From f1cc8f3fec34078b47f3f48d3444d4f5e254dc10 Mon Sep 17 00:00:00 2001
From: Tony Arcieri <bascule@gmail.com>
Date: Fri, 12 Apr 2024 15:07:31 -0600
Subject: [PATCH] RUSTSEC-2023-0079: fix typos; add alternative (#1941)

---
 crates/pqc_kyber/RUSTSEC-2023-0079.md | 11 +++++++++--
 1 file changed, 9 insertions(+), 2 deletions(-)

diff --git a/crates/pqc_kyber/RUSTSEC-2023-0079.md b/crates/pqc_kyber/RUSTSEC-2023-0079.md
index 750ea49..6d04940 100644
--- a/crates/pqc_kyber/RUSTSEC-2023-0079.md
+++ b/crates/pqc_kyber/RUSTSEC-2023-0079.md
@@ -34,6 +34,13 @@ The KyberSlash pages were written by Daniel J. Bernstein. The FAQ originally sai
 
 The permanent link for the KyberSlash pages is [https://kyberslash.cr.yp.to](https://kyberslash.cr.yp.to).
 
-## Mitigation status in qpc_kyber crate
+## Mitigation status in `pqc_kyber` crate
 
-The issues has not been resolved in the `qpc_kyber` crate. A third-party fork that mitigates this attack vector has been published as [`safe_pqc_kyber`](https://crates.io/crates/safe_pqc_kyber).
+The issue has not been resolved in the upstream `pqc_kyber` crate.
+
+A third-party fork that mitigates this attack vector has been published as [`safe_pqc_kyber`](https://crates.io/crates/safe_pqc_kyber).
+
+## Alternatives
+
+The [`ml-kem`](https://crates.io/crates/ml-kem) crate is a maintained
+alternative pure Rust implementation of ML-KEM / Kyber.