chore(deps): bump serde_json from 1.0.149 to 1.0.150

[dependabot]

Bumps serde_json from 1.0.149 to 1.0.150.

Release notes

Sourced from serde_json's releases.

v1.0.150

• Reject non-string enum object keys (#1324, thanks @​puneetdixit200)

Commits

• a1ae73a Release 1.0.150
• 1a360b0 Merge pull request #1324 from puneetdixit200/reject-non-string-enum-keys
• 2037b63 Reject non-string enum object keys
• 5d30df6 Resolve manual_assert_eq pedantic clippy lint
• dc8003a Raise required compiler for preserve_order feature to 1.85
• a42fa98 Unpin CI miri toolchain
• 684a60e Pin CI miri to nightly-2026-02-11
• 7c7da33 Raise required compiler to Rust 1.71
• acf4850 Simplify Number::is_f64
• 6b8ceab Resolve unnecessary_map_or clippy lint
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Labels

The following labels could not be found: rust. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[codeant-ai]

Skipping PR review because a bot author is detected.

If you want to trigger CodeAnt AI, comment @codeant-ai review to trigger a manual review.

[kilo-code-bot]

Code Review Summary

Status: No Issues Found | Recommendation: Merge

Overview

This is a straightforward Dependabot patch-bump PR: serde_json 1.0.149 → 1.0.150.

Severity	Count
CRITICAL	0
WARNING	0
SUGGESTION	0

What Changed

File	Change
Cargo.lock	serde_json version 1.0.149 → 1.0.150, checksum updated

• Cargo.toml specifies serde_json = "1.0" — the bump is fully within semver range.
• serde_json 1.0.150 ships a fix to reject non-string enum object keys (security-adjacent, no CVE assigned).
• No workspace member source code is affected.
• No Cargo.toml changes are required at this patch level.

Existing PR Comment (not a review issue)

Dependabot reported that the label rust could not be found on this repo. This is a repo-level config issue and should be handled separately (create the label or remove it from the Dependabot config), not a blocker for this dependency bump.

---

Merge ready. No blocking or advisory issues in this diff.

---

_{Reviewed by step-3.5-flash · 75,321 tokens}