href="https://doc.rust-lang.org/stable/std/sync/atomic/struct.AtomicIsize.html#method.update" target="_blank" rel="noopener noreferrer">`AtomicIn::update`</a> - <a href="https://doc.rust-lang.org/stable/std/sync/atomic/struct.AtomicIsize.html#method.try_update" target="_blank" rel="noopener noreferrer">`AtomicIn::try_update`</a> - <a href="https://doc.rust-lang.org/stable/std/sync/atomic/struct.AtomicUsize.html#method.update" target="_blank" rel="noopener noreferrer">`AtomicUn::update`</a> - <a href="https://doc.rust-lang.org/stable/std/sync/atomic/struct.AtomicUsize.html#method.try_update" target="_blank" rel="noopener noreferrer">`AtomicUn::try_update`</a> - <a href="https://doc.rust-lang.org/stable/std/macro.cfg_select.html" target="_blank" rel="noopener noreferrer">`cfg_select!`</a> - <a href="https://doc.rust-lang.org/stable/core/range/index.html" target="_blank" rel="noopener noreferrer">`mod core::range`</a> - <a href="https://doc.rust-lang.org/stable/core/range/struct.RangeInclusive.html" target="_blank" rel="noopener noreferrer">`core::range::RangeInclusive`</a> - <a href="https://doc.rust-lang.org/stable/core/range/struct.RangeInclusiveIter.html" target="_blank" rel="noopener noreferrer">`core::range::RangeInclusiveIter`</a> - <a href="https://doc.rust-lang.org/stable/core/hint/fn.cold_path.html" target="_blank" rel="noopener noreferrer">`core::hint::cold_path`</a> - <a href="https://doc.rust-lang.org/stable/std/primitive.pointer.html#method.as_ref_unchecked" target="_blank" rel="noopener noreferrer">`&lt;*const T&gt;::as_ref_unchecked`</a> - <a href="https://doc.rust-lang.org/stable/std/primitive.pointer.html#method.as_ref_unchecked-1" target="_blank" rel="noopener noreferrer">`&lt;*mut T&gt;::as_ref_unchecked`</a> - [`<*mut T>::as_mut_unchecked`](ht ...[truncated 5105 chars] ## NiceOS maintainer checklist - [ ] Confirm that the detected version is a stable upstream release. - [ ] Check upstream changelog for security fixes, ABI/API changes and build-system changes. - [ ] Check ABI/API compatibility and reverse dependencies. - [ ] Download source into NiceOS lookaside storage. - [ ] Update `Version` and related fields in `SPECS/*.spec` only if policy allows it. - [ ] Regenerate `SOURCES/sources.lock.json`, manifests, metadata and SBOM. - [ ] Build SRPM/RPM in a clean NiceOS buildroot. - [ ] Run package smoke tests. - [ ] Link PR/build logs and close this issue after update or triage. ## Bot metadata - Tool: `niceos_upstream_monitor.py 2.1.3-local-websearch-github-release-pages` - Generated at: `2026-05-28T01:01:04Z`
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
niceos-5.2
No results found.
Labels
Clear labels   
ai-summary
Issue contains local NiceSOFT AI generated preliminary analysis

  
bot
Created by automation

  
needs-build
Needs build verification

  
needs-triage
Needs maintainer triage

  
priority/high
High priority

  
security-release
Release notes mention security fixes or CVE

  
update/minor
Minor update

  
upstream-update
New upstream version is available

  
upstream/github
GitHub upstream

No labels
ai-summary
bot
needs-build
needs-triage
priority/high
security-release
update/minor
upstream-update
upstream/github
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
rpms/rust#1
No description provided.