This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate fluxfox

Dependencies

(6 total, all up-to-date)

CrateRequiredLatestStatus
 env_logger^0.110.11.7up to date
 sha1_smol^1.01.0.1up to date
 flate2^1.01.1.0up to date
 histogram^0.110.11.3up to date
 plotly^0.120.12.1up to date
 rhai^1.201.21.0up to date

Dev dependencies

(2 total, all up-to-date)

CrateRequiredLatestStatus
 sha1^0.100.10.6up to date
 hex^0.40.4.3up to date

Crate async

Dependencies

(6 total, 1 possibly insecure)

CrateRequiredLatestStatus
 bpaf^0.90.9.19up to date
 tokio ⚠️^11.44.1maybe insecure
 logger^0.40.4.0up to date
 env_logger^0.110.11.7up to date
 log^0.40.4.26up to date
 anyhow^1.01.0.97up to date

Crate serde_demo

Dependencies

(6 total, 1 outdated)

CrateRequiredLatestStatus
 bpaf^0.90.9.19up to date
 logger^0.40.4.0up to date
 env_logger^0.110.11.7up to date
 log^0.40.4.26up to date
 anyhow^1.01.0.97up to date
 bincode^1.32.0.1out of date

Crate imginfo

Dependencies

(4 total, all up-to-date)

CrateRequiredLatestStatus
 bpaf^0.90.9.19up to date
 logger^0.40.4.0up to date
 env_logger^0.110.11.7up to date
 log^0.4.220.4.26up to date

Crate imgdump

Dependencies

(4 total, all up-to-date)

CrateRequiredLatestStatus
 bpaf^0.90.9.19up to date
 logger^0.40.4.0up to date
 env_logger^0.110.11.7up to date
 log^0.4.220.4.26up to date

Crate imgviz

Dependencies

(13 total, 1 outdated)

CrateRequiredLatestStatus
 bpaf^0.90.9.19up to date
 logger^0.40.4.0up to date
 env_logger^0.110.11.7up to date
 log^0.4.220.4.26up to date
 image^0.250.25.5up to date
 fast_image_resize^4.2.15.1.2out of date
 crossbeam^0.8.40.8.4up to date
 anyhow^1.01.0.97up to date
 rusttype^0.90.9.3up to date
 serde^1.01.0.219up to date
 toml^0.8.190.8.20up to date
 svg^0.180.18.0up to date
 tiny-skia^0.110.11.4up to date

Crate png2disk

Dependencies

(5 total, all up-to-date)

CrateRequiredLatestStatus
 bpaf^0.90.9.19up to date
 logger^0.40.4.0up to date
 env_logger^0.110.11.7up to date
 log^0.4.220.4.26up to date
 anyhow^1.01.0.97up to date

Crate ffedit

Dependencies

(9 total, 2 outdated)

CrateRequiredLatestStatus
 crossterm^0.28.10.28.1up to date
 ratatui^0.28.10.29.0out of date
 tui-popup^0.5.00.6.0out of date
 log^0.4.220.4.26up to date
 once_cell^1.8.01.21.1up to date
 anyhow^1.01.0.97up to date
 crossbeam-channel^0.5.130.5.14up to date
 bpaf^0.90.9.19up to date
 indexmap^2.6.02.8.0up to date

Crate fluxfox_cli

Dependencies

(7 total, all up-to-date)

CrateRequiredLatestStatus
 log^0.4.220.4.26up to date
 once_cell^1.8.01.21.1up to date
 anyhow^1.01.0.97up to date
 crossbeam-channel^0.5.130.5.14up to date
 bpaf^0.90.9.19up to date
 indexmap^2.6.02.8.0up to date
 env_logger^0.11.50.11.7up to date

Dev dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 tempfile^3.143.19.0up to date

Crate ff_egui_app

Dependencies

(10 total, 5 outdated)

CrateRequiredLatestStatus
 egui^0.300.31.1out of date
 eframe^0.300.31.1out of date
 egui_extras^0.300.31.1out of date
 image^0.250.25.5up to date
 log^0.40.4.26up to date
 tiny-skia^0.110.11.4up to date
 serde^11.0.219up to date
 anyhow^1.01.0.97up to date
 strum^0.26.30.27.1out of date
 web-sys=0.3.700.3.77out of date

Crate fluxfox_egui

Dependencies

(8 total, 5 outdated)

CrateRequiredLatestStatus
 log^0.40.4.26up to date
 egui^0.30.00.31.1out of date
 egui_extras^0.30.00.31.1out of date
 egui_plot^0.30.00.31.0out of date
 serde^1.01.0.219up to date
 strum^0.260.27.1out of date
 strum_macros^0.260.27.1out of date
 image^0.250.25.5up to date

Crate fluxfox_svg

No external dependencies! 🙌

Crate fat_example

Dependencies

(4 total, all up-to-date)

CrateRequiredLatestStatus
 bpaf^0.90.9.19up to date
 logger^0.40.4.0up to date
 env_logger^0.110.11.7up to date
 log^0.4.220.4.26up to date

Crate fluxfox_tiny_skia

No external dependencies! 🙌

Security Vulnerabilities

tokio: reject_remote_clients Configuration corruption

RUSTSEC-2023-0001

On Windows, configuring a named pipe server with pipe_mode will force ServerOptions::reject_remote_clients as false.

This drops any intended explicit configuration for the reject_remote_clients that may have been set as true previously.

The default setting of reject_remote_clients is normally true meaning the default is also overridden as false.

Workarounds

Ensure that pipe_mode is set first after initializing a ServerOptions. For example:

let mut opts = ServerOptions::new();
opts.pipe_mode(PipeMode::Message);
opts.reject_remote_clients(true);