build(deps): bump the rust group across 1 directory with 5 updates

[dependabot]

Bumps the rust group with 5 updates in the / directory:

Package	From	To
clap	4.6.0	4.6.1
tokio	1.51.0	1.52.2
uuid	1.23.0	1.23.1
json-patch	4.1.0	4.2.0
openssl	0.10.76	0.10.79

Updates clap from 4.6.0 to 4.6.1

Release notes

Sourced from clap's releases.

v4.6.1

[4.6.1] - 2026-04-15

Fixes

• (derive) Ensure rebuilds happen when an read env variable is changed

Changelog

Sourced from clap's changelog.

[4.6.1] - 2026-04-15

Fixes

• (derive) Ensure rebuilds happen when an read env variable is changed

Commits

• 1420275 chore: Release
• d2c817d docs: Update changelog
• f88c94e Merge pull request #6341 from epage/sep
• acbb822 fix(complete): Reduce risk of conflict with actual subcommands
• a49fadb refactor(complete): Pull out subcommand separator
• ddc008b Merge pull request #6332 from epage/update
• 497dc50 chore: Update compatible dependencies
• dca2326 Merge pull request #6331 from clap-rs/renovate/j178-prek-action-2.x
• 54bdaa3 chore(deps): Update j178/prek-action action to v2
• f0d30d9 chore: Release
• Additional commits viewable in compare view

Updates tokio from 1.51.0 to 1.52.2

Release notes

Sourced from tokio's releases.

Tokio v1.52.2

1.52.2 (May 4th, 2026)

This release reverts the LIFO slot stealing change introduced in 1.51.0 (#7431), due to [its performance impact]#8065. (#8100)

#7431: tokio-rs/tokio#7431 #8065: tokio-rs/tokio#8065 #8100: tokio-rs/tokio#8100

Tokio v1.52.1

1.52.1 (April 16th, 2026)

Fixed

• runtime: revert #7757 to fix [a regression]#8056 that causes spawn_blocking to hang (#8057)

#7757: tokio-rs/tokio#7757 #8056: tokio-rs/tokio#8056 #8057: tokio-rs/tokio#8057

Tokio v1.52.0

1.52.0 (April 14th, 2026)

Added

• io: AioSource::register_borrowed for I/O safety support (#7992)
• net: add try_io function to unix::pipe sender and receiver types (#8030)

Added (unstable)

• runtime: Builder::enable_eager_driver_handoff setting enable eager hand off of the I/O and time drivers before polling tasks (#8010)
• taskdump: add trace_with() for customized task dumps (#8025)
• taskdump: allow impl FnMut() in trace_with instead of just fn() (#8040)
• fs: support io_uring in AsyncRead for File (#7907)

Changed

• runtime: improve spawn_blocking scalability with sharded queue (#7757)
• runtime: use compare_exchange_weak() in worker queue (#8028)

Fixed

• runtime: overflow second half of tasks when local queue is filled instead of first half (#8029)

Documented

• docs: fix typo in oneshot::Sender::send docs (#8026)
• docs: hide #[tokio::main] attribute in the docs of sync::watch (#8035)
• net: add docs on ConnectionRefused errors with UDP sockets (#7870)

... (truncated)

Commits

• 4abe9d7 chore: prepare Tokio v1.52.2 (#8115)
• f82bcf3 Merge 'tokio-1.51.2' into 'tokio-1.52.x' (#8114)
• 7db9bc4 test: revert "remove churn() task from lifo_stealable" (#8114)
• 64834ec chore: prepare Tokio v1.51.2 (#8113)
• 967f571 runtime: revert "steal tasks from the LIFO slot" (#8100)
• 9271e3e Merge tokio-1.51.x (for #8101) into tokio-1.52.x (#8106)
• cd1823f Revert "Pin stable to 1.94 for tokio-1.51.x" (#8106)
• a97cf12 Merge tokio-1.47.x (commit 670a907c55c7) into tokio-1.51.x (#8105)
• bde3f20 Pin stable to 1.94 for tokio-1.51.x (#8105)
• 670a907 ci: fix CI on tokio-1.47.x (#8101)
• Additional commits viewable in compare view

Updates uuid from 1.23.0 to 1.23.1

Release notes

Sourced from uuid's releases.

v1.23.1

What's Changed

• Remove deprecated msrv feature from wasm-bindgen dependency by @​guybedford in uuid-rs/uuid#877
• fix: Timestamp::from_gregorian deprecation note by @​aznashwan in uuid-rs/uuid#878
• Prepare for 1.23.1 release by @​KodrAus in uuid-rs/uuid#879

New Contributors

• @​guybedford made their first contribution in uuid-rs/uuid#877
• @​aznashwan made their first contribution in uuid-rs/uuid#878

Full Changelog: uuid-rs/uuid@v1.23.0...v1.23.1

Commits

• ca0c85f Merge pull request #879 from uuid-rs/cargo/v1.23.1
• b4db015 prepare for 1.23.1 release
• 771069d Merge pull request #878 from aznashwan/fix-from-gregorian-deprecation-note
• 80994a2 fix: Timestamp::from_gregorian deprecation note
• 90c5be8 Merge pull request #877 from guybedford/remove-wasm-bindgen-msrv
• 8b8c4f4 Remove deprecated feature from wasm-bindgen dependency
• See full diff in compare view

Updates json-patch from 4.1.0 to 4.2.0

Commits

• 1b0f707 chore: Release json-patch version 4.2.0
• e401ec9 chore: update test snapshots
• f5ee2a4 chore: update cargo-tarpaulin
• 3a33036 Update to thiserror 2
• e8ea209 Exclude development scripts from published package
• See full diff in compare view

