From 97fb61bb719b2ba09bf6b85a70b1e1076e6813be Mon Sep 17 00:00:00 2001 From: Bilal Elmoussaoui Date: Thu, 7 Sep 2023 09:39:32 +0200 Subject: [PATCH 1/2] CI: add a cargo deny job Fixes #1178 --- .github/workflows/CI.yml | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/.github/workflows/CI.yml b/.github/workflows/CI.yml index dc89406338e3..d025dd00e085 100644 --- a/.github/workflows/CI.yml +++ b/.github/workflows/CI.yml @@ -138,6 +138,12 @@ jobs: command: fmt args: --all -- --check + cargo-deny: + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@v3 + - uses: EmbarkStudios/cargo-deny-action@v1 + generator: name: regen check runs-on: ubuntu-latest From bf9ec947ad40a4a1ceed3423a51cd03bac805d8d Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Sebastian=20Dr=C3=B6ge?= Date: Thu, 7 Sep 2023 15:13:06 +0300 Subject: [PATCH 2/2] Add deny.toml --- deny.toml | 43 +++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 43 insertions(+) create mode 100644 deny.toml diff --git a/deny.toml b/deny.toml new file mode 100644 index 000000000000..a59b54988b78 --- /dev/null +++ b/deny.toml @@ -0,0 +1,43 @@ +exclude = [ + "gtk-rs-examples", +] + +[advisories] +db-path = "~/.cargo/advisory-db" +db-urls = ["https://github.com/rustsec/advisory-db"] +vulnerability = "deny" +unmaintained = "warn" +notice = "warn" +ignore = [] + +[licenses] +unlicensed = "deny" +allow = [ + "MIT", + "Apache-2.0", +] +copyleft = "deny" +allow-osi-fsf-free = "either" +default = "deny" +confidence-threshold = 0.8 + +[bans] +multiple-versions = "deny" +wildcards = "allow" +highlight = "all" + +[sources] +unknown-registry = "deny" +unknown-git = "deny" + +# proc-macro-error depends on an old version of syn +# See https://github.com/gtk-rs/gtk-rs-core/issues/1174 +[[bans.skip]] +name = "syn" +version = "1.0" + +# https://github.com/PistonDevelopers/freetype-rs/pull/254 +# https://gitlab.redox-os.org/redox-os/syscall/-/issues/34 +[[bans.skip]] +name = "bitflags" +version = "1.0"