mozilla / application-services

This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate `as-ohttp-client`

Dependencies

(5 total, 4 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date
thiserror	`^1.0`	`2.0.11`	out of date
bhttp	`^0.3`	`0.5.3`	out of date
parking_lot	`^0.12`	`0.12.3`	up to date
rusqlite	`^0.31.0`	`0.33.0`	out of date

Build dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date

Crate `autofill`

Dependencies

(10 total, 3 outdated)

Crate	Required	Latest	Status
anyhow	`^1.0`	`1.0.95`	up to date
lazy_static	`^1.4`	`1.5.0`	up to date
log	`^0.4`	`0.4.25`	up to date
rusqlite	`^0.31.0`	`0.33.0`	out of date
serde	`^1`	`1.0.217`	up to date
serde_derive	`^1`	`1.0.217`	up to date
serde_json	`^1`	`1.0.138`	up to date
thiserror	`^1.0`	`2.0.11`	out of date
uniffi	`^0.28.2`	`0.29.0`	out of date
url	`^2.2`	`2.5.4`	up to date

Dev dependencies

(2 total, 2 outdated)

Crate	Required	Latest	Status
env_logger	`^0.10`	`0.11.6`	out of date
libsqlite3-sys	`^0.28.0`	`0.31.0`	out of date

Build dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date

Crate `crashtest`

Dependencies

(3 total, 2 outdated)

Crate	Required	Latest	Status
log	`^0.4`	`0.4.25`	up to date
thiserror	`^1.0`	`2.0.11`	out of date
uniffi	`^0.28.2`	`0.29.0`	out of date

Build dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date

Crate `example-component`

Dependencies

(8 total, 3 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date
parking_lot	`^0.12`	`0.12.3`	up to date
rusqlite	`^0.31.0`	`0.33.0`	out of date
serde	`^1`	`1.0.217`	up to date
serde_json	`^1`	`1.0.138`	up to date
url	`^2`	`2.5.4`	up to date
log	`^0.4`	`0.4.25`	up to date
thiserror	`^1.0`	`2.0.11`	out of date

Crate `fxa-client`

Dependencies

(12 total, 3 outdated)

Crate	Required	Latest	Status
base64	`^0.21`	`0.22.1`	out of date
hex	`^0.4`	`0.4.3`	up to date
lazy_static	`^1.4`	`1.5.0`	up to date
log	`^0.4`	`0.4.25`	up to date
parking_lot	`>=0.11, <=0.12`	`0.12.3`	up to date
serde	`^1`	`1.0.217`	up to date
serde_derive	`^1`	`1.0.217`	up to date
serde_json	`^1`	`1.0.138`	up to date
url	`^2.2`	`2.5.4`	up to date
thiserror	`^1.0`	`2.0.11`	out of date
anyhow	`^1.0`	`1.0.95`	up to date
uniffi	`^0.28.2`	`0.29.0`	out of date

Dev dependencies

(2 total, 2 outdated)

Crate	Required	Latest	Status
mockall	`^0.11`	`0.13.1`	out of date
mockito	`^0.31`	`1.6.1`	out of date

Build dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date

Crate `logins`

Dependencies

(11 total, 3 outdated)

Crate	Required	Latest	Status
serde	`^1`	`1.0.217`	up to date
serde_derive	`^1`	`1.0.217`	up to date
serde_json	`^1`	`1.0.138`	up to date
parking_lot	`>=0.11, <=0.12`	`0.12.3`	up to date
log	`^0.4`	`0.4.25`	up to date
lazy_static	`^1.4`	`1.5.0`	up to date
url	`^2.2`	`2.5.4`	up to date
rusqlite	`^0.31.0`	`0.33.0`	out of date
thiserror	`^1.0`	`2.0.11`	out of date
anyhow	`^1.0`	`1.0.95`	up to date
uniffi	`^0.28.2`	`0.29.0`	out of date

Dev dependencies

(3 total, 2 outdated)

Crate	Required	Latest	Status
more-asserts	`^0.2`	`0.3.1`	out of date
tempfile	`^3.2.0`	`3.17.0`	up to date
env_logger	`^0.10`	`0.11.6`	out of date

Build dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date

Crate `merino`

Dependencies

(3 total, 1 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date
serde	`^1`	`1.0.217`	up to date
serde_json	`^1`	`1.0.138`	up to date

