deps(quic): upgrade quinn to address RUSTSEC-2023-0063

[divagant-martian]

Description

https://rustsec.org/advisories/RUSTSEC-2023-0063 was recently published, this address it.

Notes & open questions

na

Change checklist

• I have performed a self-review of my own code
• I have made corresponding changes to the documentation
• I have added tests that prove my fix is effective or that my feature works
• A changelog entry has been made in the appropriate crates

[mergify]

This pull request has merge conflicts. Could you please resolve them @divagant-martian? 🙏

[divagant-martian]

@mxinden you might want to include in #4537

[thomaseizinger]

Thanks but if it is a patch-release, then users can upgrade that themselves!

We should update our lockfile of course but we don't need to mention that in the changelog :)

[divagant-martian]

is your specific suggestion to simply remove the changelog @thomaseizinger?

[thomaseizinger]

is your specific suggestion to simply remove the changelog @thomaseizinger?

Yes please! :)

[thomaseizinger]

@mxinden you might want to include in #4537

Just to be clear: Releasing this PR has no effect for our users because they have their own lockfile.

[divagant-martian]

not sure if you noticed but #4537 has workflows failing because of this, thus it needs to be included, not referring to users, so yeah. we are on the same page :)

[thomaseizinger]

not sure if you noticed but #4537 has workflows failing because of this, thus it needs to be included, not referring to users, so yeah. we are on the same page :)

Ah yes, thank you for that! We don't require those for merging because there isn't always an immediate solution available but it is good to be fixed, thank you! :)