mirrors/rage
1
0
Fork 0
mirror of https://github.com/str4d/rage.git synced 2025-04-03 19:07:42 +03:00
Code Issues Projects Releases Packages Wiki Activity

cargo vet regenerate exemptions

Browse source
This commit is contained in:
Jack Grigg 2023-12-27 15:09:28 +00:00
parent 9344c79dc4
commit 20cb5bf8b3
2 changed files with 459 additions and 319 deletions
Download patch file Download diff file Expand all files Collapse all files

248
supply-chain/config.toml
View file

@ -50,15 +50,15 @@ version = "0.8.2"
criteria = "safe-to-deploy"
[[exemptions.aes-gcm]]
version = "0.10.1"
version = "0.10.3"
criteria = "safe-to-deploy"
[[exemptions.ahash]]
version = "0.8.3"
version = "0.8.6"
criteria = "safe-to-run"
[[exemptions.aho-corasick]]
version = "1.0.2"
version = "1.1.1"
criteria = "safe-to-deploy"
[[exemptions.android-tzdata]]
@ -66,7 +66,7 @@ version = "0.1.1"
criteria = "safe-to-deploy"
[[exemptions.anstyle]]
version = "1.0.1"
version = "1.0.2"
criteria = "safe-to-run"
[[exemptions.arc-swap]]
@ -101,6 +101,10 @@ criteria = "safe-to-deploy"
version = "0.9.1"
criteria = "safe-to-deploy"
[[exemptions.bytemuck]]
version = "1.14.0"
criteria = "safe-to-run"
[[exemptions.byteorder]]
version = "1.4.3"
criteria = "safe-to-deploy"
@ -130,7 +134,7 @@ version = "0.10.1"
criteria = "safe-to-deploy"
[[exemptions.chrono]]
version = "0.4.26"
version = "0.4.31"
criteria = "safe-to-deploy"
[[exemptions.ciborium]]
@ -150,11 +154,11 @@ version = "0.3.0"
criteria = "safe-to-deploy"
[[exemptions.clap]]
version = "4.3.19"
version = "4.3.24"
criteria = "safe-to-run"
[[exemptions.clap_builder]]
version = "4.3.19"
version = "4.3.24"
criteria = "safe-to-run"
[[exemptions.clap_complete]]
@ -166,7 +170,7 @@ version = "0.15.7"
criteria = "safe-to-deploy"
[[exemptions.const-oid]]
version = "0.9.4"
version = "0.9.6"
criteria = "safe-to-deploy"
[[exemptions.constant_time_eq]]
@ -177,8 +181,12 @@ criteria = "safe-to-deploy"
version = "0.3.2"
criteria = "safe-to-deploy"
[[exemptions.core-foundation-sys]]
version = "0.8.6"
criteria = "safe-to-deploy"
[[exemptions.cpp_demangle]]
version = "0.4.2"
version = "0.4.3"
criteria = "safe-to-run"
[[exemptions.cpufeatures]]
@ -194,7 +202,7 @@ version = "0.3.6"
criteria = "safe-to-run"
[[exemptions.criterion-cycles-per-byte]]
version = "0.5.0"
version = "0.6.0"
criteria = "safe-to-run"
[[exemptions.criterion-plot]]
@ -210,19 +218,23 @@ version = "0.9.2"
criteria = "safe-to-deploy"
[[exemptions.ctrlc]]
version = "3.4.0"
version = "3.4.1"
criteria = "safe-to-deploy"
[[exemptions.curve25519-dalek]]
version = "3.2.0"
version = "4.1.0"
criteria = "safe-to-deploy"
[[exemptions.curve25519-dalek-derive]]
version = "0.1.0"
criteria = "safe-to-deploy"
[[exemptions.dashmap]]
version = "5.5.0"
version = "5.5.3"
criteria = "safe-to-deploy"
[[exemptions.der]]
version = "0.7.7"
version = "0.7.8"
criteria = "safe-to-deploy"
[[exemptions.digest]]
@ -234,7 +246,7 @@ version = "0.3.6"
criteria = "safe-to-deploy"
[[exemptions.env_logger]]
version = "0.9.0"
version = "0.10.1"
criteria = "safe-to-deploy"
[[exemptions.equivalent]]
@ -242,7 +254,7 @@ version = "1.0.1"
criteria = "safe-to-deploy"
[[exemptions.filetime]]
version = "0.2.22"
version = "0.2.23"
criteria = "safe-to-deploy"
[[exemptions.find-crate]]
@ -254,19 +266,35 @@ version = "0.10.2"
criteria = "safe-to-run"
[[exemptions.flate2]]
version = "1.0.26"
version = "1.0.28"
criteria = "safe-to-deploy"
[[exemptions.fuse_mt]]
version = "0.6.0"
version = "0.6.1"
criteria = "safe-to-deploy"
[[exemptions.fuser]]
version = "0.11.1"
version = "0.13.0"
criteria = "safe-to-deploy"
[[exemptions.futures]]
version = "0.3.29"
criteria = "safe-to-deploy"
[[exemptions.futures-executor]]
version = "0.3.29"
criteria = "safe-to-deploy"
[[exemptions.futures-io]]
