Skip to content

Commit 304b0c1

Browse files
ByronByron
committed
fix!: Upgrade tempfile to 3.4, fixing a security issue.
This is not really a breaking change, but a tactical major version increment to give `cargo` an escape hatch and let it use the vulnerable version for a little longer. This means this `gix` up until v0.40 can be used to pull in `tempfile` 3.3, and all future versions will use tempfile 3.4 (or 3.X) for that matter.
1 parent 18e72c9 commit 304b0c1

File tree

2 files changed

+5
-15
lines changed

2 files changed

+5
-15
lines changed

Cargo.lock

Lines changed: 4 additions & 14 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

gix-tempfile/Cargo.toml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -32,7 +32,7 @@ test = true
3232
parking_lot = "0.12.1"
3333
dashmap = { version = "5.1.0", optional = true }
3434
once_cell = { version = "1.8.0", default-features = false, features = ["race", "std"] }
35-
tempfile = "~3.3.0"
35+
tempfile = "3.4.0"
3636

3737
signal-hook = { version = "0.3.9", default-features = false, optional = true }
3838
signal-hook-registry = { version = "1.4.0", optional = true }

0 commit comments

Comments
 (0)