Bump the backend group with 7 updates

[dependabot]

Bumps the backend group with 7 updates:

Package	From	To
axum	0.8.4	0.8.5
octocrab	0.45.0	0.46.0
postgres-openssl	0.5.1	0.5.2
regex	1.11.2	1.11.3
serde	1.0.226	1.0.228
thiserror	2.0.16	2.0.17
tokio-postgres	0.7.13	0.7.14

Updates axum from 0.8.4 to 0.8.5

Release notes

Sourced from axum's releases.

axum v0.8.5

• fixed: Reject JSON request bodies with trailing characters after the JSON document (#3453)
• added: Implement OptionalFromRequest for Multipart (#3220)
• added: Getter methods Location::{status_code, location}
• added: Support for writing arbitrary binary data into server-sent events (#3425)]
• added: middleware::ResponseAxumBodyLayer for mapping response body to axum::body::Body (#3469)
• added: impl FusedStream for WebSocket (#3443)
• changed: The sse module and Sse type no longer depend on the tokio feature (#3154)
• changed: If the location given to one of Redirects constructors is not a valid header value, instead of panicking on construction, the IntoResponse impl now returns an HTTP 500, just like Json does when serialization fails (#3377)
• changed: Update minimum rust version to 1.78 (#3412)

#3154: tokio-rs/axum#3154 #3220: tokio-rs/axum#3220 #3377: tokio-rs/axum#3377 #3412: tokio-rs/axum#3412 #3425: tokio-rs/axum#3425 #3443: tokio-rs/axum#3443 #3453: tokio-rs/axum#3453 #3469: tokio-rs/axum#3469

Commits

• a1d22f6 Release axum 0.8.5 and related crates
• ad2fd5b Update changelogs
• a0692f9 Reject JSON bodies with trailing chars (#3453)
• ae80850 Update to cargo-deny api version 2 (#3475)
• 651cc1e Remove unused link def
• 6529158 Bump Cargo.lock
• 1a7460c ci: Also run for release branches
• cb8670a Update to tokio-tungstenite 0.28 (#3497)
• 0c66493 axum-extra: Remove unused tower dependency (#3486)
• 6f1ed5e Spelling misstake in Using closure capture (#3481)
• Additional commits viewable in compare view

Updates octocrab from 0.45.0 to 0.46.0

Release notes

Sourced from octocrab's releases.

v0.46.0

Fixed

• [breaking] make CommitAuthor email nullable (#799)

Other

• Expose digest field in Asset model (#804)
• cargo clippy (#803)
• fix doc url for ProjectHandler (#802)

Changelog

Sourced from octocrab's changelog.

0.46.0 - 2025-09-28

Fixed

• [breaking] make CommitAuthor email nullable (#799)

Other

• Expose digest field in Asset model (#804)
• cargo clippy (#803)
• fix doc url for ProjectHandler (#802)

Commits

• e37b2c0 chore: release v0.46.0 (#800)
• a6e52f7 Expose digest field in Asset model (#804)
• ed51c79 cargo clippy (#803)
• c14cfa4 doc: fix doc url for ProjectHandler (#802)
• 0b57b29 fix!: make CommitAuthor email nullable (#799)
• See full diff in compare view

Updates postgres-openssl from 0.5.1 to 0.5.2

Release notes

Sourced from postgres-openssl's releases.

postgres-openssl v0.5.2

Changed

• Updated repository links to use rust-postgres organization.
• Upgraded to Rust 2021 edition.

Commits

• 6226d7c Release postgres-openssl v0.5.2
• 53a929e Release tokio-postgres v0.7.14
• 683a306 Release postgres-types v0.2.10
• cb2ba1c Release postgres-protocol v0.6.9
• a6a0d53 Release postgres-derive v0.4.7
• 429b76b Merge pull request #1275 from rust-postgres/paolobarbolini/switch-to-dtolnay-...
• 6add4c2 chore(ci): switch to dtolnay/rust-toolchain
• 8364bb2 Merge pull request #1274 from rust-postgres/paolobarbolini/regen-sql-state-map
• 6811c01 chore(tokio-postgres): regenerate SQLSTATE_MAP
• dfcb6af Merge pull request #1248 from duarten/duarte/fallible-rexport
• Additional commits viewable in compare view

Updates regex from 1.11.2 to 1.11.3

Changelog

Sourced from regex's changelog.

