search

massalabs / massa

The Decentralized and Scaled Blockchain
https://massa.net
5.56k stars 712 forks source link

Review of Codebase Security #4431

Closed aoudiamoncef closed 6 months ago

aoudiamoncef commented 1 year ago

This issue serves as a summary of the security checks performed on our codebase using various Cargo tools. The purpose of these checks is to identify and address potential security vulnerabilities in our Rust project.

Tools Used:

Results:

All scans was run on main branch with the fa9bd21ceac04da1819d3afef31bc0563ddd7f6f commit.

  1. cargo-auditable:
➜  massa git:(main) ✗ cargo audit bin target/debug/massa-node 
    Fetching advisory database from `https://github.com/RustSec/advisory-db.git`
      Loaded 572 security advisories (from /Users/aoudiamoncef/.cargo/advisory-db)
    Updating crates.io index
warning: target/debug/massa-node was not built with 'cargo auditable', the report will be incomplete (261 dependencies recovered)
Crate:     ansi_term
Version:   0.12.1
Warning:   unmaintained
Title:     ansi_term is Unmaintained
Date:      2021-08-18
ID:        RUSTSEC-2021-0139
URL:       https://rustsec.org/advisories/RUSTSEC-2021-0139
Dependency tree:
ansi_term 0.12.1

Crate:     mach
Version:   0.3.2
Warning:   unmaintained
Title:     mach is unmaintained
Date:      2020-07-14
ID:        RUSTSEC-2020-0168
URL:       https://rustsec.org/advisories/RUSTSEC-2020-0168
Dependency tree:
mach 0.3.2

Crate:     rustls-webpki
Version:   0.101.5
Warning:   yanked
Dependency tree:
rustls-webpki 0.101.5

warning: 3 allowed warnings found in target/debug/massa-node
➜  massa git:(main) ✗ cargo audit bin target/debug/massa-node
    Fetching advisory database from `https://github.com/RustSec/advisory-db.git`
      Loaded 572 security advisories (from /Users/aoudiamoncef/.cargo/advisory-db)
    Updating crates.io index
warning: target/debug/massa-node was not built with 'cargo auditable', the report will be incomplete (261 dependencies recovered)
Crate:     ansi_term
Version:   0.12.1
Warning:   unmaintained
Title:     ansi_term is Unmaintained
Date:      2021-08-18
ID:        RUSTSEC-2021-0139
URL:       https://rustsec.org/advisories/RUSTSEC-2021-0139
Dependency tree:
ansi_term 0.12.1

Crate:     mach
Version:   0.3.2
Warning:   unmaintained
Title:     mach is unmaintained
Date:      2020-07-14
ID:        RUSTSEC-2020-0168
URL:       https://rustsec.org/advisories/RUSTSEC-2020-0168
Dependency tree:
mach 0.3.2

Crate:     rustls-webpki
Version:   0.101.5
Warning:   yanked
Dependency tree:
rustls-webpki 0.101.5

warning: 3 allowed warnings found in target/debug/massa-node

➜  massa git:(main) ✗ cargo audit bin target/debug/massa-client
    Fetching advisory database from `https://github.com/RustSec/advisory-db.git`
      Loaded 572 security advisories (from /Users/aoudiamoncef/.cargo/advisory-db)
    Updating crates.io index
warning: target/debug/massa-client was not built with 'cargo auditable', the report will be incomplete (174 dependencies recovered)
Crate:     ansi_term
Version:   0.12.1
Warning:   unmaintained
Title:     ansi_term is Unmaintained
Date:      2021-08-18
ID:        RUSTSEC-2021-0139
URL:       https://rustsec.org/advisories/RUSTSEC-2021-0139
Dependency tree:
ansi_term 0.12.1

Crate:     rustls-webpki
Version:   0.101.5
Warning:   yanked
Dependency tree:
rustls-webpki 0.101.5

warning: 2 allowed warnings found in target/debug/massa-client
  1. cargo-audit:
massa git:(main) ✗ cargo audit 
    Fetching advisory database from `https://github.com/RustSec/advisory-db.git`
      Loaded 572 security advisories (from /Users/aoudiamoncef/.cargo/advisory-db)
    Updating crates.io index
    Scanning Cargo.lock for vulnerabilities (613 crate dependencies)
Crate:     ansi_term
Version:   0.12.1
Warning:   unmaintained
Title:     ansi_term is Unmaintained
Date:      2021-08-18
ID:        RUSTSEC-2021-0139
URL:       https://rustsec.org/advisories/RUSTSEC-2021-0139
Dependency tree:
ansi_term 0.12.1
└── clap 2.34.0
    └── structopt 0.3.26
        ├── massa-node 0.26.1
        └── massa-client 0.26.1

Crate:     mach
Version:   0.3.2
Warning:   unmaintained
Title:     mach is unmaintained
Date:      2020-07-14
ID:        RUSTSEC-2020-0168
URL:       https://rustsec.org/advisories/RUSTSEC-2020-0168
Dependency tree:
mach 0.3.2
├── wasmer-vm 4.2.0
│   ├── wasmer-middlewares 4.2.0
│   │   └── massa-sc-runtime 0.10.0
│   │       ├── massa_module_cache 0.26.1
│   │       │   ├── massa_execution_worker 0.26.1
│   │       │   │   └── massa-node 0.26.1
│   │       │   └── massa_execution_exports 0.26.1
│   │       │       ├── massa_pool_worker 0.26.1
│   │       │       │   └── massa-node 0.26.1
│   │       │       ├── massa_pool_exports 0.26.1
│   │       │       │   ├── massa_protocol_worker 0.26.1
│   │       │       │   │   └── massa-node 0.26.1
│   │       │       │   ├── massa_pool_worker 0.26.1
│   │       │       │   ├── massa_grpc 0.26.1
│   │       │       │   │   └── massa-node 0.26.1
│   │       │       │   ├── massa_factory_worker 0.26.1
│   │       │       │   │   └── massa-node 0.26.1
│   │       │       │   ├── massa_factory_exports 0.26.1
│   │       │       │   │   ├── massa_storage 0.26.1
│   │       │       │   │   │   ├── massa_protocol_worker 0.26.1
│   │       │       │   │   │   ├── massa_protocol_exports 0.26.1
│   │       │       │   │   │   │   ├── massa_protocol_worker 0.26.1
│   │       │       │   │   │   │   ├── massa_grpc 0.26.1
│   │       │       │   │   │   │   ├── massa_factory_worker 0.26.1
│   │       │       │   │   │   │   ├── massa_factory_exports 0.26.1
│   │       │       │   │   │   │   ├── massa_consensus_worker 0.26.1
│   │       │       │   │   │   │   │   └── massa-node 0.26.1
│   │       │       │   │   │   │   ├── massa_consensus_exports 0.26.1
│   │       │       │   │   │   │   │   ├── massa_protocol_worker 0.26.1
│   │       │       │   │   │   │   │   ├── massa_grpc 0.26.1
│   │       │       │   │   │   │   │   ├── massa_factory_worker 0.26.1
│   │       │       │   │   │   │   │   ├── massa_factory_exports 0.26.1
│   │       │       │   │   │   │   │   ├── massa_consensus_worker 0.26.1
│   │       │       │   │   │   │   │   ├── massa_bootstrap 0.26.1
│   │       │       │   │   │   │   │   │   ├── massa_grpc 0.26.1
│   │       │       │   │   │   │   │   │   └── massa-node 0.26.1
│   │       │       │   │   │   │   │   ├── massa_api_exports 0.26.1
│   │       │       │   │   │   │   │   │   ├── massa_sdk 0.26.1
│   │       │       │   │   │   │   │   │   │   ├── massa_grpc 0.26.1
│   │       │       │   │   │   │   │   │   │   └── massa-client 0.26.1
│   │       │       │   │   │   │   │   │   ├── massa_api 0.26.1
│   │       │       │   │   │   │   │   │   │   └── massa-node 0.26.1
│   │       │       │   │   │   │   │   │   ├── massa-node 0.26.1
│   │       │       │   │   │   │   │   │   └── massa-client 0.26.1
│   │       │       │   │   │   │   │   ├── massa_api 0.26.1
│   │       │       │   │   │   │   │   └── massa-node 0.26.1
│   │       │       │   │   │   │   ├── massa_bootstrap 0.26.1
│   │       │       │   │   │   │   ├── massa_api_exports 0.26.1
│   │       │       │   │   │   │   ├── massa_api 0.26.1
│   │       │       │   │   │   │   └── massa-node 0.26.1
│   │       │       │   │   │   ├── massa_pool_worker 0.26.1
│   │       │       │   │   │   ├── massa_pool_exports 0.26.1
│   │       │       │   │   │   ├── massa_grpc 0.26.1
│   │       │       │   │   │   ├── massa_factory_worker 0.26.1
│   │       │       │   │   │   ├── massa_factory_exports 0.26.1
│   │       │       │   │   │   ├── massa_execution_worker 0.26.1
│   │       │       │   │   │   ├── massa_execution_exports 0.26.1
│   │       │       │   │   │   ├── massa_consensus_worker 0.26.1
│   │       │       │   │   │   ├── massa_consensus_exports 0.26.1
│   │       │       │   │   │   ├── massa_api 0.26.1
│   │       │       │   │   │   └── massa-node 0.26.1
│   │       │       │   │   ├── massa_factory_worker 0.26.1
│   │       │       │   │   └── massa-node 0.26.1
│   │       │       │   ├── massa_consensus_worker 0.26.1
│   │       │       │   ├── massa_consensus_exports 0.26.1
│   │       │       │   ├── massa_api 0.26.1
│   │       │       │   └── massa-node 0.26.1
│   │       │       ├── massa_grpc 0.26.1
│   │       │       ├── massa_execution_worker 0.26.1
│   │       │       ├── massa_consensus_worker 0.26.1
│   │       │       ├── massa_consensus_exports 0.26.1
│   │       │       ├── massa_api_exports 0.26.1
│   │       │       ├── massa_api 0.26.1
│   │       │       └── massa-node 0.26.1
│   │       ├── massa_execution_worker 0.26.1
│   │       └── massa_execution_exports 0.26.1
│   ├── wasmer-compiler 4.2.0
│   │   ├── wasmer-compiler-singlepass 4.2.0
│   │   │   └── massa-sc-runtime 0.10.0
│   │   ├── wasmer-compiler-cranelift 4.2.0
│   │   │   ├── wasmer 4.2.0
│   │   │   │   ├── wasmer-middlewares 4.2.0
│   │   │   │   ├── massa-sc-runtime 0.10.0
│   │   │   │   └── as-ffi-bindings 0.2.5
│   │   │   │       └── massa-sc-runtime 0.10.0
│   │   │   └── massa-sc-runtime 0.10.0
│   │   └── wasmer 4.2.0
│   └── wasmer 4.2.0
└── region 3.0.0
    ├── wasmer-vm 4.2.0
    └── wasmer-compiler 4.2.0

