build(deps): update object_store requirement from 0.12.0 to 0.13.0

[dependabot]

Updates the requirements on object_store to permit the latest version.

Changelog

Sourced from object_store's changelog.

v0.13.0 (2025-12-19)

Full Changelog

Breaking changes:

• fix: Add fields to Error::NotImplemented with more details on what isn't implemented #575 (carols10cents)
• refactor!: copy & copy_if_not_exists => copy_opts #548 (crepererum)
• refactor!: move head to ObjectStoreExt #543 (crepererum)
• fix: wrappers and default trait methods #537 (crepererum)
• refactor!: move get_range to ObjectStoreExt #536 (crepererum)
• refactor!: move get to ObjectStoreExt #532 (crepererum)
• refactor: move put_multipart to ObjectStoreExt #530 (crepererum)
• feat!: use 'static lifetime for delete_stream #524 (linhr)
• Bump rust edition to 2024, rust version to 1.85 #515 (AdamGS)
• reapply: remove AWS dynamo integration (#407), try 2 #494 (alamb)
• refactor: introduce ObjectStoreExt trait #405 (crepererum)

Implemented enhancements:

• NotImplemented error should say what method wasn't implemented by what implementation #572
• Allow explicitly specifying the GCS base URL #566
• Detailed error messages for Generic #560
• Include reqwest/hyper error sources in error messages #554
• Improve Path ergonomics #545
• [Suggestion] Move ObjectStore API to use arrow-rs' Buffer #544
• Implement ObjectStore for Arc<T> and Box<T> #525
• Refactor GetOptions with a builder pattern #516
• Better support for Tags #508
• Error 411 (Length Required) when using Multipart PUT on GCP with S3Store #495
• Deprecate and Remove DynamoCommit #373
• Add CopyOptions #116

Fixed bugs:

• RequestError exposes underlying reqwest::Error rather than the nicer HttpError #579
• SpawnService panics tokio-runtime-worker threads #578
• local path filtering has different semantics #573
• AWS: using Checksum::SHA256 causes copy_if_not_exists with S3CopyIfNotExists::Multipart to fail #568
• Cargo Audit Produces a Warning for rustls-pemfile being unmaintained #564
• AmazonS3ConfigKey::WebIdentityTokenFile is ignored #538
• Cannot parse AWS S3 HTTP URLs without region #522
• Signature mismatch (sigv4) when using attribute values with double whitespace #510
• Generic S3 error: Metadata value for ""x-amz-meta-.."" contained non UTF-8 characters #509
• Inconsistent documentation of "Supported Keys" #497

Documentation updates:

• Update release date for version 0.13.0 in README #521 (alamb)
• feat: refactor GetOptions with builder, add binary examples #517 (peasee)

... (truncated)

Commits

• eedbf3d Prepare for 0.13.0 release (#581)
• 44e258c Add A "upgrading to 0.13.0" guide in docs (#584)
• 24e5fbc Update release schedule on README (#583)
• 378bfe7 correctly expose HttpError through RetryError::source (#580)
• fa40170 Path improvements (#546)
• 493a5d0 fix: Add more details on what isn't implemented (#575)
• 7b09e4e Documentation for backend support of bulk delete (#571)
• 65ad88b Remove dev dependency on openssl (#577)
• de4a30e Allow explicitly specifying GCS base URL (#567)
• 92b1378 refactor!: move delete to ObjectStoreExt (#549)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[alamb]

Related: #9017

[alamb]

Superceded by #9017

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.