From 37410be1abf2316b86c11b326c2e5eb7c5627c77 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Fran=C3=A7ois=20Garillot?= Date: Tue, 26 Apr 2022 20:50:58 -0400 Subject: [PATCH] chore: remove obsolete RUSTSEC warning exception chore: add more info on current advisories --- deny.toml | 8 +++----- 1 file changed, 3 insertions(+), 5 deletions(-) diff --git a/deny.toml b/deny.toml index 0774145d345f4..3ca2fe96dde29 100644 --- a/deny.toml +++ b/deny.toml @@ -48,13 +48,11 @@ notice = "warn" # A list of advisory IDs to ignore. Note that ignored advisories will still # output a note when they are encountered. ignore = [ - #"RUSTSEC-0000-0000", + # "RUSTSEC-0000-0000", + # potential segfault in the time crate, brought by chrono et al. "RUSTSEC-2020-0071", + # potential segfault in localtime_r, brought by chrono et al. "RUSTSEC-2020-0159", - # this points at a usage of dashmap 5.0.0 in the upstream Move repo. - # no safe upgrade is available, but once one is, we should upgrade Move - # and remove this - "RUSTSEC-2022-0002", ] # Threshold for security vulnerabilities, any vulnerability with a CVSS score # lower than the range specified will be ignored. Note that ignored advisories