When importing a library, it becomes part of your project, therefore it becomes your responsibility to ensure that the imported code is safe and sound.

I am seeing the list of dependencies, and even without looking at the transitive ones, I am sure you didn't review any of those, nor will properly maintain that huge list.

That's a supply chain ticking bomb in my book.

I like Rust, but most projects look like kindergarten collage with no regards to security.