mirror of
https://github.com/neondatabase/neon.git
synced 2025-12-22 21:59:59 +00:00
5cf75d92d8
## Problem cargo deny lint broken Links to the CVEs: [rustsec.org/advisories/RUSTSEC-2023-0052](https://rustsec.org/advisories/RUSTSEC-2023-0052) [rustsec.org/advisories/RUSTSEC-2023-0053](https://rustsec.org/advisories/RUSTSEC-2023-0053) One is fixed, the other one isn't so we allow it (for now), to unbreak CI. Then later we'll try to get rid of webpki in favour of the rustls fork. ## Summary of changes ``` +ignore = ["RUSTSEC-2023-0052"] ```
91 lines
2.4 KiB
TOML
91 lines
2.4 KiB
TOML
# This file was auto-generated using `cargo deny init`.
|
|
# cargo-deny is a cargo plugin that lets you lint your project's
|
|
# dependency graph to ensure all your dependencies conform
|
|
# to your expectations and requirements.
|
|
|
|
# Root options
|
|
targets = []
|
|
all-features = false
|
|
no-default-features = false
|
|
feature-depth = 1
|
|
|
|
# This section is considered when running `cargo deny check advisories`
|
|
# More documentation for the advisories section can be found here:
|
|
# https://embarkstudios.github.io/cargo-deny/checks/advisories/cfg.html
|
|
[advisories]
|
|
db-urls = ["https://github.com/rustsec/advisory-db"]
|
|
vulnerability = "deny"
|
|
unmaintained = "warn"
|
|
yanked = "warn"
|
|
notice = "warn"
|
|
ignore = ["RUSTSEC-2023-0052"]
|
|
|
|
# This section is considered when running `cargo deny check licenses`
|
|
# More documentation for the licenses section can be found here:
|
|
# https://embarkstudios.github.io/cargo-deny/checks/licenses/cfg.html
|
|
[licenses]
|
|
unlicensed = "deny"
|
|
allow = [
|
|
"Apache-2.0",
|
|
"Artistic-2.0",
|
|
"BSD-2-Clause",
|
|
"BSD-3-Clause",
|
|
"ISC",
|
|
"MIT",
|
|
"MPL-2.0",
|
|
"OpenSSL",
|
|
"Unicode-DFS-2016",
|
|
]
|
|
deny = []
|
|
copyleft = "warn"
|
|
allow-osi-fsf-free = "neither"
|
|
default = "deny"
|
|
confidence-threshold = 0.8
|
|
exceptions = [
|
|
# Zlib license has some restrictions if we decide to change sth
|
|
{ allow = ["Zlib"], name = "const_format_proc_macros", version = "*" },
|
|
{ allow = ["Zlib"], name = "const_format", version = "*" },
|
|
]
|
|
|
|
[[licenses.clarify]]
|
|
name = "ring"
|
|
version = "*"
|
|
expression = "MIT AND ISC AND OpenSSL"
|
|
license-files = [
|
|
{ path = "LICENSE", hash = 0xbd0eed23 }
|
|
]
|
|
|
|
[licenses.private]
|
|
ignore = true
|
|
registries = []
|
|
|
|
# This section is considered when running `cargo deny check bans`.
|
|
# More documentation about the 'bans' section can be found here:
|
|
# https://embarkstudios.github.io/cargo-deny/checks/bans/cfg.html
|
|
[bans]
|
|
multiple-versions = "warn"
|
|
wildcards = "allow"
|
|
highlight = "all"
|
|
workspace-default-features = "allow"
|
|
external-default-features = "allow"
|
|
allow = []
|
|
deny = []
|
|
skip = []
|
|
skip-tree = []
|
|
|
|
# This section is considered when running `cargo deny check sources`.
|
|
# More documentation about the 'sources' section can be found here:
|
|
# https://embarkstudios.github.io/cargo-deny/checks/sources/cfg.html
|
|
[sources]
|
|
unknown-registry = "warn"
|
|
unknown-git = "warn"
|
|
allow-registry = ["https://github.com/rust-lang/crates.io-index"]
|
|
allow-git = []
|
|
|
|
[sources.allow-org]
|
|
github = [
|
|
"neondatabase",
|
|
]
|
|
gitlab = []
|
|
bitbucket = []
|