libp2p-webrtc 0.4.0-alpha

Crate libp2p-webrtc

Dependencies

(22 total, 10 outdated, 1 possibly insecure)

Crate	Required	Latest	Status
async-trait	`^0.1`	`0.1.87`	up to date
asynchronous-codec	`^0.6.1`	`0.7.0`	out of date
bytes	`^1`	`1.10.1`	up to date
futures	`^0.3`	`0.3.31`	up to date
futures-timer	`^3`	`3.0.3`	up to date
hex	`^0.4`	`0.4.3`	up to date
if-watch	`^3.0`	`3.2.1`	up to date
libp2p-core	`^0.38.0`	`0.43.0`	out of date
libp2p-noise	`^0.41.0`	`0.46.0`	out of date
log	`^0.4`	`0.4.26`	up to date
multihash	`^0.16`	`0.19.3`	out of date
prost	`^0.11`	`0.13.5`	out of date
prost-codec	`^0.3.0`	`0.3.0`	up to date
rand	`^0.8`	`0.9.0`	out of date
rcgen	`^0.9.3`	`0.13.2`	out of date
serde	`^1.0`	`1.0.219`	up to date
stun	`^0.4`	`0.7.0`	out of date
thiserror	`^1`	`2.0.12`	out of date
tinytemplate	`^1.2`	`1.2.1`	up to date
tokio ⚠️	`^1.19`	`1.44.1`	maybe insecure
tokio-util	`^0.7`	`0.7.14`	up to date
webrtc	`^0.6.0`	`0.12.0`	out of date

Crate

Required

Latest

Status

async-trait

^0.1

0.1.87

up to date

asynchronous-codec

^0.6.1

0.7.0

out of date

bytes

^1

1.10.1

up to date

futures

^0.3

0.3.31

up to date

futures-timer

^3

3.0.3

up to date

hex

^0.4

0.4.3

up to date

if-watch

^3.0

3.2.1

up to date

libp2p-core

^0.38.0

0.43.0

out of date

libp2p-noise

^0.41.0

0.46.0

out of date

log

^0.4

0.4.26

up to date

multihash

^0.16

0.19.3

out of date

prost

^0.11

0.13.5

out of date

prost-codec

^0.3.0

0.3.0

up to date

rand

^0.8

0.9.0

out of date

rcgen

^0.9.3

0.13.2

out of date

serde

^1.0

1.0.219

up to date

stun

^0.4

0.7.0

out of date

thiserror

^1

2.0.12

out of date

tinytemplate

^1.2

1.2.1

up to date

tokio ⚠️

^1.19

1.44.1

maybe insecure

tokio-util

^0.7

0.7.14

up to date

webrtc

^0.6.0

0.12.0

out of date

Dev dependencies

(6 total, 3 outdated, 1 possibly insecure)

Crate	Required	Latest	Status
anyhow	`^1.0`	`1.0.97`	up to date
env_logger	`^0.9`	`0.11.7`	out of date
hex-literal	`^0.3`	`1.0.0`	out of date
tokio ⚠️	`^1.19`	`1.44.1`	maybe insecure
unsigned-varint	`^0.7`	`0.8.0`	out of date
void	`^1`	`1.0.2`	up to date

Crate

Required

Latest

Status

anyhow

^1.0

1.0.97

up to date

env_logger

^0.9

0.11.7

out of date

hex-literal

^0.3

1.0.0

out of date

tokio ⚠️

^1.19

1.44.1

maybe insecure

unsigned-varint

^0.7

0.8.0

out of date

void

^1

1.0.2

up to date

Security Vulnerabilities

`tokio`: reject_remote_clients Configuration corruption

RUSTSEC-2023-0001

On Windows, configuring a named pipe server with pipe_mode will force ServerOptions::reject_remote_clients as false.

This drops any intended explicit configuration for the reject_remote_clients that may have been set as true previously.

The default setting of reject_remote_clients is normally true meaning the default is also overridden as false.

Workarounds

Ensure that pipe_mode is set first after initializing a ServerOptions. For example:

let mut opts = ServerOptions::new();
opts.pipe_mode(PipeMode::Message);
opts.reject_remote_clients(true);

Deps.rs

libp2p-webrtc 0.4.0-alpha

Crate `libp2p-webrtc`

Dependencies

Dev dependencies

Security Vulnerabilities

`tokio`: reject_remote_clients Configuration corruption

Workarounds

libp2p-webrtc 0.4.0-alpha

Crate libp2p-webrtc

Dependencies

Dev dependencies

Security Vulnerabilities

tokio: reject_remote_clients Configuration corruption

Workarounds

Crate `libp2p-webrtc`

`tokio`: reject_remote_clients Configuration corruption