From 158e0be60adb397afee8789fce0c06eed40c5f91 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 5 Dec 2023 11:12:02 -0500
Subject: [PATCH] build(deps): Bump ring from 0.17.5 to 0.17.6 (#864)

* build(deps): Bump ring from 0.17.5 to 0.17.6

Bumps [ring](https://github.com/briansmith/ring) from 0.17.5 to 0.17.6.
- [Commits](https://github.com/briansmith/ring/commits)

---
updated-dependencies:
- dependency-name: ring
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

* Update ring exemption, prune supply-chain

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Ameer Ghani <inahga@divviup.org>
---
 Cargo.lock                | 4 ++--
 Cargo.toml                | 2 +-
 supply-chain/config.toml  | 2 +-
 supply-chain/imports.lock | 5 -----
 4 files changed, 4 insertions(+), 9 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index 89a09406a..4ee13c375 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -1040,9 +1040,9 @@ checksum = "a3f87b73ce11b1619a3c6332f45341e0047173771e8b8b73f87bfeefb7b56244"
 
 [[package]]
 name = "ring"
-version = "0.17.5"
+version = "0.17.6"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "fb0205304757e5d899b9c2e448b867ffd03ae7f988002e47cd24954391394d0b"
+checksum = "684d5e6e18f669ccebf64a92236bb7db9a34f07be010e3627368182027180866"
 dependencies = [
  "cc",
  "getrandom",
diff --git a/Cargo.toml b/Cargo.toml
index ddc1c5491..d4bb1c776 100644
--- a/Cargo.toml
+++ b/Cargo.toml
@@ -35,7 +35,7 @@ rayon = { version = "1.8.0", optional = true }
 
 # dependencies required if feature "prio2" is enabled
 aes-gcm = { version = "^0.10", optional = true }
-ring = { version = "0.17.5", optional = true }
+ring = { version = "0.17.6", optional = true }
 
 [dev-dependencies]
 assert_matches = "1.5.0"
diff --git a/supply-chain/config.toml b/supply-chain/config.toml
index 36e2daa87..b028a5e02 100644
--- a/supply-chain/config.toml
+++ b/supply-chain/config.toml
@@ -211,7 +211,7 @@ criteria = "safe-to-deploy"
 notes = "This is only used when the \"test-util\" feature is enabled."
 
 [[exemptions.ring]]
-version = "0.17.5"
+version = "0.17.6"
 criteria = "safe-to-deploy"
 
 [[exemptions.spin]]
diff --git a/supply-chain/imports.lock b/supply-chain/imports.lock
index a4ffd722e..77fa3fe91 100644
--- a/supply-chain/imports.lock
+++ b/supply-chain/imports.lock
@@ -403,11 +403,6 @@ who = "David Cook <dcook@divviup.org>"
 criteria = "safe-to-deploy"
 delta = "0.2.4 -> 0.2.5"
 
-[[audits.divviup.audits.itertools]]
-who = "David Cook <dcook@divviup.org>"
-criteria = "safe-to-run"
-delta = "0.10.5 -> 0.11.0"
-
 [[audits.divviup.audits.num-bigint]]
 who = "David Cook <dcook@divviup.org>"
 criteria = "safe-to-deploy"