Closed leungk712 closed 4 months ago
What version of cargo audit are you using?
On Fri, Mar 22, 2024 at 4:17 PM Kevin Leung @.***> wrote:
Hello,
Within the past 24 hours one of our steps in our pipeline is failing when it reaches cargo-audit. We're running into an advisory database error seen below.
$ cargo audit bin target/release/[our-project] Fetching advisory database from
https://github.com/RustSec/advisory-db.git
https://github.com/RustSec/advisory-db.git error: couldn't fetch advisory database: git operation failed: failed to fetch repo: An IO error occurred when talking to the server Cleaning up project directory and file based variables ERROR: Job failed: exit code 1I have noticed that the dependabot bumped tame-index from 0.9.8 to 0.10.0 within the past 24 hours (3/21/2024) and I'm wondering if that's causing the issue?
https://github.com/rustsec/rustsec/pulls
Just wanted to give a heads up. Thank you.
— Reply to this email directly, view it on GitHub https://github.com/rustsec/advisory-db/issues/1923, or unsubscribe https://github.com/notifications/unsubscribe-auth/AAAAGBECIHJLBVWSCV7GQKLYZSGW5AVCNFSM6AAAAABFD5Y7QSVHI2DSMVQWIX3LMV43ASLTON2WKOZSGIYDGMRUGMZTINY . You are receiving this because you are subscribed to this thread.Message ID: @.***>
-- All that is necessary for evil to succeed is for good people to do nothing.
@alex Hi, we are currently using v0.20.0. This is what's seen a few steps before the error appears.
Compiling cargo-audit v0.20.0
There were similar errors reported today about cargo-deny
https://github.com/EmbarkStudios/cargo-deny/issues/641, not understood for now.
Should be fixed now (https://github.com/Byron/gitoxide/issues/1328#issuecomment-2016486540).
Hello,
Within the past 24 hours one of our steps in our pipeline is failing when it reaches cargo-audit. We're running into an advisory database error seen below.
I have noticed that the dependabot bumped tame-index from 0.9.8 to 0.10.0 within the past 24 hours (3/21/2024) and I'm wondering if that's causing the issue?
https://github.com/rustsec/rustsec/pulls
Just wanted to give a heads up. Thank you.