logo

Rust crates reviews

Cryptographically verifiable, distributed dependency reviews

reviewer: koba-e964

https://lib.rs/koba-e964

Rust links:

Rust-lang.org

lib.rs

crates.io

docs.rs

$ cargo crev repo fetch url https://github.com/koba-e964/crev-proofs
$ cargo crev id trust ZLSPBSgu6RWnqAqJN5nbifqDqk-JIEae2zqE480GfSg

repo: https://github.com/koba-e964/crev-proofs

Please, use mobile in landscape.

crate version
rating
date
reviewer
thoroughness, understanding
fake-static 0.1.0
negative
2022-02-05
koba-e964
none, medium

PoC code of the unsoundness bug: https://github.com/rust-lang/rust/issues/25860

path-clean 0.1.0
positive
2022-02-05
koba-e964
low, medium

The author claims "The code only matches/modifies ascii tokens and leaves the rest of the bytes as they are" as the safety proof and I confirmed that that is true.

thiserror 1.0.30
positive
2022-02-05
koba-e964
low, low

Mainly the changes are done in thiserror-impl. Changes in thiserror are those done to src/aserror.rs only, which are safe functions.

void 1.0.2
positive
2022-02-05
koba-e964
medium, medium

This crate provides only Void and related functions. This project has no updates since 2017.

© bestia.dev 2023, MIT License, Version: 2023.608.1636

Open source repository for this web app: https://github.com/bestia-dev/cargo_crev_web/