fix: update Rust dependencies for security advisories

[AnthonyRonning]

Summary

• update opensecret from 0.2.9 to 3.0.4
• refresh Cargo.lock to pull patched transitive dependency versions, including rustls-webpki, bytes, rand, and related crates

Testing

• just check
• pre-commit checks during commit

---

Summary by CodeRabbit

• Chores
  • Updated opensecret SDK dependency from v0.2.9 to v3.0.4.
  • Documentation updated to remove the explicit opensecret version pin and reflect the generic dependency entry.

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 152aa308-25a4-4fbb-a4af-a3548604a872

📥 Commits

Reviewing files that changed from the base of the PR and between 2955cd2 and ae1082d.

📒 Files selected for processing (1)

• CLAUDE.md

✅ Files skipped from review due to trivial changes (1)

• CLAUDE.md

---

📝 Walkthrough

Walkthrough

The opensecret dependency in Cargo.toml is updated from 0.2.9 to 3.0.4. The documentation entry in CLAUDE.md removes the explicit opensecret version pin and replaces it with an un-versioned opensecret entry. No public APIs were changed.

Changes

Cohort / File(s)	Summary
Dependency Version Update Cargo.toml	Bumps opensecret SDK from 0.2.9 to 3.0.4 (major version upgrade). Review for API/compatibility changes in code that calls opensecret.
Documentation CLAUDE.md	Removes explicit opensecret version pin (0.2.0) and lists opensecret without a specified version.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~10 minutes

Possibly related PRs

• fix: upgrade opensecret SDK to 0.2.9 for streaming tool call passthrough #17 – Previously bumped opensecret to 0.2.9 to address streaming deserialization; related by subsequent version progression.
• Bump sdk to 0.2.1 #1 – Earlier change touching the opensecret dependency declaration in Cargo.toml.
• Bump SDK to 0.2.2 (adds tool calling support) #2 – Another prior PR that updated the opensecret dependency in Cargo.toml.

Poem

🐰 I hopped through Cargo, nose to the breeze,
Found opensecret grown up — three-dot-oh with ease,
I nudged the docs, a gentle little shove,
New version, new dawn — I twitch and I love! 🥕✨

🚥 Pre-merge checks | ✅ 4

✅ Passed checks (4 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately reflects the main change: updating the opensecret dependency from 0.2.9 to 3.0.4 for security advisories, which is the primary objective of this pull request.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch chore/update-rust-deps

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}