Updating crates.io index
Cargo Audit
Fetching advisory database from `https://github.com/RustSec/advisory-db.git`
Loaded 550 security advisories (from /home/runner/.cargo/advisory-db)
Updating crates.io index
Scanning Cargo.lock for vulnerabilities (515 crate dependencies)
Crate: kuchiki
Version: 0.8.1
Warning: unmaintained
Title: `kuchiki` is unmaintained
Date: 2023-01-21
ID: RUSTSEC-2023-0019
URL: https://rustsec.org/advisories/RUSTSEC-2023-0019
Dependency tree:
kuchiki 0.8.1
├── wry 0.24.3
│ └── tauri-runtime-wry 0.14.0
│ └── tauri 1.4.0
│ ├── tauri 1.4.0
│ ├── restart 0.1.0
│ └── app-updater 0.1.0
└── tauri-utils 1.4.0
├── tauri-runtime-wry 0.14.0
├── tauri-runtime 0.14.0
│ ├── tauri-runtime-wry 0.14.0
│ └── tauri 1.4.0
├── tauri-macros 1.4.0
│ └── tauri 1.4.0
├── tauri-config-schema 0.0.0
├── tauri-codegen 1.4.0
│ ├── tauri-macros 1.4.0
│ └── tauri-build 1.4.0
│ └── app-updater 0.1.0
├── tauri-build 1.4.0
└── tauri 1.4.0
Crate: atty
Version: 0.2.14
Warning: unsound
Title: Potential unaligned read
Date: 2021-07-04
ID: RUSTSEC-2021-0145
URL: https://rustsec.org/advisories/RUSTSEC-2021-0145
Dependency tree:
atty 0.2.14
├── colored 2.0.0
│ └── mockito 0.31.1
│ └── tauri 1.4.0
│ ├── tauri 1.4.0
│ ├── restart 0.1.0
│ └── app-updater 0.1.0
└── clap 3.2.25
└── tauri 1.4.0
warning: 2 allowed warnings found
[1.4.0]
Enhancements
52474e47
(#7141) Enhance Cargo features check.af937290
(#6676) On Windows, setLegalCopyright
andFileDescription
file properties on the executable fromtauri.bundle.copyright
andtauri.bundle.shortDescription
,d2710e9d
(#6944) Unpintime
,ignore
, andwinnow
crate versions. Developers now have to pin crates if needed themselves. A list of crates that need pinning to adhere to Tauri's MSRV will be visible in Tauri's GitHub workflow: https://github.com/tauri-apps/tauri/blob/dev/.github/workflows/test-core.yml#L85.