Bump clap from 4.5.29 to 4.5.30 (#67) #83
GitHub Actions / Security audit
succeeded
Feb 18, 2025 in 0s
Security advisories found
2 unmaintained, 1 unsound
Details
Warnings
RUSTSEC-2024-0388
derivativeis unmaintained; consider using an alternative
| Details | |
|---|---|
| Status | unmaintained |
| Package | derivative |
| Version | 2.2.0 |
| URL | mcarton/rust-derivative#117 |
| Date | 2024-06-26 |
The derivative crate is no longer maintained.
Consider using any alternative, for instance:
RUSTSEC-2020-0036
failure is officially deprecated/unmaintained
| Details | |
|---|---|
| Status | unmaintained |
| Package | failure |
| Version | 0.1.8 |
| URL | rust-lang-deprecated/failure#347 |
| Date | 2020-05-02 |
The failure crate is officially end-of-life: it has been marked as deprecated
by the former maintainer, who has announced that there will be no updates or
maintenance work on it going forward.
The following are some suggested actively developed alternatives to switch to:
RUSTSEC-2019-0036
Type confusion if private_get_type_id is overridden
| Details | |
|---|---|
| Status | unsound |
| Package | failure |
| Version | 0.1.8 |
| URL | rust-lang-deprecated/failure#336 |
| Date | 2019-11-13 |
Safe Rust code can implement malfunctioning __private_get_type_id__ and cause
type confusion when downcasting, which is an undefined behavior.
Users who derive Fail trait are not affected.
Loading