version = "0.3.29"
criteria = "safe-to-deploy"
[[exemptions.futures-macro]]
version = "0.3.21"
version = "0.3.29"
criteria = "safe-to-deploy"
[[exemptions.futures-sink]]
version = "0.3.29"
criteria = "safe-to-deploy"
[[exemptions.futures-task]]
@ -274,7 +302,7 @@ version = "0.3.25"
criteria = "safe-to-deploy"
[[exemptions.futures-test]]
version = "0.3.28"
version = "0.3.29"
criteria = "safe-to-run"
[[exemptions.futures-util]]
@ -289,6 +317,10 @@ criteria = "safe-to-deploy"
version = "0.2.10"
criteria = "safe-to-deploy"
[[exemptions.gimli]]
version = "0.28.1"
criteria = "safe-to-run"
[[exemptions.gumdrop]]
version = "0.8.1"
criteria = "safe-to-deploy"
@ -297,12 +329,20 @@ criteria = "safe-to-deploy"
version = "0.8.1"
criteria = "safe-to-deploy"
[[exemptions.hashbrown]]
version = "0.14.3"
criteria = "safe-to-deploy"
[[exemptions.hermit-abi]]
version = "0.3.2"
version = "0.3.3"
criteria = "safe-to-deploy"
[[exemptions.hkdf]]
version = "0.12.3"
version = "0.12.4"
criteria = "safe-to-deploy"
[[exemptions.home]]
version = "0.5.5"
criteria = "safe-to-deploy"
[[exemptions.humantime]]
@ -310,23 +350,23 @@ version = "2.1.0"
criteria = "safe-to-deploy"
[[exemptions.i18n-config]]
version = "0.4.4"
version = "0.4.5"
criteria = "safe-to-deploy"
[[exemptions.i18n-embed]]
version = "0.13.9"
version = "0.14.1"
criteria = "safe-to-deploy"
[[exemptions.i18n-embed-fl]]
version = "0.6.7"
version = "0.7.0"
criteria = "safe-to-deploy"
[[exemptions.i18n-embed-impl]]
version = "0.8.1"
version = "0.8.3"
criteria = "safe-to-deploy"
[[exemptions.iana-time-zone]]
version = "0.1.57"
version = "0.1.58"
criteria = "safe-to-deploy"
[[exemptions.iana-time-zone-haiku]]
@ -338,7 +378,7 @@ version = "2.0.0"
criteria = "safe-to-deploy"
[[exemptions.inferno]]
version = "0.11.15"
version = "0.11.19"
criteria = "safe-to-run"
[[exemptions.io_tee]]
@ -358,7 +398,7 @@ version = "0.3.64"
criteria = "safe-to-deploy"
[[exemptions.libc]]
version = "0.2.146"
version = "0.2.151"
criteria = "safe-to-deploy"
[[exemptions.libm]]
@ -366,7 +406,7 @@ version = "0.2.2"
criteria = "safe-to-deploy"
[[exemptions.linux-raw-sys]]
version = "0.4.5"
version = "0.4.12"
criteria = "safe-to-deploy"
[[exemptions.locale_config]]
@ -374,7 +414,7 @@ version = "0.3.0"
criteria = "safe-to-deploy"
[[exemptions.lock_api]]
version = "0.4.10"
version = "0.4.11"
criteria = "safe-to-deploy"
[[exemptions.man]]
@ -382,11 +422,11 @@ version = "0.3.0"
criteria = "safe-to-run"
[[exemptions.memchr]]
version = "2.5.0"
version = "2.6.3"
criteria = "safe-to-deploy"
[[exemptions.memmap2]]
version = "0.5.10"
version = "0.9.2"
criteria = "safe-to-run"
[[exemptions.memoffset]]
@ -434,7 +474,7 @@ version = "1.15.0"
criteria = "safe-to-deploy"
[[exemptions.page_size]]
version = "0.4.2"
version = "0.5.0"
criteria = "safe-to-deploy"
[[exemptions.parking_lot]]
@ -442,7 +482,7 @@ version = "0.12.1"
criteria = "safe-to-deploy"
[[exemptions.parking_lot_core]]
version = "0.9.8"
version = "0.9.9"
criteria = "safe-to-deploy"
[[exemptions.password-hash]]
@ -458,11 +498,11 @@ version = "0.12.2"
criteria = "safe-to-deploy"
[[exemptions.pin-project]]
version = "1.1.2"
version = "1.1.3"
criteria = "safe-to-deploy"
[[exemptions.pin-project-internal]]
version = "1.1.2"
version = "1.1.3"
criteria = "safe-to-deploy"
[[exemptions.pinentry]]
@ -502,7 +542,7 @@ version = "0.6.1"
criteria = "safe-to-deploy"
[[exemptions.pprof]]
version = "0.12.1"
version = "0.13.0"
criteria = "safe-to-run"
[[exemptions.ppv-lite86]]
@ -526,23 +566,23 @@ version = "0.8.5"
criteria = "safe-to-deploy"
[[exemptions.redox_syscall]]
version = "0.3.5"
version = "0.4.1"
criteria = "safe-to-deploy"
[[exemptions.regex]]
version = "1.9.1"
version = "1.9.5"
criteria = "safe-to-deploy"
[[exemptions.regex-automata]]
