Skip to content

Commit

Permalink
feat(rust): Update deny.toml config, make unmaintained as warnings (
Browse files Browse the repository at this point in the history
#346)

* remove redundant RUST-SEC exception list

* add new `allow-git` exceptions

* make unmaintained issues like warnings
  • Loading branch information
Mr-Leshiy authored Nov 5, 2024
1 parent 702db9c commit b09268a
Show file tree
Hide file tree
Showing 3 changed files with 9 additions and 11 deletions.
2 changes: 1 addition & 1 deletion earthly/rust/scripts/std_checks.py
Original file line number Diff line number Diff line change
Expand Up @@ -104,7 +104,7 @@ def main():
results.add(exec_manager.cli_run("cargo machete", name="Unused Dependencies Check"))
# Check if we have any supply chain issues with dependencies.
results.add(
exec_manager.cli_run("cargo deny check --exclude-dev -W vulnerability", name="Supply Chain Issues Check")
exec_manager.cli_run("cargo deny check --exclude-dev -W vulnerability -W unmaintained", name="Supply Chain Issues Check")
)

results.print()
Expand Down
9 changes: 4 additions & 5 deletions earthly/rust/stdcfgs/deny.toml
Original file line number Diff line number Diff line change
Expand Up @@ -16,11 +16,7 @@ targets = [

[advisories]
version = 2
ignore = [
{ id = "RUSTSEC-2020-0168", reason = "`mach` is used by wasmtime and we have no control over that." },
{ id = "RUSTSEC-2021-0145", reason = "we don't target windows, and don't use a custom global allocator." },
{ id = "RUSTSEC-2024-0370", reason = "`proc-macro-error` is used by crates we rely on, we can't control what they use."},
]
ignore = []

[bans]
multiple-versions = "warn"
Expand Down Expand Up @@ -58,6 +54,9 @@ allow-git = [
"https://github.com/input-output-hk/catalyst-mithril.git",
"https://github.com/bytecodealliance/wasmtime",
"https://github.com/aldanor/hdf5-rust",
"https://github.com/txpipe/vrf",
"https://github.com/txpipe/kes",
"https://github.com/txpipe/curve25519-dalek",
]

[licenses]
Expand Down
9 changes: 4 additions & 5 deletions examples/rust/deny.toml
Original file line number Diff line number Diff line change
Expand Up @@ -16,11 +16,7 @@ targets = [

[advisories]
version = 2
ignore = [
{ id = "RUSTSEC-2020-0168", reason = "`mach` is used by wasmtime and we have no control over that." },
{ id = "RUSTSEC-2021-0145", reason = "we don't target windows, and don't use a custom global allocator." },
{ id = "RUSTSEC-2024-0370", reason = "`proc-macro-error` is used by crates we rely on, we can't control what they use."},
]
ignore = []

[bans]
multiple-versions = "warn"
Expand Down Expand Up @@ -58,6 +54,9 @@ allow-git = [
"https://github.com/input-output-hk/catalyst-mithril.git",
"https://github.com/bytecodealliance/wasmtime",
"https://github.com/aldanor/hdf5-rust",
"https://github.com/txpipe/vrf",
"https://github.com/txpipe/kes",
"https://github.com/txpipe/curve25519-dalek",
]

[licenses]
Expand Down

0 comments on commit b09268a

Please sign in to comment.