-
https://github.com/rust-secure-code/cargo-auditable
tmpfs updated
1 month ago
-
```
thread 'main' panicked at cargo-auditable/src/collect_audit_data.rs:77:9:
cargo metadata failure: error: Package `lightningcss-napi v0.1.0 (/build/source/napi)` does not have feature `rayon`. It…
-
It would be nice to have bans applied to a 2-list system.
One of the list is like the current ones. It is public facing and bans are applied based on it with the given reasons.
The other one is pu…
-
This makes sure that all dependencies and their versions are embedded in the binary in a machine-readable format, and can be obtained with `cargo audit bin`. This allows auditing binaries for vulnerab…
Aloso updated
3 months ago
-
At some point nixpkgs made a decision to include `cargo-auditable` wrapper of some sort which ends up passing attribute `auditable` to `rust-overlay`, failure looks like this:
```
error: f…
-
In https://github.com/rust-secure-code/cargo-auditable I have started out tagging the versions of `cargo auditable` itself, but the project has since grown and gained several more binaries. So I have …
-
In the wake of the `xz-utils` news, I think people should be un-trusting of binary artifacts committed to version control. If Pack were to catch on, it would have a similar position in the software ec…
-
-
## What are the schemas that are affected by the issue
/common/auditable
## What are examples of products that are impacted by the issue
Anything using profile
-
https://github.com/Byron/gitoxide doesn't successfully build with cargo-auditable anymore. It fails in https://github.com/rust-secure-code/cargo-auditable/blob/9fa7fb3988b4d2414397b9550a3f3fd1aa1bc8f2…