Ecosyste.ms: OpenCollective

An open API service for software projects hosted on Open Collective.

github.com/mozilla/cargo-vet

supply-chain security for Rust
https://github.com/mozilla/cargo-vet

Don't prompt to renew expiring wildcard audits for inactive crates

mystor opened this pull request 11 days ago
Don't warn about expired/expiring wildcard audits if the crate hasn't been updated in a while

bholley opened this issue 17 days ago
Fix new clippy failures

mystor opened this pull request about 1 month ago
Upgrade enough dependencies to upgrade to ring 0.17

glandium opened this pull request about 1 month ago
Use SPDX license format

atouchet opened this pull request about 2 months ago
Switch winapi dependency to windows/windows-sys

atouchet opened this issue about 2 months ago
Different criteria for build-time dependencies

quic-cbusold opened this issue about 2 months ago
`cargo update` alternative that takes audits into account

str4d opened this issue 3 months ago
Add support for authorization header.

bachp opened this pull request 3 months ago
Add CHANGELOG.md to track changes between cargo-vet releases

mystor opened this pull request 3 months ago
Tests failing in 0.10.0 (test-project-diff-output)

chris-morgan opened this issue 3 months ago
Add Actix audit file to registry

robjtede opened this pull request 3 months ago
Bump to 0.10.0

mystor opened this pull request 4 months ago
Use the new browse endpoint for diff.rs

mystor opened this pull request 4 months ago
Remove noisy tracing instrumentation

mystor opened this pull request 4 months ago
Remember user --mode choices, and support diff.rs for inspect

mystor opened this pull request 4 months ago
Specify the supported rust version for cargo-vet

mystor opened this pull request 4 months ago
Simplify crates.io API caching

mystor opened this pull request 5 months ago
More consistently tidy files before serializing

mystor opened this pull request 5 months ago
"does not exist" error for existing package

sophie-h opened this issue 5 months ago
sourcegraph integration broken

RaphaelDarley opened this issue 6 months ago
Fix mistyped typename

mystor opened this pull request 6 months ago
Audit requirements may be overly strong when dealing with multiple root crates in a workspace

mystor opened this issue 6 months ago
Add support for diff.rs to `cargo vet diff`

divergentdave opened this pull request 6 months ago
Add diff.rs as an alternate mode for `cargo vet diff`

divergentdave opened this issue 6 months ago
Add SecureDrop's aggregated audits to the registry

legoktm opened this pull request 6 months ago
Update cargo-dist to version 0.18.0

mystor opened this pull request 6 months ago
Always prune imports when importing new audits for a crate

mystor opened this pull request 6 months ago
Consider pruning publisher entries even if `prune_imports` is disabled when a new publisher entry is being added for a crate

mystor opened this issue 6 months ago
Suggest cargo vet fmt for formatting errors

mystor opened this pull request 6 months ago
Remove dead code to fix CI.

afranchuk opened this pull request 7 months ago
Error message should suggest `cargo vet fmt` on consistency errors?

pchickey opened this issue 7 months ago
Pager invocation should respect pre-existing LESS

afranchuk opened this issue 7 months ago
Added support for Cargo `http.cainfo`

ranger-ross opened this pull request 8 months ago
Include criteria which imply the required criteria in suggest output

mystor opened this pull request 8 months ago
Clarify which audits are recommended when `X` `implies` `Y` criteria

anforowicz opened this issue 8 months ago
`cargo vet` should respect `http.cainfo` in Cargo config

ranger-ross opened this issue 8 months ago
SourceGraph is unreliable

cemoktra opened this issue 8 months ago
Fix clippy

bholley opened this pull request 8 months ago
remove dollar sign from shell commands

GlenDC opened this pull request 8 months ago
Multiple audits which are too similar from the same source can be confused

mystor opened this issue 9 months ago
`cargo vet aggregate` is not reporting errors correctly

str4d opened this issue 9 months ago
supply-chain vs dependencies

pinkforest opened this issue 9 months ago
Persistent aggregated repository of all audits in an organization (make `cargo vet aggregate` append only to `audits.toml`)

faern opened this issue 10 months ago
Adding new crates to a workspace and forgetting `audit-as-crates-io`

alexcrichton opened this issue 10 months ago
Stop depending on PackageId format for node ordering

mystor opened this pull request 10 months ago
Changes in cargo metadata PackageId format leading to test failures

mystor opened this issue 10 months ago
How to selectively import only some audits?

faern opened this issue 10 months ago
Install cargo-dist to generate releases

staktrace opened this pull request 10 months ago
Update metadata for new home

staktrace opened this pull request 10 months ago
Clean up `rustc` and `clippy` warnings.

