cargo
Security Advisories in cargo
High
1 day ago
Prompty: Arbitrary file read via file reference expansion
nuget, cargo, npm, pypi
Prompty.Core, prompty, @prompty/core
Low
2 days ago
nimiq-primitives: Out-of-bounds panic in KeyNibbles::Add from oversized child suffix in a deserialized proof
cargo
nimiq-primitives
Low
2 days ago
nimiq-primitives: Panic in TrieProof::verify via child_index unwrap on equal-length keys
cargo
nimiq-primitives
Moderate
2 days ago
Diesel has possible use after free when deserializing a SQLite database via `SqliteConnection::deserialize_readonly_database`
cargo
diesel
Moderate
3 days ago
serde_with: KeyValueMap serialization panics on empty sequence or map entries
cargo
serde_with
Low
4 days ago
Wasmtime: Memory leak in C API with `externref` and `anyref` types
pypi, cargo
wasmtime-bin, wasmtime-c-api-impl
Moderate
8 days ago
Windmill: Resource-scoped API tokens can read script contents outside their allowed path via scripts/list_search
cargo
windmill-api
Moderate
9 days ago
Rattler vulnerable to package cache path traversal via conda package build string
pypi, cargo
py_rattler, rattler_cache
Moderate
10 days ago
async-tar PAX extension-header desync enables tar entry/content smuggling
cargo
async-tar
Low
11 days ago
rama has Stored XSS in ServeDir HTML directory listing via unescaped file names and URI path
cargo
rama
Moderate
11 days ago
ratex-parser has unbounded parser recursion that leads to stack overflow (process abort)
cargo
ratex-parser
High
11 days ago
ratex-parser panics on `\verb` with a multibyte delimiter (UTF-8 byte-boundary slice)
cargo
ratex-parser
High
11 days ago
uutils coreutils: cp/install/mv/ln --suffix alone does not enable backup mode (silent data loss vs GNU)
cargo
uucore
Low
12 days ago
mknod: Device nodes created mislabeled on SELinux, with broken cleanup (remove_dir on a node)
cargo
uu_mknod
High
12 days ago
mkfifo: permissions of an existing file are changed after FIFO creation fails
cargo
uu_mkfifo
Critical
12 days ago
Zebra: Missing copy constraint in halo2_gadgets variable-base scalar multiplication allows under-constrained base, breaking Orchard Action circuit soundness
cargo
zcash_primitives, orchard, halo2_gadgets, zebrad
Moderate
12 days ago
printenv: environment variables with invalid UTF-8 are silently skipped (evades inspection)
cargo
uu_printenv
Moderate
12 days ago
mv: symlinks expanded during cross-device move (resource exhaustion / data duplication)
cargo
uu_mv
Moderate
12 days ago
rm: 'rm -rf ./' (and ./// variants) silently deletes current directory contents, bypassing dot protection
cargo
uu_rm
Moderate
12 days ago
comm: FIFO/pipe inputs are drained before comparison (data loss / hang)
cargo
uu_comm
Low
12 days ago
mkdir: -m exposes directory with umask perms before chmod (race window)
cargo
uu_mkdir
Moderate
12 days ago
rm: --preserve-root bypassed via a symlink to / (string check instead of dev/inode)
cargo
uu_rm
Low
12 days ago
id: pretty-print uses effective GID instead of effective UID for name lookup
cargo
uu_id
Moderate
12 days ago
kill: 'kill -1' parsed as PID -1, sending SIGTERM to all processes (system crash / DoS)
cargo
uu_kill
Moderate
12 days ago
install -D: symlink race in directory creation allows arbitrary file overwrite
cargo
uu_install
Moderate
12 days ago
install: TOCTOU symlink race (unlink-then-create without O_EXCL) allows arbitrary file overwrite
cargo
uu_install
Moderate
12 days ago
chmod: recursive mode returns exit code 0 even when some files fail (last-file-wins)
cargo
uu_chmod
High