Build dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date

Crate `nimbus-sdk`

Dependencies

(18 total, 2 outdated, 1 possibly insecure)

Crate	Required	Latest	Status
anyhow	`^1`	`1.0.95`	up to date
serde	`^1`	`1.0.217`	up to date
serde_derive	`^1`	`1.0.217`	up to date
serde_json	`^1`	`1.0.138`	up to date
log	`^0.4`	`0.4.25`	up to date
thiserror	`^1`	`2.0.11`	out of date
url	`^2.5`	`2.5.4`	up to date
rkv	`^0.19`	`0.19.0`	up to date
jexl-eval	`^0.3.0`	`0.3.0`	up to date
uuid	`^1.3`	`1.13.1`	up to date
sha2	`^0.10`	`0.10.8`	up to date
hex	`^0.4`	`0.4.3`	up to date
once_cell	`^1`	`1.20.3`	up to date
uniffi	`^0.28.2`	`0.29.0`	out of date
chrono ⚠️	`^0.4`	`0.4.39`	maybe insecure
unicode-segmentation	`^1.8.0`	`1.12.0`	up to date
cfg-if	`^1.0.0`	`1.0.0`	up to date
regex	`^1.9`	`1.11.1`	up to date

Dev dependencies

(4 total, 3 outdated)

Crate	Required	Latest	Status
env_logger	`^0.10`	`0.11.6`	out of date
clap	`^2.34`	`4.5.29`	out of date
tempfile	`^3`	`3.17.0`	up to date
ctor	`^0.2.2`	`0.3.4`	out of date

Build dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date

Crate `places`

Dependencies

(17 total, 4 outdated)

Crate	Required	Latest	Status
serde	`^1`	`1.0.217`	up to date
serde_derive	`^1`	`1.0.217`	up to date
serde_json	`^1`	`1.0.138`	up to date
parking_lot	`^0.12`	`0.12.3`	up to date
log	`^0.4`	`0.4.25`	up to date
lazy_static	`^1.4`	`1.5.0`	up to date
url	`^2.1`	`2.5.4`	up to date
percent-encoding	`^2.1`	`2.3.1`	up to date
caseless	`^0.2`	`0.2.2`	up to date
rusqlite	`^0.31.0`	`0.33.0`	out of date
bitflags	`^1.2`	`2.8.0`	out of date
idna	`^1.0.3`	`1.0.3`	up to date
memchr	`^2.3`	`2.7.4`	up to date
dogear	`^0.5`	`0.5.0`	up to date
thiserror	`^1.0`	`2.0.11`	out of date
anyhow	`^1.0`	`1.0.95`	up to date
uniffi	`^0.28.2`	`0.29.0`	out of date

Dev dependencies

(3 total, 2 outdated)

Crate	Required	Latest	Status
pretty_assertions	`^0.6`	`1.4.1`	out of date
tempfile	`^3.1`	`3.17.0`	up to date
env_logger	`^0.10`	`0.11.6`	out of date

Build dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date

Crate `push`

Dependencies

(10 total, 4 outdated)

Crate	Required	Latest	Status
serde	`^1`	`1.0.217`	up to date
serde_json	`^1`	`1.0.138`	up to date
bincode	`^1.2`	`1.3.3`	up to date
lazy_static	`^1.4`	`1.5.0`	up to date
base64	`^0.21`	`0.22.1`	out of date
log	`^0.4`	`0.4.25`	up to date
rusqlite	`^0.31.0`	`0.33.0`	out of date
url	`^2.2`	`2.5.4`	up to date
thiserror	`^1.0`	`2.0.11`	out of date
uniffi	`^0.28.2`	`0.29.0`	out of date

Dev dependencies

(5 total, 3 outdated)

Crate	Required	Latest	Status
env_logger	`^0.10`	`0.11.6`	out of date
mockito	`^0.31`	`1.6.1`	out of date
hex	`^0.4`	`0.4.3`	up to date
tempfile	`^3.1.0`	`3.17.0`	up to date
mockall	`^0.11`	`0.13.1`	out of date

Build dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date

Crate `relevancy`

Dependencies

(14 total, 6 outdated)

