logo

Rust crates reviews

Cryptographically verifiable, distributed dependency reviews

reviewer: kornelski

https://lib.rs/kornelski

Rust links:

Rust-lang.org

lib.rs

crates.io

docs.rs

$ cargo crev repo fetch url https://github.com/kornelski/crev-proofs
$ cargo crev id trust X98FCpyv5I7z-xv4u-xMWLsFgb_Y0cG7p5xNFHSjbLA

repo: https://github.com/kornelski/crev-proofs

Please, use mobile in landscape.

crate version
rating
date
reviewer
thoroughness, understanding
adler 0.2.3
strong
2020-07-14
kornelski
low, medium
adler32 1.0.4
positive
2019-10-11
kornelski
low, medium
app_dirs 1.2.1
2020-04-03
kornelski
alternative:
https://lib.rs/app_dirs2
app_dirs2

Unmaintained

arc-swap 0.4.2
positive
2019-09-13
kornelski
low, low
arrayref 0.3.5
positive
2019-10-11
kornelski
low, medium
assert-json-diff 1.0.0
positive
2019-09-13
kornelski
low, medium
assert_cmd 1.0.1
positive
2020-05-01
kornelski
low, medium
atty 0.2.13
positive
2019-08-22
kornelski
low, medium
bincode 1.1.4
positive
2019-09-16
kornelski
low, low
bitstream-io 0.8.5
positive
2020-08-17
kornelski
low, low
bitvec 0.17.4
negative
2020-06-30
kornelski
none, none
issues:
https://github.com/myrrlyn/bitvec/issues/65
medium

Data race in unsafe code

c2-chacha 0.2.2
positive
2019-08-22
kornelski
low, medium
c3 0.11.0
negative
2020-04-03
kornelski
high, high
alternative:
https://c2rust.com
c2rust

Dead

c3_clang_extensions 0.3.7
negative
2020-04-03
kornelski
high, high
alternative:
https://c2rust.com
c2rust

Dead

cap 0.1.0
positive
2020-04-03
kornelski
low, medium
capnp 0.10.1
neutral
2019-10-11
kornelski
low, low

A lot of unsafe code

chrono 0.4.7
positive
2019-08-22
kornelski
low, medium
citrus 0.8.0
neutral
2020-04-03
kornelski
high, high
alternative:
https://c2rust.com
c2rust

it's fine, but c2rust does it better

cloudabi 0.0.3
positive
2019-07-25
kornelski
low, medium
colored 1.8.0
positive
2019-08-22
kornelski
low, medium
combine 3.8.1
positive
2019-10-11
kornelski
low, low
cookie_store 0.7.0
positive
2019-08-22
kornelski
low, medium
core-foundation-sys 0.6.2
positive
2019-07-24
kornelski
low, medium
crc 1.8.1
positive
2020-05-29
kornelski
low, low
css-color-parser 0.1.2
2020-04-03
kornelski
alternative:
https://lib.rs/css-color-parser2
css-color-parser2

unmaintained

css-color-parser 0.1.2
positive
2019-12-05
kornelski
low, medium
daemonize 0.4.1
positive
2019-10-11
kornelski
low, medium
debugid 0.4.0
positive
2019-07-25
kornelski
low, low
difference 2.0.0
positive
2019-08-22
kornelski
low, medium
dirs 1.0.5
positive
2019-10-11
kornelski
low, medium
displaydoc 0.1.6
positive
2020-05-04
kornelski
low, low

Clever

dunce 1.0.0
positive
2019-07-25
kornelski
high, high
encode_unicode 0.3.6
neutral
2020-09-07
kornelski
low, low

Contains unsafe transmutes that seem unnecessary

encoding 0.2.33
neutral
2019-08-22
kornelski
low, low

big macros + transmute

encoding-index-tradchinese 1.20141219.5
positive
2019-07-23
kornelski
low, medium
encoding_index_tests 0.1.4
positive
2019-08-22
kornelski
low, medium
extend 0.1.1
positive
2020-05-01
kornelski
low, low
file 1.1.2
neutral
2020-04-03
kornelski
high, high
alternative:
stdlib
stdlib

Obsolete

fs_extra 1.1.0
neutral
2020-05-29
kornelski
low, medium

May mangle UNC paths

fxhash 0.2.1
2020-05-21
kornelski
alternative:
https://crates.io
ahash

It works fine, but the project is totally unmaintained.

gantelet 0.3.1-alpha.3
negative
2020-05-01
kornelski
low, low

Completely unfinished, doesn't do anything

generic-array 0.12.3
neutral
2019-08-22
kornelski
low, low
hashbrown 0.8.2
positive
2020-08-18
kornelski
low, low
highway 0.2.0
positive
2019-10-11
kornelski
low, low
hostname 0.1.5
positive
2019-07-25
kornelski
medium, medium
httpdate 0.3.2
positive
2019-08-22
kornelski
low, medium
humantime 1.2.0
positive
2019-08-22
kornelski
low, medium
hyperlocal 0.7.0
positive
2020-04-03
kornelski
medium, medium
iovec 0.1.2
neutral
2019-08-22
kornelski
low, low

Full of transmute. This is playing with fire

ipconfig 0.1.9
neutral
2019-08-22
kornelski
low, low
ivf 0.1.0
positive
2020-09-07
kornelski
low, medium

For AV1 only, but who'd want any other codec, right?

