Update deps to handle feasible cargo audit vulnerabilities#1735
Merged
Conversation
This is run only on our most updated Cargo lockfile and was tested with `cargo audit -f Cargo-recent.lock` Time@0.3.45 remains as a listed vulnerability due to the current 1.85.0 MSRV limitation imposed by the rest of the ecosystem.
a7f54c8 to
cad9957
Compare
Collaborator
Coverage Report for CI Build 29267747093Coverage remained the same at 86.01%Details
Uncovered ChangesNo uncovered changes found. Coverage RegressionsNo coverage regressions found. Coverage Stats
💛 - Coveralls |
This was referenced Jul 15, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This is run only on our most updated Cargo lockfile and was tested with
cargo audit -f Cargo-recent.lockTime@0.3.45 remains as a listed vulnerability due to the current 1.85.0 MSRV limitation imposed by the rest of the ecosystem. This can be confirmed with
cargo audit --ignore RUSTSEC-2026-0009 -f Cargo-recent.lockRUSTSEC-2026-0009 remains trivial for us as it is a dependency of
payjoin-test-utilsonly and not a vulnerability in the mainpayjoincrate exposed in our library as demonstrated with.Pull Request Checklist
Please confirm the following before requesting review:
AI
in the body of this PR.