GitHub PR #196-#208: Cryptographic Security Fixes for SVE2, AVX-512, and Post-Quantum Algorithms Consolidated

A major pull request consolidates critical security and performance fixes for a cryptographic library, merging verified patches for SVE2, AVX-512, and new post-quantum cryptography (PQC) algorithms. The PR supersedes a previous, partially rejected attempt, salvaging only verified components while rejecting a flawed AVX-512 implementation. This consolidation represents a significant codebase stabilization effort, directly addressing security vulnerabilities, enhancing test coverage, and updating dependencies.

The change bundles six distinct fix categories: CodeQL security scanning results, SVE2 GHASH algorithm corrections, selective AVX-512 optimizations, and implementations for the new NIST-standardized PQC algorithms ML-KEM, ML-DSA, and SLH-DSA. It also integrates NIST Known Answer Tests (KAT) for these new PQC parameter sets, a critical step for validation. Furthermore, the PR rolls in 12 out of 13 pending Dependabot dependency updates (PRs #196 through #208), modernizing the project's underlying software stack.

This comprehensive update signals a focused push to harden the library's cryptographic core against both contemporary vulnerabilities and future quantum computing threats. The inclusion of NIST-standard PQC algorithms and their official test vectors is a forward-looking security measure. The meticulous cherry-picking from a prior, flawed branch and the bulk integration of dependency patches indicate a high-priority maintenance cycle aimed at reducing technical debt and closing security gaps in a single, auditable merge.