fix: rustsec in ring

2025-03-29 18:49:02 +00:00 · 2025-03-20 14:31:26 +01:00 · 2025-03-20 14:31:26 +01:00 · 47b0ac40d9
commit 47b0ac40d9
parent ae1cf51198
2 changed files with 6 additions and 3 deletions
--- a/Cargo.lock
+++ b/Cargo.lock
@ -2031,7 +2031,7 @@ dependencies = [
 "log",
 "presser",
 "thiserror 1.0.69",
- "windows 0.57.0",
+ "windows 0.58.0",
 ]

 [[package]]
@ -2089,6 +2089,7 @@ dependencies = [
 "reqwest-middleware",
 "reqwest-retry",
 "rfd",
+ "ring",
 "serde",
 "serde-this-or-that",
 "serde_json",
@ -4107,9 +4108,9 @@ checksum = "57397d16646700483b67d2dd6511d79318f9d057fdbd21a4066aeac8b41d310a"

 [[package]]
 name = "ring"
-version = "0.17.9"
+version = "0.17.14"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e75ec5e92c4d8aede845126adc388046234541629e76029599ed35a003c7ed24"
+checksum = "a4689e6c2294d81e88dc6261c768b63bc4fcdb852be6d1352498b114f61383b7"
 dependencies = [
 "cc",
 "cfg-if",
--- a/Cargo.toml
+++ b/Cargo.toml
@ -82,6 +82,8 @@ flexi_logger = "0.29"
 eframe = {version="0.31", features=["wgpu"]}
 # eframe = {git="https://github.com/emilk/egui", features=["wgpu"]}
 strum = {version="0.27", features=["derive"]}
+## force version of ring to prevent https://rustsec.org/advisories/RUSTSEC-2025-0009
+ring = "0.17.14"
 # Unix dependencies
 [target.'cfg(unix)'.dependencies]
 tar = "0.4.44"