HistoryEdit

RUSTSEC-2020-0036

failure is officially deprecated/unmaintained

Issued
Package
failure (crates.io)
Type
INFO Unmaintained
Aliases
Details
https://github.com/rust-lang-nursery/failure/pull/347
CVSS Score
9.8 CRITICAL
CVSS Details
Attack vector
Network
Attack complexity
Low
Privileges required
None
User interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Patched
no patched versions

Description

The failure crate is officially end-of-life: it has been marked as deprecated by the former maintainer, who has announced that there will be no updates or maintenance work on it going forward.

The following are some suggested actively developed alternatives to switch to: