Skip to content

Commit 9ffe843

Browse files
iamquang95iamquang95
committed
fix: upgrade dependencies and fix RUSTSEC-2026-0098
1 parent a6dc4c1 commit 9ffe843

File tree

2 files changed

+7
-3
lines changed

2 files changed

+7
-3
lines changed

Cargo.lock

Lines changed: 3 additions & 3 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

deny.toml

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -30,6 +30,10 @@ ignore = [
3030
# (stuck on 0.7.3) and `alloy-signer-local` (stuck on 0.8.5). Neither is
3131
# reachable from Pluto's loggers. Remove once upstream bumps to >=0.9.3.
3232
{ id = "RUSTSEC-2026-0097", reason = "transitive rand <0.9.3 via cuckoofilter and alloy-signer-local; not triggerable from our code" },
33+
# `multihash` 0.19.x still requires `core2` 0.4.0 and libp2p 0.56 has no
34+
# compatible update that removes it yet. Remove once upstream publishes a
35+
# non-yanked replacement in the current dependency line.
36+
{ crate = "core2@0.4.0", reason = "transitive via multihash/libp2p; no compatible non-yanked release available yet" },
3337
]
3438
unmaintained = "workspace"
3539

0 commit comments

Comments
 (0)