chore(deps): bump the all-deps group across 1 directory with 8 updates

[dependabot]

Bumps the all-deps group with 8 updates in the / directory:

Package	From	To
digest	0.11.2	0.11.3
elliptic-curve	0.14.0-rc.31	0.14.0-rc.32
ecdsa	0.17.0-rc.17	0.17.0-rc.18
heapless	0.9.2	0.9.3
hybrid-array	0.4.10	0.4.11
cpubits	0.1.0	0.1.1
libc	0.2.185	0.2.186
winnow	1.0.1	1.0.2

Updates digest from 0.11.2 to 0.11.3

Commits

• 2fb9ed8 Release digest v0.11.3 (#2402)
• 086cf38 digest: add TryCustomizedInit trait (#2395)
• 9488e7e signature v3.0.0 (#2400)
• 2917d19 build(deps): bump the all-deps group across 1 directory with 4 updates (#2398)
• 7b029ba signature: add AsyncVerifier, AsyncMultipartVerifier, `AsyncDigestVerifie...
• c6d4dd7 elliptic-curve v0.14.0-rc.32 (#2399)
• f2069a2 elliptic-curve: bump pkcs8 to v0.11 (#2397)
• 8250383 elliptic-curve: bump pkcs8 to v0.11.0-rc.12 (#2396)
• 54e464f signature: remove long-winded intro section in rustdoc (#2392)
• 5cb62a4 signature: enable/fix workspace-level lints; reformat docs (#2391)
• Additional commits viewable in compare view

Updates elliptic-curve from 0.14.0-rc.31 to 0.14.0-rc.32

Commits

• c6d4dd7 elliptic-curve v0.14.0-rc.32 (#2399)
• f2069a2 elliptic-curve: bump pkcs8 to v0.11 (#2397)
• 8250383 elliptic-curve: bump pkcs8 to v0.11.0-rc.12 (#2396)
• 54e464f signature: remove long-winded intro section in rustdoc (#2392)
• 5cb62a4 signature: enable/fix workspace-level lints; reformat docs (#2391)
• 375378f elliptic-curve: consistent PKCS#8 / SEC1 naming in secret_key.rs (#2388)
• 30a48ab elliptic-curve: add mul_by_generator(_vartime) benchmarks (#2389)
• f7e7c3d Implement SecretKey::from_pem to decode variety of keys (#2387)
• See full diff in compare view

Updates ecdsa from 0.17.0-rc.17 to 0.17.0-rc.18

Commits

• 58bae19 Cut new prereleases (#1319)
• 2eadc3c ml-dsa: bump module-lattice to v0.2.2 (#1318)
• 452633d ecdsa: bump elliptic-curve to v0.14.0-rc.32 (#1317)
• 86c035a Bump pkcs8 dependency to v0.11 (#1316)
• f873b8e build(deps): bump hybrid-array from 0.4.10 to 0.4.11 (#1314)
• d8b1875 Bump pkcs8 to v0.11.0-rc.12 (#1312)
• 00e6eed build(deps): bump typenum from 1.19.0 to 1.20.0 (#1306)
• f93d502 ml-dsa: fix unreachable_pub lint by making Eta pub (#1311)
• 0efe0f8 ecdsa: use absolute 128-bit floor for bits2field (#1310)
• See full diff in compare view

Updates heapless from 0.9.2 to 0.9.3

Release notes

Sourced from heapless's releases.

0.9.3

See the full changelog here: https://github.com/rust-embedded/heapless/blob/v0.9.3/CHANGELOG.md#v093-2025-04-15

Changelog

Sourced from heapless's changelog.

[v0.9.3] 2025-04-15

• Fixed unsoundness in Deque::clear, HistoryBuf::clear and IndexMap::clear in the context of panicking drop implementations.
• Added from_bytes_truncating_at_nul to CString
• Added CString::{into_bytes, into_bytes_with_nul, into_string}
• Added pop_front_if and pop_back_if to Deque
• Made Vec::from_array const.

