Cargo.lock +------------------+-------------------------------------+------+-----------------+---------------+ | PACKAGE | VULNERABILITY ID | CVSS | CURRENT VERSION | FIXED VERSION | +------------------+-------------------------------------+------+-----------------+---------------+ | curve25519-dalek | https://osv.dev/GHSA-x4gp-pqpj-f43q | | 4.1.2 | 4.1.3 | | curve25519-dalek | https://osv.dev/RUSTSEC-2024-0344 | | 4.1.2 | 4.1.3 | | lexical | https://osv.dev/GHSA-c2hm-mjxv-89r4 | | 6.1.1 | | | | https://osv.dev/RUSTSEC-2023-0055 | | | | | openssl | https://osv.dev/GHSA-q445-7m23-qrmw | 6.9 | 0.10.64 | 0.10.66 | | openssl | https://osv.dev/RUSTSEC-2024-0357 | | 0.10.64 | 0.10.66 | | rsa | https://osv.dev/GHSA-4grx-2x9w-596c | 5.9 | 0.6.1 | | | | https://osv.dev/GHSA-c38w-74pg-36hr | | | | | | https://osv.dev/RUSTSEC-2023-0071 | | | | +------------------+-------------------------------------+------+-----------------+---------------+

The following actions uses Node.js version which is deprecated and will be forced to run on node20: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32, github/codeql-action/upload-sarif@407ffafae6a767df3e0230c3df91b6443ae8df75. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/