This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.
i-slint-core(43 total, 1 outdated, 1 possibly insecure)
| Crate | Required | Latest | Status |
|---|---|---|---|
| auto_enums | ^0.8.0 | 0.8.7 | up to date |
| bitflags | ^2.4.2 | 2.9.0 | up to date |
| bytemuck | ^1.13.1 | 1.22.0 | up to date |
| cfg-if | ^1 | 1.0.0 | up to date |
| chrono ⚠️ | ^0.4 | 0.4.40 | maybe insecure |
| clru | ^0.6.0 | 0.6.2 | up to date |
| const-field-offset | ^0.1.5 | 0.1.5 | up to date |
| derive_more | ^1.0.0 | 2.0.1 | out of date |
| euclid | ^0.22.1 | 0.22.11 | up to date |
| fontdb | ^0.23.0 | 0.23.0 | up to date |
| fontdue | ^0.9.0 | 0.9.3 | up to date |
| gettext-rs | ^0.7.1 | 0.7.2 | up to date |
| i-slint-common | =1.10.0 | 1.10.0 | up to date |
| i-slint-core-macros | =1.10.0 | 1.10.0 | up to date |
| image | ^0.25 | 0.25.5 | up to date |
| integer-sqrt | ^0.1.5 | 0.1.5 | up to date |
| lyon_algorithms | ^1.0 | 1.0.5 | up to date |
| lyon_extra | ^1.0.1 | 1.0.3 | up to date |
| lyon_geom | ^1.0 | 1.0.6 | up to date |
| lyon_path | ^1.0 | 1.0.7 | up to date |
| num-traits | ^0.2 | 0.2.19 | up to date |
| once_cell | ^1.5 | 1.21.1 | up to date |
| pin-project | ^1 | 1.1.10 | up to date |
| pin-weak | ^1.1 | 1.1.0 | up to date |
| portable-atomic | ^1 | 1.11.0 | up to date |
| raw-window-handle | ^0.6 | 0.6.2 | up to date |
| resvg | ^0.45.0 | 0.45.0 | up to date |
| rgb | ^0.8.27 | 0.8.50 | up to date |
| rustybuzz | ^0.20.0 | 0.20.1 | up to date |
| scoped-tls-hkt | ^0.1 | 0.1.5 | up to date |
| scopeguard | ^1.1.0 | 1.2.0 | up to date |
| serde | ^1.0.163 | 1.0.219 | up to date |
| slab | ^0.4.3 | 0.4.9 | up to date |
| static_assertions | ^1.1 | 1.1.0 | up to date |
| strum | ^0.27.1 | 0.27.1 | up to date |
| sys-locale | ^0.3.2 | 0.3.2 | up to date |
| unicode-linebreak | ^0.1.5 | 0.1.5 | up to date |
| unicode-script | ^0.5.7 | 0.5.7 | up to date |
| unicode-segmentation | ^1.12.0 | 1.12.0 | up to date |
| vtable | ^0.2 | 0.2.1 | up to date |
| wasm-bindgen | ^0.2 | 0.2.100 | up to date |
| web-sys | ^0.3.72 | 0.3.77 | up to date |
| web-time | ^1.0 | 1.1.0 | up to date |
(8 total, all up-to-date)
| Crate | Required | Latest | Status |
|---|---|---|---|
| async-compat | ^0.2.4 | 0.2.4 | up to date |
| fontdb | ^0.23.0 | 0.23.0 | up to date |
| rustybuzz | ^0.20.0 | 0.20.1 | up to date |
| serde_json | ^1.0.96 | 1.0.140 | up to date |
| tempfile | ^3.12.0 | 3.19.0 | up to date |
| tiny-skia | ^0.11.0 | 0.11.4 | up to date |
| tokio | ^1.35 | 1.44.1 | up to date |
| ttf-parser | ^0.25 | 0.25.1 | up to date |
chrono: Potential segfault in `localtime_r` invocationsUnix-like operating systems may segfault due to dereferencing a dangling pointer in specific circumstances. This requires an environment variable to be set in a different thread than the affected functions. This may occur without the user's knowledge, notably in a third-party library.
No workarounds are known.