Code reviews of the Proptest crate // Lib.rs

These reviews are from cargo-vet. To add your review, set up cargo-vet and submit your URL to its registry.

1.5.0 (current) unknown

From kornelski/crev-proofs copy of salsa.debian.org.

Only in debcargo (unstable). Changelog:

Team upload.
Package proptest 1.5.0 from crates.io using debcargo 2.6.1
Fix an arithmetic overflow on 32-bit.
Skip test no_value_between_float_and_next_down on i386, i386 is known to have excess precision issues.
Skip tests f32_any_generates_desired_values, f64_any_generates_desired_values and max_shrink_iters_works_with_forking to hopefully establish baseline there (the autopkgtest has never previously passed on riscv64, it has always failed or been skipped).

The current version of Proptest is 1.5.0.

1.4.0 — diff review from 1.3.1 only (older version) safe-to-deploy

From zcash/rust-ecosystem copy of zcash/librustzcash. Audited without comment by Daira Emma Hopwood.

1.4.0 — diff review from 1.2.0 only (older version) safe-to-deploy

From zcash/rust-ecosystem copy of zcash/zcash. By str4d.

Adds support for generating arbitrary PathBufs, but as this crate is intended for fuzzing in test environments this is within its expected scope (and the new API would be used intentionally by downstream tests).

1.4.0 (older version) unknown

From kornelski/crev-proofs copy of git.savannah.gnu.org.

Packaged for Guix (crates-io)

0.10.1 (older version) ub-risk-3

From google/supply-chain copy of google/rust-crate-audits. By Manish Goregaokar.

Reviewed in CL 615011355 Not safe with hardware_rng feature on platforms without RDRAND support. Should bubble up the invariant or have a feature test assertion

cargo-vet does not verify reviewers' identity. You have to fully trust the source the audits are from.

ub-risk-3 (implies ub-risk-4)

Mild unsoundness or suboptimal soundness.

Full description of the audit criteria can be found at https://github.com/google/rust-crate-audits/blob/main/auditing_standards.md#ub-risk-3

ub-risk-4

Implied by other criteria

Extreme unsoundness.

Full description of the audit criteria can be found at https://github.com/google/rust-crate-audits/blob/main/auditing_standards.md#ub-risk-4

safe-to-deploy (implies safe-to-run)

This crate will not introduce a serious security vulnerability to production software exposed to untrusted input. More…

safe-to-run

Implied by other criteria

This crate can be compiled, run, and tested on a local workstation or in controlled automation without surprising consequences. More…

unknown

May have been packaged automatically without a review

This review is from Crev, a distributed system for code reviews. To add your review, set up cargo-crev.

The current version of Proptest is 1.5.0.

0.8.7 (older version) Rating: Positive Thoroughness: None Understanding: Medium

by cyplo on 2019-05-02

Skimmend through sources, looking for code smells, looks okay, some functions could be shorter to improve readability.

Crates in the crates.io registry are tarball snapshots uploaded by crates' publishers. The registry is not using crates' git repositories. There is absolutely no guarantee that the repository URL declared by the crate belongs to the crate, or that the code in the repository is the code inside the published tarball.

To review the actual code of the crate, it's best to use cargo crev open proptest. Alternatively, you can download the tarball of proptest v1.5.0 or view the source online.