chore(deps): Bump the firecracker group with 15 updates

[dependabot]

Bumps the firecracker group with 15 updates:

Package	From	To
serde	1.0.219	1.0.224
serde_json	1.0.143	1.0.145
serde_derive	1.0.219	1.0.224
semver	1.0.26	1.0.27
aws-lc-rs	1.13.3	1.14.0
aws-lc-sys	0.30.0	0.31.0
cc	1.2.36	1.2.37
errno	0.3.13	0.3.14
indexmap	2.11.0	2.11.1
serde_spanned	1.0.0	1.0.1
toml	0.9.5	0.9.6
toml_datetime	0.7.0	0.7.1
unicode-ident	1.0.18	1.0.19
wasi	0.14.4+wasi-0.2.4	0.14.6+wasi-0.2.4
wit-bindgen	0.45.1	0.46.0

Updates serde from 1.0.219 to 1.0.224

Release notes

Sourced from serde's releases.

v1.0.224

• Remove private types being suggested in rustc diagnostics (#2979)

v1.0.223

• Fix serde_core documentation links (#2978)

v1.0.222

• Make serialize_with attribute produce code that works if respanned to 2024 edition (#2950, thanks @​aytey)

v1.0.221

• Documentation improvements (#2973)
• Deprecate serde_if_integer128! macro (#2975)

v1.0.220

• Add a way for data formats to depend on serde traits without waiting for serde_derive compilation: https://docs.rs/serde_core (#2608, thanks @​osiewicz)

Commits

• 1699882 Release 1.0.224
• 840f6ec Merge pull request #2979 from dtolnay/private
• bf9ebea Mark every trait impl for a private type with do_not_recommend
• 6c316d7 Release 1.0.223
• a4ac0c2 Merge pull request #2978 from dtolnay/htmlrooturl
• ed76364 Change serde_core's html_root_url to docs.rs/serde_core
• 57e21a1 Release 1.0.222
• bb58726 Merge pull request #2950 from aytey/fix_lifetime_issue_2024
• 3f69251 Delete unneeded field of MapDeserializer
• fd4decf Merge pull request #2976 from dtolnay/content
• Additional commits viewable in compare view

Updates serde_json from 1.0.143 to 1.0.145

Release notes

Sourced from serde_json's releases.

v1.0.145

• Raise serde version requirement to >=1.0.220

v1.0.144

• Switch serde dependency to serde_core (#1285)

Commits

• efa66e3 Release 1.0.145
• 23679e2 Add serde version constraint
• fc27baf Release 1.0.144
• caef3c6 Ignore uninlined_format_args pedantic clippy lint
• 81ba3aa Merge pull request #1285 from dtolnay/serdecore
• d21e8ce Switch serde dependency to serde_core
• 6beb6cd Merge pull request #1286 from dtolnay/up
• 1dbc803 Raise required compiler to Rust 1.61
• 0bf5d87 Enforce trybuild >= 1.0.108
• d12e943 Update actions/checkout@v4 -> v5
• See full diff in compare view

Updates serde_derive from 1.0.219 to 1.0.224

Release notes

Sourced from serde_derive's releases.

v1.0.224

• Remove private types being suggested in rustc diagnostics (#2979)

v1.0.223

• Fix serde_core documentation links (#2978)

v1.0.222

• Make serialize_with attribute produce code that works if respanned to 2024 edition (#2950, thanks @​aytey)

v1.0.221

• Documentation improvements (#2973)
• Deprecate serde_if_integer128! macro (#2975)

v1.0.220

• Add a way for data formats to depend on serde traits without waiting for serde_derive compilation: https://docs.rs/serde_core (#2608, thanks @​osiewicz)

Commits

• 1699882 Release 1.0.224
• 840f6ec Merge pull request #2979 from dtolnay/private
• bf9ebea Mark every trait impl for a private type with do_not_recommend
• 6c316d7 Release 1.0.223
• a4ac0c2 Merge pull request #2978 from dtolnay/htmlrooturl
• ed76364 Change serde_core's html_root_url to docs.rs/serde_core
• 57e21a1 Release 1.0.222
• bb58726 Merge pull request #2950 from aytey/fix_lifetime_issue_2024
• 3f69251 Delete unneeded field of MapDeserializer
• fd4decf Merge pull request #2976 from dtolnay/content
• Additional commits viewable in compare view

Updates semver from 1.0.26 to 1.0.27

Release notes

Sourced from semver's releases.

