Disable clock feature of chrono to mitigate RUSTSEC-2020-0159

rust-syndication · Oct 20, 2021 · 759a9a6 · 759a9a6
1 parent b359f13
commit 759a9a6
Show file tree

Hide file tree

Showing 2 changed files with 4 additions and 3 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -2,6 +2,7 @@
 
 ## 2.0.0 - Unreleased
 
+- Disable clock feature of chrono to mitigate RUSTSEC-2020-0159 [`#130`](https://github.com/rust-syndication/rss/pull/130)
 - Update quick_xml to 0.22 [`0daf20b`](https://github.com/rust-syndication/rss/commit/0daf20b6f19411450f79090d687d796414193327)
 - Fix issues found by clippy [`f3283a1`](https://github.com/rust-syndication/rss/commit/f3283a13808f41f0c10cd64720e493f18a286967)
 - Replace HashMap with BTreeMap to have a stable order of tags/attributes [`8b088b1`](https://github.com/rust-syndication/rss/commit/8b088b147c0801a950b5197d6faa475ca766f257)

diff --git a/Cargo.toml b/Cargo.toml
@@ -17,19 +17,19 @@ all-features = false
 [features]
 default = ["builders"]
 builders = ["derive_builder", "never", "atom_syndication/builders"]
-validation = ["chrono", "url", "mime"]
+validation = ["chrono", "chrono/std", "url", "mime"]
 with-serde = ["serde", "atom_syndication/with-serde"]
 atom = ["atom_syndication"]
 
 [dependencies]
 quick-xml = { version = "0.22", features = ["encoding"] }
 derive_builder = { version = "0.10.2", optional = true }
 never = { version = "0.1", optional = true }
-chrono = {version = "0.4", optional = true }
+chrono = { version = "0.4", optional = true, default-features = false, features = ["alloc"] }
 url = { version = "2.1", optional = true }
 mime = { version = "0.3", optional = true }
 serde = { version = "1.0", optional = true, features = ["derive"] }
-atom_syndication = { version = "0.10", optional = true }
+atom_syndication = { version = "0.11", optional = true }
 
 [dev-dependencies]
 bencher = "0.1"