Bump actix-http from 3.8.0 to 3.12.1 in /templates/rust/http

[dependabot]

Bumps actix-http from 3.8.0 to 3.12.1.

Release notes

Sourced from actix-http's releases.

actix-http: v3.12.1

Notice: This release contains a security fix. Users are encouraged to update to this version ASAP.

• SECURITY: Reject HTTP/1 requests with ambiguous request framing from Content-Length and Transfer-Encoding headers to prevent request smuggling.
• Encode the HTTP/1 Connection: Upgrade header in Camel-Case when camel-case header formatting is enabled.#3953
• Fix HeaderMap iterators' len() and size_hint() implementations for multi-value headers.
• Update rand dependency to 0.10.
• Update sha1 dependency to 0.11.

#3953: actix/actix-web#3953

actix-http: v3.12.0

• Minimum supported Rust version (MSRV) is now 1.88.
• Increase default HTTP/2 flow control window sizes. #3638
• Expose configuration methods to improve upload throughput. #3638
• Fix truncated body ending without error when connection closed abnormally. #3067
• Add config/method for TCP_NODELAY. #3918
• Do not compress 206 Partial Content responses. #3191
• Fix lingering sockets and client stalls when responding early to dropped chunked request payloads. #2972

#3638: actix/actix-web#3638 #3067: actix/actix-web#3067 #3918: actix/actix-web#3918 #3191: actix/actix-web#3191 #2972: actix/actix-web#2972

actix-http: v3.11.2

• Properly wake Payload receivers when feeding errors or EOF.
• Add ServiceConfigBuilder type to facilitate future configuration extensions.
• Add a configuration option to allow/disallow half closed connections in HTTP/1. This defaults to allow, reverting the change made in 3.11.1.
• Shutdown connections when HTTP Responses are written without reading full Requests.

actix-http: v3.11.1

• Prevent more hangs after client disconnects.
• More malformed WebSocket frames are now gracefully rejected.
• Using TestRequest::set_payload() now sets a Content-Length header.

actix-http: v3.11.0

• Update brotli dependency to 8.

actix-http: v3.10.0

Added

• Add header::CLEAR_SITE_DATA constant.
• Add Extensions::get_or_insert[_with]() methods.
• Implement From<Bytes> for Payload.
• Implement From<Vec<u8>> for Payload.

... (truncated)

Commits

• 0fb8945 chore(http): prepare v3.12.1 (#4029)
• 3c056bd Merge commit from fork
• e6d0991 chore(multipart,derive): prepare 0.8.0 (#4027)
• 4434a49 fix(multipart): count ignored fields towards MultipartFormConfig li… (#4026)
• be62050 fix(multipart): set cap for parser buffering (#4025)
• be4566d fix(multipart): do not parse with fixed index not to panic (#4024)
• 6d2c2f4 chore(http): upgrade sha1 to 0.11 (#4022)
• 253cd4f chore: address new advisories (#4023)
• e766ca6 chore: upgrade rand to 0.10.1 (#4021)
• d747959 build(deps): bump EmbarkStudios/cargo-deny-action from 2.0.15 to 2.0.16 (#4018)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.