Tony Arcieri
Tony Arcieri
Hi @jamesmunns, In the past we have discussed (particularly with @pietroalbini) trying to form a single overall Security Team where the Secure Code team could be a subteam. Really at...
My vote would continue to be to find some way to combine it with Security Response per #141, as @djc noted, and so long as they're also still interested in...
RustSec has always had a somewhat ambiguous relationship to the Rust project. When it launched circa 2016 I more or less ran the whole thing by @brson, mostly in person...
We'd need to create separate branches for stable vs development so not as to block stable work
We are discussing how to proceed. We might need to do a major version bump due to how aggressively people are reacting to MSRV bumps
The new MSRV will be 1.85 when the `digest` feature is active, due to 2024 edition bumps in the @RustCrypto crates. You can see how people reacted here: https://github.com/RustCrypto/formats/issues/1684
I pointed that out, but it seems some people were complaining about uncached `cargo install` failing on old Rust versions (where they could still use `--locked`). It seems it doesn't...
Yeah, it's definitely much simpler not to bump the version, though I'm not sure you can necessarily dismiss them as a "vocal minority" (especially when you're not the one dealing...
Fixed in #919
I'd like to punt on this for the v0.6 release. We can always add the new names incrementally, deprecate the old ones, and remove them in a v0.7 release. While...