ci: replace `audit` with `deny` action (#4856)

author: David Knaack <davidkna@users.noreply.github.com> 2023-02-28 19:22:02 +0100
committer: GitHub <noreply@github.com> 2023-02-28 12:22:02 -0600
commit: 5e5ccc4ebe1d2ba6a421a327fc1cb5eee30d9814 (patch)
tree: bee241e20fafd80befb59d1de7e7c67f1fd91e09 /deny.toml
parent: b55774d3a68b32c0ed17983adeb6355e75c65f6b (diff)
1 files changed, 43 insertions, 0 deletions
diff --git a/deny.toml b/deny.toml
new file mode 100644
index 000000000..eb33b74a3
--- /dev/null
+++ b/deny.toml
@@ -0,0 +1,43 @@
+[advisories]
+vulnerability = "deny"
+unmaintained = "warn"
+yanked = "warn"
+notice = "warn"
+
+# A list of advisory IDs to ignore. Note that ignored advisories will still
+# output a note when they are encountered.
+ignore = [
+
+
+  # "RUSTSEC-0000-0000",
+]
+
+[licenses]
+# The lint level for crates which do not have a detectable license
+unlicensed = "deny"
+# List of explicitly allowed licenses
+allow = [
+  "Apache-2.0 WITH LLVM-exception",
+  "Apache-2.0",
+  "BSD-2-Clause",
+  "BSD-3-Clause",
+  "ISC",
+  "MIT-0",
+  "MIT",
+  "MPL-2.0",
+  "Unicode-DFS-2016",
+  "Unlicense",
+  "WTFPL",
+  "Zlib",
+]
+confidence-threshold = 0.8
+
+[bans]
+multiple-versions = "allow"
+wildcards = "warn"
+
+[sources]
+unknown-registry = "warn"
+unknown-git = "warn"
+allow-registry = ["https://github.com/rust-lang/crates.io-index"]
+allow-git = []
author	David Knaack <davidkna@users.noreply.github.com>	2023-02-28 19:22:02 +0100
committer	GitHub <noreply@github.com>	2023-02-28 12:22:02 -0600
commit	5e5ccc4ebe1d2ba6a421a327fc1cb5eee30d9814 (patch)
tree	bee241e20fafd80befb59d1de7e7c67f1fd91e09 /deny.toml
parent	b55774d3a68b32c0ed17983adeb6355e75c65f6b (diff)