This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate crusty

Dependencies

(28 total, 6 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 crusty-core~0.72.30.73.0out of date
 tracing-tools~0.5.00.5.0up to date
 tokio ⚠️~1.8.01.11.0out of date
 futures~0.3.140.3.17up to date
 clickhouse~0.7.10.8.1out of date
 redis~0.20.10.21.2out of date
 serde_yaml~0.8.170.8.21up to date
 serde_json^1.01.0.68up to date
 serde~1.0.1251.0.130up to date
 http~0.2.30.2.4up to date
 tracing~0.1.250.1.27up to date
 tracing-subscriber~0.2.170.2.22up to date
 tracing-futures~0.2.50.2.5up to date
 ttl_cache~0.5.10.5.1up to date
 crc32fast~1.2.11.2.1up to date
 anyhow~1.0.401.0.44up to date
 bytes~1.0.11.1.0out of date
 backoff~0.3.00.3.0up to date
 num_cpus~1.13.01.13.0up to date
 url~2.2.12.2.2up to date
 once_cell~1.8.01.8.0up to date
 fdlimit~0.2.10.2.1up to date
 humanize-rs~0.10.1.5up to date
 relabuf~0.11.00.12.0out of date
 base64~0.13.00.13.0up to date
 html5ever~0.25.10.25.1up to date
 lol_html~0.3.00.3.0up to date
 itertools~0.10.10.10.1up to date

Build dependencies

(2 total, all up-to-date)

CrateRequiredLatestStatus
 vergen~55.1.15up to date
 anyhow~1.0.401.0.44up to date

Crate interop

Dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 serde~1.0.1251.0.130up to date

Crate redis-utils

Dependencies

(1 total, 1 outdated)

CrateRequiredLatestStatus
 redis-module~0.18.00.23.0out of date

Crate redis-queue

Dependencies

(6 total, 1 outdated)

CrateRequiredLatestStatus
 anyhow~1.0.401.0.44up to date
 thiserror~1.0.241.0.29up to date
 serde~1.0.1251.0.130up to date
 serde_json^1.01.0.68up to date
 redis-module~0.18.00.23.0out of date
 validator~0.14.00.14.0up to date

Crate redis-calc

Dependencies

(7 total, 1 outdated)

CrateRequiredLatestStatus
 anyhow~1.0.401.0.44up to date
 thiserror~1.0.241.0.29up to date
 serde~1.0.1251.0.130up to date
 serde_json^1.01.0.68up to date
 redis-module~0.18.00.23.0out of date
 validator~0.14.00.14.0up to date
 itertools~0.10.10.10.1up to date

Security Vulnerabilities

tokio: Task dropped in wrong thread when aborting `LocalSet` task

RUSTSEC-2021-0072

When aborting a task with JoinHandle::abort, the future is dropped in the thread calling abort if the task is not currently being executed. This is incorrect for tasks spawned on a LocalSet.

This can easily result in race conditions as many projects use Rc or RefCell in their Tokio tasks for better performance.

See tokio#3929 for more details.