Issues found
Based on crates you own that have been published to crates.io. The best way to monitor these issues is to subscribe to the atom feed in your RSS reader.
davis-edi-rs
Dependency async-scoped 0.7.0 is significantly outdated
Upgrade to 0.9.0 to get all the fixes, and avoid causing duplicate dependencies in projects.
In Cargo, different 0.x versions are considered incompatible, so this is a semver-major upgrade.
Dependency opencv 0.92.3 is significantly outdated
Upgrade to 0.94.2 to get all the fixes, and avoid causing duplicate dependencies in projects.
Dependency nalgebra 0.32.2 is outdated
Upgrade to 0.33.2 to get all the fixes, and avoid causing duplicate dependencies in projects.
Dependency num-derive 0.3.3 is outdated
Upgrade to 0.4.2 to get all the fixes, and avoid causing duplicate dependencies in projects.
Dependency simple-error 0.2.3 is outdated
Upgrade to 0.3.1 to get all the fixes, and avoid causing duplicate dependencies in projects.
Dependency toml 0.5.8 is outdated
Upgrade to 0.8.19 to get all the fixes, and avoid causing duplicate dependencies in projects.
Optional dependency 'cv-convert' exposed as an implicit feature
Cargo automatically makes publicly-available crate features for every optional dependency, unless the dependencies are referenced using
dep:syntax. Feature 'cv-convert' may have been unintentional.
adder-viz
Dependency eframe 0.26.2 is significantly outdated
Consider upgrading to 0.30.0 to get all the fixes and improvements.
Dependency egui 0.26.2 is significantly outdated
Consider upgrading to 0.30.0 to get all the fixes and improvements.
Dependency egui_file 0.16.3 is significantly outdated
Consider upgrading to 0.21.0 to get all the fixes and improvements.
Dependency opencv 0.84.5 is significantly outdated
Consider upgrading to 0.94.2 to get all the fixes and improvements.
Dependency rfd 0.10.0 is significantly outdated
Consider upgrading to 0.15.2 to get all the fixes and improvements.
Dependency egui_plot 0.26.2 is outdated
Consider upgrading to 0.30.0 to get all the fixes and improvements.
Dependency strum 0.24.1 is outdated
Consider upgrading to 0.26.3 to get all the fixes and improvements.
Dependency strum_macros 0.24.3 is outdated
Consider upgrading to 0.26.4 to get all the fixes and improvements.
Dependency thiserror 1.0.58 is a bit outdated
Consider upgrading to 2.0.11 to get all the fixes and improvements.
Easy way to bump dependencies:
cargo install cargo-edit; cargo upgrade -i; Also check out Dependabot service on GitHub.Optional dependency 'opencv' exposed as an implicit feature
Cargo automatically makes publicly-available crate features for every optional dependency, unless the dependencies are referenced using
dep:syntax. Feature 'opencv' may have been unintentional.
adder-codec-core
Dependency hashbrown 0.13.2 is significantly outdated
Upgrade to 0.15.2 to get all the fixes, and avoid causing duplicate dependencies in projects.
Dependency bitstream-io 1.6.0 is outdated
Upgrade to 2.6.0 to get all the fixes, and avoid causing duplicate dependencies in projects.
Dependency float-cmp 0.9.0 is outdated
Upgrade to 0.10.0 to get all the fixes, and avoid causing duplicate dependencies in projects.
Dependency itertools 0.10.5 is outdated
Upgrade to 0.14.0 to get all the fixes, and avoid causing duplicate dependencies in projects.
Dependency priority-queue 1.3.1 is a bit outdated
Consider upgrading to 2.1.0 to get all the fixes and improvements.
aedat
Dependency flatbuffers 2.0.0 is significantly outdated
Upgrade to 25.1.24 to get all the fixes, and avoid causing duplicate dependencies in projects.
Dependency zstd 0.12.3 is significantly outdated
Upgrade to 0.13.2 to get all the fixes, and avoid causing duplicate dependencies in projects.
