search

aschampion / schemer

A database schema migration library with DAG dependencies
Apache License 2.0
6 stars 4 forks source link

Upgrade to `rusqlite` 0.29.0 which mitigates RUSTSEC-2022-0090… #20

Closed nathan-at-least closed 1 year ago

nathan-at-least commented 1 year ago

See https://rustsec.org/advisories/RUSTSEC-2022-0090 for security advisory.

This was detected with cargo install cargo-audit ; cargo audit.

This resolves #19.

Note, I only verified unittests with cargo test -p schemer-rusqlite because I do not have postgres setup.

aschampion commented 1 year ago

Thanks! This required bumping the MSRV from 1.56 to 1.59. I'll publish a patch release shortly.

aschampion commented 1 year ago

Released, though I neglected to note this in the changelog 🤦