chore(deps): bump the all-deps group with 18 updates

[dependabot]

Bumps the all-deps group with 18 updates:

Package	From	To
sha3	0.11.0-rc.9	0.11.0
tokio	1.50.0	1.51.0
ctutils	0.4.0	0.4.2
hybrid-array	0.4.9	0.4.10
toml	0.9.12+spec-1.1.0	1.0.7+spec-1.1.0
cmov	0.5.2	0.5.3
fastrand	2.3.0	2.4.0
hkdf	0.13.0-rc.5	0.13.0
indexmap	2.13.0	2.13.1
libc	0.2.183	0.2.184
rustcrypto-ff	0.14.0-rc.0	0.14.0-rc.1
rustcrypto-group	0.14.0-rc.0	0.14.0-rc.1
salsa20	0.11.0-rc.2	0.11.0
semver	1.0.27	1.0.28
serde_spanned	1.1.0	1.1.1
tokio-macros	2.6.1	2.7.0
toml_parser	1.1.0+spec-1.1.0	1.1.2+spec-1.1.0
toml_writer	1.1.0+spec-1.1.0	1.1.1+spec-1.1.0

Updates sha3 from 0.11.0-rc.9 to 0.11.0

Commits

• 6c69ea9 Release sha3 v0.11.0 (#816)
• c46466f sha3: move cSHAKE and TurboSHAKE into separate crates (#815)
• b5051e5 Cut new releases (#812)
• 451c446 md5: replace force-soft crate feature with md5_backend configuration flag...
• 2f00175 Release sha1 v0.11.0 (#810)
• 07d370c sha1: refactor backends selection (#808)
• 7c7cb76 Fix md5 project link in README (#809)
• ffe0939 Release sha2 0.11.0 (#806)
• 8991b65 Use the standard order of the [package] section fields (#807)
• 3d2bc57 sha2: refactor backends (#802)
• Additional commits viewable in compare view

Updates tokio from 1.50.0 to 1.51.0

Release notes

Sourced from tokio's releases.

Tokio v1.51.0

1.51.0 (April 3rd, 2026)

Added

• net: implement get_peer_cred on Hurd (#7989)
• runtime: add tokio::runtime::worker_index() (#7921)
• runtime: add runtime name (#7924)
• runtime: stabilize LocalRuntime (#7557)
• wasm: add wasm32-wasip2 networking support (#7933)

Changed

• runtime: steal tasks from the LIFO slot (#7431)

Fixed

• docs: do not show "Available on non-loom only." doc label (#7977)
• macros: improve overall macro hygiene (#7997)
• sync: fix notify_waiters priority in Notify (#7996)
• sync: fix panic in Chan::recv_many when called with non-empty vector on closed channel (#7991)

#7431: tokio-rs/tokio#7431 #7557: tokio-rs/tokio#7557 #7921: tokio-rs/tokio#7921 #7924: tokio-rs/tokio#7924 #7933: tokio-rs/tokio#7933 #7977: tokio-rs/tokio#7977 #7989: tokio-rs/tokio#7989 #7991: tokio-rs/tokio#7991 #7996: tokio-rs/tokio#7996 #7997: tokio-rs/tokio#7997

Commits

• 0af06b7 chore: prepare Tokio v1.51.0 (#8005)
• 01a7f1d chore: prepare tokio-macros v2.7.0 (#8004)
• eeb55c7 runtime: steal tasks from the LIFO slot (#7431)
• 1fc450a runtime: stabilize LocalRuntime (#7557)
• 324218f Merge tag 'tokio-1.47.4' (#8003)
• aa65d0d chore: prepare Tokio v1.47.4 (#8002)
• bf18ed4 sync: fix panic in Chan::recv_many when called with non-empty vector on clo...
• 43134f1 wasm: add wasm32-wasip2 networking support (#7933)
• b4c3246 macros: improve overall macro hygiene (#7997)
• 7947fa4 rt: add runtime name (#7924)
• Additional commits viewable in compare view

