1. Tokio Broadcast Channel Security Patch Abandoned — Critical Unsoundness Risk Persists in Widely-Used Async Runtime
A pull request patching a memory safety vulnerability in the tokio async runtime has been abandoned, leaving a known unsoundness flaw in the broadcast channel component unresolved. The update to tokio v1.43.1, which addresses a soundness issue tracked as GHSA-rr8g-9fpq-6wmg, was marked abandoned without merged resoluti...