Y
Hacker News
new
|
ask
|
show
|
jobs
by
Ygg2
635 days ago
I thought you wanted to prevent transitive dependencies. For sandboxing crates, as JoshTriplett said it's another can of worms.
1 comments
josephg
633 days ago
By default, yes. But it probably makes sense to let people whitelist specific crates in their dependency tree. Crates like std and tokio, or blas libraries that make heavy use of simd. Stuff like that.
link