mirror of
https://github.com/str4d/rage.git
synced 2025-04-03 19:07:42 +03:00
cargo vet regenerate exemptions
This commit is contained in:
parent
9344c79dc4
commit
20cb5bf8b3
2 changed files with 459 additions and 319 deletions
|
@ -50,15 +50,15 @@ version = "0.8.2"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.aes-gcm]]
|
||||
version = "0.10.1"
|
||||
version = "0.10.3"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.ahash]]
|
||||
version = "0.8.3"
|
||||
version = "0.8.6"
|
||||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.aho-corasick]]
|
||||
version = "1.0.2"
|
||||
version = "1.1.1"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.android-tzdata]]
|
||||
|
@ -66,7 +66,7 @@ version = "0.1.1"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.anstyle]]
|
||||
version = "1.0.1"
|
||||
version = "1.0.2"
|
||||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.arc-swap]]
|
||||
|
@ -101,6 +101,10 @@ criteria = "safe-to-deploy"
|
|||
version = "0.9.1"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.bytemuck]]
|
||||
version = "1.14.0"
|
||||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.byteorder]]
|
||||
version = "1.4.3"
|
||||
criteria = "safe-to-deploy"
|
||||
|
@ -130,7 +134,7 @@ version = "0.10.1"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.chrono]]
|
||||
version = "0.4.26"
|
||||
version = "0.4.31"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.ciborium]]
|
||||
|
@ -150,11 +154,11 @@ version = "0.3.0"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.clap]]
|
||||
version = "4.3.19"
|
||||
version = "4.3.24"
|
||||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.clap_builder]]
|
||||
version = "4.3.19"
|
||||
version = "4.3.24"
|
||||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.clap_complete]]
|
||||
|
@ -166,7 +170,7 @@ version = "0.15.7"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.const-oid]]
|
||||
version = "0.9.4"
|
||||
version = "0.9.6"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.constant_time_eq]]
|
||||
|
@ -177,8 +181,12 @@ criteria = "safe-to-deploy"
|
|||
version = "0.3.2"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.core-foundation-sys]]
|
||||
version = "0.8.6"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.cpp_demangle]]
|
||||
version = "0.4.2"
|
||||
version = "0.4.3"
|
||||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.cpufeatures]]
|
||||
|
@ -194,7 +202,7 @@ version = "0.3.6"
|
|||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.criterion-cycles-per-byte]]
|
||||
version = "0.5.0"
|
||||
version = "0.6.0"
|
||||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.criterion-plot]]
|
||||
|
@ -210,19 +218,23 @@ version = "0.9.2"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.ctrlc]]
|
||||
version = "3.4.0"
|
||||
version = "3.4.1"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.curve25519-dalek]]
|
||||
version = "3.2.0"
|
||||
version = "4.1.0"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.curve25519-dalek-derive]]
|
||||
version = "0.1.0"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.dashmap]]
|
||||
version = "5.5.0"
|
||||
version = "5.5.3"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.der]]
|
||||
version = "0.7.7"
|
||||
version = "0.7.8"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.digest]]
|
||||
|
@ -234,7 +246,7 @@ version = "0.3.6"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.env_logger]]
|
||||
version = "0.9.0"
|
||||
version = "0.10.1"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.equivalent]]
|
||||
|
@ -242,7 +254,7 @@ version = "1.0.1"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.filetime]]
|
||||
version = "0.2.22"
|
||||
version = "0.2.23"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.find-crate]]
|
||||
|
@ -254,19 +266,35 @@ version = "0.10.2"
|
|||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.flate2]]
|
||||
version = "1.0.26"
|
||||
version = "1.0.28"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.fuse_mt]]
|
||||
version = "0.6.0"
|
||||
version = "0.6.1"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.fuser]]
|
||||
version = "0.11.1"
|
||||
version = "0.13.0"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.futures]]
|
||||
version = "0.3.29"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.futures-executor]]
|
||||
version = "0.3.29"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.futures-io]]
|
||||
version = "0.3.29"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.futures-macro]]
|
||||
version = "0.3.21"
|
||||
version = "0.3.29"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.futures-sink]]
|
||||
version = "0.3.29"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.futures-task]]
|
||||
|
@ -274,7 +302,7 @@ version = "0.3.25"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.futures-test]]
|
||||
version = "0.3.28"
|
||||
version = "0.3.29"
|
||||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.futures-util]]
|
||||
|
@ -289,6 +317,10 @@ criteria = "safe-to-deploy"
|
|||
version = "0.2.10"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.gimli]]
|
||||
version = "0.28.1"
|
||||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.gumdrop]]
|
||||
version = "0.8.1"
|
||||
criteria = "safe-to-deploy"
|
||||
|
@ -297,12 +329,20 @@ criteria = "safe-to-deploy"
|
|||
version = "0.8.1"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.hashbrown]]
|
||||
version = "0.14.3"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.hermit-abi]]
|
||||
version = "0.3.2"
|
||||
version = "0.3.3"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.hkdf]]
|
||||
version = "0.12.3"
|
||||
version = "0.12.4"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.home]]
|
||||
version = "0.5.5"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.humantime]]
|
||||
|
@ -310,23 +350,23 @@ version = "2.1.0"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.i18n-config]]
|
||||
version = "0.4.4"
|
||||
version = "0.4.5"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.i18n-embed]]
|
||||
version = "0.13.9"
|
||||
version = "0.14.1"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.i18n-embed-fl]]
|
||||
version = "0.6.7"
|
||||
version = "0.7.0"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.i18n-embed-impl]]
|
||||
version = "0.8.1"
|
||||
version = "0.8.3"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.iana-time-zone]]
|
||||
version = "0.1.57"
|
||||
version = "0.1.58"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.iana-time-zone-haiku]]
|
||||
|
@ -338,7 +378,7 @@ version = "2.0.0"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.inferno]]
|
||||
version = "0.11.15"
|
||||
version = "0.11.19"
|
||||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.io_tee]]
|
||||
|
@ -358,7 +398,7 @@ version = "0.3.64"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.libc]]
|
||||
version = "0.2.146"
|
||||
version = "0.2.151"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.libm]]
|
||||
|
@ -366,7 +406,7 @@ version = "0.2.2"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.linux-raw-sys]]
|
||||
version = "0.4.5"
|
||||
version = "0.4.12"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.locale_config]]
|
||||
|
@ -374,7 +414,7 @@ version = "0.3.0"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.lock_api]]
|
||||
version = "0.4.10"
|
||||
version = "0.4.11"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.man]]
|
||||
|
@ -382,11 +422,11 @@ version = "0.3.0"
|
|||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.memchr]]
|
||||
version = "2.5.0"
|
||||
version = "2.6.3"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.memmap2]]
|
||||
version = "0.5.10"
|
||||
version = "0.9.2"
|
||||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.memoffset]]
|
||||
|
@ -434,7 +474,7 @@ version = "1.15.0"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.page_size]]
|
||||
version = "0.4.2"
|
||||
version = "0.5.0"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.parking_lot]]
|
||||
|
@ -442,7 +482,7 @@ version = "0.12.1"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.parking_lot_core]]
|
||||
version = "0.9.8"
|
||||
version = "0.9.9"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.password-hash]]
|
||||
|
@ -458,11 +498,11 @@ version = "0.12.2"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.pin-project]]
|
||||
version = "1.1.2"
|
||||
version = "1.1.3"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.pin-project-internal]]
|
||||
version = "1.1.2"
|
||||
version = "1.1.3"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.pinentry]]
|
||||
|
@ -502,7 +542,7 @@ version = "0.6.1"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.pprof]]
|
||||
version = "0.12.1"
|
||||
version = "0.13.0"
|
||||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.ppv-lite86]]
|
||||
|
@ -526,23 +566,23 @@ version = "0.8.5"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.redox_syscall]]
|
||||
version = "0.3.5"
|
||||
version = "0.4.1"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.regex]]
|
||||
version = "1.9.1"
|
||||
version = "1.9.5"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.regex-automata]]
|
||||
version = "0.3.4"
|
||||
version = "0.3.8"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.regex-syntax]]
|
||||
version = "0.7.4"
|
||||
version = "0.7.2"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.rgb]]
|
||||
version = "0.8.36"
|
||||
version = "0.8.37"
|
||||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.roff]]
|
||||
|
@ -550,31 +590,31 @@ version = "0.1.0"
|
|||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.rpassword]]
|
||||
version = "7.2.0"
|
||||
version = "7.3.1"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.rsa]]
|
||||
version = "0.9.2"
|
||||
version = "0.9.6"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.rtoolbox]]
|
||||
version = "0.0.1"
|
||||
version = "0.0.2"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.rust-embed]]
|
||||
version = "6.8.1"
|
||||
version = "8.1.0"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.rust-embed-impl]]
|
||||
version = "6.8.1"
|
||||
version = "8.1.0"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.rust-embed-utils]]
|
||||
version = "7.8.1"
|
||||
version = "8.1.0"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.rustix]]
|
||||
version = "0.38.6"
|
||||
version = "0.38.28"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.ryu]]
|
||||
|
@ -602,23 +642,39 @@ version = "0.8.0"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.self_cell]]
|
||||
version = "0.10.2"
|
||||
version = "0.10.3"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.self_cell]]
|
||||
version = "1.0.2"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.serde]]
|
||||
version = "1.0.181"
|
||||
version = "1.0.136"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.serde_derive]]
|
||||
version = "1.0.181"
|
||||
version = "1.0.136"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.serde_spanned]]
|
||||
version = "0.6.3"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.sha1]]
|
||||
version = "0.10.6"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.sha2]]
|
||||
version = "0.10.8"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.slab]]
|
||||
version = "0.4.9"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.smallvec]]
|
||||
version = "1.11.0"
|
||||
version = "1.11.2"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.spin]]
|
||||
|
@ -626,7 +682,7 @@ version = "0.5.2"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.spki]]
|
||||
version = "0.7.2"
|
||||
version = "0.7.3"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.str_stack]]
|
||||
|
@ -638,43 +694,39 @@ version = "0.10.0"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.symbolic-common]]
|
||||
version = "12.3.0"
|
||||
version = "12.8.0"
|
||||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.symbolic-demangle]]
|
||||
version = "12.3.0"
|
||||
version = "12.8.0"
|
||||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.syn]]
|
||||
version = "1.0.109"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.syn]]
|
||||
version = "2.0.28"
|
||||
version = "1.0.102"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.tar]]
|
||||
version = "0.4.39"
|
||||
version = "0.4.40"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.tempfile]]
|
||||
version = "3.7.0"
|
||||
version = "3.3.0"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.termcolor]]
|
||||
version = "1.1.3"
|
||||
version = "1.4.0"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.test-case]]
|
||||
version = "3.1.0"
|
||||
version = "3.3.1"
|
||||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.test-case-core]]
|
||||
version = "3.1.0"
|
||||
version = "3.3.1"
|
||||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.test-case-macros]]
|
||||
version = "3.1.0"
|
||||
version = "3.3.1"
|
||||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.threadpool]]
|
||||
|
@ -689,6 +741,14 @@ criteria = "safe-to-deploy"
|
|||
version = "1.2.1"
|
||||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.tokio]]
|
||||
version = "1.35.0"
|
||||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.tokio-macros]]
|
||||
version = "2.2.0"
|
||||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.toml]]
|
||||
version = "0.5.9"
|
||||
criteria = "safe-to-deploy"
|
||||
|
@ -709,8 +769,20 @@ criteria = "safe-to-deploy"
|
|||
version = "1.15.0"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.unic-langid]]
|
||||
version = "0.9.4"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.unic-langid-impl]]
|
||||
version = "0.9.4"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.uuid]]
|
||||
version = "1.6.1"
|
||||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.walkdir]]
|
||||
version = "2.3.3"
|
||||
version = "2.4.0"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.wasi]]
|
||||
|
@ -718,11 +790,11 @@ version = "0.11.0+wasi-snapshot-preview1"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.wasm-bindgen]]
|
||||
version = "0.2.87"
|
||||
version = "0.2.89"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.wasm-bindgen-backend]]
|
||||
version = "0.2.87"
|
||||
version = "0.2.89"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.wasm-bindgen-macro]]
|
||||
|
@ -734,7 +806,7 @@ version = "0.2.87"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.web-sys]]
|
||||
version = "0.3.64"
|
||||
version = "0.3.66"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.which]]
|
||||
|
@ -750,15 +822,19 @@ version = "0.4.0"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.winapi-util]]
|
||||
version = "0.1.5"
|
||||
version = "0.1.6"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.winapi-x86_64-pc-windows-gnu]]
|
||||
version = "0.4.0"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.windows-core]]
|
||||
version = "0.51.1"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.winnow]]
|
||||
version = "0.5.4"
|
||||
version = "0.5.28"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.wsl]]
|
||||
|
@ -766,23 +842,31 @@ version = "0.1.0"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.x25519-dalek]]
|
||||
version = "1.1.1"
|
||||
version = "2.0.0"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.xattr]]
|
||||
version = "0.2.3"
|
||||
version = "1.1.3"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.zerocopy]]
|
||||
version = "0.6.1"
|
||||
version = "0.6.6"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.zerocopy]]
|
||||
version = "0.7.31"
|
||||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.zerocopy-derive]]
|
||||
version = "0.6.6"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.zerocopy-derive]]
|
||||
version = "0.3.2"
|
||||
criteria = "safe-to-deploy"
|
||||
version = "0.7.31"
|
||||
criteria = "safe-to-run"
|
||||
|
||||
[[exemptions.zeroize]]
|
||||
version = "1.5.7"
|
||||
version = "1.7.0"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.zeroize_derive]]
|
||||
|
@ -802,5 +886,5 @@ version = "5.0.2+zstd.1.5.2"
|
|||
criteria = "safe-to-deploy"
|
||||
|
||||
[[exemptions.zstd-sys]]
|
||||
version = "2.0.8+zstd.1.5.5"
|
||||
version = "2.0.9+zstd.1.5.5"
|
||||
criteria = "safe-to-deploy"
|
||||
|
|
|
@ -8,13 +8,6 @@ user-id = 696
|
|||
user-login = "fitzgen"
|
||||
user-name = "Nick Fitzgerald"
|
||||
|
||||
[[publisher.core-foundation-sys]]
|
||||
version = "0.8.4"
|
||||
when = "2023-04-03"
|
||||
user-id = 5946
|
||||
user-login = "jrmuizel"
|
||||
user-name = "Jeff Muizelaar"
|
||||
|
||||
[[publisher.windows-sys]]
|
||||
version = "0.45.0"
|
||||
when = "2023-01-21"
|
||||
|
@ -335,40 +328,6 @@ criteria = "safe-to-deploy"
|
|||
version = "0.3.27"
|
||||
notes = "Unsafe used to implement a concurrency primitive AtomicWaker. Well-commented and not obviously incorrect. Like my other audits of these concurrency primitives inside the futures family, I couldn't certify that it is correct without formal methods, but that is out of scope for this vetting."
|
||||
|
||||
[[audits.bytecode-alliance.audits.futures-executor]]
|
||||
who = "Pat Hickey <phickey@fastly.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
version = "0.3.27"
|
||||
notes = "Unsafe used to implement the unpark mutex, which is well commented and not obviously incorrect. Like with futures-channel I wouldn't be able to certify it as correct without formal methods."
|
||||
|
||||
[[audits.bytecode-alliance.audits.futures-io]]
|
||||
who = "Pat Hickey <phickey@fastly.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
version = "0.3.27"
|
||||
|
||||
[[audits.bytecode-alliance.audits.futures-sink]]
|
||||
who = "Pat Hickey <phickey@fastly.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
version = "0.3.27"
|
||||
|
||||
[[audits.bytecode-alliance.audits.hashbrown]]
|
||||
who = "Chris Fallin <chris@cfallin.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.12.3 -> 0.13.1"
|
||||
notes = "The diff looks plausible. Much of it is low-level memory-layout code and I can't be 100% certain without a deeper dive into the implementation logic, but nothing looks actively malicious."
|
||||
|
||||
[[audits.bytecode-alliance.audits.hashbrown]]
|
||||
who = "Trevor Elliott <telliott@fastly.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.13.1 -> 0.13.2"
|
||||
notes = "I read through the diff between v0.13.1 and v0.13.2, and verified that the changes made matched up with the changelog entries. There were very few changes between these two releases, and it was easy to verify what they did."
|
||||
|
||||
[[audits.bytecode-alliance.audits.libc]]
|
||||
who = "Alex Crichton <alex@alexcrichton.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.2.146 -> 0.2.147"
|
||||
notes = "Only new type definitions and updating others for some platforms, no major changes"
|
||||
|
||||
[[audits.bytecode-alliance.audits.libm]]
|
||||
who = "Alex Crichton <alex@alexcrichton.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
|
@ -454,11 +413,16 @@ criteria = "safe-to-deploy"
|
|||
version = "1.0.17"
|
||||
notes = "plenty of unsafe pointer and vec tricks, but in well-structured and commented code that appears to be correct"
|
||||
|
||||
[[audits.bytecode-alliance.audits.slab]]
|
||||
[[audits.bytecode-alliance.audits.tempfile]]
|
||||
who = "Pat Hickey <phickey@fastly.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
version = "0.4.6"
|
||||
notes = "provides a datastructure implemented using std's Vec. all uses of unsafe are just delegating to the underlying unsafe Vec methods."
|
||||
delta = "3.3.0 -> 3.5.0"
|
||||
|
||||
[[audits.bytecode-alliance.audits.tempfile]]
|
||||
who = "Alex Crichton <alex@alexcrichton.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "3.5.0 -> 3.6.0"
|
||||
notes = "Dependency updates and new optimized trait implementations, but otherwise everything looks normal."
|
||||
|
||||
[[audits.bytecode-alliance.audits.unicode-ident]]
|
||||
who = "Pat Hickey <phickey@fastly.com>"
|
||||
|
@ -512,12 +476,6 @@ criteria = "safe-to-run"
|
|||
version = "0.3.67"
|
||||
aggregated-from = "https://chromium.googlesource.com/chromiumos/third_party/rust_crates/+/refs/heads/main/cargo-vet/audits.toml?format=TEXT"
|
||||
|
||||
[[audits.google.audits.bytemuck]]
|
||||
who = "George Burgess IV <gbiv@google.com>"
|
||||
criteria = "safe-to-run"
|
||||
version = "1.13.1"
|
||||
aggregated-from = "https://chromium.googlesource.com/chromiumos/third_party/rust_crates/+/refs/heads/main/cargo-vet/audits.toml?format=TEXT"
|
||||
|
||||
[[audits.google.audits.clap_lex]]
|
||||
who = "George Burgess IV <gbiv@google.com>"
|
||||
criteria = "safe-to-run"
|
||||
|
@ -564,22 +522,6 @@ that the RNG here is not cryptographically secure.
