mirrors/rage
1
0
Fork 0
mirror of https://github.com/str4d/rage.git synced 2025-04-03 19:07:42 +03:00
Code Issues Projects Releases Packages Wiki Activity

Import cargo-vet audits from Fermyon

Browse source
This commit is contained in:
Jack Grigg 2023-12-27 15:08:11 +00:00
parent cb7a4115f4
commit 9344c79dc4
2 changed files with 8 additions and 4 deletions
Download patch file Download diff file Expand all files Collapse all files

7
supply-chain/config.toml
View file

@ -10,6 +10,9 @@ url = "https://raw.githubusercontent.com/bytecodealliance/wasmtime/main/supply-c
[imports.embark-studios]
url = "https://raw.githubusercontent.com/EmbarkStudios/rust-ecosystem/main/audits.toml"
[imports.fermyon]
url = "https://raw.githubusercontent.com/fermyon/spin/main/supply-chain/audits.toml"
[imports.google]
url = "https://raw.githubusercontent.com/google/supply-chain/main/audits.toml"
@ -430,10 +433,6 @@ criteria = "safe-to-deploy"
version = "1.15.0"
criteria = "safe-to-deploy"
[[exemptions.oorandom]]
version = "11.1.3"
criteria = "safe-to-run"
[[exemptions.page_size]]
version = "0.4.2"
criteria = "safe-to-deploy"

5
supply-chain/imports.lock
View file

@ -489,6 +489,11 @@ criteria = "safe-to-deploy"
delta = "0.6.1 -> 0.6.2"
notes = "No notable changes"
[[audits.fermyon.audits.oorandom]]
who = "Radu Matei <radu.matei@fermyon.com>"
criteria = "safe-to-run"
version = "11.1.3"
[[audits.google.audits.addr2line]]
who = "George Burgess IV <gbiv@google.com>"
criteria = "safe-to-run"