From f7d111cc4078111f4be8bad660500c67d7bdce7d Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 22 Sep 2024 17:15:25 +0300
Subject: [PATCH] Bump the minor-changes group across 1 directory with 5
 updates (#266)

Bumps the minor-changes group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [anyhow](https://github.com/dtolnay/anyhow) | `1.0.86` | `1.0.89` |
| [serde](https://github.com/serde-rs/serde) | `1.0.208` | `1.0.210` |
| [serde_json](https://github.com/serde-rs/json) | `1.0.125` | `1.0.128` |
| [secp256k1](https://github.com/rust-bitcoin/rust-secp256k1) | `0.29.0` | `0.29.1` |
| [embedded-alloc](https://github.com/rust-embedded/embedded-alloc) | `0.5.1` | `0.6.0` |

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Alex Ostrovski <ostrovski.alex@gmail.com>
---
 .github/workflows/build-reusable.yml |  2 +-
 Cargo.lock                           | 69 +++++++++++++++++++++++-----
 Cargo.toml                           |  2 +-
 deny.toml                            | 12 ++---
 e2e-tests/no-std/Cargo.toml          |  4 +-
 e2e-tests/no-std/src/main.rs         |  2 +-
 6 files changed, 65 insertions(+), 26 deletions(-)

diff --git a/.github/workflows/build-reusable.yml b/.github/workflows/build-reusable.yml
index 5cf9781..f5a1063 100644
--- a/.github/workflows/build-reusable.yml
+++ b/.github/workflows/build-reusable.yml
@@ -33,7 +33,7 @@ jobs:
         uses: baptiste0928/cargo-install@v3
         with:
           crate: cargo-deny
-          version: "^0.14"
+          version: "^0.16"
 
       - name: Cache cargo build
         uses: actions/cache@v4
diff --git a/Cargo.lock b/Cargo.lock
index 02f57f3..aa4a4b7 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -46,9 +46,9 @@ checksum = "038dfcf04a5feb68e9c60b21c9625a54c2c0616e79b72b0fd87075a056ae1d1b"
 
 [[package]]
 name = "anyhow"
-version = "1.0.86"
+version = "1.0.89"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "b3d1d046238990b9cf5bcde22a3fb3584ee5cf65fb2765f454ed428c7a0063da"
+checksum = "86fdf8605db99b54d3cd748a44c6d04df638eb5dafb219b135d0149bd0db01f6"
 
 [[package]]
 name = "assert_matches"
@@ -77,6 +77,12 @@ version = "0.2.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "4c7f02d4ea65f2c1853089ffd8d2787bdbc63de2f0d29dedbcf8ccdfa0ccd4cf"
 
+[[package]]
+name = "base64"
+version = "0.13.1"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "9e1b586273c5702936fe7b7d6896644d8be71e6314cfe09d3167c95f712589e8"
+
 [[package]]
 name = "base64ct"
 version = "1.6.0"
@@ -238,6 +244,12 @@ version = "0.3.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "5241cd7938b1b415942e943ea96f615953d500b50347b505b0b507080bad5a6f"
 
+[[package]]
+name = "const-default"
+version = "1.0.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "0b396d1f76d455557e1218ec8066ae14bba60b4b36ecd55577ba979f5db7ecaa"
+
 [[package]]
 name = "const-oid"
 version = "0.9.6"
@@ -528,12 +540,14 @@ dependencies = [
 
 [[package]]
 name = "embedded-alloc"
-version = "0.5.1"
+version = "0.6.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "ddae17915accbac2cfbc64ea0ae6e3b330e6ea124ba108dada63646fd3c6f815"
+checksum = "8f2de9133f68db0d4627ad69db767726c99ff8585272716708227008d3f1bddd"
 dependencies = [
+ "const-default",
  "critical-section",
  "linked_list_allocator",
+ "rlsf",
 ]
 
 [[package]]
@@ -1322,6 +1336,18 @@ dependencies = [
  "subtle",
 ]
 
+[[package]]
+name = "rlsf"
+version = "0.2.1"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "222fb240c3286247ecdee6fa5341e7cdad0ffdf8e7e401d9937f2d58482a20bf"
+dependencies = [
+ "cfg-if",
+ "const-default",
+ "libc",
+ "svgbobdoc",
+]
+
 [[package]]
 name = "rsa"
 version = "0.9.6"
@@ -1403,9 +1429,9 @@ dependencies = [
 
 [[package]]
 name = "secp256k1"
-version = "0.29.0"
+version = "0.29.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "0e0cc0f1cf93f4969faf3ea1c7d8a9faed25918d96affa959720823dfe86d4f3"
+checksum = "9465315bc9d4566e1724f0fffcbcc446268cb522e60f9a27bcded6b19c108113"
 dependencies = [
  "secp256k1-sys",
 ]
@@ -1442,18 +1468,18 @@ checksum = "388a1df253eca08550bef6c72392cfe7c30914bf41df5269b68cbd6ff8f570a3"
 
 [[package]]
 name = "serde"
-version = "1.0.208"
+version = "1.0.210"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "cff085d2cb684faa248efb494c39b68e522822ac0de72ccf08109abde717cfb2"
+checksum = "c8e3592472072e6e22e0a54d5904d9febf8508f65fb8552499a1abc7d1078c3a"
 dependencies = [
  "serde_derive",
 ]
 