|
|||
"""
|
||||
aggregated-from = "https://chromium.googlesource.com/chromiumos/third_party/rust_crates/+/refs/heads/main/cargo-vet/audits.toml?format=TEXT"
|
||||
|
||||
[[audits.google.audits.futures]]
|
||||
who = "George Burgess IV <gbiv@google.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
version = "0.3.28"
|
||||
notes = """
|
||||
`futures` has no logic other than tests - it simply `pub use`s things from
|
||||
other crates.
|
||||
"""
|
||||
aggregated-from = "https://chromium.googlesource.com/chromiumos/third_party/rust_crates/+/refs/heads/main/cargo-vet/audits.toml?format=TEXT"
|
||||
|
||||
[[audits.google.audits.gimli]]
|
||||
who = "George Burgess IV <gbiv@google.com>"
|
||||
criteria = "safe-to-run"
|
||||
version = "0.27.3"
|
||||
aggregated-from = "https://chromium.googlesource.com/chromiumos/third_party/rust_crates/+/refs/heads/main/cargo-vet/audits.toml?format=TEXT"
|
||||
|
||||
[[audits.google.audits.itertools]]
|
||||
who = "ChromeOS"
|
||||
criteria = "safe-to-run"
|
||||
|
@ -662,25 +604,6 @@ criteria = "safe-to-run"
|
|||
version = "1.2.0"
|
||||
aggregated-from = "https://chromium.googlesource.com/chromiumos/third_party/rust_crates/+/refs/heads/main/cargo-vet/audits.toml?format=TEXT"
|
||||
|
||||
[[audits.google.audits.tokio]]
|
||||
who = "Vovo Yang <vovoy@google.com>"
|
||||
criteria = "safe-to-run"
|
||||
version = "1.29.1"
|
||||
aggregated-from = "https://chromium.googlesource.com/chromiumos/third_party/rust_crates/+/refs/heads/main/cargo-vet/audits.toml?format=TEXT"
|
||||
|
||||
[[audits.google.audits.tokio-macros]]
|
||||
who = "Vovo Yang <vovoy@google.com>"
|
||||
criteria = "safe-to-run"
|
||||
version = "2.1.0"
|
||||
aggregated-from = "https://chromium.googlesource.com/chromiumos/third_party/rust_crates/+/refs/heads/main/cargo-vet/audits.toml?format=TEXT"
|
||||
|
||||
[[audits.google.audits.uuid]]
|
||||
who = "George Burgess IV <gbiv@google.com>"
|
||||
criteria = "safe-to-run"
|
||||
version = "1.3.0"
|
||||
notes = "Randomness and hashing involved in UUID generation is sourced from other crates."
|
||||
aggregated-from = "https://chromium.googlesource.com/chromiumos/third_party/rust_crates/+/refs/heads/main/cargo-vet/audits.toml?format=TEXT"
|
||||
|
||||
[[audits.google.audits.version_check]]
|
||||
who = "George Burgess IV <gbiv@google.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
|
@ -692,11 +615,6 @@ who = "Brandon Pitman <bran@bran.land>"
|
|||
criteria = "safe-to-deploy"
|
||||
delta = "0.8.2 -> 0.8.3"
|
||||
|
||||
[[audits.isrg.audits.aes-gcm]]
|
||||
who = "Tim Geoghegan <timg@letsencrypt.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.10.1 -> 0.10.2"
|
||||
|
||||
[[audits.isrg.audits.base64]]
|
||||
who = "Tim Geoghegan <timg@letsencrypt.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
|
@ -881,10 +799,70 @@ who = "David Cook <dcook@divviup.org>"
|
|||
criteria = "safe-to-deploy"
|
||||
delta = "1.11.0 -> 1.12.0"
|
||||
|
||||
[[audits.isrg.audits.sha2]]
|
||||
[[audits.isrg.audits.serde]]
|
||||
who = "David Cook <dcook@divviup.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
version = "0.10.2"
|
||||
delta = "1.0.152 -> 1.0.153"
|
||||
|
||||
[[audits.isrg.audits.serde]]
|
||||
who = "David Cook <dcook@divviup.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.153 -> 1.0.154"
|
||||
|
||||
[[audits.isrg.audits.serde]]
|
||||
who = "David Cook <dcook@divviup.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.154 -> 1.0.155"
|
||||
|
||||
[[audits.isrg.audits.serde]]
|
||||
who = "Brandon Pitman <bran@bran.land>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.156 -> 1.0.159"
|
||||
|
||||
[[audits.isrg.audits.serde]]
|
||||
who = "Brandon Pitman <bran@bran.land>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.160 -> 1.0.162"
|
||||
|
||||
[[audits.isrg.audits.serde]]
|
||||
who = "David Cook <dcook@divviup.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.162 -> 1.0.163"
|
||||
|
||||
[[audits.isrg.audits.serde_derive]]
|
||||
who = "David Cook <dcook@divviup.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.152 -> 1.0.153"
|
||||
|
||||
[[audits.isrg.audits.serde_derive]]
|
||||
who = "David Cook <dcook@divviup.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.153 -> 1.0.154"
|
||||
|
||||
[[audits.isrg.audits.serde_derive]]
|
||||
