Open domwoe opened 2 years ago
Will this be handled by #2331?
I don't think so.
I see the problem. Master is currently updated, but we haven't had a release in a while now... Since cargo upgrades
is not even installed by default, I don't think there is a solution we can implement for now. What we do have, however, is automatic cargo audit
so that it at least will warn if there's known vulnerabilities in your dependencies
I'm trying to get "Updating dependencies in dfx new
" into the cdk-rs release process
Rust projects created with
dfx
include old dependencies foric-cdk
andic-cdk-macros
. There needs to be a mechanism to keep them up to date.Current work around is using
cargo upgrade
in the project.