mirror of
https://github.com/neondatabase/neon.git
synced 2025-12-22 21:59:59 +00:00
1b176fe74a
Fixes #9231 . Upgrade hyper to 1.4.0 and use hyper 1.4 instead of 0.14 in the storage broker, together with tonic 0.12. The two upgrades go hand in hand. Thanks to the broker being independent from other components, we can upgrade its hyper version without touching the other components, which makes things easier.
121 lines
3.1 KiB
TOML
121 lines
3.1 KiB
TOML
# This file was auto-generated using `cargo deny init`.
|
|
# cargo-deny is a cargo plugin that lets you lint your project's
|
|
# dependency graph to ensure all your dependencies conform
|
|
# to your expectations and requirements.
|
|
|
|
# Root options
|
|
[graph]
|
|
targets = [
|
|
{ triple = "x86_64-unknown-linux-gnu" },
|
|
{ triple = "aarch64-unknown-linux-gnu" },
|
|
{ triple = "aarch64-apple-darwin" },
|
|
{ triple = "x86_64-apple-darwin" },
|
|
]
|
|
all-features = false
|
|
no-default-features = false
|
|
[output]
|
|
feature-depth = 1
|
|
|
|
# This section is considered when running `cargo deny check advisories`
|
|
# More documentation for the advisories section can be found here:
|
|
# https://embarkstudios.github.io/cargo-deny/checks/advisories/cfg.html
|
|
[advisories]
|
|
db-urls = ["https://github.com/rustsec/advisory-db"]
|
|
yanked = "warn"
|
|
|
|
[[advisories.ignore]]
|
|
id = "RUSTSEC-2023-0071"
|
|
reason = "the marvin attack only affects private key decryption, not public key signature verification"
|
|
|
|
# This section is considered when running `cargo deny check licenses`
|
|
# More documentation for the licenses section can be found here:
|
|
# https://embarkstudios.github.io/cargo-deny/checks/licenses/cfg.html
|
|
[licenses]
|
|
allow = [
|
|
"Apache-2.0",
|
|
"Artistic-2.0",
|
|
"BSD-2-Clause",
|
|
"BSD-3-Clause",
|
|
"CC0-1.0",
|
|
"ISC",
|
|
"MIT",
|
|
"MPL-2.0",
|
|
"OpenSSL",
|
|
"Unicode-DFS-2016",
|
|
]
|
|
confidence-threshold = 0.8
|
|
exceptions = [
|
|
# Zlib license has some restrictions if we decide to change sth
|
|
{ allow = ["Zlib"], name = "const_format_proc_macros", version = "*" },
|
|
{ allow = ["Zlib"], name = "const_format", version = "*" },
|
|
]
|
|
|
|
[[licenses.clarify]]
|
|
name = "ring"
|
|
version = "*"
|
|
expression = "MIT AND ISC AND OpenSSL"
|
|
license-files = [
|
|
{ path = "LICENSE", hash = 0xbd0eed23 }
|
|
]
|
|
|
|
[licenses.private]
|
|
ignore = true
|
|
registries = []
|
|
|
|
# This section is considered when running `cargo deny check bans`.
|
|
# More documentation about the 'bans' section can be found here:
|
|
# https://embarkstudios.github.io/cargo-deny/checks/bans/cfg.html
|
|
[bans]
|
|
multiple-versions = "warn"
|
|
wildcards = "allow"
|
|
highlight = "all"
|
|
workspace-default-features = "allow"
|
|
external-default-features = "allow"
|
|
allow = []
|
|
|
|
skip = []
|
|
skip-tree = []
|
|
|
|
[[bans.deny]]
|
|
# we use tokio, the same rationale applies for async-{io,waker,global-executor,executor,channel,lock}, smol
|
|
# if you find yourself here while adding a dependency, try "default-features = false", ask around on #rust
|
|
name = "async-std"
|
|
|
|
[[bans.deny]]
|
|
name = "async-io"
|
|
|
|
[[bans.deny]]
|
|
name = "async-waker"
|
|
|
|
[[bans.deny]]
|
|
name = "async-global-executor"
|
|
|
|
[[bans.deny]]
|
|
name = "async-executor"
|
|
|
|
[[bans.deny]]
|
|
name = "smol"
|
|
|
|
[[bans.deny]]
|
|
# We want to use rustls instead of the platform's native tls implementation.
|
|
name = "native-tls"
|
|
|
|
[[bans.deny]]
|
|
name = "openssl"
|
|
|
|
# This section is considered when running `cargo deny check sources`.
|
|
# More documentation about the 'sources' section can be found here:
|
|
# https://embarkstudios.github.io/cargo-deny/checks/sources/cfg.html
|
|
[sources]
|
|
unknown-registry = "warn"
|
|
unknown-git = "warn"
|
|
allow-registry = ["https://github.com/rust-lang/crates.io-index"]
|
|
allow-git = []
|
|
|
|
[sources.allow-org]
|
|
github = [
|
|
"neondatabase",
|
|
]
|
|
gitlab = []
|
|
bitbucket = []
|