zebra
zebra copied to clipboard
build(deps): bump chrono from 0.4.19 to 0.4.20
Motivation
chrono
has fixed rust security advisory:
https://rustsec.org/advisories/RUSTSEC-2020-0159
It has also fixed some panic bugs.
Solution
- Bump chrono to 0.4.20
Related build / security fixes:
- Drop old time crate dependency from chrono
Related clippy fixes:
- Fix clippy::assign_op_pattern
- Update deprecated constant names
Review
Zebra isn't actually vulnerable to this security issue in our direct use of chrono
, but tracing
might be, so we should get this merged before the next release.
Reviewer Checklist
- [ ] Existing tests pass
Codecov Report
Merging #4898 (5b021d9) into main (1d861b0) will decrease coverage by
0.00%
. The diff coverage is100.00%
.
@@ Coverage Diff @@
## main #4898 +/- ##
==========================================
- Coverage 79.04% 79.04% -0.01%
==========================================
Files 309 309
Lines 38781 38783 +2
==========================================
+ Hits 30656 30657 +1
- Misses 8125 8126 +1
We're seeing panics in Zebra, so this is now a high priority.
@mergifyio update
update
✅ Branch has been successfully updated
@mergifyio update
update
✅ Branch has been successfully updated
@mergifyio update
update
✅ Branch has been successfully updated
@mergifyio update
update