diff options
author | Jesse Luehrs <doy@tozt.net> | 2024-01-01 17:11:24 -0500 |
---|---|---|
committer | Jesse Luehrs <doy@tozt.net> | 2024-01-01 17:18:06 -0500 |
commit | 37d7c71fec43f6dbc6347de563df5b20920441da (patch) | |
tree | e37b36df62e180712d16c00802427143bb35ffee /deny.toml | |
parent | 7be78df10dd04b0ac7121c8d0b25d9954ba9a9f6 (diff) | |
download | rbw-37d7c71fec43f6dbc6347de563df5b20920441da.tar.gz rbw-37d7c71fec43f6dbc6347de563df5b20920441da.zip |
bump deps, fix cargo deny
Diffstat (limited to 'deny.toml')
-rw-r--r-- | deny.toml | 20 |
1 files changed, 20 insertions, 0 deletions
@@ -8,6 +8,14 @@ targets = [ [advisories] yanked = "deny" unsound = "deny" +ignore = [ + # this is only an unmaintained warning, and will hopefully be addressed + # by https://github.com/darfink/region-rs/pull/27 + "RUSTSEC-2020-0168", + # this is a timing attack against using the rsa crate for encryption, but + # we only use rsa decryption here + "RUSTSEC-2023-0071", +] [bans] multiple-versions = "deny" @@ -15,6 +23,18 @@ wildcards = "deny" deny = [ { name = "openssl-sys" }, ] +skip = [ + # the ecosystem is pretty split on these at the moment, should keep an + # eye on this to remove once more things have standardized on version 2 + { name = "bitflags", version = "1.3.2" }, + { name = "bitflags", version = "2.4.1" }, + + # see https://github.com/dignifiedquire/num-bigint/pull/58 and + # https://github.com/RustCrypto/RSA/issues/390 which should hopefully + # resolve this soon + { name = "spin", version = "0.5.2" }, + { name = "spin", version = "0.9.8" }, +] [licenses] allow = [ |