Sienna Meridian Satterwhite 7c64de9795 fix(deps): update lru to 0.16.3 to address Dependabot alert #1 ...

Addresses CVE regarding IterMut violating Stacked Borrows in lru crate.

Changes:
- Update lru v0.16.2 -> v0.16.3 (patched version)
- Remove vulnerable lru v0.12.5 and v0.13.0
- Update ratatui v0.29 -> v0.30 in marathonctl
- Remove unnecessary ratatui/crossterm from app crate
- Update pkarr v5.0.0 -> v5.0.2
- Bump libmarathon v0.1.1 -> v0.1.2
- Bump marathonctl dependency on libmarathon to 0.1.2

All lru versions now use the patched 0.16.3 release.

Fixes: https://github.com/r3t-studios/marathon/security/dependabot/1

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>

2026-02-07 19:15:10 +00:00

579 B

Raw Blame History

View Raw