Updates ctutils from 0.4.0 to 0.4.2

Commits

• 53f7fc3 ctutils v0.4.2 (#1469)
• 9c43209 build(deps): bump proptest from 1.10.0 to 1.11.0 (#1460)
• 24d7f8b digest-io: fix release date of v0.1.0 (#1468)
• 416ddb0 Release digest-io v0.1.0 (#1462)
• 3d85afd cmov v0.5.3 (#1467)
• 272e59f ctutils v0.4.1 (#1466)
• 08f16f2 ctutils: add subtle migration guide (#1465)
• ae493bf build(deps): bump hybrid-array from 0.4.7 to 0.4.10 (#1464)
• 7910b5b zeroize_derive: make version *-pre (#1458)
• 3cc4e95 block-buffer: release v0.12.0 (#1456)
• Additional commits viewable in compare view

Updates hybrid-array from 0.4.9 to 0.4.10

Changelog

Sourced from hybrid-array's changelog.

0.4.10 (2026-03-31)

Added

• AsMut<Array<T, U>> impl for Array<T, U> (#193)
• HQC KEM sizes (#195)

#193: RustCrypto/hybrid-array#193 #195: RustCrypto/hybrid-array#195

Commits

• 2441bd3 v0.4.10 (#196)
• d287521 Add HQC KEM sizes (#195)
• e0b937d Add tests for AsRef/AsMut impls (#194)
• a00333e Add AsMut\<Array<T, U>> impl for Array\<T, U> (#193)
• 92d2a41 Add tests for AsArrayRef/AsArrayMut impls on Array (#192)
• 56ec07c README.md: add Codecov badge (#191)
• de71a03 Add tests for AsArrayMut, AsArrayRef, and SliceExt traits (#190)
• 0d35533 Add serde tests using postcard (#189)
• 91c902c Add tests for iter module (#188)
• 3321f04 Add tests for Array::cast_slice_to_core(_mut) (#187)
• Additional commits viewable in compare view

Updates toml from 0.9.12+spec-1.1.0 to 1.0.7+spec-1.1.0

Commits

• 9079072 chore: Release
• 06f2ba3 docs: Update changelog
• 7fc5ce1 chore: Update to winnow 1.0.0 (#1121)
• bf5a157 chore: Update to winnow 1.0.0
• 0aeb2df chore(deps): Update Rust crate snapbox to v1 (#1112)
• 9a34541 chore(deps): Update Rust crate snapbox to v1
• a576cae docs(gh): Add sponsor link
• a09707e chore: Release
• 7b0feaa docs: Update changelog
• 2902954 Revert "fix(toml): Track dotted key for spans" (#1119)
• Additional commits viewable in compare view

Updates cmov from 0.5.2 to 0.5.3

Commits

• 3d85afd cmov v0.5.3 (#1467)
• 272e59f ctutils v0.4.1 (#1466)
• 08f16f2 ctutils: add subtle migration guide (#1465)
• ae493bf build(deps): bump hybrid-array from 0.4.7 to 0.4.10 (#1464)
• 7910b5b zeroize_derive: make version *-pre (#1458)
• 3cc4e95 block-buffer: release v0.12.0 (#1456)
• 730762f block-buffer: add BlockSizes trait and use it in buffer bounds (#1455)
• 359c374 ci: add workspace/lock job (#1453)
• dfccf78 ci: run all workflows on push to master (#1454)
• b6ba0c6 Remove opaque-debug and collectable (#1452)
• Additional commits viewable in compare view

Updates fastrand from 2.3.0 to 2.4.0

Release notes

Sourced from fastrand's releases.

v2.4.0

• Bump MSRV to 1.63. (#104)
• Improve quality of f32/f64 generation. (#103)
• Add f{32,64}_inclusive and Rng::f{32,64}_inclusive. (#103)
• Make Rng::with_seed const. (#107)
• Update getrandom to 0.3. (#104)

Changelog

Sourced from fastrand's changelog.