language-tags 0.2.2
positive
2019-08-22
kornelski
low, medium
lazycell 1.2.1
positive
2019-08-22
kornelski
low, low
lcms2 5.1.4
positive
2019-07-23
kornelski
high, high
libpng-sys 1.1.3
neutral
2019-07-24
kornelski
medium, medium
libwebp-sys 0.3.0
positive
2020-04-03
kornelski
low, medium
linked-hash-map 0.5.2
neutral
2019-11-23
kornelski
low, low

lots of raw pointer manipulation and use of mem::uninitialized()

lock_api 0.3.1
neutral
2019-08-22
kornelski
low, low
lodepng 3.0.0
positive
2020-07-15
kornelski
high, high
lru-cache 0.1.2
positive
2019-07-24
kornelski
low, medium
managed 0.7.1
positive
2019-10-11
kornelski
low, low
markup5ever_rcdom 0.1.0
neutral
2020-04-03
kornelski
low, low
microbench 0.5.0
positive
2019-08-09
kornelski
low, medium
mime_guess 2.0.0-alpha.6
positive
2019-07-24
kornelski
low, medium
miniz_oxide_c_api 0.2.3
positive
2019-07-25
kornelski
low, medium
mockito 0.19.0
positive
2019-07-22
kornelski
medium, high
mozjpeg 0.8.14
positive
2019-07-22
kornelski
high, high
mozjpeg-sys 0.10.2
positive
2019-07-24
kornelski
medium, medium
mp4parse 0.11.4
neutral
2020-05-04
kornelski
low, medium

Fallible feature is unsound. The rest looks ok.

nasm-rs 0.1.4
positive
2019-09-17
kornelski
low, high
openssl-sys 0.9.48
positive
2019-07-25
kornelski
none, low
phf_codegen 0.7.24
positive
2019-07-23
kornelski
low, medium
pin-project-internal 0.4.23
neutral
2020-08-18
kornelski
low, none
ppv-lite86 0.2.6
positive
2019-11-23
kornelski
low, low
predicates 1.0.4
positive
2020-07-14
kornelski
low, low
proc-macro-error 1.0.4
neutral
2020-08-18
kornelski
low, none
proc-macro-error-attr 1.0.4
positive
2020-08-18
kornelski
low, low
prometheus 0.8.0
positive
2020-05-02
kornelski
low, low
publicsuffix 1.5.3
neutral
2019-09-17
kornelski
low, low

It's coupled with a really awful HTTP client for no reason. I'd expect it to bundle the data, or at least just do the file parsing, and delegate networking to a separate crate.

quick-error 1.2.3
positive
2020-04-03
kornelski
low, medium
rdrand 0.4.0
positive
2019-07-22
kornelski
low, low
remove_dir_all 0.5.2
neutral
2019-07-22
kornelski
low, low
resize 0.4.0
positive
2020-04-03
kornelski
high, high
rgb 0.8.20
positive
2020-07-08
kornelski
high, high

Fixed soundness of as_bytes

rgb 0.8.20
positive
2020-07-08
kornelski
high, high

Fixed soundness of ComponentBytes

rusqlite 0.19.0
positive
2019-07-24
kornelski
none, medium
rustracing 0.4.0
positive
2020-05-02
kornelski
low, low
sourcefile 0.1.4
positive
2019-08-09
kornelski
low, medium
stderrlog 0.4.3
positive
2020-05-29
kornelski
low, medium
textwrap 0.11.0
positive
2019-09-30
kornelski
low, medium
time 0.1.42
2020-04-03
kornelski
alternative:
https://lib.rs/chrono
chrono

Upgrade to 0.2!

tokio-codec 0.1.1
neutral
2019-09-13
kornelski
low, low
tokio-current-thread 0.1.6
positive
2019-07-22
kornelski
low, none
tokio-executor 0.1.8
positive
2019-10-11
kornelski
low, low
tokio-signal 0.2.7
positive
2019-11-23
kornelski
low, low
tokio-timer 0.2.11
positive
2019-09-16
kornelski
low, low
trackable 0.2.23
positive
2020-04-03
kornelski
low, low
treeline 0.1.0
positive
2020-04-03
kornelski
low, medium
try_from 0.3.2
positive
2019-07-22
kornelski
low, medium
typenum 1.10.0
neutral
2019-07-25
kornelski
low, low
uname 0.1.1
positive
2019-07-25
kornelski
medium, medium
v_escape 0.7.2
neutral
2019-07-23
kornelski
low, low
v_escape_derive 0.5.5
positive
2019-09-17
kornelski
low, low
v_htmlescape 0.4.5
positive
2019-09-17
kornelski
low, medium
vergen 3.1.0
neutral
2020-08-18
kornelski
low, medium
issues:
https://github.com/rustyhorde/vergen/issues/26
low
version_check 0.9.1
positive
2020-04-20
kornelski
low, medium
version_check 0.1.5
positive
2019-08-09
kornelski
low, medium
vpsearch 1.3.6
positive
2020-04-20
kornelski
high, high

The algorithm is very fast at finding things. It's not as fast at not finding matches.

widestring 0.2.2
positive
2019-07-25
kornelski
low, medium
winutil 0.1.1
neutral
2019-09-13
kornelski
low, medium
y4m 0.5.3
positive
2020-09-07
kornelski
low, medium

© bestia.dev 2023, MIT License, Version: 2023.608.1636

Open source repository for this web app: https://github.com/bestia-dev/cargo_crev_web/