Closed VorpalBlade closed 3 months ago
Actually I'm not sure this is a semver issues. It appears related to https://github.com/EmbarkStudios/tame-index but in the broken version it is building 0.9.7 but with --locked
it is building a newer version 0.9.9. I find this very confusing.
EDIT: Oh I see what is going on, you are depending on a yanked version. That should be a simple fix then, just update to 0.10.0.
Describe the bug
Someone probably broke semver, so the bug should be reported upstream.
To reproduce
cargo install cargo-deny
cargo-deny version
0.14.18
What OS were you running cargo-deny on?
Linux
Additional context
I was upgrading from 0.14.16 to 0.14.18. Normally I don't use
--locked
in order to get any security patches.