Skip to content

Commit

Permalink
Bump dependencies to address GHSA-q6cp-qfwq-4gcv
Browse files Browse the repository at this point in the history 
This aligns the dependencies to use a single version of
rustls (v0.21.12) and tokio-rustls (v0.24.1).
  • Loading branch information
@crawford
crawford committed May 13, 2024
1 parent 856a99c commit 143aaca
Show file tree
Hide file tree
Showing 2 changed files with 17 additions and 40 deletions.
51 changes: 14 additions & 37 deletions enclaver/Cargo.lock
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

6 changes: 3 additions & 3 deletions enclaver/Cargo.toml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -25,10 +25,10 @@ regex = "1.6"
tokio = { version = "1.24.1", features = ["full"] }
tokio-pipe = "0.2"
tokio-vsock = { version = "0.4", optional = true }
tokio-rustls = { version = "0.23", features = ["dangerous_configuration"] }
tokio-rustls = { version = "0.24", features = ["dangerous_configuration"] }
tokio-util = { version = "0.7", features = ["codec"] }
tokio-tar = "0.3"
rustls = "0.20"
rustls = "0.21"
rustls-pemfile = "1.0"
log = "0.4"
pretty_env_logger = "0.5"
Expand Down Expand Up @@ -75,7 +75,7 @@ console-subscriber = { version = "0.1.10", optional = true }

[dev-dependencies]
assert2 = "0.3"
tls-listener = { version = "0.5", features = ["rustls", "hyper-h1"] }
tls-listener = { version = "0.7", features = ["rustls", "hyper-h1"] }
reqwest = { version = "0.11.8", default-features = false, features = ["rustls-tls-webpki-roots"] }
aws-credential-types = { version = "0.56.1", features = ["hardcoded-credentials"] }

Expand Down

0 comments on commit 143aaca

Please sign in to comment.