Crate:     atty
Version:   0.2.14
Warning:   unsound
Title:     Potential unaligned read
Date:      2021-07-04
ID:        RUSTSEC-2021-0145
URL:       https://rustsec.org/advisories/RUSTSEC-2021-0145
Dependency tree:
atty 0.2.14
├── massa-client 0.26.1
└── clap 2.34.0
    └── structopt 0.3.26
        ├── massa-node 0.26.1
        └── massa-client 0.26.1

Crate:     borsh
Version:   0.10.3
Warning:   unsound
Title:     Parsing borsh messages with ZST which are not-copy/clone is unsound
Date:      2023-04-12
ID:        RUSTSEC-2023-0033
URL:       https://rustsec.org/advisories/RUSTSEC-2023-0033
Dependency tree:
borsh 0.10.3
└── rust_decimal 1.32.0
    └── massa_models 0.26.1
        ├── massa_xtask 0.26.1
        ├── massa_wallet 0.26.1
        │   ├── massa_pool_worker 0.26.1
        │   │   └── massa-node 0.26.1
        │   ├── massa_grpc 0.26.1
        │   │   └── massa-node 0.26.1
        │   ├── massa_factory_worker 0.26.1
        │   │   └── massa-node 0.26.1
        │   ├── massa_execution_worker 0.26.1
        │   │   └── massa-node 0.26.1
        │   ├── massa_api_exports 0.26.1
        │   │   ├── massa_sdk 0.26.1
        │   │   │   ├── massa_grpc 0.26.1
        │   │   │   └── massa-client 0.26.1
        │   │   ├── massa_api 0.26.1
        │   │   │   └── massa-node 0.26.1
        │   │   ├── massa-node 0.26.1
        │   │   └── massa-client 0.26.1
        │   ├── massa_api 0.26.1
        │   ├── massa-node 0.26.1
        │   └── massa-client 0.26.1
        ├── massa_versioning 0.26.1
        │   ├── massa_protocol_worker 0.26.1
        │   │   └── massa-node 0.26.1
        │   ├── massa_protocol_exports 0.26.1
        │   │   ├── massa_protocol_worker 0.26.1
        │   │   ├── massa_grpc 0.26.1
        │   │   ├── massa_factory_worker 0.26.1
        │   │   ├── massa_factory_exports 0.26.1
        │   │   │   ├── massa_storage 0.26.1
        │   │   │   │   ├── massa_protocol_worker 0.26.1
        │   │   │   │   ├── massa_protocol_exports 0.26.1
        │   │   │   │   ├── massa_pool_worker 0.26.1
        │   │   │   │   ├── massa_pool_exports 0.26.1
        │   │   │   │   │   ├── massa_protocol_worker 0.26.1
        │   │   │   │   │   ├── massa_pool_worker 0.26.1
        │   │   │   │   │   ├── massa_grpc 0.26.1
        │   │   │   │   │   ├── massa_factory_worker 0.26.1
        │   │   │   │   │   ├── massa_factory_exports 0.26.1
        │   │   │   │   │   ├── massa_consensus_worker 0.26.1
        │   │   │   │   │   │   └── massa-node 0.26.1
        │   │   │   │   │   ├── massa_consensus_exports 0.26.1
        │   │   │   │   │   │   ├── massa_protocol_worker 0.26.1
        │   │   │   │   │   │   ├── massa_grpc 0.26.1
        │   │   │   │   │   │   ├── massa_factory_worker 0.26.1
        │   │   │   │   │   │   ├── massa_factory_exports 0.26.1
        │   │   │   │   │   │   ├── massa_consensus_worker 0.26.1
        │   │   │   │   │   │   ├── massa_bootstrap 0.26.1
        │   │   │   │   │   │   │   ├── massa_grpc 0.26.1
        │   │   │   │   │   │   │   └── massa-node 0.26.1
        │   │   │   │   │   │   ├── massa_api_exports 0.26.1
        │   │   │   │   │   │   ├── massa_api 0.26.1
        │   │   │   │   │   │   └── massa-node 0.26.1
        │   │   │   │   │   ├── massa_api 0.26.1
        │   │   │   │   │   └── massa-node 0.26.1
        │   │   │   │   ├── massa_grpc 0.26.1
        │   │   │   │   ├── massa_factory_worker 0.26.1
        │   │   │   │   ├── massa_factory_exports 0.26.1
        │   │   │   │   ├── massa_execution_worker 0.26.1
        │   │   │   │   ├── massa_execution_exports 0.26.1
        │   │   │   │   │   ├── massa_pool_worker 0.26.1
        │   │   │   │   │   ├── massa_pool_exports 0.26.1
        │   │   │   │   │   ├── massa_grpc 0.26.1
        │   │   │   │   │   ├── massa_execution_worker 0.26.1
        │   │   │   │   │   ├── massa_consensus_worker 0.26.1
        │   │   │   │   │   ├── massa_consensus_exports 0.26.1
        │   │   │   │   │   ├── massa_api_exports 0.26.1
        │   │   │   │   │   ├── massa_api 0.26.1
        │   │   │   │   │   └── massa-node 0.26.1
        │   │   │   │   ├── massa_consensus_worker 0.26.1
        │   │   │   │   ├── massa_consensus_exports 0.26.1
        │   │   │   │   ├── massa_api 0.26.1
        │   │   │   │   └── massa-node 0.26.1
        │   │   │   ├── massa_factory_worker 0.26.1
        │   │   │   └── massa-node 0.26.1
        │   │   ├── massa_consensus_worker 0.26.1
        │   │   ├── massa_consensus_exports 0.26.1
        │   │   ├── massa_bootstrap 0.26.1
        │   │   ├── massa_api_exports 0.26.1
        │   │   ├── massa_api 0.26.1
        │   │   └── massa-node 0.26.1
        │   ├── massa_grpc 0.26.1
        │   ├── massa_final_state 0.26.1
        │   │   ├── massa_execution_worker 0.26.1
        │   │   ├── massa_execution_exports 0.26.1
        │   │   ├── massa_bootstrap 0.26.1
        │   │   ├── massa_api_exports 0.26.1
        │   │   └── massa-node 0.26.1
        │   ├── massa_factory_worker 0.26.1
        │   ├── massa_execution_worker 0.26.1
        │   ├── massa_execution_exports 0.26.1
        │   ├── massa_bootstrap 0.26.1
        │   ├── massa_api_exports 0.26.1
        │   ├── massa_api 0.26.1
        │   └── massa-node 0.26.1
        ├── massa_storage 0.26.1
        ├── massa_sdk 0.26.1
        ├── massa_protocol_worker 0.26.1
        ├── massa_protocol_exports 0.26.1
        ├── massa_pos_worker 0.26.1
        │   ├── massa_final_state 0.26.1
        │   ├── massa_execution_worker 0.26.1
        │   ├── massa_consensus_worker 0.26.1
        │   ├── massa_bootstrap 0.26.1
        │   └── massa-node 0.26.1
        ├── massa_pos_exports 0.26.1
        │   ├── massa_protocol_worker 0.26.1
        │   ├── massa_protocol_exports 0.26.1
        │   ├── massa_pos_worker 0.26.1
        │   ├── massa_pool_worker 0.26.1
        │   ├── massa_pool_exports 0.26.1
        │   ├── massa_grpc 0.26.1
        │   ├── massa_final_state 0.26.1
        │   ├── massa_factory_worker 0.26.1
        │   ├── massa_factory_exports 0.26.1
        │   ├── massa_execution_worker 0.26.1
        │   ├── massa_execution_exports 0.26.1
        │   ├── massa_consensus_worker 0.26.1
        │   ├── massa_consensus_exports 0.26.1
        │   ├── massa_bootstrap 0.26.1
        │   ├── massa_api 0.26.1
        │   └── massa-node 0.26.1
        ├── massa_pool_worker 0.26.1
        ├── massa_pool_exports 0.26.1
        ├── massa_module_cache 0.26.1
        │   ├── massa_execution_worker 0.26.1
        │   └── massa_execution_exports 0.26.1
        ├── massa_ledger_worker 0.26.1
        │   ├── massa_final_state 0.26.1
        │   ├── massa_execution_worker 0.26.1
        │   ├── massa_executed_ops 0.26.1
        │   │   ├── massa_final_state 0.26.1
        │   │   ├── massa_execution_worker 0.26.1
        │   │   ├── massa_bootstrap 0.26.1
        │   │   └── massa-node 0.26.1
        │   ├── massa_bootstrap 0.26.1
        │   ├── massa_async_pool 0.26.1
        │   │   ├── massa_final_state 0.26.1
        │   │   ├── massa_execution_worker 0.26.1
        │   │   ├── massa_bootstrap 0.26.1
        │   │   └── massa-node 0.26.1
        │   └── massa-node 0.26.1
        ├── massa_ledger_exports 0.26.1
        │   ├── massa_ledger_worker 0.26.1
        │   ├── massa_final_state 0.26.1
        │   ├── massa_execution_worker 0.26.1
        │   ├── massa_execution_exports 0.26.1
        │   ├── massa_bootstrap 0.26.1
        │   ├── massa_async_pool 0.26.1
        │   └── massa-node 0.26.1
        ├── massa_grpc 0.26.1
        ├── massa_final_state 0.26.1
        ├── massa_factory_worker 0.26.1
        ├── massa_factory_exports 0.26.1
        ├── massa_execution_worker 0.26.1
        ├── massa_execution_exports 0.26.1
        ├── massa_executed_ops 0.26.1
        ├── massa_db_worker 0.26.1
        │   ├── massa_versioning 0.26.1
        │   ├── massa_pos_exports 0.26.1
        │   ├── massa_ledger_worker 0.26.1
        │   ├── massa_final_state 0.26.1
        │   ├── massa_execution_worker 0.26.1
        │   ├── massa_executed_ops 0.26.1
        │   ├── massa_bootstrap 0.26.1
        │   └── massa-node 0.26.1
        ├── massa_db_exports 0.26.1
        │   ├── massa_versioning 0.26.1
        │   ├── massa_pos_exports 0.26.1
        │   ├── massa_ledger_worker 0.26.1
        │   ├── massa_ledger_exports 0.26.1
        │   ├── massa_final_state 0.26.1
        │   ├── massa_execution_worker 0.26.1
        │   ├── massa_executed_ops 0.26.1
        │   ├── massa_db_worker 0.26.1
        │   ├── massa_bootstrap 0.26.1
        │   ├── massa_async_pool 0.26.1
        │   └── massa-node 0.26.1
        ├── massa_consensus_worker 0.26.1
        ├── massa_consensus_exports 0.26.1
        ├── massa_bootstrap 0.26.1
        ├── massa_async_pool 0.26.1
        ├── massa_api_exports 0.26.1
        ├── massa_api 0.26.1
        ├── massa-node 0.26.1
        └── massa-client 0.26.1

