This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate nuclei

Dependencies

(11 total, 3 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 agnostik^0.20.2.3up to date
 futures^0.3.50.3.30up to date
 futures-io^0.3.50.3.30up to date
 futures-util^0.3.50.3.30up to date
 iou^0.0.0-ringbahn.10.3.3out of date
 lever ⚠️^0.10.1.4maybe insecure
 libc^0.20.2.153up to date
 once_cell^1.4.01.19.0up to date
 pin-utils^0.1.00.1.0up to date
 socket2^0.3.120.5.6out of date
 uring-sys^0.6.10.7.4out of date

Security Vulnerabilities

lever: AtomicBox<T> lacks bound on its Send and Sync traits allowing data races

RUSTSEC-2020-0137

AtomicBox<T> is a Box type designed to be used across threads, however, it implements the Send and Sync traits for all types T.

This allows non-Send types such as Rc and non-Sync types such as Cell to be used across thread boundaries which can trigger undefined behavior and memory corruption.