Bump the "backend" group with 1 update across multiple ecosystems

[dependabot]

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

---

Bumps the backend group with 7 updates:

Package	From	To
askama	0.15.4	0.15.6
cached	0.56.0	0.59.0
clap	4.5.60	4.6.0
hmac	0.12.1	0.13.0
lambda_http	1.0.2	1.1.2
sha2	0.10.9	0.11.0
tracing-subscriber	0.3.22	0.3.23

Updates askama from 0.15.4 to 0.15.6

Release notes

Sourced from askama's releases.

v0.15.6

What's Changed

• Correctly handle non-ident item in block error by @​GuillaumeGomez in askama-rs/askama#717
• Remove unnecessary .clone() by @​jplatte in askama-rs/askama#716
• Remove unused lifetime parameter on SyntaxAndCache by @​jplatte in askama-rs/askama#714
• Upgrade winnow to 1.0 by @​jplatte in askama-rs/askama#715

Full Changelog: askama-rs/askama@v0.15.5...v0.15.6

v0.15.5

What's Changed

• parser: reject non-ASCII characters in byte literals by @​Kijewski in askama-rs/askama#694
• parser: reject syntaxes that could cause catastrophic backtracking by @​Kijewski in askama-rs/askama#695
• Fix jinja macro arguments handling by @​GuillaumeGomez in askama-rs/askama#709
• Fix build determinism and macro path management by @​GuillaumeGomez and @​cgundy in askama-rs/askama#710

Full Changelog: askama-rs/askama@v0.15.4...v0.15.5

Commits

• 4260d0d Merge pull request #719 from GuillaumeGomez/update-crate-version
• 1471702 Update crate version to 0.15.6
• fb6f3fb Merge pull request #718 from GuillaumeGomez/improve-ui-tests
• 4f36391 Merge pull request #717 from GuillaumeGomez/fix-non-ident-block
• 1b4350b Update trybuild version to 1.0.116 to enforce diagnostics width
• 2ad677c Correctly handle non-ident item in block error
• 5e12585 Merge pull request #714 from jplatte/jplatte/lt-refactor
• 0ebfd0f Merge pull request #716 from jplatte/jplatte/clippy
• 3c0f1b0 Merge pull request #715 from jplatte/jplatte/winnow1
• acc29f3 Remove unnecessary .clone()
• Additional commits viewable in compare view

Updates cached from 0.56.0 to 0.59.0

Changelog

Sourced from cached's changelog.

[0.59.0 / [cached_proc_macro[0.27.0]]]

Added

Changed

• Fix examples/wasm build: add time_stores feature to the cached dependency (required when using default-features = false with TimedCache)

Removed

[0.58.0]

Added

• Add redis_async_cache feature for Redis client-side caching support via the RESP3 protocol

Changed

• Update redis to 1.0

Removed

[0.57.0 / [cached_proc_macro[0.26.0]]]

Added

• Add parking_lot dependency

Changed

• Switch to parking_lot's Mutex and RwLock in all macros.
• Remove unwrap() calls from lock operations.

Removed

Commits

• See full diff in compare view

Updates clap from 4.5.60 to 4.6.0

Changelog

Sourced from clap's changelog.

[4.6.0] - 2026-03-12

Compatibility

• Update MSRV to 1.85

[4.5.61] - 2026-03-12

Internal

• Update dependencies

Commits

• 9ab6dee chore: Release
• 374a30d docs: Update changelog
• d0c8aab Merge pull request #6306 from epage/update
• 686ce2f chore: Upgrade compatible
• 8203238 Merge pull request #6305 from epage/msrv
• c774a89 docs: Reduce main's in doctests
• 73534f6 chore: Upgrade to 2025 edition
• dfe05a9 chore: Bump MSRV to 1.85
• 8b41d0b chore: Release
• 518220f docs: Update changelog
• Additional commits viewable in compare view

Updates hmac from 0.12.1 to 0.13.0

Commits

• 0236c8e hmac v0.13.0 (#263)
• b895e50 Migrate tests to the new blobby format (#264)
• 3d1440b Workspace-level lint configuration (#261)
• 11d4f36 hmac: use release versions of dev-dependencies (#260)
• c40b82b hmac: bump sha2 dev-dependency to v0.11 (#259)
• 1fa0781 Cut rc.5 prereleases (#258)
• a008265 hmac v0.13.0-rc.6 (#256)
• da485cd Use (Reset)MacTraits (#254)
• 2c51e3b hmac: derive Clone instead of relying on (Reset)MacTraits (#253)
• 669d805 Relax Clone bounds (#250)
• Additional commits viewable in compare view

