-
Notifications
You must be signed in to change notification settings - Fork 7
/
Copy pathdeny.toml
67 lines (60 loc) · 1.64 KB
/
deny.toml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
targets = [
# Desktop
{ triple = "x86_64-unknown-linux-gnu" },
{ triple = "aarch64-unknown-linux-gnu" },
{ triple = "x86_64-unknown-linux-musl" },
{ triple = "aarch64-apple-darwin" },
{ triple = "x86_64-apple-darwin" },
{ triple = "x86_64-pc-windows-msvc" },
# WASM
{ triple = "wasm32-unknown-unknown" },
# iOS
{ triple = "aarch64-apple-ios-sim" },
{ triple = "x86_64-apple-ios" },
{ triple = "aarch64-apple-ios" },
# Android
{ triple = "aarch64-linux-android" },
{ triple = "armv7-linux-androideabi" },
{ triple = "x86_64-linux-android" },
]
[advisories]
vulnerability = "deny"
ignore = [
# ? `sodiumoxide` is only used in tests
"RUSTSEC-2021-0137",
# ? There's no fix currently for the Marvin attack
# - https://github.com/RustCrypto/RSA/issues/390
# -https://github.com/RustCrypto/RSA/pull/394
"RUSTSEC-2023-0071",
# ? Only used in wasm-browser-run
"RUSTSEC-2023-0072"
]
[bans]
multiple-versions = "allow"
[licenses]
unlicensed = "deny"
allow-osi-fsf-free = "both"
copyleft = "allow"
unused-allowed-license = "warn"
confidence-threshold = 0.93
allow = ["Apache-2.0", "MIT", "MPL-2.0", "GPL-3.0", "CC0-1.0"]
exceptions = [
{ allow = ["Unicode-DFS-2016"], name = "unicode-ident" },
]
[[licenses.clarify]]
name = "pkiprocmacros"
expression = "Apache-2.0 OR MIT"
license-files = []
[[licenses.clarify]]
name = "encoding_rs"
expression = "MIT OR Apache-2.0"
license-files = [
{ path = "COPYRIGHT", hash = 0x39f8ad31 }
]
[sources]
allow-git = [
# ? Needed for our interop runner.
"https://github.com/otak/fantoccini",
]
[sources.allow-org]
github = ["wireapp"]