Dependency ndarray 0.15.3 is outdated
Consider upgrading to 0.16.1 to get all the fixes and improvements.
Dependency num-derive 0.3.3 is outdated
Upgrade to 0.4.2 to get all the fixes, and avoid causing duplicate dependencies in projects.
Dependency roxmltree 0.14.1 is outdated
Upgrade to 0.20.0 to get all the fixes, and avoid causing duplicate dependencies in projects.
adder-codec-rs, arithmetic-coding-adder-dep, arithmetic-coding-core-adder-dep
The Cargo package has no git commit information
Before publishing a package, make sure all packaged files are committed to the repository, and there are no "dirty" files. Push this commit to crate's public repository.
To protect against supply chain attacks similar to CVE-2024-3094, lib.rs will soon start flagging non-reproducible packages without public source code as suspicious. Currently only git repositories are supported (but may be hosted anywhere, not just GitHub). If you'd like a different SCM supported, please file a feature request.
adder-codec-rs
Dependency opencv 0.84.5 is significantly outdated
Upgrade to 0.94.2 to get all the fixes, and avoid causing duplicate dependencies in projects.
Dependency bitstream-io 1.6.0 is outdated
Upgrade to 2.6.0 to get all the fixes, and avoid causing duplicate dependencies in projects.
Dependency duplicate 0.4.1 is outdated
Upgrade to 2.0.0 to get all the fixes, and avoid causing duplicate dependencies in projects.
Dependency float-cmp 0.9.0 is outdated
Upgrade to 0.10.0 to get all the fixes, and avoid causing duplicate dependencies in projects.
Dependency itertools 0.10.3 is outdated
Upgrade to 0.14.0 to get all the fixes, and avoid causing duplicate dependencies in projects.
Dependency kiddo 4.2.0 is outdated
Consider upgrading to 5.0.3 to get all the fixes and improvements.
Dependency reqwest 0.11.11 is outdated
Upgrade to 0.12.12 to get all the fixes, and avoid causing duplicate dependencies in projects.
Dependency thiserror 1.0.34 is a bit outdated
Consider upgrading to 2.0.11 to get all the fixes and improvements.
Dependency toml 0.5.8 is outdated
Upgrade to 0.8.19 to get all the fixes, and avoid causing duplicate dependencies in projects.
Failed to verify create's content against its repository
Verified 80 out of 90 files (includes 2 Cargo-generated).
- warning: The crates.io package has no commit hash associated with it.
- Publish a new version, without using
--allow-dirtyflag. Make sure all changes are committed before publishing. Useinclude/excludeinCargo.tomlto omit unnecessary files.
- Publish a new version, without using
Files in the crates.io crate compared to the repository:
Cargo.locknot found.TEST_2948180520.addrnot found.TEST_1448264895.addrnot found.TEST_3438443262.addrnot found.TEST_134606610.addrnot found.TEST_188894259.addrnot found.TEST_1013978608.addrnot found.TEST_2959647931.addrnot found.TEST_5906748.addrnot found.TEST_149017811.addrnot found.TEST_2454823784.addrnot found.
Looked for the crate in
adder-codec-rs/. Fetchedhttps://github.com/ac-freeman/adder-codec-rs.gittaggedv0.4.8(269af7accc12472b0e31b87ccd5f33dbbb46bc48).Checked on 2024-08-30
This check is experimental.
- warning: The crates.io package has no commit hash associated with it.
Optional dependency 'adder-codec-core' exposed as an implicit feature
Cargo automatically makes publicly-available crate features for every optional dependency, unless the dependencies are referenced using
dep:syntax. Features 'adder-codec-core', 'opencv', 'davis-edi-rs' may have been unintentional.
davis-edi-rs, adder-codec-core, aedat
Dependency thiserror 1.0.38 is a bit outdated
Consider upgrading to 2.0.11 to get all the fixes and improvements.
video-rs-adder-dep
Dependency ffmpeg-next 6.0 is outdated
Upgrade to 7.1.0 to get all the fixes, and avoid causing duplicate dependencies in projects.