Updates lambda_http from 1.0.2 to 1.1.2

Release notes

Sourced from lambda_http's releases.

v1.1.2

Fixed

• fix handling of null groupConfiguration (#1130)

Other

• release (#1118)

v1.1.1

Thank you to all the contributors who helped make this release possible. We appreciate your time, effort, and passion for the Rust Lambda community. ❤️

Lambda Managed Instances

The runtime now supports Lambda Managed Instances via the concurrency-tokio feature flag (previously experimental-concurrency). Lambda Managed Instances allow multiple concurrent requests to be processed within a single execution environment. When AWS_LAMBDA_MAX_CONCURRENCY is set, the runtime spawns multiple independent long-poll workers to handle concurrent invocations. If the env var is unset or <= 1, it falls back to sequential behavior automatically. This lets you use the same handler for both classic Lambda and Lambda Managed Instances. (#1067)

[dependencies]
lambda_runtime = { version = "1.1", features = ["concurrency-tokio"] }

lambda_runtime::run_concurrent(service_fn(my_handler)).await?;

For a complete working example, see examples/basic-lambda-concurrent. For detailed guidance on building functions for multi-concurrency, including shared state patterns and database connection pools, see the Rust runtime for Lambda Managed Instances documentation.

We would like also to involve the community in a broader discussion about improving our approach on multiconcurrency. You can find the discussion in (#1120)

lambda_runtime - 1.1.1

Added

• (lambda-managed-instances) log non-2xx Lambda Runtime API responses with status and body (#1109)
• tenant ID propagation for multi-tenant Lambda use cases. The tenant_id is available in the context.tenant_id field (Option<String>) and is automatically extracted from the lambda-runtime-aws-tenant-id header when present (#1082)
• Add builder pattern support for event response types (#1090)

Fixed

• (test) fix test_concurrent_structured_logging_isolation (#1121)

Changed

• MSRV updated from 1.82.0 to 1.84.0, enabled MSRV-aware resolver (#1078)
• X-Ray trace ID now sourced from Context instead of environment variables (#1067)

Other

• (lambda-managed-instances) add tokio_unstable to known cfgs to avoid linter warns (#1095)

... (truncated)

Commits

• 45850d4 chore: release (#1132)
• bafe106 fix handling of null groupConfiguration (#1130)
• 6f305bb chore: fix dev dep dependency (#1126)
• b16f532 dmelfi/fix issue with dev dep (#1124)
• e77825c Fix deployment issue in aws_lambda_event because of dev dep (#1123)
• 6d5f3de chore: release (#1118)
• 0aa6c8e fix(test): fix test_concurrent_structured_logging_isolation (#1121)
• 7f66cde Resolve inconsistencies in .gitignore making release-plz fail (#1117)
• b5e978e Revert change in releaze-plz toml breaking the github action (#1116)
• 114b212 test(all) Add concurrent Lambda invocation tests (#1112)
• Additional commits viewable in compare view

Updates sha2 from 0.10.9 to 0.11.0

Commits

• ffe0939 Release sha2 0.11.0 (#806)
• 8991b65 Use the standard order of the [package] section fields (#807)
• 3d2bc57 sha2: refactor backends (#802)
• faa55fb sha3: bump keccak to v0.2 (#803)
• d3e6489 sha3 v0.11.0-rc.9 (#801)
• bbf6f51 sha2: tweak backend docs (#800)
• 155dbbf sha3: add default value for the DS generic parameter on TurboShake128/256...
• ed514f2 Use published version of keccak v0.2 (#799)
• 702bcd8 Migrate to closure-based keccak (#796)
• 827c043 sha3 v0.11.0-rc.8 (#794)
• Additional commits viewable in compare view

Updates tracing-subscriber from 0.3.22 to 0.3.23

Release notes

Sourced from tracing-subscriber's releases.

tracing-subscriber 0.3.23

Fixed

• Allow ansi sanitization to be disabled (#3484)

#3484: tokio-rs/tracing#3484

Commits

• 54ede4d chore: prepare tracing-subscriber 0.3.23 (#3490)
• 37558d5 subscriber: allow ansi sanitization to be disabled (#3484)
• efc690f core: add missing const (#3449)
• 0c32367 core: Use const initializers instead of once_cell
• 9feb241 docs: add arcswap reload crate to related (#3442)
• 2d55f6f chore: prepare tracing 0.1.44 (#3439)
• 10a9e83 chore: prepare tracing-core 0.1.36 (#3440)
• ee82cf9 tracing: fix record_all panic (#3432)
• 9978c36 chore: prepare tracing-mock 0.1.0-beta.3 (#3429)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions