This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate k8s-openapi

Dependencies

(10 total, 2 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 base64^0.200.22.1out of date
 bytes^11.8.0up to date
 chrono ⚠️^0.4.10.4.38maybe insecure
 http^0.21.1.0out of date
 percent-encoding^22.3.1up to date
 schemars^0.80.8.21up to date
 serde^11.0.215up to date
 serde-value^0.70.7.0up to date
 serde_json^11.0.132up to date
 url^22.5.3up to date

Security Vulnerabilities

chrono: Potential segfault in `localtime_r` invocations

RUSTSEC-2020-0159

Impact

Unix-like operating systems may segfault due to dereferencing a dangling pointer in specific circumstances. This requires an environment variable to be set in a different thread than the affected functions. This may occur without the user's knowledge, notably in a third-party library.

Workarounds

No workarounds are known.

References