build(deps): bump sha2 from 0.10.9 to 0.11.0

[dependabot]

Bumps sha2 from 0.10.9 to 0.11.0.

Commits

• ffe0939 Release sha2 0.11.0 (#806)
• 8991b65 Use the standard order of the [package] section fields (#807)
• 3d2bc57 sha2: refactor backends (#802)
• faa55fb sha3: bump keccak to v0.2 (#803)
• d3e6489 sha3 v0.11.0-rc.9 (#801)
• bbf6f51 sha2: tweak backend docs (#800)
• 155dbbf sha3: add default value for the DS generic parameter on TurboShake128/256...
• ed514f2 Use published version of keccak v0.2 (#799)
• 702bcd8 Migrate to closure-based keccak (#796)
• 827c043 sha3 v0.11.0-rc.8 (#794)
• Additional commits viewable in compare view

Summary by CodeRabbit

• Chores

  • Updated workspace dependency versions (minor dependency updates).

• Bug Fixes

  • Ensure published files on Linux get correct file permissions (readable after publish).

• Tests

  • Made deploy and install tests more tolerant of varied timeout and error messages.

[greptile-apps]

PR author is in the excluded authors list.

[jdx]

@dependabot rebase

[dependabot]

Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry!

If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

[jdx]

@dependabot recreate

[coderabbitai]

Caution

Review failed

Pull request was closed or merged during review

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro Plus

Run ID: fabfeeaa-408c-44eb-a644-056d663f6165

📥 Commits

Reviewing files that changed from the base of the PR and between 73d5f65 and 94b0d77.

⛔ Files ignored due to path filters (1)

• Cargo.lock is excluded by !**/*.lock

📒 Files selected for processing (7)

• Cargo.toml
• crates/aube-store/src/cas.rs
• crates/aube-store/src/integrity.rs
• crates/aube-store/src/lib.rs
• crates/aube/src/commands/publish.rs
• test/deploy.bats
• test/pnpm_install_misc.bats

💤 Files with no reviewable changes (1)

• crates/aube/src/commands/publish.rs

✅ Files skipped from review due to trivial changes (1)

• test/deploy.bats

🚧 Files skipped from review as they are similar to previous changes (1)

• Cargo.toml

---

📝 Walkthrough

Walkthrough

Workspace sha2 upgraded to 0.11; hashing imports adjusted (sha2 used for SHA-512, sha1 kept as type-only), CAS O_TMPFILE publishing now sets file permissions on Linux, and a few tests/comments broaden/clarify expected outputs.

Changes

Workspace, hashing, CAS, and tests

Layer / File(s)	Summary
Workspace SHA2 version bump Cargo.toml	The sha2 workspace dependency is incremented from 0.10 to 0.11.
Hashing imports (sha1/sha2) update crates/aube/src/commands/publish.rs, crates/aube-store/src/integrity.rs, crates/aube-store/src/lib.rs	Replaced sha1::Digest/sha2::Digest imports so SHA-512 uses sha2::Digest/Sha512, and sha1 imports are reduced to Sha1 only.
CAS O_TMPFILE permission set on Linux crates/aube-store/src/cas.rs	After writing to the anonymous O_TMPFILE, call set_permissions(0o644) on Linux and map failures to OTmpfileFallback::Hard. Also add the PermissionsExt import.
Test assertions and comments updated test/deploy.bats, test/pnpm_install_misc.bats	Adjusted two test comments to prefer matching “not empty” and widened a timeout test’s expected error to accept multiple alternative failure messages.

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~20 minutes

Poem

🐰
I hopped through crates and tiny lines,
nudged sha2 up where version shines,
set file perms before the link,
and loosened tests that used to blink.
A munch of changes — tidy signs.

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately summarizes the main change: upgrading the sha2 dependency from version 0.10.9 to 0.11.0, which is the primary purpose of the pull request.
Docstring Coverage	✅ Passed	Docstring coverage is 100.00% which is sufficient. The required threshold is 80.00%.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

📝 Generate docstrings

• Create stacked PR
• Commit on current branch

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch dependabot/cargo/sha2-0.11.0

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}