build(deps): bump the patch group across 1 directory with 11 updates

[dependabot]

Bumps the patch group with 11 updates in the / directory:

Package	From	To
serde_json	1.0.145	1.0.146
reqwest	0.12.24	0.12.26
crypto-bigint	0.7.0-rc.8	0.7.0-rc.10
block-padding	0.4.0-rc.4	0.4.2
block-buffer	0.11.0-rc.5	0.11.0
password-hash	0.6.0-rc.1	0.6.0-rc.6
pem-rfc7468	1.0.0-rc.3	1.0.0
elliptic-curve	0.14.0-rc.15	0.14.0-rc.16
pkcs8	0.11.0-rc.7	0.11.0-rc.8
rfc6979	0.5.0-rc.1	0.5.0-rc.2
crypto-primes	0.7.0-pre.3	0.7.0-pre.4

Updates serde_json from 1.0.145 to 1.0.146

Release notes

Sourced from serde_json's releases.

v1.0.146

• Set fast_arithmetic=64 for riscv64 (#1305, thanks @​Xeonacid)

Commits

• 75ad7e6 Release 1.0.146
• bc6c827 Merge pull request #1305 from Xeonacid/patch-1
• a09210a Set fast_arithmetic=64 for riscv64
• 01182e5 Update actions/upload-artifact@v5 -> v6
• 383b13a Update actions/upload-artifact@v4 -> v5
• 04dd357 Raise required compiler to Rust 1.68
• e047dfb Resolve manual_let_else pedantic clippy lint
• a525d9c Raise required compiler to Rust 1.65
• f815793 Remove rustc version badge from readme
• 3f17d2c Update actions/checkout@v5 -> v6
• Additional commits viewable in compare view

Updates reqwest from 0.12.24 to 0.12.26

Release notes

Sourced from reqwest's releases.

v0.12.26

tl;dr

• Fix sending Accept-Encoding header only with values configured with reqwest, regardless of underlying tower-http config.

What's Changed

• deps: update cookie_store by @​seanmonstar in seanmonstar/reqwest#2886
• fix: disable default compression from tower-http if not enabled in reqwest by @​seanmonstar in seanmonstar/reqwest#2889
• fix(http3): correct compression defaults by @​seanmonstar in seanmonstar/reqwest#2890

Full Changelog: seanmonstar/reqwest@v0.12.25...v0.12.26

v0.12.25

Highlights

• Add Error::is_upgrade() to determine if the error was from an HTTP upgrade.
• Fix sending Proxy-Authorization if only username is configured.
• Fix sending Proxy-Authorization to HTTPS proxies when the target is HTTP.
• Refactor internal decompression handling to use tower-http.

What's Changed

• tests: fix wasm timeout test with uncached response by @​seanmonstar in seanmonstar/reqwest#2853
• docs: document connection pooling behavior by @​vinzmyko in seanmonstar/reqwest#2851
• docs: document WASM client by @​vinzmyko in seanmonstar/reqwest#2859
• chore: minor improvement for docs by @​black5box in seanmonstar/reqwest#2862
• fix: send proxy-authorization even with empty password by @​barjin in seanmonstar/reqwest#2868
• feat(error): add is_upgrade method to detect protocol upgrade errors by @​0x676e67 in seanmonstar/reqwest#2822
• Use decompression from tower-http by @​ducaale in seanmonstar/reqwest#2840
• fix(proxy): forward Proxy-Authorization header to HTTPS proxies for HTTP targets by @​0x676e67 in seanmonstar/reqwest#2872
• v0.12.25 by @​seanmonstar in seanmonstar/reqwest#2880

New Contributors

• @​vinzmyko made their first contribution in seanmonstar/reqwest#2851
• @​black5box made their first contribution in seanmonstar/reqwest#2862
• @​barjin made their first contribution in seanmonstar/reqwest#2868

Full Changelog: seanmonstar/reqwest@v0.12.24...v0.12.25

Changelog

Sourced from reqwest's changelog.

v0.12.26

• Fix sending Accept-Encoding header only with values configured with reqwest, regardless of underlying tower-http config.

v0.12.25

• Add Error::is_upgrade() to determine if the error was from an HTTP upgrade.
• Fix sending Proxy-Authorization if only username is configured.
• Fix sending Proxy-Authorization to HTTPS proxies when the target is HTTP.
• Refactor internal decompression handling to use tower-http.

Commits

• 01f03a4 v0.12.26
• e908f57 fix(http3): correct compression defaults (#2890)
• 509c904 fix: disable default compression from tower-http if not enabled in reqwest (#...
• 896aaea deps: update cookie_store to 0.22 (#2886)
• f156a9f v0.12.25
• fc1ff4f fix(proxy): forward Proxy-Authorization header to HTTPS proxies for HTTP targ...
• b7c3712 Use decompression from tower-http (#2840)
• 74e6f84 feat(error): add is_upgrade method to detect protocol upgrade errors (#2822)
• c0c06b7 fix: send proxy-authorization even with empty password (#2868)
• a2aa5a3 chore: minor improvement for docs (#2862)
• Additional commits viewable in compare view

Updates crypto-bigint from 0.7.0-rc.8 to 0.7.0-rc.10

Commits

• 9cbea3a v0.7.0-rc.10 (#1002)
• 1ed6ce9 Bump rand_core to v0.10.0-rc-2 (#1001)
• 25dd7aa Bump hex-literal from 1.0.0 to 1.1.0 (#997)
• e66b783 chore: make some documents clearer (#993)
• 572c035 Bump crate-ci/typos from 1.38.0 to 1.39.0 (#1000)
• 56e6c4a Bump proptest from 1.8.0 to 1.9.0 (#996)
• 7ba1398 v0.7.0-rc.9 (#989)
• 215e6e4 Make AMM-based modular pow function generic (#988)
• 303845f BoxedMontyForm::pow cleanups (#987)
• f2a47ec Optimize checked multiplication and squaring (#983)
• Additional commits viewable in compare view

Updates block-padding from 0.4.0-rc.4 to 0.4.2

Commits

• 6c8370f block-padding: add 'static bound to Padding (#1248)
• 11783c8 ci: bump actions/checkout from 5 to 6 (#1247)
• bef1d6d Release block-buffer v0.11.0 (#1246)
• 5c88fe4 hex-literal: add support for colon-delimited literals (#1244)
• c210dd6 Release blobby v0.4.0 (#1238)
• 9118661 block-padding: fix pad_detached for NoPadding and ZeroPadding (#1227)
• a3045ea Use the standard order of [package] fields (#1237)
• a66ed6d Release inout v0.2.0 (#1235)
• e0020c5 Release block-padding v0.4.0 (#1233)
• c9f7bfe block-buffer: fix typo (#1234)
• Additional commits viewable in compare view

Updates block-buffer from 0.11.0-rc.5 to 0.11.0

Commits

• bef1d6d Release block-buffer v0.11.0 (#1246)
• 5c88fe4 hex-literal: add support for colon-delimited literals (#1244)
• c210dd6 Release blobby v0.4.0 (#1238)
• 9118661 block-padding: fix pad_detached for NoPadding and ZeroPadding (#1227)
• a3045ea Use the standard order of [package] fields (#1237)
• a66ed6d Release inout v0.2.0 (#1235)
• e0020c5 Release block-padding v0.4.0 (#1233)
• c9f7bfe block-buffer: fix typo (#1234)
• 64c135a Update Cargo.lock
• 1609b3f build(deps): bump digest from 0.11.0-rc.2 to 0.11.0-rc.3 (#1231)
• Additional commits viewable in compare view

Updates password-hash from 0.6.0-rc.1 to 0.6.0-rc.6

Commits

• 7ecfdeb password-hash v0.6.0-rc.6 (#2127)
• 19aa016 password-hash: add rand_core feature (#2126)
• 1cfd410 password-hash v0.6.0-rc.5 (#2125)
• 94ae5be password-hash: impl From\<phc::Error> for Error (#2124)
• c45480e password-hash: restore getrandom feature (#2123)
• c1a92e9 password-hash: make PasswordVerifier\<H: ?Sized> (#2122)
• 875f21b password-hash: add CustomizedPasswordHasher::hash_password_with_params (#2121)
• 8bb7b93 password-hash: relax FromStr error bounds (#2120)
• e7b9861 password-hash v0.6.0-rc.4 (#2119)
• 3e09521 password-hash: remove McfHasher::verify_mcf_hash (#2118)
• Additional commits viewable in compare view

