This project might be open to known security vulnerabilities , which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom .
Crate libp2p-core
Dependencies (14 total, all up-to-date)
Dev dependencies (1 total, all up-to-date)
Crate Required Latest Status async-std ^1.6.2
1.12.0
up to date
Crate autonat-example
Dependencies (3 total, all up-to-date)
Crate browser-webrtc-example
Dependencies (4 total, all up-to-date)
Crate chat-example
Dependencies (3 total, all up-to-date)
Crate dcutr-example
Dependencies (5 total, all up-to-date)
Crate distributed-key-value-store-example
Dependencies (4 total, all up-to-date)
Crate file-sharing-example
Dependencies (5 total, all up-to-date)
Crate identify-example
Dependencies (4 total, all up-to-date)
Crate ipfs-kad-example
Dependencies (6 total, 1 outdated)
Crate ipfs-private-example
Dependencies (4 total, all up-to-date)
Crate metrics-example
Dependencies (7 total, all up-to-date)
Crate ping-example
Dependencies (2 total, all up-to-date)
Crate relay-server-example
Dependencies (5 total, all up-to-date)
Crate rendezvous-example
Dependencies (4 total, all up-to-date)
Crate stream-example
Dependencies (4 total, all up-to-date)
Crate upnp-example
Dependencies (2 total, all up-to-date)
Crate hole-punching-tests
Dependencies (7 total, 2 outdated)
Crate libp2p-identity
Dependencies (15 total, all up-to-date)
Dev dependencies (5 total, all up-to-date)
Crate interop-tests
Dependencies (6 total, all up-to-date)
Crate libp2p-allow-block-list
Dependencies (1 total, all up-to-date)
Crate Required Latest Status void ^1
1.0.2
up to date
Dev dependencies (1 total, all up-to-date)
Crate Required Latest Status async-std ^1.12.0
1.12.0
up to date
Crate libp2p-connection-limits
Dependencies (1 total, all up-to-date)
Crate Required Latest Status void ^1
1.0.2
up to date
Dev dependencies (2 total, all up-to-date)
Crate Required Latest Status async-std ^1.12.0
1.12.0
up to date rand ^0.8.5
0.8.5
up to date
Crate keygen
Dependencies (5 total, all up-to-date)
Crate Required Latest Status clap ^4.5.4
4.5.4
up to date zeroize ^1
1.7.0
up to date serde ^1.0.197
1.0.198
up to date serde_json ^1.0.116
1.0.116
up to date base64 ^0.22.0
0.22.0
up to date
Crate libp2p-memory-connection-limits
Dependencies (3 total, 1 outdated)
Dev dependencies (2 total, all up-to-date)
Crate Required Latest Status async-std ^1.12.0
1.12.0
up to date rand ^0.8.5
0.8.5
up to date
Crate libp2p-metrics
Dependencies (3 total, all up-to-date)
Crate multistream-select
Dependencies (4 total, all up-to-date)
Dev dependencies (4 total, all up-to-date)
Crate quick-protobuf-codec
Dependencies (3 total, all up-to-date)
Dev dependencies (2 total, all up-to-date)
Crate Required Latest Status criterion ^0.5.1
0.5.1
up to date futures ^0.3.30
0.3.30
up to date
Crate quickcheck-ext
Dependencies (2 total, all up-to-date)
Crate rw-stream-sink
Dependencies (3 total, all up-to-date)
Dev dependencies (1 total, all up-to-date)
Crate Required Latest Status async-std ^1.0
1.12.0
up to date
Crate libp2p-server
Dependencies (10 total, all up-to-date)
Crate libp2p-webrtc-utils
Dependencies (9 total, all up-to-date)
Dev dependencies (1 total, all up-to-date)
Crate Required Latest Status hex-literal ^0.4
0.4.1
up to date
Crate libp2p-mplex
Dependencies (6 total, all up-to-date)
Dev dependencies (4 total, all up-to-date)
Crate libp2p-muxer-test-harness
Dependencies (3 total, all up-to-date)
Crate libp2p-yamux
Dependencies (4 total, all up-to-date)
Crate Required Latest Status either ^1
1.11.0
up to date futures ^0.3.30
0.3.30
up to date thiserror ^1.0
1.0.59
up to date yamux ^0.13.1
0.13.1
up to date
Dev dependencies (1 total, all up-to-date)
Crate Required Latest Status async-std ^1.7.0
1.12.0
up to date
Crate libp2p-autonat
Dependencies (6 total, all up-to-date)
Dev dependencies (2 total, all up-to-date)
Crate libp2p-dcutr
Dependencies (8 total, all up-to-date)
Dev dependencies (4 total, all up-to-date)
Crate libp2p-floodsub
Dependencies (8 total, all up-to-date)
Crate libp2p-gossipsub
Dependencies (17 total, all up-to-date)