Crate:     rustls-webpki
Version:   0.101.5
Warning:   yanked
Dependency tree:
rustls-webpki 0.101.5
└── rustls 0.21.7
    ├── tokio-rustls 0.24.1
    │   ├── tonic 0.10.0
    │   │   ├── tonic-web 0.10.0
    │   │   │   └── massa_grpc 0.26.1
    │   │   │       └── massa-node 0.26.1
    │   │   ├── tonic-reflection 0.10.0
    │   │   │   └── massa_grpc 0.26.1
    │   │   ├── tonic-health 0.10.0
    │   │   │   └── massa_grpc 0.26.1
    │   │   ├── massa_sdk 0.26.1
    │   │   │   ├── massa_grpc 0.26.1
    │   │   │   └── massa-client 0.26.1
    │   │   ├── massa_grpc 0.26.1
    │   │   └── massa-proto-rs 0.1.0
    │   │       ├── massa_versioning 0.26.1
    │   │       │   ├── massa_protocol_worker 0.26.1
    │   │       │   │   └── massa-node 0.26.1
    │   │       │   ├── massa_protocol_exports 0.26.1
    │   │       │   │   ├── massa_protocol_worker 0.26.1
    │   │       │   │   ├── massa_grpc 0.26.1
    │   │       │   │   ├── massa_factory_worker 0.26.1
    │   │       │   │   │   └── massa-node 0.26.1
    │   │       │   │   ├── massa_factory_exports 0.26.1
    │   │       │   │   │   ├── massa_storage 0.26.1
    │   │       │   │   │   │   ├── massa_protocol_worker 0.26.1
    │   │       │   │   │   │   ├── massa_protocol_exports 0.26.1
    │   │       │   │   │   │   ├── massa_pool_worker 0.26.1
    │   │       │   │   │   │   │   └── massa-node 0.26.1
    │   │       │   │   │   │   ├── massa_pool_exports 0.26.1
    │   │       │   │   │   │   │   ├── massa_protocol_worker 0.26.1
    │   │       │   │   │   │   │   ├── massa_pool_worker 0.26.1
    │   │       │   │   │   │   │   ├── massa_grpc 0.26.1
    │   │       │   │   │   │   │   ├── massa_factory_worker 0.26.1
    │   │       │   │   │   │   │   ├── massa_factory_exports 0.26.1
    │   │       │   │   │   │   │   ├── massa_consensus_worker 0.26.1
    │   │       │   │   │   │   │   │   └── massa-node 0.26.1
    │   │       │   │   │   │   │   ├── massa_consensus_exports 0.26.1
    │   │       │   │   │   │   │   │   ├── massa_protocol_worker 0.26.1
    │   │       │   │   │   │   │   │   ├── massa_grpc 0.26.1
    │   │       │   │   │   │   │   │   ├── massa_factory_worker 0.26.1
    │   │       │   │   │   │   │   │   ├── massa_factory_exports 0.26.1
    │   │       │   │   │   │   │   │   ├── massa_consensus_worker 0.26.1
    │   │       │   │   │   │   │   │   ├── massa_bootstrap 0.26.1
    │   │       │   │   │   │   │   │   │   ├── massa_grpc 0.26.1
    │   │       │   │   │   │   │   │   │   └── massa-node 0.26.1
    │   │       │   │   │   │   │   │   ├── massa_api_exports 0.26.1
    │   │       │   │   │   │   │   │   │   ├── massa_sdk 0.26.1
    │   │       │   │   │   │   │   │   │   ├── massa_api 0.26.1
    │   │       │   │   │   │   │   │   │   │   └── massa-node 0.26.1
    │   │       │   │   │   │   │   │   │   ├── massa-node 0.26.1
    │   │       │   │   │   │   │   │   │   └── massa-client 0.26.1
    │   │       │   │   │   │   │   │   ├── massa_api 0.26.1
    │   │       │   │   │   │   │   │   └── massa-node 0.26.1
    │   │       │   │   │   │   │   ├── massa_api 0.26.1
    │   │       │   │   │   │   │   └── massa-node 0.26.1
    │   │       │   │   │   │   ├── massa_grpc 0.26.1
    │   │       │   │   │   │   ├── massa_factory_worker 0.26.1
    │   │       │   │   │   │   ├── massa_factory_exports 0.26.1
    │   │       │   │   │   │   ├── massa_execution_worker 0.26.1
    │   │       │   │   │   │   │   └── massa-node 0.26.1
    │   │       │   │   │   │   ├── massa_execution_exports 0.26.1
    │   │       │   │   │   │   │   ├── massa_pool_worker 0.26.1
    │   │       │   │   │   │   │   ├── massa_pool_exports 0.26.1
    │   │       │   │   │   │   │   ├── massa_grpc 0.26.1
    │   │       │   │   │   │   │   ├── massa_execution_worker 0.26.1
    │   │       │   │   │   │   │   ├── massa_consensus_worker 0.26.1
    │   │       │   │   │   │   │   ├── massa_consensus_exports 0.26.1
    │   │       │   │   │   │   │   ├── massa_api_exports 0.26.1
    │   │       │   │   │   │   │   ├── massa_api 0.26.1
    │   │       │   │   │   │   │   └── massa-node 0.26.1
    │   │       │   │   │   │   ├── massa_consensus_worker 0.26.1
    │   │       │   │   │   │   ├── massa_consensus_exports 0.26.1
    │   │       │   │   │   │   ├── massa_api 0.26.1
    │   │       │   │   │   │   └── massa-node 0.26.1
    │   │       │   │   │   ├── massa_factory_worker 0.26.1
    │   │       │   │   │   └── massa-node 0.26.1
    │   │       │   │   ├── massa_consensus_worker 0.26.1
    │   │       │   │   ├── massa_consensus_exports 0.26.1
    │   │       │   │   ├── massa_bootstrap 0.26.1
    │   │       │   │   ├── massa_api_exports 0.26.1
    │   │       │   │   ├── massa_api 0.26.1
    │   │       │   │   └── massa-node 0.26.1
    │   │       │   ├── massa_grpc 0.26.1
    │   │       │   ├── massa_final_state 0.26.1
    │   │       │   │   ├── massa_execution_worker 0.26.1
    │   │       │   │   ├── massa_execution_exports 0.26.1
    │   │       │   │   ├── massa_bootstrap 0.26.1
    │   │       │   │   ├── massa_api_exports 0.26.1
    │   │       │   │   └── massa-node 0.26.1
    │   │       │   ├── massa_factory_worker 0.26.1
    │   │       │   ├── massa_execution_worker 0.26.1
    │   │       │   ├── massa_execution_exports 0.26.1
    │   │       │   ├── massa_bootstrap 0.26.1
    │   │       │   ├── massa_api_exports 0.26.1
    │   │       │   ├── massa_api 0.26.1
    │   │       │   └── massa-node 0.26.1
    │   │       ├── massa_time 0.26.1
    │   │       │   ├── massa_versioning 0.26.1
    │   │       │   ├── massa_sdk 0.26.1
    │   │       │   ├── massa_protocol_worker 0.26.1
    │   │       │   ├── massa_protocol_exports 0.26.1
    │   │       │   ├── massa_pool_worker 0.26.1
    │   │       │   ├── massa_pool_exports 0.26.1
    │   │       │   ├── massa_models 0.26.1
    │   │       │   │   ├── massa_xtask 0.26.1
    │   │       │   │   ├── massa_wallet 0.26.1
    │   │       │   │   │   ├── massa_pool_worker 0.26.1
    │   │       │   │   │   ├── massa_grpc 0.26.1
    │   │       │   │   │   ├── massa_factory_worker 0.26.1
    │   │       │   │   │   ├── massa_execution_worker 0.26.1
    │   │       │   │   │   ├── massa_api_exports 0.26.1
    │   │       │   │   │   ├── massa_api 0.26.1
    │   │       │   │   │   ├── massa-node 0.26.1
    │   │       │   │   │   └── massa-client 0.26.1
    │   │       │   │   ├── massa_versioning 0.26.1
    │   │       │   │   ├── massa_storage 0.26.1
    │   │       │   │   ├── massa_sdk 0.26.1
    │   │       │   │   ├── massa_protocol_worker 0.26.1
    │   │       │   │   ├── massa_protocol_exports 0.26.1
    │   │       │   │   ├── massa_pos_worker 0.26.1
