Ecosyste.ms: Issues
An open API service for providing issue and pull request metadata for open source projects.
GitHub / rustsec/rustsec issues and pull requests
#877 - build(deps): bump clap from 3.2.24 to 3.2.25
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 3 comments
Labels: dependencies, rust
#876 - Cargo.lock: update dependencies
Pull Request -
State: closed - Opened by tarcieri over 1 year ago
#875 - Bump `cargo-lock` to v0.9 + auditable deps
Pull Request -
State: closed - Opened by tarcieri over 1 year ago
#874 - build(deps): bump home from 0.5.4 to 0.5.5
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, rust
#873 - build(deps): bump clap from 3.2.23 to 3.2.24
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, rust
#872 - build(deps): bump cargo-lock from 8.0.3 to 9.0.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, rust
#871 - Fix docs build
Pull Request -
State: closed - Opened by tarcieri over 1 year ago
#870 - cargo-lock v9.0.0
Pull Request -
State: closed - Opened by tarcieri over 1 year ago
- 11 comments
#869 - Suggest `cargo update` as a first action
Issue -
State: open - Opened by seanmonstar over 1 year ago
- 2 comments
#868 - cargo-audit fails on sparse registries
Issue -
State: closed - Opened by waltronix over 1 year ago
- 11 comments
#867 - build(deps): bump regex from 1.7.2 to 1.8.1
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 5 comments
Labels: dependencies, rust
#866 - Respect `[registries.crates-io] protocol = "sparse"` set in cargo config
Issue -
State: closed - Opened by Logarithmus over 1 year ago
- 2 comments
#865 - Respect `CARGO_TERM_COLOR`
Issue -
State: open - Opened by Logarithmus over 1 year ago
#864 - build(deps): bump crates-index from 0.19.7 to 0.19.8
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, rust
#863 - cargo audit: automatically generate missing lockfiles
Issue -
State: closed - Opened by mcandre over 1 year ago
- 2 comments
#862 - Feature: filter returned vulnerabilites and warnings to subtree of a …
Pull Request -
State: open - Opened by dkcumming over 1 year ago
- 15 comments
#861 - How to scan non-Rust projects?
Issue -
State: closed - Opened by mcandre over 1 year ago
- 2 comments
#860 - Various improvements to the "cargo-lock tree" subcommand
Pull Request -
State: closed - Opened by graydon over 1 year ago
- 1 comment
#859 - Fix `is_default_registry` for sparse index
Pull Request -
State: closed - Opened by Jake-Shadle over 1 year ago
- 5 comments
#858 - Requesting `cargo-lock` release
Issue -
State: closed - Opened by Jake-Shadle over 1 year ago
- 4 comments
#857 - Re-unify CI definition into a test matrix
Pull Request -
State: closed - Opened by Shnatsel over 1 year ago
- 1 comment
#856 - Remove build script for platforms, it's now unused
Pull Request -
State: closed - Opened by alex over 1 year ago
#855 - build(deps): bump comrak from 0.16.0 to 0.18.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, rust
#854 - Link to rustsec/audit-check
Pull Request -
State: closed - Opened by SergioGasquez over 1 year ago
- 1 comment
#853 - build(deps): bump comrak from 0.16.0 to 0.17.1
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, rust
#852 - build(deps): bump softprops/action-gh-release from d4e8205d7e959a9107da6396278b2f1f07af0f9b to c9b46fe7aad9f02afd89b12450b780f52dacfb2d
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions
#851 - build(deps): bump atom_syndication from 0.12.0 to 0.12.1
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, rust
#850 - build(deps): bump regex from 1.7.2 to 1.7.3
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, rust
#849 - build(deps): bump rust-embed from 6.6.0 to 6.6.1
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, rust
#848 - Fix #736 - Cargo audit self advisories repeated
Pull Request -
State: closed - Opened by thewizzy over 1 year ago
- 3 comments
#847 - cargo-audit/0.17.5 release was not completed
Issue -
State: closed - Opened by chenrui333 over 1 year ago
- 6 comments
#846 - advisory-db: CI linter Takes 1m 30 sec each PR
Issue -
State: closed - Opened by pinkforest over 1 year ago
- 8 comments
#845 - admin: future incompat with `quick-xml` via `atom_syndication`
Issue -
State: open - Opened by pinkforest over 1 year ago
#844 - build(deps): bump openssl from 0.10.47 to 0.10.48
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, rust
#843 - Download the database over HTTPS
Pull Request -
State: open - Opened by Shnatsel over 1 year ago
#842 - Scan optional dependencies
Issue -
State: closed - Opened by mcandre over 1 year ago
- 1 comment
#841 - feature: render third-party crates json as API
Pull Request -
State: closed - Opened by Folyd over 1 year ago
- 3 comments
#840 - Release `cargo audit` 0.17.5
