This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate fraction

Dependencies

(7 total, 3 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 byteorder^11.5.0up to date
 juniper ⚠️^0.110.16.1out of date
 lazy_static^1.11.5.0up to date
 num^0.20.4.3out of date
 postgres^0.150.19.9out of date
 serde^11.0.215up to date
 serde_derive^11.0.215up to date

Dev dependencies

(1 total, 1 outdated)

CrateRequiredLatestStatus
 criterion^0.30.5.1out of date

Security Vulnerabilities

juniper: Denial of service on deeply nested fragment requests

RUSTSEC-2022-0038

Deeply nested fragments in a GraphQL request may cause a stack overflow in the server.