Upgrade `http-client` to v6.5.3

http-rs / surf

Fast and friendly HTTP client framework for async Rust

https://docs.rs/surf

Apache License 2.0

1.45k stars 119 forks source link

Upgrade `http-client` to v6.5.3 #356

Closed samkevich closed 1 year ago

samkevich commented 1 year ago

Version 6.5.0 of http-client crate was yanked. Apart from that it contained several vulnerability issues in dependencies like SNYK-RUST-DASHMAP-2395477 and CVE-2023-22466 See issue https://github.com/http-rs/surf/issues/355

Fishrock123 commented 1 year ago

I will not commit this change. The version definition here should just be 6.5. This is to help prevent having conflicting dependency requirements from crates.

Run cargo update if this is an issue.