Skip to content

Commit 229ea74

Browse files
committed
chore: update cargo audit ignore list
A bunch of warnings have popped up. There's nothing we can do about them and they basically no impact on us. - "RUSTSEC-2024-0370": This is a warning about `proc-macro-errors` being unmaintained. It's a transitive dependency of `sigstore` and `oci-spec`. - "RUSTSEC-2023-0055": This is a warning about `lexical` having multiple soundness issues. It's a transitive dependency of `sigstore`. Signed-off-by: Flavio Castelli <fcastelli@suse.com>
1 parent 16943d3 commit 229ea74

File tree

1 file changed

+2
-0
lines changed

1 file changed

+2
-0
lines changed

.cargo/audit.toml

+2
Original file line numberDiff line numberDiff line change
@@ -17,4 +17,6 @@ ignore = [
1717
"RUSTSEC-2023-0071", # "Classic" RSA timing sidechannel attack from non-constant-time implementation.
1818
# Okay for local use.
1919
# https://rustsec.org/advisories/RUSTSEC-2023-0071.html
20+
"RUSTSEC-2024-0370", # This is a warning about `proc-macro-errors` being unmaintained. It's a transitive dependency of `sigstore` and `oci-spec`.
21+
"RUSTSEC-2023-0055", # This is a warning about `lexical` having multiple soundness issues. It's a transitive dependency of `sigstore`.
2022
]

0 commit comments

Comments
 (0)