This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate hkdf

Dependencies

(3 total, 3 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 digest^0.70.10.7out of date
 generic-array ⚠️^0.91.0.0out of date
 hmac^0.60.12.1out of date

Dev dependencies

(5 total, 3 outdated)

CrateRequiredLatestStatus
 bencher^0.10.1.5up to date
 crypto-tests0.5.*0.5.5up to date
 hex0.3.*0.4.3out of date
 sha-10.7.*0.10.1out of date
 sha20.7.*0.10.8out of date

Security Vulnerabilities

generic-array: arr! macro erases lifetimes

RUSTSEC-2020-0146

Affected versions of this crate allowed unsoundly extending lifetimes using arr! macro. This may result in a variety of memory corruption scenarios, most likely use-after-free.