You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
At Nixpkgs we recently started scanning our packaged applications for vulnerabilities reported in the advisory-db. It also reported four vulnerable packages for sub-batch. Three of these are fixed by just updating the Cargo.lock file with cargo update, the last one image is buried pretty deeply in the dependency tree and most likely doesn't affect the security of sub-batch. The build seems to run fine for me but I didn't test it any further.
Could you maybe update the package and create a new release?
The text was updated successfully, but these errors were encountered:
At Nixpkgs we recently started scanning our packaged applications for vulnerabilities reported in the advisory-db. It also reported four vulnerable packages for sub-batch. Three of these are fixed by just updating the
Cargo.lock
file withcargo update
, the last oneimage
is buried pretty deeply in the dependency tree and most likely doesn't affect the security of sub-batch. The build seems to run fine for me but I didn't test it any further.Could you maybe update the package and create a new release?
The text was updated successfully, but these errors were encountered: