Closed Mic92 closed 1 year ago
This drop 3 crate with known vulnerabilities from https://github.com/bennofs/nix-index/issues/200
Now we are down to:
Scanning Cargo.lock for vulnerabilities (179 crate dependencies) Crate: brotli-sys Version: 0.3.2 Title: Integer overflow in the bundled Brotli C library Date: 2021-12-20 ID: RUSTSEC-2021-0131 URL: https://rustsec.org/advisories/RUSTSEC-2021-0131 Solution: No fixed upgrade is available! Dependency tree: brotli-sys 0.3.2 └── brotli2 0.3.2 └── nix-index 0.1.3 Crate: ansi_term Version: 0.12.1 Warning: unmaintained Title: ansi_term is Unmaintained Date: 2021-08-18 ID: RUSTSEC-2021-0139 URL: https://rustsec.org/advisories/RUSTSEC-2021-0139 Dependency tree: ansi_term 0.12.1 └── nix-index 0.1.3 Crate: xml-rs Version: 0.8.4 Warning: unmaintained Title: xml-rs is Unmaintained Date: 2022-01-26 ID: RUSTSEC-2022-0048 URL: https://rustsec.org/advisories/RUSTSEC-2022-0048 Dependency tree: xml-rs 0.8.4 └── nix-index 0.1.3 error: 1 vulnerability found! warning: 2 allowed warnings found
This drop 3 crate with known vulnerabilities from https://github.com/bennofs/nix-index/issues/200
Now we are down to: