fred.rs icon indicating copy to clipboard operation
fred.rs copied to clipboard
verified publisher icon azuqua

[SECURITY] Bumping pretty_env_logger dependency

Open Elizafox opened this issue 2 years ago • 0 comments

pretty_env_logger 0.4.0 depends on env_logger 0.7.1, which depends on atty.

atty has a long-standing security problem with unaligned reads and has not been fixed, it is likely abandoned. This is a long-standing issue.

Bumping pretty_env_logger to 0.5.0 will resolve the security problem.

Elizafox avatar Jul 12 '23 10:07 Elizafox