Closed fmorency closed 1 year ago
The library's dependency version requirement allows for users to use a fixed version. The CLI is unaffected because it is single-threaded.
(It probably is still worth bumping the minimum requirement to a fixed one though).
(It probably is still worth bumping the minimum requirement to a fixed one though).
Yes! cargo audit
will complain otherwise.
I just published cbor-diag
0.1.10 which bumps the minimum supported chrono
version to 0.4.22.
Affects
chrono
< 0.4.20See https://rustsec.org/advisories/RUSTSEC-2020-0159