Skip to content

fix(deps): update rust crate russh to v0.60.1 - autoclosed#568

Closed
renovate[bot] wants to merge 1 commit intomainfrom
renovate/russh-monorepo
Closed

fix(deps): update rust crate russh to v0.60.1 - autoclosed#568
renovate[bot] wants to merge 1 commit intomainfrom
renovate/russh-monorepo

Conversation

@renovate
Copy link
Copy Markdown
Contributor

@renovate renovate Bot commented Apr 20, 2026

This PR contains the following updates:

Package Type Update Change
russh dependencies patch =0.60.0=0.60.1

Release Notes

warp-tech/russh (russh)

v0.60.1

Compare Source

Security fixes

GHSA-f5v4-2wr6-hqmg in 6c3c80a

This DoS vulnerability allowed an unauthenticated user to trigger an out-of-memory condition in a russh based server if keyboard-interactive authentication is allowed. A malicious authentication packet could trigger a multi-GB memory allocation likely leading to the process getting killed by the OOM killer.

Fixes

Configuration

📅 Schedule: (UTC)

  • Branch creation
    • At any time (no schedule defined)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate Bot enabled auto-merge (squash) April 20, 2026 20:35
@cloudflare-workers-and-pages
Copy link
Copy Markdown

cloudflare-workers-and-pages Bot commented Apr 20, 2026
edited
Loading

Deploying with  Cloudflare Workers  Cloudflare Workers

The latest updates on your project. Learn more about integrating Git with Workers.

Status Name Latest Commit Preview URL Updated (UTC)
✅ Deployment successful!
View logs		 biwa-docs 9279e04 Commit Preview URL

Branch Preview URL		 Apr 20 2026, 08:36 PM

@codecov
Copy link
Copy Markdown

codecov Bot commented Apr 20, 2026

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 47.87%. Comparing base (7e848bd) to head (9279e04).
⚠️ Report is 199 commits behind head on main.

Additional details and impacted files 
@@            Coverage Diff             @@
##             main     #568      +/-   ##
==========================================
+ Coverage   41.28%   47.87%   +6.59%     
==========================================
  Files          16       20       +4     
  Lines         671     1387     +716     
==========================================
+ Hits          277      664     +387     
- Misses        394      723     +329

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

@renovate renovate Bot changed the title fix(deps): update rust crate russh to v0.60.1 fix(deps): update rust crate russh to v0.60.1 - autoclosed Apr 24, 2026
@renovate renovate Bot closed this Apr 24, 2026
auto-merge was automatically disabled April 24, 2026 16:17

Pull request was closed

@renovate renovate Bot deleted the renovate/russh-monorepo branch April 24, 2026 16:18
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

cargo dependencies

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants