• Add ClientBuilder::tls_sslkeylogfile(bool) option to allow using the related environment variable.
• Add ClientBuilder::http2_keep_alive_* options for the blocking client.
• Add TLS 1.3 support when using native-tls backend.
• Fix redirect handling to strip sensitive headers when the scheme changes.
• Fix HTTP/3 happy-eyeball connection creation.
• Upgrade hickory-resolver to 0.26.

• fix(tls): improve rustls-no-provider panic message and add module docs by @smythg4 in https://github.com/seanmonstar/reqwest/pull/3021
• fix: do not lose the url in error when decoding json by @Dushistov in https://github.com/seanmonstar/reqwest/pull/3026
• Add tls_sslkeylogfile builder method by @passcod in https://github.com/seanmonstar/reqwest/pull/2923
• fix(redirect): strip sensitive headers on scheme change across redirects by @SAY-5 in https://github.com/seanmonstar/reqwest/pull/3034
• chore: upgrade MSRV to 1.85 by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/3038
• chore: clean up minimal-versions CI job by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/3039
• fix(http3): use happy eyeballs for h3 connect by @lyuzichong in https://github.com/seanmonstar/reqwest/pull/3030
• fix: update hickory-resolver to 0.26 and adjust code accordingly by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/3040
• fix: remove unwrap in hickory initialization by @mat813 in https://github.com/seanmonstar/reqwest/pull/3041
• feat(https): support TLS 1.3 as min version under native-tls 🎉 by @AverageHelper in https://github.com/seanmonstar/reqwest/pull/2975
• Expose keep alive configurations in blocking client by @aeb-dev in https://github.com/seanmonstar/reqwest/pull/3043
• Prepare v0.13.4 by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/3046

• @smythg4 made their first contribution in https://github.com/seanmonstar/reqwest/pull/3021
• @Dushistov made their first contribution in https://github.com/seanmonstar/reqwest/pull/3026
• @SAY-5 made their first contribution in https://github.com/seanmonstar/reqwest/pull/3034
• @mat813 made their first contribution in https://github.com/seanmonstar/reqwest/pull/3041
• @AverageHelper made their first contribution in https://github.com/seanmonstar/reqwest/pull/2975
• @aeb-dev made their first contribution in https://github.com/seanmonstar/reqwest/pull/3043

Full Changelog: https://github.com/seanmonstar/reqwest/compare/v0.13.3...v0.13.4

• Fix CertificateRevocationList parsing of PEM values.
• Fix logging in resolver to only show host, not full URL.
• Fix hickory-dns to fallback to a default if /etc/resolv.conf fails.
• Fix HTTP/3 to handle STOP_SENDING as not an error.
• Fix HTTP/3 pool to remove timed out QUIC connections.
• Fix HTTP/3 connection establishment picking IPv4 and IPv6.
• Upgrade rustls-platform-verifier.
• (wasm) Only use wasm-bindgen on unknown-* targets.

• Update docs.rs Features by @JamesWiresmith in https://github.com/seanmonstar/reqwest/pull/2961
• fix: fallback to hickory_resolver's default config if reading /etc/resolv.conf fails by @monosans in https://github.com/seanmonstar/reqwest/pull/2797
• fix: remove timeout con by @cuiweixie in https://github.com/seanmonstar/reqwest/pull/2967
• http3: handle stop_sending without error by @anuraaga in https://github.com/seanmonstar/reqwest/pull/2978
• resolve: debug log to change only host by @lms0806 in https://github.com/seanmonstar/reqwest/pull/2992
• Edit reference link by @lms0806 in https://github.com/seanmonstar/reqwest/pull/2996
• docs: more accurate about default HTTP2 window sizes by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/3007
• [HTTP/3] Optimize IPv6 fallback and enforce HTTPS scheme #2911 by @lyuzichong in https://github.com/seanmonstar/reqwest/pull/3006
• Upgrade rustls-platform-verifier by @jplatte in https://github.com/seanmonstar/reqwest/pull/3010
• use wasm-bindgen ecosystem only for wasm32-unknown-* target by @Ludea in https://github.com/seanmonstar/reqwest/pull/3000
• fix rustls crl pem parsing by @Threated in https://github.com/seanmonstar/reqwest/pull/3013
• docs(retry): include ReqRep in docsrs by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/3020

