deps: bump url from 2.1 to 2.5 (#461)

idna versions less than version 1.0.3 are impacted by RUSTSEC-2024-0421. Uprevving url to a version greater than 2.5.4 will use a version of idna that is not impacted by this vulnerability. Co-authored-by: Roman Valls Guimera <[email protected]>
rust-bio · Feb 19, 2025 · aa93eaf · aa93eaf
1 parent 19902d4
commit aa93eaf
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/Cargo.toml b/Cargo.toml
@@ -31,7 +31,7 @@ regex = "1.3"
 serde = {version = "^1", optional = true, features = ["derive"]}
 serde_bytes = {version = "0.11", optional = true}
 thiserror = {version = "^2" }
-url = "2.1"
+url = "2.5"
 
 [features]
 bindgen = ["hts-sys/bindgen"]