actix-web-lab 0.19.1

Crate actix-web-lab

Dependencies

(32 total, 3 outdated, 1 possibly insecure)

Crate	Required	Latest	Status
actix-files	`^0.6`	`0.6.5`	up to date
actix-http	`^3`	`3.6.0`	up to date
actix-router	`^0.5`	`0.5.2`	up to date
actix-service	`^2`	`2.0.2`	up to date
actix-utils	`^3`	`3.0.1`	up to date
actix-web	`^4.3`	`4.5.1`	up to date
actix-web-lab-derive	`=0.19.0`	`0.20.0`	out of date
ahash	`^0.8`	`0.8.11`	up to date
arc-swap	`^1.1`	`1.7.1`	up to date
async-trait	`^0.1`	`0.1.80`	up to date
bytes	`^1`	`1.6.0`	up to date
bytestring	`^1`	`1.3.1`	up to date
csv	`^1.1`	`1.3.0`	up to date
derive_more	`^0.99.8`	`0.99.17`	up to date
futures-core	`^0.3.17`	`0.3.30`	up to date
futures-util	`^0.3.17`	`0.3.30`	up to date
http	`^0.2.7`	`1.1.0`	out of date
impl-more	`^0.1.3`	`0.1.6`	up to date
itertools	`^0.10`	`0.12.1`	out of date
local-channel	`^0.1`	`0.1.5`	up to date
mediatype	`^0.19`	`0.19.18`	up to date
mime	`^0.3`	`0.3.17`	up to date
once_cell	`^1.8`	`1.19.0`	up to date
pin-project-lite	`^0.2.7`	`0.2.14`	up to date
regex	`^1.5.5`	`1.10.4`	up to date
rmp-serde	`^1`	`1.2.0`	up to date
serde	`^1`	`1.0.198`	up to date
serde_cbor_2	`^0.12.0-dev`	N/A	up to date
serde_html_form	`^0.2`	`0.2.6`	up to date
serde_json	`^1`	`1.0.116`	up to date
tokio ⚠️	`^1.18.5`	`1.37.0`	maybe insecure
tracing	`^0.1.30`	`0.1.40`	up to date

Crate

Required

Latest

Status

actix-files

^0.6

0.6.5

up to date

actix-http

^3

3.6.0

up to date

actix-router

^0.5

0.5.2

up to date

actix-service

^2

2.0.2

up to date

actix-utils

^3

3.0.1

up to date

actix-web

^4.3

4.5.1

up to date

actix-web-lab-derive

=0.19.0

0.20.0

out of date

ahash

^0.8

0.8.11

up to date

arc-swap

^1.1

1.7.1

up to date

async-trait

^0.1

0.1.80

up to date

bytes

^1

1.6.0

up to date

bytestring

^1

1.3.1

up to date

csv

^1.1

1.3.0

up to date

derive_more

^0.99.8

0.99.17

up to date

futures-core

^0.3.17

0.3.30

up to date

futures-util

^0.3.17

0.3.30

up to date

http

^0.2.7

1.1.0

out of date

impl-more

^0.1.3

0.1.6

up to date

itertools

^0.10

0.12.1

out of date

local-channel

^0.1

0.1.5

up to date

mediatype

^0.19

0.19.18

up to date

mime

^0.3

0.3.17

up to date

once_cell

^1.8

1.19.0

up to date

pin-project-lite

^0.2.7

0.2.14

up to date

regex

^1.5.5

1.10.4

up to date

rmp-serde

^1

1.2.0

up to date

serde

^1

1.0.198

up to date

serde_cbor_2

^0.12.0-dev

N/A

up to date

serde_html_form

^0.2

0.2.6

up to date

serde_json

^1

1.0.116

up to date

tokio ⚠️

^1.18.5

1.37.0

maybe insecure

tracing

^0.1.30

0.1.40

up to date

Security Vulnerabilities

`tokio`: reject_remote_clients Configuration corruption

RUSTSEC-2023-0001

On Windows, configuring a named pipe server with pipe_mode will force ServerOptions::reject_remote_clients as false.

This drops any intended explicit configuration for the reject_remote_clients that may have been set as true previously.

The default setting of reject_remote_clients is normally true meaning the default is also overridden as false.

Workarounds

Ensure that pipe_mode is set first after initializing a ServerOptions. For example:

let mut opts = ServerOptions::new();
opts.pipe_mode(PipeMode::Message);
opts.reject_remote_clients(true);

Deps.rs

actix-web-lab 0.19.1

Crate `actix-web-lab`

Dependencies

Security Vulnerabilities

`tokio`: reject_remote_clients Configuration corruption

Workarounds

actix-web-lab 0.19.1

Crate actix-web-lab

Dependencies

Security Vulnerabilities

tokio: reject_remote_clients Configuration corruption

Workarounds

Crate `actix-web-lab`

`tokio`: reject_remote_clients Configuration corruption