chore(deps): bump the all group with 2 updates

[dependabot]

Bumps the all group with 2 updates: openssl and xx.

Updates openssl from 0.10.76 to 0.10.77

Release notes

Sourced from openssl's releases.

openssl-v0.10.77

What's Changed

• CI: Hash-pin all action usage, avoid credential persistence in actions/checkout by @​woodruffw in rust-openssl/rust-openssl#2587
• Bump aws-lc-sys to 0.39 by @​goffrie in rust-openssl/rust-openssl#2588
• md_ctx: enable sign/verify/reset on BoringSSL, LibreSSL, and AWS-LC by @​alex in rust-openssl/rust-openssl#2589
• Release openssl v0.10.77 and openssl-sys v0.9.113 by @​alex in rust-openssl/rust-openssl#2590

New Contributors

• @​woodruffw made their first contribution in rust-openssl/rust-openssl#2587

Full Changelog: rust-openssl/rust-openssl@openssl-v0.10.76...openssl-v0.10.77

Commits

• 78efb65 Release openssl v0.10.77 and openssl-sys v0.9.113 (#2590)
• 5507b22 md_ctx: enable sign/verify/reset on BoringSSL, LibreSSL, and AWS-LC (#2589)
• ba21087 Merge pull request #2588 from goffrie/bump
• 9cc57fa Bump aws-lc-sys to 0.39
• ee5c685 CI: Hash-pin all action usage, avoid credential persistence in actions/checko...
• See full diff in compare view

Updates xx from 2.5.3 to 2.5.4

Release notes

Sourced from xx's releases.

v2.5.4

2.5.4 (2026-04-11)

Bug Fixes

• deps: update digest ecosystem crates to 0.11 (#216) (7622f45)

---

This PR was generated with Release Please. See documentation.

Changelog

Sourced from xx's changelog.

2.5.4 (2026-04-11)

Bug Fixes

• deps: update digest ecosystem crates to 0.11 (#216) (7622f45)

Commits

• 3b84e3b chore(main): release 2.5.4 (#217)
• 7622f45 fix(deps): update digest ecosystem crates to 0.11 (#216)
• 62f5170 chore(deps): update jdx/mise-action action to v4 (#215)
• a2815fe chore(deps): update rust crate zip to v8.5.1 (#211)
• fd0ff17 chore(deps): update rust crate tokio to v1.51.1 (#210)
• 6ea620b chore(deps): update dependency hk to v1.41.1 (#209)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions