This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate parking_lot

Dependencies

(2 total, 2 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 lock_api ⚠️^0.10.4.5out of date
 parking_lot_core^0.40.8.5out of date

Dev dependencies

(1 total, 1 outdated)

CrateRequiredLatestStatus
 rand^0.60.8.4out of date

Security Vulnerabilities

lock_api: Some lock_api lock guard objects can cause data races

RUSTSEC-2020-0070

Affected versions of lock_api had unsound implementations of the Send or Sync traits for some guard objects, namely:

  • MappedMutexGuard
  • MappedRwLockReadGuard
  • MappedRwLockWriteGuard
  • RwLockReadGuard
  • RwLockWriteGuard

These guards could allow data races through types that are not safe to Send across thread boundaries in safe Rust code.

This issue was fixed by changing the trait bounds on the Mapped guard types and removing the Sync trait for the RwLock guards.