Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Apiiro] SCA OSS Vulnerabilities - Critical CVSS score · Critical Risk #95

Open
urikalma opened this issue Apr 11, 2024 · 0 comments
Open

[Apiiro] SCA OSS Vulnerabilities - Critical CVSS score · Critical Risk #95

urikalma opened this issue Apr 11, 2024 · 0 comments

Comments

@urikalma
Copy link
Contributor

Discovered on: Mar 18, 2024 06:57
Dependency: crossbeam-deque
Version: 0.7.3
Type: Sub dependency

Vulnerabilities

About this package:

External dependency: crossbeam-deque - https://github.com/crossbeam-rs/crossbeam/tree/master/crossbeam-deque
Package details: Concurrent work-stealing deque
Latest version: 0.8.5
License: MIT,Apache-2.0
Insights:

  • Adequate count maintainers - This package is maintained by at least 3 developers
  • No readme - This package is missing documentation: No README.md or INDEX.md files were found
  • Frequent commits - New code commits are frequently being pushed
  • No version 1 - The package releases hasn't reached v1
  • Popularity - This package has many weekly downloads and high popularity scores
  • Has vulnerabilities - One or more vulnerabilities have been reported for this package

Remediation

Recommended fix version: 0.7.4
Upgrading will fix all current vulnerabilities.

View in Apiiro
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@urikalma