• @JamesWiresmith made their first contribution in https://github.com/seanmonstar/reqwest/pull/2961
• @monosans made their first contribution in https://github.com/seanmonstar/reqwest/pull/2797
• @cuiweixie made their first contribution in https://github.com/seanmonstar/reqwest/pull/2967
• @anuraaga made their first contribution in https://github.com/seanmonstar/reqwest/pull/2978
• @lms0806 made their first contribution in https://github.com/seanmonstar/reqwest/pull/2992
• @lyuzichong made their first contribution in https://github.com/seanmonstar/reqwest/pull/3006
• @Ludea made their first contribution in https://github.com/seanmonstar/reqwest/pull/3000

Full Changelog: https://github.com/seanmonstar/reqwest/compare/v0.13.2...v0.13.3

• Fix HTTP/2 and native-tls ALPN feature combinations.
• Fix HTTP/3 to send h3 ALPN.
• (wasm) fix RequestBuilder::json() from override previously set content-type.

• chore(deps): bump actions/checkout from 5 to 6 by @dependabot[bot] in https://github.com/seanmonstar/reqwest/pull/2921
• Update readme for 0.13 by @VojtaStanek in https://github.com/seanmonstar/reqwest/pull/2926
• fix http2 feature is not enabled for "native-tls" by @fox0 in https://github.com/seanmonstar/reqwest/pull/2927
• chore(deps): remove unused webpki-roots and rustls-native-certs by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2932
• docs: native-tls-alpn has changed to native-tls-no-alpn by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2940
• Specify h3 alpn for http3 connector by @passcod in https://github.com/seanmonstar/reqwest/pull/2929
• update copyright year to 2026 by @taozui472 in https://github.com/seanmonstar/reqwest/pull/2943
• fix(json): custom content-type overidden by json method for wasm by @Narendran-KT in https://github.com/seanmonstar/reqwest/pull/2908
• chore: upgrade wasm-streams to v0.5 by @xangelix in https://github.com/seanmonstar/reqwest/pull/2958
• chore(ci): add windows and linux arm64 to ci by @dennisameling in https://github.com/seanmonstar/reqwest/pull/2960

• @VojtaStanek made their first contribution in https://github.com/seanmonstar/reqwest/pull/2926
• @fox0 made their first contribution in https://github.com/seanmonstar/reqwest/pull/2927
• @passcod made their first contribution in https://github.com/seanmonstar/reqwest/pull/2929
• @taozui472 made their first contribution in https://github.com/seanmonstar/reqwest/pull/2943
• @Narendran-KT made their first contribution in https://github.com/seanmonstar/reqwest/pull/2908
• @xangelix made their first contribution in https://github.com/seanmonstar/reqwest/pull/2958
• @dennisameling made their first contribution in https://github.com/seanmonstar/reqwest/pull/2960

Full Changelog: https://github.com/seanmonstar/reqwest/compare/v0.13.1...v0.13.2

• http3: depend on quinn/rustls-aws-lc-rs to avoid ring dependency by @djc in https://github.com/seanmonstar/reqwest/pull/2917
• fix rustls on android by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2918

Full Changelog: https://github.com/seanmonstar/reqwest/compare/v0.13.0...v0.13.1

• rustls is now the default TLS backend, instead of native-tls.
• rustls crypto provider defaults to aws-lc instead of ring. (rustls-no-provider exists if you want a different crypto provider)
• rustls-tls has been renamed to rustls.
• rustls roots features removed, rustls-platform-verifier is used by default.
  • To use different roots, call tls_certs_only(your_roots).
• native-tls now includes ALPN. To disable, use native-tls-no-alpn.
• query and form are now crate features, disabled by default.
• Long-deprecated methods and crate features have been removed (such as trust-dns, which was renamed hickory-dns a while ago).
• Many TLS-related methods renamed to improve autocompletion and discovery, but previous name left in place with a "soft" deprecation. (just documented, no warnings)
  • For example, prefer tls_backend_rustls() over use_rustls_tls().

• start 0.13 dev by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2894
• Make serde optional by introducing query, form features, and re-working WASM header parsing by @CathalMullan in https://github.com/seanmonstar/reqwest/pull/2858
• replace ClientBuilder::dns_resolver with dns_resolver2 by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2898
• feat: make Rustls the default TLS provider by @calavera in https://github.com/seanmonstar/reqwest/pull/2897
• feat: consolidate TLS options with rustls-platform-verifier by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2891
• remove long-deprecated methods: trust-dns and non-wasm-cors by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2899
• rename rustls-tls feature to just rustls by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2900
• remove deprecated features trust-dns and macos-system-configuration by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2901
• chore: separate rustls and rustls-no-provider features by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2903
• rustls: allow windows to use extra roots by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2904
• v0.13.0-rc.1 by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2905
• Enable ALPN by default in native-tls by @ducaale in https://github.com/seanmonstar/reqwest/pull/2907
• v0.13.0 by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2915

• @CathalMullan made their first contribution in https://github.com/seanmonstar/reqwest/pull/2858

Full Changelog: https://github.com/seanmonstar/reqwest/compare/v0.12.28...v0.13.0

👀 Discussion here if you give it try, thanks!

