Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

RUSTSEC-2020-0168: mach is unmaintained #80

Closed
vbrandl opened this issue Mar 16, 2023 · 2 comments
Closed

RUSTSEC-2020-0168: mach is unmaintained #80

vbrandl opened this issue Mar 16, 2023 · 2 comments

Comments

@vbrandl
Copy link

vbrandl commented Mar 16, 2023

I have a project, that indirectly depends on quanta through metrics-exporter-prometheus. The mach dependency, on which quanta depends, is unmaintained: https://rustsec.org/advisories/RUSTSEC-2020-0168.html

There is a fork of mach, that might be an alternative: https://crates.io/crates/mach2

While the project does not run on iOS or MacOS, I would prefer to know the problem is fixed instead of suppressing this advisory.
@vbrandl vbrandl mentioned this issue Mar 16, 2023
Closed
@tobz
Copy link
Member

tobz commented Mar 16, 2023
edited
Loading

There's an open PR for this -- #79 -- that I haven't taken a look at yet. It's still not super clear to me why they filing a RUSTSEC advisory simply for an unmaintained crate.. like if there was an actual problem, or problems, vs just being unmaintained.

Figuring that out is the first step before I merge the aforementioned PR.

@tobz
Copy link
Member

tobz commented Mar 24, 2023

Resolved as #79 has now been released as of [email protected].

@tobz tobz closed this as completed Mar 24, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@tobz @vbrandl