version = "0.3.4"
version = "0.3.8"
criteria = "safe-to-deploy"
[[exemptions.regex-syntax]]
version = "0.7.4"
version = "0.7.2"
criteria = "safe-to-deploy"
[[exemptions.rgb]]
version = "0.8.36"
version = "0.8.37"
criteria = "safe-to-run"
[[exemptions.roff]]
@ -550,31 +590,31 @@ version = "0.1.0"
criteria = "safe-to-run"
[[exemptions.rpassword]]
version = "7.2.0"
version = "7.3.1"
criteria = "safe-to-deploy"
[[exemptions.rsa]]
version = "0.9.2"
version = "0.9.6"
criteria = "safe-to-deploy"
[[exemptions.rtoolbox]]
version = "0.0.1"
version = "0.0.2"
criteria = "safe-to-deploy"
[[exemptions.rust-embed]]
version = "6.8.1"
version = "8.1.0"
criteria = "safe-to-deploy"
[[exemptions.rust-embed-impl]]
version = "6.8.1"
version = "8.1.0"
criteria = "safe-to-deploy"
[[exemptions.rust-embed-utils]]
version = "7.8.1"
version = "8.1.0"
criteria = "safe-to-deploy"
[[exemptions.rustix]]
version = "0.38.6"
version = "0.38.28"
criteria = "safe-to-deploy"
[[exemptions.ryu]]
@ -602,23 +642,39 @@ version = "0.8.0"
criteria = "safe-to-deploy"
[[exemptions.self_cell]]
version = "0.10.2"
version = "0.10.3"
criteria = "safe-to-deploy"
[[exemptions.self_cell]]
version = "1.0.2"
criteria = "safe-to-deploy"
[[exemptions.serde]]
version = "1.0.181"
version = "1.0.136"
criteria = "safe-to-deploy"
[[exemptions.serde_derive]]
version = "1.0.181"
version = "1.0.136"
criteria = "safe-to-deploy"
[[exemptions.serde_spanned]]
version = "0.6.3"
criteria = "safe-to-deploy"
[[exemptions.sha1]]
version = "0.10.6"
criteria = "safe-to-deploy"
[[exemptions.sha2]]
version = "0.10.8"
criteria = "safe-to-deploy"
[[exemptions.slab]]
version = "0.4.9"
criteria = "safe-to-deploy"
[[exemptions.smallvec]]
version = "1.11.0"
version = "1.11.2"
criteria = "safe-to-deploy"
[[exemptions.spin]]
@ -626,7 +682,7 @@ version = "0.5.2"
criteria = "safe-to-deploy"
[[exemptions.spki]]
version = "0.7.2"
version = "0.7.3"
criteria = "safe-to-deploy"
[[exemptions.str_stack]]
@ -638,43 +694,39 @@ version = "0.10.0"
criteria = "safe-to-deploy"
[[exemptions.symbolic-common]]
version = "12.3.0"
version = "12.8.0"
criteria = "safe-to-run"
[[exemptions.symbolic-demangle]]
version = "12.3.0"
version = "12.8.0"
criteria = "safe-to-run"
[[exemptions.syn]]
version = "1.0.109"
criteria = "safe-to-deploy"
[[exemptions.syn]]
version = "2.0.28"
version = "1.0.102"
criteria = "safe-to-deploy"
[[exemptions.tar]]
version = "0.4.39"
version = "0.4.40"
criteria = "safe-to-deploy"
[[exemptions.tempfile]]
version = "3.7.0"
version = "3.3.0"
criteria = "safe-to-deploy"
[[exemptions.termcolor]]
version = "1.1.3"
version = "1.4.0"
criteria = "safe-to-deploy"
[[exemptions.test-case]]
version = "3.1.0"
version = "3.3.1"
criteria = "safe-to-run"
[[exemptions.test-case-core]]
version = "3.1.0"
version = "3.3.1"
criteria = "safe-to-run"
[[exemptions.test-case-macros]]
version = "3.1.0"
version = "3.3.1"
criteria = "safe-to-run"
[[exemptions.threadpool]]
@ -689,6 +741,14 @@ criteria = "safe-to-deploy"
version = "1.2.1"
criteria = "safe-to-run"
[[exemptions.tokio]]
version = "1.35.0"
criteria = "safe-to-run"
[[exemptions.tokio-macros]]
version = "2.2.0"
criteria = "safe-to-run"
[[exemptions.toml]]
version = "0.5.9"
criteria = "safe-to-deploy"
@ -709,8 +769,20 @@ criteria = "safe-to-deploy"
version = "1.15.0"
criteria = "safe-to-deploy"
[[exemptions.unic-langid]]
version = "0.9.4"
criteria = "safe-to-deploy"
[[exemptions.unic-langid-impl]]
version = "0.9.4"
criteria = "safe-to-deploy"
[[exemptions.uuid]]
version = "1.6.1"
criteria = "safe-to-run"
[[exemptions.walkdir]]
version = "2.3.3"
version = "2.4.0"
criteria = "safe-to-deploy"
[[exemptions.wasi]]
@ -718,11 +790,11 @@ version = "0.11.0+wasi-snapshot-preview1"
criteria = "safe-to-deploy"
[[exemptions.wasm-bindgen]]