1.0.27

• Switch serde dependency to serde_core (#333)

Commits

• 6ed8561 Release 1.0.27
• 6967bba Add serde version constraint
• 84d3057 Exclude build.rs from crates.io package
• b09aac9 Merge pull request #343 from dtolnay/up
• 49b8570 Delete backport module
• 9b04afe Merge pull request #342 from dtolnay/up
• 83a8e91 Delete no_nonzero_bitscan configuration
• e606a17 Merge pull request #341 from dtolnay/up
• ebe7cf1 Delete no_unsafe_op_in_unsafe_fn_lint configuration
• a381bff Merge pull request #340 from dtolnay/up
• Additional commits viewable in compare view

Updates aws-lc-rs from 1.13.3 to 1.14.0

Release notes

Sourced from aws-lc-rs's releases.

aws-lc-rs v1.14.0

What's Changed

• MSRV bumped to 1.70.0 by @​justsmth in aws/aws-lc-rs#822
• aws-lc-sys v0.31.0 aligned with AWS-LC v1.59.0 by @​justsmth in aws/aws-lc-rs#867
  • Performance improvements for ML-KEM:
    • x86-64: aws/aws-lc#2631
    • arm64: aws/aws-lc#2498
• Support for sign/verify on digests by @​justsmth in aws/aws-lc-rs#826
• Support for decrypting ANSI X9.23 / ISO 10126-padded AES by @​tstenner in aws/aws-lc-rs#847
• Support SIV in RandomizedNonceKey by @​justsmth in aws/aws-lc-rs#846
• Support verification of P256/P384+SHA512 signatures by @​ctz in aws/aws-lc-rs#857
• RsaSignatureEncoding type is public by @​soundofspace in aws/aws-lc-rs#864
• ParsedPublicKey for signature operations by @​justsmth in aws/aws-lc-rs#863
• ParsedPublicKey for agreement operations by @​justsmth in aws/aws-lc-rs#862

Build Improvements

• Allow prebuilt-NASM w/ Cmake toolchain by @​justsmth in aws/aws-lc-rs#852
• Add support for Apple tvOS builds by @​matszczygiel in aws/aws-lc-rs#848

Issues Being Resolved

• Feature Request: RandomizedNonceKey for AES-GCM-SIV -- aws/aws-lc-rs#842
• Add way to pre-parse signature keys (i.e. turn signature::UnparsedPublicKey to PublicKey) -- aws/aws-lc-rs#849
• Build failed for x86_64-pc-windows-gnu target regardless of AWS_LC_SYS_PREBUILT_NASM=1 -- aws/aws-lc-rs#850

Other Merged PRs

• Exclude CI jobs for invalid param combinations by @​justsmth in aws/aws-lc-rs#866
• Prepare aws-lc-rs v1.14.0 by @​justsmth in aws/aws-lc-rs#876
• Fix + refactor "ios-simulator-runner.sh" by @​justsmth in aws/aws-lc-rs#868
• Support CPU Jitter Entropy from upstream RAGDOLL by @​torben-hansen in aws/aws-lc-rs#865
• Avoid doctests in cross-compile CI by @​justsmth in aws/aws-lc-rs#855
• Consolidate agreement functions into LcPtr<EVP_PKEY> by @​justsmth in aws/aws-lc-rs#854
• Fix unexpected +1.70.0 compiler error by @​justsmth in aws/aws-lc-rs#861

New Contributors

• @​tstenner made their first contribution in aws/aws-lc-rs#847
• @​matszczygiel made their first contribution in aws/aws-lc-rs#848

Full Changelog: aws/aws-lc-rs@v1.13.3...v1.14.0

Commits

• 18bd3cb Prepare aws-lc-rs v1.14.0 (#876)
• 9a2b0cc ParsedPublicKey for agreement (#862)
• f139e68 Allow prebuilt-NASM w/ Cmake toolchain (#852)
• 6aaec4a Fix unexpected +1.70.0 compiler error (#861)
• beef815 ParsedPublicKey for signature (#863)
• 124f674 Expose RsaSignatureEncoding (#864)
• 86de8df Add support for Apple tvOS builds (#848)
• 8e8b957 Fix + refactor "ios-simulator-runner.sh" (#868)
• f012503 Exclude jobs w/ invalid params (#866)
• 2630afa Prepare aws-lc-sys v0.31.0 (#867)
• Additional commits viewable in compare view