Dependency ndarray 0.15 is outdated
Consider upgrading to 0.16.1 to get all the fixes and improvements.
Imprecise dependency requirement url = 2
Cargo does not always pick latest versions of dependencies! Specify the version as
url = "2.5.0". IfCargo.lockends up having an unexpectedly old version of the dependency, you might get a dependency that lacks features/APIs or important bugfixes that you depend on. This is most likely to happen when using theminimal-versionsflag, used by users of old Rust versions.If you want to keep using truly minimal dependency requirements, please make sure you test them in CI with
-Z minimal-versionsCargo option, because it's very easy to accidentally use a feature added in a later version.
arithmetic-coding-core-adder-dep
No repository property
Specify git repository URL in
Cargo.tomlto help users find more information, contribute, and for lib.rs to read more info.Latest stable release is old
It's been over 13 months. Is this crate still maintained? Make a new release, either to refresh it, or to set
[badges.maintenance] status = "deprecated"(or
"as-is","passively-maintained").Nightly crates tend to have a short lifespan. We're delisting them if they're not updated frequently.
Dependency thiserror 1.0.30 is a bit outdated
Consider upgrading to 2.0.11 to get all the fixes and improvements.
adder-codec-rs, adder-viz, adder-codec-core
Dependency rand 0.8.5 is a bit outdated
Consider upgrading to 0.9.0 to get all the fixes and improvements.
adder-codec-rs, adder-viz, adder-info, adder-to-dvs, adder-codec-core
Dependency ndarray 0.15.6 is outdated
Consider upgrading to 0.16.1 to get all the fixes and improvements.
arithmetic-coding-adder-dep
Failed to verify create's content against its repository
Verified 7 out of 28 files (includes 2 Cargo-generated).
- warning: The crates.io package has no commit hash associated with it.
- Publish a new version, without using
--allow-dirtyflag. Make sure all changes are committed before publishing. Useinclude/excludeinCargo.tomlto omit unnecessary files.
- Publish a new version, without using
- warning: The crates.io package has no information about its path inside its repository.
- warning: Could not find Cargo.toml for this package in its repo (via tags).
- warning: Could not discover crate's location in its repository (via tags).
Files in the crates.io crate compared to the repository:
Cargo.locknot found.Cargo.toml.origdoes not match the repository.LICENSE.mdnot found.sherlock.rsdoes not match the repository.mod.rsdoes not match the repository.examples/concatenated.rsdoes not match the repository.max_length.rsnot found.fenwick_context_switching.rsdoes not match the repository.symbolic.rsdoes not match the repository.fenwick_adaptive.rsdoes not match the repository.integer.rsdoes not match the repository.fixed_length.rsdoes not match the repository.sherlock.rsdoes not match the repository.
mod.rsdoes not match the repository.src/decoder.rsdoes not match the repository.encoder.rsdoes not match the repository.lib.rsdoes not match the repository.
tests/fixed_length.rsdoes not match the repository.sherlock.rsdoes not match the repository.max_length.rsnot found.concatenated.rsdoes not match the repository.
mod.rsdoes not match the repository.
Fetched
https://github.com/danieleades/arithmetic-coding.gitc6ada58dcfc98d9b40c50cf6d56d485aa405e609.Checked on 2024-07-24
- warning: The crates.io package has no commit hash associated with it.
Dependency bitstream-io 1.2.0 is outdated
Upgrade to 2.6.0 to get all the fixes, and avoid causing duplicate dependencies in projects.
Dependency thiserror 1.0.30 is a bit outdated
Consider upgrading to 2.0.11 to get all the fixes and improvements.
adder-to-dvs
Dependency video-rs 0.5.0 is outdated
Consider upgrading to 0.10.3 to get all the fixes and improvements.
If some of these crates are unmaintained and shouldn't be checked, yank them or add [badges.maintenance] to their
status = "deprecated"Cargo.toml.