0 Critical
Critical-severity findings across all ecosystems.
Security Audit Report
Security Audit Report
Section titled “Security Audit Report”Severity Overview
Section titled “Severity Overview”0 High
High-severity findings across all ecosystems.
8 Medium
Medium-severity findings across all ecosystems.
0 Low
Low-severity findings across all ecosystems.
Ecosystem Breakdown
Section titled “Ecosystem Breakdown”npm
0 advisories
Cargo
36 advisories
Python
0 advisories
CodeQL
0 alerts
Dependabot
0 alerts
Severity Distribution
Section titled “Severity Distribution”pie showData
title Findings by Severity
"Medium" : 8
Findings by Ecosystem
Section titled “Findings by Ecosystem”pie showData
title Findings by Ecosystem
"Cargo" : 36
| Ecosystem | Critical | High | Medium | Low | Total |
|---|---|---|---|---|---|
| npm | 0 | 0 | 0 | 0 | 0 |
| Cargo | 0 | 0 | 8 | 0 | 36 |
| Python | 0 | 0 | 0 | 0 | 0 |
| CodeQL | 0 | 0 | 0 | 0 | 0 |
| Dependabot | 0 | 0 | 0 | 0 | 0 |
| Total | 0 | 0 | 8 | 0 | 36 |
| Severity | Package | Advisory | Link |
|---|---|---|---|
| Medium | rsa | Marvin Attack: potential key recovery through timing side… | Details |
| Medium | rustls-webpki | Name constraints for URI names were incorrectly accepted | |
| Medium | rustls-webpki | Name constraints were accepted for certificates asserting… | |
| Medium | rustls-webpki | CRLs not considered authoritative by Distribution Point d… | |
| Medium | rustls-webpki | Name constraints for URI names were incorrectly accepted | |
| Medium | rustls-webpki | Name constraints were accepted for certificates asserting… | |
| Medium | rustls-webpki | Name constraints for URI names were incorrectly accepted | |
| Medium | rustls-webpki | Name constraints were accepted for certificates asserting… | |
| Info | atk | gtk-rs GTK3 bindings - no longer maintained | Details |
| Info | atk-sys | gtk-rs GTK3 bindings - no longer maintained | Details |
| Info | bincode | Bincode is unmaintained | Details |
| Info | derivative | derivative is unmaintained; consider using an alternative | Details |
| Info | fxhash | fxhash - no longer maintained | Details |
| Info | gdk | gtk-rs GTK3 bindings - no longer maintained | Details |
| Info | gdk-sys | gtk-rs GTK3 bindings - no longer maintained | Details |
| Info | gdkwayland-sys | gtk-rs GTK3 bindings - no longer maintained | Details |
| Info | gdkx11 | gtk-rs GTK3 bindings - no longer maintained | Details |
| Info | gdkx11-sys | gtk-rs GTK3 bindings - no longer maintained | Details |
| Info | gtk | gtk-rs GTK3 bindings - no longer maintained | Details |
| Info | gtk-sys | gtk-rs GTK3 bindings - no longer maintained | Details |
| Info | gtk3-macros | gtk-rs GTK3 bindings - no longer maintained | Details |
| Info | paste | paste - no longer maintained | Details |
| Info | proc-macro-error | proc-macro-error is unmaintained | Details |
| Info | rustls-pemfile | rustls-pemfile is unmaintained | Details |
| Info | rustls-pemfile | rustls-pemfile is unmaintained | Details |
| Info | serde_cbor | serde_cbor is unmaintained | Details |
| Info | unic-char-property | unic-char-property is unmaintained | Details |
| Info | unic-char-range | unic-char-range is unmaintained | Details |
| Info | unic-common | unic-common is unmaintained | Details |
| Info | unic-ucd-ident | unic-ucd-ident is unmaintained | Details |
| Info | unic-ucd-version | unic-ucd-version is unmaintained | Details |
| Info | glib | Unsoundness in Iterator and DoubleEndedIterator impls… | Details |
| Info | rand | Rand is unsound with a custom logger using rand::rng() | Details |
| Info | rand | Rand is unsound with a custom logger using rand::rng() | Details |
| Info | rand | Rand is unsound with a custom logger using rand::rng() | Details |
| Info | rand | Rand is unsound with a custom logger using rand::rng() | Details |
Auto-generated by ci-dashboard.yml