 [[package]]
 name = "serde_derive"
-version = "1.0.208"
+version = "1.0.210"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "24008e81ff7613ed8e5ba0cfaf24e2c2f1e5b8a0495711e44fcd4882fca62bcf"
+checksum = "243902eda00fad750862fc144cea25caca5e20d615af0a81bee94ca738f1df1f"
 dependencies = [
  "proc-macro2",
  "quote",
@@ -1462,9 +1488,9 @@ dependencies = [
 
 [[package]]
 name = "serde_json"
-version = "1.0.125"
+version = "1.0.128"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "83c8e735a073ccf5be70aa8066aa984eaf2fa000db6c8d0100ae605b366d31ed"
+checksum = "6ff5456707a1de34e7e37f2a6fd3d3f808c318259cbd01ab6377795054b483d8"
 dependencies = [
  "itoa",
  "memchr",
@@ -1530,6 +1556,19 @@ version = "2.6.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "13c2bddecc57b384dee18652358fb23172facb8a2c51ccc10d74c157bdea3292"
 
+[[package]]
+name = "svgbobdoc"
+version = "0.3.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "f2c04b93fc15d79b39c63218f15e3fdffaa4c227830686e3b7c5f41244eb3e50"
+dependencies = [
+ "base64",
+ "proc-macro2",
+ "quote",
+ "syn 1.0.109",
+ "unicode-width",
+]
+
 [[package]]
 name = "syn"
 version = "1.0.109"
@@ -1701,6 +1740,12 @@ dependencies = [
  "tinyvec",
 ]
 
+[[package]]
+name = "unicode-width"
+version = "0.1.13"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "0336d538f7abc86d282a4189614dfaa90810dfc2c6f6427eaf88e16311dd225d"
+
 [[package]]
 name = "url"
 version = "2.5.2"
diff --git a/Cargo.toml b/Cargo.toml
index 47b74a2..e1f6c61 100644
--- a/Cargo.toml
+++ b/Cargo.toml
@@ -28,7 +28,7 @@ rustdoc-args = ["--cfg", "docsrs"]
 
 [dependencies]
 # Public dependencies (present in the public API).
-anyhow = { version = "1.0.86", default-features = false }
+anyhow = { version = "1.0.89", default-features = false }
 base64ct = { version = "1.5.2", features = ["alloc"] }
 ciborium = { version = "0.2.2", default-features = false, optional = true }
 chrono = { version = "0.4.38", default-features = false }
diff --git a/deny.toml b/deny.toml
index 8fd80df..64f9a96 100644
--- a/deny.toml
+++ b/deny.toml
@@ -1,18 +1,16 @@
 # `cargo-deny` configuration.
 
+[output]
 feature-depth = 1
+
+[graph]
 # Check all features except for `exonum-crypto`, which is morally outdated.
 # Since the crate isn't actually built for the check, we don't care about conflicting features.
 features = ["ed25519-dalek", "ed25519-compact", "rsa", "p256", "k256", "es256k"]
 
 [advisories]
 db-urls = ["https://github.com/rustsec/advisory-db"]
-vulnerability = "deny"
-unmaintained = "deny"
-unsound = "deny"
 yanked = "deny"
-notice = "warn"
-severity-threshold = "Medium"
 ignore = [
   # "Marvin" attack for the `rsa` crate; no fix is available ATM.
   # A warning is added to crate readme and crate docs as a stopgap measure.
@@ -20,7 +18,6 @@ ignore = [
 ]
 
 [licenses]
-unlicensed = "deny"
 allow = [
   # Permissive open-source licenses
   "MIT",
@@ -30,9 +27,6 @@ allow = [
   # Creative Commons licenses (FSF-approved, not OSI-approved); used by `secp256k1-sys`
   "CC0-1.0",
 ]
-copyleft = "deny"
-allow-osi-fsf-free = "neither"
-default = "deny"
 confidence-threshold = 0.8
 
 [bans]
diff --git a/e2e-tests/no-std/Cargo.toml b/e2e-tests/no-std/Cargo.toml
index 432970d..e0ddd1e 100644
--- a/e2e-tests/no-std/Cargo.toml
+++ b/e2e-tests/no-std/Cargo.toml
@@ -9,7 +9,7 @@ repository = "https://github.com/slowli/jwt-compact"
 publish = false
 
 [dependencies]
-anyhow = { version = "1.0.86", default-features = false }
+anyhow = { version = "1.0.89", default-features = false }
 chrono = { version = "0.4.38", default-features = false }
 const-decoder = "0.3.0"
 serde = { version = "1.0", default-features = false, features = ["alloc", "derive"] }
@@ -18,7 +18,7 @@ serde = { version = "1.0", default-features = false, features = ["alloc", "deriv
 cortex-m = { version = "0.7", features = ["critical-section-single-core"] }
 cortex-m-rt = "0.7"
 cortex-m-semihosting = "0.5"
-embedded-alloc = "0.5.1"
+embedded-alloc = "0.6.0"
 panic-halt = "0.2.0"
 
 # RSA-specific dependencies. Everything besides `rsa` is needed to set up an RNG.
diff --git a/e2e-tests/no-std/src/main.rs b/e2e-tests/no-std/src/main.rs
index 5656642..ad60857 100644
--- a/e2e-tests/no-std/src/main.rs
+++ b/e2e-tests/no-std/src/main.rs
@@ -9,7 +9,7 @@ use anyhow::anyhow;
 use chrono::{DateTime, Duration, TimeZone, Utc};
 use cortex_m_rt::entry;
 use cortex_m_semihosting::{debug, hprintln, syscall};
-use embedded_alloc::Heap;
+use embedded_alloc::LlffHeap as Heap;
 use panic_halt as _;
 use serde::{Deserialize, Serialize};