Deny: yaml-rust is unmaintained #1

rdcm · 2024-09-06T17:01:38Z

Config library config = "0.14.0" depend on rust-yaml unmaintained library:

error[unmaintained]: yaml-rust is unmaintained.
    │
322 │ yaml-rust 0.4.5 registry+https://github.com/rust-lang/crates.io-index
    │ ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ unmaintained advisory detected
    │
    ├ ID: RUSTSEC-2024-0320
    ├ Advisory: https://rustsec.org/advisories/RUSTSEC-2024-0320
    ├ The maintainer seems [unreachable](https://github.com/chyh1990/yaml-rust/issues/197).
      
      Many issues and pull requests have been submitted over the years
      without any [response](https://github.com/chyh1990/yaml-rust/issues/160).

This section in deny.toml must be removed:

[advisories]
ignore = ["RUSTSEC-2024-0320"] # https://rustsec.org/packages/yaml-rust.html

The text was updated successfully, but these errors were encountered:

rdcm · 2024-09-06T22:44:23Z

Merged, but not released:
rust-cli/config-rs#567

rdcm added the enhancement New feature or request label Sep 6, 2024

rdcm self-assigned this Sep 6, 2024

rdcm changed the title ~~Replace config library~~ Deny: yaml-rust is unmaintained Sep 6, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Deny: yaml-rust is unmaintained #1

Deny: yaml-rust is unmaintained #1

rdcm commented Sep 6, 2024 •

edited

Loading

rdcm commented Sep 6, 2024

Deny: yaml-rust is unmaintained #1

Deny: yaml-rust is unmaintained #1

Comments

rdcm commented Sep 6, 2024 • edited Loading

rdcm commented Sep 6, 2024

rdcm commented Sep 6, 2024 •

edited

Loading