    │   │       │   │   │   ├── massa_final_state 0.26.1
    │   │       │   │   │   ├── massa_execution_worker 0.26.1
    │   │       │   │   │   ├── massa_consensus_worker 0.26.1
    │   │       │   │   │   ├── massa_bootstrap 0.26.1
    │   │       │   │   │   └── massa-node 0.26.1
    │   │       │   │   ├── massa_pos_exports 0.26.1
    │   │       │   │   │   ├── massa_protocol_worker 0.26.1
    │   │       │   │   │   ├── massa_protocol_exports 0.26.1
    │   │       │   │   │   ├── massa_pos_worker 0.26.1
    │   │       │   │   │   ├── massa_pool_worker 0.26.1
    │   │       │   │   │   ├── massa_pool_exports 0.26.1
    │   │       │   │   │   ├── massa_grpc 0.26.1
    │   │       │   │   │   ├── massa_final_state 0.26.1
    │   │       │   │   │   ├── massa_factory_worker 0.26.1
    │   │       │   │   │   ├── massa_factory_exports 0.26.1
    │   │       │   │   │   ├── massa_execution_worker 0.26.1
    │   │       │   │   │   ├── massa_execution_exports 0.26.1
    │   │       │   │   │   ├── massa_consensus_worker 0.26.1
    │   │       │   │   │   ├── massa_consensus_exports 0.26.1
    │   │       │   │   │   ├── massa_bootstrap 0.26.1
    │   │       │   │   │   ├── massa_api 0.26.1
    │   │       │   │   │   └── massa-node 0.26.1
    │   │       │   │   ├── massa_pool_worker 0.26.1
    │   │       │   │   ├── massa_pool_exports 0.26.1
    │   │       │   │   ├── massa_module_cache 0.26.1
    │   │       │   │   │   ├── massa_execution_worker 0.26.1
    │   │       │   │   │   └── massa_execution_exports 0.26.1
    │   │       │   │   ├── massa_ledger_worker 0.26.1
    │   │       │   │   │   ├── massa_final_state 0.26.1
    │   │       │   │   │   ├── massa_execution_worker 0.26.1
    │   │       │   │   │   ├── massa_executed_ops 0.26.1
    │   │       │   │   │   │   ├── massa_final_state 0.26.1
    │   │       │   │   │   │   ├── massa_execution_worker 0.26.1
    │   │       │   │   │   │   ├── massa_bootstrap 0.26.1
    │   │       │   │   │   │   └── massa-node 0.26.1
    │   │       │   │   │   ├── massa_bootstrap 0.26.1
    │   │       │   │   │   ├── massa_async_pool 0.26.1
    │   │       │   │   │   │   ├── massa_final_state 0.26.1
    │   │       │   │   │   │   ├── massa_execution_worker 0.26.1
    │   │       │   │   │   │   ├── massa_bootstrap 0.26.1
    │   │       │   │   │   │   └── massa-node 0.26.1
    │   │       │   │   │   └── massa-node 0.26.1
    │   │       │   │   ├── massa_ledger_exports 0.26.1
    │   │       │   │   │   ├── massa_ledger_worker 0.26.1
    │   │       │   │   │   ├── massa_final_state 0.26.1
    │   │       │   │   │   ├── massa_execution_worker 0.26.1
    │   │       │   │   │   ├── massa_execution_exports 0.26.1
    │   │       │   │   │   ├── massa_bootstrap 0.26.1
    │   │       │   │   │   ├── massa_async_pool 0.26.1
    │   │       │   │   │   └── massa-node 0.26.1
    │   │       │   │   ├── massa_grpc 0.26.1
    │   │       │   │   ├── massa_final_state 0.26.1
    │   │       │   │   ├── massa_factory_worker 0.26.1
    │   │       │   │   ├── massa_factory_exports 0.26.1
    │   │       │   │   ├── massa_execution_worker 0.26.1
    │   │       │   │   ├── massa_execution_exports 0.26.1
    │   │       │   │   ├── massa_executed_ops 0.26.1
    │   │       │   │   ├── massa_db_worker 0.26.1
    │   │       │   │   │   ├── massa_versioning 0.26.1
    │   │       │   │   │   ├── massa_pos_exports 0.26.1
    │   │       │   │   │   ├── massa_ledger_worker 0.26.1
    │   │       │   │   │   ├── massa_final_state 0.26.1
    │   │       │   │   │   ├── massa_execution_worker 0.26.1
    │   │       │   │   │   ├── massa_executed_ops 0.26.1
    │   │       │   │   │   ├── massa_bootstrap 0.26.1
    │   │       │   │   │   └── massa-node 0.26.1
    │   │       │   │   ├── massa_db_exports 0.26.1
    │   │       │   │   │   ├── massa_versioning 0.26.1
    │   │       │   │   │   ├── massa_pos_exports 0.26.1
    │   │       │   │   │   ├── massa_ledger_worker 0.26.1
    │   │       │   │   │   ├── massa_ledger_exports 0.26.1
    │   │       │   │   │   ├── massa_final_state 0.26.1
    │   │       │   │   │   ├── massa_execution_worker 0.26.1
    │   │       │   │   │   ├── massa_executed_ops 0.26.1
    │   │       │   │   │   ├── massa_db_worker 0.26.1
    │   │       │   │   │   ├── massa_bootstrap 0.26.1
    │   │       │   │   │   ├── massa_async_pool 0.26.1
    │   │       │   │   │   └── massa-node 0.26.1
    │   │       │   │   ├── massa_consensus_worker 0.26.1
    │   │       │   │   ├── massa_consensus_exports 0.26.1
    │   │       │   │   ├── massa_bootstrap 0.26.1
    │   │       │   │   ├── massa_async_pool 0.26.1
    │   │       │   │   ├── massa_api_exports 0.26.1
    │   │       │   │   ├── massa_api 0.26.1
    │   │       │   │   ├── massa-node 0.26.1
    │   │       │   │   └── massa-client 0.26.1
    │   │       │   ├── massa_grpc 0.26.1
    │   │       │   ├── massa_final_state 0.26.1
    │   │       │   ├── massa_factory_worker 0.26.1
    │   │       │   ├── massa_factory_exports 0.26.1
    │   │       │   ├── massa_execution_worker 0.26.1
    │   │       │   ├── massa_execution_exports 0.26.1
    │   │       │   ├── massa_consensus_worker 0.26.1
    │   │       │   ├── massa_consensus_exports 0.26.1
    │   │       │   ├── massa_bootstrap 0.26.1
    │   │       │   ├── massa_async_pool 0.26.1
    │   │       │   ├── massa_api_exports 0.26.1
    │   │       │   ├── massa_api 0.26.1
    │   │       │   ├── massa-node 0.26.1
    │   │       │   └── massa-client 0.26.1
    │   │       ├── massa_sdk 0.26.1
    │   │       ├── massa_models 0.26.1
    │   │       ├── massa_ledger_exports 0.26.1
    │   │       ├── massa_grpc 0.26.1
    │   │       ├── massa_final_state 0.26.1
    │   │       ├── massa_execution_worker 0.26.1
    │   │       ├── massa_execution_exports 0.26.1
    │   │       ├── massa_async_pool 0.26.1
    │   │       └── massa-sc-runtime 0.10.0
    │   │           ├── massa_module_cache 0.26.1
    │   │           ├── massa_execution_worker 0.26.1
    │   │           └── massa_execution_exports 0.26.1
    │   ├── jsonrpsee-client-transport 0.20.1
    │   │   ├── jsonrpsee-ws-client 0.20.1
    │   │   │   ├── massa_sdk 0.26.1
    │   │   │   └── jsonrpsee 0.20.1
    │   │   │       ├── massa_sdk 0.26.1
    │   │   │       ├── massa_consensus_exports 0.26.1
    │   │   │       ├── massa_api_exports 0.26.1
    │   │   │       └── massa_api 0.26.1
    │   │   ├── jsonrpsee-wasm-client 0.20.1
    │   │   │   └── jsonrpsee 0.20.1
    │   │   └── jsonrpsee 0.20.1
    │   └── hyper-rustls 0.24.1
    │       └── jsonrpsee-http-client 0.20.1
    │           ├── massa_sdk 0.26.1
    │           └── jsonrpsee 0.20.1
    └── hyper-rustls 0.24.1

