Bump aws-config from 1.8.14 to 1.8.15

[dependabot]

Bumps aws-config from 1.8.14 to 1.8.15.

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[greptile-apps]

Greptile Summary

This is a routine Dependabot bump of aws-config from 1.8.14 to 1.8.15, along with tightening the version specifier in applications/data_manager/Cargo.toml from "1.5" to "1.8". Several transitive AWS SDK crates are also bumped as expected: aws-credential-types, aws-runtime, aws-sdk-sso, aws-sdk-ssooidc, aws-sdk-sts, aws-sigv4, and aws-types.

• The most notable upstream change in aws-config 1.8.15 is the replacement of the ring cryptographic library with the focused sha1 crate for SSO token cache file name generation. ring remains in the dependency tree via aws-sigv4 (which handles actual AWS request signing), so authentication integrity is unaffected.
• The version floor update for aws-config from "1.5" → "1.8" in Cargo.toml is correct; the resolved version was already 1.8.14, so this simply aligns the declared minimum with the in-use minor series.
• No application code was modified; this is a pure dependency update with no risk of behavioral regressions.

Confidence Score: 5/5

• This PR is safe to merge — it is a straightforward patch-level dependency bump with no application code changes.
• The change is a minor version bump of a well-maintained AWS SDK crate (aws-config) managed by Dependabot. All transitive bumps are consistent and expected. The ring → sha1 swap is an upstream decision by the smithy-rs team for non-security-critical SHA-1 cache key generation, and ring remains present for actual request signing via aws-sigv4. No logic changes are introduced.
• No files require special attention.

Important Files Changed

Filename	Overview
applications/data_manager/Cargo.toml	Bumps aws-config version specifier from "1.5" to "1.8", tightening the minimum version floor to match the currently resolved minor. No other changes.
Cargo.lock	Resolves several AWS SDK crate bumps as transitive dependencies of aws-config 1.8.15; notable upstream change swaps ring for sha1 in aws-config's own dependency list (ring is still present in the lock for aws-sigv4 and others).

_{Last reviewed commit: db41b9f}

[forstmeier]

Addressed in pull request #799.

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.