cassandra_macro (>=0.1.1 <=0.1.3), cdrs (>=0.1.0 <=4.0.0-beta.1) +19 more potentially affected by unknown CVE via lz4-compress (>=0.1.0 <=0.1.1)

lz4-compress CARGO version =0.1.0, =0.1.1, =0.1.0, =1.0.0, =0.3.3, =0.3.0, =0.1.0, =0.1.2 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2017-0007...

lz4-compress is unmaintained

According to the developers this crate is no longer maintained. The suggested alternative is lz4-compression, a maintained fork of lz4-compress. See also lz-fear which is compatible with the reference LZ4 implementation in C, but not with lz4-compress...