Crate	Required	Latest	Status
anyhow	`^1.0`	`1.0.95`	up to date
log	`^0.4`	`0.4.25`	up to date
md-5	`^0.10`	`0.10.6`	up to date
parking_lot	`>=0.11, <=0.12`	`0.12.3`	up to date
rand	`^0.8`	`0.9.0`	out of date
rand_distr	`^0.4`	`0.5.0`	out of date
rusqlite	`^0.31.0`	`0.33.0`	out of date
serde	`^1`	`1.0.217`	up to date
serde_json	`^1`	`1.0.138`	up to date
serde_path_to_error	`^0.1`	`0.1.16`	up to date
thiserror	`^1.0`	`2.0.11`	out of date
uniffi	`^0.28.2`	`0.29.0`	out of date
url	`^2.5`	`2.5.4`	up to date
base64	`^0.21.2`	`0.22.1`	out of date

Build dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date

Crate `remote_settings`

Dependencies

(14 total, 3 outdated)

Crate	Required	Latest	Status
log	`^0.4`	`0.4.25`	up to date
uniffi	`^0.28.2`	`0.29.0`	out of date
thiserror	`^1.0`	`2.0.11`	out of date
serde	`^1`	`1.0.217`	up to date
serde_json	`^1`	`1.0.138`	up to date
parking_lot	`^0.12`	`0.12.3`	up to date
url	`^2`	`2.5.4`	up to date
camino	`^1.0`	`1.1.9`	up to date
rusqlite	`^0.31.0`	`0.33.0`	out of date
jexl-eval	`^0.3.0`	`0.3.0`	up to date
regex	`^1.9`	`1.11.1`	up to date
anyhow	`^1.0`	`1.0.95`	up to date
sha2	`^0.10`	`0.10.8`	up to date
canonical_json	`^0.5`	`0.5.0`	up to date

Dev dependencies

(4 total, 2 outdated)

Crate	Required	Latest	Status
expect-test	`^1.4`	`1.5.1`	up to date
mockall	`^0.11`	`0.13.1`	out of date
mockito	`^0.31`	`1.6.1`	out of date
serde_json	`^1`	`1.0.138`	up to date

Build dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date

Crate `search`

Dependencies

(6 total, 3 outdated)

Crate	Required	Latest	Status
env_logger	`^0.10.0`	`0.11.6`	out of date
parking_lot	`>=0.11, <=0.12`	`0.12.3`	up to date
serde	`^1`	`1.0.217`	up to date
serde_json	`^1`	`1.0.138`	up to date
thiserror	`^1`	`2.0.11`	out of date
uniffi	`^0.28.2`	`0.29.0`	out of date

Dev dependencies

(4 total, 3 outdated)

Crate	Required	Latest	Status
env_logger	`^0.10.0`	`0.11.6`	out of date
once_cell	`^1.18.0`	`1.20.3`	up to date
mockito	`^0.31`	`1.6.1`	out of date
pretty_assertions	`^0.6`	`1.4.1`	out of date

Build dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date

Crate `suggest`

Dependencies

(14 total, 3 outdated, 1 possibly insecure)

Crate	Required	Latest	Status
anyhow	`^1.0`	`1.0.95`	up to date
rmp-serde	`^1.3`	`1.3.0`	up to date
chrono ⚠️	`^0.4`	`0.4.39`	maybe insecure
extend	`^1.1`	`1.2.0`	up to date
log	`^0.4`	`0.4.25`	up to date
once_cell	`^1.5`	`1.20.3`	up to date
parking_lot	`>=0.11, <=0.12`	`0.12.3`	up to date
rusqlite	`^0.31.0`	`0.33.0`	out of date
serde	`^1`	`1.0.217`	up to date
serde_json	`^1`	`1.0.138`	up to date
tempfile	`^3.2.0`	`3.17.0`	up to date
thiserror	`^1`	`2.0.11`	out of date
uniffi	`^0.28.2`	`0.29.0`	out of date
url	`^2.1`	`2.5.4`	up to date

Dev dependencies

(4 total, 1 outdated)

Crate	Required	Latest	Status
criterion	`^0.5`	`0.5.1`	up to date
env_logger	`^0.10`	`0.11.6`	out of date
expect-test	`^1.4`	`1.5.1`	up to date
hex	`^0.4`	`0.4.3`	up to date

Build dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date

Crate `error-support`

Dependencies

(5 total, 1 outdated)

