From 7ee40c0e478091a1b780e2fd3bb613074558a75b Mon Sep 17 00:00:00 2001 From: Loganaden Velvindron Date: Mon, 5 Jan 2026 15:16:38 +0400 Subject: [PATCH] Fix "TARmageddon" vulnerability CVE-2025-62518 switch to astral-tokio-tar which is maintained. --- Cargo.toml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Cargo.toml b/Cargo.toml index 7a8c9c2..d45a915 100644 --- a/Cargo.toml +++ b/Cargo.toml @@ -35,7 +35,7 @@ aws-config = "1.6.3" aws-credential-types = { version = "1.2.3", features = ["hardcoded-credentials"] } aws-sdk-s3 = "1.91.0" async-compression = { version = "0.4.23", default-features = false, features = ["tokio", "gzip"] } -tokio-tar = "0.3.1" +astral-tokio-tar = "0.5.6" tokio-cron-scheduler = "0.14.0" cron = "0.15.0" uuid = { version = "1.17.0", features = ["v4"] }