-
Notifications
You must be signed in to change notification settings - Fork 55
/
deny.toml
102 lines (93 loc) · 3.72 KB
/
deny.toml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
[licenses]
# We want really high confidence when inferring licenses from text
confidence-threshold = 0.93
# Commented license types are allowed but not currently used
allow = [
"Apache-2.0",
"BSD-2-Clause",
"BSD-3-Clause",
"BSL-1.0",
# "CC0-1.0",
"ISC",
"MIT",
"OpenSSL",
"Unlicense",
"Zlib"
]
exceptions = [
{ name = "unicode-ident", version = "1.0.2", allow = ["MIT", "Apache-2.0", "Unicode-DFS-2016"] },
]
# https://github.com/hsivonen/encoding_rs The non-test code that isn't generated from the WHATWG data in this crate is
# under Apache-2.0 OR MIT. Test code is under CC0.
[[licenses.clarify]]
name = "encoding_rs"
expression = "(Apache-2.0 OR MIT) AND BSD-3-Clause"
license-files = [
{ path = "LICENSE-APACHE", hash = 0x18785531 },
{ path = "LICENSE-MIT", hash = 0xafaec4cb },
{ path = "LICENSE-WHATWG", hash = 0xbcb87a0c },
{ path = "COPYRIGHT", hash = 0x39f8ad31 } # this file describes what licenses apply to the sources, and when they apply
]
[[licenses.clarify]]
name = "ring"
expression = "MIT AND ISC AND OpenSSL"
license-files = [
{ path = "LICENSE", hash = 0xbd0eed23 },
]
[[licenses.clarify]]
name = "webpki"
expression = "ISC"
license-files = [
{ path = "LICENSE", hash = 0x001c7e6c },
]
[bans]
# Deny multiple versions or wildcard dependencies.
multiple-versions = "deny"
wildcards = "deny"
# failure-server is an internal package used only in testing that we do not want to publish to
# crates.io. When including it in tough's dev dependencies, it is necessary to do so without a
# version number or else cargo publish will fail. The lack of a version number causes cargo deny
# to ban failure-server as a wildcard-versioned dependency. The following line allows us to refer
# to our own internal packages without a version number.
allow-wildcard-paths = true
skip = [
# some libraries are using an older version of base64
{ name = "base64", version = "=0.21" },
# aws-smithy-runtime uses multiple versions of half
{ name = "half", version = "=1.8" },
# the aws rust sdk is using an older version of http
{ name = "http", version = "=0.2" },
{ name = "http-body", version = "=0.4" },
# noxious and other crates use an old version of syn
{ name = "syn", version = "=1" },
# several dependencies are using an old version of bitflags
{ name = "bitflags", version = "=1.3" },
# several dependencies are using an old version of regex-automata
{ name = "regex-automata", version = "=0.4" },
{ name = "regex-syntax", version = "=0.6" },
# noxious, used for testing, is using an old version of tokio-util
{ name = "tokio-util", version = "=0.6.10" },
# aws-lc-rs uses an older version of untrusted
{ name = "untrusted", version = "=0.7.1" },
# tokio and mio are bringing in older versions of windows libraries while other
# libraries, are bringing in newer versions
{ name = "windows-sys", version = "=0.48" },
{ name = "windows-targets", version = "=0.48" },
{ name = "windows_aarch64_gnullvm", version = "=0.48" },
{ name = "windows_aarch64_msvc", version = "=0.48" },
{ name = "windows_i686_gnu", version = "=0.48" },
{ name = "windows_i686_msvc", version = "=0.48" },
{ name = "windows_x86_64_gnu", version = "=0.48" },
{ name = "windows_x86_64_gnullvm", version = "=0.48" },
{ name = "windows_x86_64_msvc", version = "=0.48" },
]
skip-tree = [
# noxious-client is using an older version of reqwest
{ name = "reqwest", version = "=0.11" },
# aws-smithy-runtime-experimental is using several newer dependencies
{ name = "aws-smithy-experimental", version = "=0.1" },
]
[sources]
# Deny crates from unknown registries or git repositories.
unknown-registry = "deny"
unknown-git = "deny"