Skip to content

Commit d93f1a3

Browse files
mattheworrismattheworris
committed
fix: remove unused ignored advisories and licenses
1 parent 4ca336c commit d93f1a3

File tree

2 files changed

+12
-17
lines changed

2 files changed

+12
-17
lines changed

Cargo.lock

Lines changed: 9 additions & 9 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

deny.toml

Lines changed: 3 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -70,15 +70,11 @@ ignore = [
7070
#{ crate = "[email protected]", reason = "you can specify why you are ignoring the yanked crate" },
7171
{ id = "RUSTSEC-2022-0061", reason = "Substrate Dependency deprecation. Eventually there will be an update. See https://github.com/paritytech/parity-wasm/pull/334 and https://github.com/paritytech/polkadot-sdk/issues/118" },
7272
{ id = "RUSTSEC-2020-0168", reason = "There is no suitable replacement for mach and the mach2 crate has not been vetted." },
73-
{ id = "RUSTSEC-2024-0336", reason = "Only use of [email protected] is in futures-rustls which does not use the effected code" },
7473
{ id = "RUSTSEC-2024-0370", reason = "proc-macro-error is used by a few dependencies, and while unmaintained, is not currently an issue." },
75-
{ id = "RUSTSEC-2024-0388", reason = "This is an inner dependency that would get updated when cumulus-primitives-core v0.7.0 is updated to a newer version"},
7674
{ id = "RUSTSEC-2024-0384", reason = "This is an inner dependency that would get updated when libp2p v0.51.4 and wasm-timer v0.2.5 are updated to a newer version"},
77-
{ id = "RUSTSEC-2024-0421", reason = "Vulnerable code is not used." },
78-
{ id = "RUSTSEC-2025-0010", reason = "Unmaintained sub-dependency: ring, pending updates to those dependencies."},
79-
{ id = "RUSTSEC-2025-0009", reason = "Unmaintained sub-dependency: ring, pending updates to dependencies."},
8075
{ id = "RUSTSEC-2024-0436", reason = "Unmaintained sub-dependency: paste, pending updates to dependencies."},
81-
{ id = "RUSTSEC-2025-0017", reason = "Renamed sub-dependency: trust-dns-proto -> hickory-proto, pending updates to dependencies."}
76+
{ id = "RUSTSEC-2023-0091", reason = "This is an inner dependency of polkadot."},
77+
{ id = "RUSTSEC-2024-0438", reason = "This is an inner dependency of polkadot."}
8278
]
8379
# If this is true, then cargo deny will use the git executable to fetch advisory database.
8480
# If this is false, then it uses a built-in git library.
@@ -104,7 +100,6 @@ allow = [
104100
"ISC",
105101
"GPL-3.0",
106102
"GPL-3.0 WITH Classpath-exception-2.0",
107-
"OpenSSL",
108103
"Zlib",
109104
"Unicode-3.0",
110105
"CDLA-Permissive-2.0",
@@ -245,7 +240,7 @@ unknown-git = "warn"
245240
# if not specified. If it is specified but empty, no registries are allowed.
246241
allow-registry = ["https://github.com/rust-lang/crates.io-index"]
247242
# List of URLs for allowed Git repositories
248-
allow-git = ["https://github.com/multiformats/rust-cid"]
243+
# allow-git = ["https://github.com/multiformats/rust-cid"]
249244

250245
[sources.allow-org]
251246
# 1 or more github.com organizations to allow git sources for

0 commit comments

Comments
 (0)