Cryptographically verifiable, distributed dependency reviews
Add the last reviewed version to Cargo.toml / [dependencies]:
num-traits = "0.2.11"
Filter reviews clicking on the numbers in the summary.
Full column names in tooltip hints: reviews count, rating Strong, rating Positive, rating Neutral, rating Negative, rating None, alternatives, issues, advisories, thoroughness, understanding
num-traits provides traits for writing code generic over numeric types
and implementations for built-in numeric types. I exclusively reviewed
num-traits uses some instances of unsafe code. Each unsafe block has a
comment explaining why it is required and why it is sound. The blocks are
easy to understand and check locally.
With a prior parsing bug fixed and Rust soon stabilizing floating point to
integer conversion without UB the previous reservations no longer hold. It
looks stable as is and doesn't attempt anything far fetched.
Fixed panic when parsing floating point literals
Mostly just traits; unsafe can probably be removed, see https://github.com/rust-num/num-traits/issues/123
Not quite ready for untrusted input due to panics and not fuzzed. Minor
soundness concerns for floating point operations, rooted in Rust language
as operator not having fully specified behaviour (yet). All is well for the
integer part of the library.
Nothing but a re-export of num-traits 0.2
© Luciano Bestia 2021, MIT Licence, Version: 2020.913.1245
Open source repository for this web app: https://github.com/LucianoBestia/cargo_crev_web/