This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate logos-derive

Dependencies

(7 total, 3 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 beef ⚠️^0.4.10.5.2out of date
 fnv^1.0.61.0.7up to date
 proc-macro2^1.0.91.0.92up to date
 quote^1.0.31.0.37up to date
 regex-syntax^0.60.8.5out of date
 syn^1.0.172.0.90out of date
 utf8-ranges^1.01.0.5up to date

Dev dependencies

(1 total, 1 outdated)

CrateRequiredLatestStatus
 pretty_assertions^0.6.11.4.1out of date

Security Vulnerabilities

beef: beef::Cow lacks a Sync bound on its Send trait allowing for data races

RUSTSEC-2020-0122

Affected versions of this crate did not have a T: Sync bound in the Send impl for Cow<'_, T, U>. This allows users to create data races by making Cow contain types that are (Send && !Sync) like Cell<_> or RefCell<_>.

Such data races can lead to memory corruption.

The flaw was corrected in commit d1c7658 by adding trait bounds T: Sync and T::Owned: Send to the Send impl for Cow<'_, T, U>.