warning: 5 allowed warnings found
  1. cargo-vet:
➜  massa git:(main) ✗ cargo vet
ERROR   × You must run 'cargo vet init' (store not found at /Users/aoudiamoncef/Workspace/massa/supply-chain)

➜  massa git:(main) ✗ cargo vet init
➜  massa git:(main) ✗ cargo vet     
Vetting Succeeded (567 exempted)
  1. cargo-crev:
➜  massa git:(main) ✗ cargo crev verify --show-all
There are no trusted Ids. There is nothing to verify against.
Use `cargo crev trust` to add trusted reviewers
status reviews issues owner      downloads    loc lpidx geiger flgs crate                        version                       latest_t    
N/A      0   0  0   0  0  1  1590K  28065K      9  1116      0 CB__ windows_aarch64_gnullvm      0.48.5         
...
local    0   0  0   0  ?  ?        ?         ?   4113     0      0 ____ massa_grpc                   0.26.1*                                   
local    0   0  0   0  ?  ?        ?         ?   1748     0      0 ____ massa-node                   0.26.1*                                   
NOTE: No trusted Ids available. Nothing to verify against. Use `cargo crev trust` to add trusted reviewers or visit https://github.com/crev-dev/cargo-crev/discussions/ for help.%
  1. cargo-machete:
➜  massa git:(main) ✗ cargo machete               
Analyzing dependencies of crates in this directory...
cargo-machete found the following unused dependencies in /Users/aoudiamoncef/Workspace/massa:
massa_consensus_exports -- /Users/aoudiamoncef/Workspace/massa/massa-consensus-exports/Cargo.toml:
        crossbeam-channel
        jsonrpsee
        massa_hash
massa_consensus_worker -- /Users/aoudiamoncef/Workspace/massa/massa-consensus-worker/Cargo.toml:
        massa_pos_worker
massa_metrics -- /Users/aoudiamoncef/Workspace/massa/massa-metrics/Cargo.toml:
        massa_channel
massa_ledger_exports -- /Users/aoudiamoncef/Workspace/massa/massa-ledger-exports/Cargo.toml:
        massa_hash
massa_cipher -- /Users/aoudiamoncef/Workspace/massa/massa-cipher/Cargo.toml:
        massa_serialization
massa_db_exports -- /Users/aoudiamoncef/Workspace/massa/massa-db-exports/Cargo.toml:
        massa_serialization
massa_factory_worker -- /Users/aoudiamoncef/Workspace/massa/massa-factory-worker/Cargo.toml:
        massa_hash
        massa_serialization
massa_async_pool -- /Users/aoudiamoncef/Workspace/massa/massa-async-pool/Cargo.toml:
        massa_hash
        massa_time
        parking_lot
Done!
  1. cargo-hack:
➜  massa git:(main) ✗ cargo hack check --all --ignore-private --each-feature
...
info: running `cargo check --no-default-features --features testing` on massa_protocol_exports (64/108)
    Checking tokio v1.32.0
   Compiling ring v0.16.20
   Compiling cmake v0.1.50
    Checking prometheus v0.13.3
   Compiling enum_delegate_lib v0.2.0
    Checking massa_channel v0.26.1 (/Users/aoudiamoncef/Workspace/massa/massa-channel)
   Compiling quiche v0.16.0
   Compiling enum_delegate v0.2.0
    Checking tokio-util v0.7.8
    Checking tokio-io-timeout v1.2.0
    Checking tokio-stream v0.1.14
    Checking h2 v0.3.21
    Checking tower v0.4.13
    Checking hyper v0.14.27
    Checking hyper-timeout v0.4.1
    Checking axum v0.6.20
    Checking massa_metrics v0.26.1 (/Users/aoudiamoncef/Workspace/massa/massa-metrics)
    Checking tonic v0.10.0
    Checking massa-proto-rs v0.1.0 (https://github.com/massalabs/massa-proto-rs?rev=173a5ce3f9b0a869bb5871383e2ca9db5e9d89c3#173a5ce3)
    Checking massa_time v0.26.1 (/Users/aoudiamoncef/Workspace/massa/massa-time)
    Checking massa_models v0.26.1 (/Users/aoudiamoncef/Workspace/massa/massa-models)
    Checking massa_db_exports v0.26.1 (/Users/aoudiamoncef/Workspace/massa/massa-db-exports)
    Checking massa_storage v0.26.1 (/Users/aoudiamoncef/Workspace/massa/massa-storage)
    Checking massa_versioning v0.26.1 (/Users/aoudiamoncef/Workspace/massa/massa-versioning)
    Checking massa_pos_exports v0.26.1 (/Users/aoudiamoncef/Workspace/massa/massa-pos-exports)
    Checking peernet v0.1.0 (https://github.com/massalabs/PeerNet?branch=main#ffa622b8)
    Checking massa_protocol_exports v0.26.1 (/Users/aoudiamoncef/Workspace/massa/massa-protocol-exports)
error[E0599]: no variant or associated item named `generate_from_hash` found for enum `massa_models::block_id::BlockId` in the current scope
  --> massa-protocol-exports/src/test_exports/tools.rs:31:26
   |
31 |                 BlockId::generate_from_hash(Hash::compute_from("Genesis 0".as_bytes())),
   |                          ^^^^^^^^^^^^^^^^^^ variant or associated item not found in `BlockId`

error[E0599]: no variant or associated item named `generate_from_hash` found for enum `massa_models::block_id::BlockId` in the current scope
  --> massa-protocol-exports/src/test_exports/tools.rs:32:26
   |
32 |                 BlockId::generate_from_hash(Hash::compute_from("Genesis 1".as_bytes())),
   |                          ^^^^^^^^^^^^^^^^^^ variant or associated item not found in `BlockId`

error[E0599]: no variant or associated item named `generate_from_hash` found for enum `massa_models::block_id::BlockId` in the current scope
  --> massa-protocol-exports/src/test_exports/tools.rs:75:26
   |
75 |                 BlockId::generate_from_hash(Hash::compute_from("Genesis 0".as_bytes())),
   |                          ^^^^^^^^^^^^^^^^^^ variant or associated item not found in `BlockId`

error[E0599]: no variant or associated item named `generate_from_hash` found for enum `massa_models::block_id::BlockId` in the current scope
  --> massa-protocol-exports/src/test_exports/tools.rs:76:26
   |
76 |                 BlockId::generate_from_hash(Hash::compute_from("Genesis 1".as_bytes())),
   |                          ^^^^^^^^^^^^^^^^^^ variant or associated item not found in `BlockId`

error[E0599]: no variant or associated item named `generate_from_hash` found for enum `massa_models::block_id::BlockId` in the current scope
   --> massa-protocol-exports/src/test_exports/tools.rs:115:26
    |
115 |                 BlockId::generate_from_hash(Hash::compute_from("Genesis 0".as_bytes())),
    |                          ^^^^^^^^^^^^^^^^^^ variant or associated item not found in `BlockId`

error[E0599]: no variant or associated item named `generate_from_hash` found for enum `massa_models::block_id::BlockId` in the current scope
   --> massa-protocol-exports/src/test_exports/tools.rs:116:26
    |
116 |                 BlockId::generate_from_hash(Hash::compute_from("Genesis 1".as_bytes())),
    |                          ^^^^^^^^^^^^^^^^^^ variant or associated item not found in `BlockId`

error[E0599]: no variant or associated item named `generate_from_hash` found for enum `massa_models::block_id::BlockId` in the current scope
   --> massa-protocol-exports/src/test_exports/tools.rs:146:34
    |
146 |         endorsed_block: BlockId::generate_from_hash(Hash::compute_from(&[])),
    |                                  ^^^^^^^^^^^^^^^^^^ variant or associated item not found in `BlockId`

For more information about this error, try `rustc --explain E0599`.
error: could not compile `massa_protocol_exports` (lib) due to 7 previous errors
error: process didn't exit successfully: `/Users/aoudiamoncef/.rustup/toolchains/1.72.1-aarch64-apple-darwin/bin/cargo check --manifest-path massa-protocol-exports/Cargo.toml --no-default-features --features testing` (exit status: 101)
  1. cargo deny --all-features check 
    
Same output as `cargo audit` (see above)

