Bump github.com/apple/swift-crypto from 3.15.1 to 4.3.1 in /swift

[dependabot]

Bumps github.com/apple/swift-crypto from 3.15.1 to 4.3.1.

Release notes

Sourced from github.com/apple/swift-crypto's releases.

Swift Crypto 4.3.1

Security Fixes

This version contains a fix for CVE-2026-28815: X-Wing HPKE Decapsulation Accepts Malformed Ciphertext Length. The X-Wing decapsulation path accepts attacker-controlled encapsulated ciphertext bytes without enforcing the required fixed ciphertext length. For more details see the advisory. We recommend updating to this release as soon as possible. (commit)

What's Changed

SemVer Patch

• Add missing input validation in X-Wing HPKE decapsulation by @​josephnoir in apple/swift-crypto@bb4ba81

Full Changelog: apple/swift-crypto@4.3.0...4.3.1

Swift Crypto 4.3.0

What's Changed

SemVer Minor

• Add support for encrypted PEM keys via BoringSSL by @​fpseverino in apple/swift-crypto#428

Other Changes

• switch from main to 0.0.7 for swiftlang workflows by @​rnro in apple/swift-crypto#430
• update actions/checkout from v4 to v6 by @​rnro in apple/swift-crypto#431

Full Changelog: apple/swift-crypto@4.2.0...4.3.0

4.2.0

What's Changed

SemVer Minor

• Add RSA PKCSv1.5 padding support for legacy compat by @​mschrag in apple/swift-crypto#425

Full Changelog: apple/swift-crypto@4.1.0...4.2.0

Swift Crypto 4.1.0

What's Changed

SemVer Minor

• Add PEM/DER APIs for Curve25519 by @​ptoffy in apple/swift-crypto#419

SemVer Patch

• Incorrect maximum encryption size for RSA OAEP by @​mschrag in apple/swift-crypto#423

Other Changes

• chore: restrict GitHub workflow permissions - future-proof by @​incertum in apple/swift-crypto#421

New Contributors

• @​incertum made their first contribution in apple/swift-crypto#421
• @​mschrag made their first contribution in apple/swift-crypto#423

... (truncated)

Commits

• bb4ba81 Merge commit from fork
• fa308c0 update actions/checkout from v4 to v6 (#431)
• a5a71cf Add support for encrypted PEM keys via BoringSSL (#428)
• 3161173 switch from main to 0.0.7 for swiftlang workflows (#430)
• 6f70fa9 Add RSA PKCSv1.5 padding support for legacy compat (#425)
• e8ed886 Incorrect maximum encryption size for RSA OAEP (#423)
• 87a9e06 Add PEM/DER APIs for Curve25519 (#419)
• 781478b chore: restrict GitHub workflow permissions - future-proof (#421)
• bcd2b89 Update README for 4.0 release (#418)
• 431013a Update to WWDC25 release (#417)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

---

Summary by cubic

Upgrade github.com/apple/swift-crypto to 4.3.1 to bring in the HPKE decapsulation security fix and recent crypto improvements. Updates the dependency version in swift/Package.swift.

• Dependencies
  • Bump github.com/apple/swift-crypto from 3.x to 4.3.1.
  • Includes fix for CVE-2026-28815 and adds encrypted PEM key support, RSA PKCSv1.5, Curve25519 PEM/DER APIs, and an OAEP size fix.

^{Written for commit 9702811. Summary will update on new commits.}

[cubic-dev-ai]

No issues found across 1 file