From cfec0171af7391e14589b599abf21b88f8364b4f Mon Sep 17 00:00:00 2001
From: Ryan Frishkorn <ryan@bluerift.io>
Date: Sat, 19 Aug 2023 21:59:51 -0700
Subject: [PATCH] Upgrade time version to address CVE

CVE: https://cwe.mitre.org/data/definitions/476.html
issue: https://github.com/time-rs/time/issues/293
---
 Cargo.lock | 26 +++++++++++++++++++++++++-
 Cargo.toml |  1 +
 2 files changed, 26 insertions(+), 1 deletion(-)

diff --git a/Cargo.lock b/Cargo.lock
index fa6d243..3168d1f 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -138,7 +138,7 @@ dependencies = [
  "iana-time-zone",
  "js-sys",
  "num-traits",
- "time",
+ "time 0.1.45",
  "wasm-bindgen",
  "winapi",
 ]
@@ -232,6 +232,12 @@ dependencies = [
  "memchr",
 ]
 
+[[package]]
+name = "deranged"
+version = "0.3.8"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "f2696e8a945f658fd14dc3b87242e6b80cd0f36ff04ea560fa39082368847946"
+
 [[package]]
 name = "errno"
 version = "0.3.1"
@@ -596,6 +602,7 @@ dependencies = [
  "regex",
  "rusqlite",
  "rust-stemmers",
+ "time 0.3.26",
  "unicode-segmentation",
  "uuid",
 ]
@@ -638,6 +645,23 @@ dependencies = [
  "winapi",
 ]
 
+[[package]]
+name = "time"
+version = "0.3.26"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "a79d09ac6b08c1ab3906a2f7cc2e81a0e27c7ae89c63812df75e52bef0751e07"
+dependencies = [
+ "deranged",
+ "serde",
+ "time-core",
+]
+
+[[package]]
+name = "time-core"
+version = "0.1.1"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "7300fbefb4dadc1af235a9cef3737cea692a9d97e1b9cbcd4ebdae6f8868e6fb"
+
 [[package]]
 name = "unicase"
 version = "2.6.0"
diff --git a/Cargo.toml b/Cargo.toml
index 8c254c5..d5abcbd 100644
--- a/Cargo.toml
+++ b/Cargo.toml
@@ -15,5 +15,6 @@ csv = "1.2.2"
 regex = "1.8.4"
 rusqlite = { version = "0.29.0", features = ["blob"] }
 rust-stemmers = "1.2.0"
+time = "0.3.2"
 unicode-segmentation = "1.10.1"
 uuid = { version = "1.4.0", features = ["v4", "fast-rng"]}