build(deps): bump curve25519-dalek from 4.1.3 to 4.2.0

[dependabot]

Bumps curve25519-dalek from 4.1.3 to 4.2.0.

Commits

• 8016d6d Fix missing/wrong features in readmes
• 4ea0ebb Stable branch: Update changelogs and bump version number (#781)
• fdbc1d2 curve: Remove unnecessary CofactorGroup documentation (#683)
• fc3c7f6 Remove confusing docs (#772)
• 2379d4f curve: extract AffinePoint type (#769)
• 71b60e6 curve: fix nightly build (#773)
• e541acf curve: Hash to curve and field as defined in the standard (#377)
• cf7b099 curve: rename FieldElement*::as_bytes => ::to_bytes (#767)
• ad4a37d CI: bump clippy to Rust 1.87 (#768)
• 5e0b429 Add typos action and correct typos (#766)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov-commenter]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 83.2%. Comparing base (bd3b3af) to head (97f371e).

Additional details and impacted files

@@            Coverage Diff            @@
##           master    #6914     +/-   ##
=========================================
- Coverage    83.2%    83.2%   -0.1%     
=========================================
  Files         853      853             
  Lines      377587   377663     +76     
=========================================
+ Hits       314505   314509      +4     
- Misses      63082    63154     +72     

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[samkim-crypto]

Should be safe to upgrade. Looking at the curve25519-dalek updates, other than the addition of new features, the only real breaking change is the deprecation and removal of FieldElement::as_bytes, which we don't use.

Summary of Changes in version 4.2.0:

• Move AVX-512 backend selection logic to a separate CFG flag that requires nightly
• Add Elligator2 hashing methods EdwardsPoint::hash_to_curve() and FieldElement::hash_to_field()
• Deprecate FieldElement::as_bytes in favor of FieldElement::to_bytes
• Remove deprecated FieldElement::as_bytes
• Add batch conversion function EdwardsPoint::to_montgomery_batch()
• Make VartimePrecomputedStraus::optional_mixed_multiscalar_mul() and VartimeRistrettoPrecomputation::vartime_mixed_multiscalar_mul() accept more points than static scalars