-
Notifications
You must be signed in to change notification settings - Fork 2.4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Allow registries to patch crates #14458
Labels
A-patch
Area: [patch] table override
A-registries
Area: registries
C-enhancement
Category: enhancement
Comments
epage
added
C-enhancement
Category: enhancement
A-registries
Area: registries
A-patch
Area: [patch] table override
labels
Aug 27, 2024
First steps
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
A-patch
Area: [patch] table override
A-registries
Area: registries
C-enhancement
Category: enhancement
Cargo has a patch feature today to address bugs and other issues in packages. When people are blocked, there are security issues, or legal issues, an organization managing may want to quickly deploy these patches.
One venue for doing this is through the registry itself, especially when the registry is managed by a company where software policy is top-down. This would need
In rare circumstances, a community registry like crates.io may want to do this as well, e.g. to do something like #14452.
Policy for crates.io is being left to a future RFC by that team. It should likely consider audit tools and rules including
The text was updated successfully, but these errors were encountered: