Dependency Dashboard

[cachekit-renovate-bot]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.

Repository Problems

Renovate tried to run on this repository, but found these problems.

• ⚠️ WARN: Cannot access vulnerability alerts. Please ensure permissions have been granted.

Awaiting Schedule

The following updates are awaiting their schedule. To get an update now, click on a checkbox below.

• chore(deps): update actions/attest-build-provenance digest to e8998f9
• chore(deps): update actions/attest-sbom digest to bd218ad
• chore(deps): update actions/cache digest to caa2961
• chore(deps): update actions/checkout digest to df4cb1c
• chore(deps): update dtolnay/rust-toolchain digest to 67ef31d
• chore(deps): update github/codeql-action digest to 8aad20d
• chore(deps): update googleapis/release-please-action digest to 5c625bf
• chore(deps): update all non-major dependencies (aes, bytes, cbindgen, generic-array, getrandom, hkdf, hmac, lz4_flex, sha2, zeroize)
• chore(deps): update dependency rust to 1.96
• chore(deps): update rust-dev-deps (criterion, serde_json)
• chore(deps): update actions/attest-build-provenance action to v4
• chore(deps): update actions/attest-sbom action to v4
• chore(deps): update actions/cache action to v6
• chore(deps): update actions/checkout action to v7
• chore(deps): update actions/create-github-app-token action to v3
• chore(deps): update googleapis/release-please-action action to v5
• chore(deps): update rust crate generic-array to v1
• chore(deps): lock file maintenance
• 🔐 Create all awaiting schedule PRs at once 🔐

Detected Dependencies

cargo (2)

Cargo.toml (24)

• thiserror 2.0
• serde 1.0
• serde_bytes 0.11
• rmp-serde 1.3
• lz4_flex 0.12 → [Updates: 0.13]
• xxhash-rust 0.8
• zeroize 1.8 → [Updates: 1.8]
• hkdf 0.12 → [Updates: 0.13]
• sha2 0.10 → [Updates: 0.11]
• hmac 0.12 → [Updates: 0.13]
• generic-array 0.14 → [Updates: 0.14, 1.0]
• getrandom 0.2 → [Updates: 0.4]
• aes-gcm 0.10 → [Updates: 0.11]
• aes 0.8 → [Updates: 0.9]
• bytes 1.5 → [Updates: 1.5]
• byteorder 1.5
• proptest 1.4
• serde_json 1.0 → [Updates: 1.0]
• blake2 0.10
• hex 0.4
• aes-gcm 0.10 → [Updates: 0.11]
• criterion 0.5 → [Updates: 0.8]
• cbindgen 0.29 → [Updates: 0.29]
• ring 0.17

fuzz/Cargo.toml (3)

• libfuzzer-sys 0.4
• arbitrary 1
• rmp-serde 1

github-actions (5)

.github/workflows/attestation-check.yml (1)

• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd → [Updates: v7, v6]

.github/workflows/ci.yml (6)

• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd → [Updates: v7, v6]
• dtolnay/rust-toolchain master@3c5f7ea28cd621ae0bf5283f0e981fb97b8a7af9 → [Updates: master]
• Swatinem/rust-cache v2@e18b497796c12c097a38f9edb9d0641fb99eee32
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd → [Updates: v7, v6]
• dtolnay/rust-toolchain stable@29eef336d9b2848a0b548edc03f92a220660cdb8
• Swatinem/rust-cache v2@e18b497796c12c097a38f9edb9d0641fb99eee32

.github/workflows/codeql.yml (4)

• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd → [Updates: v7, v6]
• dtolnay/rust-toolchain stable@29eef336d9b2848a0b548edc03f92a220660cdb8
• github/codeql-action v4@95e58e9a2cdfd71adc6e0353d5c52f41a045d225 → [Updates: v4]
• github/codeql-action v4@95e58e9a2cdfd71adc6e0353d5c52f41a045d225 → [Updates: v4]

.github/workflows/release.yml (7)

• actions/create-github-app-token v2@fee1f7d63c2ff003460e3d139729b119787bc349 → [Updates: v3]
• googleapis/release-please-action v4@8b8fd2cc23b2e18957157a9d923d75aa0c6f6ad5 → [Updates: v5, v4]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd → [Updates: v7, v6]
• dtolnay/rust-toolchain stable@29eef336d9b2848a0b548edc03f92a220660cdb8
• Swatinem/rust-cache v2@e18b497796c12c097a38f9edb9d0641fb99eee32
• actions/attest-build-provenance v2@96b4a1ef7235a096b17240c259729fdd70c83d45 → [Updates: v4, v2]
• actions/attest-sbom v2@10926c72720ffc3f7b666661c8e55b1344e2a365 → [Updates: v4, v2]

.github/workflows/security.yml (24)

• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd → [Updates: v7, v6]
• dtolnay/rust-toolchain stable@29eef336d9b2848a0b548edc03f92a220660cdb8
• actions/cache v5@27d5ce7f107fe9357f9df03efb73ab90386fccae → [Updates: v6, v5]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd → [Updates: v7, v6]
• dtolnay/rust-toolchain nightly@5b842231ba77f5c045dba54ac5560fed2db780e2
• actions/cache v5@27d5ce7f107fe9357f9df03efb73ab90386fccae → [Updates: v6, v5]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd → [Updates: v7, v6]
• dtolnay/rust-toolchain nightly@5b842231ba77f5c045dba54ac5560fed2db780e2
• actions/cache v5@27d5ce7f107fe9357f9df03efb73ab90386fccae → [Updates: v6, v5]
• actions/upload-artifact v7@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd → [Updates: v7, v6]
• dtolnay/rust-toolchain master@3c5f7ea28cd621ae0bf5283f0e981fb97b8a7af9 → [Updates: master]
• actions/cache v5@27d5ce7f107fe9357f9df03efb73ab90386fccae → [Updates: v6, v5]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd → [Updates: v7, v6]
• dtolnay/rust-toolchain master@3c5f7ea28cd621ae0bf5283f0e981fb97b8a7af9 → [Updates: master]
• actions/cache v5@27d5ce7f107fe9357f9df03efb73ab90386fccae → [Updates: v6, v5]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd → [Updates: v7, v6]
• dtolnay/rust-toolchain master@3c5f7ea28cd621ae0bf5283f0e981fb97b8a7af9 → [Updates: master]
• actions/cache v5@27d5ce7f107fe9357f9df03efb73ab90386fccae → [Updates: v6, v5]
• actions/upload-release-asset v1@e8f9f06c4b078e705bd2ea027f0926603fc9b4d5
• rust stable
• rust stable
• rust 1.85 → [Updates: 1.96]
• rust 1.85 → [Updates: 1.96]