Bump sha2 from 0.9.9 to 0.10.6

[dependabot]

Bumps sha2 from 0.9.9 to 0.10.6.

Commits

• 1731ced Add OID support (#405)
• cc52373 build(deps): bump cpufeatures from 0.2.4 to 0.2.5 (#403)
• 52def11 Fix MSRV issues by re-releasing gost94 and fsb (#402)
• b1c5032 Fix MSRV issues by re-releasing sha1, sha2, sha3, md5, and whirlpool. Take 2....
• db5af59 Fix MSRV issues by re-releasing sha1, sha2, sha3, md5, and whirlpool (#399)
• b74be34 Remove html_root_url (#393)
• 38ea355 Release md5 v0.10.2, sha1 v0.10.2, sha2 v0.10.3, whirlpool v0.10.2 (#392)
• 4c7a3fa build(deps): bump cpufeatures from 0.2.3 to 0.2.4 (#389)
• e5ad181 Ignore asm feature on unsupported targets (#388)
• 79af27a Expand on DynDigest example in README (#390)
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

> **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

[sisou]

@dependabot rebase

[sisou]

Sha2 v0.10 updates it's dependency digest to v0.10, which is backward-incompatible. So curve25519-dalek has to be updated, too, to depend on the same newer sha2 or digest dependency.

[codecov]

Codecov Report

Patch coverage: 90.00% and project coverage change: -0.01 ⚠️

Comparison is base (30f35a8) 64.20% compared to head (f263e37) 64.19%.

Additional details and impacted files

@@              Coverage Diff              @@
##           albatross    #1422      +/-   ##
=============================================
- Coverage      64.20%   64.19%   -0.01%     
=============================================
  Files            426      426              
  Lines          53595    53607      +12     
=============================================
+ Hits           34410    34413       +3     
- Misses         19185    19194       +9     

Flag	Coverage Δ
unittests	64.19% <90.00%> (-0.01%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files	Coverage Δ
keys/src/multisig.rs	69.27% <33.33%> (ø)
vrf/src/vrf.rs	97.38% <100.00%> (+0.17%)	⬆️

... and 3 files with indirect coverage changes

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

☔ View full report in Codecov by Sentry.
📢 Do you have feedback about the report comment? Let us know in this issue.

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.