From a29556c4cf732634f80051b65bde0108e2954723 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 8 Sep 2025 15:23:52 +0000
Subject: [PATCH] Bump zip from 4.6.0 to 5.0.0

Bumps [zip](https://github.com/zip-rs/zip2) from 4.6.0 to 5.0.0.
- [Release notes](https://github.com/zip-rs/zip2/releases)
- [Changelog](https://github.com/zip-rs/zip2/blob/master/CHANGELOG.md)
- [Commits](https://github.com/zip-rs/zip2/compare/v4.6.0...v5.0.0)

---
updated-dependencies:
- dependency-name: zip
  dependency-version: 5.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 Cargo.lock     | 4 ++--
 cli/Cargo.toml | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index 9505d28ca..77cf73e26 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -8342,9 +8342,9 @@ dependencies = [
 
 [[package]]
 name = "zip"
-version = "4.6.1"
+version = "5.0.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "caa8cd6af31c3b31c6631b8f483848b91589021b28fffe50adada48d4f4d2ed1"
+checksum = "b9fdfa5f34b5980f2c21b3a2c68c09ade4debddc7be52c51056695effc73a08c"
 dependencies = [
  "arbitrary",
  "crc32fast",
diff --git a/cli/Cargo.toml b/cli/Cargo.toml
index 281d7f00e..b0fd3fc48 100644
--- a/cli/Cargo.toml
+++ b/cli/Cargo.toml
@@ -80,7 +80,7 @@ uuid = { version = "1.4.1", features = ["v4"] }
 vuln-reach = { git = "https://github.com/phylum-dev/vuln-reach", optional = true }
 vulnreach_types = { path = "../vulnreach_types", optional = true }
 walkdir = "2.3.2"
-zip = { version = "4.0.0", default-features = false, features = ["deflate"] }
+zip = { version = "5.0.0", default-features = false, features = ["deflate"] }
 
 [target.'cfg(unix)'.dependencies]
 birdcage = { version = "0.8.1" }