chore(deps): bump the non-arrow group with 6 updates

[dependabot]

Bumps the non-arrow group with 6 updates:

Package	From	To
openssl	0.10.76	0.10.77
rustac	bc98b7e	a9791d3
stac	bc98b7e	a9791d3
stac-duckdb	bc98b7e	a9791d3
stac-io	bc98b7e	a9791d3
tokio	1.51.0	1.51.1

Updates openssl from 0.10.76 to 0.10.77

Release notes

Sourced from openssl's releases.

openssl-v0.10.77

What's Changed

• CI: Hash-pin all action usage, avoid credential persistence in actions/checkout by @​woodruffw in rust-openssl/rust-openssl#2587
• Bump aws-lc-sys to 0.39 by @​goffrie in rust-openssl/rust-openssl#2588
• md_ctx: enable sign/verify/reset on BoringSSL, LibreSSL, and AWS-LC by @​alex in rust-openssl/rust-openssl#2589
• Release openssl v0.10.77 and openssl-sys v0.9.113 by @​alex in rust-openssl/rust-openssl#2590

New Contributors

• @​woodruffw made their first contribution in rust-openssl/rust-openssl#2587

Full Changelog: rust-openssl/rust-openssl@openssl-v0.10.76...openssl-v0.10.77

Commits

• 78efb65 Release openssl v0.10.77 and openssl-sys v0.9.113 (#2590)
• 5507b22 md_ctx: enable sign/verify/reset on BoringSSL, LibreSSL, and AWS-LC (#2589)
• ba21087 Merge pull request #2588 from goffrie/bump
• 9cc57fa Bump aws-lc-sys to 0.39
• ee5c685 CI: Hash-pin all action usage, avoid credential persistence in actions/checko...
• See full diff in compare view

Updates rustac from bc98b7e to a9791d3

Commits

• a9791d3 chore(deps): update getrandom requirement from 0.3 to 0.4 (#1017)
• 2e75a35 fix: re-enable publish for a few crates (#1021)
• 79025c1 chore: release (#1019)
• a9b03bd chore(deps): remove geoarrow patches (#1018)
• 2837ebe chore(deps): bump vite from 7.3.1 to 7.3.2 in /crates/wasm (#1009)
• 798a01f chore(deps): bump the github-actions group with 5 updates (#1016)
• ea382c1 chore: update arrrow-wasm, group github actions dependabot (#1015)
• See full diff in compare view

Updates stac from bc98b7e to a9791d3

Commits

• a9791d3 chore(deps): update getrandom requirement from 0.3 to 0.4 (#1017)
• 2e75a35 fix: re-enable publish for a few crates (#1021)
• 79025c1 chore: release (#1019)
• a9b03bd chore(deps): remove geoarrow patches (#1018)
• 2837ebe chore(deps): bump vite from 7.3.1 to 7.3.2 in /crates/wasm (#1009)
• 798a01f chore(deps): bump the github-actions group with 5 updates (#1016)
• ea382c1 chore: update arrrow-wasm, group github actions dependabot (#1015)
• See full diff in compare view

Updates stac-duckdb from bc98b7e to a9791d3

Commits

• a9791d3 chore(deps): update getrandom requirement from 0.3 to 0.4 (#1017)
• 2e75a35 fix: re-enable publish for a few crates (#1021)
• 79025c1 chore: release (#1019)
• a9b03bd chore(deps): remove geoarrow patches (#1018)
• 2837ebe chore(deps): bump vite from 7.3.1 to 7.3.2 in /crates/wasm (#1009)
• 798a01f chore(deps): bump the github-actions group with 5 updates (#1016)
• ea382c1 chore: update arrrow-wasm, group github actions dependabot (#1015)
• See full diff in compare view

Updates stac-io from bc98b7e to a9791d3

Commits

• a9791d3 chore(deps): update getrandom requirement from 0.3 to 0.4 (#1017)
• 2e75a35 fix: re-enable publish for a few crates (#1021)
• 79025c1 chore: release (#1019)
• a9b03bd chore(deps): remove geoarrow patches (#1018)
• 2837ebe chore(deps): bump vite from 7.3.1 to 7.3.2 in /crates/wasm (#1009)
• 798a01f chore(deps): bump the github-actions group with 5 updates (#1016)
• ea382c1 chore: update arrrow-wasm, group github actions dependabot (#1015)
• See full diff in compare view

Updates tokio from 1.51.0 to 1.51.1

Release notes

Sourced from tokio's releases.

Tokio v1.51.1

1.51.1 (April 8th, 2026)

Fixed

• sync: fix semaphore reopens after forget (#8021)
• net: surface errors from SO_ERROR on recv for UDP sockets on Linux (#8001)

Fixed (unstable)

• metrics: fix worker_local_schedule_count test (#8008)
• rt: do not leak fd when cancelling io_uring open operation (#7983)

#7983: tokio-rs/tokio#7983 #8001: tokio-rs/tokio#8001 #8008: tokio-rs/tokio#8008 #8021: tokio-rs/tokio#8021

Commits

• 98df02d chore: prepare Tokio v1.51.1 (#8023)
• 3ea11e2 sync: fix semaphore reopens after forget (#8021)
• c791213 rt: do not leak fd when cancelling io_uring open operation (#7983)
• ad8c59a net: surface errors from SO_ERROR on recv for UDP sockets on Linux (#8001)
• 654d38b metrics: fix worker_local_schedule_count test (#8008)
• 857ba80 docs: improve contributing docs on how to specify crates dependency versions ...
• 95b9342 chore: remove path deps for tokio-macros 2.7.0 (#8007)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions