Skip to content

Commit 9d6c940

Browse files
sbernauersbernauer
committed
Update deny.toml
1 parent 4fe70fb commit 9d6c940

1 file changed

Lines changed: 16 additions & 10 deletions

File tree

deny.toml

Lines changed: 16 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -1,3 +1,8 @@
1+
# This file is the source of truth for all our repos!
2+
# This includes repos not templated by operator-templating, please copy/paste the file for this repos.
3+
4+
# TIP: Use "cargo deny check" to check if everything is fine
5+
16
[graph]
27
targets = [
38
{ triple = "x86_64-unknown-linux-gnu" },
@@ -13,11 +18,11 @@ ignore = [
1318
# https://rustsec.org/advisories/RUSTSEC-2023-0071
1419
# "rsa" crate: Marvin Attack: potential key recovery through timing sidechannel
1520
#
16-
# No patch is yet available, however work is underway to migrate to a fully constant-time
17-
# implementation. So we need to accept this, as of SDP 24.11 we are not using the rsa crate to
18-
# create certificates used in production setups.
21+
# No patch is yet available, however work is underway to migrate to a fully constant-time implementation
22+
# So we need to accept this, as of SDP 25.3 we are not using the rsa crate to create certificates used in production
23+
# setups.
1924
#
20-
# TODO: Remove after https://github.com/RustCrypto/RSA/pull/394 is merged and v0.10.0 is released
25+
# https://github.com/RustCrypto/RSA/issues/19 is the tracking issue
2126
"RUSTSEC-2023-0071",
2227

2328
# https://rustsec.org/advisories/RUSTSEC-2024-0436
@@ -51,10 +56,7 @@ allow = [
5156
"LicenseRef-webpki",
5257
"MIT",
5358
"MPL-2.0",
54-
55-
# Needed for the ring and/or aws-lc-sys crate.
56-
# See https://github.com/stackabletech/operator-templating/pull/464 for details.
57-
"OpenSSL",
59+
"OpenSSL", # Needed for the ring and/or aws-lc-sys crate. See https://github.com/stackabletech/operator-templating/pull/464 for details
5860
"Unicode-3.0",
5961
"Unicode-DFS-2016",
6062
"Zlib",
@@ -65,12 +67,16 @@ private = { ignore = true }
6567
[[licenses.clarify]]
6668
name = "ring"
6769
expression = "LicenseRef-ring"
68-
license-files = [{ path = "LICENSE", hash = 0xbd0eed23 }]
70+
license-files = [
71+
{ path = "LICENSE", hash = 0xbd0eed23 },
72+
]
6973

7074
[[licenses.clarify]]
7175
name = "webpki"
7276
expression = "LicenseRef-webpki"
73-
license-files = [{ path = "LICENSE", hash = 0x001c7e6c }]
77+
license-files = [
78+
{ path = "LICENSE", hash = 0x001c7e6c },
79+
]
7480

7581
[sources]
7682
unknown-registry = "deny"

0 commit comments

Comments
 (0)