81
submitted 8 months ago by thomask to c/rust@programming.dev
you are viewing a single comment's thread
view the rest of the comments
[-] Ephera@lemmy.ml 11 points 8 months ago

I'm not sure, what they mean with those ratings, to be honest.

This whole article is about the yaml-rust library having been marked as unmaintained in the RUSTSEC advisory database: https://rustsec.org/packages/yaml-rust.html

RUSTSEC is not intrinsic to the language, but it's maintained by the Rust Foundation and there's some really solid tooling, which can tell you in the blink of an eye that one of your dependencies is insecure.

Well, and then there's some unofficial projects which curate libraries, like https://awesome-rust.com and https://lib.rs (the latter also serves as an alternative frontend for the official package registry https://crates.io ).

this post was submitted on 27 Mar 2024
81 points (96.6% liked)

Rust

6046 readers
91 users here now

Welcome to the Rust community! This is a place to discuss about the Rust programming language.

Wormhole

!performance@programming.dev

Credits

  • The icon is a modified version of the official rust logo (changing the colors to a gradient and black background)

founded 1 year ago
MODERATORS