OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2025-12-29 15:56:07 +01:00
Code Issues Packages Projects Releases Wiki Activity

RUSTSEC-2016-0005: add note about rust-crypto vs RustCrypto

Browse Source 
The `rust-crypto` crate and RustCrypto org have confusingly similar
names, which has caused confusion about this advisory in practice:

https://www.reddit.com/r/rust/comments/e29sxc/ann_rustcryptoaead_v020_heapless_symmetric_aead/f8ujyxm/

This commit adds a small note to disambiguate them and note that
RustCrypto-the-GitHub-org is still maintained.
This commit is contained in:
Tony Arcieri
2020-01-19 11:01:43 -08:00
parent 3aa5df1bbc
commit e30a06a6b2
1 changed files with 4 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
crates/rust-crypto/RUSTSEC-2016-0005.toml
View File

@@ -11,6 +11,10 @@ description = """
The `rust-crypto` crate has not seen a release or GitHub commit since 2016,
and its author is unresponsive.
*NOTE: The (old) `rust-crypto` crate (with hyphen) should not be confused with
similarly named (new) [RustCrypto GitHub Org] (without hyphen). The GitHub Org
is actively maintained.*
We recommend you switch to one of the following crates instead, depending on
which algorithms you need: