Cryptographically verifiable, distributed dependency reviews
Add the last reviewed version to Cargo.toml / [dependencies]:
zip = "0.5.3"
Please, use mobile in landscape.
Filter reviews clicking on the numbers in the summary.
Full column names in tooltip hints: rating Negative, rating Neutral, rating Positive, rating Strong, thoroughness, understanding, reviews count.
Looks like a solid crate. A few minor concerns:
CON
or similar.File | Rating | Notes |
---|---|---|
benches/read_entry.rs | +1 | |
examples/extract_lorem.rs | +1 | |
examples/extract.rs | +1 | |
examples/file_info.rs | +1 | |
examples/stdin_info.rs | +1 | |
examples/write_dir.rs | 0 | 755 permissions make me slightly nervous, but I think it's safe |
examples/write_sample.rs | 0 | 755 permissions make me slightly nervous, but I think it's safe |
script/doc-upload.cfg | +1 | |
src/compression.rs | +1 | |
src/cp437.rs | +1 | |
src/crc32.rs | +1 | |
src/lib.rs | +1 | |
src/read.rs | +1 | |
src/result.rs | +1 | |
src/spec.rs | +1 | |
src/types.rs | 0 | Could be a little more defensive towards misue, but pretty solid. |
src/write.rs | +1 | |
tests/data/*.zip | Unreviewed... probably OK though | |
tests/end_to_end.rs | +1 | |
tests/invalid_date.rs | +1 | |
tests/zip64_large.rs | +1 | |
.gitignore | +1 | |
.travis.yml | -1 | |
appveyor.yml | -1 | |
Cargo.toml | +1 | |
Cargo.toml.orig | +1 | |
LICENSE | +1 | MIT |
README.md | +1 |
Other | Rating | Notes |
---|---|---|
unsafe | +1 | No unsafe code |
fs | +1 | Examples/tests appear safe. |
io | +1 | |
docs | +1 | |
tests | +1 | Could use more fuzzing tests |
Line | Notes |
---|---|
215 | I'd like this to have a scarier name... but eh, at least it's sound. |
250 | This drops invalid components... I think it should return an error on invalid components. But at least it's sound and shouldn't be vulnerable to path navigation attacks? |
250 | This doesn't forbid CON or similar. |
298 | Excellent test, this is exactly what I want to see! |
© bestia.dev 2023, MIT License, Version: 2023.608.1636
Open source repository for this web app: https://github.com/bestia-dev/cargo_crev_web/
0.5.3: Replaced libflate with flate2, minor touchups. LGTM.
0.5.2: Looks like a solid crate. A few minor concerns:
CON
or similar.Detail
src/types.rs
CON
or similar.