Crate	Required	Latest	Status
log	`^0.4`	`0.4.25`	up to date
lazy_static	`^1.4`	`1.5.0`	up to date
parking_lot	`>=0.11, <=0.12`	`0.12.3`	up to date
uniffi	`^0.28.2`	`0.29.0`	out of date
backtrace	`^0.3`	`0.3.74`	up to date

Build dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date

Crate `error-support-tests`

Dev dependencies

(2 total, 1 outdated)

Crate	Required	Latest	Status
thiserror	`^1`	`2.0.11`	out of date
trybuild	`^1.0.49`	`1.0.103`	up to date

Crate `find-places-db`

Dependencies

(3 total, 1 outdated)

Crate	Required	Latest	Status
dirs	`^4`	`6.0.0`	out of date
anyhow	`^1.0`	`1.0.95`	up to date
log	`^0.4`	`0.4.25`	up to date

Crate `sync-guid`

Dependencies

(4 total, 3 outdated)

Crate	Required	Latest	Status
rusqlite	`^0.31.0`	`0.33.0`	out of date
serde	`^1`	`1.0.217`	up to date
rand	`^0.8`	`0.9.0`	out of date
base64	`^0.21`	`0.22.1`	out of date

Dev dependencies

(1 total, all up-to-date)

Crate	Required	Latest	Status
serde_test	`^1`	`1.0.177`	up to date

Crate `interrupt-support`

Dependencies

(4 total, 2 outdated)

Crate	Required	Latest	Status
lazy_static	`^1.4`	`1.5.0`	up to date
parking_lot	`>=0.11, <=0.12`	`0.12.3`	up to date
rusqlite	`^0.31.0`	`0.33.0`	out of date
uniffi	`^0.28.2`	`0.29.0`	out of date

Build dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date

Crate `jwcrypto`

Dependencies

(6 total, 2 outdated)

Crate	Required	Latest	Status
base64	`^0.21`	`0.22.1`	out of date
log	`^0.4`	`0.4.25`	up to date
serde	`^1`	`1.0.217`	up to date
serde_derive	`^1`	`1.0.217`	up to date
serde_json	`^1`	`1.0.138`	up to date
thiserror	`^1.0`	`2.0.11`	out of date

Crate `nimbus-cli`

Dependencies

(23 total, 10 outdated, 1 possibly insecure)

Crate	Required	Latest	Status
clap	`^4.2.2`	`4.5.29`	up to date
anyhow	`^1.0.44`	`1.0.95`	up to date
serde_json	`^1`	`1.0.138`	up to date
serde	`^1.0`	`1.0.217`	up to date
thiserror	`^1.0.29`	`2.0.11`	out of date
unicode-segmentation	`^1.8.0`	`1.12.0`	up to date
console	`^0.15.5`	`0.15.10`	up to date
glob	`^0.3.1`	`0.3.2`	up to date
heck	`^0.4.1`	`0.5.0`	out of date
whoami ⚠️	`^1.4.0`	`1.5.2`	maybe insecure
update-informer	`^1.0.0`	`1.2.0`	up to date
reqwest	`^0.11.18`	`0.12.12`	out of date
serde_yaml	`^0.9.21`	`0.9.34+deprecated`	up to date
percent-encoding	`^2.3.0`	`2.3.1`	up to date
copypasta	`^0.8.2`	`0.10.1`	out of date
chrono	`^0.4.26`	`0.4.39`	up to date
axum	`^0.6.18`	`0.8.1`	out of date
tokio	`^1.29.1`	`1.43.0`	up to date
tower	`^0.4.13`	`0.5.2`	out of date
tower-http	`^0.4.1`	`0.6.2`	out of date
tower-livereload	`^0.8.0`	`0.9.6`	out of date
hyper	`^0.14.27`	`1.6.0`	out of date
local-ip-address	`^0.5.4`	`0.6.3`	out of date

Crate `nimbus-fml`

Dependencies

(20 total, 7 outdated)

