Release v0.13.9

Security Fix - rustls-webpki CRL revocation enforcement

Bumps rustls-webpki from 0.103.9 to 0.103.10 to fix a certificate revocation enforcement bug, and updates several other dependencies.

Security

rustls-webpki 0.103.9 → 0.103.10

• Fixes a CRL processing bug where IssuingDistributionPoint::authoritative_for() reused one-shot DER iterators across nested comparisons, causing the CRL to be treated as non-authoritative when the only matching URI pair appeared later in both sequences
• Under UnknownStatusPolicy::Allow, this could accept a revoked certificate
• Affected versions: >= 0.101.0, < 0.103.10

Changed

Dependencies

• clap 4.5 → 4.6
• arc-swap 1.8 → 1.9
• tracing-subscriber 0.3.22 → 0.3.23
• tempfile 3.26 → 3.27
• Various transitive dependency updates in Cargo.lock

Upgrade

# Homebrew
brew upgrade gcop-rs

# Cargo
cargo install gcop-rs

# pip
pip install --upgrade gcop-rs