Deps.rs

fvm 4.5.3

[![dependency status](https://deps.rs/crate/fvm/4.5.3/status.svg)](https://deps.rs/crate/fvm/4.5.3)

This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate fvm

Dependencies

(29 total, 9 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 ambassador^0.4.00.5.0out of date
 anyhow^1.0.711.0.102up to date
 arbitrary^1.3.01.4.2up to date
 cid^0.11.10.11.1up to date
 derive_more^1.0.02.1.1out of date
 filecoin-proofs-api^1819.1.0out of date
 fvm-wasm-instrument^0.4.00.4.0up to date
 fvm_ipld_amt^0.7.30.7.5up to date
 fvm_ipld_blockstore^0.3.10.3.1up to date
 fvm_ipld_encoding^0.5.10.5.3up to date
 fvm_ipld_hamt^0.10.20.10.4up to date
 fvm_shared~4.5.34.7.5out of date
 lazy_static^1.4.01.5.0up to date
 log^0.4.190.4.29up to date
 minstant^0.1.30.1.7up to date
 multihash-codetable^0.1.40.1.4up to date
 multihash-derive^0.9.10.9.1up to date
 num-traits^0.2.140.2.19up to date
 quickcheck^1.0.01.1.0up to date
 rand^0.8.50.10.0out of date
 rayon^11.11.0up to date
 replace_with^0.1.70.1.8up to date
 serde^1.0.1641.0.228up to date
 serde_tuple^0.5.01.1.3out of date
 static_assertions^1.1.01.1.0up to date
 thiserror^1.0.402.0.18out of date
 wasmtime ⚠️^25.0.342.0.1out of date
 wasmtime-environ^25.0.242.0.1out of date
 yastl^0.1.20.1.2up to date

Dev dependencies

(2 total, all up-to-date)

CrateRequiredLatestStatus
 coverage-helper^0.2.00.2.4up to date
 pretty_assertions^1.3.01.4.1up to date

Security Vulnerabilities

wasmtime: Host panic with `fd_renumber` WASIp1 function

RUSTSEC-2025-0046

This is an entry in the RustSec database for the Wasmtime security advisory located at https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-fm79-3f68-h2fc. For more information see the GitHub-hosted security advisory.

wasmtime: Unsound API access to a WebAssembly shared linear memory

RUSTSEC-2025-0118

This is an entry in the RustSec database for the Wasmtime security advisory located at https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-hc7m-r6v8-hg9q For more information see the GitHub-hosted security advisory.

wasmtime: Guest-controlled resource exhaustion in WASI implementations

RUSTSEC-2026-0020

This is an entry in the RustSec database for the Wasmtime security advisory located at https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-852m-cvvp-9p4w For more information see the GitHub-hosted security advisory.

wasmtime: Panic adding excessive fields to a `wasi:http/types.fields` instance

RUSTSEC-2026-0021

This is an entry in the RustSec database for the Wasmtime security advisory located at https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-243v-98vx-264h For more information see the GitHub-hosted security advisory.