Version 2.4.0

• Bump MSRV to 1.63. (#104)
• Improve quality of f32/f64 generation. (#103)
• Add f{32,64}_inclusive and Rng::f{32,64}_inclusive. (#103)
• Make Rng::with_seed const. (#107)
• Update getrandom to 0.3. (#104)

Commits

• 1fd5bbb Release 2.4.0 (#116)
• 074345b chore: make some documents clearer (#115)
• ce9a48c chore: update dependencies to latest versions and bump MSRV to 1.63 (#104)
• 978dde1 ci: Use reusable workflows for clippy
• 8561f13 bench: Add benchmark of f32()
• 1def02c Fix rustdoc::broken_intra_doc_links warning
• c2cbdd4 Remove manual doc(cfg(..))
• cf08ee2 ci: Use taiki-e/checkout-action action
• 229de12 ci: Use cargo-hack's --rust-version flag for msrv check
• 8b2892d Re-add tests that were accidentally removed when resolving conflicts
• Additional commits viewable in compare view

Updates hkdf from 0.13.0-rc.5 to 0.13.0

Commits

• bfb3b20 hkdf v0.13.0 (#195)
• 8834f33 Workspace-level lint configuration (#194)
• b802abc Add Trusted Publishing config (#193)
• 9d0a675 hkdf v0.13.0-rc.6 (#192)
• c46732a Bump hmac to v0.13 (#191)
• 29c07ab Bump digest to v0.11 (#190)
• ef4a3ac build(deps): bump the all-deps group across 1 directory with 9 updates (#189)
• See full diff in compare view

Updates indexmap from 2.13.0 to 2.13.1

Changelog

Sourced from indexmap's changelog.

2.13.1 (2026-04-02)

• Made some Slice methods const:
  • map::Slice::{first,last,split_at,split_at_checked,split_first,split_last}
  • set::Slice::{first,last,split_at,split_at_checked,split_first,split_last}

Commits

• 0b2adfe Merge pull request #434 from cuviper/const-slice
• afa3caf Release 2.13.1
• 906a7ce Make Slice::{first,last,split_*} methods const
• See full diff in compare view

Updates libc from 0.2.183 to 0.2.184

Release notes

Sourced from libc's releases.

0.2.184

MSRV

This release increases the MSRV of libc to 1.65. With this update, you can now always use the core::ffi::c_* types with libc definitions, since libc has been changed to reexport from core rather than redefining them. (This usually worked before but had edge cases.) (#4972)

Added

• BSD: Add IP_MINTTL to bsd (#5026)
• Cygwin: Add TIOCM_DSR (#5031)
• FreeBSD: Added xfile structe and file descriptor types (#5002)
• Linux: Add CAN netlink bindings (#5011)
• Linux: Add struct ethhdr (#4239)
• Linux: Add struct ifinfomsg (#5012)
• Linux: Define max_align_t for riscv64 (#5029)
• NetBSD: Add missing CLOCK_ constants (#5020)
• NuttX: Add _SC_HOST_NAME_MAX (#5004)
• VxWorks: Add flock and F_*LCK constants (#4043)
• WASI: Add all _SC_* sysconf constants (#5023)

Deprecated

The remaining fixed-width integer aliases, __uint128_t, __uint128, __int128_t, and __int128, have been deprecated. Use i128 and u128 instead. (#4343)

Fixed

• breaking Redox: Fix signal action constant types (#5009)
• EspIDF: Correct the value of DT_* constants (#5034)
• Redox: Fix locale values and add RTLD_NOLOAD, some TCP constants (#5025)
• Various: Use Padding::new(<zeroed>) rather than Padding::uninit() (#5036)

Changed

• potentially breaking Linux: Add new fields to struct ptrace_syscall_info (#4966)
• Re-export core::ffi integer types rather than redefining (#5015)
• Redox: Update F_DUPFD, IP, and TCP constants to match relibc (#4990)

Changelog

Sourced from libc's changelog.

