Malicious dependencies can inject arbitrary JavaScript into cargo-generated timing reports

Low severity GitHub Reviewed Published Aug 24, 2023 in rust-lang/cargo • Updated Nov 9, 2023

No open alerts for this advisory

Give feedback on Dependabot alerts