From 4151cdbfb4915645dbc5750d1139acd1232b7245 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 12 May 2026 01:18:26 +0000 Subject: [PATCH] deps(rust): bump the rust-all group across 1 directory with 10 updates Bumps the rust-all group with 10 updates in the / directory: | Package | From | To | | --- | --- | --- | | [tokio](https://github.com/tokio-rs/tokio) | `1.51.1` | `1.52.3` | | [jsonwebtoken](https://github.com/Keats/jsonwebtoken) | `10.3.0` | `10.4.0` | | [clap](https://github.com/clap-rs/clap) | `4.6.0` | `4.6.1` | | [libc](https://github.com/rust-lang/libc) | `0.2.184` | `0.2.186` | | [data-encoding](https://github.com/ia0/data-encoding) | `2.10.0` | `2.11.0` | | [uuid](https://github.com/uuid-rs/uuid) | `1.23.0` | `1.23.1` | | [ml-dsa](https://github.com/RustCrypto/signatures) | `0.1.0-rc.8` | `0.1.0-rc.11` | | [open](https://github.com/Byron/open-rs) | `5.3.3` | `5.3.5` | | [rpassword](https://github.com/conradkleinespel/rpassword) | `7.4.0` | `7.5.2` | | [tss-esapi](https://github.com/parallaxsecond/rust-tss-esapi) | `7.6.0` | `7.7.0` | Updates `tokio` from 1.51.1 to 1.52.3 - [Release notes](https://github.com/tokio-rs/tokio/releases) - [Commits](https://github.com/tokio-rs/tokio/compare/tokio-1.51.1...tokio-1.52.3) Updates `jsonwebtoken` from 10.3.0 to 10.4.0 - [Changelog](https://github.com/Keats/jsonwebtoken/blob/master/CHANGELOG.md) - [Commits](https://github.com/Keats/jsonwebtoken/compare/v10.3.0...v10.4.0) Updates `clap` from 4.6.0 to 4.6.1 - [Release notes](https://github.com/clap-rs/clap/releases) - [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md) - [Commits](https://github.com/clap-rs/clap/compare/clap_complete-v4.6.0...clap_complete-v4.6.1) Updates `libc` from 0.2.184 to 0.2.186 - [Release notes](https://github.com/rust-lang/libc/releases) - [Changelog](https://github.com/rust-lang/libc/blob/0.2.186/CHANGELOG.md) - [Commits](https://github.com/rust-lang/libc/compare/0.2.184...0.2.186) Updates `data-encoding` from 2.10.0 to 2.11.0 - [Commits](https://github.com/ia0/data-encoding/compare/v2.10.0...v2.11.0) Updates `uuid` from 1.23.0 to 1.23.1 - [Release notes](https://github.com/uuid-rs/uuid/releases) - [Commits](https://github.com/uuid-rs/uuid/compare/v1.23.0...v1.23.1) Updates `ml-dsa` from 0.1.0-rc.8 to 0.1.0-rc.11 - [Commits](https://github.com/RustCrypto/signatures/compare/ml-dsa/v0.1.0-rc.8...ml-dsa/v0.1.0-rc.11) Updates `open` from 5.3.3 to 5.3.5 - [Release notes](https://github.com/Byron/open-rs/releases) - [Changelog](https://github.com/Byron/open-rs/blob/main/changelog.md) - [Commits](https://github.com/Byron/open-rs/compare/v5.3.3...v5.3.5) Updates `rpassword` from 7.4.0 to 7.5.2 - [Release notes](https://github.com/conradkleinespel/rpassword/releases) - [Commits](https://github.com/conradkleinespel/rpassword/compare/v7.4.0...v7.5.2) Updates `tss-esapi` from 7.6.0 to 7.7.0 - [Release notes](https://github.com/parallaxsecond/rust-tss-esapi/releases) - [Changelog](https://github.com/parallaxsecond/rust-tss-esapi/blob/main/CHANGELOG.md) - [Commits](https://github.com/parallaxsecond/rust-tss-esapi/compare/tss-esapi-7.6.0...tss-esapi-7.7.0) --- updated-dependencies: - dependency-name: tokio dependency-version: 1.52.