Deps.rs

hum 0.4.0

[![dependency status](https://deps.rs/crate/hum/0.4.0/status.svg)](https://deps.rs/crate/hum/0.4.0)

This project contains known security vulnerabilities. Find detailed information at the bottom.

Crate hum

Dependencies

(3 total, 2 outdated, 1 insecure)

CrateRequiredLatestStatus
 clap^2.32.04.5.40out of date
 hound^3.4.03.5.1up to date
 portaudio ⚠️^0.7.00.8.0insecure

Security Vulnerabilities

portaudio: HTTP download and execution allows MitM RCE

RUSTSEC-2016-0003

The build script in the portaudio crate will attempt to download via HTTP the portaudio source and build it.

A Mallory in the middle can intercept the download with their own archive and get RCE.