advisories ok, bans ok, licenses FAILED, sources ok


8. *cargo deny list*
```shell
cargo deny list
0BSD (3): adler@1.0.2, enum-iterator@0.7.0, enum-iterator-derive@0.7.0
Apache-2.0 (361): addr2line@0.21.0, adler@1.0.2, aead@0.5.2, aes@0.8.3, aes-gcm@0.10.3, ahash@0.7.6, ahash@0.8.3, android-tzdata@0.1.1, android_system_properties@0.1.5, anstream@0.6.4, anstyle@1.0.4, anstyle-parse@0.2.2, anstyle-query@1.0.0, anstyle-wincon@3.0.1, anyhow@1.0.75, arrayvec@0.7.4, as-ffi-bindings@0.2.5, asn1-rs@0.5.2, asn1-rs-derive@0.4.0, asn1-rs-impl@0.1.0, async-lock@2.8.0, async-trait@0.1.73, autocfg@1.1.0, backtrace@0.3.69, base64@0.13.1, base64@0.21.4, base64ct@1.6.0, beef@0.5.2, bitflags@1.3.2, bitflags@2.4.0, blake3@1.4.1, block-buffer@0.10.4, block-buffer@0.9.0, bs58@0.5.0, bumpalo@3.14.0, bzip2-sys@0.1.11+1.0.8, cc@1.0.83, cexpr@0.6.0, cfg-if@1.0.0, chrono@0.4.31, cipher@0.4.4, clang-sys@1.6.1, clap@4.4.6, clap_builder@4.4.6, clap_derive@4.4.2, clap_lex@0.5.1, cmake@0.1.50, colorchoice@1.0.0, config@0.13.3, constant_time_eq@0.3.0, core-foundation@0.9.3, core-foundation-sys@0.8.4, corosensei@0.1.4, cpufeatures@0.2.9, crc32fast@1.3.2, crossbeam@0.8.2, crossbeam-channel@0.5.8, crossbeam-deque@0.8.3, crossbeam-epoch@0.9.15, crossbeam-queue@0.3.8, crossbeam-utils@0.8.16, crypto-common@0.1.6, crypto-mac@0.8.0, ctr@0.9.2, ctrlc@3.4.1, curve25519-dalek-derive@0.1.0, der-parser@8.2.0, deranged@0.3.8, derivative@2.2.0, digest@0.10.7, digest@0.9.0, directories@5.0.1, dirs-sys@0.4.1, displaydoc@0.2.4, ed25519@2.2.2, either@1.9.0, encode_unicode@0.3.6, enum_delegate@0.2.0, enum_delegate_lib@0.2.0, enumset@1.1.2, enumset_derive@0.8.1, equivalent@1.0.1, erased-serde@0.3.31, event-listener@2.5.3, fallible-iterator@0.2.0, fastrand@2.0.1, fd-lock@3.0.13, fiat-crypto@0.2.1, fixedbitset@0.4.2, flate2@1.0.27, fnv@1.0.7, form_urlencoded@1.2.0, fragile@2.0.0, futures@0.3.28, futures-channel@0.3.28, futures-core@0.3.28, futures-executor@0.3.28, futures-io@0.3.28, futures-macro@0.3.28, futures-sink@0.3.28, futures-task@0.3.28, futures-timer@3.0.2, futures-util@0.3.28, fxhash@0.2.1, getrandom@0.2.10, ghash@0.5.0, gimli@0.26.2, gimli@0.28.0, glob@0.3.1, gloo-net@0.4.0, gloo-timers@0.2.6, gloo-utils@0.2.0, hashbrown@0.11.2, hashbrown@0.12.3, hashbrown@0.13.2, hashbrown@0.14.1, hdrhistogram@7.5.2, heck@0.4.1, hermit-abi@0.3.3, hex@0.4.3, hmac@0.12.1, hmac@0.8.1, hmac-drbg@0.3.0, home@0.5.5, http@0.2.9, httparse@1.8.0, httpdate@1.0.3, humantime@2.1.0, hyper-rustls@0.24.1, hyper-timeout@0.4.1, iana-time-zone@0.1.57, iana-time-zone-haiku@0.1.2, ident_case@1.0.1, idna@0.4.0, indexmap@1.9.3, indexmap@2.0.2, inout@0.1.3, io-lifetimes@1.0.11, ip_rfc@0.1.0, itertools@0.10.5, itertools@0.11.0, itoa@1.0.9, jobserver@0.1.26, js-sys@0.3.64, keccak@0.1.4, lazy_static@1.4.0, lazycell@1.3.0, leb128@0.2.5, libc@0.2.148, libm@0.2.8, librocksdb-sys@0.11.0+8.1.1, libsecp256k1@0.7.1, libsecp256k1-core@0.3.0, libsecp256k1-gen-ecmult@0.3.0, libsecp256k1-gen-genmult@0.3.0, libz-sys@1.1.12, linked-hash-map@0.5.6, linux-raw-sys@0.1.4, linux-raw-sys@0.4.8, lock_api@0.4.10, log@0.4.20, machine@0.3.0, memmap2@0.5.10, memmap2@0.6.2, mime@0.3.17, minimal-lexical@0.2.1, miniz_oxide@0.7.1, mockall@0.11.4, mockall_derive@0.11.4, more-asserts@0.3.1, multimap@0.8.3, normalize-line-endings@0.3.0, num@0.4.1, num-bigint@0.4.4, num-complex@0.4.4, num-integer@0.1.45, num-iter@0.1.43, num-rational@0.4.1, num-traits@0.2.16, num_cpus@1.16.0, num_enum@0.6.1, num_enum@0.7.0, num_enum_derive@0.6.1, num_enum_derive@0.7.0, object@0.28.4, object@0.32.1, oid-registry@0.6.1, once_cell@1.18.0, opaque-debug@0.3.0, openssl-probe@0.1.5, paginate@1.1.11, parking_lot@0.12.1, parking_lot_core@0.9.8, password-hash@0.5.0, pathdiff@0.2.1, pbkdf2@0.12.2, peeking_take_while@0.1.2, percent-encoding@2.3.0, pest@2.7.4, pest_derive@2.7.4, pest_generator@2.7.4, pest_meta@2.7.4, petgraph@0.6.4, pin-project@1.1.3, pin-project-internal@1.1.3, pin-project-lite@0.2.13, pin-utils@0.1.0, pkg-config@0.3.27, platforms@3.1.2, polyval@0.6.1, ppv-lite86@0.2.17, predicates@2.1.5, predicates-core@1.0.6, predicates-tree@1.0.9, prettyplease@0.2.15, proc-macro-crate@1.3.1, proc-macro-error@1.0.4, proc-macro-error-attr@1.0.4, proc-macro2@0.4.30, proc-macro2@1.0.68, procfs@0.14.2, prometheus@0.13.3, prost@0.12.1, prost-build@0.12.1, prost-derive@0.12.1, prost-types@0.12.1, quote@0.6.13, quote@1.0.33, rand@0.8.5, rand_chacha@0.3.1, rand_core@0.6.4, rand_distr@0.4.3, rand_xoshiro@0.6.0, rayon@1.8.0, rayon-core@1.12.0, rcgen@0.11.3, regex@1.9.6, regex-automata@0.3.9, regex-syntax@0.7.5, rocksdb@0.21.0, ron@0.7.1, rustc-demangle@0.1.23, rustc-hash@1.1.0, rustc_version@0.4.0, rusticata-macros@4.1.0, rustix@0.36.15, rustix@0.38.17, rustls@0.21.7, rustls-native-certs@0.6.3, rustls-pemfile@1.0.3, rustversion@1.0.14, ryu@1.0.15, schnellru@0.2.1, scopeguard@1.2.0, sct@0.7.0, security-framework@2.9.2, security-framework-sys@2.9.1, self_cell@1.0.1, semver@1.0.19, send_wrapper@0.4.0, serde@1.0.188, serde_derive@1.0.188, serde_json@1.0.107, serde_qs@0.12.0, serde_with@3.3.0, serde_with_macros@3.3.0, serde_yaml@0.9.25, sha-1@0.9.8, sha2@0.10.6, sha2@0.9.9, sha3@0.10.8, shared-buffer@0.1.3, shell-words@1.1.0, shlex@1.2.0, signal-hook-registry@1.4.1, signature@2.1.0, simdutf8@0.1.4, smallvec@1.11.1, socket2@0.4.9, socket2@0.5.4, soketto@0.7.1, stable_deref_trait@1.2.0, stream_limiter@3.2.0, syn@0.15.44, syn@1.0.109, syn@2.0.38, sync_wrapper@0.1.2, tempfile@3.8.0, thiserror@1.0.49, thiserror-impl@1.0.49, thread-id@4.2.0, thread_local@1.1.7, time@0.3.29, time-core@0.1.2, time-macros@0.2.15, tinyvec@1.6.0, tinyvec_macros@0.1.1, tokio-io-timeout@1.2.0, tokio-rustls@0.24.1, toml@0.5.11, toml_datetime@0.6.3, toml_edit@0.19.15, toml_edit@0.20.2, typenum@1.17.0, ucd-trie@0.1.6, unicode-bidi@0.3.13, unicode-ident@1.0.12, unicode-normalization@0.1.22, unicode-segmentation@1.10.1, unicode-width@0.1.11, unicode-xid@0.1.0, unicode-xid@0.2.4, universal-hash@0.5.1, url@2.4.1, utf8parse@0.2.1, vcpkg@0.2.15, version_check@0.9.4, wasi@0.11.0+wasi-snapshot-preview1, wasm-bindgen@0.2.87, wasm-bindgen-backend@0.2.87, wasm-bindgen-downcast@0.1.1, wasm-bindgen-downcast-macros@0.1.1, wasm-bindgen-futures@0.4.37, wasm-bindgen-macro@0.2.87, wasm-bindgen-macro-support@0.2.87, wasm-bindgen-shared@0.2.87, web-sys@0.3.64, winapi@0.3.9, winapi-i686-pc-windows-gnu@0.4.0, winapi-x86_64-pc-windows-gnu@0.4.0, windows@0.48.0, windows-sys@0.33.0, windows-sys@0.45.0, windows-sys@0.48.0, windows-targets@0.42.2, windows-targets@0.48.5, windows_aarch64_gnullvm@0.42.2, windows_aarch64_gnullvm@0.48.5, windows_aarch64_msvc@0.33.0, windows_aarch64_msvc@0.42.2, windows_aarch64_msvc@0.48.5, windows_i686_gnu@0.33.0, windows_i686_gnu@0.42.2, windows_i686_gnu@0.48.5, windows_i686_msvc@0.33.0, windows_i686_msvc@0.42.2, windows_i686_msvc@0.48.5, windows_x86_64_gnu@0.33.0, windows_x86_64_gnu@0.42.2, windows_x86_64_gnu@0.48.5, windows_x86_64_gnullvm@0.42.2, windows_x86_64_gnullvm@0.48.5, windows_x86_64_msvc@0.33.0, windows_x86_64_msvc@0.42.2, windows_x86_64_msvc@0.48.5, x509-parser@0.15.1, yaml-rust@0.4.5, yasna@0.5.2, zeroize@1.6.0, zeroize_derive@1.4.2, zstd-sys@2.0.8+zstd.1.5.5
