This project might be open to known security vulnerabilities , which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom .
Crate yozuk
Dependencies (14 total, 1 outdated)
Dev dependencies (1 total, all up-to-date)
Crate Required Latest Status once_cell ^1.12.0
1.19.0
up to date
Build dependencies (4 total, all up-to-date)
Crate yozuk-sdk
Dependencies (11 total, 1 outdated)
Crate yozuk-model
Dependencies (13 total, 2 outdated)
Crate yozuk-wasm
Dependencies (7 total, all up-to-date)
Crate yozuk-core-skillset
Dependencies (65 total, 19 outdated, 1 possibly insecure)
Crate zuk
Dependencies (18 total, 4 outdated)
Dev dependencies (1 total, all up-to-date)
Crate Required Latest Status tempfile ^3.3.0
3.10.1
up to date
Security Vulnerabilities blurhash
: blurhash: panic on parsing crafted blurhash inputsRUSTSEC-2023-0083
Impact
The blurhash parsing code may panic due to multiple panic-guarded out-of-bounds accesses on untrusted input.
In a typical deployment, this may get triggered by feeding a maliciously crafted blurhashes over the network. These may include:
UTF-8 compliant strings containing multi-byte UTF-8 characters
Patches
The patches were released under version 0.2.0, which may require user intervention because of slight API churn.