12 days ago
chmod: --preserve-root bypassed by any path that resolves to root (e.g. /../)
cargo
uu_chmod
High
16 days ago
jxl-grid on 32-bit platforms has an out-of-bounds writes due to integer overflow
cargo
jxl-grid
Moderate
16 days ago
jxl-oxide: `FrameBuffer::new` creates out-of-bounds slices on overflow
cargo
jxl-oxide
Moderate
16 days ago
jxl-oxide: integer subtraction overflow panic in cluster_from_table via crafted JXL input (DoS)
cargo
jxl-modular
High
16 days ago
Zebra Address Book Aborted by IPv4-Mapped Mempool Misbehavior Update
cargo
zebrad, zebra-network
Moderate
16 days ago
zebrad has unbounded memory leak in mempool download pipeline via timeout path cancel_handles retention
cargo
zebrad
Moderate
16 days ago
zebrad has persistent on-disk corruption of Sapling/Orchard subtree roots after chain fork via pop_tip
cargo
zebrad, zebra-state
Moderate
16 days ago
Zebra: Repeated Non-Finalized Shielded Transaction Aborts Zebra Before Duplicate-Nullifier Rejection
cargo
zebrad, zebra-state
Moderate
16 days ago
Zebra: Finalized address balance credit-first overflow on consensus-valid blocks
cargo
zebrad, zebra-state
Moderate
16 days ago
Zebra has sync restart poisoning from single unauthenticated peer via above-lookahead block
cargo
zebrad, zebra-consensus
Critical
16 days ago
zebrad has consensus divergence via P2SH sigop undercount in pure-Rust disabled-opcode parser
cargo
zebrad, zebra-script
High
16 days ago
Zebra has block suppression via NU5 same-header body poisoning of sent-hash cache
cargo
zebrad, zebra-state
Low
16 days ago
Zebra has pre-handshake buffer capacity reservation based on attacker-claimed body length
cargo
zebrad, zebra-network
Moderate
16 days ago
zebrad has mempool transaction admission denial via single-peer inbound queue saturation
cargo
zebrad
Moderate
16 days ago
zebrad vulnerable to full node denial of service via crafted Sapling receiver in z_listunifiedreceivers
cargo
zebrad, zebra-rpc
Low
16 days ago
zebrad vulnerable to getblocks/getheaders locator CPU amplification via uncapped vector length
cargo
zebra-chain, zebrad
Moderate
16 days ago
zebrad has full node denial of service via non-ASCII LongPollId in getblocktemplate
cargo
zebrad, zebra-rpc
Moderate
16 days ago
Cmov/CmovEq on aarch64 can produce wrong results if high-bits of registers are set
cargo
cmov
Moderate
17 days ago
SurrealDB: Edge PERMISSIONS FOR delete bypassed when a connected node is deleted
cargo
surrealdb
Moderate
17 days ago
SurrealDB: ES512 silently downgraded to ES384 due to jsonwebtoken crate limitation
cargo
surrealdb
Moderate
17 days ago
SurrealDB: Field-level SELECT permissions bypassed via indexed COUNT fast paths
cargo
surrealdb
Moderate
17 days ago
SurrealDB: USE NS/DB implicit creation bypasses DEFINE authorization
cargo
surrealdb
Moderate
17 days ago
SurrealDB: Port-specific --deny-net rules silently bypassed on HTTP redirect
cargo
surrealdb
Moderate
17 days ago
SurrealDB: Authenticated subscribers can read records hidden by SELECT permissions via LIVE subscriptions
cargo
surrealdb
Moderate
17 days ago
SurrealDB: `RELATE` overwrites existing edge records without `UPDATE` permission
cargo
surrealdb
Moderate
17 days ago
SurrealDB has bypass of field-level SELECT permissions through JSON Patch `copy` and `move` with empty `from`
cargo
surrealdb
Moderate
17 days ago
SurrealDB: Authenticated callers can read fields hidden by field-level SELECT permissions via error messages
cargo
surrealdb
Moderate
17 days ago
SurrealDB: LIVE query subscriptions survive session state changes, bypassing access controls
