Lib.rs

Issues found

Based on crates you own that have been published to crates.io. The best way to monitor these issues is to subscribe to the atom feed in your RSS reader.

• circomspect

  • Failed to verify create's content against its repository

    Partially verified 6 files (includes 3 Cargo-generated).

    • warning: Crate tarball has been published from a different commit than the commit tagged by git tag 'v0.9.0'.
      • Create git tags after comitting any changes, and commit changes after bumping versions and running cargo update.

    Files in the crates.io crate compared to the repository:

    • Cargo.lock not found.

    Looked for the crate in cli/. Fetched https://github.com/trailofbits/circomspect.git c52043f8449f92165b99dbb57013465e2e94e82c.

    Checked on 2025-04-09

    This check is experimental.

    Forum thread

  • Dependency clap 3.2 is significantly outdated

    Consider upgrading to 4.5.37 to get all the fixes and improvements.

    Easy way to bump dependencies: cargo install cargo-edit; cargo upgrade -i; Also check out Dependabot service on GitHub.

    clap versions

  • Missing categories

    Categories improve browsing of lib.rs and crates.io. Add categories = ["cryptography"] to the Cargo.toml.

    Even if there are no categories that fit precisely, pick one that is least bad. You can also propose new categories in crates.io issue tracker.

    List of available categories

• circomspect-program-analysis

  • Missing categories

    Categories improve browsing of lib.rs and crates.io. Add categories = ["…"] to the Cargo.toml.

    List of available categories

  • Published crate doesn't match its repository

    Partially verified 22 files (includes 2 Cargo-generated).

    Looked for the crate in program_analysis/. Fetched https://github.com/trailofbits/circomspect.git c52043f8449f92165b99dbb57013465e2e94e82c.

    Checked on 2025-04-27

    Forum thread

  • Dependency thiserror 1.0 is a bit outdated

    Consider upgrading to 2.0.12 to get all the fixes and improvements.

    thiserror versions

  • Missing keywords

    Help users find your crates. Add keywords = ["circomspect", "analysis", "analyzer", "passes"] (up to 5) to the Cargo.toml. Best keywords are alternative terms or their spellings that aren't in the name or description. Also add a keyword that precisely categorizes this crate and groups it with other similar crates.

• circomspect-parser

  • Missing categories

    Categories improve browsing of lib.rs and crates.io. Add categories = ["…"] to the Cargo.toml.

    List of available categories

  • Published crate doesn't match its repository

    Partially verified 11 files (includes 2 Cargo-generated).

    Looked for the crate in parser/. Fetched https://github.com/trailofbits/circomspect.git c52043f8449f92165b99dbb57013465e2e94e82c.

    Checked on 2025-04-09

    Forum thread

  • Dependency lalrpop 0.20 is outdated

    Upgrade to 0.22.1 to get all the fixes, and avoid causing duplicate dependencies in projects.

    In Cargo, different 0.x versions are considered incompatible, so this is a semver-major upgrade.

    lalrpop versions

  • Dependency lalrpop-util 0.20 is outdated

    Upgrade to 0.22.1 to get all the fixes, and avoid causing duplicate dependencies in projects.

    lalrpop-util versions

  • Missing keywords

    Help users find your crates. Add keywords = ["circomspect", "analyzer", "circomspect-parser"] (up to 5) to the Cargo.toml. Best keywords are alternative terms or their spellings that aren't in the name or description. Also add a keyword that precisely categorizes this crate and groups it with other similar crates.

• circomspect-program-structure

  • Published crate doesn't match its repository

    Partially verified 51 files (includes 2 Cargo-generated).

    Looked for the crate in program_structure/. Fetched https://github.com/trailofbits/circomspect.git c52043f8449f92165b99dbb57013465e2e94e82c.

    Checked on 2025-04-09

    Forum thread

  • Dependency codespan 0.11 is a bit outdated

    Consider upgrading to 0.12.0 to get all the fixes and improvements.

    codespan versions

  • Dependency codespan-reporting 0.11 is a bit outdated

    Consider upgrading to 0.12.0 to get all the fixes and improvements.

    codespan-reporting versions

  • Dependency serde-sarif 0.4 is outdated

    Upgrade to 0.7.0 to get all the fixes, and avoid causing duplicate dependencies in projects.

    serde-sarif versions

  • Dependency thiserror 1.0 is a bit outdated

    Consider upgrading to 2.0.12 to get all the fixes and improvements.

    thiserror versions

  • Missing categories

    Categories improve browsing of lib.rs and crates.io. Add categories = ["compilers", "development-tools"] to the Cargo.toml.

    List of available categories

  • Missing keywords

    Help users find your crates. Add keywords = ["circomspect", "analyzer", "structure"] (up to 5) to the Cargo.toml. Best keywords are alternative terms or their spellings that aren't in the name or description. Also add a keyword that precisely categorizes this crate and groups it with other similar crates.

• circomspect-program-structure, circomspect-program-analysis, circomspect-parser, circomspect-circom-algebra

  • README missing from crate tarball

    Cargo sometimes fails to package the README file. Ensure the path to the README in Cargo.toml is valid, and points to a file inside the crate's directory.

• circomspect-circom-algebra

  • Missing categories

    Categories improve browsing of lib.rs and crates.io. Add categories = ["mathematics"] to the Cargo.toml.

    List of available categories

  • Missing keywords

    Help users find your crates. Add keywords = ["circomspect", "analyzer", "circom"] (up to 5) to the Cargo.toml. Best keywords are alternative terms or their spellings that aren't in the name or description. Also add a keyword that precisely categorizes this crate and groups it with other similar crates.

If some of these crates are unmaintained and shouldn't be checked, yank them or add [badges.maintenance]
status = "deprecated" to their Cargo.toml.