Update deps and fix vulnerabilities

faern / oneshot

Oneshot Rust channel working both in and between sync and async environments

Apache License 2.0

80 stars 9 forks source link

Update deps and fix vulnerabilities #14

Closed niklaslong closed 3 years ago

niklaslong commented 3 years ago

Updates a number of vulnerable dependencies.

Firstly, loom which has the generator vulnerability, this should be fully fixed. It also now has the chrono vulnerability, though loom still needs a version bump, a simple cargo update will suffice once it's released. The PR has been merged so it shouldn't be long now.

I've also updated tokio and async-std.

niklaslong commented 3 years ago

Rebased. @faern you may need to trigger the build manually depending on the repo permissions.

faern commented 3 years ago

Thanks for the contribution!