who = "David Cook <dcook@divviup.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.154 -> 1.0.155"
|
||||
|
||||
[[audits.isrg.audits.serde_derive]]
|
||||
who = "Brandon Pitman <bran@bran.land>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.156 -> 1.0.159"
|
||||
|
||||
[[audits.isrg.audits.serde_derive]]
|
||||
who = "Brandon Pitman <bran@bran.land>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.160 -> 1.0.162"
|
||||
|
||||
[[audits.isrg.audits.serde_derive]]
|
||||
who = "David Cook <dcook@divviup.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.162 -> 1.0.163"
|
||||
|
||||
[[audits.isrg.audits.syn]]
|
||||
who = "Brandon Pitman <bran@bran.land>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.104 -> 2.0.11"
|
||||
|
||||
[[audits.isrg.audits.thiserror]]
|
||||
who = "Brandon Pitman <bran@bran.land>"
|
||||
|
@ -911,16 +889,6 @@ who = "David Cook <dcook@divviup.org>"
|
|||
criteria = "safe-to-deploy"
|
||||
version = "0.2.83"
|
||||
|
||||
[[audits.mozilla.wildcard-audits.core-foundation-sys]]
|
||||
who = "Bobby Holley <bobbyholley@gmail.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
user-id = 5946 # Jeff Muizelaar (jrmuizel)
|
||||
start = "2020-10-14"
|
||||
end = "2023-05-04"
|
||||
renew = false
|
||||
notes = "I've reviewed every source contribution that was neither authored nor reviewed by Mozilla."
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.android_system_properties]]
|
||||
who = "Nicolas Silva <nical@fastmail.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
|
@ -1051,18 +1019,6 @@ criteria = "safe-to-deploy"
|
|||
delta = "1.8.0 -> 1.8.1"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.env_logger]]
|
||||
who = "Mike Hommey <mh+mozilla@glandium.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.9.0 -> 0.9.3"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.env_logger]]
|
||||
who = "Nicolas Silva <nical@fastmail.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.9.3 -> 0.10.0"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.errno]]
|
||||
who = "Mike Hommey <mh+mozilla@glandium.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
|
@ -1111,48 +1067,6 @@ criteria = "safe-to-deploy"
|
|||
delta = "0.3.27 -> 0.3.28"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.futures-executor]]
|
||||
who = "Mike Hommey <mh+mozilla@glandium.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.3.27 -> 0.3.28"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.futures-io]]
|
||||
who = "Mike Hommey <mh+mozilla@glandium.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.3.27 -> 0.3.28"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.futures-macro]]
|
||||
who = "Mike Hommey <mh+mozilla@glandium.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.3.21 -> 0.3.23"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.futures-macro]]
|
||||
who = "Mike Hommey <mh+mozilla@glandium.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.3.23 -> 0.3.25"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.futures-macro]]
|
||||
who = "Mike Hommey <mh+mozilla@glandium.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.3.25 -> 0.3.26"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.futures-macro]]
|
||||
who = "Mike Hommey <mh+mozilla@glandium.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.3.26 -> 0.3.28"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.futures-sink]]
|
||||
who = "Mike Hommey <mh+mozilla@glandium.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.3.27 -> 0.3.28"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.futures-task]]
|
||||
who = "Mike Hommey <mh+mozilla@glandium.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
|
@ -1200,13 +1114,6 @@ capabilities.
|
|||
"""
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.hashbrown]]
|
||||
who = "Mike Hommey <mh+mozilla@glandium.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
version = "0.12.3"
|
||||
notes = "This version is used in rust's libstd, so effectively we're already trusting it"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.hex]]
|
||||
who = "Simon Friedberger <simon@mozilla.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
|
@ -1469,30 +1376,56 @@ version = "1.1.0"
|
|||
notes = "Straightforward crate with no unsafe code, does what it says on the tin."
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.sha1]]
|
||||
who = "Dana Keeler <dkeeler@mozilla.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
version = "0.10.5"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.sha2]]
|
||||
[[audits.mozilla.audits.serde]]
|
||||
who = "Mike Hommey <mh+mozilla@glandium.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.10.2 -> 0.10.6"
|
||||
delta = "1.0.143 -> 1.0.144"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.slab]]
|
||||
[[audits.mozilla.audits.serde]]
|
||||
who = "Mike Hommey <mh+mozilla@glandium.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.4.6 -> 0.4.7"
|
||||
delta = "1.0.144 -> 1.0.151"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.slab]]
|
||||
[[audits.mozilla.audits.serde]]
|
||||
who = "Mike Hommey <mh+mozilla@glandium.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.4.7 -> 0.4.8"
|
||||
delta = "1.0.151 -> 1.0.152"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.serde]]
|
||||
who = "Jan-Erik Rediger <jrediger@mozilla.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.163 -> 1.0.179"
|
||||
notes = "Internal refactorings and some new trait implementations"
|
||||
aggregated-from = "https://raw.githubusercontent.com/mozilla/glean/main/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.serde_derive]]
|
||||
who = "Mike Hommey <mh+mozilla@glandium.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.143 -> 1.0.144"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.serde_derive]]
|
||||
who = "Mike Hommey <mh+mozilla@glandium.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.144 -> 1.0.151"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.serde_derive]]
|
||||
who = "Mike Hommey <mh+mozilla@glandium.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.151 -> 1.0.152"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.serde_derive]]
|
||||
who = "Jan-Erik Rediger <jrediger@mozilla.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.163 -> 1.0.179"
|
||||
notes = "Internal refactorings and dependency updates"
|
||||
aggregated-from = "https://raw.githubusercontent.com/mozilla/glean/main/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.subtle]]
|
||||
who = "Simon Friedberger <simon@mozilla.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
|
@ -1500,10 +1433,17 @@ version = "2.5.0"
|
|||
notes = "The goal is to provide some constant-time correctness for cryptographic implementations. The approach is reasonable, it is known to be insufficient but this is pointed out in the documentation."
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.termcolor]]
|
||||
[[audits.mozilla.audits.syn]]
|
||||
who = "Jan-Erik Rediger <jrediger@mozilla.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "2.0.18 -> 2.0.26"
|
||||
notes = "Dependency update & internal refactorings"
|
||||
aggregated-from = "https://raw.githubusercontent.com/mozilla/glean/main/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.tempfile]]
|
||||
who = "Mike Hommey <mh+mozilla@glandium.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.1.3 -> 1.2.0"
|
||||
delta = "3.6.0 -> 3.8.0"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.time]]
|
||||
|
@ -1561,30 +1501,6 @@ criteria = "safe-to-deploy"
|
|||
delta = "1.15.0 -> 1.16.0"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.unic-langid]]
|
||||
who = "Zibi Braniecki <zibi@unicode.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
version = "0.9.0"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.unic-langid]]
|
||||
who = "Mike Hommey <mh+mozilla@glandium.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.9.0 -> 0.9.1"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.unic-langid-impl]]
|
||||
who = "Zibi Braniecki <zibi@unicode.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
version = "0.9.0"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.unic-langid-impl]]
|
||||
who = "Makoto Kato <m_kato@ga2.so-net.ne.jp>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.9.0 -> 0.9.1"
|
||||
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.unicode-ident]]
|
||||
who = "Jan-Erik Rediger <jrediger@mozilla.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
|
@ -1592,19 +1508,18 @@ delta = "1.0.8 -> 1.0.9"
|
|||
notes = "Dependency updates only"
|
||||
aggregated-from = "https://raw.githubusercontent.com/mozilla/glean/main/supply-chain/audits.toml"
|
||||
|
||||
[[audits.mozilla.audits.uuid]]
|
||||
who = "Jan-Erik Rediger <jrediger@mozilla.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.3.0 -> 1.4.1"
|
||||
notes = "Internal refactoring, new target support"
|
||||
aggregated-from = "https://raw.githubusercontent.com/mozilla/glean/main/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.aead]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.5.1 -> 0.5.2"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.aho-corasick]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.1.1 -> 1.1.2"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.backtrace]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
|
@ -1704,6 +1619,18 @@ notes = """
|
|||
"""
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.curve25519-dalek]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "4.1.0 -> 4.1.1"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.curve25519-dalek-derive]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.1.0 -> 0.1.1"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.either]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
|
@ -1750,17 +1677,6 @@ criteria = "safe-to-deploy"
|
|||
delta = "0.14.6 -> 0.14.7"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.hashbrown]]
|
||||
who = "Daira Emma Hopwood <daira@jacaranda.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.13.2 -> 0.14.0"
|
||||
notes = """
|
||||
There is some additional use of unsafe code but the changes in this crate looked plausible.
|
||||
There is a new default dependency on the `allocator-api2` crate, which itself has quite a lot of unsafe code.
|
||||
Many previously undocumented safety requirements have been documented.
|
||||
"""
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.indexmap]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
|
@ -1812,6 +1728,12 @@ criteria = "safe-to-deploy"
|
|||
delta = "0.4.19 -> 0.4.20"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.memchr]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "2.6.3 -> 2.6.4"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.nix]]
|
||||
who = "Jack Grigg <jack@z.cash>"
|
||||
criteria = "safe-to-deploy"
|
||||
|
@ -1880,6 +1802,34 @@ criteria = "safe-to-deploy"
|
|||
delta = "1.0.31 -> 1.0.33"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.regex]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.9.5 -> 1.10.2"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.regex-automata]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.3.8 -> 0.4.3"
|
||||
notes = """
|
||||
There were additions to an `unsafe` trait, but the new code itself doesn't use
|
||||
any `unsafe` functions.
|
||||
"""
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.regex-syntax]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.7.2 -> 0.7.5"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.regex-syntax]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.7.5 -> 0.8.2"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.rustc-demangle]]
|
||||
who = "Sean Bowe <ewillbefull@gmail.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
|
@ -1931,6 +1881,69 @@ criteria = "safe-to-deploy"
|
|||
delta = "1.0.19 -> 1.0.20"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.serde]]
|
||||
who = "Jack Grigg <jack@z.cash>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.136 -> 1.0.143"
|
||||
notes = "Bumps serde-derive and adds some constructors."
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.serde]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.155 -> 1.0.156"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.serde]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.159 -> 1.0.160"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.serde]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.179 -> 1.0.188"
|
||||
notes = "Mostly a bunch of cleanups after bumping MSRV."
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.serde]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.188 -> 1.0.193"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.serde_derive]]
|
||||
who = "Jack Grigg <jack@z.cash>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.136 -> 1.0.143"
|
||||
notes = "Bumps syn, inverts some build flags."
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.serde_derive]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.155 -> 1.0.156"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.serde_derive]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.159 -> 1.0.160"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.serde_derive]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.179 -> 1.0.188"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.serde_derive]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.188 -> 1.0.193"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.serde_json]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
|
@ -1961,18 +1974,6 @@ criteria = "safe-to-deploy"
|
|||
delta = "1.0.107 -> 1.0.108"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.sha2]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.10.6 -> 0.10.7"
|
||||
notes = """
|
||||
The new `unsafe` assembly backend only uses aarch64 intrinsics, via their typed
|
||||
Rust APIs (aside from the SHA2-specific intrinsics that are not in Rust yet). I
|
||||
did not perform a cryptographic review, but the code to load from and store into
|
||||
the function arguments looks correct.
|
||||
"""
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.signature]]
|
||||
who = "Daira Emma Hopwood <daira@jacaranda.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
|
@ -1989,6 +1990,67 @@ criteria = "safe-to-deploy"
|
|||
delta = "2.1.0 -> 2.2.0"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.syn]]
|
||||
who = "Sean Bowe <ewillbefull@gmail.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.102 -> 1.0.104"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.syn]]
|
||||
who = "Jack Grigg <jack@z.cash>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.102 -> 1.0.107"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.syn]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.0.107 -> 1.0.109"
|
||||
notes = "Fixes string literal parsing to only skip specified whitespace characters."
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.syn]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "2.0.11 -> 2.0.13"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.syn]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "2.0.13 -> 2.0.15"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.syn]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "2.0.15 -> 2.0.18"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.syn]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "2.0.26 -> 2.0.33"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.syn]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "2.0.33 -> 2.0.37"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.syn]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "2.0.37 -> 2.0.41"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.tempfile]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "3.8.0 -> 3.8.1"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.thiserror]]
|
||||
who = "Jack Grigg <jack@electriccoin.co>"
|
||||
criteria = "safe-to-deploy"
|
||||
|
@ -2106,12 +2168,6 @@ dependency on the `rustix` crate.
|
|||
"""
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.zeroize]]
|
||||
who = "Sean Bowe <ewillbefull@gmail.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "1.5.7 -> 1.6.0"
|
||||
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
|
||||
|
||||
[[audits.zcash.audits.zeroize_derive]]
|
||||
who = "Jack Grigg <jack@z.cash>"
|
||||
criteria = "safe-to-deploy"
|
||||
|
|
Loading…
Add table
Add a link
Reference in a new issue