yobicrypto 0.2.5

This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate `yobicrypto`

Dependencies

(17 total, 9 outdated, 1 possibly insecure)

Crate	Required	Latest	Status
byteorder	`^1.2`	`1.5.0`	up to date
ctaes-sys	`^0.1`	`0.1.0`	up to date
curve25519-dalek	`^0.14`	`4.1.2`	out of date
digest	`^0.7`	`0.10.7`	out of date
failure	`^0.1`	`0.1.8`	up to date
failure_derive	`^0.1`	`0.1.8`	up to date
generic-array ⚠️	`^0.9`	`1.0.0`	out of date
hex	`^0.3`	`0.4.3`	out of date
rand	`^0.4`	`0.8.5`	out of date
rmp	`^0.8`	`0.8.14`	up to date
rmp-serde	`^0.13`	`1.3.0`	out of date
rug	`^0.9`	`1.24.1`	out of date
serde	`^1.0`	`1.0.201`	up to date
serde_derive	`^1.0`	`1.0.201`	up to date
sha2	`^0.7`	`0.10.8`	out of date
subtle	`^0.3`	`2.5.0`	out of date
typenum	`^1.9`	`1.17.0`	up to date

Security Vulnerabilities

`generic-array`: arr! macro erases lifetimes

RUSTSEC-2020-0146

Affected versions of this crate allowed unsoundly extending lifetimes using arr! macro. This may result in a variety of memory corruption scenarios, most likely use-after-free.

yobicrypto 0.2.5

Crate yobicrypto

Dependencies

Security Vulnerabilities

generic-array: arr! macro erases lifetimes

Crate `yobicrypto`

`generic-array`: arr! macro erases lifetimes