Skip to content

Commit

Permalink
fix: Remove vulnerable time-0.1.x chrono dependency (#4750)
Browse files Browse the repository at this point in the history 
The dependency is optional for chrono and enabled by default for
backward compatibility only.

See: https://rustsec.org/advisories/RUSTSEC-2020-0071
See: https://github.com/chronotope/chrono/blob/v0.4.23/CHANGELOG.md#0416
  • Loading branch information
@ixti
ixti committed Dec 23, 2022
1 parent d32f115 commit 255f91c
Show file tree
Hide file tree
Showing 3 changed files with 5 additions and 30 deletions.
7 changes: 0 additions & 7 deletions .cargo/audit.toml
View file

This file was deleted.

26 changes: 4 additions & 22 deletions Cargo.lock
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion Cargo.toml
View file
Expand Up @@ -42,7 +42,7 @@ git-repository-max-perf = ["git-features/zlib-ng", "git-repository/fast-sha1"]
git-repository-faster = ["git-features/zlib-stock", "git-repository/fast-sha1"]

[dependencies]
chrono = { version = "0.4.23", features = ["clock", "std"] }
chrono = { version = "0.4.23", default-features = false, features = ["clock", "std", "wasmbind"] }
clap = { version = "4.0.32", features = ["derive", "cargo", "unicode"] }
clap_complete = "4.0.7"
dirs-next = "2.0.0"
Expand Down

0 comments on commit 255f91c

Please sign in to comment.