opendut icon indicating copy to clipboard operation
opendut copied to clipboard
verified publisher icon eclipse-opendut

Replace `atty` dependency

Open mbfm opened this issue 1 month ago • 0 comments

rustpython-vm pulls in a library, which is unmaintained and has a security vulnerability on Windows. See the security advisories:

  • https://rustsec.org/advisories/RUSTSEC-2024-0375
  • https://rustsec.org/advisories/RUSTSEC-2021-0145

Additionally, the crate is not needed anymore, since the same functionality is now part of the stdlib: https://doc.rust-lang.org/stable/std/io/trait.IsTerminal.html

We should open a pull request at RustPython to get this dependency removed.

mbfm avatar Oct 30 '25 09:10 mbfm