Skip to content

Dependency Audit Remediation Plan #372

Open
Open
Dependency Audit Remediation Plan#372
Labels
kilo-duplicateAuto-generated label by Kilokilo-triagedAuto-generated label by Kilo
@Coldaine

Description

@Coldaine
Coldaine
opened on Mar 25, 2026

The following items need to be remediated based on the latest dependency audit:

  1. Create GitHub issue for dependency audit action items (this issue)
  2. Fix native Windows issue – add Visual C++ redistributable to CI
  3. Upgrade Rust crates (tar, tokio, serde, clap, tracing, rustls, serde_json, thiserror, log) and replace 'paste'
  4. Remove dead 'whisper' feature flag from Cargo.toml files
  5. Upgrade Python packages (tokenizers, librosa, transformers, numpy, scipy, requests, urllib3)
  6. Re‑build PyO3 bindings for coldvox‑stt
  7. Run full audit again (cargo audit, cargo outdated, uv pip list)
  8. Document DLL requirements in docs/system/Windows-dll-requirements.md
  9. Update documentation in docs/plans/windows-multi-agent-recovery.md
  10. Test on Blackwell GPU with CUDA 12.8 (opt for what's feasible)

Metadata

Metadata

Assignees

No one assigned

    Labels

    kilo-duplicateAuto-generated label by Kilokilo-triagedAuto-generated label by Kilo

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions