You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I'm not sure we actually want to do this. It's natural to have parameters that become unused or other kinds of lints that trigger on a secondary platform, and handling this would pollute the code a lot more that it would help imho.
For instance if we allow maybe_unused on stuff that isn't used only by wasm, it's error prone for native if every it really becomes unused, and forcing it be used by all platforms can be detrimental or require heavy refactor
This report tracks Clippy allow annotations for specific rules, showing how they've changed in this PR. Decreasing the number of these annotations generally improves code quality.
⚠️3 issue(s) found, showing only errors (advisories, bans, sources)
📦 libdd-data-pipeline - 2 error(s)
Show output
error[unsound]: Rand is unsound with a custom logger using `rand::rng()`
┌─ /home/runner/work/libdatadog/libdatadog/Cargo.lock:218:1
│
218 │ rand 0.8.5 registry+https://github.com/rust-lang/crates.io-index
│ ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ unsound advisory detected
│
├ ID: RUSTSEC-2026-0097
├ Advisory: https://rustsec.org/advisories/RUSTSEC-2026-0097
├ It has been reported (by @lopopolo) that the `rand` library is [unsound](https://rust-lang.github.io/unsafe-code-guidelines/glossary.html#soundness-of-code--of-a-library) (i.e. that safe code using the public API can cause Undefined Behaviour) when all the following conditions are met:
- The `log` and `thread_rng` features are enabled
- A [custom logger](https://docs.rs/log/latest/log/#implementing-a-logger) is defined
- The custom logger accesses `rand::rng()` (previously `rand::thread_rng()`) and calls any `TryRng` (previously `RngCore`) methods on `ThreadRng`
- The `ThreadRng` (attempts to) reseed while called from the custom logger (this happens every 64 kB of generated data)
- Trace-level logging is enabled or warn-level logging is enabled and the random source (the `getrandom` crate) is unable to provide a new seed
`TryRng` (previously `RngCore`) methods for `ThreadRng` use `unsafe` code to cast `*mut BlockRng<ReseedingCore>` to `&mut BlockRng<ReseedingCore>`. When all the above conditions are met this results in an aliased mutable reference, violating the Stacked Borrows rules. Miri is able to detect this violation in sample code. Since construction of [aliased mutable references is Undefined Behaviour](https://doc.rust-lang.org/stable/nomicon/references.html), the behaviour of optimized builds is hard to predict.
├ Announcement: https://github.com/rust-random/rand/pull/1763
├ Solution: Upgrade to >=0.10.1 OR <0.10.0, >=0.9.3 OR <0.9.0, >=0.8.6 (try `cargo update -p rand`)
├ rand v0.8.5
├── libdd-common v5.0.0
│ ├── libdd-capabilities-impl v2.0.0
│ │ ├── libdd-data-pipeline v6.0.0
│ │ ├── libdd-shared-runtime v1.0.0
│ │ │ ├── libdd-data-pipeline v6.0.0 (*)
│ │ │ ├── libdd-telemetry v5.0.1
│ │ │ │ ├── libdd-data-pipeline v6.0.0 (*)
│ │ │ │ └── libdd-trace-stats v5.0.0
│ │ │ │ └── libdd-data-pipeline v6.0.0 (*)
│ │ │ └── libdd-trace-stats v5.0.0 (*)
│ │ ├── libdd-trace-stats v5.0.0 (*)
│ │ └── libdd-trace-utils v8.0.0
│ │ ├── libdd-data-pipeline v6.0.0 (*)
│ │ ├── libdd-trace-obfuscation v4.0.0
│ │ │ └── libdd-trace-stats v5.0.0 (*)
│ │ ├── libdd-trace-stats v5.0.0 (*)
│ │ └── (dev) libdd-trace-utils v8.0.0 (*)
│ ├── libdd-data-pipeline v6.0.0 (*)
│ ├── libdd-dogstatsd-client v3.0.0
│ │ ├── libdd-data-pipeline v6.0.0 (*)
│ │ └── libdd-trace-stats v5.0.0 (*)
│ ├── libdd-shared-runtime v1.0.0 (*)
│ ├── libdd-telemetry v5.0.1 (*)
│ ├── libdd-trace-obfuscation v4.0.0 (*)
│ ├── libdd-trace-stats v5.0.0 (*)
│ └── libdd-trace-utils v8.0.0 (*)
├── (dev) libdd-data-pipeline v6.0.0 (*)
├── (dev) libdd-ddsketch v1.0.1
│ ├── libdd-data-pipeline v6.0.0 (*)
│ ├── libdd-telemetry v5.0.1 (*)
│ └── libdd-trace-stats v5.0.0 (*)
├── (dev) libdd-trace-normalization v2.0.0
│ ├── libdd-data-pipeline v6.0.0 (*)
│ └── libdd-trace-utils v8.0.0 (*)
├── (dev) libdd-trace-stats v5.0.0 (*)
├── libdd-trace-utils v8.0.0 (*)
└── proptest v1.5.0
└── (dev) libdd-tinybytes v1.1.1
├── libdd-data-pipeline v6.0.0 (*)
├── (dev) libdd-tinybytes v1.1.1 (*)
└── libdd-trace-utils v8.0.0 (*)
error[vulnerability]: Denial of Service via Stack Exhaustion
┌─ /home/runner/work/libdatadog/libdatadog/Cargo.lock:287:1
│
287 │ time 0.3.41 registry+https://github.com/rust-lang/crates.io-index
│ ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ security vulnerability detected
│
├ ID: RUSTSEC-2026-0009
├ Advisory: https://rustsec.org/advisories/RUSTSEC-2026-0009
├ ## Impact
When user-provided input is provided to any type that parses with the RFC 2822 format, a denial of
service attack via stack exhaustion is possible. The attack relies on formally deprecated and
rarely-used features that are part of the RFC 2822 format used in a malicious manner. Ordinary,
non-malicious input will never encounter this scenario.
