chore(deps): bump rustler from 0.37.1 to 0.37.3

[dependabot]

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

---

Bumps rustler from 0.37.1 to 0.37.3.

Release notes

Sourced from rustler's releases.

rustler-0.37.3

What's Changed

• Add missing inline and From for Term by @​filmor in rusterlium/rustler#719
• Add message for :no_artifacts by @​chgeuer in rusterlium/rustler#721

New Contributors

• @​chgeuer made their first contribution in rusterlium/rustler#721

Full Changelog: rusterlium/rustler@rustler-0.37.2...rustler-0.37.3

rustler-0.37.2

What's Changed

• Bump MSRV to 1.91 by @​filmor in rusterlium/rustler#711
• Update libloading requirement from 0.8 to 0.9 by @​dependabot[bot] in rusterlium/rustler#710
• Update CI to use current versions of OTP and Elixir by @​filmor in rusterlium/rustler#713
• Fix iolist inspect by @​filmor in rusterlium/rustler#715

Full Changelog: rusterlium/rustler@rustler-0.37.1...rustler-0.37.2

Changelog

Sourced from rustler's changelog.

0.37.3 - 2026-02-11

Added

• Add missing inline and From<Binary> for Term (#719)

Fixed

• Add no_artifacts compiler message (#721, thanks @​chgeuer)

0.37.2 - 2025-12-02

Fixed

• Fix Binary::from_iolist creating an invalid Binary (#714, #715)
• Fix CI to use the newest Elixir and OTP versions (#713)

Changed

• Bump MSRV (Minimum Supported Rust Version) to 1.91 (#711)

Commits

• 49de29b (release) 0.37.3
• 58cc808 Update changelog
• 30272d9 Add no_artifacts compiler message (#721)
• b539c3b Add missing inline and From<Binary> for Term (#719)
• a0c574d (release) 0.37.2
• 0ff9ab1 Fix iolist inspect (#715)
• e594828 Update CI to use current versions of OTP and Elixir (#713)
• 85d0a90 Drop clippy configuration
• 1552ec6 Update libloading requirement from 0.8 to 0.9 (#710)
• 0a26176 Bump MSRV to 1.91 (#711)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

🔍 Hypatia Security Scan

Findings: 14 issues detected

Severity	Count
🔴 Critical	3
🟠 High	5
🟡 Medium	6

⚠️ Action Required: Critical security issues found!

View findings

[
  {
    "reason": "Issue in quality.yml",
    "type": "missing_workflow",
    "file": "quality.yml",
    "action": "create",
    "rule_module": "workflow_audit",
    "severity": "high"
  },
  {
    "reason": "Issue in security-policy.yml",
    "type": "missing_workflow",
    "file": "security-policy.yml",
    "action": "create",
    "rule_module": "workflow_audit",
    "severity": "medium"
  },
  {
    "reason": "Action hyperpolymath/standards/.github/workflows/governance-reusable.yml@main needs attention",
    "type": "unpinned_action",
    "file": "governance.yml",
    "action": "pin_sha",
    "rule_module": "workflow_audit",
    "severity": "high"
  },
  {
    "reason": "Code.eval_* -- arbitrary code execution risk (1 occurrences, CWE-94)",
    "type": "elixir_code_eval",
    "file": "/home/runner/work/tma-mark2/tma-mark2/lib/etma_handler/logic/calculator.ex",
    "action": "flag",
    "rule_module": "code_safety",
    "severity": "critical"
  },
  {
    "reason": "binary_to_term without :safe option -- deserialization attack (1 occurrences, CWE-502)",
    "type": "elixir_send_unsanitised",
    "file": "/home/runner/work/tma-mark2/tma-mark2/lib/etma_handler/settings.ex",
    "action": "flag",
    "rule_module": "code_safety",
    "severity": "high"
  },
  {
    "reason": "binary_to_term without :safe option -- deserialization attack (2 occurrences, CWE-502)",
    "type": "elixir_send_unsanitised",
    "file": "/home/runner/work/tma-mark2/tma-mark2/lib/etma_handler/crypto/encrypted_storage.ex",
    "action": "flag",
    "rule_module": "code_safety",
    "severity": "high"
  },
  {
    "reason": "Nickel file missing SPDX-License-Identifier header (1 occurrences, CWE-1104)",
    "type": "ncl_missing_spdx",
    "file": "/home/runner/work/tma-mark2/tma-mark2/configs/config.ncl",
    "action": "flag",
    "rule_module": "code_safety",
    "severity": "medium"
  },
  {
    "reason": "expect() in hot path (21 occurrences, CWE-754)",
    "type": "expect_in_hot_path",
    "file": "/home/runner/work/tma-mark2/tma-mark2/native/tma_crypto/src/lib.rs",
    "action": "flag",
    "rule_module": "code_safety",
    "severity": "medium"
  },
  {
    "reason": "Download-and-execute pattern (curl|wget pipe to shell) -- verify integrity before execution (4 occurrences, CWE-494)",
    "type": "shell_download_then_run",
    "file": "/home/runner/work/tma-mark2/tma-mark2/setup.sh",
    "action": "flag",
    "rule_module": "code_safety",
    "severity": "high"
  },
  {
    "line": 36,
    "reason": "Secret found: Generic secret",
    "type": "secret_detected",
    "file": "/home/runner/work/tma-mark2/tma-mark2/lib/etma_handler/crypto/encrypted_storage.ex",
    "action": "revoke_rotate_and_purge",
    "rule_module": "security_errors",
    "severity": "critical"
  }
]

Powered by Hypatia Neurosymbolic CI/CD Intelligence