build(deps): bump the cargo group with 8 updates

[dependabot]

Bumps the cargo group with 8 updates:

Package	From	To
qmux	0.0.7	0.0.8
web-transport-noq	0.0.3	0.1.1
web-transport-quiche	0.2.3	0.4.0
rubato	0.16.2	3.0.0
rand	0.9.4	0.10.1
rcgen	0.13.2	0.14.8
toml	0.9.12+spec-1.1.0	1.1.2+spec-1.1.0
reqwest-middleware	0.4.2	0.5.2

Updates qmux from 0.0.7 to 0.0.8

Release notes

Sourced from qmux's releases.

qmux-v0.0.8

Other

• bump tokio-quiche, tokio-tungstenite, flume, rcgen, sha2 (#240)

Commits

• 94d6f67 chore: release (#237)
• ab90754 deps: bump tokio-quiche, tokio-tungstenite, flume, rcgen, sha2 (#240)
• 656ae05 Add web-transport-ffi: UniFFI bindings for Swift, Kotlin, Python (#239)
• c6c49b6 ci: drop release step for deleted js/web-transport-ws (#238)
• See full diff in compare view

Updates web-transport-noq from 0.0.3 to 0.1.1

Release notes

Sourced from web-transport-noq's releases.

web-transport-noq-v0.1.1

Other

• release (#228)

web-transport-noq-v0.1.0

Other

• Expose conn() by reference and fix Python bindings (#227)

web-transport-noq-v0.0.4

Other

• Expose conn() by reference and fix Python bindings (#227)

Commits

• 94d6f67 chore: release (#237)
• ab90754 deps: bump tokio-quiche, tokio-tungstenite, flume, rcgen, sha2 (#240)
• 656ae05 Add web-transport-ffi: UniFFI bindings for Swift, Kotlin, Python (#239)
• c6c49b6 ci: drop release step for deleted js/web-transport-ws (#238)
• 6df60cf chore: release (#228)
• f460667 deps: update iroh and noq to 1.0-rc.0 (#236)
• a49b571 qmux/ws: add Keepalive option for WebSocket transports (#234)
• 964c24d Wire up W3C protocols option and protocol getter (#233)
• 6ff4dce chore: bump web-transport-iroh to 0.4.0 (#232)
• 4d1265e deps: update to iroh 0.98 and noq 0.18 (#230)
• Additional commits viewable in compare view

Updates web-transport-quiche from 0.2.3 to 0.4.0

Release notes

Sourced from web-transport-quiche's releases.

web-transport-quiche-v0.4.0

Other

• bump tokio-quiche, tokio-tungstenite, flume, rcgen, sha2 (#240)

web-transport-quiche-v0.3.1

Other

• Expose conn() by reference and fix Python bindings (#227)
• Add NapiClient.disableVerify() and use NAPI tokio runtime (#205)

web-transport-quiche-v0.3.0

Other

• Add Connecting type to web-transport-quiche (#193)

Commits

• 94d6f67 chore: release (#237)
• ab90754 deps: bump tokio-quiche, tokio-tungstenite, flume, rcgen, sha2 (#240)
• 656ae05 Add web-transport-ffi: UniFFI bindings for Swift, Kotlin, Python (#239)
• c6c49b6 ci: drop release step for deleted js/web-transport-ws (#238)
• 6df60cf chore: release (#228)
• f460667 deps: update iroh and noq to 1.0-rc.0 (#236)
• a49b571 qmux/ws: add Keepalive option for WebSocket transports (#234)
• 964c24d Wire up W3C protocols option and protocol getter (#233)
• 6ff4dce chore: bump web-transport-iroh to 0.4.0 (#232)
• 4d1265e deps: update to iroh 0.98 and noq 0.18 (#230)
• Additional commits viewable in compare view

Updates rubato from 0.16.2 to 3.0.0

Release notes

Sourced from rubato's releases.

v3.0.0

What's Changed

• Documentation updates based on feedback by @​HEnquist in HEnquist/rubato#125
• Separate lifetimes for input and output by @​HEnquist in HEnquist/rubato#126
• Smarter dot products and performance simpler by @​HEnquist in HEnquist/rubato#130
• Smarter dot products by @​HEnquist in HEnquist/rubato#131

Full Changelog: HEnquist/rubato@v2.0.0...v3.0.0

v2.0.0

What's Changed

• Update dependencies, improve tests, bump to v2.0 by @​HEnquist in HEnquist/rubato#122

Full Changelog: HEnquist/rubato@v1.0.1...v2.0.0

v1.0.1

What's Changed

• Re-export audioadapter crate by @​casey in HEnquist/rubato#112
• Fix process_all length calc by @​HEnquist in HEnquist/rubato#118

New Contributors

• @​casey made their first contribution in HEnquist/rubato#113

Full Changelog: HEnquist/rubato@v1.0.0...v1.0.1

v1.0.0

• New API using the AudioAdapter crate to handle different buffer layouts and sample formats.
• Merged the FixedIn, FixedOut and FixedInOut resamplers into single types that supports all modes.
• Merged the sinc and polynomial asynchronous resamplers into one type that supports both interpolation modes.

