cargo-crev
cargo-crev copied to clipboard
crev-dev
A cryptographically verifiable code review system for the cargo (Rust) package manager.
I've noticed when a "root trust id" signs a locally generated id for the first time, the url field of the "trust proof" was always empty. This problem is often...
New crev user here. I was following the "Getting started" guide and instantly got a **segfault** on `cargo crev verify` as soon as it started to download any crate. Strangely...
Bumps [tempfile](https://github.com/Stebalien/tempfile) from 3.9.0 to 3.10.1. Changelog Sourced from tempfile's changelog. 3.10.1 Handle potential integer overflows in 32-bit systems when seeking/truncating "spooled" temporary files past 4GiB (2³²). Handle a theoretical...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Reproduction steps: ``` $ mv Cargo.lock Cargo.lock.old # also happens if Cargo.lock contains old library versions, but this is simpler to reproduce $ cargo crev verify --show-all ``` command output:...
Bumps [libgit2-sys](https://github.com/rust-lang/git2-rs) from 0.16.1+1.7.1 to 0.16.2+1.7.2. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
Bumps [curl-sys](https://github.com/alexcrichton/curl-rust) from 0.4.70+curl-8.5.0 to 0.4.72+curl-8.6.0. Commits c0c7a66 Bump crate versions 25575e0 Update windows-sys to 0.52 (#546) 4e76dd7 Update to curl 8.6.0 (#545) See full diff in compare view [
Bumps [time](https://github.com/time-rs/time) from 0.3.31 to 0.3.34. Release notes Sourced from time's releases. v0.3.34 See the changelog for details. v0.3.33 See the changelog for details. v0.3.32 See the changelog for details....
Bumps [base64](https://github.com/marshallpierce/rust-base64) from 0.13.1 to 0.21.7. Changelog Sourced from base64's changelog. 0.21.7 Support getting an alphabet's contents as a str via Alphabet::as_str() 0.21.6 Improved introductory documentation and example 0.21.5 Add...
Bumps [env_logger](https://github.com/rust-cli/env_logger) from 0.10.2 to 0.11.1. Release notes Sourced from env_logger's releases. v0.11.1 What's Changed fix(fmt): Fix passing of WriteStyle when using Target::Pipe by @Bobo1239 in rust-cli/env_logger#302 New Contributors @Bobo1239...