From c6b998d04b0ecbc1a0bc470400345202da012a8b Mon Sep 17 00:00:00 2001
From: Mathieu Amiot <amiot.mathieu@gmail.com>
Date: Thu, 15 Dec 2022 12:30:42 +0100
Subject: [PATCH] chore: Fix advisory stuff

---
 .cargo/audit.toml | 11 +++++++++++
 deny.toml         |  9 +++++++--
 2 files changed, 18 insertions(+), 2 deletions(-)
 create mode 100644 .cargo/audit.toml

diff --git a/.cargo/audit.toml b/.cargo/audit.toml
new file mode 100644
index 0000000000..2b70d831e4
--- /dev/null
+++ b/.cargo/audit.toml
@@ -0,0 +1,11 @@
+[advisories]
+ignore = [
+    # ? `time` is only used in the interop driver's deps. Don't really care as it's not exposed code
+    "RUSTSEC-2020-0071",
+    # ? `ansi_term` works as is, despite being unmaintained
+    "RUSTSEC-2021-0139",
+    # ? `sodiumoxide` is only used in tests to check against our proteus compat layer
+    "RUSTSEC-2021-0137",
+    # ? `atty` only has a vuln on windows
+    "RUSTSEC-2021-0145",
+]
diff --git a/deny.toml b/deny.toml
index 29acf54b56..d70b9f767e 100644
--- a/deny.toml
+++ b/deny.toml
@@ -15,6 +15,7 @@ targets = [
     # Android
     { triple = "aarch64-linux-android" },
     { triple = "armv7-linux-androideabi" },
+    { triple = "thumbv7neon-linux-androideabi" },
     { triple = "x86_64-linux-android" },
 ]
 
@@ -24,6 +25,12 @@ vulnerability = "warn"
 ignore = [
     # ? ansi_term works well as is, despite being unmaintained
     "RUSTSEC-2021-0139",
+    # ? `time` is only used in the interop runner
+    "RUSTSEC-2020-0071",
+    # ? `sodiumoxide` is only used in tests
+    "RUSTSEC-2021-0137",
+    # ? `atty` only has a vuln on windows
+    "RUSTSEC-2021-0145",
 ]
 
 [bans]
@@ -65,8 +72,6 @@ private = [
     "https://github.com/otak",
     # TODO: remove when a stable ring version is published
     "https://github.com/briansmith",
-    # TODO: Remove when refinery is up to date
-    "https://github.com/rust-db/refinery",
 ]
 
 [sources.allow-org]