update dependencies

[06kellyjac]

Update dependencies to resolve tokio 1.6.1: RUSTSEC-2021-0072, patched: >=1.5.1, <1.6.0; >=1.6.3, <1.7.0; >=1.7.2, <1.8.0; >=1.8.1

NixOS/nixpkgs#141368

It might be worth adding dependabot if you don't want to remember intermittent dependency updates. Or at least set up the cargo audit GH action to run intermittently https://github.com/actions-rs/audit-check or if you don't like GH actions you could just trigger cargo-audit yourself.

I'm happy to add dependabot and the audit action in this PR if you're ok with that

[Johann150]

I'm happy to add dependabot and the audit action in this PR if you're ok with that

yeah sure please go ahead

[06kellyjac]

Badges, ci, and dependabot added.

---

Actually now that I look at it the vuln was updated out already.

The issue is a new release hasn't been tagged for 14 commits / 128 days

[Johann150]

Thanks, I'll go ahead and release a new version.

[Johann150]

new version has been released to crates.io and with prebuilt binaries

[06kellyjac]

Awesome, thanks!

I've got another PR open for the other updates (not fixing vulns) but there's some breaking changes I'm wrestling with around rusttls 😩

[Johann150]

yeah, tokio-rustls isn't updated yet it seems #72 (comment)