v1.0.0-preview.0

Full Changelog: HEnquist/rubato@v0.16.2...v1.0.0-preview.0

Commits

• 8c72e8d Merge pull request #131 from HEnquist/smarter-dot-products
• 902bbb1 Merge pull request #130 from HEnquist/smarter-dot-products_and_performance_si...
• 5339f35 Update outdated gh actions
• 5a41ef5 Update changelog
• 90509d9 Merge branch 'master' of https://github.com/HEnquist/rubato into smarter-dot-...
• 04e001a Merge pull request #126 from HEnquist/separate_lifetimes
• c8c59e4 Merge pull request #125 from HEnquist/improved_docs
• 35a3822 More inlining
• 1d7d625 Disable clippy warning
• 89b13aa Inline, improve docs on scaling
• Additional commits viewable in compare view

Updates rand from 0.9.4 to 0.10.1

Changelog

Sourced from rand's changelog.

[0.10.1] — 2026-02-11

This release includes a fix for a soundness bug; see #1763.

Changes

• Document panic behavior of make_rng and add #[track_caller] (#1761)
• Deprecate feature log (#1763)

#1761: rust-random/rand#1761 #1763: rust-random/rand#1763

[0.10.0] - 2026-02-08

Changes

• The dependency on rand_chacha has been replaced with a dependency on chacha20. This changes the implementation behind StdRng, but the output remains the same. There may be some API breakage when using the ChaCha-types directly as these are now the ones in chacha20 instead of rand_chacha (#1642).
• Rename fns IndexedRandom::choose_multiple -> sample, choose_multiple_array -> sample_array, choose_multiple_weighted -> sample_weighted, struct SliceChooseIter -> IndexedSamples and fns IteratorRandom::choose_multiple -> sample, choose_multiple_fill -> sample_fill (#1632)
• Use Edition 2024 and MSRV 1.85 (#1653)
• Let Fill be implemented for element types, not sliceable types (#1652)
• Fix OsError::raw_os_error on UEFI targets by returning Option<usize> (#1665)
• Replace fn TryRngCore::read_adapter(..) -> RngReadAdapter with simpler struct RngReader (#1669)
• Remove fns SeedableRng::from_os_rng, try_from_os_rng (#1674)
• Remove Clone support for StdRng, ReseedingRng (#1677)
• Use postcard instead of bincode to test the serde feature (#1693)
• Avoid excessive allocation in IteratorRandom::sample when amount is much larger than iterator size (#1695)
• Rename os_rng -> sys_rng, OsRng -> SysRng, OsError -> SysError (#1697)
• Rename Rng -> RngExt as upstream rand_core has renamed RngCore -> Rng (#1717)

Additions

• Add fns IndexedRandom::choose_iter, choose_weighted_iter (#1632)
• Pub export Xoshiro128PlusPlus, Xoshiro256PlusPlus prngs (#1649)
• Pub export ChaCha8Rng, ChaCha12Rng, ChaCha20Rng behind chacha feature (#1659)
• Fn rand::make_rng() -> R where R: SeedableRng (#1734)

Removals

• Removed ReseedingRng (#1722)
• Removed unused feature "nightly" (#1732)
• Removed feature small_rng (#1732)

#1632: rust-random/rand#1632 #1642: rust-random/rand#1642 #1649: rust-random/rand#1649 #1652: rust-random/rand#1652 #1653: rust-random/rand#1653 #1659: rust-random/rand#1659 #1665: rust-random/rand#1665 #1669: rust-random/rand#1669 #1674: rust-random/rand#1674 #1677: rust-random/rand#1677 #1693: rust-random/rand#1693 #1695: rust-random/rand#1695 #1697: rust-random/rand#1697

... (truncated)

Commits

• 27ff4cb Prepare v0.10.1: deprecate feature log (#1763)
• 98d0638 make_rng: document panic and add #[track_caller] (#1761)
• 54e5eaa Fix doc error (#1758)
• 1ce4c08 Bump itoa from 1.0.17 to 1.0.18 in the all-deps group (#1756)
• ccb734b docs: fix typo in doc comment (#1754)
• 357eb7d Bump libc from 0.2.182 to 0.2.183 in the all-deps group (#1753)
• 5e77fe5 Fix trait references in documentation (#1752)
• da89185 Bump the all-deps group with 3 updates (#1751)
• 50516ff Bump the all-deps group with 2 updates (#1749)
• fd71de9 Bump the all-deps group with 2 updates (#1747)
• Additional commits viewable in compare view

Updates rcgen from 0.13.2 to 0.14.8

Release notes

Sourced from rcgen's releases.