cargo
surrealdb
Moderate
17 days ago
SurrealDB vulnerable to pre-auth memory amplification via unbounded `/sql` WebSocket frames
cargo
surrealdb
Moderate
17 days ago
SurrealDB: Authorization Bypass in KILL Statement Allows Termination of Other Users' Live Queries
cargo
surrealdb
Moderate
17 days ago
SurrealDB: Crafting malicious LIVE queries writes to the database, resulting in DoS, without permission to the table required
cargo
surrealdb
Moderate
17 days ago
SurrealDB has an Authorization Bypass via Composite Record-id Paths
cargo
surrealdb
Moderate
17 days ago
SurrealDB: Scraping a TABLE with no available PERMISSIONS to current auth level
cargo
surrealdb
Moderate
17 days ago
SurrealDB vulnerable to Denial of Service due to nested types annotations
cargo
surrealdb
High
17 days ago
SurrealDB has unauthenticated remote DoS via malformed RPC `use` call
cargo
surrealdb
High
17 days ago
SurrealDB has Denial of Service in JSON parser due to nested objects
cargo
surrealdb
High
17 days ago
SurrealDB: HTTP RPC Session Race Condition Allows Privilege Escalation
cargo
surrealdb
High
17 days ago
SurrealDB: HTTP /rpc `sessions` method leaks attached session UUIDs, enabling full session hijack by anonymous callers
cargo
surrealdb
Moderate
22 days ago
Cargo crates in third party registries can override the cached source of other crates
cargo
cargo
Moderate
23 days ago
opentelemetry_sdk has unbounded memory allocation in W3C Baggage propagation
cargo
opentelemetry_sdk
Low
23 days ago
fixurjavainstall: Previous Fuji versions can accidentally wipe `/usr/share/man/man8`
cargo
fixurjavainstall
High
25 days ago
Mise vulnerable to arbitrary command execution via task-include files in an untrusted, config-less repository
cargo
mise
Moderate
25 days ago
mise HTTP backend uses raw version path for install symlink destination
cargo
mise
High
26 days ago
skillctl: argument injection, path traversal in --dest, FIFO/device DoS, hardlink exfiltration, and commit-trailer forgery
cargo
skillctl
Critical
26 days ago
Mise Vulnerable to Arbitrary Code Execution via Tera Templates in .tool-versions Files (Trust Bypass)
cargo
mise
Moderate
29 days ago
SurrealDB: Field-level SELECT permissions bypassed via graph and reference traversals
cargo
surrealdb
Moderate
29 days ago
SurrealDB: Indexed ORDER BY leaks the value ordering of a SELECT-restricted field
cargo
surrealdb
Moderate
29 days ago
SurrealDB: SSRF via JWKS URL — Redirect Following in JWT Key Fetch
cargo
surrealdb
Moderate
29 days ago
Cloudflare Quiche: Use-after-free in connection ID iterator FFI functions
cargo
quiche
Moderate
29 days ago
tract: Arbitrary file read via unsanitized ONNX external_data `location` (path traversal) on model load in tract-onnx
cargo
tract-onnx
Moderate
about 1 month ago
tract-nnef: integer overflow in NNEF `.dat` tensor parser yields an out-of-bounds read on model load
cargo
tract-nnef
Moderate
about 1 month ago
Deno: Denial of service via non-ASCII bytes in WebSocket response headers
cargo
deno
Moderate
about 1 month ago
Deno: Permission Bypass via Unicode Normalization Mismatch on macOS (APFS)
cargo
deno
Moderate
about 1 month ago
Deno: BYONM module resolution allows `package.json` main path traversal to bypass `--allow-read` restrictions
cargo
deno
Moderate
about 1 month ago
Deno: Node TCPWrap numeric hostname aliases bypass --deny-net resolved-IP deny checks
cargo
deno
Moderate
about 1 month ago
Deno: process.loadEnvFile() bypasses env permission checks and mutates process.env with only read access
