Rouille, Rust web server middleware v3.5 Release Notes
-
- Replaced our use of the
brotli2
crate with the alternative pure Rust implementationbrotli
. This removes Rouille's vulnerability to RUSTSEC-2021-0131, which existed due tobrotli-sys
bundling a vulnerable version of the underlying C library. - 📌 Unpinned
time-rs
and as a result increased our MSRV to 1.51, we don't have a formal MSRV policy and the ecosystem is making it more and more difficult to support compiler versions more than about 6 months old.
- Replaced our use of the