search

IronCoreLabs / ironoxide

Rust SDK for IronCore Privacy Platform
https://docs.rs/ironoxide
GNU Affero General Public License v3.0
10 stars 3 forks source link

RUSTSEC-2021-0127: serde_cbor is unmaintained #250

Closed github-actions[bot] closed 2 years ago

github-actions[bot] commented 2 years ago

serde_cbor is unmaintained

Details
Status unmaintained
Package serde_cbor
Version 0.11.2
URL https://github.com/pyfisch/cbor
Date 2021-08-15

The serde_cbor crate is unmaintained. The author has archived the github repository.

Alternatives proposed by the author:

ciborium minicbor

See advisory page for additional details.

clintfred commented 2 years ago

From cargo audit

Dependency tree:
serde_cbor 0.11.2
└── criterion 0.3.5
    └── ironoxide 0.27.0

Note that criterion is only in dev-dependencies

BobWall23 commented 2 years ago

Closing because we can't do anything about it for now - transitive dev dependency.