## Patches
A limit to the depth of recursion was added in v0.3.47. From this version, an error will be returned
rather than exhausting the stack.
## Workarounds
Limiting the length of user input is the simplest way to avoid stack exhaustion, as the amount of
the stack consumed would be at most a factor of the length of the input.
├ Announcement: https://github.com/time-rs/time/blob/main/CHANGELOG.md#0347-2026-02-05
├ Solution: Upgrade to >=0.3.47 (try `cargo update -p time`)
├ time v0.3.41
└── tracing-appender v0.2.3
└── libdd-log v1.0.0
└── (dev) libdd-data-pipeline v6.0.0
advisories FAILED, bans ok, sources ok
📦 libdd-shared-runtime - 1 error(s)
Show output
error[unsound]: Rand is unsound with a custom logger using `rand::rng()`
┌─ /home/runner/work/libdatadog/libdatadog/Cargo.lock:73:1
│
73 │ rand 0.8.5 registry+https://github.com/rust-lang/crates.io-index
│ ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ unsound advisory detected
│
├ ID: RUSTSEC-2026-0097
├ Advisory: https://rustsec.org/advisories/RUSTSEC-2026-0097
├ It has been reported (by @lopopolo) that the `rand` library is [unsound](https://rust-lang.github.io/unsafe-code-guidelines/glossary.html#soundness-of-code--of-a-library) (i.e. that safe code using the public API can cause Undefined Behaviour) when all the following conditions are met:
- The `log` and `thread_rng` features are enabled
- A [custom logger](https://docs.rs/log/latest/log/#implementing-a-logger) is defined
- The custom logger accesses `rand::rng()` (previously `rand::thread_rng()`) and calls any `TryRng` (previously `RngCore`) methods on `ThreadRng`
- The `ThreadRng` (attempts to) reseed while called from the custom logger (this happens every 64 kB of generated data)
- Trace-level logging is enabled or warn-level logging is enabled and the random source (the `getrandom` crate) is unable to provide a new seed
`TryRng` (previously `RngCore`) methods for `ThreadRng` use `unsafe` code to cast `*mut BlockRng<ReseedingCore>` to `&mut BlockRng<ReseedingCore>`. When all the above conditions are met this results in an aliased mutable reference, violating the Stacked Borrows rules. Miri is able to detect this violation in sample code. Since construction of [aliased mutable references is Undefined Behaviour](https://doc.rust-lang.org/stable/nomicon/references.html), the behaviour of optimized builds is hard to predict.
├ Announcement: https://github.com/rust-random/rand/pull/1763
├ Solution: Upgrade to >=0.10.1 OR <0.10.0, >=0.9.3 OR <0.9.0, >=0.8.6 (try `cargo update -p rand`)
├ rand v0.8.5
└── (dev) libdd-common v5.0.0
├── libdd-capabilities-impl v2.0.0
│ └── libdd-shared-runtime v1.0.0
└── libdd-shared-runtime v1.0.0 (*)
advisories FAILED, bans ok, sources ok
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
What does this PR do?
A brief description of the change being made with this pull request.
Motivation
We don't run tests for wasm so we should at least ensure it's lint free to try to catch bugs early
Additional Notes
Anything else we should know when reviewing?
How to test the change?
Describe here in detail how the change can be validated.