0.14.8

What's Changed

• Fix incorrect identifier for ML-DSA signature algorithms by @​DarkmatterVale in rustls/rcgen#412
• Upgrade yasna to 0.6 by @​djc in rustls/rcgen#419
• Add support for is_ca in CSR Params by @​5Dev24 in rustls/rcgen#420
• Add support for serializing BasicConstraints in CSR's by @​5Dev24 in rustls/rcgen#422
• update key_pair to signing_key in README.md by @​fakelozic in rustls/rcgen#427
• Fix encoding of directoryName constraints by @​sfackler in rustls/rcgen#429

0.14.7

What's Changed

• Implement From<KeyPair> for PrivateKeyDer<'static> by @​LebedevRI in rustls/rcgen#403
• update copyright year in LICENSE by @​jasmyhigh in rustls/rcgen#407
• Add P521-SHA256 and P521-SHA384 signing algorithms by @​djc in rustls/rcgen#408

0.14.6

What's Changed

• Use private cfg for docs.rs-like builds by @​ctz in rustls/rcgen#384
• Expand rustdoc for CertificateSigningRequestParams::from_der by @​dwhjames in rustls/rcgen#386
• Group imports by @​iamjpotts in rustls/rcgen#381
• examples: add signing new cert using existing ca pem files by @​iamjpotts in rustls/rcgen#379
• Tweak CSR parsing errors/documentation by @​djc in rustls/rcgen#390
• Rename invalid CSR signature error variant by @​djc in rustls/rcgen#393
• chore: fix some typos in comments by @​black5box in rustls/rcgen#395
• ci: sync cargo-check-external-types nightly by @​cpu in rustls/rcgen#399
• Forward selected crypto backend to x509-parser by @​djc in rustls/rcgen#398

0.14.5

Implement SigningKey for &impl SigningKey to make Issuer more broadly useful.

What's Changed

• Forward signing and public key data through references by @​djc in rustls/rcgen#380

0.14.4

What's Changed

• Upgrade botan to 0.12 by @​djc in rustls/rcgen#377
• Upgrade x509-parser to 0.18 by @​djc in rustls/rcgen#376
• Add unstable support for ML-DSA algorithms by @​djc in rustls/rcgen#374

0.14.3

What's Changed

• docs: fix typo in PKCS_RSA_SHA384 doc comment by @​Bravo555 in rustls/rcgen#367
• Fix regression in key usage purpose encoding by @​djc in rustls/rcgen#369

... (truncated)

Commits

• a70f083 Bump version to 0.14.8
• a32fdb1 Fix encoding of directoryName constraints
• 7111a79 update key_pair to signing_key
• 10664c9 Take semver-compatible dependency updates
• 0ec4d09 Add testing of CSR serializing basic constraints
• 5f94ef9 Add support for serializing BasicConstraints in CSR's
• fb835c1 Add writing basic constraints logic
• 0cf161d Bump codecov/codecov-action from 5 to 6
• 4909041 Add testing of CSR Params parsing Basic Constraints variants
• 6675a94 Add support for is_ca in CSR Params
• Additional commits viewable in compare view

Updates toml from 0.9.12+spec-1.1.0 to 1.1.2+spec-1.1.0

Commits

• a3d0047 chore: Release
• cc37615 docs: Update changelog
• 7f5e9e1 fix(parser): Consolidate invalid unquoted key into one error (#1138)
• 52feb90 fix(parser): Consolidate invalid unquoted key into one error
• aad85d4 chore(deps): Update j178/prek-action action to v2 (#1136)
• 8b1ac44 chore(deps): Update compatible (dev) (#1135)
• 9effd79 chore(deps): Update j178/prek-action action to v2
• 9db8aad chore: Release
• e55a663 docs: Update changelog
• c11d7d7 Optimisations (#1133)
• Additional commits viewable in compare view

Updates reqwest-middleware from 0.4.2 to 0.5.2

Release notes

Sourced from reqwest-middleware's releases.

reqwest-middleware-v0.5.2

Added

• (reqwest-middleware) stream feature exported. (#246)
• expose internal reqwest::Client as reference (#209)

Other

• Adjust third-party middleware list in readme (#282)

reqwest-middleware-v0.5.1

Other

• Set changelog version for last release (#268)

reqwest-middleware-v0.5.0

Added

• Deprecated fetch_mode_no_cors as it's been deprecated in reqwest.

Commits

• 614b947 chore: release (#280)
• 051dc25 feat!: support opentelemetry 0.32 (#284)
• 9bedaf8 Adjust third-party middleware list in readme (#282)
• 8bc3640 feat(reqwest-middleware): stream feature exported. (#246)
• de31517 feat: expose internal reqwest::Client as reference (#209)
• 0744f65 chore: release (#274)
• 33e6be9 feat!: support the opentelemetry 0.31 (#272)
• d3773bb ci: reduce debug-section size to get tests to run (#250)
• 7171e65 fix(reqwest-retry): drop instant by upgrading wasmtimer (#254)
• 1692cad Set changelog version for last release (#268)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.