Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update time crate to >=0.2.23 #691

Closed
tbraun96 opened this issue May 13, 2022 · 3 comments
Closed

Update time crate to >=0.2.23 #691

tbraun96 opened this issue May 13, 2022 · 3 comments

Comments

@tbraun96
Copy link

tbraun96 commented May 13, 2022
edited
Loading

Rust security advisory RUSTSEC-2020-0071 while running cargo deny check advisories is flagged for this crate due to using the old time dependency (due to potential SEGFAULT). The recommendation is to upgrade to time>=0.2.23
@djc
Copy link
Member

djc commented May 13, 2022

There have been many issues about this already. The current main branch does not actually use any of the vulnerable code in time 0.1.

@djc djc closed this as completed May 13, 2022
@aeshirey
Copy link

Despite this issue being closed and also about the vulnerability (which, as you say, doesn't affect chrono), I notice that the current version of time used by this crate lacks features such as certain const functions. It would be nice to be able to create a chrono::Duration in a const context.

@djc
Copy link
Member

djc commented May 29, 2022

I'd be open to having more const functions if those would be helpful, though we are somewhat restricted by the current minimum supported Rust version. See also discussion in #638.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@djc @aeshirey @tbraun96