Pull Request -
State: closed - Opened by Shnatsel over 1 year ago
#839 - Do not run all tests from the default feature set twice
Pull Request -
State: closed - Opened by Shnatsel over 1 year ago
- 2 comments
#838 - Fix version reporting
Pull Request -
State: closed - Opened by Shnatsel over 1 year ago
#837 - Dependencies: `syn` ^2
Issue -
State: open - Opened by pinkforest over 1 year ago
#836 - Fix type inference error
Pull Request -
State: closed - Opened by Shnatsel over 1 year ago
#835 - Release `rustsec` 0.26.5
Pull Request -
State: closed - Opened by Shnatsel over 1 year ago
- 1 comment
#834 - build(deps): bump regex from 1.7.1 to 1.7.2
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, rust
#833 - New `informational="panic"`
Issue -
State: closed - Opened by pinkforest over 1 year ago
- 2 comments
#832 - CI: cargo audit tests take a long time
Issue -
State: open - Opened by pinkforest over 1 year ago
- 6 comments
Labels: good first issue
#831 - rustsec: Fix git2 via cargo-edit-9 fork
Pull Request -
State: closed - Opened by pinkforest over 1 year ago
- 5 comments
#830 - Resolve `CVE-2023-22742` stemming from `git2` dependency.
Issue -
State: closed - Opened by nathan-at-least over 1 year ago
- 2 comments
#829 - build(deps): bump semver from 1.0.16 to 1.0.17
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, rust
#828 - build(deps): bump toml from 0.7.2 to 0.7.3
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, rust
#827 - build(deps): bump chrono from 0.4.23 to 0.4.24
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, rust
#826 - Better the formatting of severity output
Pull Request -
State: closed - Opened by sidunder over 1 year ago
- 1 comment
#825 - Add vulnerability severity to the cargo-audit report presenter
Pull Request -
State: closed - Opened by sidunder over 1 year ago
- 1 comment
#824 - fix(cargo-audit): set clap bin_name to cargo
Pull Request -
State: closed - Opened by tranzystorek-io over 1 year ago
- 1 comment
#823 - build(deps): bump askama from 0.11.1 to 0.12.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, rust
#822 - build(deps): bump rust-embed from 6.4.2 to 6.6.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, rust
#821 - Incorrect report when your local package name matches that of a crate in the audit database
Issue -
State: closed - Opened by thebracket over 1 year ago
- 3 comments
#820 - Build failing when using `cargo install --git`
Issue -
State: closed - Opened by Edu4rdSHL over 1 year ago
- 1 comment
#819 - Enable default reporting of informational advisories
Pull Request -
State: closed - Opened by sidunder over 1 year ago
- 2 comments
#818 - Better document the configuration
Issue -
State: open - Opened by Shnatsel over 1 year ago
Labels: enhancement, cargo-audit crate, good first issue
#817 - Linter: Clean up crates.io package name check error
Pull Request -
State: closed - Opened by thewizzy over 1 year ago
- 1 comment
#816 - Remove latest commit signature check
Pull Request -
State: closed - Opened by sidunder over 1 year ago
#815 - Re-enable MacOS CI with `--all-features`
Pull Request -
State: closed - Opened by Shnatsel over 1 year ago
- 1 comment
#814 - `cargo audit bin`: filter advisories by binary type
Pull Request -
State: closed - Opened by Shnatsel over 1 year ago
- 4 comments
#813 - Regenerate platforms for rustc 1.69.0-nightly
Pull Request -
State: closed - Opened by Shnatsel over 1 year ago
#812 - `cargo audit bin` reports Windows-only issues in Linux binaries
Issue -
State: closed - Opened by Shnatsel over 1 year ago
#811 - build(deps): bump toml from 0.7.1 to 0.7.2
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, rust
#810 - build(deps): bump petgraph from 0.6.2 to 0.6.3
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, rust
#809 - Use new feature/dependency syntax
Pull Request -
State: closed - Opened by kornelski over 1 year ago
- 1 comment
#808 - Upgrade git2 dependency
Pull Request -
State: closed - Opened by kornelski over 1 year ago
- 3 comments
#807 - Lacking regular crates.io releases
Issue -
State: closed - Opened by kornelski over 1 year ago
- 3 comments
#804 - cargo audit crashing - only - during GitHub Action workflow
Issue -
State: closed - Opened by suchapalaver over 1 year ago
- 4 comments
#801 - rustsec: bump `cargo-edit` to v0.11; MSRV 1.64
Pull Request -
State: closed - Opened by tarcieri over 1 year ago
- 13 comments
#795 - cargo-audit: macOS build failures in CI with `--all-features`
Issue -
State: open - Opened by tarcieri over 1 year ago
- 9 comments
#790 - Fetching the crates.io index is slow
Issue -
State: closed - Opened by fenollp over 1 year ago
- 2 comments
#783 - Does cargo audit support listing all exact versions of the crate and its dependencies?