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rust-all - dependency-name: jsonwebtoken dependency-version: 10.4.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rust-all - dependency-name: clap dependency-version: 4.6.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rust-all - dependency-name: libc dependency-version: 0.2.186 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rust-all - dependency-name: data-encoding dependency-version: 2.11.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rust-all - dependency-name: uuid dependency-version: 1.23.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rust-all - dependency-name: ml-dsa dependency-version: 0.1.0-rc.11 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rust-all - dependency-name: open dependency-version: 5.3.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rust-all - dependency-name: rpassword dependency-version: 7.5.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rust-all - dependency-name: tss-esapi dependency-version: 7.7.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rust-all ... Signed-off-by: dependabot[bot] --- Cargo.lock | 108 ++++++++++++++++++++++++---------------- Cargo.toml | 2 +- pam-prmana/Cargo.toml | 6 +-- prmana-agent/Cargo.toml | 6 +-- prmana-core/Cargo.toml | 2 +- 5 files changed, 72 insertions(+), 52 deletions(-) diff --git a/Cargo.lock b/Cargo.lock index d07e0e5..a3420c8 100644 --- a/Cargo.lock +++ b/Cargo.lock @@ -156,9 +156,23 @@ checksum = "2af50177e190e07a26ab74f8b1efbfe2ef87da2116221318cb1c2e82baf7de06" [[package]] name = "bitfield" -version = "0.14.0" +version = "0.19.4" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "2d7e60934ceec538daadb9d8432424ed043a904d8e0243f3c6446bce549a46ac" +checksum = "21ba6517c6b0f2bf08be60e187ab64b038438f22dd755614d8fe4d4098c46419" +dependencies = [ + "bitfield-macros", +] + +[[package]] +name = "bitfield-macros" +version = "0.19.4" +source = "registry+https://github.com/rust-lang/crates.io-index" +checksum = "f48d6ace212fdf1b45fd6b566bb40808415344642b76c3224c07c8df9da81e97" +dependencies = [ + "proc-macro2", + "quote", + "syn", +] [[package]] name = "bitflags" @@ -248,9 +262,9 @@ dependencies = [ [[package]] name = "clap" -version = "4.6.0" +version = "4.6.1" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "b193af5b67834b676abd72466a96c1024e6a6ad978a1f484bd90b85c94041351" +checksum = "1ddb117e43bbf7dacf0a4190fef4d345b9bad68dfc649cb349e7d17d28428e51" dependencies = [ "clap_builder", "clap_derive", @@ -270,9 +284,9 @@ dependencies = [ [[package]] name = "clap_derive" -version = "4.6.0" +version = "4.6.1" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "1110bd8a634a1ab8cb04345d8d878267d57c3cf1b38d91b71af6686408bbca6a" +checksum = "f2ce8604710f6733aa641a2b3731eaa1e8b3d9973d5e3565da11800813f997a9" dependencies = [ "heck", "proc-macro2", @@ -415,7 +429,9 @@ version = "0.2.1" source = "registry+https://github.com/rust-lang/crates.io-index" checksum = "77727bb15fa921304124b128af125e7e3b968275d1b108b379190264f4423710" dependencies = [ + "getrandom 0.4.2", "hybrid-array", + "rand_core 0.10.0", ] [[package]] @@ -451,9 +467,9 @@ dependencies = [ [[package]] name = "data-encoding" -version = "2.10.0" +version = "2.11.0" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "d7a1e2f27636f116493b8b860f5546edb47c8d8f8ea73e1d2a20be88e28d1fea" +checksum = "a4ae5f15dda3c708c0ade84bfee31ccab44a3da4f88015ed22f63732abe300c8" [[package]] name = "dbus" @@ -883,6 +899,7 @@ dependencies = [ "cfg-if", "libc", "r-efi 6.0.0", + "rand_core 0.10.0", "wasip2", "wasip3", ] @@ -1027,6 +1044,7 @@ version = "0.4.10" source = "registry+https://github.com/rust-lang/crates.io-index" checksum = "3944cf8cf766b40e2a1a333ee5e9b563f854d5fa49d6a8ca2764e97c6eddb214" dependencies = [ + "ctutils", "typenum", "zeroize", ] @@ -1314,9 +1332,9 @@ dependencies = [ [[package]] name = "jsonwebtoken" -version = "10.3.0" +version = "10.4.0" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "0529410abe238729a60b108898784df8984c87f6054c9c4fcacc47e4803c1ce1" +checksum = "eba32bfb4ffdeaca3e34431072faf01745c9b26d25504aa7a6cf5684334fc4fc" dependencies = [ "aws-lc-rs", "base64 0.22.1", @@ -1327,6 +1345,7 @@ dependencies = [ "serde_json", "signature 2.2.0", "simple_asn1", + "zeroize", ] [[package]] @@ -1367,9 +1386,9 @@ checksum = "09edd9e8b54e49e587e4f6295a7d29c3ea94d469cb40ab8ca70b288248a81db2" [[package]] name = "libc" -version = "0.2.184" +version = "0.2.186" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "48f5d2a454e16a5ea0f4ced81bd44e4cfc7bd3a507b61887c99fd3538b28e4af" +checksum = "68ab91017fe16c622486840e4c83c9a37afeff978bd239b5293d61ece587de66" [[package]] name = "libdbus-sys" @@ -1497,27 +1516,28 @@ dependencies = [ [[package]] name = "ml-dsa" -version = "0.1.0-rc.8" +version = "0.1.0-rc.11" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "f5b2bb0ad6fa2b40396775bd56f51345171490fef993f46f91a876ecdbdaea55" +checksum = "163f15320f3fba11760c373af52d7f69d638482c2c350d877fb06513b1c3137c" dependencies = [ "const-oid 0.10.2", + "crypto-common 0.2.1", "ctutils", "hybrid-array", "module-lattice", - "pkcs8 0.11.0-rc.11", - "rand_core 0.10.0", + "pkcs8 0.11.0", "sha3", - "signature 3.0.0-rc.10", + "signature 3.0.0", "zeroize", ] [[package]] name = "module-lattice" -version = "0.2.1" +version = "0.2.3" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "164eb3faeaecbd14b0b2a917c1b4d0c035097a9c559b0bed85c2cdd032bc8faa" +checksum = "0c61b87c9683ab7cb1c6871d261ad5479b6b10ceb52c4352aaca3b5d35a8febe" dependencies = [ + "ctutils", "hybrid-array", "num-traits", "zeroize", @@ -1636,9 +1656,9 @@ checksum = "384b8ab6d37215f3c5301a95a4accb5d64aa607f1fcb26a11b5303878451b4fe" [[package]] name = "open" -version = "5.3.3" +version = "5.3.5" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "43bb73a7fa3799b198970490a51174027ba0d4ec504b03cd08caf513d40024bc" +checksum = "2fbaa89d2ddc8473c78a3adf69eea8cffa28c483b8e02a971ef31527cd0fc92c" dependencies = [ "is-wsl", "libc", @@ -1791,9 +1811,9 @@ checksum = "9b4f627cb1b25917193a259e49bdad08f671f8d9708acfd5fe0a8c1455d87220" [[package]] name = "picky-asn1" -version = "0.8.0" +version = "0.10.1" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "295eea0f33c16be21e2a98b908fdd4d73c04dd48c8480991b76dbcf0cb58b212" +checksum = "2ff038f9360b934342fb3c0a1d6e82c438a2624b51c3c6e3e6d7cf252b6f3ee3" dependencies = [ "oid", "serde", @@ -1802,9 +1822,9 @@ dependencies = [ [[package]] name = "picky-asn1-der" -version = "0.4.1" +version = "0.5.6" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "5df7873a9e36d42dadb393bea5e211fe83d793c172afad5fb4ec846ec582793f" +checksum = "d413165e4bf7f808b9a27cbaba657657a2921f0965db833f488c4d4be96dcd2e" dependencies = [ "picky-asn1", "serde", @@ -1813,11 +1833,11 @@ dependencies = [ [[package]] name = "picky-asn1-x509" -version = "0.12.0" +version = "0.15.4" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "2c5f20f71a68499ff32310f418a6fad8816eac1a2859ed3f0c5c741389dd6208" +checksum = "859d4117bd1b1dc5646359ee7243c50c5000c0920ea2d1fb120335a2f4c684b8" dependencies = [ - "base64 0.21.7", + "base64 0.22.1", "oid", "picky-asn1", "picky-asn1-der", @@ -1842,9 +1862,9 @@ dependencies = [ [[package]] name = "pkcs8" -version = "0.11.0-rc.11" +version = "0.11.0" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "12922b6296c06eb741b02d7b5161e3aaa22864af38dfa025a1a3ba3f68c84577" +checksum = "451913da69c775a56034ea8d9003d27ee8948e12443eae7c038ba100a4f21cb7" dependencies = [ "der 0.8.0", "spki 0.8.0", @@ -2218,13 +2238,13 @@ dependencies = [ [[package]] name = "rpassword" -version = "7.4.0" +version = "7.5.2" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "66d4c8b64f049c6721ec8ccec37ddfc3d641c4a7fca57e8f2a89de509c73df39" +checksum = "5ac5b223d9738ef56e0b98305410be40fa0941bf6036c56f1506751e43552d64" dependencies = [ "libc", "rtoolbox", - "windows-sys 0.59.0", + "windows-sys 0.61.2", ] [[package]] @@ -2541,9 +2561,9 @@ dependencies = [ [[package]] name = "signature" -version = "3.0.0-rc.10" +version = "3.0.0" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "7f1880df446116126965eeec169136b2e0251dba37c6223bcc819569550edea3" +checksum = "28d567dcbaf0049cb8ac2608a76cd95ff9e4412e1899d389ee400918ca7537f5" dependencies = [ "digest 0.11.2", "rand_core 0.10.0", @@ -2799,9 +2819,9 @@ checksum = "1f3ccbac311fea05f86f61904b462b55fb3df8837a366dfc601a0161d0532f20" [[package]] name = "tokio" -version = "1.51.1" +version = "1.52.3" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "f66bf9585cda4b724d3e78ab34b73fb2bbaba9011b9bfdf69dc836382ea13b8c" +checksum = "8fc7f01b389ac15039e4dc9531aa973a135d7a4135281b12d7c1bc79fd57fffe" dependencies = [ "bytes", "libc", @@ -3029,13 +3049,13 @@ checksum = "e421abadd41a4225275504ea4d6566923418b7f05506fbc9c0fe86ba7396114b" [[package]] name = "tss-esapi" -version = "7.6.0" +version = "7.7.0" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "78ea9ccde878b029392ac97b5be1f470173d06ea41d18ad0bb3c92794c16a0f2" +checksum = "3f10b25a84912b894d0e6d68f4a3771c923e9c44ddaaed7920cde92ed28aa84e" dependencies = [ "bitfield", "enumflags2", - "getrandom 0.2.17", + "getrandom 0.4.2", "hostname-validator", "log", "mbox", @@ -3052,9 +3072,9 @@ dependencies = [ [[package]] name = "tss-esapi-sys" -version = "0.5.0" +version = "0.6.0" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "535cd192581c2ec4d5f82e670b1d3fbba6a23ccce8c85de387642051d7cad5b5" +checksum = "a7f972672926a3d3d18ecc04524720e4d20b7d1664a3fb73dbf7d4274196dbd9" dependencies = [ "pkg-config", "target-lexicon", @@ -3131,9 +3151,9 @@ checksum = "06abde3611657adf66d383f00b093d7faecc7fa57071cce2578660c9f1010821" [[package]] name = "uuid" -version = "1.23.0" +version = "1.23.1" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "5ac8b6f42ead25368cf5b098aeb3dc8a1a2c05a3eee8a9a1a68c640edbfc79d9" +checksum = "ddd74a9687298c6858e9b88ec8935ec45d22e8fd5e6394fa1bd4e99a87789c76" dependencies = [ "getrandom 0.4.2", "js-sys", diff --git a/Cargo.toml b/Cargo.toml index 9fc0940..204a882 100644 --- a/Cargo.toml +++ b/Cargo.toml @@ -22,7 +22,7 @@ categories = ["authentication", "command-line-utilities"] [workspace.dependencies] serde = { version = "1.0", features = ["derive"] } serde_json = "1.0" -tokio = { version = "1.0", features = ["full"] } +tokio = { version = "1.52", features = ["full"] } tracing = "0.1" tracing-subscriber = { version = "0.3", features = ["json"] } thiserror = "1.0" diff --git a/pam-prmana/Cargo.toml b/pam-prmana/Cargo.toml index 8f4ed48..c0ea169 100644 --- a/pam-prmana/Cargo.toml +++ b/pam-prmana/Cargo.toml @@ -36,7 +36,7 @@ thiserror.workspace = true clap = { version = "4", features = ["derive"] } libc = "0.2" pamsm = { version = "0.5", features = ["libpam"] } -jsonwebtoken = { version = "10.3", features = ["aws_lc_rs"] } +jsonwebtoken = { version = "10.4", features = ["aws_lc_rs"] } reqwest = { version = "0.12", default-features = false, features = ["blocking", "json", "rustls-tls"] } url = "2.5" chrono = { version = "0.4", features = ["serde"] } @@ -54,7 +54,7 @@ sha1 = "0.10" sha2 = "0.10" hmac = "0.12" # Base32 decoding for TOTP seeds (RFC 6238 / YubiKey OTP enrollment) -data-encoding = "2.6" +data-encoding = "2.11" hex = "0.4" subtle = "2.5" uuid = { version = "1", features = ["v4"] } @@ -62,7 +62,7 @@ regex = "1.10" secrecy = "0.10" [dependencies.ml-dsa] -version = "0.1.0-rc.7" +version = "0.1.0-rc.11" optional = true [dev-dependencies] diff --git a/prmana-agent/Cargo.toml b/prmana-agent/Cargo.toml index 5cbf6a2..b79a253 100644 --- a/prmana-agent/Cargo.toml +++ b/prmana-agent/Cargo.toml @@ -26,7 +26,7 @@ secrecy = "0.10" libc = "0.2" # OIDC/JWT -jsonwebtoken = { version = "10.3", features = ["aws_lc_rs"] } +jsonwebtoken = { version = "10.4", features = ["aws_lc_rs"] } reqwest = { version = "0.12", default-features = false, features = ["json", "blocking", "rustls-tls"] } # Async runtime @@ -92,7 +92,7 @@ version = "7" optional = true [dependencies.ml-dsa] -version = "0.1.0-rc.7" +version = "0.1.0-rc.11" optional = true features = ["zeroize"] @@ -101,7 +101,7 @@ features = ["zeroize"] # available via homebrew. The `--features tpm` feature compiles on both platforms # but TpmSigner is only available on Linux (cfg(target_os = "linux")). [target.'cfg(target_os = "linux")'.dependencies.tss-esapi] -version = "7.6" +version = "7.7" optional = true # Shared OIDC discovery and JWKS types (extracted from pam-prmana). diff --git a/prmana-core/Cargo.toml b/prmana-core/Cargo.toml index 5bd2b72..747ae2a 100644 --- a/prmana-core/Cargo.toml +++ b/prmana-core/Cargo.toml @@ -10,6 +10,6 @@ serde.workspace = true serde_json.workspace = true thiserror.workspace = true tracing.workspace = true -jsonwebtoken = { version = "10.3", features = ["aws_lc_rs"] } +jsonwebtoken = { version = "10.4", features = ["aws_lc_rs"] } reqwest = { version = "0.12", default-features = false, features = ["blocking", "json", "rustls-tls"] } parking_lot = "0.12"