Deps.rs

deno_npm_installer 0.17.0

[![dependency status](https://deps.rs/crate/deno_npm_installer/0.17.0/status.svg)](https://deps.rs/crate/deno_npm_installer/0.17.0)

This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate deno_npm_installer

Dependencies

(35 total, 4 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 anyhow^1.0.571.0.100up to date
 async-once-cell^0.5.40.5.4up to date
 async-trait^0.1.730.1.89up to date
 bincode=1.3.32.0.1out of date
 boxed_error^0.2.30.2.3up to date
 capacity_builder^0.5.00.5.0up to date
 chrono ⚠️^0.40.4.42maybe insecure
 deno_config^0.72.00.72.0up to date
 deno_error=0.7.10.7.3out of date
 deno_graph=0.105.00.105.0up to date
 deno_lockfile=0.32.20.32.2up to date
 deno_npm=0.42.20.42.2up to date
 deno_npm_cache^0.41.00.41.0up to date
 deno_package_json^0.24.00.24.0up to date
 deno_path_util=0.6.40.6.4up to date
 deno_resolver^0.53.00.53.0up to date
 deno_semver=0.9.10.9.1up to date
 deno_terminal=0.2.30.2.3up to date
 deno_unsync^0.4.40.4.4up to date
 dyn-clone^11.0.20up to date
 futures^0.3.310.3.31up to date
 lazy-regex^33.4.2up to date
 log^0.4.280.4.29up to date
 once_cell^1.17.11.21.3up to date
 parking_lot^0.12.00.12.5up to date
 pathdiff^0.2.10.2.3up to date
 rustc-hash^2.1.12.1.1up to date
 serde^1.0.1491.0.228up to date
 serde_json^1.0.851.0.145up to date
 sys_traits=0.1.170.1.21out of date
 thiserror^2.0.122.0.17up to date
 tokio^1.47.11.48.0up to date
 twox-hash=2.1.02.1.2out of date
 url^2.52.5.7up to date
 winapi=0.3.90.3.9up to date

Dev dependencies

(1 total, 1 outdated)

CrateRequiredLatestStatus
 sys_traits=0.1.170.1.21out of date

Security Vulnerabilities

chrono: Potential segfault in `localtime_r` invocations

RUSTSEC-2020-0159

Impact

Unix-like operating systems may segfault due to dereferencing a dangling pointer in specific circumstances. This requires an environment variable to be set in a different thread than the affected functions. This may occur without the user's knowledge, notably in a third-party library.

Workarounds

No workarounds are known.

References