From 48cd0839ead7c7f739364dfa499ceaf5065b27fd Mon Sep 17 00:00:00 2001
From: Tony Arcieri <bascule@gmail.com>
Date: Sun, 10 May 2026 09:08:59 -0600
Subject: [PATCH] ssh-encoding: ensure vulnerable versions of `bytes` are not
 used

See RUSTSEC-2026-0007
---
 ssh-encoding/Cargo.toml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ssh-encoding/Cargo.toml b/ssh-encoding/Cargo.toml
index 222e29e..9873f9e 100644
--- a/ssh-encoding/Cargo.toml
+++ b/ssh-encoding/Cargo.toml
@@ -18,7 +18,7 @@ rust-version = "1.85"
 [dependencies]
 base64ct = { version = "1.8", optional = true }
 bigint = { package = "crypto-bigint", version = "0.7", optional = true, default-features = false, features = ["alloc"] }
-bytes = { version = "1", optional = true, default-features = false }
+bytes = { version = "1.11", optional = true, default-features = false }
 ctutils = { version = "0.4", optional = true, default-features = false }
 digest = { version = "0.11", optional = true, default-features = false }
 pem-rfc7468 = { version = "1", optional = true }