advisory-db
advisory-db copied to clipboard
rustsec
Security advisory database for Rust crates published through crates.io
Since this crate also advertises itself as being secure and portable it might be feasible to remove recommendations and / or flag an advisory either as informational or regular where...
This is pretty important crate and it is sad if we would have to flag it as info- Unmaintained / Notice :sob: **NOTE: This does NOT necessarily mean the crypto...
Closes #1360 **NOTE: This does NOT necessarily mean the crypto on ed25519-dalek is inherently broken or insecure as of now** _e.g. Depending on how we classify / see broken /...
Upstream issues: * https://github.com/netvl/xml-rs/issues/210 * https://github.com/netvl/xml-rs/issues/204
As of May 21st, 2022, https://github.com/dotenv-rs/dotenv 's latest version is 0.15.0, which was published on October 22nd, 2019. And the latest commit is [3c1a77bc95821777e5ceb996c5e0b082f2a3ea38](https://github.com/dotenv-rs/dotenv/commit/3c1a77bc95821777e5ceb996c5e0b082f2a3ea38), which was pushed on Jun 27th,...
Closes #1254 @JohnTitor @est31 @8573 would you mind reviewing pls Should we recommend dotenvy as an alternative or something else as per https://github.com/rustsec/advisory-db/issues/1254#issuecomment-1214313669 ? Note: I would be slightly hesistant...
Raised issue with the maintainer @RReverser here: https://github.com/RReverser/serde-xml-rs/issues/180 This crate depends on xml-rs for the parsing and we've dealt with it before. xml-rs Unmaintained: - https://github.com/rustsec/advisory-db/pull/1356 - https://github.com/rustsec/advisory-db/issues/1121
I stumbled over two soundness issues of `futures-intrusive` which are currently unfixed. * [ ] https://github.com/Matthias247/futures-intrusive/issues/42 * [ ] https://github.com/Matthias247/futures-intrusive/issues/56
