fix(deps): update rust crate tokio to 1.27.0 [security]

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
tokio (source)	dependencies	minor	1.26.0 -> 1.27.0

GitHub Vulnerability Alerts

GHSA-4q83-7cq4-p6wg

tokio::io::ReadHalf<T>::unsplit can violate the Pin contract

The soundness issue is described in the tokio/issues#5372

Specific set of conditions needed to trigger an issue (a !Unpin type in ReadHalf)
is unusual, combined with the difficulty of making any arbitrary use-after-free
exploitable in Rust without doing a lot of careful alignment of data types in
the surrounding code.

The tokio feature io-util is also required to be enabled to trigger this
soundness issue.

Thanks to zachs18 reporting the issue to Tokio team responsibly and taiki-e
and carllerche appropriately responding and fixing the soundness bug.

Tokio before 0.2.0 used futures 0.1 that did not have Pin, so it is not
affected by this issue.

---

Release Notes

tokio-rs/tokio (tokio)

v1.27.0: Tokio v1.27.0

Compare Source

1.27.0 (March 27th, 2023)

This release bumps the MSRV of Tokio to 1.56. (#​5559)

Added

• io: add async_io helper method to sockets (#​5512)
• io: add implementations of AsFd/AsHandle/AsSocket (#​5514, #​5540)
• net: add UdpSocket::peek_sender() (#​5520)
• sync: add RwLockWriteGuard::{downgrade_map, try_downgrade_map} (#​5527)
• task: add JoinHandle::abort_handle (#​5543)

Changed

• io: use memchr from libc (#​5558)
• macros: accept path as crate rename in #[tokio::main] (#​5557)
• macros: update to syn 2.0.0 (#​5572)
• time: don't register for a wakeup when Interval returns Ready (#​5553)

Fixed

• fs: fuse std iterator in ReadDir (#​5555)
• tracing: fix spawn_blocking location fields (#​5573)
• time: clean up redundant check in Wheel::poll() (#​5574)

Documented

• macros: define cancellation safety (#​5525)
• io: add details to docs of tokio::io::copy[_buf] (#​5575)
• io: refer to ReaderStream and StreamReader in module docs (#​5576)

---

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: functions-templates/rust/hello-world/Cargo.lock

Command failed: cargo update --config net.git-fetch-with-cli=true --manifest-path functions-templates/rust/hello-world/Cargo.toml --workspace
error: invalid character `{` in package name: `{{name}}`, the first character must be a Unicode XID start character (most letters or `_`)
 --> functions-templates/rust/hello-world/Cargo.toml:3:8
  |
3 | name = "{{name}}"
  |        ^^^^^^^^^^
  |

[github-actions]

📊 Benchmark results

Comparing with 494f62b

• Dependency count: 1,222 (no change)
• Package size: 313 MB (no change)
• Number of ts-expect-error directives: 977 (no change)