Update zerocopy (!1804) · Merge requests · The Tor Project / Core / Arti

Ian Jackson requested to merge Diziet/arti:audit into main Dec 06, 2023

The version in our lockfile was yanked because of this bug https://github.com/google/zerocopy/pull/672

Our use of zerocopy is only via ahash and AFAICT it doesn't provide it with any affected types.

It's not clear to me if the bug is an unsoundness bug. There isn't a RustSec advisory atm.

Update zerocopy