Skip to content

chore(deps): bump openssl from 0.10.73 to 0.10.80 in /humanlayer-wui/src-tauri#34

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/humanlayer-wui/src-tauri/openssl-0.10.80
Open

chore(deps): bump openssl from 0.10.73 to 0.10.80 in /humanlayer-wui/src-tauri#34
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/humanlayer-wui/src-tauri/openssl-0.10.80

chore(deps): bump openssl in /humanlayer-wui/src-tauri

07c8341
Select commit
Loading
Failed to load commit list.
Kusari Inspector / Kusari Inspector succeeded May 28, 2026 in 49s

Security Analysis Passed

No security issues found

Details

Kusari Inspector

Kusari Analysis Results:

Proceed with these changes

✅ No Flagged Issues Detected
All values appear to be within acceptable risk parameters.

Both dependency and code security analyses return clean results with a combined recommendation to proceed. The PR upgrades openssl (0.10.73 to 0.10.80) and openssl-sys (0.9.109 to 0.9.116) in the Cargo.lock file, resolving 8 known security vulnerabilities including out-of-bounds write/read and heap buffer overflow issues in the prior versions. The upgraded versions carry no new advisories. These are indirect transitive dependencies via reqwest -> native-tls -> openssl, limiting direct exposure but still representing a meaningful risk reduction. The code analysis found zero issues: no secrets, no workflow concerns, and no code-level problems in the scanned file. Licenses remain permissive (Apache-2.0 and MIT). The combined risk profile is improved by this PR, not worsened. No blocking concerns exist.

Note

View full detailed analysis result for more information on the output and the checks that were run.


@kusari-inspector rerun - Trigger a re-analysis of this PR
@kusari-inspector feedback [your message] - Send feedback to our AI and team
See Kusari's documentation for setup and configuration.
Commit: 07c8341, performed at: 2026-05-28T17:58:19Z