Closed marcocondrache closed 6 months ago
I just checked the repository and it seems like setting default-features = false
would get rid of the clap
dependency. I will try that.
Like this:
[dependencies]
names = { version = "0.14.0", default-features = false }
I just checked the repository and it seems like setting
default-features = false
would get rid of theclap
dependency. I will try that.Like this:
[dependencies] names = { version = "0.14.0", default-features = false }
I can confirm this by checking the Cargo.toml of the crate. There is also a comment in the toml about this thing.
https://github.com/fnichol/names/blob/main/Cargo.toml
I will make a PR to fix this.
The 'names' crate presently relies on an outdated version of the clap crate internally, which, in turn, still utilizes atty—an unmaintained component with a known vulnerability.