Innovation Veille
Highlights
actix-web 4.13.0 — HTTP/2 throughput, MSRV bumped to Rust 1.88
All ODS Rust services must verify rust-toolchain.toml is at Rust 1.88+. HTTP/2 upload gains benefit DocStore and PDF Engine directly.
FIND-20260328-001 →CVE-2026-2005 — PostgreSQL pgcrypto heap buffer overflow (CVSS 8.8)
Fixed in PostgreSQL 17.8 (Feb 12, 2026). Dev instance already on 17.9 (safe). Verify staging/prod PostgreSQL versions immediately.
FIND-20260328-003 →max-sixty/worktrunk — Rust CLI for parallel AI agent Git worktrees
Directly relevant to ADLC multi-agent workflows. Formalizes branch isolation per agent and simplifies PR hygiene for parallel dev tasks.
FIND-20260328-005 →ferriskey/ferriskey — Rust IAM with multi-tenant realms and OIDC
Hexagonal architecture, multi-tenant realm isolation, and event-driven webhooks mirror the OID spec closely. Strong architectural reference for OID development.
FIND-20260328-006 →CVE Alerts
CVE-2026-2005 — PostgreSQL pgcrypto heap buffer overflow (CVSS 8.8)
Affects PostgreSQL 14–17 before 17.8. Patched February 12, 2026. Also in this release: CVE-2026-2004 (intarray, CVSS 8.8), CVE-2026-2006 (multibyte bypass, CVSS 8.8).
FIND-20260328-003 →RUSTSEC-2026-0071 — hpke-rs CRITICAL nonce reuse
Not a direct ODS dependency. Monitor if SecureMail adds post-quantum encryption. Run cargo audit to confirm no transitive exposure.
FIND-20260328-004 →New Releases
ClickHouse 26.3.2.3-lts — new LTS branch (March 27, 2026)
First 26.3 LTS release. Built on 26.2 features: default deduplication (breaking for materialized views), full-text search GA, vector indexes beyond single-VM memory, TOTP MFA.
FIND-20260328-002 →Tauri CLI 2.10.1 — updater signing fix (March 4, 2026)
Keys generated with empty passwords between v2.9.3 and v2.10.0 are non-functional. DocSign must verify signing key generation date.
FIND-20260328-007 →Trending Repos
ferriskey/ferriskey — Rust IAM / OIDC, 551 stars
Apache-2.0, active development. Multi-tenant realms, OAuth 2.0, event webhooks. Architectural reference for ODS OID service.
FIND-20260328-006 →TabbyML/tabby — self-hosted AI coding assistant, 33k stars
Rust inference engine, Apache-2.0 (core) + proprietary ee/. On-premise code completion alternative to Claude Code for air-gapped environments.
FIND-20260328-008 →All Findings
| ID | Title | Type | Relevance | Source |
|---|---|---|---|---|
| FIND-20260328-001 | actix-web 4.13.0 — HTTP/2 throughput, MSRV Rust 1.88 | release | HIGH | GitHub |
| FIND-20260328-002 | ClickHouse 26.3.2.3-lts — new LTS branch | release | HIGH | GitHub |
| FIND-20260328-003 | CVE-2026-2005 — PostgreSQL pgcrypto heap overflow (CVSS 8.8) | CVE | HIGH | postgresql.org |
| FIND-20260328-004 | RUSTSEC-2026-0071 — hpke-rs CRITICAL nonce reuse | CVE | LOW | rustsec.org |
| FIND-20260328-005 | max-sixty/worktrunk — Rust CLI for parallel AI agent Git worktrees | tool | HIGH | GitHub |
| FIND-20260328-006 | ferriskey/ferriskey — Rust IAM with multi-tenant realms and OIDC | trending-repo | HIGH | GitHub |
| FIND-20260328-007 | Tauri CLI 2.10.1 — updater signing fix | release | MEDIUM | GitHub |
| FIND-20260328-008 | TabbyML/tabby — self-hosted AI coding assistant (33k stars) | trending-repo | MEDIUM | GitHub |