version = "0.2.87"
version = "0.2.89"
criteria = "safe-to-deploy"
[[exemptions.wasm-bindgen-backend]]
version = "0.2.87"
version = "0.2.89"
criteria = "safe-to-deploy"
[[exemptions.wasm-bindgen-macro]]
@ -734,7 +806,7 @@ version = "0.2.87"
criteria = "safe-to-deploy"
[[exemptions.web-sys]]
version = "0.3.64"
version = "0.3.66"
criteria = "safe-to-deploy"
[[exemptions.which]]
@ -750,15 +822,19 @@ version = "0.4.0"
criteria = "safe-to-deploy"
[[exemptions.winapi-util]]
version = "0.1.5"
version = "0.1.6"
criteria = "safe-to-deploy"
[[exemptions.winapi-x86_64-pc-windows-gnu]]
version = "0.4.0"
criteria = "safe-to-deploy"
[[exemptions.windows-core]]
version = "0.51.1"
criteria = "safe-to-deploy"
[[exemptions.winnow]]
version = "0.5.4"
version = "0.5.28"
criteria = "safe-to-deploy"
[[exemptions.wsl]]
@ -766,23 +842,31 @@ version = "0.1.0"
criteria = "safe-to-deploy"
[[exemptions.x25519-dalek]]
version = "1.1.1"
version = "2.0.0"
criteria = "safe-to-deploy"
[[exemptions.xattr]]
version = "0.2.3"
version = "1.1.3"
criteria = "safe-to-deploy"
[[exemptions.zerocopy]]
version = "0.6.1"
version = "0.6.6"
criteria = "safe-to-deploy"
[[exemptions.zerocopy]]
version = "0.7.31"
criteria = "safe-to-run"
[[exemptions.zerocopy-derive]]
version = "0.6.6"
criteria = "safe-to-deploy"
[[exemptions.zerocopy-derive]]
version = "0.3.2"
criteria = "safe-to-deploy"
version = "0.7.31"
criteria = "safe-to-run"
[[exemptions.zeroize]]
version = "1.5.7"
version = "1.7.0"
criteria = "safe-to-deploy"
[[exemptions.zeroize_derive]]
@ -802,5 +886,5 @@ version = "5.0.2+zstd.1.5.2"
criteria = "safe-to-deploy"
[[exemptions.zstd-sys]]
version = "2.0.8+zstd.1.5.5"
version = "2.0.9+zstd.1.5.5"
criteria = "safe-to-deploy"

530
supply-chain/imports.lock
View file

@ -8,13 +8,6 @@ user-id = 696
user-login = "fitzgen"
user-name = "Nick Fitzgerald"
[[publisher.core-foundation-sys]]
version = "0.8.4"
when = "2023-04-03"
user-id = 5946
user-login = "jrmuizel"
user-name = "Jeff Muizelaar"
[[publisher.windows-sys]]
version = "0.45.0"
when = "2023-01-21"
@ -335,40 +328,6 @@ criteria = "safe-to-deploy"
version = "0.3.27"
notes = "Unsafe used to implement a concurrency primitive AtomicWaker. Well-commented and not obviously incorrect. Like my other audits of these concurrency primitives inside the futures family, I couldn't certify that it is correct without formal methods, but that is out of scope for this vetting."
[[audits.bytecode-alliance.audits.futures-executor]]
who = "Pat Hickey <phickey@fastly.com>"
criteria = "safe-to-deploy"
version = "0.3.27"
notes = "Unsafe used to implement the unpark mutex, which is well commented and not obviously incorrect. Like with futures-channel I wouldn't be able to certify it as correct without formal methods."
[[audits.bytecode-alliance.audits.futures-io]]
who = "Pat Hickey <phickey@fastly.com>"
criteria = "safe-to-deploy"
version = "0.3.27"
[[audits.bytecode-alliance.audits.futures-sink]]
who = "Pat Hickey <phickey@fastly.com>"
criteria = "safe-to-deploy"
version = "0.3.27"
[[audits.bytecode-alliance.audits.hashbrown]]
who = "Chris Fallin <chris@cfallin.org>"
criteria = "safe-to-deploy"
delta = "0.12.3 -> 0.13.1"
notes = "The diff looks plausible. Much of it is low-level memory-layout code and I can't be 100% certain without a deeper dive into the implementation logic, but nothing looks actively malicious."
[[audits.bytecode-alliance.audits.hashbrown]]
who = "Trevor Elliott <telliott@fastly.com>"
criteria = "safe-to-deploy"
delta = "0.13.1 -> 0.13.2"
notes = "I read through the diff between v0.13.1 and v0.13.2, and verified that the changes made matched up with the changelog entries. There were very few changes between these two releases, and it was easy to verify what they did."
