GHSA-rjhf-4mh8-9xjq is a duplicate of GHSA-3mv5-343c-w2qg

[lukas-braune]

GHSA-rjhf-4mh8-9xjq is a duplicate of GHSA-3mv5-343c-w2qg and should be revoked as soon as that feature is available.

[KateCatlin]

Hi @lukas-braune thanks for reaching out!

Unfortunately we're unable to merge duplicate advisories right now. That's a known issue for us and one we hope to someday address, but it would take a pretty steep engineering investment so it's not on the near-term roadmap. That said, we are tracking advisories we should merge once we have that ability and we've added this one to the list.

If something like this comes up today, we would normally favor the maintainer-generated advisory and withdraw the other. Unfortunately in this particular pairing, the non-maintainer-generated advisory is coming from our friends at RustSec, so withdrawing it means we would lost any updates that RustSec may publish.

TLDR we're not going to take any action on this today, but we acknowledge it is annoying and we are sorry for that.

I'll keep this issue open in case others want to chime in!

[Whi9xzHz4vBpX4j]

نسيت كلمه السر
هذا الحساب [email protected]

[Khaledfeizbakhsh157]

Khaledfeizbakhsh 157