Commit 3b22c49

committed

fix: update dependencies to resolve security vulnerabilities

Cargo.lock: - aws-lc-sys 0.37.1 -> 0.38.0 (with aws-lc-rs 1.16.0 -> 1.16.1) Addresses alerts #7, #8, #9: - PKCS7_verify Signature Validation Bypass - Timing Side-Channel in AES-CCM Tag Verification - PKCS7_verify Certificate Chain Validation Bypass editors/vscode/package-lock.json: - minimatch 3.1.2 -> 3.1.5 (alert #6: ReDoS via GLOBSTAR segments) - minimatch 10.2.1 -> 10.2.4 (alert #4: ReDoS via extglobs) - underscore 1.13.7 -> 1.13.8 (alert #10: DoS via unlimited recursion)

1 parent 2756ace commit 3b22c49Copy full SHA for 3b22c49

2 files changed

+14

-14

lines changed

Cargo.lock
editors/vscode
- package-lock.json

2 files changed

+14

-14

lines changed

`‎Cargo.lock‎`

Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

`‎editors/vscode/package-lock.json‎`

Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

Comments

(0)