chore(deps): bump candid from 0.10.12 to 0.10.27

[dependabot]

Bumps candid from 0.10.12 to 0.10.27.

Changelog

Sourced from candid's changelog.

Candid 0.10.27

• Non-breaking changes:
  • Add subtype_check_all() to collect all subtype errors in one pass (previously stopped at the first)
  • Add Incompatibility type and format_report() for structured, hierarchical error reporting

2026-03-18

Candid 0.10.26

• Bug fixes:
  • Fix decoding failure when a trailing argument is a primitive vector

2026-03-16

Candid 0.10.25

• Non-breaking changes:
  • Preserve Rust doc comments on exported Candid types, record fields, and variant members when generating .did files via #[derive(CandidType)]

2026-02-27

Candid 0.10.24

• Non-breaking changes:
  • Implement DataSize for Principal, enabling Principal as an element type in BoundedVec

2026-02-20

Candid 0.10.23

• Non-breaking changes:
  • Add BoundedVec type to candid::types::bounded_vec for bounding a vector by number of elements, total data size, and per-element data size during deserialization

2026-02-10

Candid 0.10.22

• Non-breaking changes:
  • Enhance recursion guard
    • Use target_family = "wasm" for platform detection to cover both wasm32 and wasm64; skip recursion check on wasm (sandboxed), use stack-based check on native platforms and a conservative depth limit on other niche platforms
    • Apply recursion guard to all recursive functions on deserialization path: type environment operations (TypeEnv::is_empty, trace_type, rec_find_type, as_func, as_service), value type annotation (IDLValue::annotate_type), subtype checking (subtype_(), equal()), and all deserializer methods (deserialize_option, deserialize_seq, deserialize_map, deserialize_tuple, deserialize_tuple_struct, deserialize_struct, deserialize_enum)
    • Refactor to use RAII guard pattern (RecursionDepth with DepthGuard) for automatic depth management, eliminating manual increment/decrement operations

2026-02-03

Candid 0.10.21

• Non-breaking changes:
  • Add max_type_len to DecoderConfig to configure the type table size limit (default: 10,000) during binary parsing.

... (truncated)

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)