Updates aws-lc-sys from 0.30.0 to 0.31.0

Commits

• 18bd3cb Prepare aws-lc-rs v1.14.0 (#876)
• 9a2b0cc ParsedPublicKey for agreement (#862)
• f139e68 Allow prebuilt-NASM w/ Cmake toolchain (#852)
• 6aaec4a Fix unexpected +1.70.0 compiler error (#861)
• beef815 ParsedPublicKey for signature (#863)
• 124f674 Expose RsaSignatureEncoding (#864)
• 86de8df Add support for Apple tvOS builds (#848)
• 8e8b957 Fix + refactor "ios-simulator-runner.sh" (#868)
• f012503 Exclude jobs w/ invalid params (#866)
• 2630afa Prepare aws-lc-sys v0.31.0 (#867)
• Additional commits viewable in compare view

Updates cc from 1.2.36 to 1.2.37

Changelog

Sourced from cc's changelog.

1.2.36 - 2025-09-05

Other

• Regenerate windows sys bindings (#1548)
• Update windows-bindgen requirement from 0.62 to 0.63 (#1547)
• Add fn get_ucrt_dir for find-msvc-tools (#1546)
• Regenerate target info (#1544)
• fix publish.yml (#1543)
• Replace periods with underscores as well when parsing env variables (#1541)

1.2.35 - 2025-09-01

Fixed

• fix building for aarch64-apple-visionos-sim on nightly (#1534)
• fix tests apple_sdkroot_wrong (#1530)

Other

• Regenerate target info (#1536)
• Optimize Tool::to_command (#1535)
• Extract find-msvc-tools (#1531)
• Add prefer_clang_cl_over_msvc (#1516)

1.2.34 - 2025-08-22

Fixed

• add -mcpu=mvp and -mmutable-globals for wasm32v1-none (#1524)

Other

• Optimize parse_version in find_tools.rs (#1527)
• Fallback to manually searching for tool dir (#1526)

1.2.33 - 2025-08-15

Other

• Regenerate target info (#1521)
• [win][arm64ec] Add testing for Arm64EC Windows (#1512)
• Fix parsing of nigthly targets (#1517)
• [win][arm64ec] Fix finding assembler and setting is_arm for Arm64EC (#1511)

1.2.32 - 2025-08-08

Fixed

• fix new clippy lint introduced in rust 1.89.0 (#1509)

... (truncated)

Commits

• 236b4f8 chore(cc): release v1.2.37 (#1555)
• 1f6ffb1 Fix errmsg in RustcCodegenFlags::set_rustc_flag (#1551)
• 79beddf propagate stack protector to Linux C compilers (#1550)
• fafa9fc Refactor: Extract new fn run_commands_in_parallel (#1549)
• See full diff in compare view

Updates errno from 0.3.13 to 0.3.14

Changelog

Sourced from errno's changelog.

[0.3.14] - 2025-09-08

• Update windows-sys requirement from >=0.52, <=0.59 to >=0.52, <0.62 #117

Commits

• See full diff in compare view

Updates indexmap from 2.11.0 to 2.11.1

Changelog

Sourced from indexmap's changelog.

2.11.1 (2025-09-08)

• Added a get_key_value_mut method to IndexMap.
• Removed the unnecessary Ord bound on insert_sorted_by methods.

Commits

• f33f4d9 Merge pull request #413 from cuviper/release-2.11.1
• 4c680a7 Release 2.11.1
• b700522 Merge pull request #411 from ya7010/add_get_key_value_mut
• 01f3ef0 Make IndexMap::get_* docs more consistent
• cd4c1a5 feat: add IndexMap::get_key_value_mut
• 48a98b7 Merge pull request #412 from andymandias/relax-trait-bounds
• 2be4487 Remove Ord trait bound on insert_sorted_by functions.
• See full diff in compare view

Updates serde_spanned from 1.0.0 to 1.0.1

Commits

• 4695fb0 chore: Release
• 6a77ed7 docs: Update changelog
• c1e8197 refactor: Switch serde dependency to serde_core (#1036)
• d85d6cd refactor: Switch serde dependency to serde_core
• 9154dcb chore: Release
• 38f445c docs: Update changelog
• 1ce8a75 feat(edit): Expose Table::span (#1031)
• 290c28f feat(edit): Expose Table::span
• b2bc739 chore(deps): Update Rust Stable to v1.89 (#1026)
• bd21148 chore: Release
• Additional commits viewable in compare view

