build(deps): bump the rust-dependencies group with 5 updates

[dependabot]

Bumps the rust-dependencies group with 5 updates:

Package	From	To
clap	4.5.35	4.5.36
rustls	0.23.25	0.23.26
anyhow	1.0.97	1.0.98
tun	0.7.17	0.7.18
totp-rs	5.6.0	5.7.0

Updates clap from 4.5.35 to 4.5.36

Release notes

Sourced from clap's releases.

v4.5.36

[4.5.36] - 2025-04-11

Fixes

• (help) Revert 4.5.35's "Don't leave space for shorts if there are none" for now

Changelog

Sourced from clap's changelog.

[4.5.36] - 2025-04-11

Fixes

• (help) Revert 4.5.35's "Don't leave space for shorts if there are none" for now

Commits

• 7a6475e chore: Release
• 0266c41 docs: Update changelog
• 6ec0b43 Merge pull request #5791 from okapia/zsh-default-fallback
• e40168c fix(zsh): Use _default as zsh completion fallback
• See full diff in compare view

Updates rustls from 0.23.25 to 0.23.26

Commits

• 88dccec Prepare 0.23.26
• 0ab530f Detect and error on faulty io::Write::write_vectored
• c5b9b10 Rework further tests to use encoding module
• d71046e Rework QUIC tests to use new encoding module
• 0f3c823 Rework SNI tests to use new test-only TLS encoder
• 99db311 Replace hand-written encodings with encoding module
• 334760f Invert working of SignatureScheme::supported_in_tls13
• 68d6ef2 Use tlswg name for draft-kwiatkowski-tls-ecdhe-mlkem
• c1fc0f4 Take semver-compatible updates
• d3b810d build(deps): bump openssl from 0.10.71 to 0.10.72
• Additional commits viewable in compare view

Updates anyhow from 1.0.97 to 1.0.98

Release notes

Sourced from anyhow's releases.

1.0.98

• Add self.into_boxed_dyn_error() and self.reallocate_into_boxed_dyn_error_without_backtrace() methods for anyhow::Error (#415)

Commits

• 709fe86 Release 1.0.98
• cbc1ad2 Merge pull request #415 from dtolnay/intodyn
• e1a2017 Add 2 different conversions to Box<dyn Error + Send + Sync + 'static>
• 29f2edd Merge pull request #416 from dtolnay/oldnostd
• 2244db8 Omit unused object_boxed from vtable in old no-std rustc
• 213a9c2 Merge pull request #414 from dtolnay/nightly
• 02aa6b6 Make all nightly go through the module that was probed
• See full diff in compare view

Updates tun from 0.7.17 to 0.7.18

Commits

• See full diff in compare view

Updates totp-rs from 5.6.0 to 5.7.0

Release notes

Sourced from totp-rs's releases.

v5.7.0

Breaking changes.

• MSRV has been set to Rust 1.66.

Changes

• Updated base32 crate to 0.5.
• Updated constant_time_eq crate to 0.3.
• Updated rand crate to 0.9.
• Added a bit of documentation.

Note

This is probably the last version update before the big 6.0, which will be a big rewrite, and the 2024 edition. The goal will be to expose the same feature as before, but in a more harmonized and idiomatic way.

Changelog

Sourced from totp-rs's changelog.

5.7.0 (12/04/2025)

Breaking changes.

• MSRV has been set to Rust 1.66.

Changes

• Updated base32 crate to 0.5.
• Updated constant_time_eq crate to 0.3.
• Updated rand crate to 0.9.
• Added a bit of documentation.

Note

This is probably the last version update before the big 6.0, which will be a big rewrite, and the 2024 edition. The goal will be to expose the same feature as before, but in a more harmonized and idiomatic way.

Commits

• 2aa6384 Merge pull request #73 from constantoine/bump_msrv
• d79bac7 Fix tests and add documentation
• 24bc93e Upgrade github actions
• a5e809c Replace deprecated call to rand::thread_rng() with rand::rng()
• 02060f1 Update dependencies and add msrv check
• da78569 Fix CHANGELOG.md
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

📢 Thoughts on this report? Let us know!