[[audits.bytecode-alliance.audits.libc]]
who = "Alex Crichton <alex@alexcrichton.com>"
criteria = "safe-to-deploy"
delta = "0.2.146 -> 0.2.147"
notes = "Only new type definitions and updating others for some platforms, no major changes"
[[audits.bytecode-alliance.audits.libm]]
who = "Alex Crichton <alex@alexcrichton.com>"
criteria = "safe-to-deploy"
@ -454,11 +413,16 @@ criteria = "safe-to-deploy"
version = "1.0.17"
notes = "plenty of unsafe pointer and vec tricks, but in well-structured and commented code that appears to be correct"
[[audits.bytecode-alliance.audits.slab]]
[[audits.bytecode-alliance.audits.tempfile]]
who = "Pat Hickey <phickey@fastly.com>"
criteria = "safe-to-deploy"
version = "0.4.6"
notes = "provides a datastructure implemented using std's Vec. all uses of unsafe are just delegating to the underlying unsafe Vec methods."
delta = "3.3.0 -> 3.5.0"
[[audits.bytecode-alliance.audits.tempfile]]
who = "Alex Crichton <alex@alexcrichton.com>"
criteria = "safe-to-deploy"
delta = "3.5.0 -> 3.6.0"
notes = "Dependency updates and new optimized trait implementations, but otherwise everything looks normal."
[[audits.bytecode-alliance.audits.unicode-ident]]
who = "Pat Hickey <phickey@fastly.com>"
@ -512,12 +476,6 @@ criteria = "safe-to-run"
version = "0.3.67"
aggregated-from = "https://chromium.googlesource.com/chromiumos/third_party/rust_crates/+/refs/heads/main/cargo-vet/audits.toml?format=TEXT"
[[audits.google.audits.bytemuck]]
who = "George Burgess IV <gbiv@google.com>"
criteria = "safe-to-run"
version = "1.13.1"
aggregated-from = "https://chromium.googlesource.com/chromiumos/third_party/rust_crates/+/refs/heads/main/cargo-vet/audits.toml?format=TEXT"
[[audits.google.audits.clap_lex]]
who = "George Burgess IV <gbiv@google.com>"
criteria = "safe-to-run"
@ -564,22 +522,6 @@ that the RNG here is not cryptographically secure.
"""
aggregated-from = "https://chromium.googlesource.com/chromiumos/third_party/rust_crates/+/refs/heads/main/cargo-vet/audits.toml?format=TEXT"
[[audits.google.audits.futures]]
who = "George Burgess IV <gbiv@google.com>"
criteria = "safe-to-deploy"
version = "0.3.28"
notes = """
`futures` has no logic other than tests - it simply `pub use`s things from
other crates.
"""
aggregated-from = "https://chromium.googlesource.com/chromiumos/third_party/rust_crates/+/refs/heads/main/cargo-vet/audits.toml?format=TEXT"
[[audits.google.audits.gimli]]
who = "George Burgess IV <gbiv@google.com>"
criteria = "safe-to-run"
version = "0.27.3"
aggregated-from = "https://chromium.googlesource.com/chromiumos/third_party/rust_crates/+/refs/heads/main/cargo-vet/audits.toml?format=TEXT"
[[audits.google.audits.itertools]]
who = "ChromeOS"
criteria = "safe-to-run"
@ -662,25 +604,6 @@ criteria = "safe-to-run"
version = "1.2.0"
aggregated-from = "https://chromium.googlesource.com/chromiumos/third_party/rust_crates/+/refs/heads/main/cargo-vet/audits.toml?format=TEXT"
[[audits.google.audits.tokio]]
who = "Vovo Yang <vovoy@google.com>"
criteria = "safe-to-run"
version = "1.29.1"
aggregated-from = "https://chromium.googlesource.com/chromiumos/third_party/rust_crates/+/refs/heads/main/cargo-vet/audits.toml?format=TEXT"
[[audits.google.audits.tokio-macros]]
who = "Vovo Yang <vovoy@google.com>"
criteria = "safe-to-run"
version = "2.1.0"
aggregated-from = "https://chromium.googlesource.com/chromiumos/third_party/rust_crates/+/refs/heads/main/cargo-vet/audits.toml?format=TEXT"
[[audits.google.audits.uuid]]
who = "George Burgess IV <gbiv@google.com>"
criteria = "safe-to-run"
version = "1.3.0"
notes = "Randomness and hashing involved in UUID generation is sourced from other crates."
