Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

updated vulnerable deps #83052

Merged
merged 1 commit into from
Mar 13, 2021
Merged

updated vulnerable deps #83052

merged 1 commit into from
Mar 13, 2021

Conversation

klensy
Copy link
Contributor

@klensy klensy commented Mar 12, 2021

@rust-highfive
Copy link
Collaborator

r? @Mark-Simulacrum

(rust-highfive has picked a reviewer for you, use r? to override)

@rust-highfive rust-highfive added the S-waiting-on-review Status: Awaiting review from the assignee but also interested parties. label Mar 12, 2021
@Mark-Simulacrum
Copy link
Member

Thank you for providing the links. @bors r+ rollup

@bors
Copy link
Contributor

bors commented Mar 12, 2021

📌 Commit d480a3e has been approved by Mark-Simulacrum

@bors bors added S-waiting-on-bors Status: Waiting on bors to run and complete tests. Bors will change the label on completion. and removed S-waiting-on-review Status: Awaiting review from the assignee but also interested parties. labels Mar 12, 2021
Dylan-DPC-zz pushed a commit to Dylan-DPC-zz/rust that referenced this pull request Mar 12, 2021
@Dylan-DPC
Rollup merge of rust-lang#83052 - klensy:dep-update, r=Mark-Simulacrum
51a94c4 
updated vulnerable deps

* Updated signal-hook-registry 1.2.1 to 1.2.2, as it drops dependency on vulnerable arc-swap 0.4.7 https://rustsec.org/advisories/RUSTSEC-2020-0091
* Updated generic-array 0.12.3 to 0.12.4, vuln https://rustsec.org/advisories/RUSTSEC-2020-0146
* Updated sized-chunks 0.6.2 to 0.6.4, vuln https://rustsec.org/advisories/RUSTSEC-2020-0041 fixed in 0.6.3, in 0.6.4 fixed some UB https://github.com/bodil/sized-chunks/blob/master/CHANGELOG.md#064---2021-02-17
@Dylan-DPC-zz Dylan-DPC-zz mentioned this pull request Mar 12, 2021
Closed
@JohnTitor JohnTitor mentioned this pull request Mar 13, 2021
Merged
bors added a commit to rust-lang-ci/rust that referenced this pull request Mar 13, 2021
@bors
Auto merge of rust-lang#83067 - JohnTitor:rollup-0wo338i, r=JohnTitor
4d76b4c 
Rollup of 6 pull requests

Successful merges:

 - rust-lang#82984 (Simplify ast block lowering)
 - rust-lang#83012 (Update Clippy)
 - rust-lang#83020 (Emit the enum range assumption if the range only contains one element)
 - rust-lang#83037 (Support merge_functions option in NewPM since LLVM >= 12)
 - rust-lang#83052 (updated vulnerable deps)
 - rust-lang#83059 (Allow configuring `rustdoc --disable-minification` in config.toml)

Failed merges:

r? `@ghost`
`@rustbot` modify labels: rollup
@bors bors merged commit fa189d4 into rust-lang:master Mar 13, 2021
@rustbot rustbot added this to the 1.52.0 milestone Mar 13, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@Mark-Simulacrum Mark-Simulacrum

Labels
S-waiting-on-bors Status: Waiting on bors to run and complete tests. Bors will change the label on completion.
Projects
None yet
Milestone
1.52.0
Development

Successfully merging this pull request may close these issues.
5 participants
@klensy @rust-highfive @Mark-Simulacrum @bors @rustbot