0.2.184 - 2026-04-01

MSRV

This release increases the MSRV of libc to 1.65. With this update, you can now always use the core::ffi::c_* types with libc definitions, since libc has been changed to reexport from core rather than redefining them. (This usually worked before but had edge cases.) (#4972)

Added

• BSD: Add IP_MINTTL to bsd (#5026)
• Cygwin: Add TIOCM_DSR (#5031)
• FreeBSD: Added xfile structe and file descriptor types (#5002)
• Linux: Add CAN netlink bindings (#5011)
• Linux: Add struct ethhdr (#4239)
• Linux: Add struct ifinfomsg (#5012)
• Linux: Define max_align_t for riscv64 (#5029)
• NetBSD: Add missing CLOCK_ constants (#5020)
• NuttX: Add _SC_HOST_NAME_MAX (#5004)
• VxWorks: Add flock and F_*LCK constants (#4043)
• WASI: Add all _SC_* sysconf constants (#5023)

Deprecated

The remaining fixed-width integer aliases, __uint128_t, __uint128, __int128_t, and __int128, have been deprecated. Use i128 and u128 instead. (#4343)

Fixed

• breaking Redox: Fix signal action constant types (#5009)
• EspIDF: Correct the value of DT_* constants (#5034)
• Redox: Fix locale values and add RTLD_NOLOAD, some TCP constants (#5025)
• Various: Use Padding::new(<zeroed>) rather than Padding::uninit() (#5036)

Changed

• potentially breaking Linux: Add new fields to struct ptrace_syscall_info (#4966)
• Re-export core::ffi integer types rather than redefining (#5015)
• Redox: Update F_DUPFD, IP, and TCP constants to match relibc (#4990)

Commits

• b1fd610 chore: Release libc 0.2.184
• f596819 ci: Don't enforce cargo-semver-checks
• 4645f60 linux: update ptrace_syscall_info struct
• 14cbbec types: Remove Padding::uninit
• b5dcda8 pthread: Use Padding::new(\<zeroed>) rather than Padding::uninit()
• bbb1c5d types: Add a new function to Padding
• df06e43 Fix locale values and add RTLD_NOLOAD, some TCP constants
• 078f5c6 newlib/espidf: Move DT_* to espidf/mod.rs
• d32b83d Add IP_MINTTL to bsd
• 939e0ec Define max_align_t for riscv64-linux
• Additional commits viewable in compare view

Updates rustcrypto-ff from 0.14.0-rc.0 to 0.14.0-rc.1

Commits

• 38029d3 v0.14.0-rc.1 (#12)
• 724b9cf Bump rand to v0.10 (#11)
• 6d694c9 Add PrimeField::to_le_repr (#10)
• See full diff in compare view

Updates rustcrypto-group from 0.14.0-rc.0 to 0.14.0-rc.1

Commits

• 2b828b9 v0.14.0-rc.1 (#13)
• 0d3091d Have wNAF use PrimeField::to_le_repr for scalars (#12)
• 1de70ab Have wNAF use PrimeField::to_le_repr for scalars (#12)
• 50ad1c4 Bump rand dependency to v0.10 (#11)
• See full diff in compare view

Updates salsa20 from 0.11.0-rc.2 to 0.11.0

Commits

• b516422 Cut new releases dependent on cipher v0.5 (#553)
• a267e98 rc4: remove KeySize type parameter and Rc4Core type (#557)
• 7459163 ci: add doc, typos, and lockfile jobs (#555)
• acb164f rc4: refactor tests (#556)
• c46af41 Move usage examples to readme (#554)
• bfa1f34 chacha20: miscellaneous cleanups (#550)
• f2bf4e0 Remove unnecessary clones from examples (#549)
• 7da1242 hc-256: add Key and Iv type aliases (#547)
• e65dd16 hc-256: tweak docs for Hc256 and Hc256Core (#548)
• 023c0ba Bump cipher to v0.5.1 (#546)
• Additional commits viewable in compare view

Updates semver from 1.0.27 to 1.0.28

Release notes

Sourced from semver's releases.