aggregated-from = "https://chromium.googlesource.com/chromiumos/third_party/rust_crates/+/refs/heads/main/cargo-vet/audits.toml?format=TEXT"
[[audits.google.audits.version_check]]
who = "George Burgess IV <gbiv@google.com>"
criteria = "safe-to-deploy"
@ -692,11 +615,6 @@ who = "Brandon Pitman <bran@bran.land>"
criteria = "safe-to-deploy"
delta = "0.8.2 -> 0.8.3"
[[audits.isrg.audits.aes-gcm]]
who = "Tim Geoghegan <timg@letsencrypt.org>"
criteria = "safe-to-deploy"
delta = "0.10.1 -> 0.10.2"
[[audits.isrg.audits.base64]]
who = "Tim Geoghegan <timg@letsencrypt.org>"
criteria = "safe-to-deploy"
@ -881,10 +799,70 @@ who = "David Cook <dcook@divviup.org>"
criteria = "safe-to-deploy"
delta = "1.11.0 -> 1.12.0"
[[audits.isrg.audits.sha2]]
[[audits.isrg.audits.serde]]
who = "David Cook <dcook@divviup.org>"
criteria = "safe-to-deploy"
version = "0.10.2"
delta = "1.0.152 -> 1.0.153"
[[audits.isrg.audits.serde]]
who = "David Cook <dcook@divviup.org>"
criteria = "safe-to-deploy"
delta = "1.0.153 -> 1.0.154"
[[audits.isrg.audits.serde]]
who = "David Cook <dcook@divviup.org>"
criteria = "safe-to-deploy"
delta = "1.0.154 -> 1.0.155"
[[audits.isrg.audits.serde]]
who = "Brandon Pitman <bran@bran.land>"
criteria = "safe-to-deploy"
delta = "1.0.156 -> 1.0.159"
[[audits.isrg.audits.serde]]
who = "Brandon Pitman <bran@bran.land>"
criteria = "safe-to-deploy"
delta = "1.0.160 -> 1.0.162"
[[audits.isrg.audits.serde]]
who = "David Cook <dcook@divviup.org>"
criteria = "safe-to-deploy"
delta = "1.0.162 -> 1.0.163"
[[audits.isrg.audits.serde_derive]]
who = "David Cook <dcook@divviup.org>"
criteria = "safe-to-deploy"
delta = "1.0.152 -> 1.0.153"
[[audits.isrg.audits.serde_derive]]
who = "David Cook <dcook@divviup.org>"
criteria = "safe-to-deploy"
delta = "1.0.153 -> 1.0.154"
[[audits.isrg.audits.serde_derive]]
who = "David Cook <dcook@divviup.org>"
criteria = "safe-to-deploy"
delta = "1.0.154 -> 1.0.155"
[[audits.isrg.audits.serde_derive]]
who = "Brandon Pitman <bran@bran.land>"
criteria = "safe-to-deploy"
delta = "1.0.156 -> 1.0.159"
[[audits.isrg.audits.serde_derive]]
who = "Brandon Pitman <bran@bran.land>"
criteria = "safe-to-deploy"
delta = "1.0.160 -> 1.0.162"
[[audits.isrg.audits.serde_derive]]
who = "David Cook <dcook@divviup.org>"
criteria = "safe-to-deploy"
delta = "1.0.162 -> 1.0.163"
[[audits.isrg.audits.syn]]
who = "Brandon Pitman <bran@bran.land>"
criteria = "safe-to-deploy"
delta = "1.0.104 -> 2.0.11"
[[audits.isrg.audits.thiserror]]
who = "Brandon Pitman <bran@bran.land>"
@ -911,16 +889,6 @@ who = "David Cook <dcook@divviup.org>"
criteria = "safe-to-deploy"
version = "0.2.83"
[[audits.mozilla.wildcard-audits.core-foundation-sys]]
who = "Bobby Holley <bobbyholley@gmail.com>"
criteria = "safe-to-deploy"
user-id = 5946 # Jeff Muizelaar (jrmuizel)
start = "2020-10-14"
end = "2023-05-04"
renew = false
notes = "I've reviewed every source contribution that was neither authored nor reviewed by Mozilla."
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.android_system_properties]]
who = "Nicolas Silva <nical@fastmail.com>"
criteria = "safe-to-deploy"
@ -1051,18 +1019,6 @@ criteria = "safe-to-deploy"
delta = "1.8.0 -> 1.8.1"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.env_logger]]
who = "Mike Hommey <mh+mozilla@glandium.org>"
criteria = "safe-to-deploy"
delta = "0.9.0 -> 0.9.3"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.env_logger]]
who = "Nicolas Silva <nical@fastmail.com>"
criteria = "safe-to-deploy"
delta = "0.9.3 -> 0.10.0"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.errno]]
who = "Mike Hommey <mh+mozilla@glandium.org>"
criteria = "safe-to-deploy"
@ -1111,48 +1067,6 @@ criteria = "safe-to-deploy"
delta = "0.3.27 -> 0.3.28"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.futures-executor]]
who = "Mike Hommey <mh+mozilla@glandium.org>"
criteria = "safe-to-deploy"
delta = "0.3.27 -> 0.3.28"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.futures-io]]
who = "Mike Hommey <mh+mozilla@glandium.org>"
criteria = "safe-to-deploy"
delta = "0.3.27 -> 0.3.28"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.futures-macro]]
who = "Mike Hommey <mh+mozilla@glandium.org>"
criteria = "safe-to-deploy"
delta = "0.3.21 -> 0.3.23"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.futures-macro]]
who = "Mike Hommey <mh+mozilla@glandium.org>"
criteria = "safe-to-deploy"
delta = "0.3.23 -> 0.3.25"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.futures-macro]]
who = "Mike Hommey <mh+mozilla@glandium.org>"
criteria = "safe-to-deploy"
delta = "0.3.25 -> 0.3.26"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.futures-macro]]
who = "Mike Hommey <mh+mozilla@glandium.org>"
criteria = "safe-to-deploy"
delta = "0.3.26 -> 0.3.28"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.futures-sink]]
who = "Mike Hommey <mh+mozilla@glandium.org>"
criteria = "safe-to-deploy"
delta = "0.3.27 -> 0.3.28"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.futures-task]]
who = "Mike Hommey <mh+mozilla@glandium.org>"
criteria = "safe-to-deploy"
@ -1200,13 +1114,6 @@ capabilities.
