This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate deno_bench_util

No external dependencies! 🙌

Crate deno

Dependencies

(37 total, 11 outdated)

CrateRequiredLatestStatus
 deno_config=0.15.00.15.0up to date
 deno_doc=0.119.00.119.0up to date
 deno_emit=0.38.20.38.2up to date
 deno_graph=0.69.90.69.9up to date
 deno_lint=0.58.00.58.0up to date
 deno_npm=0.17.00.17.0up to date
 deno_semver=0.5.40.5.4up to date
 deno_task_shell=0.16.00.16.0up to date
 eszip=0.64.20.64.2up to date
 bincode=1.3.31.3.3up to date
 clap=4.4.174.5.4out of date
 clap_complete=4.4.74.5.1out of date
 clap_complete_fig=4.4.24.5.0out of date
 color-print^0.3.50.3.5up to date
 dashmap^5.5.35.5.3up to date
 dissimilar=1.0.41.0.7out of date
 dotenvy^0.15.70.15.7up to date
 dprint-plugin-json=0.19.20.19.2up to date
 dprint-plugin-jupyter=0.1.30.1.3up to date
 dprint-plugin-markdown=0.16.40.16.4up to date
 dprint-plugin-typescript=0.89.30.89.3up to date
 env_logger=0.10.00.11.3out of date
 fancy-regex=0.10.00.13.0out of date
 glob^0.3.10.3.1up to date
 ignore^0.40.4.22up to date
 import_map=0.19.00.19.1out of date
 open^5.0.15.1.2up to date
 quick-junit^0.3.50.3.5up to date
 rustyline-derive=0.7.00.10.0out of date
 shell-escape=0.1.50.1.5up to date
 spki^0.70.7.3up to date
 text-size=1.1.01.1.1out of date
 text_lines=0.6.00.6.0up to date
 twox-hash=1.6.31.6.3up to date
 typed-arena=2.0.12.0.2out of date
 unicode-width^0.10.1.11up to date
 walkdir=2.3.22.5.0out of date

Build dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 glibc_version^0.1.20.1.2up to date

Crate napi_sym

No external dependencies! 🙌

Crate deno_broadcast_channel

No external dependencies! 🙌

Crate deno_cache

No external dependencies! 🙌

Crate deno_canvas

Dependencies

(1 total, 1 outdated)

CrateRequiredLatestStatus
 image^0.24.70.25.0out of date

Crate deno_console

No external dependencies! 🙌

Crate deno_cron

Dependencies

(1 total, 1 outdated)

CrateRequiredLatestStatus
 deno_unsync^0.1.10.3.2out of date

Crate deno_crypto

Dependencies

(12 total, all up-to-date)

CrateRequiredLatestStatus
 aes-gcm^0.100.10.3up to date
 aes-kw^0.2.10.2.1up to date
 const-oid^0.9.00.9.6up to date
 ctr^0.9.10.9.2up to date
 curve25519-dalek^4.1.14.1.2up to date
 elliptic-curve^0.13.10.13.8up to date
 num-traits^0.2.140.2.18up to date
 p256^0.13.20.13.2up to date
 p384^0.13.00.13.0up to date
 p521^0.13.30.13.3up to date
 sha1^0.10.60.10.6up to date
 x25519-dalek^2.0.02.0.1up to date

Crate deno_fetch

Dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 dyn-clone^11.0.17up to date

Crate deno_ffi

Dependencies

(5 total, 1 outdated)

CrateRequiredLatestStatus
 dynasmrt^1.2.32.0.0out of date
 libffi=3.2.03.2.0up to date
 libffi-sys=2.3.02.3.0up to date
 serde-value^0.70.7.0up to date
 serde_json^1.01.0.115up to date

Crate deno_fs

Dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 rayon^1.8.01.10.0up to date

Crate deno_http

Dependencies

(4 total, 1 outdated)

CrateRequiredLatestStatus
 async-compression^0.40.4.6up to date
 brotli^3.3.43.5.0up to date
 itertools^0.100.12.1out of date
 mime^0.3.160.3.17up to date

Crate deno_io

No external dependencies! 🙌

Crate deno_kv

Dependencies

(1 total, 1 outdated)

CrateRequiredLatestStatus
 deno_unsync^0.1.10.3.2out of date

Crate deno_napi

Dependencies

(1 total, 1 outdated)

CrateRequiredLatestStatus
 libloading^0.70.8.3out of date

Crate deno_net

Dependencies

(3 total, 3 outdated)

CrateRequiredLatestStatus
 enum-as-inner=0.5.10.6.0out of date
 trust-dns-proto^0.220.23.2out of date
 trust-dns-resolver^0.220.23.2out of date

Crate deno_node

Dependencies

(26 total, 6 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 aead-gcm-stream^0.10.2.0out of date
 const-oid^0.9.50.9.6up to date
 deno_whoami^0.1.00.1.0up to date
 digest^0.10.50.10.7up to date
 dsa^0.6.10.6.3up to date
 errno^0.2.80.3.8out of date
 h2 ⚠️^0.3.170.4.3out of date
 idna^0.3.00.5.0out of date
 k256^0.13.10.13.3up to date
 md-5^0.10.50.10.6up to date
 md4^0.10.20.10.2up to date
 num-bigint-dig^0.8.20.8.4up to date
 num-integer^0.1.450.1.46up to date
 num-traits^0.2.140.2.18up to date
 path-clean=0.1.01.0.1out of date
 pbkdf2^0.12.10.12.2up to date
 pin-project-lite^0.2.130.2.13up to date
 ripemd^0.1.30.1.3up to date
 scrypt^0.11.00.11.0up to date
 sec1^0.70.7.3up to date
 serde^1.0.1491.0.197up to date
 sha-1^0.10.00.10.1up to date
 simd-json^0.13.40.13.9up to date
 typenum^1.15.01.17.0up to date
 x25519-dalek^2.0.02.0.1up to date
 x509-parser^0.15.00.16.0out of date

Crate deno_url

Dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 urlpattern^0.2.00.2.0up to date

Crate deno_web

Dependencies

(2 total, all up-to-date)

CrateRequiredLatestStatus
 base64-simd^0.80.8.0up to date
 serde^1.0.1491.0.197up to date

Crate deno_webgpu

No external dependencies! 🙌

Crate deno_webidl

No external dependencies! 🙌

Crate deno_websocket

No external dependencies! 🙌

Crate deno_webstorage

No external dependencies! 🙌

Crate deno_runtime

Dependencies

(5 total, 1 outdated)

CrateRequiredLatestStatus
 filetime^0.2.160.2.23up to date
 netif^0.1.60.1.6up to date
 signal-hook^0.3.170.3.17up to date
 signal-hook-registry^1.4.01.4.1up to date
 which^4.2.56.0.1out of date

Crate deno_permissions

Dependencies

(2 total, 1 outdated)

CrateRequiredLatestStatus
 fqdn^0.3.40.3.4up to date
 which^4.2.56.0.1out of date

Crate cli_tests

Dev dependencies

(3 total, 3 outdated)

CrateRequiredLatestStatus
 flaky_test=0.1.00.2.2out of date
 trust-dns-client=0.22.00.23.2out of date
 trust-dns-server=0.22.10.23.2out of date

Crate test_ffi

No external dependencies! 🙌

Crate test_napi

Dependencies

(1 total, 1 outdated)

CrateRequiredLatestStatus
 napi-sys=2.2.22.3.0out of date

Build dependencies

(1 total, 1 outdated)

CrateRequiredLatestStatus
 napi-build^12.1.2out of date

Crate test_server

Dependencies

(4 total, 1 outdated)

CrateRequiredLatestStatus
 async-stream^0.3.30.3.5up to date
 deno_unsync^0.3.00.3.2up to date
 semver=1.0.141.0.22out of date
 win32job^22.0.0up to date

Security Vulnerabilities

h2: Resource exhaustion vulnerability in h2 may lead to Denial of Service (DoS)

RUSTSEC-2024-0003

An attacker with an HTTP/2 connection to an affected endpoint can send a steady stream of invalid frames to force the generation of reset frames on the victim endpoint. By closing their recv window, the attacker could then force these resets to be queued in an unbounded fashion, resulting in Out Of Memory (OOM) and high CPU usage.

This fix is corrected in hyperium/h2#737, which limits the total number of internal error resets emitted by default before the connection is closed.