cargo
deno
Filter by Severity
Filter by Package
surrealdb
52
wasmtime
39
deno
36
zebrad
27
openssl-src
25
ckb
22
coreutils
21
openssl
18
rusqlite
16
rustfs
13
apollo-router
13
russh
11
tough
10
surrealdb-core
8
cargo
8
hyper
7
gix
7
gitoxide
7
pyo3
7
vaultwarden
7
routinator
7
tauri
6
astral-tokio-tar
6
deno_runtime
6
cranelift-codegen
6
diesel
6
matrix-sdk-crypto
6
sized-chunks
6
smallvec
6
Simple-Wayland-HotKey-Daemon
6
xcb
6
zeptoclaw
5
messagepack-rs
5
sudo-rs
5
quiche
5
nimiq-primitives
5
pgp
5
comrak
5
lock_api
5
libpulse-binding
5
aws-lc-sys
5
cosmwasm-vm
5
rustls-webpki
5
bottlerocket/update-operator
5
tokio
5
tar
5
mise
5
deepseek-tui
4
crossbeam-channel
4
github.com/CosmWasm/wasmvm
4
zebra-network
4
evm
4
ntpd
4
zebra-chain
4
zebra-state
4
salvo
4
raw-cpuid
4
id-map
4
actix-web
4
ammonia
4
pleaser
4
tremor-script
4
gix-worktree-state
4
risc0-zkvm
4
github.com/CosmWasm/wasmvm/v2
4
hickory-proto
4
slice-deque
4
pingora-core
4
static-web-server
3
sequoia-openpgp
3
s2n-quic
3
rsa
3
arenavec
3
crossbeam
3
apache-avro
3
fltk
3
namada-apps
3
cggmp21
3
quinn-proto
3
libcrux-ml-dsa
3
cgc
3
ml-dsa
3
arr
3
zebra-script
3
sm2
3
wasm3
3
ncurses
3
gix-worktree
3
zebra-rpc
3
arrow
3
imageproc
3
lemmy_api
3
youki
3
gitoxide-core
3
s2n-tls
3
acc_reader
3
gix-transport
3
toodee
3
wasmtime
3
lru
3
ursa
3
flatbuffers
3
anoncreds-clsignatures
3
actix-http
3
zebra-consensus
3
gix-path
3
mongodb
3
nanorand
3
nimiq-blockchain
3
h2
3
pallet-ethereum
3
grin
3
solana_rbpf
3
yamux
3
pywasm3
3
gix-fs
2
deno_node
2
qdrant
2
jj-lib
2
wasmi
2
multiqueue
2
netavark
2
traitobject
2
simple-slab
2
memoffset
2
biscuit-auth
2
uucore
2
simple_asn1
2
libgit2-sys
2
uv
2
sodiumoxide
2
async-h1
2
users
2
derive-com-impl
2
tiny_future
2
actix-files
2
risc0-circuit-rv32im
2
tendermint-light-client-verifier
2
flumedb
2
signal-simple
2
pallet-evm-precompile-modexp
2
uu_cut
2
evm-core
2
generator
2
gfx-auxil
2
abomonation
2
gix-index
2
image
2
lemmy_api_common
2
Deno
2
rkyv
2
ratex-parser
2
crypto2
2
deepseek-tui
2
wasmtime-wasi
2
vm-memory
2
ash
2
spin
2
arrow2
2
v9
2
sha2
2
protobuf
2
tuftool
2
phonenumber
2
theshit
2
futures-task
2
git2
2
async-graphql
2
cggmp24
2
binjs_io
2
mio
2
parc
2
tower-http
2
openmls
2
boxlite
2
cache
2
crayon
2
activitypub_federation
2
skillctl
2
internment
2
metrics-util
2
aws-lc-fips-sys
2
abi_stable
2
rdiff
2
futures-util
2
vodozemac
2
matrix-sdk
2
cmov
2
ozone
2
slock
2
nix
2
lemmy_server
2
libp2p-core
2
opcua
2
fast-float
2
scratchpad
2
slack-morphism
2
reorder
2
tor-circmgr
2
failure
2
Filter by Repository
https://github.com/surrealdb/surrealdb
25
https://github.com/denoland/deno
25
https://github.com/bytecodealliance/wasmtime
23
https://github.com/nervosnetwork/ckb
22
https://github.com/rusqlite/rusqlite
16
https://github.com/apollographql/router
11
https://github.com/sfackler/rust-openssl
10
https://github.com/crossbeam-rs/crossbeam
9
https://github.com/hyperium/hyper
8
https://github.com/matrix-org/matrix-rust-sdk
8
https://github.com/awslabs/tough
8
https://github.com/Byron/gitoxide
8
https://github.com/tauri-apps/tauri
7
https://github.com/waycrate/swhkd
6
https://github.com/servo/rust-smallvec
6
https://github.com/actix/actix-web
6
https://github.com/bodil/sized-chunks
6
https://github.com/paritytech/frontier
6
https://github.com/jnqnfe/pulse-binding-rust
5
https://github.com/tokio-rs/tokio
5
https://github.com/rust-lang/cargo
5
https://github.com/pendulum-project/ntpd-rs
5
https://github.com/otake84/messagepack-rs
5
https://github.com/kivikakk/comrak
5