Dev dependencies (3 total, all up-to-date)
Crate libp2p-identify
Dependencies (8 total, all up-to-date)
Dev dependencies (2 total, all up-to-date)
Crate libp2p-kad
Dependencies (15 total, all up-to-date)
Dev dependencies (3 total, all up-to-date)
Crate libp2p-mdns
Dependencies (10 total, all up-to-date)
Dev dependencies (2 total, all up-to-date)
Crate libp2p-perf
Dependencies (10 total, all up-to-date)
Dev dependencies (1 total, all up-to-date)
Crate Required Latest Status rand ^0.8
0.8.5
up to date
Crate libp2p-ping
Dependencies (6 total, all up-to-date)
Dev dependencies (2 total, all up-to-date)
Crate libp2p-relay
Dependencies (10 total, all up-to-date)
Dev dependencies (1 total, all up-to-date)
Crate libp2p-rendezvous
Dependencies (9 total, all up-to-date)
Dev dependencies (2 total, all up-to-date)
Crate libp2p-request-response
Dependencies (10 total, all up-to-date)
Dev dependencies (6 total, all up-to-date)
Crate libp2p-stream
Dependencies (3 total, all up-to-date)
Crate Required Latest Status futures ^0.3.29
0.3.30
up to date void ^1
1.0.2
up to date rand ^0.8
0.8.5
up to date
Dev dependencies (1 total, all up-to-date)
Crate libp2p-upnp
Dependencies (4 total, all up-to-date)
Crate libp2p-swarm-derive
Dependencies (4 total, all up-to-date)
Crate Required Latest Status heck ^0.5
0.5.0
up to date quote ^1.0
1.0.36
up to date syn ^2.0.60
2.0.60
up to date proc-macro2 ^1.0
1.0.81
up to date
Crate libp2p-swarm-test
Dependencies (4 total, all up-to-date)
Crate libp2p-swarm
Dependencies (12 total, all up-to-date)
Dev dependencies (7 total, all up-to-date)
Crate libp2p-dns
Dependencies (6 total, all up-to-date)
Dev dependencies (2 total, all up-to-date)
Crate libp2p-noise
Dependencies (11 total, all up-to-date)
Dev dependencies (2 total, all up-to-date)
Crate libp2p-plaintext
Dependencies (3 total, all up-to-date)
Dev dependencies (3 total, all up-to-date)
Crate libp2p-pnet
Dependencies (5 total, all up-to-date)
Crate Required Latest Status futures ^0.3.30
0.3.30
up to date salsa20 ^0.10
0.10.2
up to date sha3 ^0.10
0.10.8
up to date rand ^0.8
0.8.5
up to date pin-project ^1.1.5
1.1.5
up to date
Crate libp2p-quic
Dependencies (12 total, 2 outdated, 1 possibly insecure)
Dev dependencies (3 total, all up-to-date)
Crate libp2p-tcp
Dependencies (6 total, all up-to-date)
Dev dependencies (2 total, all up-to-date)
Crate libp2p-tls
Dependencies (9 total, 5 outdated, 1 possibly insecure)
Dev dependencies (2 total, all up-to-date)
Crate Required Latest Status hex ^0.4.3
0.4.3
up to date hex-literal ^0.4.1
0.4.1
up to date
Crate libp2p-uds
Dependencies (2 total, all up-to-date)
Crate Required Latest Status async-std ^1.6.2
1.12.0
up to date futures ^0.3.30
0.3.30
up to date
Dev dependencies (1 total, all up-to-date)
Crate Required Latest Status tempfile ^3.10
3.10.1
up to date
Crate libp2p-webrtc-websys
Dependencies (10 total, all up-to-date)
Crate libp2p-webrtc
Dependencies (14 total, 2 outdated)
Dev dependencies (2 total, all up-to-date)
Crate libp2p-websocket-websys
Dependencies (8 total, all up-to-date)
Crate libp2p-websocket
Dependencies (8 total, 2 outdated)
Dev dependencies (2 total, 1 outdated)
Crate Required Latest Status async-std ^1.6.5
1.12.0
up to date rcgen ^0.11.3
0.13.1
out of date
Crate libp2p-webtransport-websys
Dependencies (7 total, all up-to-date)
Dev dependencies (1 total, all up-to-date)
Crate Required Latest Status multibase ^0.9.1
0.9.1
up to date
Crate webtransport-tests
Dependencies (6 total, all up-to-date)
Crate libp2p
Dependencies (8 total, all up-to-date)
Dev dependencies (4 total, all up-to-date)
Security Vulnerabilities rustls
: `rustls::ConnectionCommon::complete_io` could fall into an infinite loop based on network inputRUSTSEC-2024-0336
If a close_notify
alert is received during a handshake, complete_io
does not terminate.
Callers which do not call complete_io
are not affected.
rustls-tokio
and rustls-ffi
do not call complete_io
and are not affected.
rustls::Stream
and rustls::StreamOwned
types use
complete_io
and are affected.
Patched
>=0.23.5
>=0.22.4, <0.23.0
>=0.21.11, <0.22.0