Coder Social home page Coder Social logo

rust_skeleton_webapi_postgresql_redis's People

Contributors

giancarlo1974 avatar renovate[bot] avatar

Watchers

avatar avatar

rust_skeleton_webapi_postgresql_redis's Issues

RUSTSEC-2023-0001: reject_remote_clients Configuration corruption

reject_remote_clients Configuration corruption

Details
Package tokio
Version 1.19.2
URL GHSA-7rrj-xr53-82p7
Date 2023-01-04
Patched versions >=1.18.4, <1.19.0,>=1.20.3, <1.21.0,>=1.23.1
Unaffected versions <1.7.0

On Windows, configuring a named pipe server with pipe_mode will force ServerOptions::reject_remote_clients as false.

This drops any intended explicit configuration for the reject_remote_clients that may have been set as true previously.

The default setting of reject_remote_clients is normally true meaning the default is also overriden as false.

Workarounds

Ensure that pipe_mode is set first after initializing a ServerOptions. For example:

let mut opts = ServerOptions::new();
opts.pipe_mode(PipeMode::Message);
opts.reject_remote_clients(true);

See advisory page for additional details.

RUSTSEC-2022-0077: `claim` is Unmaintained

claim is Unmaintained

Details
Status unmaintained
Package claim
Version 0.5.0
URL svartalf/rust-claim#12
Date 2022-12-04

The last release was in February 2021, almost two years ago.

The maintainer has been unresponsive regarding this crate for over a year.

A pending issue with claim's dependencies has made the crate difficul to use

Possible Alternative(s)

The below list has not been vetted in any way and may or may not contain alternatives;

  • claims, a direct fork of the claim crate

See advisory page for additional details.

Dependency Dashboard

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.

Rate-Limited

These updates are currently rate-limited. Click on a checkbox below to force their creation now.

  • Update Rust crate reqwest to 0.11.24
  • Update Rust crate serde to 1.0.197
  • Update Rust crate validator to 0.16.1
  • Update Rust crate actix-session to 0.9.0
  • Update Rust crate argon2 to 0.5
  • Update Rust crate config to 0.14
  • Update Rust crate fake to ~2.9.2
  • Update Rust crate linkify to 0.10.0
  • Update Rust crate tracing-actix-web to 0.7
  • Update Rust crate tracing-log to 0.2.0
  • Update Rust crate wiremock to 0.6
  • Update actions/cache action to v4
  • Update actions/checkout action to v4
  • Update postgres Docker tag to v16
  • ๐Ÿ” Create all rate-limited PRs at once ๐Ÿ”

Open

These updates have all been created already. Click a checkbox below to force a retry/rebase of any.

Ignored or Blocked

These are blocked by an existing closed PR and will not be recreated unless you click a checkbox below.

Detected dependencies

cargo
Cargo.toml
  • actix-web 4
  • tokio 1
  • serde 1.0.144
  • config 0.13
  • sqlx 0.6.1
  • uuid 1
  • reqwest 0.11.12
  • log 0.4.17
  • tracing 0.1.36
  • tracing-subscriber 0.3
  • tracing-bunyan-formatter 0.3
  • tracing-log 0.1.3
  • thiserror 1.0.34
  • serde-aux 4
  • unicode-segmentation 1.9.0
  • rand 0.8
  • anyhow 1.0.64
  • base64 0.13.0
  • argon2 0.4
  • validator 0.16.0
  • tracing-actix-web 0.6
  • secrecy 0.8
  • actix-web-flash-messages 0.4
  • actix-session 0.7.2
  • serde_json 1
  • actix-web-lab 0.17.0
  • once_cell 1.14.0
  • claim 0.5.0
  • quickcheck 0.9.2
  • quickcheck_macros 1.0.0
  • fake ~2.3.0
  • wiremock 0.5
  • serde_json 1.0.85
  • linkify 0.9.0
  • serde_urlencoded 0.7.1
dockerfile
Dockerfile
github-actions
.github/workflows/audit-on-push.yml
  • actions/checkout v3
  • actions-rs/audit-check v1
.github/workflows/general.yml
  • actions/checkout v3
  • actions-rs/toolchain v1
  • actions/cache v3
  • postgres 14-alpine
.github/workflows/scheduled-audit.yml
  • actions/checkout v3
  • actions-rs/audit-check v1
  • Check this box to trigger a request for Renovate to run again on this repository

RUSTSEC-2021-0139: ansi_term is Unmaintained

ansi_term is Unmaintained

Details
Status unmaintained
Package ansi_term
Version 0.12.1
URL ogham/rust-ansi-term#72
Date 2021-08-18

The maintainer has adviced this crate is deprecated and will not
receive any maintenance.

The crate does not seem to have much dependencies and may or may not be ok to use as-is.

Last release seems to have been three years ago.

Possible Alternative(s)

The below list has not been vetted in any way and may or may not contain alternatives;

See advisory page for additional details.

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.