Commits

• ca95c4b Merge pull request #656 from sgued/release-093
• c3d2061 Prepare release 0.9.3
• fba1da4 Merge pull request #644 from tower120/const_vec_from_array
• 6bb5909 Fix clippy lints
• 666a0ac Vec::from_array now const
• 0db1fb3 Add IDEA files to gitignore
• be8628a Merge pull request #647 from sgued/646-clear-use-after-free
• e458255 Fix possible use after free in clear functions
• 45a1f11 Merge pull request #641 from sgued/deque-pop-front-if
• 8d95d99 deque: Add pop_front_if and pop_back_if
• Additional commits viewable in compare view

Updates hybrid-array from 0.4.10 to 0.4.11

Changelog

Sourced from hybrid-array's changelog.

0.4.11 (2026-04-24)

Added

• HPKE Hybrid KEM sizes (#218)

Removed

• Clone bounds on Box/Vec conversions (#209)

#209: RustCrypto/hybrid-array#209 #218: RustCrypto/hybrid-array#218

Commits

• bd89049 v0.4.11 (#219)
• 343190c Add HPKE Hybrid KEM sizes (#218)
• 15f74ea Bump typenum from 1.19.0 to 1.20.0 (#217)
• 73d6e70 .codecov.yml: bump coverage target to 100% (#216)
• 9253a53 Add tests for Arbitrary impl on Array (#215)
• fb2957e Add tests for Hash impl (#214)
• b3b36c6 Add tests for serde impl's Visitor::expected (#213)
• 25d2b78 Add tests for TryFrom\<&Box> and ...&Vec> for Array (#212)
• dd850e2 Add tests for Zeroize impl (#211)
• eddb29c Add tests for (Partial)Ord impls (#210)
• Additional commits viewable in compare view

Updates cpubits from 0.1.0 to 0.1.1

Commits

• bff92a8 cpubits v0.1.1 (#1475)
• 5f2ee92 build(deps): bump rand from 0.9.2 to 0.9.4 (#1476)
• 8320527 build(deps): bump hybrid-array from 0.4.10 to 0.4.11 (#1473)
• cf5a73a dbl: remove MSRV policy section from readme
• 13952b9 Fix output for 16-bit targets (#1470)
• 53f7fc3 ctutils v0.4.2 (#1469)
• 9c43209 build(deps): bump proptest from 1.10.0 to 1.11.0 (#1460)
• 24d7f8b digest-io: fix release date of v0.1.0 (#1468)
• 416ddb0 Release digest-io v0.1.0 (#1462)
• 3d85afd cmov v0.5.3 (#1467)
• Additional commits viewable in compare view

Updates libc from 0.2.185 to 0.2.186

Release notes

Sourced from libc's releases.

0.2.186

Added

• Apple: Add KEVENT_FLAG_* constants (#5070)
• Linux: Add PR_SET_MEMORY_MERGE and PR_GET_MEMORY_MERGE (#5060)

Changed

• CI: Migrate FreeBSD CI from Cirrus CI to GitHub Actions (#5058)

Changelog

Sourced from libc's changelog.

0.2.186 - 2026-04-24

Added

• Apple: Add KEVENT_FLAG_* constants (#5070)
• Linux: Add PR_SET_MEMORY_MERGE and PR_GET_MEMORY_MERGE (#5060)

Changed

• CI: Migrate FreeBSD CI from Cirrus CI to GitHub Actions (#5058)

Commits

• 42620ff [0.2] libc: Release 0.2.186
• 9db2eaa apple: add KEVENT_FLAG_* constants
• 3840939 Add PR_SET_MEMORY_MERGE and PR_GET_MEMORY_MERGE for linux
• f697deb chore: migrate from Cirrus CI to GHA
• See full diff in compare view

Updates winnow from 1.0.1 to 1.0.2

Changelog

Sourced from winnow's changelog.

[1.0.2] - 2026-04-21

Fixes

• Support TreeError in binary::bits (regression from 1.0.0)

Commits

• 05d3cd2 chore: Release
• 7ac7c0f docs: Update changelog
• ac12806 Merge pull request #909 from epage/tree
• 6ed2d5f fix(error): Support Bits with TreeError
• f09c7a4 chore(deps): Update Rust Stable to v1.95 (#906)
• 7f8c41c Merge pull request #905 from winnow-rs/renovate/j178-prek-action-2.x
• c40231c Merge pull request #904 from winnow-rs/renovate/codecov-codecov-action-6.x
• 93b12c0 chore(deps): Update j178/prek-action action to v2
• 7780f54 chore(deps): Update codecov/codecov-action action to v6
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions