Cargo.lock: fix security audit; MSRV 1.65+ (#731)

Also updates audit.toml to ignore an unsoundness warning for `borsh`,
and removes some ignore entries which are no longer relevant.

    $ cargo update
    Updating crates.io index
    Updating aead v0.5.1 -> v0.5.2
    Updating aho-corasick v0.7.20 -> v1.0.1
      Adding android-tzdata v0.1.1
      Adding anstream v0.3.2
      Adding anstyle v1.0.0
      Adding anstyle-parse v0.2.0
      Adding anstyle-query v1.0.0
      Adding anstyle-wincon v1.0.1
    Updating anyhow v1.0.69 -> v1.0.71
    Updating async-trait v0.1.66 -> v0.1.68
    Updating base64 v0.21.0 -> v0.21.2
      Adding bitvec v1.0.1
    Updating block-buffer v0.10.3 -> v0.10.4
    Updating block-padding v0.3.2 -> v0.3.3
    Updating borsh v0.10.2 -> v0.10.3
    Updating borsh-derive v0.10.2 -> v0.10.3
    Updating borsh-derive-internal v0.10.2 -> v0.10.3
    Updating borsh-schema-derive-internal v0.10.2 -> v0.10.3
    Updating bumpalo v3.12.0 -> v3.13.0
    Updating bytecheck v0.6.10 -> v0.6.11
    Updating bytecheck_derive v0.6.10 -> v0.6.11
    Updating chrono v0.4.23 -> v0.4.26
    Updating cipher v0.4.3 -> v0.4.4
    Updating clap v4.1.8 -> v4.3.0
      Adding clap_builder v4.3.0
    Updating clap_derive v4.1.8 -> v4.3.0
    Updating clap_lex v0.3.2 -> v0.5.0
    Updating cmac v0.7.1 -> v0.7.2
    Removing codespan-reporting v0.11.1
      Adding colorchoice v1.0.0
    Updating core-foundation-sys v0.8.3 -> v0.8.4
    Updating cpufeatures v0.2.5 -> v0.2.7
    Removing cxx v1.0.92
    Removing cxx-build v1.0.92
    Removing cxxbridge-flags v1.0.92
    Removing cxxbridge-macro v1.0.92
    Updating digest v0.10.6 -> v0.10.7
    Updating errno v0.2.8 -> v0.3.1
      Adding funty v2.0.0
    Updating futures v0.3.26 -> v0.3.28
    Updating futures-channel v0.3.26 -> v0.3.28
    Updating futures-core v0.3.26 -> v0.3.28
    Updating futures-executor v0.3.26 -> v0.3.28
    Updating futures-io v0.3.26 -> v0.3.28
    Updating futures-macro v0.3.26 -> v0.3.28
    Updating futures-sink v0.3.26 -> v0.3.28
    Updating futures-task v0.3.26 -> v0.3.28
    Updating futures-util v0.3.26 -> v0.3.28
    Updating generic-array v0.14.6 -> v0.14.7
    Updating getrandom v0.2.8 -> v0.2.9
    Updating h2 v0.3.16 -> v0.3.19
    Removing hashbrown v0.9.1
    Updating hyper v0.14.24 -> v0.14.26
    Updating iana-time-zone v0.1.53 -> v0.1.56
    Updating iana-time-zone-haiku v0.1.1 -> v0.1.2
    Updating indexmap v1.6.2 -> v1.9.3
    Updating io-lifetimes v1.0.5 -> v1.0.11
    Updating is-terminal v0.4.4 -> v0.4.7
    Updating js-sys v0.3.61 -> v0.3.63
    Updating keccak v0.1.3 -> v0.1.4
    Updating libc v0.2.139 -> v0.2.144
    Removing link-cplusplus v1.0.8
    Updating linux-raw-sys v0.1.4 -> v0.3.8
    Updating log v0.4.17 -> v0.4.18
    Updating mime v0.3.16 -> v0.3.17
    Updating mio v0.8.6 -> v0.8.8
    Removing num-integer v0.1.45
    Updating once_cell v1.17.1 -> v1.17.2
    Updating openssl v0.10.45 -> v0.10.54
    Updating openssl-macros v0.1.0 -> v0.1.1
    Updating openssl-sys v0.9.80 -> v0.9.88
    Removing os_str_bytes v6.4.1
    Updating paste v1.0.9 -> v1.0.12
    Updating pin-project v1.0.12 -> v1.1.0
    Updating pin-project-internal v1.0.12 -> v1.1.0
    Updating pkg-config v0.3.26 -> v0.3.27
    Removing proc-macro-error v1.0.4
    Removing proc-macro-error-attr v1.0.4
    Updating proc-macro2 v1.0.51 -> v1.0.59
    Updating prost v0.11.8 -> v0.11.9
    Updating prost-derive v0.11.8 -> v0.11.9
    Updating prost-types v0.11.8 -> v0.11.9
    Updating quote v1.0.23 -> v1.0.28
      Adding radium v0.7.0
    Updating redox_syscall v0.2.16 -> v0.3.5
    Updating regex v1.7.1 -> v1.8.3
    Removing regex-syntax v0.6.28
      Adding regex-syntax v0.6.29
      Adding regex-syntax v0.7.2
    Updating rkyv v0.7.40 -> v0.7.42
    Updating rkyv_derive v0.7.40 -> v0.7.42
    Updating rusb v0.9.1 -> v0.9.2
    Updating rust_decimal v1.28.1 -> v1.29.1
    Updating rustc-demangle v0.1.21 -> v0.1.23
    Updating rustix v0.36.9 -> v0.37.19
    Removing scratch v1.0.5
    Updating security-framework v2.8.2 -> v2.9.1
    Updating security-framework-sys v2.8.0 -> v2.9.0
    Updating semver v1.0.16 -> v1.0.17
    Updating serde v1.0.152 -> v1.0.163
    Updating serde_derive v1.0.152 -> v1.0.163
    Updating serde_json v1.0.94 -> v1.0.96
    Updating serde_repr v0.1.11 -> v0.1.12
    Updating sha3 v0.10.6 -> v0.10.8
    Updating simple-hyper-client v0.1.0 -> v0.1.1
    Updating spin v0.9.5 -> v0.9.8
      Adding syn v2.0.18
      Adding tap v1.0.1
    Updating tempfile v3.4.0 -> v3.5.0
    Updating thiserror v1.0.39 -> v1.0.40
    Updating thiserror-impl v1.0.39 -> v1.0.40
    Updating time v0.3.20 -> v0.3.21
    Updating time-core v0.1.0 -> v0.1.1
    Updating time-macros v0.2.8 -> v0.2.9
    Updating tokio v1.26.0 -> v1.28.2
    Updating tokio-macros v1.8.2 -> v2.1.0
    Updating tokio-stream v0.1.12 -> v0.1.14
    Updating tokio-util v0.7.7 -> v0.7.8
    Updating tracing-attributes v0.1.23 -> v0.1.24
    Updating tracing-core v0.1.30 -> v0.1.31
    Updating tracing-subscriber v0.3.16 -> v0.3.17
    Updating unicode-bidi v0.3.10 -> v0.3.13
    Updating unicode-ident v1.0.8 -> v1.0.9
    Removing unicode-width v0.1.10
      Adding utf8parse v0.2.1
    Updating uuid v1.3.0 -> v1.3.3
    Updating walkdir v2.3.2 -> v2.3.3
    Updating wasm-bindgen v0.2.84 -> v0.2.86
    Updating wasm-bindgen-backend v0.2.84 -> v0.2.86
    Updating wasm-bindgen-macro v0.2.84 -> v0.2.86
    Updating wasm-bindgen-macro-support v0.2.84 -> v0.2.86
    Updating wasm-bindgen-shared v0.2.84 -> v0.2.86
    Updating web-sys v0.3.61 -> v0.3.63
      Adding windows v0.48.0
      Adding windows-sys v0.48.0
    Removing windows-targets v0.42.1
      Adding windows-targets v0.42.2
      Adding windows-targets v0.48.0
    Removing windows_aarch64_gnullvm v0.42.1
      Adding windows_aarch64_gnullvm v0.42.2
      Adding windows_aarch64_gnullvm v0.48.0
    Removing windows_aarch64_msvc v0.42.1
      Adding windows_aarch64_msvc v0.42.2
      Adding windows_aarch64_msvc v0.48.0
    Removing windows_i686_gnu v0.42.1
      Adding windows_i686_gnu v0.42.2
      Adding windows_i686_gnu v0.48.0
    Removing windows_i686_msvc v0.42.1
      Adding windows_i686_msvc v0.42.2
      Adding windows_i686_msvc v0.48.0
    Removing windows_x86_64_gnu v0.42.1
      Adding windows_x86_64_gnu v0.42.2
      Adding windows_x86_64_gnu v0.48.0
    Removing windows_x86_64_gnullvm v0.42.1
      Adding windows_x86_64_gnullvm v0.42.2
      Adding windows_x86_64_gnullvm v0.48.0
    Removing windows_x86_64_msvc v0.42.1
      Adding windows_x86_64_msvc v0.42.2
      Adding windows_x86_64_msvc v0.48.0
      Adding wyz v0.5.1
    Updating zeroize v1.5.7 -> v1.6.0
    Updating zeroize_derive v1.3.3 -> v1.4.2

