|
|
|
|
|
|
by BrouteMinou
249 days ago
|
|
|
When importing a library, it becomes part of your project, therefore it becomes your responsibility to ensure that the imported code is safe and sound. I am seeing the list of dependencies, and even without looking at the transitive ones, I am sure you didn't review any of those, nor will properly maintain that huge list. That's a supply chain ticking bomb in my book. I like Rust, but most projects look like kindergarten collage with no regards to security. |
|
|