Merge pull request #2519 from EmbarkStudios/cargo-deny
Lint deps tree with cargo deny
This commit is contained in:
Pat Hickey
17
.github/workflows/main.yml
vendored
17
.github/workflows/main.yml
vendored
@@ -22,6 +22,23 @@ jobs:
|
|||||||
- run: rustup component add rustfmt
|
- run: rustup component add rustfmt
|
||||||
- run: cargo fmt --all -- --check
|
- run: cargo fmt --all -- --check
|
||||||
|
|
||||||
|
# Lint dependency graph for security advisories, duplicate versions, and
|
||||||
|
# incompatible licences
|
||||||
|
cargo_deny:
|
||||||
|
name: Cargo deny
|
||||||
|
runs-on: ubuntu-latest
|
||||||
|
steps:
|
||||||
|
- uses: actions/checkout@v2
|
||||||
|
with:
|
||||||
|
submodules: true
|
||||||
|
- uses: ./.github/actions/install-rust
|
||||||
|
- run: |
|
||||||
|
set -e
|
||||||
|
curl -L https://github.com/EmbarkStudios/cargo-deny/releases/download/0.8.5/cargo-deny-0.8.5-x86_64-unknown-linux-musl.tar.gz | tar xzf -
|
||||||
|
mv cargo-deny-*-x86_64-unknown-linux-musl/cargo-deny cargo-deny
|
||||||
|
echo `pwd` >> $GITHUB_PATH
|
||||||
|
- run: cargo deny check
|
||||||
|
|
||||||
# Build `mdBook` documentation for `wasmtime`, and upload it as a temporary
|
# Build `mdBook` documentation for `wasmtime`, and upload it as a temporary
|
||||||
# build artifact
|
# build artifact
|
||||||
doc_book:
|
doc_book:
|
||||||
|
|||||||
@@ -5,6 +5,7 @@ edition = "2018"
|
|||||||
name = "wasmtime-fuzzing"
|
name = "wasmtime-fuzzing"
|
||||||
publish = false
|
publish = false
|
||||||
version = "0.19.0"
|
version = "0.19.0"
|
||||||
|
license = "Apache-2.0 WITH LLVM-exception"
|
||||||
|
|
||||||
[dependencies]
|
[dependencies]
|
||||||
anyhow = "1.0.22"
|
anyhow = "1.0.22"
|
||||||
|
|||||||
@@ -5,6 +5,7 @@ authors = ["The Wasmtime Project Developers"]
|
|||||||
readme = "README.md"
|
readme = "README.md"
|
||||||
edition = "2018"
|
edition = "2018"
|
||||||
publish = false
|
publish = false
|
||||||
|
license = "Apache-2.0 WITH LLVM-exception"
|
||||||
|
|
||||||
[build-dependencies]
|
[build-dependencies]
|
||||||
cfg-if = "1.0"
|
cfg-if = "1.0"
|
||||||
|
|||||||
48
deny.toml
Normal file
48
deny.toml
Normal file
@@ -0,0 +1,48 @@
|
|||||||
|
# Documentation for this configuration file can be found here
|
||||||
|
# https://embarkstudios.github.io/cargo-deny/checks/cfg.html
|
||||||
|
|
||||||
|
targets = [
|
||||||
|
{ triple = "x86_64-unknown-linux-gnu" },
|
||||||
|
{ triple = "x86_64-apple-darwin" },
|
||||||
|
{ triple = "x86_64-pc-windows-msvc" },
|
||||||
|
{ triple = "aarch64-linux-android" },
|
||||||
|
]
|
||||||
|
|
||||||
|
# https://embarkstudios.github.io/cargo-deny/checks/advisories/cfg.html
|
||||||
|
[advisories]
|
||||||
|
vulnerability = "deny"
|
||||||
|
unmaintained = "deny"
|
||||||
|
yanked = "deny"
|
||||||
|
ignore = [
|
||||||
|
"RUSTSEC-2020-0053", # dirs is unmaintained
|
||||||
|
]
|
||||||
|
|
||||||
|
# https://embarkstudios.github.io/cargo-deny/checks/licenses/cfg.html
|
||||||
|
[licenses]
|
||||||
|
allow = [
|
||||||
|
"Apache-2.0 WITH LLVM-exception",
|
||||||
|
"Apache-2.0",
|
||||||
|
"BSD-2-Clause",
|
||||||
|
"CC0-1.0",
|
||||||
|
"MIT",
|
||||||
|
"MPL-2.0",
|
||||||
|
"Zlib",
|
||||||
|
]
|
||||||
|
|
||||||
|
# https://embarkstudios.github.io/cargo-deny/checks/bans/cfg.html
|
||||||
|
[bans]
|
||||||
|
multiple-versions = "deny"
|
||||||
|
wildcards = "allow"
|
||||||
|
deny = []
|
||||||
|
|
||||||
|
# Skip some multiple-versions checks, until they can be fixed.
|
||||||
|
skip = [
|
||||||
|
{ name = "ansi_term" },
|
||||||
|
{ name = "cfg-if" },
|
||||||
|
{ name = "env_logger" },
|
||||||
|
{ name = "getrandom" },
|
||||||
|
{ name = "humantime" },
|
||||||
|
{ name = "memoffset" },
|
||||||
|
{ name = "wasmparser" },
|
||||||
|
{ name = "wast" },
|
||||||
|
]
|
||||||
Reference in New Issue
Block a user