Updates pem-rfc7468 from 1.0.0-rc.3 to 1.0.0

Commits

• 8526cc6 pem-rfc7468 v1.0.0 (#2096)
• 02fdf7d der: make PemReader\<'_> impl Reader\<'static> (#2095)
• 0c63159 der: have PemReader decode to Cow::Owned (#2094)
• c8ff2bd der: impl DecodeValue/EncodeValue/Tagged for Cow (#2093)
• c916ce1 cms+x509-cert+x509-ocsp: bump rsa to v0.10.0-rc.10 (#2092)
• 36e5c5a README.md(s): update MSRV info (#2091)
• 2bc9a73 pkcs5: bump scrypt dependency to v0.12.0-rc.3 (#2090)
• e031c36 pkcs8 v0.11.0-rc.8 (#2089)
• 490993a pkcs5 v0.8.0-rc.9 (#2087)
• 507f79b chore(deps): bump the all-deps group across 1 directory with 19 updates (#2088)
• Additional commits viewable in compare view

Updates elliptic-curve from 0.14.0-rc.15 to 0.14.0-rc.16

Commits

• b604e17 elliptic-curve v0.14.0-rc.16 (#2045)
• b79f84d digest: tweak CollisionResistance docs (#2044)
• 06e4e1a Update Cargo.lock (#2039)
• 0a3871f build(deps): bump crate-ci/typos from 1.38.0 to 1.38.1 (#2040)
• dd8e4ce elliptic-curve: use base16ct::mixed in FromStr impl for ScalarValue (#2...
• c6ab1b1 Derive Default for enums (#2035)
• 8a76ab7 chore(deps): bump block-padding from 0.4.0-rc.4 to 0.4.1 (#2032)
• 8d36026 build(deps): bump crate-ci/typos from 1.36.3 to 1.38.0 (#2034)
• c1047be build(deps): bump crate-ci/typos from 1.36.2 to 1.36.3 (#2031)
• 4fb20b5 build(deps): bump hybrid-array from 0.4.4 to 0.4.5 in the all-deps group (#2030)
• Additional commits viewable in compare view

Updates pkcs8 from 0.11.0-rc.7 to 0.11.0-rc.8

Commits

• e031c36 pkcs8 v0.11.0-rc.8 (#2089)
• 490993a pkcs5 v0.8.0-rc.9 (#2087)
• 507f79b chore(deps): bump the all-deps group across 1 directory with 19 updates (#2088)
• ef0c838 der: docs: rename variable encoder -> writer and improve example (#2078)
• d5b06c5 Bump rand_core to v0.10.0-rc-2 (#2086)
• a152ff1 base64ct, base32ct: proptests for decoder equivalence with base32/64 (#2085)
• f4c5e14 base32ct: avoid panics when decoding inputs; enforce lengths (#2084)
• a551024 chore(deps): bump crate-ci/typos from 1.38.1 to 1.39.0 (#2082)
• 19aa61b der: track reader error position in ObjectIdentifier::decode_value (#2080)
• 5755d9b der: track reader error position in GeneralizedTime::decode_value (#2079)
• Additional commits viewable in compare view

Updates rfc6979 from 0.5.0-rc.1 to 0.5.0-rc.2

Commits

• fe23a8c rfc6979 v0.5.0-rc.2 (#1089)
• 5a2c2e2 Cargo.lock: update dependencies (#1088)
• 3624d47 ecdsa v0.17.0-rc.8 (#1087)
• 6fe8fa1 ecdsa: bump elliptic-curve to v0.14.0-rc.16 (#1086)
• fd12ac0 Switch from doc_auto_cfg to doc_cfg (#1085)
• b58f47a ml-dsa: run tests on no_std targets (#1080)
• b383808 CI: bump typos to v1.38.1 (#1084)
• 21e60ba chore: apply unreachable_pub lint (#1062)
• 305bad5 ecdsa: re-export blobby (#1082)
• 6cf535b ml-dsa: disable default features for sha3 (#1078)
• Additional commits viewable in compare view

Updates crypto-primes from 0.7.0-pre.3 to 0.7.0-pre.4

Changelog

Sourced from crypto-primes's changelog.

[0.7.0-pre.4] - 2025-11-06

Changed

• Bumped rand_core to 0.10.0-rc.2 and crypto-bigint to 0.7.0-pre.10. (#95)

#95: entropyxyz/crypto-primes#95

Commits

• db1c2b4 v0.7.0-pre.4 released
• 25af661 chore: align rustfmt.toml with Cargo.toml (#96)
• d0f86f4 bump rand_core to 0.10.0-rc.2 (#95)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions