diff options
author | David Knaack <davidkna@users.noreply.github.com> | 2023-02-28 19:22:02 +0100 |
---|---|---|
committer | GitHub <noreply@github.com> | 2023-02-28 12:22:02 -0600 |
commit | 5e5ccc4ebe1d2ba6a421a327fc1cb5eee30d9814 (patch) | |
tree | bee241e20fafd80befb59d1de7e7c67f1fd91e09 /deny.toml | |
parent | b55774d3a68b32c0ed17983adeb6355e75c65f6b (diff) |
ci: replace `audit` with `deny` action (#4856)
Diffstat (limited to 'deny.toml')
-rw-r--r-- | deny.toml | 43 |
1 files changed, 43 insertions, 0 deletions
diff --git a/deny.toml b/deny.toml new file mode 100644 index 000000000..eb33b74a3 --- /dev/null +++ b/deny.toml @@ -0,0 +1,43 @@ +[advisories] +vulnerability = "deny" +unmaintained = "warn" +yanked = "warn" +notice = "warn" + +# A list of advisory IDs to ignore. Note that ignored advisories will still +# output a note when they are encountered. +ignore = [ + + + # "RUSTSEC-0000-0000", +] + +[licenses] +# The lint level for crates which do not have a detectable license +unlicensed = "deny" +# List of explicitly allowed licenses +allow = [ + "Apache-2.0 WITH LLVM-exception", + "Apache-2.0", + "BSD-2-Clause", + "BSD-3-Clause", + "ISC", + "MIT-0", + "MIT", + "MPL-2.0", + "Unicode-DFS-2016", + "Unlicense", + "WTFPL", + "Zlib", +] +confidence-threshold = 0.8 + +[bans] +multiple-versions = "allow" +wildcards = "warn" + +[sources] +unknown-registry = "warn" +unknown-git = "warn" +allow-registry = ["https://github.com/rust-lang/crates.io-index"] +allow-git = [] |