Updates toml from 0.9.5 to 0.9.6

Commits

• 4695fb0 chore: Release
• 6a77ed7 docs: Update changelog
• c1e8197 refactor: Switch serde dependency to serde_core (#1036)
• d85d6cd refactor: Switch serde dependency to serde_core
• 9154dcb chore: Release
• 38f445c docs: Update changelog
• 1ce8a75 feat(edit): Expose Table::span (#1031)
• 290c28f feat(edit): Expose Table::span
• b2bc739 chore(deps): Update Rust Stable to v1.89 (#1026)
• See full diff in compare view

Updates toml_datetime from 0.7.0 to 0.7.1

Commits

• 4695fb0 chore: Release
• 6a77ed7 docs: Update changelog
• c1e8197 refactor: Switch serde dependency to serde_core (#1036)
• d85d6cd refactor: Switch serde dependency to serde_core
• 9154dcb chore: Release
• 38f445c docs: Update changelog
• 1ce8a75 feat(edit): Expose Table::span (#1031)
• 290c28f feat(edit): Expose Table::span
• b2bc739 chore(deps): Update Rust Stable to v1.89 (#1026)
• bd21148 chore: Release
• Additional commits viewable in compare view

Updates unicode-ident from 1.0.18 to 1.0.19

Release notes

Sourced from unicode-ident's releases.

1.0.19

• Update to Unicode 17.0.0 (#37)

Commits

• dc018bf Release 1.0.19
• 9dce213 Merge pull request #37 from dtolnay/unicode17.0.0
• 17da3fe Force latest=17.0.0 in CI
• acbaf6a Update to Unicode 17.0.0
• e4cceed Merge pull request #36 from dtolnay/ucdgenerate
• f871463 Regenerate comparison tests with ucd-generate 0.3.1
• ff8590b Merge pull request #35 from dtolnay/latest
• 6a07437 Update UCD.zip download URL
• 83d3bdf Update actions/checkout@v4 -> v5
• be16148 Make .gitattributes match only paths from repo root
• Additional commits viewable in compare view

Updates wasi from 0.14.4+wasi-0.2.4 to 0.14.6+wasi-0.2.4

Commits

• 3da562c Put crate name and version into type section suffix (#120)
• 01af74f Bump to 0.14.5 (#119)
• e55b3b0 Add a wasip3 crate alongside others (#111)
• 4ae7014 Develop bindings for WASI versions in parallel (#118)
• See full diff in compare view

Updates wit-bindgen from 0.45.1 to 0.46.0

Commits

• 4c0e9a4 Release wit-bindgen 0.46.0 (#1384)
• 6b57720 Add a test for yielding (#1385)
• 844f862 Update to wasm-tools 239 (#1383)
• 867955d fix(async): rust-rt async depends on std (#1381)
• 7be5607 Revert "Disable C# in CI testing for now (#1362)" (#1380)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 82.68%. Comparing base (60633bb) to head (d4c8fb6).
⚠️ Report is 1 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #5442   +/-   ##
=======================================
  Coverage   82.68%   82.68%           
=======================================
  Files         263      263           
  Lines       27478    27478           
=======================================
  Hits        22719    22719           
  Misses       4759     4759           

Flag	Coverage Δ
5.10-m5n.metal	82.85% <ø> (+<0.01%)	⬆️
5.10-m6a.metal	82.10% <ø> (-0.01%)	⬇️
5.10-m6g.metal	79.46% <ø> (-0.01%)	⬇️
5.10-m6i.metal	82.84% <ø> (ø)
5.10-m7a.metal-48xl	82.09% <ø> (ø)
5.10-m7g.metal	79.47% <ø> (ø)
5.10-m7i.metal-24xl	82.82% <ø> (ø)
5.10-m7i.metal-48xl	82.82% <ø> (+<0.01%)	⬆️
5.10-m8g.metal-24xl	79.47% <ø> (ø)
5.10-m8g.metal-48xl	79.46% <ø> (ø)
6.1-m5n.metal	82.89% <ø> (+<0.01%)	⬆️
6.1-m6a.metal	82.14% <ø> (-0.01%)	⬇️
6.1-m6g.metal	79.46% <ø> (ø)
6.1-m6i.metal	82.88% <ø> (ø)
6.1-m7a.metal-48xl	82.13% <ø> (ø)
6.1-m7g.metal	79.46% <ø> (-0.01%)	⬇️
6.1-m7i.metal-24xl	82.89% <ø> (ø)
6.1-m7i.metal-48xl	82.89% <ø> (ø)
6.1-m8g.metal-24xl	79.46% <ø> (ø)
6.1-m8g.metal-48xl	79.46% <ø> (-0.01%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.