Skip to content

Identify crates using SemVer and crates.io #60

New issue
New issue
Open
Open
Identify crates using SemVer and crates.io#60
Labels
enhancementNew feature or requestroadmap-v1Roadmap for v1.0
@cdstanford

Description

@cdstanford
cdstanford
opened on Jul 11, 2024

In audit files:

  • For crates which appear on https://crates.io/, we should identify the crate using the crate name and semantic version (e.g. syn v2.0.70), and the source code hash as provided by crates.io.

  • For crates which are local, we should identify the crate using the path to the crate as well as the source code hash. It may be possible to add some kind of public identifier in some cases (e.g. a repository link) if the audit needs to be shared.

Metadata

Metadata

Assignees

No one assigned

    Labels

    enhancementNew feature or requestroadmap-v1Roadmap for v1.0

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions