lance-datafusion 0.38.3

Crate lance-datafusion

Dependencies

(24 total, 15 outdated, 1 possibly insecure)

Crate	Required	Latest	Status
arrow	`^56.1`	`57.1.0`	out of date
arrow-array	`^56.1`	`57.1.0`	out of date
arrow-buffer	`^56.1`	`57.1.0`	out of date
arrow-ord	`^56.1`	`57.1.0`	out of date
arrow-schema	`^56.1`	`57.1.0`	out of date
arrow-select	`^56.1`	`57.1.0`	out of date
async-trait	`^0.1`	`0.1.89`	up to date
chrono	`^0.4.41`	`0.4.42`	up to date
datafusion	`^50.0.0`	`51.0.0`	out of date
datafusion-common	`^50.0.0`	`51.0.0`	out of date
datafusion-functions	`^50.0.0`	`51.0.0`	out of date
datafusion-physical-expr	`^50.0.0`	`51.0.0`	out of date
datafusion-substrait	`^50.0.0`	`51.0.0`	out of date
futures	`^0.3`	`0.3.31`	up to date
jsonb	`^0.5.3`	`0.5.5`	up to date
lance-arrow	`=0.38.3`	`0.39.0`	out of date
lance-core	`=0.38.3`	`0.39.0`	out of date
lance-datagen	`=0.38.3`	`0.39.0`	out of date
log	`^0.4`	`0.4.29`	up to date
pin-project	`^1.0`	`1.1.10`	up to date
prost	`^0.13.2`	`0.14.1`	out of date
snafu	`^0.8`	`0.8.9`	up to date
tokio ⚠️	`^1.23`	`1.48.0`	maybe insecure
tracing	`^0.1`	`0.1.43`	up to date

Crate

Required

Latest

Status

arrow

^56.1

57.1.0

out of date

arrow-array

^56.1

57.1.0

out of date

arrow-buffer

^56.1

57.1.0

out of date

arrow-ord

^56.1

57.1.0

out of date

arrow-schema

^56.1

57.1.0

out of date

arrow-select

^56.1

57.1.0

out of date

async-trait

^0.1

0.1.89

up to date

chrono

^0.4.41

0.4.42

up to date

datafusion

^50.0.0

51.0.0

out of date

datafusion-common

^50.0.0

51.0.0

out of date

datafusion-functions

^50.0.0

51.0.0

out of date

datafusion-physical-expr

^50.0.0

51.0.0

out of date

datafusion-substrait

^50.0.0

51.0.0

out of date

futures

^0.3

0.3.31

up to date

jsonb

^0.5.3

0.5.5

up to date

lance-arrow

=0.38.3

0.39.0

out of date

lance-core

=0.38.3

0.39.0

out of date

lance-datagen

=0.38.3

0.39.0

out of date

log

^0.4

0.4.29

up to date

pin-project

^1.0

1.1.10

up to date

prost

^0.13.2

0.14.1

out of date

snafu

^0.8

0.8.9

up to date

tokio ⚠️

^1.23

1.48.0

maybe insecure

tracing

^0.1

0.1.43

up to date

Dev dependencies

(2 total, 1 outdated)

Crate	Required	Latest	Status
lance-datagen	`=0.38.3`	`0.39.0`	out of date
substrait-expr	`^0.2.3`	`0.2.3`	up to date

Crate

Required

Latest

Status

lance-datagen

=0.38.3

0.39.0

out of date

substrait-expr

^0.2.3

0.2.3

up to date

Security Vulnerabilities

`tokio`: reject_remote_clients Configuration corruption

RUSTSEC-2023-0001

On Windows, configuring a named pipe server with pipe_mode will force ServerOptions::reject_remote_clients as false.

This drops any intended explicit configuration for the reject_remote_clients that may have been set as true previously.

The default setting of reject_remote_clients is normally true meaning the default is also overridden as false.

Workarounds

Ensure that pipe_mode is set first after initializing a ServerOptions. For example:

let mut opts = ServerOptions::new();
opts.pipe_mode(PipeMode::Message);
opts.reject_remote_clients(true);

Deps.rs

lance-datafusion 0.38.3

Crate `lance-datafusion`

Dependencies

Dev dependencies

Security Vulnerabilities

`tokio`: reject_remote_clients Configuration corruption

Workarounds

lance-datafusion 0.38.3

Crate lance-datafusion

Dependencies

Dev dependencies

Security Vulnerabilities

tokio: reject_remote_clients Configuration corruption

Workarounds

Crate `lance-datafusion`

`tokio`: reject_remote_clients Configuration corruption