Changes expected to improve the state of the world and are unlikely to have negative effects
dependency: add boringssl patch to resolve CVE-2023-0286. Note that the FIPS build is not patched/fixed.