Dependency Dashboard

[svc-secops]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.

Awaiting Schedule

These updates are awaiting their schedule. Click on a checkbox to get an update now.

• chore(deps): lock file maintenance

Other Branches

These updates are pending. To force PRs open, click the checkbox below.

• chore(deps): update actions/checkout action to v4.3.1
• chore(deps): update actions/checkout action to v6

Open

These updates have all been created already. Click a checkbox below to force a retry/rebase of any.

• fix(deps): update rust crate tokio to v1.38.2 [security]
• fix(deps): update lambda (aws_lambda_events, lambda_http, lambda_runtime)
• fix(deps): update lambda to v1 (major) (aws_lambda_events, lambda_http, lambda_runtime)
• fix(deps): update rust crate thiserror to v2
• Click on this checkbox to rebase all open PRs at once

Vulnerabilities

2/2 CVEs have Renovate fixes.

cargo

netlify/functions/server/Cargo.toml

tokio

• RUSTSEC-2025-0023 (fixed in >= 1.38.2)
• GHSA-rr8g-9fpq-6wmg (fixed in >= 1.38.2)

Detected dependencies

cargo

netlify/functions/server/Cargo.toml

• aws_lambda_events =0.13.0
• lambda_http =0.9.0
• lambda_runtime =0.9.0
• async-graphql 7.0.11
• http 1.1.0
• lazy_static 1.4.0
• log 0.4.20
• serde 1.0.214
• serde_json 1.0.132
• simple_logger 5.0.0
• thiserror 1.0.66
• tokio 1.36.0
• url 2.5.0

github-actions

.github/workflows/checks.yaml

• actions/checkout v4.1.1
• actions/checkout v4.1.1

.github/workflows/deploy.yaml

• actions/checkout v4.1.1