Outdated dependencies with potential security implications #11
Description
Description
Several dependencies in Cargo.toml are significantly outdated:
| Dependency | Current | Latest | Notes |
|---|---|---|---|
reqwest |
0.11 | 0.12.x | 0.11 uses hyper 0.14 which no longer receives security updates |
indicatif |
0.16 | 0.17.x | API changes but straightforward migration |
thiserror |
1.0 | 2.x | Major version bump with improved derive macros |
Additionally, the Rust edition is 2018 — the current edition is 2021 (stable since Rust 1.56), with 2024 now available.
Suggested fix
Update Cargo.toml:
edition = "2021"
[dependencies]
reqwest = { version = "0.12", features = ["json"] }
indicatif = "0.17"
thiserror = "2.0"Then run cargo update && cargo test to verify compatibility.