Updates openssl from 0.10.76 to 0.10.79

Release notes

Sourced from openssl's releases.

openssl-v0.10.79

What's Changed

• Bump actions/cache from 5.0.4 to 5.0.5 by @​dependabot[bot] in rust-openssl/rust-openssl#2610
• Try to fix OpenSSL 1.1.0l download by @​botovq in rust-openssl/rust-openssl#2614
• Require &mut BigNumContextRef for EcPointRef mul/invert by @​alex in rust-openssl/rust-openssl#2615
• Fix UB in EcGroupRef::generator on groups without a generator by @​alex in rust-openssl/rust-openssl#2617
• Replace use libc::*; with targeted imports in openssl-sys by @​alex in rust-openssl/rust-openssl#2618
• Add PKeyRef::is_a and KeyType for name-based key identification by @​reaperhulk in rust-openssl/rust-openssl#2619
• Add PKey::{public,private}_key_from_raw_bytes_ex by @​reaperhulk in rust-openssl/rust-openssl#2620
• Bump MSRV to 1.80 by @​reaperhulk in rust-openssl/rust-openssl#2622
• Drop once_cell in favor of std::sync::{LazyLock, OnceLock} by @​reaperhulk in rust-openssl/rust-openssl#2623
• Add PKey::private_key_from_seed for ML-DSA/ML-KEM key import by @​reaperhulk in rust-openssl/rust-openssl#2621
• parallelize more builds in CI for cold caches by @​reaperhulk in rust-openssl/rust-openssl#2625
• Add PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction by @​reaperhulk in rust-openssl/rust-openssl#2626
• Fix process abort when verify/PSK callbacks fire after SSL_CTX swap by @​alex in rust-openssl/rust-openssl#2624
• Bind OSSL_PARAM_modified and use it for seed_into by @​reaperhulk in rust-openssl/rust-openssl#2628
• Add PkeyCtxRef::set_context_string for ML-DSA by @​reaperhulk in rust-openssl/rust-openssl#2629
• Reject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders by @​alex in rust-openssl/rust-openssl#2631
• Fix output buffer overflow for AES key-wrap-with-padding ciphers by @​alex in rust-openssl/rust-openssl#2630
• Release openssl 0.10.79 and openssl-sys 0.9.115 by @​reaperhulk in rust-openssl/rust-openssl#2632

Full Changelog: rust-openssl/rust-openssl@openssl-v0.10.78...openssl-v0.10.79

openssl-v0.10.78

What's Changed

• Fix Suite B flag assignments in verify.rs by @​alex in rust-openssl/rust-openssl#2592
• Use cvt_p for OPENSSL_malloc error handling by @​alex in rust-openssl/rust-openssl#2593
• Mark BIO_get_mem_data on AWS-LC to be unsafe by @​alex in rust-openssl/rust-openssl#2594
• Set timeout for package installation step by @​alex in rust-openssl/rust-openssl#2595
• Panic in Crypter::new when IV is required but not provided by @​alex in rust-openssl/rust-openssl#2596
• openssl 4 support by @​reaperhulk in rust-openssl/rust-openssl#2591
• Avoid panic for overlong OIDs by @​botovq in rust-openssl/rust-openssl#2598
• Fix dangling stack pointer in custom extension add callback by @​alex in rust-openssl/rust-openssl#2599
• Add support for LibreSSL 4.3.x by @​botovq in rust-openssl/rust-openssl#2603
• fix inverted bounds assertion in AES key unwrap by @​reaperhulk in rust-openssl/rust-openssl#2604
• Reject oversized length returns from password callback trampoline by @​alex in rust-openssl/rust-openssl#2605
• Validate callback-returned lengths in PSK and cookie trampolines by @​alex in rust-openssl/rust-openssl#2607
• Error for short out in MdCtxRef::digest_final() by @​botovq in rust-openssl/rust-openssl#2608
• Check derive output buffer length on OpenSSL 1.1.x by @​alex in rust-openssl/rust-openssl#2606
• Release openssl v0.10.78 and openssl-sys v0.9.114 by @​alex in rust-openssl/rust-openssl#2609

Full Changelog: rust-openssl/rust-openssl@openssl-v0.10.77...openssl-v0.10.78

openssl-v0.10.77

What's Changed

• CI: Hash-pin all action usage, avoid credential persistence in actions/checkout by @​woodruffw in rust-openssl/rust-openssl#2587
• Bump aws-lc-sys to 0.39 by @​goffrie in rust-openssl/rust-openssl#2588
• md_ctx: enable sign/verify/reset on BoringSSL, LibreSSL, and AWS-LC by @​alex in rust-openssl/rust-openssl#2589

... (truncated)

Commits

• 649f2d9 Release openssl 0.10.79 and openssl-sys 0.9.115 (#2632)
• 257f9b2 Fix output buffer overflow for AES key-wrap-with-padding ciphers (#2630)
• d43e917 Reject non-UTF-8 OCSP responder URLs in X509Ref::ocsp_responders (#2631)
• f46519c Add PkeyCtxRef::set_context_string for ML-DSA (#2629)
• ad9ae31 Bind OSSL_PARAM_modified and use it for seed_into (#2628)
• 4e25c9b Fix process abort when verify/PSK callbacks fire after SSL_CTX swap (#2624)
• 3dd8f42 Add PKeyRef::seed_into for ML-DSA/ML-KEM seed extraction (#2626)
• 2c5e5a8 parallelize more builds in CI for cold caches (#2625)
• 6685591 Add PKey::private_key_from_seed for ML-DSA/ML-KEM key import (#2621)
• 8f8fdce Drop once_cell in favor of std::sync::{LazyLock, OnceLock} (#2623)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[openshift-ci]

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a trusted-execution-clusters member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work.

Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.