-
Notifications
You must be signed in to change notification settings - Fork 2
/
deny.toml
66 lines (59 loc) · 1.72 KB
/
deny.toml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
targets = []
[advisories]
db-path = "~/.cargo/advisory-db"
db-urls = ["https://github.com/rustsec/advisory-db"]
vulnerability = "deny"
unmaintained = "warn"
yanked = "warn"
notice = "warn"
ignore = [
"RUSTSEC-2021-0145", # some Windows-only vuln by the `atty` crate brought in via `clap`.
"RUSTSEC-2020-0071", # `time` crate brought in by `chrono` has a vuln, see https://github.com/chronotope/chrono/issues/602#issuecomment-1075915577 on why there's currently no solution for that
]
[licenses]
# TODO: Disabled since mobilecoin/ is too much of a mess right now
# unlicensed = "allow"
# allow = [
# "Apache-2.0",
# "Apache-2.0 WITH LLVM-exception",
# "BSD-2-Clause",
# "BSD-3-Clause",
# "ISC",
# "MIT",
# "Unicode-DFS-2016",
# "OpenSSL",
# "GPL-3.0"
# ]
# deny = []
# copyleft = "deny"
# allow-osi-fsf-free = "neither"
# default = "deny"
# confidence-threshold = 0.8
# exceptions = []
# clarify = [
# { name = "ring", expression = "MIT AND ISC AND OpenSSL", license-files = [{ path = "LICENSE", hash = 0xbd0eed23 }] },
# ]
unlicensed = "allow"
copyleft = "allow"
default = "allow"
clarify = [
{ name = "ring", expression = "MIT AND ISC AND OpenSSL", license-files = [{ path = "LICENSE", hash = 0xbd0eed23 }] },
]
[bans]
multiple-versions = "warn"
# Lint level for when a crate version requirement is `*`
wildcards = "allow" # Could be denied once 'allow-wildcard-paths' is released (https://github.com/EmbarkStudios/cargo-deny/pull/487)
highlight = "all"
allow = []
deny = []
skip = []
skip-tree = []
[sources]
unknown-registry = "warn"
unknown-git = "warn"
allow-registry = ["https://github.com/rust-lang/crates.io-index"]
allow-git = []
[sources.allow-org]
github = []
gitlab = []
bitbucket = []