Crate	Required	Latest	Status
clap	`^2.34.0`	`4.5.29`	out of date
anyhow	`^1.0.44`	`1.0.95`	up to date
serde_json	`^1`	`1.0.138`	up to date
serde_yaml	`^0.8.21`	`0.9.34+deprecated`	out of date
serde	`^1.0`	`1.0.217`	up to date
thiserror	`^1.0.29`	`2.0.11`	out of date
askama	`^0.12`	`0.12.1`	up to date
textwrap	`^0.14.2`	`0.16.1`	out of date
heck	`^0.3.3`	`0.5.0`	out of date
unicode-segmentation	`^1.8.0`	`1.12.0`	up to date
url	`^2`	`2.5.4`	up to date
reqwest	`^0.11`	`0.12.12`	out of date
glob	`^0.3.0`	`0.3.2`	up to date
uniffi	`^0.28.2`	`0.29.0`	out of date
cfg-if	`^1.0.0`	`1.0.0`	up to date
console	`^0.15.5`	`0.15.10`	up to date
lazy_static	`^1.4`	`1.5.0`	up to date
email_address	`^0.2.4`	`0.2.9`	up to date
sha2	`^0.10`	`0.10.8`	up to date
itertools	`^0`	`0.14.0`	up to date

Dev dependencies

(2 total, 1 outdated)

Crate	Required	Latest	Status
tempfile	`^3`	`3.17.0`	up to date
jsonschema	`^0.17`	`0.29.0`	out of date

Build dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date

Crate `payload-support`

Dependencies

(3 total, all up-to-date)

Crate	Required	Latest	Status
serde	`^1`	`1.0.217`	up to date
serde_derive	`^1`	`1.0.217`	up to date
serde_json	`^1`	`1.0.138`	up to date

Crate `rand_rccrypto`

Dependencies

(2 total, 2 outdated)

Crate	Required	Latest	Status
rand	`^0.8`	`0.9.0`	out of date
rand_core	`^0.6`	`0.9.1`	out of date

Crate `rate-limiter`

No external dependencies! 🙌

Crate `restmail-client`

Dependencies

(4 total, 1 outdated)

Crate	Required	Latest	Status
thiserror	`^1.0`	`2.0.11`	out of date
log	`^0.4`	`0.4.25`	up to date
serde_json	`^1`	`1.0.138`	up to date
url	`^2.2`	`2.5.4`	up to date

Crate `rc_crypto`

Dependencies

(5 total, 2 outdated)

Crate	Required	Latest	Status
base64	`^0.21`	`0.22.1`	out of date
hex	`^0.4`	`0.4.3`	up to date
thiserror	`^1.0`	`2.0.11`	out of date
hawk	`^5`	`5.0.1`	up to date
ece	`^2.3`	`2.3.1`	up to date

Dev dependencies

(1 total, all up-to-date)

Crate	Required	Latest	Status
ece	`^2.0`	`2.3.1`	up to date

Crate `nss`

Dependencies

(5 total, 2 outdated)

Crate	Required	Latest	Status
base64	`^0.21`	`0.22.1`	out of date
thiserror	`^1.0`	`2.0.11`	out of date
serde	`^1`	`1.0.217`	up to date
serde_derive	`^1`	`1.0.217`	up to date
once_cell	`^1.20.2`	`1.20.3`	up to date

Crate `nss_build_common`

No external dependencies! 🙌

Crate `nss_sys`

Dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
libsqlite3-sys	`^0.28.0`	`0.31.0`	out of date

Crate `systest`

Dependencies

(1 total, all up-to-date)

Crate	Required	Latest	Status
libc	`^0.2`	`0.2.169`	up to date

Build dependencies

(1 total, all up-to-date)

Crate	Required	Latest	Status
ctest2	`^0.4`	`0.4.10`	up to date

Crate `rust-log-forwarder`

Dependencies

(3 total, 1 outdated)

Crate	Required	Latest	Status
log	`^0.4`	`0.4.25`	up to date
parking_lot	`>=0.11, <=0.12`	`0.12.3`	up to date
uniffi	`^0.28.2`	`0.29.0`	out of date

Build dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date

Crate `sql-support`

Dependencies

(6 total, 2 outdated)

Crate	Required	Latest	Status
log	`^0.4`	`0.4.25`	up to date
lazy_static	`^1.4`	`1.5.0`	up to date
thiserror	`^1.0`	`2.0.11`	out of date
tempfile	`^3.1.0`	`3.17.0`	up to date
parking_lot	`>=0.11, <=0.12`	`0.12.3`	up to date
rusqlite	`^0.31.0`	`0.33.0`	out of date

