Currently, we do not have the check for pull request whether it contains problematic dependencies. We should check newly included dependencies before it is merged into our code base. Therefore, we need to add a job to execute a cargo audit before merging it to maintain our code health.
StoneDot
commented
4 months ago
Currently, we do not have the check for pull request whether it contains problematic dependencies. We should check newly included dependencies before it is merged into our code base. Therefore, we need to add a job to execute a
cargo auditbefore merging it to maintain our code health.