From 5bfafd62d6b1b223254df572860fcdc04ddada6f Mon Sep 17 00:00:00 2001 From: Harsh Shandilya Date: Mon, 6 Mar 2023 19:45:12 +0000 Subject: [PATCH] fix: switch to `cargo-audit` --- .cargo/audit.toml | 2 ++ deny.toml | 57 ----------------------------------------------- flake.nix | 4 +--- 3 files changed, 3 insertions(+), 60 deletions(-) create mode 100644 .cargo/audit.toml delete mode 100644 deny.toml diff --git a/.cargo/audit.toml b/.cargo/audit.toml new file mode 100644 index 0000000..3e1d5b3 --- /dev/null +++ b/.cargo/audit.toml @@ -0,0 +1,2 @@ +[advisories] +ignore = ["RUSTSEC-2020-0071"] diff --git a/deny.toml b/deny.toml deleted file mode 100644 index 1e6073e..0000000 --- a/deny.toml +++ /dev/null @@ -1,57 +0,0 @@ -targets = [ - { triple = "x86_64-unknown-linux-gnu" }, - { triple = "aarch64-unknown-linux-gnu" }, - { triple = "x86_64-unknown-linux-musl" }, - { triple = "aarch64-apple-darwin" }, - { triple = "x86_64-apple-darwin" }, - { triple = "x86_64-pc-windows-msvc" }, -] - -[advisories] -db-path = "~/.cargo/advisory-db" -db-urls = ["https://github.com/rustsec/advisory-db"] -vulnerability = "deny" -unmaintained = "warn" -yanked = "warn" -notice = "warn" -ignore = [ - "RUSTSEC-2020-0071", # same localtime_r vulnerability, but for the time crate -] -[licenses] -unlicensed = "deny" -allow = [ - "MIT", - "Apache-2.0", -] -copyleft = "allow" -allow-osi-fsf-free = "neither" -default = "deny" -confidence-threshold = 0.8 -exceptions = [ - { allow = ["BSD-3-Clause"], name = "subtle", version = "*" }, - { allow = ["MIT", "ISC", "OpenSSL"], name = "ring", version = "*" }, - { allow = ["ISC"], name = "untrusted", version = "*" }, - { allow = ["ISC"], name = "webpki", version = "*" }, - { allow = ["Unicode-DFS-2016"], name = "unicode-ident", version = "*" }, -] - -[[licenses.clarify]] -name = "ring" -version = "*" -expression = "MIT AND ISC AND OpenSSL" -license-files = [ - { path = "LICENSE", hash = 0xbd0eed23 } -] - -[licenses.private] -ignore = false - -[bans] -multiple-versions = "deny" -wildcards = "deny" -highlight = "all" - -[sources] -unknown-registry = "deny" -unknown-git = "deny" -allow-git = [] diff --git a/flake.nix b/flake.nix index e3f10ef..acafe76 100644 --- a/flake.nix +++ b/flake.nix @@ -74,9 +74,7 @@ }; in { checks = { - # TODO: Switch to cargo-audit and re-enable this - # twt-audit - inherit twt twt-clippy twt-fmt twt-nextest; + inherit twt twt-audit twt-clippy twt-fmt twt-nextest; }; packages.default = twt;