https://github.com/Amanieu/parking_lot
5
https://github.com/bottlerocket-os/bottlerocket-update-operator
5
https://github.com/RustCrypto/hashes
4
https://github.com/PyO3/pyo3
4
https://github.com/rust-lang/futures-rs
4
https://github.com/apache/arrow-rs
4
https://github.com/rust-ammonia/ammonia
4
https://github.com/CosmWasm/wasmvm
4
https://github.com/gz/rust-cpuid
4
https://github.com/tremor-rs/tremor-runtime
4
https://gitlab.com/edneville/please
4
https://github.com/cloudflare/quiche
4
https://github.com/risc0/risc0
4
https://github.com/rust-blockchain/evm
4
https://github.com/andrewhickman/id-map
4
https://github.com/quinn-rs/quinn
3
https://github.com/succinctlabs/sp1
3
https://github.com/hyperledger-archives/ursa
3
https://github.com/Absolucy/nanorand-rs
3
https://github.com/aws/s2n-tls
3
https://github.com/playXE/cgc
3
https://github.com/aws/s2n-quic
3
https://github.com/LemmyNet/lemmy
3
https://github.com/NLnetLabs/routinator
3
https://github.com/gnzlbg/slice_deque
3
https://github.com/dani-garcia/vaultwarden
3
https://github.com/antonmarsden/toodee
3
https://gitlab.com/sequoia-pgp/sequoia
3
https://github.com/sjep/array
3
https://github.com/aldanor/fast-float-rust
3
https://github.com/actix/actix-net
3
https://github.com/ibabushkin/arenavec
3
https://github.com/mongodb/mongo-rust-driver
3
https://github.com/libpnet/libpnet
3
https://github.com/MoAlyousef/fltk-rs
3
https://github.com/netvl/acc_reader
3
https://github.com/GitoxideLabs/gitoxide
3
https://github.com/wasm3/wasm3
3
https://github.com/google/flatbuffers
3
https://github.com/anoma/namada
3
https://github.com/paritytech/libsecp256k1
3
https://github.com/opencontainers/runc
3
https://github.com/github/advisory-database
3
https://github.com/raviqqe/array-queue
2
https://github.com/dfns/cggmp21
2
https://github.com/cloudflare/pingora
2
https://github.com/thepowersgang/stack_dst-rs
2
https://github.com/rpgp/rpgp
2
https://github.com/rust-lang-nursery/failure
2
https://github.com/alexcrichton/openssl-src-rs
2
https://github.com/schets/multiqueue
2
https://github.com/trifectatechfoundation/sudo-rs
2
https://github.com/CosmWasm/cosmwasm
2
https://github.com/tokio-rs/mio
2
https://github.com/Eugeny/russh
2
https://github.com/dyule/rdiff
2
https://github.com/google/zerocopy
2
https://github.com/Connicpu/com-impl
2
https://github.com/fitzgen/bumpalo
2
https://github.com/Eolu/vec-const
2
https://github.com/jeromefroe/lru-rs
2
https://github.com/jblondin/csv-sniffer
2
https://github.com/rustls/rustls
2
https://github.com/http-rs/async-h1
2
https://github.com/nervosnetwork/molecule
2
https://github.com/gfx-rs/gfx
2
https://github.com/shadowsocks/crypto2
2
https://github.com/coreos/coreos-installer
2
https://github.com/mimblewimble/grin-security
2
https://github.com/binast/binjs-ref
2
https://github.com/rodrimati1992/abi_stable_crates
2
https://github.com/astral-sh/tokio-tar
2
https://github.com/carllerche/buffoon
2
https://github.com/SergioBenitez/Rocket
2
https://github.com/diesel-rs/diesel
2
https://github.com/purpleposeidon/v9
2
https://github.com/stephank/hyper-staticfile
2
https://github.com/nathansizemore/simple-slab
2
https://github.com/stepancheg/rust-protobuf
2
https://github.com/Xudong-Huang/generator-rs
2
https://github.com/rust-x-bindings/rust-xcb
2
https://github.com/TimelyDataflow/abomonation
2
https://github.com/alexcrichton/tar-rs
2
https://github.com/ouch-org/ouch
2
https://github.com/krl/cache
2
https://github.com/warp-tech/russh
2
https://github.com/bytecodealliance/lucet
2
https://github.com/shawnscode/crayon
2
https://github.com/Gilnaa/memoffset
2
https://github.com/hinaria/bite
2
https://github.com/okready/scratchpad
2
https://github.com/locka99/opcua
2
https://github.com/matrix-org/vodozemac
2
https://github.com/openssl/openssl
2
https://github.com/rust-vmm/vm-memory
2
https://github.com/Alexhuszagh/rust-lexical
2
https://github.com/tiby312/reorder
2
https://github.com/acw/simple_asn1
2
https://github.com/image-rs/image
2
https://github.com/pimeys/rust-web-push
2
https://github.com/sunrise-choir/flumedb-rs
2
https://github.com/Hexilee/BronzeDB
2
https://github.com/metaplex-foundation/metaplex-program-library
2
https://github.com/frankmcsherry/columnar
2
https://github.com/bluejekyll/trust-dns
2
https://github.com/informalsystems/tendermint-rs
2
https://github.com/rust-lang/rust
2
https://github.com/kitsuneninetails/signal-rust
2
https://github.com/abdolence/slack-morphism-rust
2
https://github.com/BrokenLamp/slock-rs
2
https://github.com/rulex-rs/rulex
2
https://github.com/RustCrypto/RSA
2
https://github.com/jeaye/ncurses-rs
2
https://github.com/whisperfish/rust-phonenumber
2
https://github.com/hyyking/rustracts
2
https://github.com/RustCrypto/AEADs
2
https://github.com/KizzyCode/tiny_future
2
https://github.com/mvdnes/spin-rs
2
https://github.com/open-quantum-safe/liboqs-rust
2
https://github.com/tower-rs/tower-http
2
https://github.com/maciejhirsz/ordnung
2
https://github.com/ogham/rust-users
2
https://github.com/async-graphql/async-graphql
2
https://github.com/alloy-rs/core
2
https://github.com/solana-labs/rbpf
2
https://github.com/rust-random/rand
2
https://github.com/hickory-dns/hickory-dns
2
https://github.com/tokio-rs/tracing
2
https://github.com/reem/rust-traitobject
2
https://github.com/pyros2097/rust-embed
2
https://github.com/lettre/lettre
2
https://github.com/wasmerio/wasmer
2
https://github.com/chris-morgan/mopa
2
https://github.com/3Hren/msgpack-rust
2
https://github.com/metrics-rs/metrics
2
https://github.com/nats-io/nats.rs
2
https://github.com/nix-rust/nix
2
https://github.com/droundy/internment
2
https://github.com/dtolnay/inventory
2
https://github.com/dfinity/candid
1
https://github.com/longshorej/conqueue
1
https://github.com/biscuit-auth/biscuit-rust
1
https://github.com/kanidm/concread
1
https://github.com/uazu/qcell
1
https://github.com/jaredforth/webp
1
https://github.com/Chopinsky/byte_buffer
1
https://github.com/strake/containers.rs
1
https://github.com/dnaq/sodiumoxide
1
https://github.com/arrayfire/arrayfire-rust
1
https://github.com/DaGenix/rust-crypto
1
https://github.com/MageWeiG/VulnerabilityCollection
1
https://github.com/unicode-org/icu4x
1
https://github.com/SolraBizna/outer_cgi
1
https://github.com/0xPolygonZero/plonky2
1
https://github.com/rust-embedded/cortex-m
1
https://github.com/crypto-com/sgx-vendor
1
https://github.com/petabi/eventio
1
https://github.com/cloudflare/lol-html
1
https://github.com/rust-bitcoin/rust-secp256k1
1
https://github.com/rustgd/glsl-layout
1
https://github.com/mxxo/plutonium
1
https://github.com/charles-r-earp/adtensor
1
https://github.com/danburkert/prost
1
https://github.com/databento/dbn
1
https://github.com/L117/array-tools
1
https://github.com/biscuit-auth/biscuit
1
https://github.com/neon-bindings/neon
1
https://github.com/Enet4/bra-rs
1
https://github.com/xfix/array-macro
1
https://github.com/wwylele/byte-struct-rs
1
https://github.com/mbuesch/letmein
1
https://github.com/awslabs/aws-sdk-rust
1
https://github.com/rust-lang-deprecated/rustc-serialize
1
https://github.com/krl/bunch
1
https://github.com/capnproto/capnproto
1