Issue -
State: closed - Opened by TheButlah over 1 year ago
- 3 comments
#781 - Exported OSV advisories do not populate the top-level severity field
Issue -
State: closed - Opened by alpire over 1 year ago
- 3 comments
#774 - build(deps): bump cargo-edit from 0.9.1 to 0.11.7
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 1 comment
Labels: dependencies, rust
#773 - actions-rs is unmaintained
Issue -
State: closed - Opened by Finomnis almost 2 years ago
- 1 comment
#771 - Bump abscissa_core from 0.6.0 to 0.7.0
Pull Request -
State: closed - Opened by dependabot[bot] almost 2 years ago
- 2 comments
Labels: dependencies, rust
#750 - Get rid of OpenSSL
Issue -
State: closed - Opened by Shnatsel almost 2 years ago
- 6 comments
Labels: enhancement, help wanted, rustsec crate, cargo-audit crate
#746 - Request for severity and/or CVSS scores to be added to output of cargo-audit
Issue -
State: closed - Opened by asnaseer-resilient almost 2 years ago
- 4 comments
Labels: enhancement, cargo-audit crate, good first issue
#740 - Allow configuring maximum file size for scanning binaries
Issue -
State: open - Opened by Shnatsel almost 2 years ago
Labels: enhancement, cargo-audit crate, good first issue
#740 - Allow configuring maximum file size for scanning binaries
Issue -
State: open - Opened by Shnatsel almost 2 years ago
Labels: enhancement, cargo-audit crate, good first issue
#736 - Advisories for `cargo audit` itself are printed for every scanned binary (instead of once)
Issue -
State: closed - Opened by Shnatsel almost 2 years ago
- 2 comments
Labels: bug, cargo-audit crate, good first issue
#713 - Database originated CVSS fields
Issue -
State: closed - Opened by pinkforest almost 2 years ago
- 2 comments
Labels: advisory-db
#696 - `cargo audit` gets local crates confused with remote crates of the same name
Issue -
State: open - Opened by banool about 2 years ago
- 11 comments
Labels: bug, help wanted
#682 - Add license and attribution fields to advisories
Pull Request -
State: closed - Opened by amousset about 2 years ago
- 33 comments
#680 - Allow using different licenses for advisories
Issue -
State: closed - Opened by amousset about 2 years ago
- 1 comment
Labels: advisory-db
#664 - Add `affected` field `macros`
Issue -
State: open - Opened by pinkforest about 2 years ago
- 1 comment
Labels: advisory-db
#664 - Add `affected` field `macros`
Issue -
State: open - Opened by pinkforest about 2 years ago
- 1 comment
Labels: advisory-db
#664 - Add `affected` field `macros`
Issue -
State: open - Opened by pinkforest about 2 years ago
- 1 comment
Labels: advisory-db
#664 - Add `affected` field `macros`
Issue -
State: open - Opened by pinkforest about 2 years ago
- 1 comment
Labels: advisory-db
#664 - Add `affected` field `macros`
Issue -
State: open - Opened by pinkforest about 2 years ago
- 1 comment
Labels: advisory-db
#664 - Add `affected` field `macros`
Issue -
State: open - Opened by pinkforest about 2 years ago
- 1 comment
Labels: advisory-db
#664 - Add `affected` field `macros`
Issue -
State: open - Opened by pinkforest about 2 years ago
- 1 comment
Labels: advisory-db
#656 - Add a command to synchronize advisory data from osv.dev/GHSA
Pull Request -
State: closed - Opened by amousset about 2 years ago
- 2 comments
#648 - Cargo audit doesn't report all issues without `--deny warnings`
Issue -
State: closed - Opened by martin-t about 2 years ago
- 3 comments
Labels: good first issue
#632 - Bring back version information using Clap Derive attribute
Pull Request -
State: closed - Opened by deg4uss3r about 2 years ago
- 2 comments
#629 - Stop requiring the latest git commit in advisory-db to be signed
Issue -
State: closed - Opened by Shnatsel about 2 years ago
- 1 comment
Labels: good first issue