feat(cargo): migrate to cargo-audit

.cargo/audit.toml

@@ -0,0 +1,5 @@
+[advisories]
+ignore = [
+    "RUSTSEC-2023-0018",
+    "RUSTSEC-2021-0019"
+]

.gitignore

@@ -1,2 +1,3 @@
 /target
 /.idea
+/result

deny.toml

@@ -1,48 +0,0 @@
-targets = [
-  { triple = "x86_64-unknown-linux-gnu" },
-  { triple = "aarch64-unknown-linux-gnu" },
-  { triple = "x86_64-unknown-linux-musl" },
-  { triple = "aarch64-apple-darwin" },
-  { triple = "x86_64-apple-darwin" },
-  { triple = "x86_64-pc-windows-msvc" },
-]
-
-[advisories]
-db-path = "~/.cargo/advisory-db"
-db-urls = ["https://github.com/rustsec/advisory-db"]
-vulnerability = "deny"
-unmaintained = "warn"
-yanked = "warn"
-notice = "warn"
-ignore = [
-  # multiple unsoundness problems with xcb
-  "RUSTSEC-2021-0019",
-  "RUSTSEC-2020-0097",
-]
-[licenses]
-unlicensed = "deny"
-allow = [
-    "MIT",
-    "Apache-2.0",
-]
-copyleft = "allow"
-allow-osi-fsf-free = "neither"
-default = "deny"
-confidence-threshold = 0.8
-exceptions = [
-  { allow = ["BSL-1.0"], name = "lazy-bytes-cast", version = ">=5.0.1" },
-  { allow = ["Unicode-DFS-2016"], name = "unicode-ident", version = "*" },
-]
-
-[licenses.private]
-ignore = false
-
-[bans]
-multiple-versions = "deny"
-wildcards = "deny"
-highlight = "all"
-
-[sources]
-unknown-registry = "deny"
-unknown-git = "deny"
-allow-git = []

flake.nix

@@ -80,14 +80,7 @@
         });
     in {
       checks = {
-        # TODO: migrate to cargo-audit
-        # clipboard-substitutor-audit
-        inherit
-          clipboard-substitutor
-          clipboard-substitutor-clippy
-          clipboard-substitutor-fmt
-          clipboard-substitutor-nextest
-          ;
+        inherit clipboard-substitutor clipboard-substitutor-audit clipboard-substitutor-clippy clipboard-substitutor-fmt clipboard-substitutor-nextest;
       };
 
       packages.default = clipboard-substitutor;