Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / rustsec/rustsec issues and pull requests

#877 - build(deps): bump clap from 3.2.24 to 3.2.25

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 3 comments
Labels: dependencies, rust

#876 - Cargo.lock: update dependencies

Pull Request - State: closed - Opened by tarcieri over 1 year ago

#875 - Bump `cargo-lock` to v0.9 + auditable deps

Pull Request - State: closed - Opened by tarcieri over 1 year ago

#874 - build(deps): bump home from 0.5.4 to 0.5.5

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, rust

#873 - build(deps): bump clap from 3.2.23 to 3.2.24

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, rust

#872 - build(deps): bump cargo-lock from 8.0.3 to 9.0.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, rust

#871 - Fix docs build

Pull Request - State: closed - Opened by tarcieri over 1 year ago

#870 - cargo-lock v9.0.0

Pull Request - State: closed - Opened by tarcieri over 1 year ago - 11 comments

#869 - Suggest `cargo update` as a first action

Issue - State: open - Opened by seanmonstar over 1 year ago - 2 comments

#868 - cargo-audit fails on sparse registries

Issue - State: closed - Opened by waltronix over 1 year ago - 11 comments

#867 - build(deps): bump regex from 1.7.2 to 1.8.1

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 5 comments
Labels: dependencies, rust

#866 - Respect `[registries.crates-io] protocol = "sparse"` set in cargo config

Issue - State: closed - Opened by Logarithmus over 1 year ago - 2 comments

#865 - Respect `CARGO_TERM_COLOR`

Issue - State: open - Opened by Logarithmus over 1 year ago

#864 - build(deps): bump crates-index from 0.19.7 to 0.19.8

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, rust

#863 - cargo audit: automatically generate missing lockfiles

Issue - State: closed - Opened by mcandre over 1 year ago - 2 comments

#862 - Feature: filter returned vulnerabilites and warnings to subtree of a …

Pull Request - State: open - Opened by dkcumming over 1 year ago - 15 comments

#861 - How to scan non-Rust projects?

Issue - State: closed - Opened by mcandre over 1 year ago - 2 comments

#860 - Various improvements to the "cargo-lock tree" subcommand

Pull Request - State: closed - Opened by graydon over 1 year ago - 1 comment

#859 - Fix `is_default_registry` for sparse index

Pull Request - State: closed - Opened by Jake-Shadle over 1 year ago - 5 comments

#858 - Requesting `cargo-lock` release

Issue - State: closed - Opened by Jake-Shadle over 1 year ago - 4 comments

#857 - Re-unify CI definition into a test matrix

Pull Request - State: closed - Opened by Shnatsel over 1 year ago - 1 comment

#856 - Remove build script for platforms, it's now unused

Pull Request - State: closed - Opened by alex over 1 year ago

#855 - build(deps): bump comrak from 0.16.0 to 0.18.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, rust

#854 - Link to rustsec/audit-check

Pull Request - State: closed - Opened by SergioGasquez over 1 year ago - 1 comment