anforowicz opened this pull request 10 months ago
Support host's local certificate store

hpenne opened this issue 10 months ago
Bump version of tracing-attributes in lockfile

mystor opened this pull request 10 months ago
Avoid writing `config.toml` and other files if no significant changes.

anforowicz opened this pull request 10 months ago
Book: Add repository URL

badboy opened this pull request 11 months ago
`cargo aggregate` failure due to mismatched criteria description is difficult to diagnose

anforowicz opened this issue 11 months ago
Additional tracing messages to diagnose missing audit criteria.

anforowicz opened this pull request 11 months ago
Lower the requested number of visible lines from sourcegraph to avoid error.

bholley opened this pull request 12 months ago
Upgrade libz-sys in Cargo.lock

glandium opened this pull request 12 months ago
`cargo vet certify` unnecessarily reformats `config.toml`

anforowicz opened this issue 12 months ago
Prefer local wildcard audits to remote (imported) audits.

afranchuk opened this pull request about 1 year ago
prefer local wildcard audits to remote regular audits

bholley opened this issue about 1 year ago
Perform import validation when aggregating remote audit files

mystor opened this pull request about 1 year ago
Make a new release with the importable field

ohaponiuk opened this issue about 1 year ago
Collapse non-importable audits when certifying.

afranchuk opened this pull request about 1 year ago
Prune non-importable audits.

afranchuk opened this pull request about 1 year ago
allow setting git diff command

cemoktra opened this pull request about 1 year ago
Add --cargo-arg option for arguments to pass through to cargo

danakj opened this pull request about 1 year ago
Mechanism for automatically pruning `importable = false` audits

mystor opened this issue about 1 year ago
`cargo vet check` only checks target-specific dependencies if `build.target` is used

Nemo157 opened this issue about 1 year ago
Calling source graph with `?visible=1000000` ends in 500

cemoktra opened this issue about 1 year ago
Bump toml_edit from 0.14.4 to 0.21.0

dependabot[bot] opened this pull request about 1 year ago
Bump toml from 0.5.9 to 0.8.8

dependabot[bot] opened this pull request about 1 year ago
Bump libc from 0.2.146 to 0.2.150

dependabot[bot] opened this pull request about 1 year ago
Bump toml from 0.5.9 to 0.8.6

dependabot[bot] opened this pull request about 1 year ago
Bump toml_edit from 0.14.4 to 0.20.7

dependabot[bot] opened this pull request about 1 year ago
Bump futures-util from 0.3.21 to 0.3.29

dependabot[bot] opened this pull request about 1 year ago
Bump toml from 0.5.9 to 0.8.5

dependabot[bot] opened this pull request about 1 year ago
Bump toml_edit from 0.14.4 to 0.20.5

dependabot[bot] opened this pull request about 1 year ago
Bump toml_edit from 0.14.4 to 0.20.4

dependabot[bot] opened this pull request about 1 year ago
Bump toml from 0.5.9 to 0.8.4

dependabot[bot] opened this pull request about 1 year ago
Bump tracing from 0.1.35 to 0.1.40

dependabot[bot] opened this pull request over 1 year ago
Fix new clippy warnings/errors.

afranchuk opened this pull request over 1 year ago
Bump tracing from 0.1.35 to 0.1.39

dependabot[bot] opened this pull request over 1 year ago
Audit cool_faces crate

robjtede opened this pull request over 1 year ago
Bump libc from 0.2.146 to 0.2.149

dependabot[bot] opened this pull request over 1 year ago
Bump similar from 2.2.0 to 2.3.0

dependabot[bot] opened this pull request over 1 year ago
Bump toml from 0.5.9 to 0.8.2

dependabot[bot] opened this pull request over 1 year ago
Bump toml_edit from 0.14.4 to 0.20.2

dependabot[bot] opened this pull request over 1 year ago
Bump toml_edit from 0.14.4 to 0.20.1

dependabot[bot] opened this pull request over 1 year ago
Bump toml from 0.5.9 to 0.8.1

dependabot[bot] opened this pull request over 1 year ago
Add CLI config file

Nemo157 opened this pull request over 1 year ago
Configure `--mode=local` default globally

Nemo157 opened this issue over 1 year ago
Bump indicatif from 0.17.0 to 0.17.7

dependabot[bot] opened this pull request over 1 year ago
FR: Web frontend for cargo vet certify

djkoloski opened this issue over 1 year ago
Override authorship data

Nemo157 opened this issue over 1 year ago
Dealing with violations is necessary

kornelski opened this issue over 1 year ago
Bump chrono from 0.4.23 to 0.4.31

dependabot[bot] opened this pull request over 1 year ago
Bump toml from 0.5.9 to 0.8.0

dependabot[bot] opened this pull request over 1 year ago
Bump toml_edit from 0.14.4 to 0.20.0

dependabot[bot] opened this pull request over 1 year ago