"""
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.hashbrown]]
who = "Mike Hommey <mh+mozilla@glandium.org>"
criteria = "safe-to-deploy"
version = "0.12.3"
notes = "This version is used in rust's libstd, so effectively we're already trusting it"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.hex]]
who = "Simon Friedberger <simon@mozilla.com>"
criteria = "safe-to-deploy"
@ -1469,30 +1376,56 @@ version = "1.1.0"
notes = "Straightforward crate with no unsafe code, does what it says on the tin."
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.sha1]]
who = "Dana Keeler <dkeeler@mozilla.com>"
criteria = "safe-to-deploy"
version = "0.10.5"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.sha2]]
[[audits.mozilla.audits.serde]]
who = "Mike Hommey <mh+mozilla@glandium.org>"
criteria = "safe-to-deploy"
delta = "0.10.2 -> 0.10.6"
delta = "1.0.143 -> 1.0.144"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.slab]]
[[audits.mozilla.audits.serde]]
who = "Mike Hommey <mh+mozilla@glandium.org>"
criteria = "safe-to-deploy"
delta = "0.4.6 -> 0.4.7"
delta = "1.0.144 -> 1.0.151"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.slab]]
[[audits.mozilla.audits.serde]]
who = "Mike Hommey <mh+mozilla@glandium.org>"
criteria = "safe-to-deploy"
delta = "0.4.7 -> 0.4.8"
delta = "1.0.151 -> 1.0.152"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.serde]]
who = "Jan-Erik Rediger <jrediger@mozilla.com>"
criteria = "safe-to-deploy"
delta = "1.0.163 -> 1.0.179"
notes = "Internal refactorings and some new trait implementations"
aggregated-from = "https://raw.githubusercontent.com/mozilla/glean/main/supply-chain/audits.toml"
[[audits.mozilla.audits.serde_derive]]
who = "Mike Hommey <mh+mozilla@glandium.org>"
criteria = "safe-to-deploy"
delta = "1.0.143 -> 1.0.144"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.serde_derive]]
who = "Mike Hommey <mh+mozilla@glandium.org>"
criteria = "safe-to-deploy"
delta = "1.0.144 -> 1.0.151"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.serde_derive]]
who = "Mike Hommey <mh+mozilla@glandium.org>"
criteria = "safe-to-deploy"
delta = "1.0.151 -> 1.0.152"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.serde_derive]]
who = "Jan-Erik Rediger <jrediger@mozilla.com>"
criteria = "safe-to-deploy"
delta = "1.0.163 -> 1.0.179"
notes = "Internal refactorings and dependency updates"
aggregated-from = "https://raw.githubusercontent.com/mozilla/glean/main/supply-chain/audits.toml"
[[audits.mozilla.audits.subtle]]
who = "Simon Friedberger <simon@mozilla.com>"
criteria = "safe-to-deploy"
@ -1500,10 +1433,17 @@ version = "2.5.0"
notes = "The goal is to provide some constant-time correctness for cryptographic implementations. The approach is reasonable, it is known to be insufficient but this is pointed out in the documentation."
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.termcolor]]
[[audits.mozilla.audits.syn]]
who = "Jan-Erik Rediger <jrediger@mozilla.com>"
criteria = "safe-to-deploy"
delta = "2.0.18 -> 2.0.26"
notes = "Dependency update & internal refactorings"
aggregated-from = "https://raw.githubusercontent.com/mozilla/glean/main/supply-chain/audits.toml"
[[audits.mozilla.audits.tempfile]]
who = "Mike Hommey <mh+mozilla@glandium.org>"
criteria = "safe-to-deploy"
delta = "1.1.3 -> 1.2.0"
delta = "3.6.0 -> 3.8.0"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.time]]
@ -1561,30 +1501,6 @@ criteria = "safe-to-deploy"
delta = "1.15.0 -> 1.16.0"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.unic-langid]]
who = "Zibi Braniecki <zibi@unicode.org>"
criteria = "safe-to-deploy"
version = "0.9.0"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.unic-langid]]
who = "Mike Hommey <mh+mozilla@glandium.org>"
criteria = "safe-to-deploy"
delta = "0.9.0 -> 0.9.1"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.unic-langid-impl]]
who = "Zibi Braniecki <zibi@unicode.org>"
criteria = "safe-to-deploy"
version = "0.9.0"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.unic-langid-impl]]
who = "Makoto Kato <m_kato@ga2.so-net.ne.jp>"
criteria = "safe-to-deploy"
delta = "0.9.0 -> 0.9.1"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"
[[audits.mozilla.audits.unicode-ident]]
who = "Jan-Erik Rediger <jrediger@mozilla.com>"
criteria = "safe-to-deploy"
@ -1592,19 +1508,18 @@ delta = "1.0.8 -> 1.0.9"
notes = "Dependency updates only"
aggregated-from = "https://raw.githubusercontent.com/mozilla/glean/main/supply-chain/audits.toml"
[[audits.mozilla.audits.uuid]]
who = "Jan-Erik Rediger <jrediger@mozilla.com>"
criteria = "safe-to-deploy"
delta = "1.3.0 -> 1.4.1"
notes = "Internal refactoring, new target support"
aggregated-from = "https://raw.githubusercontent.com/mozilla/glean/main/supply-chain/audits.toml"
[[audits.zcash.audits.aead]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "0.5.1 -> 0.5.2"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.aho-corasick]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "1.1.1 -> 1.1.2"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.backtrace]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
@ -1704,6 +1619,18 @@ notes = """
"""
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.curve25519-dalek]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "4.1.0 -> 4.1.1"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.curve25519-dalek-derive]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "0.1.0 -> 0.1.1"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.either]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
@ -1750,17 +1677,6 @@ criteria = "safe-to-deploy"
delta = "0.14.6 -> 0.14.7"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.hashbrown]]
who = "Daira Emma Hopwood <daira@jacaranda.org>"
criteria = "safe-to-deploy"
delta = "0.13.2 -> 0.14.0"
notes = """
There is some additional use of unsafe code but the changes in this crate looked plausible.
There is a new default dependency on the `allocator-api2` crate, which itself has quite a lot of unsafe code.
Many previously undocumented safety requirements have been documented.
"""
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.indexmap]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
@ -1812,6 +1728,12 @@ criteria = "safe-to-deploy"
delta = "0.4.19 -> 0.4.20"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.memchr]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "2.6.3 -> 2.6.4"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.nix]]
who = "Jack Grigg <jack@z.cash>"
criteria = "safe-to-deploy"
@ -1880,6 +1802,34 @@ criteria = "safe-to-deploy"
delta = "1.0.31 -> 1.0.33"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.regex]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "1.9.5 -> 1.10.2"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.regex-automata]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "0.3.8 -> 0.4.3"
notes = """
There were additions to an `unsafe` trait, but the new code itself doesn't use
any `unsafe` functions.
"""
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.regex-syntax]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "0.7.2 -> 0.7.5"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.regex-syntax]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "0.7.5 -> 0.8.2"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.rustc-demangle]]
who = "Sean Bowe <ewillbefull@gmail.com>"
criteria = "safe-to-deploy"
@ -1931,6 +1881,69 @@ criteria = "safe-to-deploy"
delta = "1.0.19 -> 1.0.20"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.serde]]
who = "Jack Grigg <jack@z.cash>"
criteria = "safe-to-deploy"
delta = "1.0.136 -> 1.0.143"
notes = "Bumps serde-derive and adds some constructors."
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.serde]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "1.0.155 -> 1.0.156"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.serde]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "1.0.159 -> 1.0.160"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.serde]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "1.0.179 -> 1.0.188"
notes = "Mostly a bunch of cleanups after bumping MSRV."
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.serde]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "1.0.188 -> 1.0.193"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.serde_derive]]
who = "Jack Grigg <jack@z.cash>"
criteria = "safe-to-deploy"
delta = "1.0.136 -> 1.0.143"
notes = "Bumps syn, inverts some build flags."
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.serde_derive]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "1.0.155 -> 1.0.156"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.serde_derive]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "1.0.159 -> 1.0.160"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.serde_derive]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "1.0.179 -> 1.0.188"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.serde_derive]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "1.0.188 -> 1.0.193"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.serde_json]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
@ -1961,18 +1974,6 @@ criteria = "safe-to-deploy"
delta = "1.0.107 -> 1.0.108"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.sha2]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "0.10.6 -> 0.10.7"
notes = """
The new `unsafe` assembly backend only uses aarch64 intrinsics, via their typed
Rust APIs (aside from the SHA2-specific intrinsics that are not in Rust yet). I
did not perform a cryptographic review, but the code to load from and store into
the function arguments looks correct.
"""
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.signature]]
who = "Daira Emma Hopwood <daira@jacaranda.org>"
criteria = "safe-to-deploy"
@ -1989,6 +1990,67 @@ criteria = "safe-to-deploy"
delta = "2.1.0 -> 2.2.0"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.syn]]
who = "Sean Bowe <ewillbefull@gmail.com>"
criteria = "safe-to-deploy"
delta = "1.0.102 -> 1.0.104"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.syn]]
who = "Jack Grigg <jack@z.cash>"
criteria = "safe-to-deploy"
delta = "1.0.102 -> 1.0.107"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.syn]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "1.0.107 -> 1.0.109"
notes = "Fixes string literal parsing to only skip specified whitespace characters."
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.syn]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "2.0.11 -> 2.0.13"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.syn]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "2.0.13 -> 2.0.15"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.syn]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "2.0.15 -> 2.0.18"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.syn]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "2.0.26 -> 2.0.33"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.syn]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "2.0.33 -> 2.0.37"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.syn]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "2.0.37 -> 2.0.41"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.tempfile]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
delta = "3.8.0 -> 3.8.1"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.thiserror]]
who = "Jack Grigg <jack@electriccoin.co>"
criteria = "safe-to-deploy"
@ -2106,12 +2168,6 @@ dependency on the `rustix` crate.
"""
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.zeroize]]
who = "Sean Bowe <ewillbefull@gmail.com>"
criteria = "safe-to-deploy"
delta = "1.5.7 -> 1.6.0"
aggregated-from = "https://raw.githubusercontent.com/zcash/zcash/master/qa/supply-chain/audits.toml"
[[audits.zcash.audits.zeroize_derive]]
who = "Jack Grigg <jack@z.cash>"
criteria = "safe-to-deploy"