Dev dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
env_logger	`^0.10`	`0.11.6`	out of date

Crate `types`

Dependencies

(4 total, 1 outdated)

Crate	Required	Latest	Status
rusqlite	`^0.31.0`	`0.33.0`	out of date
serde	`^1`	`1.0.217`	up to date
serde_derive	`^1`	`1.0.217`	up to date
serde_json	`^1`	`1.0.138`	up to date

Crate `viaduct-reqwest`

Dependencies

(3 total, 1 outdated)

Crate	Required	Latest	Status
reqwest	`^0.11`	`0.12.12`	out of date
log	`^0.4`	`0.4.25`	up to date
once_cell	`^1.5`	`1.20.3`	up to date

Crate `sync_manager`

Dependencies

(10 total, 2 outdated)

Crate	Required	Latest	Status
thiserror	`^1.0`	`2.0.11`	out of date
anyhow	`^1.0`	`1.0.95`	up to date
lazy_static	`^1.4`	`1.5.0`	up to date
log	`^0.4`	`0.4.25`	up to date
url	`^2.2`	`2.5.4`	up to date
serde	`^1`	`1.0.217`	up to date
serde_derive	`^1`	`1.0.217`	up to date
serde_json	`^1`	`1.0.138`	up to date
parking_lot	`>=0.11, <=0.12`	`0.12.3`	up to date
uniffi	`^0.28.2`	`0.29.0`	out of date

Build dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date

Crate `sync15`

Dependencies

(12 total, 3 outdated)

Crate	Required	Latest	Status
anyhow	`^1.0`	`1.0.95`	up to date
base16	`^0.2`	`0.2.1`	up to date
base64	`^0.21`	`0.22.1`	out of date
lazy_static	`^1.4`	`1.5.0`	up to date
log	`^0.4`	`0.4.25`	up to date
serde	`^1`	`1.0.217`	up to date
serde_derive	`^1`	`1.0.217`	up to date
serde_json	`^1`	`1.0.138`	up to date
serde_path_to_error	`^0.1`	`0.1.16`	up to date
thiserror	`^1.0`	`2.0.11`	out of date
uniffi	`^0.28.2`	`0.29.0`	out of date
url	`^2`	`2.5.4`	up to date

Dev dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
env_logger	`^0.10`	`0.11.6`	out of date

Build dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date

Crate `tabs`

Dependencies

(10 total, 3 outdated)

Crate	Required	Latest	Status
anyhow	`^1.0`	`1.0.95`	up to date
lazy_static	`^1.4`	`1.5.0`	up to date
log	`^0.4`	`0.4.25`	up to date
rusqlite	`^0.31.0`	`0.33.0`	out of date
serde	`^1`	`1.0.217`	up to date
serde_derive	`^1`	`1.0.217`	up to date
serde_json	`^1`	`1.0.138`	up to date
thiserror	`^1.0`	`2.0.11`	out of date
uniffi	`^0.28.2`	`0.29.0`	out of date
url	`^2`	`2.5.4`	up to date

Dev dependencies

(2 total, 1 outdated)

Crate	Required	Latest	Status
env_logger	`^0.10.0`	`0.11.6`	out of date
tempfile	`^3.1`	`3.17.0`	up to date

Build dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date

Crate `viaduct`

Dependencies

(9 total, 2 outdated)

Crate	Required	Latest	Status
url	`^2`	`2.5.4`	up to date
log	`^0.4`	`0.4.25`	up to date
serde	`^1`	`1.0.217`	up to date
serde_json	`^1`	`1.0.138`	up to date
once_cell	`^1.5`	`1.20.3`	up to date
parking_lot	`>=0.11, <=0.12`	`0.12.3`	up to date
prost	`^0.12`	`0.13.5`	out of date
ffi-support	`^0.4`	`0.4.4`	up to date
thiserror	`^1.0`	`2.0.11`	out of date

Crate `webext-storage`

Dependencies

(12 total, 3 outdated)

