Crate is unmaintained
Closed this issue · 2 comments
McPatate commented
Just ran cargo audit
and got the following output :
$> cargo audit
Fetching advisory database from `https://github.com/RustSec/advisory-db.git`
Loaded 477 security advisories (from /home/mc/.cargo/advisory-db)
Updating crates.io index
Scanning Cargo.lock for vulnerabilities (163 crate dependencies)
Crate: ansi_term
Version: 0.12.1
Warning: unmaintained
Title: ansi_term is Unmaintained
Date: 2021-08-18
ID: RUSTSEC-2021-0139
URL: https://rustsec.org/advisories/RUSTSEC-2021-0139
Dependency tree:
ansi_term 0.12.1
└── tracing-subscriber 0.2.25
└── tracing-test 0.1.0
└── clamd-client 0.1.2
warning: 1 allowed warning found
Was it marked as Unmaintained purposefully ?
LevitatingOrange commented
But thats not our crate right? It's ansi term which is used by tracing-subscriber. We only use it in dev-dependencies so I would vouch for keeping it in like it is.
McPatate commented
Ah my bad I misread the order of the dependency tree 🤦🏻