search

campbellC / third-wheel

A rust implementation of a man-in-the-middle proxy
MIT License
71 stars 19 forks source link

RUSTSEC-2020-0056: stdweb is unmaintained #29

Closed github-actions[bot] closed 3 years ago

github-actions[bot] commented 3 years ago

stdweb is unmaintained

Details
Status unmaintained
Package stdweb
Version 0.4.20
URL https://github.com/koute/stdweb/issues/403
Date 2020-05-04

The author of the stdweb crate is unresponsive.

Maintained alternatives:

See advisory page for additional details.

campbellC commented 3 years ago

https://github.com/time-rs/time/issues/310 Need to wait for cookie to upgrade to time v0.3 which has not yet been released.

campbellC commented 3 years ago

This was kind of hard to figure out because stdweb is an optional dependency of time, which seems to confuse cargo audit.

time v0.2.26
└── cookie v0.15.0
    [dev-dependencies]
    └── third-wheel v0.6.0
campbellC commented 3 years ago

THis is only a dev dependency and when cookie upgrades to 0.16 it will go away. No issue with the library itself