Crate	Required	Latest	Status
anyhow	`^1.0`	`1.0.95`	up to date
thiserror	`^1.0`	`2.0.11`	out of date
ffi-support	`^0.4`	`0.4.4`	up to date
lazy_static	`^1.4`	`1.5.0`	up to date
log	`^0.4`	`0.4.25`	up to date
parking_lot	`>=0.11, <=0.12`	`0.12.3`	up to date
rusqlite	`^0.31.0`	`0.33.0`	out of date
serde	`^1`	`1.0.217`	up to date
serde_json	`^1`	`1.0.138`	up to date
serde_derive	`^1`	`1.0.217`	up to date
uniffi	`^0.28.2`	`0.29.0`	out of date
url	`^2.1`	`2.5.4`	up to date

Dev dependencies

(3 total, 1 outdated)

Crate	Required	Latest	Status
env_logger	`^0.10`	`0.11.6`	out of date
tempfile	`^3`	`3.17.0`	up to date
serde_json	`^1`	`1.0.138`	up to date

Build dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date

Crate `webext-storage-ffi`

Dependencies

(4 total, all up-to-date)

Crate	Required	Latest	Status
lazy_static	`^1.4.0`	`1.5.0`	up to date
log	`^0.4`	`0.4.25`	up to date
ffi-support	`^0.4`	`0.4.4`	up to date
serde_json	`^1`	`1.0.138`	up to date

Crate `cirrus`

Dependencies

(1 total, all up-to-date)

Crate	Required	Latest	Status
lazy_static	`^1.4`	`1.5.0`	up to date

Crate `nimbus-experimenter`

No external dependencies! 🙌

Crate `megazord`

Dependencies

(1 total, all up-to-date)

Crate	Required	Latest	Status
lazy_static	`^1.4`	`1.5.0`	up to date

Crate `megazord_ios`

No external dependencies! 🙌

Crate `megazord_focus`

No external dependencies! 🙌

Crate `protobuf-gen`

Dependencies

(5 total, 3 outdated)

Crate	Required	Latest	Status
clap	`^2.34`	`4.5.29`	out of date
prost-build	`^0.12`	`0.13.5`	out of date
serde	`^1`	`1.0.217`	up to date
serde_derive	`^1`	`1.0.217`	up to date
toml	`^0.5`	`0.8.20`	out of date

Crate `embedded-uniffi-bindgen`

Dependencies

(1 total, 1 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date

Crate `start-bindings`

Dependencies

(8 total, 3 outdated, 1 possibly insecure)

Crate	Required	Latest	Status
anyhow	`^1`	`1.0.95`	up to date
camino	`^1`	`1.1.9`	up to date
cargo_metadata	`^0.15`	`0.19.1`	out of date
clap	`^4.2`	`4.5.29`	up to date
rinja	`^0.3.3`	`0.3.5`	up to date
serde_yaml ⚠️	`^0.8`	`0.9.34+deprecated`	out of date
toml	`^0.5`	`0.8.20`	out of date
toml_edit	`^0.22.21`	`0.22.24`	up to date

Crate `uniffi-bindgen-library-mode`

Dependencies

(6 total, 3 outdated)

Crate	Required	Latest	Status
uniffi	`^0.28.2`	`0.29.0`	out of date
uniffi_bindgen	`^0.28.2`	`0.29.0`	out of date
clap	`^4`	`4.5.29`	up to date
cargo_metadata	`^0.15`	`0.19.1`	out of date
camino	`^1`	`1.1.9`	up to date
anyhow	`^1`	`1.0.95`	up to date

Crate `swift_components_docs`

No external dependencies! 🙌

Crate `firefox-versioning`

Dependencies

(2 total, 1 outdated)

Crate	Required	Latest	Status
serde_json	`^1.0`	`1.0.138`	up to date
thiserror	`^1.0`	`2.0.11`	out of date

Crate `error-support-macros`

Dependencies

(3 total, all up-to-date)

Crate	Required	Latest	Status
syn	`^2.0`	`2.0.98`	up to date
quote	`^1.0`	`1.0.38`	up to date
proc-macro2	`^1.0`	`1.0.93`	up to date

Security Vulnerabilities

`serde_yaml`: Uncontrolled recursion leads to abort in deserialization

RUSTSEC-2018-0005

Affected versions of this crate did not properly check for recursion while deserializing aliases.

This allows an attacker to make a YAML file with an alias referring to itself causing an abort.

The flaw was corrected by checking the recursion depth.

`chrono`: Potential segfault in `localtime_r` invocations

RUSTSEC-2020-0159

Impact

Unix-like operating systems may segfault due to dereferencing a dangling pointer in specific circumstances. This requires an environment variable to be set in a different thread than the affected functions. This may occur without the user's knowledge, notably in a third-party library.