#853 - build(deps): bump comrak from 0.16.0 to 0.17.1

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, rust

#851 - build(deps): bump atom_syndication from 0.12.0 to 0.12.1

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, rust

#850 - build(deps): bump regex from 1.7.2 to 1.7.3

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, rust

#849 - build(deps): bump rust-embed from 6.6.0 to 6.6.1

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, rust

#848 - Fix #736 - Cargo audit self advisories repeated

Pull Request - State: closed - Opened by thewizzy over 1 year ago - 3 comments

#847 - cargo-audit/0.17.5 release was not completed

Issue - State: closed - Opened by chenrui333 over 1 year ago - 6 comments

#846 - advisory-db: CI linter Takes 1m 30 sec each PR

Issue - State: closed - Opened by pinkforest over 1 year ago - 8 comments

#844 - build(deps): bump openssl from 0.10.47 to 0.10.48

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, rust

#843 - Download the database over HTTPS

Pull Request - State: open - Opened by Shnatsel over 1 year ago

#842 - Scan optional dependencies

Issue - State: closed - Opened by mcandre over 1 year ago - 1 comment

#841 - feature: render third-party crates json as API

Pull Request - State: closed - Opened by Folyd over 1 year ago - 3 comments

#840 - Release `cargo audit` 0.17.5

Pull Request - State: closed - Opened by Shnatsel over 1 year ago

#839 - Do not run all tests from the default feature set twice

Pull Request - State: closed - Opened by Shnatsel over 1 year ago - 2 comments

#838 - Fix version reporting

Pull Request - State: closed - Opened by Shnatsel over 1 year ago

#837 - Dependencies: `syn` ^2

Issue - State: open - Opened by pinkforest over 1 year ago

#836 - Fix type inference error

Pull Request - State: closed - Opened by Shnatsel over 1 year ago

#835 - Release `rustsec` 0.26.5

Pull Request - State: closed - Opened by Shnatsel over 1 year ago - 1 comment

#834 - build(deps): bump regex from 1.7.1 to 1.7.2

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, rust

#833 - New `informational="panic"`

Issue - State: closed - Opened by pinkforest over 1 year ago - 2 comments

#832 - CI: cargo audit tests take a long time

Issue - State: open - Opened by pinkforest over 1 year ago - 6 comments
Labels: good first issue

#831 - rustsec: Fix git2 via cargo-edit-9 fork

Pull Request - State: closed - Opened by pinkforest over 1 year ago - 5 comments

#830 - Resolve `CVE-2023-22742` stemming from `git2` dependency.

Issue - State: closed - Opened by nathan-at-least over 1 year ago - 2 comments

#829 - build(deps): bump semver from 1.0.16 to 1.0.17

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, rust

#828 - build(deps): bump toml from 0.7.2 to 0.7.3

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 2 comments
Labels: dependencies, rust

#827 - build(deps): bump chrono from 0.4.23 to 0.4.24

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, rust

#826 - Better the formatting of severity output

Pull Request - State: closed - Opened by sidunder over 1 year ago - 1 comment

#825 - Add vulnerability severity to the cargo-audit report presenter

Pull Request - State: closed - Opened by sidunder over 1 year ago - 1 comment

#824 - fix(cargo-audit): set clap bin_name to cargo

Pull Request - State: closed - Opened by tranzystorek-io over 1 year ago - 1 comment

#823 - build(deps): bump askama from 0.11.1 to 0.12.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, rust

#822 - build(deps): bump rust-embed from 6.4.2 to 6.6.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, rust

#820 - Build failing when using `cargo install --git`

Issue - State: closed - Opened by Edu4rdSHL over 1 year ago - 1 comment

#819 - Enable default reporting of informational advisories

Pull Request - State: closed - Opened by sidunder over 1 year ago - 2 comments

#818 - Better document the configuration

Issue - State: open - Opened by Shnatsel over 1 year ago
Labels: enhancement, cargo-audit crate, good first issue

