This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate canon_collision

Dependencies

(28 total, 11 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 byteorder^11.5.0up to date
 chrono ⚠️^0.40.4.38maybe insecure
 strum^0.240.26.3out of date
 strum_macros^0.240.26.4out of date
 getopts^0.20.2.21up to date
 log^0.40.4.22up to date
 lyon^0.171.0.1out of date
 rand^0.80.8.5up to date
 rand_chacha^0.30.3.1up to date
 serde^11.0.215up to date
 serde_derive^11.0.215up to date
 serde_json^11.0.133up to date
 slotmap^11.0.7up to date
 treeflection^0.10.1.35up to date
 treeflection_derive^0.40.4.0up to date
 winit^0.260.30.5out of date
 winit_input_helper^0.120.16.0out of date
 gltf^0.161.4.1out of date
 cgmath^0.180.18.0up to date
 futures^0.30.3.31up to date
 bytemuck^11.20.0up to date
 vk-shader-macros^0.20.2.10up to date
 wgpu_glyph^0.15.10.22.0out of date
 wgpu^0.1123.0.0out of date
 raw-window-handle^0.40.6.2out of date
 spin_sleep^11.2.1up to date
 kira^0.50.9.6out of date
 audiotags^0.20.5.0out of date

Crate canon_collision_lib

Dependencies

(23 total, 9 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 backtrace^0.30.3.74up to date
 chrono ⚠️^0.40.4.38maybe insecure
 dirs-next^22.0.0up to date
 strum^0.240.26.3out of date
 strum_macros^0.240.26.4out of date
 env_logger^0.90.11.5out of date
 gilrs-core^0.30.6.0out of date
 rusb^0.80.9.4out of date
 log^0.40.4.22up to date
 os_type^22.6.0up to date
 rand^0.80.8.5up to date
 serde^11.0.215up to date
 serde_derive^11.0.215up to date
 serde_json^11.0.133up to date
 serde_cbor^0.110.11.2up to date
 bincode^11.3.3up to date
 toml^0.50.8.19out of date
 treeflection^0.10.1.35up to date
 treeflection_derive^0.40.4.0up to date
 uuid^1.01.11.0up to date
 winit^0.260.30.5out of date
 winit_input_helper^0.120.16.0out of date
 hotwatch^0.40.5.0out of date

Crate canon_collision_hot_reload

Dependencies

(1 total, 1 outdated)

CrateRequiredLatestStatus
 hotwatch^0.40.5.0out of date

Crate cc_cli

No external dependencies! 🙌

Crate cc_map_controllers

Dependencies

(4 total, 2 outdated)

CrateRequiredLatestStatus
 gtk^0.140.18.1out of date
 gilrs-core^0.30.6.0out of date
 serde_json^1.01.0.133up to date
 uuid^1.01.11.0up to date

Crate panic_handler

Dependencies

(1 total, 1 outdated)

CrateRequiredLatestStatus
 gtk^0.140.18.1out of date

Crate package_upgrader

Dependencies

(2 total, 1 outdated)

CrateRequiredLatestStatus
 serde_cbor^0.110.11.2up to date
 strum^0.240.26.3out of date

Crate generate_hurtboxes

Dependencies

(3 total, 1 outdated)

CrateRequiredLatestStatus
 getopts^0.20.2.21up to date
 cgmath^0.180.18.0up to date
 gltf^0.161.4.1out of date

Security Vulnerabilities

chrono: Potential segfault in `localtime_r` invocations

RUSTSEC-2020-0159

Impact

Unix-like operating systems may segfault due to dereferencing a dangling pointer in specific circumstances. This requires an environment variable to be set in a different thread than the affected functions. This may occur without the user's knowledge, notably in a third-party library.

Workarounds

No workarounds are known.

References