• rustls is now default instead of native-tls
• rustls provider defaults to aws-lc instead of ring (rustls-no-provider exists if you want to enable a different one)
• rustls-tls renamed to rustls
• rustls roots features removed, platform-verifier is used instead
  • To use different roots instead, use tls_certs_only(your_roots).
• Many TLS-related methods renamed, but previous name left in place with a "soft" deprecated (just documented, no warnings).
• query and form are now crate features, disabled by default
• Long-deprecated methods and crate features have been removed.

• start 0.13 dev by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2894
• Make serde optional by introducing query, form features, and re-working WASM header parsing by @CathalMullan in https://github.com/seanmonstar/reqwest/pull/2858
• replace ClientBuilder::dns_resolver with dns_resolver2 by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2898
• feat: make Rustls the default TLS provider by @calavera in https://github.com/seanmonstar/reqwest/pull/2897
• feat: consolidate TLS options with rustls-platform-verifier by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2891
• remove long-deprecated methods: trust-dns and non-wasm-cors by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2899
• rename rustls-tls feature to just rustls by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2900
• remove deprecated features trust-dns and macos-system-configuration by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2901
• chore: separate rustls and rustls-no-provider features by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2903
• rustls: allow windows to use extra roots by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2904
• v0.13.0-rc.1 by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2905

• @CathalMullan made their first contribution in https://github.com/seanmonstar/reqwest/pull/2858

Full Changelog: https://github.com/seanmonstar/reqwest/compare/v0.12.28...v0.13.0-rc.1

• fix: correctly import TokioIo on Windows by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2896

Full Changelog: https://github.com/seanmonstar/reqwest/compare/v0.12.27...v0.12.28

• Add ClientBuilder::windows_named_pipe(name) option that will force all requests over that Windows Named Pipe.

• chore: Disable unused tokio-util codec feature by @tottoto in https://github.com/seanmonstar/reqwest/pull/2893
• chore: Use http_body_util::BodyDataStream by @tottoto in https://github.com/seanmonstar/reqwest/pull/2892
• feat: add windows_named_pipe() option to client builder by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2789

Full Changelog: https://github.com/seanmonstar/reqwest/compare/v0.12.26...v0.12.27

• Fix sending Accept-Encoding header only with values configured with reqwest, regardless of underlying tower-http config.

• deps: update cookie_store by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2886
• fix: disable default compression from tower-http if not enabled in reqwest by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2889
• fix(http3): correct compression defaults by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2890

Full Changelog: https://github.com/seanmonstar/reqwest/compare/v0.12.25...v0.12.26

• Add Error::is_upgrade() to determine if the error was from an HTTP upgrade.
• Fix sending Proxy-Authorization if only username is configured.
• Fix sending Proxy-Authorization to HTTPS proxies when the target is HTTP.
• Refactor internal decompression handling to use tower-http.

• tests: fix wasm timeout test with uncached response by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2853
• docs: document connection pooling behavior by @vinzmyko in https://github.com/seanmonstar/reqwest/pull/2851
• docs: document WASM client by @vinzmyko in https://github.com/seanmonstar/reqwest/pull/2859
• chore: minor improvement for docs by @black5box in https://github.com/seanmonstar/reqwest/pull/2862
• fix: send proxy-authorization even with empty password by @barjin in https://github.com/seanmonstar/reqwest/pull/2868
• feat(error): add is_upgrade method to detect protocol upgrade errors by @0x676e67 in https://github.com/seanmonstar/reqwest/pull/2822
• Use decompression from tower-http by @ducaale in https://github.com/seanmonstar/reqwest/pull/2840
• fix(proxy): forward Proxy-Authorization header to HTTPS proxies for HTTP targets by @0x676e67 in https://github.com/seanmonstar/reqwest/pull/2872
• v0.12.25 by @seanmonstar in https://github.com/seanmonstar/reqwest/pull/2880

• @vinzmyko made their first contribution in https://github.com/seanmonstar/reqwest/pull/2851
• @black5box made their first contribution in https://github.com/seanmonstar/reqwest/pull/2862
• @barjin made their first contribution in https://github.com/seanmonstar/reqwest/pull/2868

Full Changelog: https://github.com/seanmonstar/reqwest/compare/v0.12.24...v0.12.25