-
-
Notifications
You must be signed in to change notification settings - Fork 283
Commit
This is a potential security vulnerability, particularly as the binaries have not yet been reproduced. cc serde-rs/serde#2538
- Loading branch information
There are no files selected for viewing
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -5,7 +5,7 @@ resolver = "2" | |
|
||
[workspace.dependencies] | ||
time-core = { path = "time-core", version = "=0.1.1" } | ||
time-macros = { path = "time-macros", version = "=0.2.11" } | ||
time-macros = { path = "time-macros", version = "=0.2.12" } | ||
|
||
criterion = { version = "0.5.1", default-features = false } | ||
deranged = { version = "0.3.7", default-features = false } | ||
|
@@ -16,7 +16,8 @@ num_threads = "0.1.2" | |
quickcheck = { version = "1.0.3", default-features = false } | ||
quickcheck_macros = "1.0.0" | ||
rand = { version = "0.8.4", default-features = false } | ||
serde = { version = "1.0.126", default-features = false } | ||
# <= 1.0.171 due to serde-rs/serde#2538 | ||
serde = { version = ">= 1.0.126, <= 1.0.171", default-features = false } | ||
This comment has been minimized.
Sorry, something went wrong.
This comment has been minimized.
Sorry, something went wrong.
jhpratt
Author
Member
|
||
serde_json = "1.0.68" | ||
serde_test = "1.0.126" | ||
trybuild = "1.0.68" | ||
|
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,6 +1,6 @@ | ||
[package] | ||
name = "time-macros" | ||
version = "0.2.11" | ||
version = "0.2.12" | ||
authors = ["Jacob Pratt <[email protected]>", "Time contributors"] | ||
edition = "2021" | ||
rust-version = "1.67.0" | ||
|
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,6 +1,6 @@ | ||
[package] | ||
name = "time" | ||
version = "0.3.25" | ||
version = "0.3.26" | ||
authors = ["Jacob Pratt <[email protected]>", "Time contributors"] | ||
edition = "2021" | ||
rust-version = "1.67.0" | ||
|
Please don't as this can create unbuildable combinations of dependencies
See https://doc.rust-lang.org/nightly/cargo/reference/specifying-dependencies.html#multiple-requirements