This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.
flume(4 total, 2 outdated, 1 possibly insecure)
| Crate | Required | Latest | Status |
|---|---|---|---|
| futures-core | ^0.3.5 | 0.3.30 | up to date |
| futures-sink | ^0.3.5 | 0.3.30 | up to date |
| nanorand ⚠️ | ^0.4 | 0.7.0 | out of date |
| spinning_top | ^0.2 | 0.3.0 | out of date |
(7 total, 4 outdated)
| Crate | Required | Latest | Status |
|---|---|---|---|
| async-std | ^1.5 | 1.12.0 | up to date |
| criterion | ^0.3.1 | 0.5.1 | out of date |
| crossbeam-channel | ^0.4 | 0.5.12 | out of date |
| crossbeam-utils | ^0.7 | 0.8.19 | out of date |
| futures | ^0.3 | 0.3.30 | up to date |
| rand | ^0.7 | 0.8.5 | out of date |
| waker-fn | ^1.1.0 | 1.1.1 | up to date |
nanorand: nanorand 0.5.0 - RNGs failed to generate properly for non-64-bit numbersIn versions of nanorand prior to 0.5.1, RandomGen implementations for standard unsigned integers could
fail to properly generate numbers, due to using bit-shifting to truncate a 64-bit number, rather than just
an as conversion.
This often manifested as RNGs returning nothing but 0, including the cryptographically secure ChaCha random
number generator..