$ cargo audit
Fetching advisory database from `https://github.com/RustSec/advisory-db.git`
Loaded 745 security advisories (from /home/user/.cargo/advisory-db)
Updating crates.io index
Scanning Cargo.lock for vulnerabilities (386 crate dependencies)
Crate: rsa
Version: 0.9.8
Title: Marvin Attack: potential key recovery through timing sidechannels
Date: 2023-11-22
ID: RUSTSEC-2023-0071
URL: https://rustsec.org/advisories/RUSTSEC-2023-0071
Severity: 5.9 (medium)
Solution: No fixed upgrade is available!
Dependency tree:
rsa 0.9.8
├── ssh-key 0.6.7
│ ├── russh-keys 0.45.0
│ │ ├── russh 0.45.0
│ │ │ └── onekeepass-core 0.17.0
│ │ └── onekeepass-core 0.17.0
│ └── russh 0.45.0
└── russh-keys 0.45.0
Crate: atty
Version: 0.2.14
Warning: unmaintained
Title: `atty` is unmaintained
Date: 2024-09-25
ID: RUSTSEC-2024-0375
URL: https://rustsec.org/advisories/RUSTSEC-2024-0375
Dependency tree:
atty 0.2.14
└── env_logger 0.8.4
└── onekeepass-core 0.17.0
Crate: difference
Version: 2.0.0
Warning: unmaintained
Title: difference is unmaintained
Date: 2020-12-20
ID: RUSTSEC-2020-0095
URL: https://rustsec.org/advisories/RUSTSEC-2020-0095
Dependency tree:
difference 2.0.0
└── predicates 1.0.8
└── mockall 0.10.2
└── onekeepass-core 0.17.0
Crate: paste
Version: 1.0.15
Warning: unmaintained
Title: paste - no longer maintained
Date: 2024-10-07
ID: RUSTSEC-2024-0436
URL: https://rustsec.org/advisories/RUSTSEC-2024-0436
Dependency tree:
paste 1.0.15
└── rmp 0.8.14
└── rmp-serde 1.3.0
└── onekeepass-core 0.17.0
Crate: atty
Version: 0.2.14
Warning: unsound
Title: Potential unaligned read
Date: 2021-07-04
ID: RUSTSEC-2021-0145
URL: https://rustsec.org/advisories/RUSTSEC-2021-0145
error: 1 vulnerability found!
warning: 4 allowed warnings found
