build(deps): bump actix-http from 3.11.2 to 3.13.0 in /graph-data.rs

[dependabot]

Bumps actix-http from 3.11.2 to 3.13.0.

Release notes

Sourced from actix-http's releases.

actix-http: v3.13.0

3.13.0

• When configured, gracefully close HTTP/1 connections after early responses to unread request bodies. #3967
• Wake HTTP/1 payload receivers with an incomplete-payload error when the sender is dropped before EOF. #3100
• Update foldhash dependency to 0.2.

#3967: actix/actix-web#3967 #3100: actix/actix-web#3100

actix-http: v3.12.1

Notice: This release contains a security fix. Users are encouraged to update to this version ASAP.

• SECURITY: Reject HTTP/1 requests with ambiguous request framing from Content-Length and Transfer-Encoding headers to prevent request smuggling.
• Encode the HTTP/1 Connection: Upgrade header in Camel-Case when camel-case header formatting is enabled.#3953
• Fix HeaderMap iterators' len() and size_hint() implementations for multi-value headers.
• Update rand dependency to 0.10.
• Update sha1 dependency to 0.11.

#3953: actix/actix-web#3953

actix-http: v3.12.0

• Minimum supported Rust version (MSRV) is now 1.88.
• Increase default HTTP/2 flow control window sizes. #3638
• Expose configuration methods to improve upload throughput. #3638
• Fix truncated body ending without error when connection closed abnormally. #3067
• Add config/method for TCP_NODELAY. #3918
• Do not compress 206 Partial Content responses. #3191
• Fix lingering sockets and client stalls when responding early to dropped chunked request payloads. #2972

#3638: actix/actix-web#3638 #3067: actix/actix-web#3067 #3918: actix/actix-web#3918 #3191: actix/actix-web#3191 #2972: actix/actix-web#2972

Commits

• 6c65c46 chore(http): prepare 3.13.0 release (#4112)
• afd2df2 test(multipart,derive): move trybuild tests (#4028)
• 7ded7ee build(deps): bump memchr from 2.8.1 to 2.8.2 (#4107)
• 55cf2e0 build(deps): bump bytesize from 2.3.1 to 2.4.0 (#4104)
• 565b179 build(deps): bump smallvec from 1.15.1 to 1.15.2 (#4106)
• 1605dd0 build(deps): bump taiki-e/install-action from 2.81.7 to 2.81.10 (#4105)
• 5c79f55 build(deps): bump regex from 1.12.3 to 1.12.4 (#4103)
• 2ffbee0 build(deps): bump time from 0.3.47 to 0.3.49 (#4102)
• 4748b2a build(deps): bump actions/checkout from 6.0.2 to 6.0.3 (#4092)
• d430c99 build(deps): bump log from 0.4.30 to 0.4.32 (#4093)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[coderabbitai]

Important

Review skipped

Auto reviews are disabled on this repository. Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

⚙️ Run configuration

Configuration used: Repository YAML (base), Central YAML (inherited)

Review profile: CHILL

Plan: Enterprise

Run ID: 640f45d9-2868-4075-8c9d-0e5deed7151a

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Use the checkbox below for a quick retry:

• 🔍 Trigger review

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch dependabot/cargo/graph-data.rs/actix-http-3.13.0

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]
Once this PR has been reviewed and has the lgtm label, please assign hongkailiu for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• graph-data.rs/OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[openshift-ci]

@dependabot[bot]: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/prow/e2e	538073a	link	true	/test e2e
ci/prow/images	538073a	link	true	/test images

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.