1.11.3 (2025-09-25)

This is a small patch release with an improvement in memory usage in some cases.

Improvements:

• [BUG #1297](rust-lang/regex#1297): Improve memory usage by trimming excess memory capacity in some spots.

Commits

• ef1c2c3 1.11.3
• ad5cd6c deps: bump regex-automata
• ee69d9e changelog: 1.11.3
• 159fa3e regex-automata-0.4.11
• 02a62ba automata: call Vec::shrink_to_fit in a few strategic places
• a76e0a0 cargo: exclude tests/fuzz from the package
• 19172cc style: inline formatting arguments
• 2695e29 ci: fix cross testing
• See full diff in compare view

Updates serde from 1.0.226 to 1.0.228

Release notes

Sourced from serde's releases.

v1.0.228

• Allow building documentation with RUSTDOCFLAGS='--cfg=docsrs' set for the whole dependency graph (#2995)

v1.0.227

• Documentation improvements (#2991)

Commits

• a866b33 Release 1.0.228
• 5adc9e8 Merge pull request #2995 from dtolnay/rustdocflags
• ab58178 Workaround for RUSTDOCFLAGS='--cfg=docsrs'
• 415d9fc Release 1.0.227
• 7c58427 Merge pull request #2991 from dtolnay/inlinecoredoc
• 9d3410e Merge pull request #2992 from dtolnay/inplaceseed
• 2fb6748 Remove InPlaceSeed public re-export
• f8137c7 Inline serde_core into serde in docsrs mode
• b7dbf7e Merge pull request #2990 from dtolnay/integer128
• 7c83691 No longer macro_use integer128 module
• Additional commits viewable in compare view

Updates thiserror from 2.0.16 to 2.0.17

Release notes

Sourced from thiserror's releases.

2.0.17

• Use differently named __private module per patch release (#434)

Commits

• 72ae716 Release 2.0.17
• 599fdce Merge pull request #434 from dtolnay/private
• 9ec05f6 Use differently named __private module per patch release
• d2c492b Raise minimum tested compiler to rust 1.76
• fc3ab95 Opt in to generate-macro-expansion when building on docs.rs
• 819fe29 Update ui test suite to nightly-2025-09-12
• 259f48c Enforce trybuild >= 1.0.108
• 470e6a6 Update ui test suite to nightly-2025-08-24
• 544e191 Update actions/checkout@v4 -> v5
• cbc1eba Delete duplicate cap-lints flag from build script
• See full diff in compare view

Updates tokio-postgres from 0.7.13 to 0.7.14

Release notes

Sourced from tokio-postgres's releases.

tokio-postgres v0.7.14

Added

• Added support for jiff v0.2.
• Added support for bit-vec versions v0.7 and v0.8.
• Re-exported fallible-iterator
• Expose sync rollback as a private API method

Fixes

• Changed set_tcp_user_timeout to only be called when enabled

Changed

• Updated repository links to use rust-postgres organization.
• Upgraded to Rust 2021 edition.
• Upgraded phf to v0.13
• Upgraded socket2 to v0.6
• Disabled default features of futures-util

Commits

• 53a929e Release tokio-postgres v0.7.14
• 683a306 Release postgres-types v0.2.10
• cb2ba1c Release postgres-protocol v0.6.9
• a6a0d53 Release postgres-derive v0.4.7
• 429b76b Merge pull request #1275 from rust-postgres/paolobarbolini/switch-to-dtolnay-...
• 6add4c2 chore(ci): switch to dtolnay/rust-toolchain
• 8364bb2 Merge pull request #1274 from rust-postgres/paolobarbolini/regen-sql-state-map
• 6811c01 chore(tokio-postgres): regenerate SQLSTATE_MAP
• dfcb6af Merge pull request #1248 from duarten/duarte/fallible-rexport
• 4c3390f Re-export FallibleIterator from tokio-postgres
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions