Skip to content

updated vulnerable deps #83052

New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom
Merged
merged 1 commit into from
Mar 13, 2021
Merged

updated vulnerable deps #83052

merged 1 commit into from
Mar 13, 2021

Conversation

klensy
Copy link
Contributor

@klensy klensy commented Mar 12, 2021

@rust-highfive
Copy link
Contributor

r? @Mark-Simulacrum

(rust-highfive has picked a reviewer for you, use r? to override)

@rust-highfive rust-highfive added the S-waiting-on-review Status: Awaiting review from the assignee but also interested parties. label Mar 12, 2021
@Mark-Simulacrum
Copy link
Member

Thank you for providing the links. @bors r+ rollup

@bors
Copy link
Collaborator

bors commented Mar 12, 2021

📌 Commit d480a3e has been approved by Mark-Simulacrum

@bors bors added S-waiting-on-bors Status: Waiting on bors to run and complete tests. Bors will change the label on completion. and removed S-waiting-on-review Status: Awaiting review from the assignee but also interested parties. labels Mar 12, 2021
Dylan-DPC-zz pushed a commit to Dylan-DPC-zz/rust that referenced this pull request Mar 12, 2021
@Dylan-DPC
Rollup merge of rust-lang#83052 - klensy:dep-update, r=Mark-Simulacrum
51a94c4 
updated vulnerable deps

* Updated signal-hook-registry 1.2.1 to 1.2.2, as it drops dependency on vulnerable arc-swap 0.4.7 https://rustsec.org/advisories/RUSTSEC-2020-0091
* Updated generic-array 0.12.3 to 0.12.4, vuln https://rustsec.org/advisories/RUSTSEC-2020-0146
* Updated sized-chunks 0.6.2 to 0.6.4, vuln https://rustsec.org/advisories/RUSTSEC-2020-0041 fixed in 0.6.3, in 0.6.4 fixed some UB https://github.com/bodil/sized-chunks/blob/master/CHANGELOG.md#064---2021-02-17
@Dylan-DPC-zz Dylan-DPC-zz mentioned this pull request Mar 12, 2021
Closed
@JohnTitor JohnTitor mentioned this pull request Mar 13, 2021
Merged
bors added a commit to rust-lang-ci/rust that referenced this pull request Mar 13, 2021
@bors
Auto merge of rust-lang#83067 - JohnTitor:rollup-0wo338i, r=JohnTitor
4d76b4c 
Rollup of 6 pull requests

Successful merges:

 - rust-lang#82984 (Simplify ast block lowering)
 - rust-lang#83012 (Update Clippy)
 - rust-lang#83020 (Emit the enum range assumption if the range only contains one element)
 - rust-lang#83037 (Support merge_functions option in NewPM since LLVM >= 12)
 - rust-lang#83052 (updated vulnerable deps)
 - rust-lang#83059 (Allow configuring `rustdoc --disable-minification` in config.toml)

Failed merges:

r? `@ghost`
`@rustbot` modify labels: rollup
@bors bors merged commit fa189d4 into rust-lang:master Mar 13, 2021
@rustbot rustbot added this to the 1.52.0 milestone Mar 13, 2021
# for free to join this conversation on GitHub. Already have an account? # to comment
Reviewers
No reviews
Assignees

@Mark-Simulacrum Mark-Simulacrum

Labels
S-waiting-on-bors Status: Waiting on bors to run and complete tests. Bors will change the label on completion.
Projects
None yet
Milestone
1.52.0
Development

Successfully merging this pull request may close these issues.
5 participants
@klensy @rust-highfive @Mark-Simulacrum @bors @rustbot