grenade/cull-gmail
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: upgrade google-gmail1 to v7 to resolve security advisory

Browse Source 
Upgrade google-gmail1 from 6.0.0 to 7.0.0 which uses yup-oauth2 v12
that no longer depends on the unmaintained rustls-pemfile crate.

This resolves RUSTSEC-2025-0134 (rustls-pemfile unmaintained).

Breaking changes addressed:
- Updated InstalledFlowAuthenticator to use CustomHyperClientBuilder
- Added hyper-rustls with http1 feature for OAuth redirect flow

Signed-off-by: Jeremiah Russell <jerry@jrussell.ie>
This commit is contained in:
Jeremiah Russell
2026-01-12 11:42:13 +00:00
committed by Jeremiah Russell
parent efeb118dcd
commit e3555275fb
3 changed files with 340 additions and 416 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
Cargo.toml
View File

@@ -29,7 +29,8 @@ config = { version = "0.15.19", default-features = false, features = [
"toml",
] }
env_logger = "0.11.8"
google-gmail1 = "6.0.0"
google-gmail1 = "7.0.0"
hyper-rustls = { version = "0.27", features = ["http1"] }
lazy-regex = "3.4.2"
log = "0.4.28"
serde = { version = "1.0.228", features = ["derive"] }