Hello!
I'm not 100% sure about this, but ...
I think that now reqwest should update to the latest cookie crate (v0.12 as of yet) in order to fix an incompatibility with the ring crate.
I'm using the crate jsonwebtoken that depends on reqwest and this is what I get:
$ cargo check
Updating crates.io index
error: failed to select a version for `ring`.
... required by package `jsonwebtoken v6.0.0`
... which is depended on by `open-taffeta v0.2.2 (...)`
versions that meet the requirements `^0.14.4` are: 0.14.6, 0.14.5, 0.14.4
the package `ring` links to the native library `ring-asm`, but it conflicts with a previous package which links to `ring-asm` as well:
package `ring v0.13.5`
... which is depended on by `cookie v0.11.1`
... which is depended on by `cookie_store v0.5.1`
... which is depended on by `reqwest v0.9.16`
... which is depended on by `open-taffeta v0.2.2 (...)`
If I am not mistaken, updating to cookie = 0.12 should solve the issue. Opinions?
Thanks!
Sigh, this is exactly why I strongly feel the cookie crate should pull its secure feature into a separate crate, so those of us who just want cookies don't have to worry about updating ring.
I'll go poke cookie_store first...
cookie_store v0.6.0 has been published, updating the cookie dependency
This issue has appeared again: rustls requires ring 0.16.5, cookie requires ring 0.14.6.
Most helpful comment
cookie_storev0.6.0 has been published, updating thecookiedependency