This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.
ontprox(23 total, 1 outdated, 1 possibly insecure)
| Crate | Required | Latest | Status |
|---|---|---|---|
| axum | ^0.7 | 0.7.9 | up to date |
| axum-extra | ^0.9 | 0.9.6 | up to date |
| clap | ^4.5 | 4.5.23 | up to date |
| cli_utils_hoijui | ^0.9 | 0.9.0 | up to date |
| const_format | ^0.2 | 0.2.34 | up to date |
| dirs | ^5.0 | 5.0.1 | up to date |
| futures | ^0.3 | 0.3.31 | up to date |
| git-version | ^0.3 | 0.3.9 | up to date |
| mediatype | ^0.19 | 0.19.18 | up to date |
| once_cell | ^1.19 | 1.20.2 | up to date |
| openssl ⚠️ | =0.10.64 | 0.10.68 | out of date |
| rdfoothills-base | ^0.5 | 0.5.1 | up to date |
| rdfoothills-conversion | ^0.5 | 0.5.1 | up to date |
| rdfoothills-mime | ^0.5 | 0.5.1 | up to date |
| reqwest | ^0.12 | 0.12.9 | up to date |
| serde | ^1.0 | 1.0.216 | up to date |
| thiserror | ^2.0 | 2.0.9 | up to date |
| tokio | ^1.38 | 1.42.0 | up to date |
| tokio-util | ^0.7 | 0.7.13 | up to date |
| tower-http | ^0.6 | 0.6.2 | up to date |
| tracing | ^0.1 | 0.1.41 | up to date |
| tracing-subscriber | ^0.3 | 0.3.19 | up to date |
| url | ^2.5 | 2.5.4 | up to date |
openssl: `MemBio::get_buf` has undefined behavior with empty buffersPreviously, MemBio::get_buf called slice::from_raw_parts with a null-pointer, which violates the functions invariants, leading to undefined behavior. In debug builds this would produce an assertion failure. This is now fixed.