.cargo/audit.toml

@@ -5,6 +5,5 @@ ignore = [
     "RUSTSEC-2019-0036", # failure: type confusion if __private_get_type_id__ is overridden
     "RUSTSEC-2020-0036", # failure is officially deprecated/unmaintained
     "RUSTSEC-2020-0071", # time: potential segfault in `localtime_r` invocations
-    "RUSTSEC-2020-0159", # chrono: potential segfault in `localtime_r` invocations
-    "RUSTSEC-2021-0139", # ansi_term: unmaintained
-] # advisory IDs to ignore e.g. ["RUSTSEC-2019-0001", ...]
+    "RUSTSEC-2023-0033", # borsh: parsing borsh messages with ZST which are not-copy/clone is unsound
+]

.github/workflows/ci.yml

@@ -50,7 +50,7 @@ jobs:
       matrix:
         toolchain:
           - stable
-          - 1.64.0 # MSRV
+          - 1.65.0 # MSRV
     runs-on: ubuntu-latest
     steps:
       - name: Checkout sources
@@ -95,7 +95,7 @@ jobs:
       matrix:
         toolchain:
           - stable
-          - 1.64.0 # MSRV
+          - 1.65.0 # MSRV
     runs-on: ubuntu-latest
     steps:
       - name: Checkout sources
@@ -222,7 +222,7 @@ jobs:
       - name: Install stable toolchain
         uses: actions-rs/toolchain@v1
         with:
-          toolchain: 1.64.0 # MSRV
+          toolchain: 1.65.0 # MSRV
           override: true
 
       - name: Install libudev-dev