chore(deps): update Rust dependencies for security

- Bump rand 0.9.2 -> 0.9.4 (addresses unsoundness alert)
- Update getrandom, fastrand, and other transitive deps via cargo update

Note: rand 0.8.5/0.7.3 remain as indirect deps of upstream crates
(Tauri/winit/etc) and cannot be forced to 0.9.x due to API breakage.
The vulnerable code path (custom logger calling rand::rng()) is not
exercised by ClawPanel.
This commit is contained in:
晴天
2026-04-16 14:10:27 +08:00
parent a6e200793a
commit 08b767b212
5 changed files with 914 additions and 522 deletions

886
src-tauri/Cargo.lock generated

File diff suppressed because it is too large Load Diff