Workarounds

No workarounds are known.

References

time-rs/time#293

`whoami`: Stack buffer overflow with whoami on several Unix platforms

RUSTSEC-2024-0020

With versions of the whoami crate >= 0.5.3 and < 1.5.0, calling any of these functions leads to an immediate stack buffer overflow on illumos and Solaris:

whoami::username
whoami::realname
whoami::username_os
whoami::realname_os

With versions of the whoami crate >= 0.5.3 and < 1.0.1, calling any of the above functions also leads to a stack buffer overflow on these platforms:

Bitrig
DragonFlyBSD
FreeBSD
NetBSD
OpenBSD

This occurs because of an incorrect definition of the passwd struct on those platforms.

As a result of this issue, denial of service and data corruption have both been observed in the wild. The issue is possibly exploitable as well.

This vulnerability also affects other Unix platforms that aren't Linux or macOS.

This issue has been addressed in whoami 1.5.0.

For more information, see this GitHub issue.

mozilla / application-services

Crate as-ohttp-client

Dependencies

Build dependencies

Crate autofill

Dependencies

Dev dependencies

Build dependencies

Crate crashtest

Dependencies

Build dependencies

Crate example-component

Dependencies

Crate fxa-client

Dependencies

Dev dependencies

Build dependencies

Crate logins

Dependencies

Dev dependencies

Build dependencies

Crate merino

Dependencies

Build dependencies

Crate nimbus-sdk

Dependencies

Dev dependencies

Build dependencies

Crate places

Dependencies

Dev dependencies

Build dependencies

Crate push

Dependencies

Dev dependencies

Build dependencies

Crate relevancy

Dependencies

Build dependencies

Crate remote_settings

Dependencies

Dev dependencies

Build dependencies

Crate search

Dependencies

Dev dependencies

Build dependencies

Crate suggest

Dependencies

Dev dependencies

Build dependencies

Crate error-support

Dependencies

Build dependencies

Crate error-support-tests

Dev dependencies

Crate find-places-db

Dependencies

Crate sync-guid

Dependencies

Dev dependencies

Crate interrupt-support

Dependencies

Build dependencies

Crate jwcrypto

Dependencies

Crate nimbus-cli

Dependencies

Crate nimbus-fml

Dependencies

Dev dependencies

Build dependencies

Crate payload-support

Dependencies

Crate rand_rccrypto

Dependencies

Crate rate-limiter

Crate restmail-client

Dependencies

Crate rc_crypto

Crate `as-ohttp-client`

Crate `autofill`

Crate `crashtest`

Crate `example-component`

Crate `fxa-client`

Crate `logins`

Crate `merino`

Crate `nimbus-sdk`

Crate `places`

Crate `push`

Crate `relevancy`

Crate `remote_settings`

Crate `search`

Crate `suggest`

Crate `error-support`

Crate `error-support-tests`

Crate `find-places-db`

Crate `sync-guid`

Crate `interrupt-support`

Crate `jwcrypto`

Crate `nimbus-cli`

Crate `nimbus-fml`

Crate `payload-support`

Crate `rand_rccrypto`

Crate `rate-limiter`

Crate `restmail-client`

Crate `rc_crypto`

Crate `nss`

Crate `nss_build_common`

Crate `nss_sys`

Crate `systest`

Crate `rust-log-forwarder`

Crate `sql-support`

Crate `types`

Crate `viaduct-reqwest`

Crate `sync_manager`

Crate `sync15`

Crate `tabs`

Crate `viaduct`

Crate `webext-storage`

Crate `webext-storage-ffi`

Crate `cirrus`

Crate `nimbus-experimenter`

Crate `megazord`

Crate `megazord_ios`

Crate `megazord_focus`

Crate `protobuf-gen`

Crate `embedded-uniffi-bindgen`

Crate `start-bindings`

Crate `uniffi-bindgen-library-mode`

Crate `swift_components_docs`

Crate `firefox-versioning`

Crate `error-support-macros`

`serde_yaml`: Uncontrolled recursion leads to abort in deserialization

`chrono`: Potential segfault in `localtime_r` invocations

`whoami`: Stack buffer overflow with whoami on several Unix platforms