switch to time from chrono #36
Conversation
Disable cargo incremental for CI builds and get backtrace info.
cardoe
force-pushed
the
time
branch
2 times, most recently
from
d212b62
to
7743cab
Compare
chrono is no longer maintained and has a long standing security issue in it. Switched to time to resolve the security issue. fixes #31.
|
Unfortunately the time crate appears to only support second resolution in their formatting and nothing sub-second per https://github.com/time-rs/time/blob/d26562b930aa59ab4934ef6eb790474ff506126b/src/format/parse_items.rs#L55 |
|
|
Certainly at the time of my comment it was valid. It had 0 commits and 0 comments on issues by maintainers for 4 months and the preceding year it only had about a dozen commits. There were a few opened issues asking if it was maintained with no comments and folks in the Rust community were recommending switching back to time 0.3. Given it getting maintenance again I’ll retire this PR and move forward with an updated release. |
|
You can see issues like rustsec/advisory-db#1216 which have been calling into question it’s maintained status. |
|
chronotope/chrono#650 (comment) It appears to be more revived around Feb 27th. |
|
We've yet to see a chrono release since work restarted on the project. |
chrono is no longer maintained and has a long standing security issue in
it. Switched to time to resolve the security issue. fixes #31.