Apache-2.0 WITH LLVM-exception (22): cranelift-bforest@0.91.1, cranelift-codegen@0.91.1, cranelift-codegen-meta@0.91.1, cranelift-codegen-shared@0.91.1, cranelift-egraph@0.91.1, cranelift-entity@0.91.1, cranelift-frontend@0.91.1, cranelift-isle@0.91.1, io-lifetimes@1.0.11, linux-raw-sys@0.1.4, linux-raw-sys@0.4.8, regalloc2@0.5.1, rustix@0.36.15, rustix@0.38.17, target-lexicon@0.12.11, wasi@0.11.0+wasi-snapshot-preview1, wasm-encoder@0.33.2, wasmer-types@4.2.0, wasmer-vm@4.2.0, wasmparser@0.95.0, wast@66.0.0, wat@1.0.75
BSD-1-Clause (1): fiat-crypto@0.2.1
BSD-2-Clause (4): arrayref@0.3.7, mach@0.3.2, octets@0.2.0, quiche@0.16.0
BSD-3-Clause (10): bindgen@0.65.1, curve25519-dalek@4.1.1, ed25519-dalek@2.0.0, librocksdb-sys@0.11.0+8.1.1, matchit@0.7.3, num_enum@0.6.1, num_enum@0.7.0, num_enum_derive@0.6.1, num_enum_derive@0.7.0, subtle@2.5.0
BSL-1.0 (4): clipboard-win@4.5.0, error-code@2.3.1, ryu@1.0.15, str-buf@1.0.6
CC0-1.0 (4): blake3@1.4.1, constant_time_eq@0.3.0, more-asserts@0.2.2, more-asserts@0.3.1
ISC (10): hyper-rustls@0.24.1, json5@0.4.1, libloading@0.7.4, rustls@0.21.7, rustls-native-certs@0.6.3, rustls-pemfile@1.0.3, rustls-webpki@0.100.3, rustls-webpki@0.101.6, sct@0.7.0, untrusted@0.7.1
MIT (474): addr2line@0.21.0, adler@1.0.2, aead@0.5.2, aes@0.8.3, aes-gcm@0.10.3, ahash@0.7.6, ahash@0.8.3, aho-corasick@1.1.1, android-tzdata@0.1.1, android_system_properties@0.1.5, anstream@0.6.4, anstyle@1.0.4, anstyle-parse@0.2.2, anstyle-query@1.0.0, anstyle-wincon@3.0.1, anyhow@1.0.75, arrayvec@0.7.4, asn1-rs@0.5.2, asn1-rs-derive@0.4.0, asn1-rs-impl@0.1.0, async-lock@2.8.0, async-stream@0.3.5, async-stream-impl@0.3.5, async-trait@0.1.73, autocfg@1.1.0, axum@0.6.20, axum-core@0.3.4, backtrace@0.3.69, base64@0.13.1, base64@0.21.4, base64ct@1.6.0, beef@0.5.2, bitflags@1.3.2, bitflags@2.4.0, bitvec@1.0.1, block-buffer@0.10.4, block-buffer@0.9.0, bs58@0.5.0, bumpalo@3.14.0, bytecheck@0.6.11, bytecheck_derive@0.6.11, byteorder@1.5.0, bytes@1.5.0, bzip2-sys@0.1.11+1.0.8, case@1.0.0, cc@1.0.83, cexpr@0.6.0, cfg-if@1.0.0, chrono@0.4.31, cipher@0.4.4, clap@4.4.6, clap_builder@4.4.6, clap_derive@4.4.2, clap_lex@0.5.1, cmake@0.1.50, colorchoice@1.0.0, config@0.13.3, console@0.15.7, core-foundation@0.9.3, core-foundation-sys@0.8.4, corosensei@0.1.4, cpufeatures@0.2.9, crc32fast@1.3.2, crossbeam@0.8.2, crossbeam-channel@0.5.8, crossbeam-deque@0.8.3, crossbeam-epoch@0.9.15, crossbeam-queue@0.3.8, crossbeam-utils@0.8.16, crunchy@0.2.2, crypto-common@0.1.6, crypto-mac@0.8.0, ctr@0.9.2, ctrlc@3.4.1, curve25519-dalek-derive@0.1.0, darling@0.14.4, darling@0.20.3, darling_core@0.14.4, darling_core@0.20.3, darling_macro@0.14.4, darling_macro@0.20.3, dashmap@5.5.3, data-encoding@2.4.0, der-parser@8.2.0, deranged@0.3.8, derivative@2.2.0, dialoguer@0.10.4, difflib@0.4.0, digest@0.10.7, digest@0.9.0, directories@5.0.1, dirs-sys@0.4.1, displaydoc@0.2.4, dlv-list@0.3.0, downcast@0.11.0, ed25519@2.2.2, either@1.9.0, encode_unicode@0.3.6, endian-type@0.1.2, enum_delegate@0.2.0, enum_delegate_lib@0.2.0, enumset@1.1.2, enumset_derive@0.8.1, equivalent@1.0.1, erased-serde@0.3.31, event-listener@2.5.3, fallible-iterator@0.2.0, fastrand@2.0.1, fd-lock@3.0.13, fiat-crypto@0.2.1, fixedbitset@0.4.2, flate2@1.0.27, float-cmp@0.9.0, fnv@1.0.7, form_urlencoded@1.2.0, function_name@0.3.0, function_name-proc-macro@0.3.0, funty@2.0.0, futures@0.3.28, futures-channel@0.3.28, futures-core@0.3.28, futures-executor@0.3.28, futures-io@0.3.28, futures-macro@0.3.28, futures-sink@0.3.28, futures-task@0.3.28, futures-timer@3.0.2, futures-util@0.3.28, fxhash@0.2.1, generic-array@0.14.7, getrandom@0.2.10, ghash@0.5.0, gimli@0.26.2, gimli@0.28.0, glob@0.3.1, gloo-net@0.4.0, gloo-timers@0.2.6, gloo-utils@0.2.0, h2@0.3.21, hashbrown@0.11.2, hashbrown@0.12.3, hashbrown@0.13.2, hashbrown@0.14.1, hdrhistogram@7.5.2, heck@0.4.1, hermit-abi@0.3.3, hex@0.4.3, hmac@0.12.1, hmac@0.8.1, home@0.5.5, http@0.2.9, http-body@0.4.5, http-range-header@0.3.1, httparse@1.8.0, httpdate@1.0.3, humantime@2.1.0, hyper@0.14.27, hyper-rustls@0.24.1, hyper-timeout@0.4.1, iana-time-zone@0.1.57, iana-time-zone-haiku@0.1.2, ident_case@1.0.1, idna@0.4.0, indexmap@1.9.3, indexmap@2.0.2, inout@0.1.3, io-lifetimes@1.0.11, ip_rfc@0.1.0, is-terminal@0.4.9, itertools@0.10.5, itertools@0.11.0, itoa@1.0.9, jobserver@0.1.26, js-sys@0.3.64, jsonrpsee@0.20.1, jsonrpsee-client-transport@0.20.1, jsonrpsee-core@0.20.1, jsonrpsee-http-client@0.20.1, jsonrpsee-proc-macros@0.20.1, jsonrpsee-server@0.20.1, jsonrpsee-types@0.20.1, jsonrpsee-wasm-client@0.20.1, jsonrpsee-ws-client@0.20.1, keccak@0.1.4, lazy_static@1.4.0, lazycell@1.3.0, leb128@0.2.5, libc@0.2.148, libm@0.2.8, librocksdb-sys@0.11.0+8.1.1, libz-sys@1.1.12, linked-hash-map@0.5.6, linux-raw-sys@0.1.4, linux-raw-sys@0.4.8, lock_api@0.4.10, log@0.4.20, loupe@0.1.3, loupe-derive@0.1.3, lz4-sys@1.9.4, machine@0.3.0, matchit@0.7.3, memchr@2.6.4, memmap2@0.5.10, memmap2@0.6.2, memoffset@0.8.0, memoffset@0.9.0, merlin@3.0.0, mime@0.3.17, minimal-lexical@0.2.1, miniz_oxide@0.7.1, mio@0.8.8, mockall@0.11.4, mockall_derive@0.11.4, more-asserts@0.3.1, multimap@0.8.3, nibble_vec@0.1.0, nix@0.26.4, nix@0.27.1, nom@7.1.3, nu-ansi-term@0.46.0, num@0.4.1, num-bigint@0.4.4, num-complex@0.4.4, num-integer@0.1.45, num-iter@0.1.43, num-rational@0.4.1, num-traits@0.2.16, num_cpus@1.16.0, num_enum@0.6.1, num_enum@0.7.0, num_enum_derive@0.6.1, num_enum_derive@0.7.0, object@0.28.4, object@0.32.1, oid-registry@0.6.1, once_cell@1.18.0, opaque-debug@0.3.0, openssl-probe@0.1.5, ordered-multimap@0.4.3, overload@0.1.1, parking_lot@0.12.1, parking_lot_core@0.9.8, password-hash@0.5.0, pathdiff@0.2.1, pbkdf2@0.12.2, peeking_take_while@0.1.2, pem@3.0.2, percent-encoding@2.3.0, pest@2.7.4, pest_derive@2.7.4, pest_generator@2.7.4, pest_meta@2.7.4, petgraph@0.6.4, pin-project@1.1.3, pin-project-internal@1.1.3, pin-project-lite@0.2.13, pin-utils@0.1.0, pkg-config@0.3.27, platforms@3.1.2, polyval@0.6.1, ppv-lite86@0.2.17, predicates@2.1.5, predicates-core@1.0.6, predicates-tree@1.0.9, prettyplease@0.2.15, proc-macro-crate@1.3.1, proc-macro-error@1.0.4, proc-macro-error-attr@1.0.4, proc-macro2@0.4.30, proc-macro2@1.0.68, procfs@0.14.2, protobuf@2.28.0, ptr_meta@0.1.4, ptr_meta_derive@0.1.4, quote@0.6.13, quote@1.0.33, radium@0.7.0, radix_trie@0.2.1, rand@0.8.5, rand_chacha@0.3.1, rand_core@0.6.4, rand_distr@0.4.3, rand_xoshiro@0.6.0, rayon@1.8.0, rayon-core@1.12.0, rcgen@0.11.3, redox_syscall@0.2.16, redox_syscall@0.3.5, redox_users@0.4.3, regex@1.9.6, regex-automata@0.3.9, regex-syntax@0.7.5, region@3.0.0, rend@0.4.1, rkyv@0.7.42, rkyv_derive@0.7.42, ron@0.7.1, route-recognizer@0.3.1, rust-ini@0.18.0, rust_decimal@1.32.0, rustc-demangle@0.1.23, rustc-hash@1.1.0, rustc_version@0.4.0, rusticata-macros@4.1.0, rustix@0.36.15, rustix@0.38.17, rustls@0.21.7, rustls-native-certs@0.6.3, rustls-pemfile@1.0.3, rustversion@1.0.14, rustyline@12.0.0, rustyline-derive@0.9.0, same-file@1.0.6, schannel@0.1.22, schnellru@0.2.1, scopeguard@1.2.0, sct@0.7.0, seahash@4.1.0, security-framework@2.9.2, security-framework-sys@2.9.1, semver@1.0.19, send_wrapper@0.4.0, serde@1.0.188, serde-wasm-bindgen@0.4.5, serde_derive@1.0.188, serde_json@1.0.107, serde_qs@0.12.0, serde_with@3.3.0, serde_with_macros@3.3.0, serde_yaml@0.9.25, serial_test@2.0.0, serial_test_derive@2.0.0, sha-1@0.9.8, sha2@0.10.6, sha2@0.9.9, sha3@0.10.8, sharded-slab@0.1.7, shared-buffer@0.1.3, shell-words@1.1.0, shlex@1.2.0, signal-hook-registry@1.4.1, signature@2.1.0, simdutf8@0.1.4, slab@0.4.9, slice-group-by@0.3.1, smallvec@1.11.1, socket2@0.4.9, socket2@0.5.4, soketto@0.7.1, spin@0.5.2, stable_deref_trait@1.2.0, stream_limiter@3.2.0, strsim@0.10.0, strum@0.25.0, strum_macros@0.25.2, substruct@0.1.0, syn@0.15.44, syn@1.0.109, syn@2.0.38, synstructure@0.12.6, tap@1.0.1, tempfile@3.8.0, termtree@0.4.1, thiserror@1.0.49, thiserror-impl@1.0.49, thread-id@4.2.0, thread_local@1.1.7, time@0.3.29, time-core@0.1.2, time-macros@0.2.15, tinyvec@1.6.0, tinyvec_macros@0.1.1, tokio@1.32.0, tokio-io-timeout@1.2.0, tokio-macros@2.1.0, tokio-rustls@0.24.1, tokio-stream@0.1.14, tokio-util@0.7.9, toml@0.5.11, toml_datetime@0.6.3, toml_edit@0.19.15, toml_edit@0.20.2, tonic@0.10.2, tonic-build@0.10.2, tonic-health@0.10.2, tonic-reflection@0.10.2, tonic-web@0.10.2, tower@0.4.13, tower-http@0.4.4, tower-layer@0.3.2, tower-service@0.3.2, tracing@0.1.37, tracing-attributes@0.1.26, tracing-core@0.1.31, tracing-log@0.1.3, tracing-subscriber@0.3.17, try-lock@0.2.4, typenum@1.17.0, ucd-trie@0.1.6, unicode-bidi@0.3.13, unicode-ident@1.0.12, unicode-normalization@0.1.22, unicode-segmentation@1.10.1, unicode-width@0.1.11, unicode-xid@0.1.0, unicode-xid@0.2.4, universal-hash@0.5.1, unsafe-libyaml@0.2.9, unsigned-varint@0.7.1, url@2.4.1, utf8parse@0.2.1, valuable@0.1.0, variant_count@1.1.0, vcpkg@0.2.15, version_check@0.9.4, walkdir@2.4.0, want@0.3.1, wasi@0.11.0+wasi-snapshot-preview1, wasm-bindgen@0.2.87, wasm-bindgen-backend@0.2.87, wasm-bindgen-downcast@0.1.1, wasm-bindgen-downcast-macros@0.1.1, wasm-bindgen-futures@0.4.37, wasm-bindgen-macro@0.2.87, wasm-bindgen-macro-support@0.2.87, wasm-bindgen-shared@0.2.87, wasmer@4.2.0, wasmer-compiler@4.2.0, wasmer-compiler-cranelift@4.2.0, wasmer-compiler-singlepass@4.2.0, wasmer-derive@4.2.0, wasmer-middlewares@4.2.0, wasmer-object@4.2.0, wasmer-types@4.2.0, wasmer-vm@4.2.0, web-sys@0.3.64, which@4.4.2, winapi@0.3.9, winapi-i686-pc-windows-gnu@0.4.0, winapi-util@0.1.6, winapi-x86_64-pc-windows-gnu@0.4.0, windows@0.48.0, windows-sys@0.33.0, windows-sys@0.45.0, windows-sys@0.48.0, windows-targets@0.42.2, windows-targets@0.48.5, windows_aarch64_gnullvm@0.42.2, windows_aarch64_gnullvm@0.48.5, windows_aarch64_msvc@0.33.0, windows_aarch64_msvc@0.42.2, windows_aarch64_msvc@0.48.5, windows_i686_gnu@0.33.0, windows_i686_gnu@0.42.2, windows_i686_gnu@0.48.5, windows_i686_msvc@0.33.0, windows_i686_msvc@0.42.2, windows_i686_msvc@0.48.5, windows_x86_64_gnu@0.33.0, windows_x86_64_gnu@0.42.2, windows_x86_64_gnu@0.48.5, windows_x86_64_gnullvm@0.42.2, windows_x86_64_gnullvm@0.48.5, windows_x86_64_msvc@0.33.0, windows_x86_64_msvc@0.42.2, windows_x86_64_msvc@0.48.5, winnow@0.5.16, wyz@0.5.1, x509-parser@0.15.1, yaml-rust@0.4.5, yasna@0.5.2, zeroize@1.6.0, zeroize_derive@1.4.2, zstd-sys@2.0.8+zstd.1.5.5
MIT-0 (1): constant_time_eq@0.3.0
MPL-2.0 (5): dynasm@1.2.3, dynasmrt@1.2.3, option-ext@0.2.0, webpki-roots@0.23.1, webpki-roots@0.25.2
Unicode-DFS-2016 (1): unicode-ident@1.0.12
Unlicense (7): aho-corasick@1.1.1, byteorder@1.5.0, memchr@2.6.4, more-asserts@0.3.1, same-file@1.0.6, walkdir@2.4.0, winapi-util@0.1.6
Zlib (3): miniz_oxide@0.7.1, tinyvec@1.6.0, tinyvec_macros@0.1.1
Unlicensed (46): massa-client@0.26.1, massa-node@0.26.1, massa-proto-rs@0.1.0, massa-sc-runtime@0.10.0, massa_api@0.26.1, massa_api_exports@0.26.1, massa_async_pool@0.26.1, massa_bootstrap@0.26.1, massa_channel@0.26.1, massa_cipher@0.26.1, massa_consensus_exports@0.26.1, massa_consensus_worker@0.26.1, massa_db_exports@0.26.1, massa_db_worker@0.26.1, massa_executed_ops@0.26.1, massa_execution_exports@0.26.1, massa_execution_worker@0.26.1, massa_factory_exports@0.26.1, massa_factory_worker@0.26.1, massa_final_state@0.26.1, massa_grpc@0.26.1, massa_hash@0.26.1, massa_ledger_exports@0.26.1, massa_ledger_worker@0.26.1, massa_logging@0.26.1, massa_metrics@0.26.1, massa_models@0.26.1, massa_module_cache@0.26.1, massa_pool_exports@0.26.1, massa_pool_worker@0.26.1, massa_pos_exports@0.26.1, massa_pos_worker@0.26.1, massa_protocol_exports@0.26.1, massa_protocol_worker@0.26.1, massa_sdk@0.26.1, massa_serialization@0.26.1, massa_signature@0.26.1, massa_storage@0.26.1, massa_time@0.26.1, massa_versioning@0.26.1, massa_wallet@0.26.1, massa_xtask@0.26.1, peernet@0.1.0, ring@0.16.20, transition@0.1.0, transition-macros@0.1.0
aoudiamoncef commented 1 year ago

cc @Leo-Besancon

AurelienFT commented 1 year ago

FYI, For cargo audit there is already an issue that list all the actions to be (or already) taken to fix them : https://github.com/massalabs/massa/issues/4396

aoudiamoncef commented 1 year ago

@Leo-Besancon @AurelienFT , I added a small licence check for all our deps. We should analyse It, because licensing is hard and may be use a BOT to handle this is a good idea.

Leo-Besancon commented 1 year ago

Hi, thanks for the analysis! Here's what I gathered:

cargo-auditable

Please see if we can update / change the dependencies listed. (for example, the .5 was replaced by .6 here: https://crates.io/crates/rustls-webpki/versions)

cargo-crev

I think nothing was verified here, see the output.

cargo-hack:

We can open an issue on that, but it's more about cleaning than security