-
Notifications
You must be signed in to change notification settings - Fork 67
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Cargo audit failing #544
Comments
ionut-arm
added
bug
Something isn't working
security
Issues related to the security and privacy of the service
labels
Oct 18, 2021
The more pressing,
There is also a problem with
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
As can be seen here,
cargo-audit
fails due to a number of issues occurring lower in the crate dependency tree. Thus we cannot fix any of the issues directly by updating dependencies of Parsec (yet), but we might be able to help with updating our dependencies in that regard.The main issue that must be fixed is the segfault that was discovered in
time
, which is ultimately a dependency ofspiffe
. Currently a fix for this is blocked because the PR attempting to bump the import inchrono
is stalled (see here).The other issues regarding yanked versions of
const-oid
andder
are waiting for updates up in the chain, which end up feeding intospiffe
again. Our plan of action should be to report this to the owner ofspiffe
, and whenever updates are available to help with patching them there.time
dependency fixedder
andconst-oid
dependencies fixedThe text was updated successfully, but these errors were encountered: