From a63b4fe4af36d4c83f15d394ce53c97bbed3bd41 Mon Sep 17 00:00:00 2001
From: Ben Boeckel <ben.boeckel@kitware.com>
Date: Fri, 25 Mar 2022 12:15:12 -0400
Subject: [PATCH] webhook-listen: bump regex requirement

This avoids RUSTSEC-2022-0013 which describes a denial-of-service in the
`regex` crate when provided with certain expressions. As regexes might
be provided by external code here, this must be updated to avoid the
problem.

See: https://rustsec.org/advisories/RUSTSEC-2022-0013
---
 webhook-listen/Cargo.toml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/webhook-listen/Cargo.toml b/webhook-listen/Cargo.toml
index 5dee552..8603501 100644
--- a/webhook-listen/Cargo.toml
+++ b/webhook-listen/Cargo.toml
@@ -31,7 +31,7 @@ webhook-router = { version = "~0.2", path = "../webhook-router" }
 
 # Security updates (bumps minimums)
 thread_local = "^1.1.4"
-regex = "^1.3.3"
+regex = "^1.5.5"
 
 [[bin]]
 name = "webhook-listen"
-- 
GitLab