This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate canon_collision

Dependencies

(28 total, 13 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 byteorder^11.5.0up to date
 chrono ⚠️^0.40.4.40maybe insecure
 strum^0.240.27.1out of date
 strum_macros^0.240.27.1out of date
 getopts^0.20.2.21up to date
 log^0.40.4.26up to date
 lyon^0.171.0.1out of date
 rand^0.80.9.0out of date
 rand_chacha^0.30.9.0out of date
 serde^11.0.219up to date
 serde_derive^11.0.219up to date
 serde_json^11.0.140up to date
 slotmap^11.0.7up to date
 treeflection^0.10.1.35up to date
 treeflection_derive^0.40.4.0up to date
 winit^0.260.30.9out of date
 winit_input_helper^0.120.16.0out of date
 gltf^0.161.4.1out of date
 cgmath^0.180.18.0up to date
 futures^0.30.3.31up to date
 bytemuck^11.22.0up to date
 vk-shader-macros^0.20.2.10up to date
 wgpu_glyph^0.15.10.23.0out of date
 wgpu^0.1124.0.1out of date
 raw-window-handle^0.40.6.2out of date
 spin_sleep^11.3.0up to date
 kira^0.50.10.4out of date
 audiotags^0.20.5.0out of date

Crate canon_collision_lib

Dependencies

(23 total, 11 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 backtrace^0.30.3.74up to date
 chrono ⚠️^0.40.4.40maybe insecure
 dirs-next^22.0.0up to date
 strum^0.240.27.1out of date
 strum_macros^0.240.27.1out of date
 env_logger^0.90.11.7out of date
 gilrs-core^0.30.6.3out of date
 rusb^0.80.9.4out of date
 log^0.40.4.26up to date
 os_type^22.6.0up to date
 rand^0.80.9.0out of date
 serde^11.0.219up to date
 serde_derive^11.0.219up to date
 serde_json^11.0.140up to date
 serde_cbor^0.110.11.2up to date
 bincode^12.0.1out of date
 toml^0.50.8.20out of date
 treeflection^0.10.1.35up to date
 treeflection_derive^0.40.4.0up to date
 uuid^1.01.15.1up to date
 winit^0.260.30.9out of date
 winit_input_helper^0.120.16.0out of date
 hotwatch^0.40.5.0out of date

Crate canon_collision_hot_reload

Dependencies

(1 total, 1 outdated)

CrateRequiredLatestStatus
 hotwatch^0.40.5.0out of date

Crate cc_cli

No external dependencies! 🙌

Crate cc_map_controllers

Dependencies

(4 total, 2 outdated)

CrateRequiredLatestStatus
 gtk^0.140.18.2out of date
 gilrs-core^0.30.6.3out of date
 serde_json^1.01.0.140up to date
 uuid^1.01.15.1up to date

Crate panic_handler

Dependencies

(1 total, 1 outdated)

CrateRequiredLatestStatus
 gtk^0.140.18.2out of date

Crate package_upgrader

Dependencies

(2 total, 1 outdated)

CrateRequiredLatestStatus
 serde_cbor^0.110.11.2up to date
 strum^0.240.27.1out of date

Crate generate_hurtboxes

Dependencies

(3 total, 1 outdated)

CrateRequiredLatestStatus
 getopts^0.20.2.21up to date
 cgmath^0.180.18.0up to date
 gltf^0.161.4.1out of date

Security Vulnerabilities

chrono: Potential segfault in `localtime_r` invocations

RUSTSEC-2020-0159

Impact

Unix-like operating systems may segfault due to dereferencing a dangling pointer in specific circumstances. This requires an environment variable to be set in a different thread than the affected functions. This may occur without the user's knowledge, notably in a third-party library.

Workarounds

No workarounds are known.

References