For the first, I feel like this would be more useful as a subtle way to rickroll your users. That, or hide subliminal messages. For the second, that's one of the worst-looking websites I've ever seen. A script font and light grey-on-white text; yeesh. Also, as much as I love TeX's versions, I was thinking more along the lines of {srand(secret_major_number);dict[rand()%dict.len()]}.
This isn't a problem unique to the rust community. Even in a large, modern Python codebase using libraries that are 5+ years old, you will still find many packages that haven't reached 1.0. It's just something you have to deal with (though it is a little more work to deal with in a type checked language than in a language like Python).
Really though, you probably shouldn't be trusting the community's packages to follow any particular versioning scheme anyway. If you work for a company and aren't using your own internal mirror of a package repository, possibly with your own internal forks of important dependencies, then (despite the awesome guarantees provided by crates.io about never deleting a package) you're being at least a little irresponsible.