-
### Describe the bug
There are lots of CVEs in the lock file. Some of these might be dev-deps because osv-scanner isnt that smart, however some are in real deps.
#5076 for using a smarter t…
-
The vast majority of the older versions have been yanked: https://crates.io/crates/rmp-serde/versions. Surely they don't all have critical vulnerabilities that warrant this?
I can obviously use a l…
-
I'm currently updating the nixpkgs package of the rerun app and we run the python sdk tests on every build. However I had to patch the `rerun_py/build.rs` file to get everything to run like this:
h…
-
This crate needs some major fixes around nested enums and ~~support for human-readable flag~~, but I don't have time to implement them.
I can keep the lights on and merge pull requests and make rel…
-
Fluentd v0.14 implements `EventTime` extension type: https://github.com/fluent/fluentd/wiki/Forward-Protocol-Specification-v1#eventtime-ext-format
Is there way to handle this on rmp-serialize crate?
-
I feel like this should be documented somewhere, if you happen to send some bytes that matches the header of yaque, then the queue may cease to function. Happened when I tried to get some messagepack …
-
## Problem
We currently have a number of dependencies for which we pull in different versions of the same crate as dependencies in our `cargo tree` have conflicting semver requirements. This causes …
-
I have a strange issue, when I add ffmpeg-next to Cargo.toml then I can't compile my project. I want to add the ffmpeg feature to a project that uses OpenCV features. Not only that, but I tested all v…
-
How about adding our `deny.toml` from our main project to the template here and make sure all of our open source crates use it in CI?
I think we want to both disallow more crates and also verify t…
-
I reached out to @yarikoptic about proper Debian packaging (I've never done it!) and he has shared his wisdom! Here is his proposal for going about this:
> The best way is to release Debian package…
vsoch updated
5 months ago