chore: Fix advisory stuff

wireapp · Dec 15, 2022 · c6b998d · c6b998d
1 parent 9bd97c7
commit c6b998d
Show file tree

Hide file tree

Showing 2 changed files with 18 additions and 2 deletions.
diff --git a/.cargo/audit.toml b/.cargo/audit.toml
@@ -0,0 +1,11 @@
+[advisories]
+ignore = [
+    # ? `time` is only used in the interop driver's deps. Don't really care as it's not exposed code
+    "RUSTSEC-2020-0071",
+    # ? `ansi_term` works as is, despite being unmaintained
+    "RUSTSEC-2021-0139",
+    # ? `sodiumoxide` is only used in tests to check against our proteus compat layer
+    "RUSTSEC-2021-0137",
+    # ? `atty` only has a vuln on windows
+    "RUSTSEC-2021-0145",
+]
diff --git a/deny.toml b/deny.toml
@@ -15,6 +15,7 @@ targets = [
     # Android
     { triple = "aarch64-linux-android" },
     { triple = "armv7-linux-androideabi" },
+    { triple = "thumbv7neon-linux-androideabi" },
     { triple = "x86_64-linux-android" },
 ]
 
@@ -24,6 +25,12 @@ vulnerability = "warn"
 ignore = [
     # ? ansi_term works well as is, despite being unmaintained
     "RUSTSEC-2021-0139",
+    # ? `time` is only used in the interop runner
+    "RUSTSEC-2020-0071",
+    # ? `sodiumoxide` is only used in tests
+    "RUSTSEC-2021-0137",
+    # ? `atty` only has a vuln on windows
+    "RUSTSEC-2021-0145",
 ]
 
 [bans]
@@ -65,8 +72,6 @@ private = [
     "https://github.com/otak",
     # TODO: remove when a stable ring version is published
     "https://github.com/briansmith",
-    # TODO: Remove when refinery is up to date
-    "https://github.com/rust-db/refinery",
 ]
 
 [sources.allow-org]