1.0.28

• Documentation improvements

Commits

• 7625c7a Release 1.0.28
• fd404d0 Merge pull request 351 from czy-29/master
• f75f26e The doc_auto_cfg and doc_cfg features have been merged
• 9e2bfa2 Enable serde on docs.rs and automatically add serde flag to the docs
• 8591f23 Unpin CI miri toolchain
• 66bdd2c Pin CI miri to nightly-2026-02-11
• 324ffce Switch from cargo bench to criterion
• 34133a5 Update actions/upload-artifact@v5 -> v6
• 7f935ff Update actions/upload-artifact@v4 -> v5
• c07fb91 Switch from test::black_box to std::hint::black_box
• Additional commits viewable in compare view

Updates serde_spanned from 1.1.0 to 1.1.1

Commits

• 9db8aad chore: Release
• e55a663 docs: Update changelog
• c11d7d7 Optimisations (#1133)
• b8578fa perf(edit): Remove redundant Vec collect
• 8119d76 perf(edit): Reduce allocs in append_values
• f5ba161 fix(parser): Fix stack overflow in value() on repeated '=' (#1131)
• a77c61e fix(parser): Stack overflow on repeated '='
• 64284e5 fix(toml): convert recursion to iteration (#1130)
• 9361907 fix(toml): Convert recursion to iteration
• dd40573 feat(edit): Support replace() on ArrayOfTables (#1127)
• Additional commits viewable in compare view

Updates tokio-macros from 2.6.1 to 2.7.0

Commits

• 01a7f1d chore: prepare tokio-macros v2.7.0 (#8004)
• eeb55c7 runtime: steal tasks from the LIFO slot (#7431)
• 1fc450a runtime: stabilize LocalRuntime (#7557)
• 324218f Merge tag 'tokio-1.47.4' (#8003)
• aa65d0d chore: prepare Tokio v1.47.4 (#8002)
• bf18ed4 sync: fix panic in Chan::recv_many when called with non-empty vector on clo...
• 43134f1 wasm: add wasm32-wasip2 networking support (#7933)
• b4c3246 macros: improve overall macro hygiene (#7997)
• 7947fa4 rt: add runtime name (#7924)
• 9f13217 sync: fix notify_waiters priority in Notify (#7996)
• Additional commits viewable in compare view

Updates toml_parser from 1.1.0+spec-1.1.0 to 1.1.2+spec-1.1.0

Commits

• a3d0047 chore: Release
• cc37615 docs: Update changelog
• 7f5e9e1 fix(parser): Consolidate invalid unquoted key into one error (#1138)
• 52feb90 fix(parser): Consolidate invalid unquoted key into one error
• aad85d4 chore(deps): Update j178/prek-action action to v2 (#1136)
• 8b1ac44 chore(deps): Update compatible (dev) (#1135)
• 9effd79 chore(deps): Update j178/prek-action action to v2
• 9db8aad chore: Release
• e55a663 docs: Update changelog
• c11d7d7 Optimisations (#1133)
• Additional commits viewable in compare view

Updates toml_writer from 1.1.0+spec-1.1.0 to 1.1.1+spec-1.1.0

Commits

• 9db8aad chore: Release
• e55a663 docs: Update changelog
• c11d7d7 Optimisations (#1133)
• b8578fa perf(edit): Remove redundant Vec collect
• 8119d76 perf(edit): Reduce allocs in append_values
• f5ba161 fix(parser): Fix stack overflow in value() on repeated '=' (#1131)
• a77c61e fix(parser): Stack overflow on repeated '='
• 64284e5 fix(toml): convert recursion to iteration (#1130)
• 9361907 fix(toml): Convert recursion to iteration
• dd40573 feat(edit): Support replace() on ArrayOfTables (#1127)
• Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
toml	[< 0.8, > 0.7.6]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions