gitoxide does not detect SHA-1 collision attacks
gitoxide uses SHA-1 hash implementations without any collision detection, leaving it vulnerable to hash collision attacks.
Advisories for Cargo/Gix-Negotiate package
2025
gitoxide uses SHA-1 hash implementations without any collision detection, leaving it vulnerable to hash collision attacks.