This wasn't the marketing message I recall hearing about yanked crates, that they remain accessible if they are in an existing Cargo.lock. But nevertheless, as I found and originally mentioned in:
cargo install cargo-graph --locked Updating crates.io index Installing cargo-graph v0.3.1 error: failed to compile `cargo-graph v0.3.1`, intermediate artifacts can be found at `/tmp/cargo-installdryLBw` Caused by: failed to select a version for the requirement `clap = "~2.11.3"` candidate versions found which didn't match: 2.33.3, 2.33.2, 2.33.1, ... location searched: crates.io index required by package `cargo-graph v0.3.1`
Where https://crates.io/crates/clap/versions shoes yanked-mageddon half way down the page, and for all compatible
>= 2.11.3, < 2.12). Did the original cargo-graph author's release do something wrong here, to disserve this somehow?