#817 - Linter: Clean up crates.io package name check error

Pull Request - State: closed - Opened by thewizzy over 1 year ago - 1 comment

#816 - Remove latest commit signature check

Pull Request - State: closed - Opened by sidunder over 1 year ago

#815 - Re-enable MacOS CI with `--all-features`

Pull Request - State: closed - Opened by Shnatsel over 1 year ago - 1 comment

#814 - `cargo audit bin`: filter advisories by binary type

Pull Request - State: closed - Opened by Shnatsel over 1 year ago - 4 comments

#813 - Regenerate platforms for rustc 1.69.0-nightly

Pull Request - State: closed - Opened by Shnatsel over 1 year ago

#811 - build(deps): bump toml from 0.7.1 to 0.7.2

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, rust

#810 - build(deps): bump petgraph from 0.6.2 to 0.6.3

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, rust

#809 - Use new feature/dependency syntax

Pull Request - State: closed - Opened by kornelski over 1 year ago - 1 comment

#808 - Upgrade git2 dependency

Pull Request - State: closed - Opened by kornelski over 1 year ago - 3 comments

#807 - Lacking regular crates.io releases

Issue - State: closed - Opened by kornelski over 1 year ago - 3 comments

#804 - cargo audit crashing - only - during GitHub Action workflow

Issue - State: closed - Opened by suchapalaver over 1 year ago - 4 comments

#801 - rustsec: bump `cargo-edit` to v0.11; MSRV 1.64

Pull Request - State: closed - Opened by tarcieri over 1 year ago - 13 comments

#795 - cargo-audit: macOS build failures in CI with `--all-features`

Issue - State: open - Opened by tarcieri over 1 year ago - 9 comments

#790 - Fetching the crates.io index is slow

Issue - State: closed - Opened by fenollp over 1 year ago - 2 comments

#781 - Exported OSV advisories do not populate the top-level severity field

Issue - State: closed - Opened by alpire over 1 year ago - 3 comments

#774 - build(deps): bump cargo-edit from 0.9.1 to 0.11.7

Pull Request - State: closed - Opened by dependabot[bot] almost 2 years ago - 1 comment
Labels: dependencies, rust

#773 - actions-rs is unmaintained

Issue - State: closed - Opened by Finomnis almost 2 years ago - 1 comment

#771 - Bump abscissa_core from 0.6.0 to 0.7.0

Pull Request - State: closed - Opened by dependabot[bot] almost 2 years ago - 2 comments
Labels: dependencies, rust

#750 - Get rid of OpenSSL

Issue - State: closed - Opened by Shnatsel almost 2 years ago - 6 comments
Labels: enhancement, help wanted, rustsec crate, cargo-audit crate

#746 - Request for severity and/or CVSS scores to be added to output of cargo-audit

Issue - State: closed - Opened by asnaseer-resilient almost 2 years ago - 4 comments
Labels: enhancement, cargo-audit crate, good first issue

#740 - Allow configuring maximum file size for scanning binaries

Issue - State: open - Opened by Shnatsel almost 2 years ago
Labels: enhancement, cargo-audit crate, good first issue

#740 - Allow configuring maximum file size for scanning binaries

Issue - State: open - Opened by Shnatsel almost 2 years ago
Labels: enhancement, cargo-audit crate, good first issue

#736 - Advisories for `cargo audit` itself are printed for every scanned binary (instead of once)

Issue - State: closed - Opened by Shnatsel almost 2 years ago - 2 comments
Labels: bug, cargo-audit crate, good first issue

#713 - Database originated CVSS fields

Issue - State: closed - Opened by pinkforest almost 2 years ago - 2 comments
Labels: advisory-db

#696 - `cargo audit` gets local crates confused with remote crates of the same name

Issue - State: open - Opened by banool about 2 years ago - 11 comments
Labels: bug, help wanted

#682 - Add license and attribution fields to advisories

Pull Request - State: closed - Opened by amousset about 2 years ago - 33 comments

#680 - Allow using different licenses for advisories

Issue - State: closed - Opened by amousset about 2 years ago - 1 comment
Labels: advisory-db

#664 - Add `affected` field `macros`

Issue - State: open - Opened by pinkforest about 2 years ago - 1 comment
Labels: advisory-db

#664 - Add `affected` field `macros`

Issue - State: open - Opened by pinkforest about 2 years ago - 1 comment
Labels: advisory-db

#664 - Add `affected` field `macros`

Issue - State: open - Opened by pinkforest about 2 years ago - 1 comment
Labels: advisory-db

#664 - Add `affected` field `macros`

Issue - State: open - Opened by pinkforest about 2 years ago - 1 comment
Labels: advisory-db

#664 - Add `affected` field `macros`

Issue - State: open - Opened by pinkforest about 2 years ago - 1 comment
Labels: advisory-db

#664 - Add `affected` field `macros`

Issue - State: open - Opened by pinkforest about 2 years ago - 1 comment
Labels: advisory-db

#664 - Add `affected` field `macros`

Issue - State: open - Opened by pinkforest about 2 years ago - 1 comment
Labels: advisory-db

#656 - Add a command to synchronize advisory data from osv.dev/GHSA

Pull Request - State: closed - Opened by amousset about 2 years ago - 2 comments

#648 - Cargo audit doesn't report all issues without `--deny warnings`

Issue - State: closed - Opened by martin-t about 2 years ago - 3 comments
Labels: good first issue

#632 - Bring back version information using Clap Derive attribute

Pull Request - State: closed - Opened by deg4uss3r about 2 years ago - 2 comments

#629 - Stop requiring the latest git commit in advisory-db to be signed

Issue - State: closed - Opened by Shnatsel about 2 years ago - 1 comment
Labels: good first issue