Skip to content

chore(deps): bump wasmtime from 39.0.1 to 40.0.2#146

Closed
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/cargo/wasmtime-40.0.2
Closed

chore(deps): bump wasmtime from 39.0.1 to 40.0.2#146
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/cargo/wasmtime-40.0.2

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 19, 2026
edited
Loading

Bumps wasmtime from 39.0.1 to 40.0.2.

Release notes

Sourced from wasmtime's releases.

v40.0.2

40.0.2

Released 2026-01-14.

Fixed

  • A possible stack overflow in the x64 backend with cmp emission has been fixed. #12333

  • Some ISLE optimization rules which created erroneous IR for vector inputs have been fixed. #12179 #12335

  • The x64 lowering of shld has been fixed for some edge caxes. #12321

v40.0.1

40.0.1

Released 2026-01-07.

Changed

  • This release is a test of Wasmtime's CI-based crate publishing infrastructure. Wasmtime is switching to crates.io-based trusted publishing for this release and is testing that everything works. #12257

v40.0.0

40.0.0

Released 2025-12-20.

Added

  • WASIp3 support for wasi:http now implements Response::from_http to convert from standard Rust types to WASI types. #12063

  • Cranelift now supports a "patchable" ABI which has a maximum number of arguments and clobbers no registers. This is paired as well with a new patchable_call instruction which supports being turned into NOPs at runtime. #12061 #12101

Changed

... (truncated)

Changelog

Sourced from wasmtime's changelog.

40.0.2

Released 2026-01-14.

Fixed

  • A possible stack overflow in the x64 backend with cmp emission has been fixed. #12333

  • Some ISLE optimization rules which created erroneous IR for vector inputs have been fixed. #12179 #12335

  • The x64 lowering of shld has been fixed for some edge caxes. #12321

40.0.1

Released 2026-01-07.

Changed

  • This release is a test of Wasmtime's CI-based crate publishing infrastructure. Wasmtime is switching to crates.io-based trusted publishing for this release and is testing that everything works. #12257

40.0.0

Released 2025-12-20.

Added

  • WASIp3 support for wasi:http now implements Response::from_http to convert from standard Rust types to WASI types. #12063

  • Cranelift now supports a "patchable" ABI which has a maximum number of arguments and clobbers no registers. This is paired as well with a new patchable_call instruction which supports being turned into NOPs at runtime. #12061 #12101

Changed

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Jan 19, 2026
@dependabot dependabot bot mentioned this pull request Jan 19, 2026
Closed
chatgpt-codex-connector[bot]
chatgpt-codex-connector bot reviewed Jan 19, 2026
View reviewed changes
Copy link

@chatgpt-codex-connector chatgpt-codex-connector bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: de4a7efe42

ℹ️ About Codex in GitHub

Codex has been enabled to automatically review pull requests in this repo. Reviews are triggered when you

  • Open a pull request for review
  • Mark a draft as ready
  • Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

When you sign up for Codex through ChatGPT, Codex can also answer questions or update the PR, like "@codex address that feedback".

crates/runtime/Cargo.toml Outdated
Comment on lines 31 to 32
wasmtime = { version = "40.0.2", features = ["cache", "cranelift"] }
wasmtime-wasi = "39.0.1"
Copy link

@chatgpt-codex-connector chatgpt-codex-connector bot Jan 19, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

P1 Badge Align wasmtime-wasi with wasmtime 40.x

crates/runtime/Cargo.toml now pulls wasmtime 40.0.2 but leaves wasmtime-wasi at 39.0.1, which still depends on the 39.x wasmtime crate (visible as duplicate 39.0.2/40.0.2 entries in Cargo.lock). crates/runtime/src/runtime.rs uses wasmtime::{Engine, Linker, Store} and then passes that linker to wasmtime_wasi::p1::add_to_linker_sync, so the two versions’ Linker types will not unify and the runtime crate will fail to compile. Bump wasmtime-wasi to the matching 40.x release (or keep wasmtime at 39.x) to avoid the dual-version type mismatch.

Useful? React with 👍 / 👎.

@dependabot dependabot bot force-pushed the dependabot/cargo/wasmtime-40.0.2 branch from de4a7ef to 8b913db Compare February 1, 2026 01:44
@dependabot
chore(deps): bump wasmtime from 39.0.1 to 40.0.2
188121a 
Bumps [wasmtime](https://github.com/bytecodealliance/wasmtime) from 39.0.1 to 40.0.2.
- [Release notes](https://github.com/bytecodealliance/wasmtime/releases)
- [Changelog](https://github.com/bytecodealliance/wasmtime/blob/v40.0.2/RELEASES.md)
- [Commits](bytecodealliance/wasmtime@v39.0.1...v40.0.2)

---
updated-dependencies:
- dependency-name: wasmtime
  dependency-version: 40.0.2
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/cargo/wasmtime-40.0.2 branch from 8b913db to 188121a Compare February 2, 2026 01:05
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Feb 2, 2026

Superseded by #156.

@dependabot dependabot bot closed this Feb 2, 2026
@dependabot dependabot bot deleted the dependabot/cargo/wasmtime-40.0.2 branch February 2, 2026 03:41
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@chatgpt-codex-connector chatgpt-codex-connector[bot] chatgpt-codex-connector[bot] left review comments

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update rust code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants