zebra
zebra copied to clipboard
Published
20 hours ago •
ZcashFoundation
ZcashFoundation
build(deps): bump chrono from 0.4.19 to 0.4.20
Motivation
chrono has fixed rust security advisory:
https://rustsec.org/advisories/RUSTSEC-2020-0159
It has also fixed some panic bugs.
Solution
- Bump chrono to 0.4.20
Related build / security fixes:
- Drop old time crate dependency from chrono
Related clippy fixes:
- Fix clippy::assign_op_pattern
- Update deprecated constant names
Review
Zebra isn't actually vulnerable to this security issue in our direct use of chrono, but tracing might be, so we should get this merged before the next release.
Reviewer Checklist
- [ ] Existing tests pass
Codecov Report
Merging #4898 (5b021d9) into main (1d861b0) will decrease coverage by
0.00%. The diff coverage is100.00%.
@@ Coverage Diff @@
## main #4898 +/- ##
==========================================
- Coverage 79.04% 79.04% -0.01%
==========================================
Files 309 309
Lines 38781 38783 +2
==========================================
+ Hits 30656 30657 +1
- Misses 8125 8126 +1
![codecov[bot] avatar](https://avatars.githubusercontent.com/in/254?v=4 "Published by a pub.dev verified publisher"){kind=small}
![mergify[bot] avatar](https://avatars.githubusercontent.com/in/10562?v=4 "Published by a pub.dev verified publisher"){kind=small}
