Add more maintainers #160
Comments
|
cc @dtolnay |
|
Hi @XVilka, thanks for the PRs! If you are interested in maintaining, I would recommend publishing your fork under a different crate name. I think the community would appreciate having a maintained fork; it doesn't have to be this repo. |
|
We would use the fork in clap v2 if our security PR gets merged. |
|
@pksunkara No, we wouldn't. Switching to a fork would mean that I suggested to switch to a fork of @XVilka Are you looking forward to forking and maintaining the repo on you own? If not, I would go ahead and do that myself. |
|
@CreepySkeleton sadly no time for this, I am already scattered among many projects. |
|
@XVilka did you get any updates on this issue? I see that your 2 PRs ended up being merged. |
|
I am not aware of a maintained fork. |
|
My (previously) maintained fork (yaml-rust-davvid` @ crates.io) has merged efforts with @Ethiraric's fork as of Ethiraric#2.
Upgrading from yaml-rustUse this [dependencies]
yaml-rust = { version = "0.6", package = "yaml-rust2" }This allows you to switch to |
`yaml-rust` crate is unmaintained 1) `syntect` author won't update this dep to a fork of it due to lack of trust concerns with this new fork: trishume/syntect#526 2) cargo-deny produces this output: error[unmaintained]: yaml-rust is unmaintained. ┌─ /home/nazmul/github/r3bl-open-core/Cargo.lock:295:1 │ 295 │ yaml-rust 0.4.5 registry+https://github.com/rust-lang/crates.io-index │ --------------------------------------------------------------------- unmaintained advisory detected │ = ID: RUSTSEC-2024-0320 = Advisory: https://rustsec.org/advisories/RUSTSEC-2024-0320 = The maintainer seems [unreachable](chyh1990/yaml-rust#197). Many issues and pull requests have been submitted over the years without any [response](chyh1990/yaml-rust#160). ## Alternatives Consider switching to the actively maintained `yaml-rust2` fork of the original project: - [yaml-rust2](https://github.com/Ethiraric/yaml-rust2) - [yaml-rust2 @ crates.io](https://crates.io/crates/yaml-rust2)) = Announcement: rustsec/advisory-db#1921 = Solution: No safe upgrade is available! = yaml-rust v0.4.5 └── syntect v5.1.0 └── r3bl_tui v0.5.2 └── r3bl-cmdr v0.0.11
`yaml-rust` crate is unmaintained 1) `syntect` author won't update this dep to a fork of it due to lack of trust concerns with this new fork: trishume/syntect#526 2) cargo-deny produces this output: error[unmaintained]: yaml-rust is unmaintained. ┌─ /home/nazmul/github/r3bl-open-core/Cargo.lock:295:1 │ 295 │ yaml-rust 0.4.5 registry+https://github.com/rust-lang/crates.io-index │ --------------------------------------------------------------------- unmaintained advisory detected │ = ID: RUSTSEC-2024-0320 = Advisory: https://rustsec.org/advisories/RUSTSEC-2024-0320 = The maintainer seems [unreachable](chyh1990/yaml-rust#197). Many issues and pull requests have been submitted over the years without any [response](chyh1990/yaml-rust#160). ## Alternatives Consider switching to the actively maintained `yaml-rust2` fork of the original project: - [yaml-rust2](https://github.com/Ethiraric/yaml-rust2) - [yaml-rust2 @ crates.io](https://crates.io/crates/yaml-rust2)) = Announcement: rustsec/advisory-db#1921 = Solution: No safe upgrade is available! = yaml-rust v0.4.5 └── syntect v5.1.0 └── r3bl_tui v0.5.2 └── r3bl-cmdr v0.0.11
I have a direct dependency on I want to replace the transient dependency on I have tried the following 3 things but they all fail to replace Am I doing something wrong? |
* Moved deprecated .cargo/config to config.toml * Ignore clippy warning * Updated body_reader and channel dependencies * Updated config-wasm and hdr-histogram dependencies * Updated additional dependencies - Held back hyper, http, and yansi due to major changes * Updated Yansi to latest version - Converted Paint::disable to Yansi::disable - Removed Windows specific code. Yansi now will try to enable on Windows and automatically disables if it can't activate. * Added build test-server to the PR script and workflow * Fix dependency loop with ahash on itself - tkaitchuck/aHash#95 (comment) - rustwasm/wasm-bindgen#3031 (comment) * Updated yaml-rust to use yaml-rust2 due to deprecation - chyh1990/yaml-rust#197 - chyh1990/yaml-rust#160 (comment) * Updated cargo deny to remove deprecated entries - EmbarkStudios/cargo-deny#611 - https://embarkstudios.github.io/cargo-deny/checks/licenses/cfg.html#the-clarify-field-optional * Updated cargo lock file * Updated code for deprecations - Added tests for create_date_diff, then updated deprecated calls and confirmed tests still passed * Added clippy ignore large results and errors * Fixed tests to validate to UTC - Since the PR flow runs on UTC, updated the local PR script to also run UTC - Updated the create_date_diff test to validate UTC and print a warning to run UTC if it fails
* Moved deprecated .cargo/config to config.toml * Ignore clippy warning * Updated body_reader and channel dependencies * Updated config-wasm and hdr-histogram dependencies * Updated additional dependencies - Held back hyper, http, and yansi due to major changes * Updated Yansi to latest version - Converted Paint::disable to Yansi::disable - Removed Windows specific code. Yansi now will try to enable on Windows and automatically disables if it can't activate. * Added build test-server to the PR script and workflow * Fix dependency loop with ahash on itself - tkaitchuck/aHash#95 (comment) - rustwasm/wasm-bindgen#3031 (comment) * Updated yaml-rust to use yaml-rust2 due to deprecation - chyh1990/yaml-rust#197 - chyh1990/yaml-rust#160 (comment) * Updated cargo deny to remove deprecated entries - EmbarkStudios/cargo-deny#611 - https://embarkstudios.github.io/cargo-deny/checks/licenses/cfg.html#the-clarify-field-optional * Updated cargo lock file * Updated code for deprecations - Added tests for create_date_diff, then updated deprecated calls and confirmed tests still passed * Added clippy ignore large results and errors * Fixed tests to validate to UTC - Since the PR flow runs on UTC, updated the local PR script to also run UTC - Updated the create_date_diff test to validate UTC and print a warning to run UTC if it fails
It seems that you don't have time to maintain this repository. This crate is a "core" with a big count of downloads. Please consider adding more maintainers.
I sent two PRs modernizing the code:
The text was updated successfully, but these errors were encountered: