This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate grpcio-compiler

Dependencies

(6 total, 5 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 derive-new^0.50.7.0out of date
 prost^0.110.13.3out of date
 prost-build^0.110.13.3out of date
 prost-types^0.110.13.3out of date
 protobuf ⚠️^23.7.1out of date
 tempfile^3.03.14.0up to date

Security Vulnerabilities

protobuf: Out of Memory in stream::read_raw_bytes_into()

RUSTSEC-2019-0003

Affected versions of this crate called Vec::reserve() on user-supplied input.

This allows an attacker to cause an Out of Memory condition while calling the vulnerable method on untrusted data.