Loading
Why are the dependencies declared in the Cargo.toml files, with their versions clearly specified, not detected by the tool Code insight ( Compliance Library (version 2.43_RC1)?

  • User1742391491965837526 (Flexera Software)

    Hi @Nafiseh​ ,

     

    This is expected behavior with the current Rust support in Code Insight.

    Although dependencies are declared in Cargo.toml, the tool does not fully rely on it because it often contains version ranges rather than resolved versions. Code Insight primarily depends on resolved data (typically from Cargo.lock) to build an accurate dependency graph.

     

    Declaring dependencies in Cargo.toml alone may not guarantee detection due to current limited Rust ecosystem support.

    For further clarification or deeper investigation specific to your project, please feel free to raise a support case with us, and we will be happy to assist.

     

    You can find more information on the supported ecosystems here:

    https://docs.codeinsight.revenera.com/user-guide/ref/automated-analysis/supported-development-ecosystems/supported-ecosystems/

    Expand Post

Loading
Why are the dependencies declared in the Cargo.toml files, with their versions clearly specified, not detected by the tool Code insight ( Compliance Library (version 2.43_RC1)?