This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate yourcontrols

Dependencies

(26 total, 4 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 anyhow^1.01.0.98up to date
 attohttpc^0.280.29.2out of date
 base64^0.220.22.1up to date
 bimap^0.60.6.3up to date
 byteorder^1.31.5.0up to date
 crossbeam-channel^0.50.5.15up to date
 derive_more^0.992.0.1out of date
 dotenv_codegen^0.150.15.0up to date
 dns-lookup^2.02.0.4up to date
 indexmap^2.22.9.0up to date
 log^0.40.4.27up to date
 num^0.40.4.3up to date
 retain_mut^0.10.1.9up to date
 rodio^0.200.20.1up to date
 rmp-serde^1.11.3.0up to date
 semver^1.01.0.26up to date
 serde^1.01.0.219up to date
 serde_json^1.01.0.140up to date
 serde_yaml ⚠️^0.80.9.34+deprecatedout of date
 simconnect^0.3.20.3.2up to date
 simplelog^0.120.12.2up to date
 spin_sleep^1.11.3.1up to date
 tungstenite^0.230.26.2out of date
 util^0.10.1.3up to date
 web-view^0.70.7.3up to date
 zip^2.12.6.1up to date

Build dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 winres^0.10.1.12up to date

Crate yourcontrols-net

Dependencies

(12 total, 3 outdated)

CrateRequiredLatestStatus
 crossbeam-channel^0.50.5.15up to date
 dns-lookup^1.02.0.4out of date
 dotenv^0.150.15.0up to date
 dotenv_codegen^0.150.15.0up to date
 igd^0.120.12.1up to date
 log^0.40.4.27up to date
 retain_mut^0.10.1.9up to date
 rmp-serde^1.11.3.0up to date
 serde^1.01.0.219up to date
 spin_sleep^1.01.3.1up to date
 zstd^0.120.13.3out of date
 socket2^0.40.5.9out of date

Crate yourcontrols-types

Dependencies

(7 total, 2 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 base64^0.200.22.1out of date
 crossbeam-channel^0.50.5.15up to date
 igd^0.120.12.1up to date
 rmp-serde^1.11.3.0up to date
 serde^1.01.0.219up to date
 serde_json^1.01.0.140up to date
 serde_yaml ⚠️^0.80.9.34+deprecatedout of date

Crate yourcontrols-hoster

Dependencies

(4 total, 1 outdated)

CrateRequiredLatestStatus
 dotenv^0.150.15.0up to date
 log^0.40.4.27up to date
 rmp-serde^0.151.3.0out of date
 serde^1.01.0.219up to date

Crate yourcontrols-server

Dependencies

(10 total, 2 outdated)

CrateRequiredLatestStatus
 bimap^0.60.6.3up to date
 crossbeam-channel^0.50.5.15up to date
 dotenv^0.150.15.0up to date
 log^0.40.4.27up to date
 rand^0.80.9.1out of date
 semver^1.01.0.26up to date
 simplelog^0.120.12.2up to date
 serde^1.01.0.219up to date
 rmp-serde^1.11.3.0up to date
 zstd^0.120.13.3out of date

Security Vulnerabilities

serde_yaml: Uncontrolled recursion leads to abort in deserialization

RUSTSEC-2018-0005

Affected versions of this crate did not properly check for recursion while deserializing aliases.

This allows an attacker to make a YAML file with an alias referring to itself causing an abort.

The flaw was corrected by checking the recursion depth.