feat: small fixes, truncation for docker output, default bedrock mode… #272
GitHub Actions / Security audit
failed
Jan 11, 2026 in 0s
Security advisories found
1 advisories, 1 unmaintained
Details
Vulnerabilities
RUSTSEC-2025-0140
Non-utf8 String can be created with
TimeBuf::as_str
| Details | |
|---|---|
| Package | gix-date |
| Version | 0.10.7 |
| URL | GitoxideLabs/gitoxide#2305 |
| Date | 2025-12-29 |
| Patched versions | >=0.12.0 |
The function gix_date::parse::TimeBuf::as_str can create an illegal string containing non-utf8 characters. This violates the safety invariant of TimeBuf and can lead to undefined behavior when consuming the string.
The bug can be prevented by adding str::from_utf8 to the function TimeBuf::write.
Warnings
RUSTSEC-2025-0141
Bincode is unmaintained
| Details | |
|---|---|
| Status | unmaintained |
| Package | bincode |
| Version | 1.3.3 |
| URL | https://git.sr.ht/~stygianentity/bincode/tree/v3.0/item/README.md |
| Date | 2025-12-16 |
Due to a doxxing and harassment incident, the bincode team has taken the decision to cease development permanently.
The team considers version 1.3.3 a complete version of bincode that is not in need of any updates.
Alternatives to consider
* [wincode](https://crates.io/crates/wincode)
* [postcard](https://crates.io/crates/postcard)
* [bitcode](https://crates.io/crates/bitcode)
* [rkyv](https://crates.io/crates/rkyv)
Loading