Skip to content

Commit 9377e5d

Browse files
haasonsaasclaude
haasonsaas
and
claude
committed
fix: update bytes and tracing-subscriber for security advisories
- bytes 1.10.1 -> 1.11.1 (RUSTSEC-2026-0007: integer overflow) - tracing-subscriber 0.3.19 -> 0.3.20 - Ignore RUSTSEC-2023-0071 (rsa Marvin Attack) - no fix available, comes from sqlx-mysql which we don't use Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
1 parent 2deaa22 commit 9377e5d

File tree

2 files changed

+21
-61
lines changed

2 files changed

+21
-61
lines changed

Cargo.lock

Lines changed: 17 additions & 61 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

audit.toml

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,4 @@
1+
[advisories]
2+
# rsa: Marvin Attack timing sidechannel - no fix available.
3+
# Dependency comes from sqlx-mysql which we don't use (postgres only).
4+
ignore = ["RUSTSEC-2023-0071"]

0 commit comments

Comments
 (0)