Add some audits for some low-hanging fruit (#4836)
I looked through some of our smaller dependencies to vet them and add an audit for them. These were the ones that were all "obviously correct" to me before I ran out of steam reviewing other crates.
This commit is contained in:
Alex Crichton
@@ -10,6 +10,16 @@ Well documented invariants, good assertions for those invariants in unsafe code,
|
|||||||
and tested with MIRI to boot. LGTM.
|
and tested with MIRI to boot. LGTM.
|
||||||
"""
|
"""
|
||||||
|
|
||||||
|
[[audits.atty]]
|
||||||
|
who = "Alex Crichton <alex@alexcrichton.com>"
|
||||||
|
criteria = "safe-to-deploy"
|
||||||
|
version = "0.2.14"
|
||||||
|
notes = """
|
||||||
|
Contains only unsafe code for what this crate's purpose is and only accesses
|
||||||
|
the environment's terminal information when asked. Does its stated purpose and
|
||||||
|
no more.
|
||||||
|
"""
|
||||||
|
|
||||||
[[audits.backtrace]]
|
[[audits.backtrace]]
|
||||||
who = "Alex Crichton <alex@alexcrichton.com>"
|
who = "Alex Crichton <alex@alexcrichton.com>"
|
||||||
criteria = "safe-to-deploy"
|
criteria = "safe-to-deploy"
|
||||||
@@ -22,6 +32,18 @@ criteria = "safe-to-deploy"
|
|||||||
version = "3.9.1"
|
version = "3.9.1"
|
||||||
notes = "I am the author of this crate."
|
notes = "I am the author of this crate."
|
||||||
|
|
||||||
|
[[audits.cap-rand]]
|
||||||
|
who = "Alex Crichton <alex@alexcrichton.com>"
|
||||||
|
criteria = "safe-to-deploy"
|
||||||
|
version = "0.25.0"
|
||||||
|
notes = "The Bytecode Alliance is the author of this crate"
|
||||||
|
|
||||||
|
[[audits.cap-time-ext]]
|
||||||
|
who = "Alex Crichton <alex@alexcrichton.com>"
|
||||||
|
criteria = "safe-to-deploy"
|
||||||
|
version = "0.25.0"
|
||||||
|
notes = "The Bytecode Alliance is the author of this crate."
|
||||||
|
|
||||||
[[audits.cc]]
|
[[audits.cc]]
|
||||||
who = "Alex Crichton <alex@alexcrichton.com>"
|
who = "Alex Crichton <alex@alexcrichton.com>"
|
||||||
criteria = "safe-to-deploy"
|
criteria = "safe-to-deploy"
|
||||||
@@ -34,6 +56,28 @@ criteria = "safe-to-deploy"
|
|||||||
version = "1.0.0"
|
version = "1.0.0"
|
||||||
notes = "I am the author of this crate."
|
notes = "I am the author of this crate."
|
||||||
|
|
||||||
|
[[audits.file-per-thread-logger]]
|
||||||
|
who = "Alex Crichton <alex@alexcrichton.com>"
|
||||||
|
criteria = "safe-to-deploy"
|
||||||
|
version = "0.1.5"
|
||||||
|
notes = """
|
||||||
|
Contains no unsafe code but does write log files to the filesystem. Log files
|
||||||
|
are only created when requested by the application, however, and otherwise
|
||||||
|
only does its stated purpose.
|
||||||
|
"""
|
||||||
|
|
||||||
|
[[audits.heck]]
|
||||||
|
who = "Alex Crichton <alex@alexcrichton.com>"
|
||||||
|
criteria = "safe-to-deploy"
|
||||||
|
version = "0.4.0"
|
||||||
|
notes = "Contains `forbid_unsafe` and only uses `std::fmt` from the standard library. Otherwise only contains string manipulation."
|
||||||
|
|
||||||
|
[[audits.is-terminal]]
|
||||||
|
who = "Alex Crichton <alex@alexcrichton.com>"
|
||||||
|
criteria = "safe-to-deploy"
|
||||||
|
version = "0.3.0"
|
||||||
|
notes = "Contains only unsafe code for interacting with the crate's intended purpose."
|
||||||
|
|
||||||
[[audits.libm]]
|
[[audits.libm]]
|
||||||
who = "Alex Crichton <alex@alexcrichton.com>"
|
who = "Alex Crichton <alex@alexcrichton.com>"
|
||||||
criteria = "safe-to-deploy"
|
criteria = "safe-to-deploy"
|
||||||
@@ -44,6 +88,16 @@ but also contains some other minor fixes as well. Everything looks A-OK and
|
|||||||
as expected.
|
as expected.
|
||||||
"""
|
"""
|
||||||
|
|
||||||
|
[[audits.memfd]]
|
||||||
|
who = "Alex Crichton <alex@alexcrichton.com>"
|
||||||
|
criteria = "safe-to-deploy"
|
||||||
|
version = "0.6.1"
|
||||||
|
notes = """
|
||||||
|
Does not interact with the system in any way than otherwise instructed to.
|
||||||
|
Contains unsafe blocks but are encapsulated and required for the operation at
|
||||||
|
hand.
|
||||||
|
"""
|
||||||
|
|
||||||
[[audits.regalloc2]]
|
[[audits.regalloc2]]
|
||||||
who = "Jamey Sharp <jsharp@fastly.com>"
|
who = "Jamey Sharp <jsharp@fastly.com>"
|
||||||
criteria = "safe-to-deploy"
|
criteria = "safe-to-deploy"
|
||||||
|
|||||||
@@ -54,10 +54,6 @@ criteria = "safe-to-deploy"
|
|||||||
version = "0.1.53"
|
version = "0.1.53"
|
||||||
criteria = "safe-to-deploy"
|
criteria = "safe-to-deploy"
|
||||||
|
|
||||||
[[exemptions.atty]]
|
|
||||||
version = "0.2.14"
|
|
||||||
criteria = "safe-to-deploy"
|
|
||||||
|
|
||||||
[[exemptions.autocfg]]
|
[[exemptions.autocfg]]
|
||||||
version = "0.1.8"
|
version = "0.1.8"
|
||||||
criteria = "safe-to-deploy"
|
criteria = "safe-to-deploy"
|
||||||
@@ -106,10 +102,6 @@ criteria = "safe-to-deploy"
|
|||||||
version = "0.25.0"
|
version = "0.25.0"
|
||||||
criteria = "safe-to-deploy"
|
criteria = "safe-to-deploy"
|
||||||
|
|
||||||
[[exemptions.cap-rand]]
|
|
||||||
version = "0.25.0"
|
|
||||||
criteria = "safe-to-deploy"
|
|
||||||
|
|
||||||
[[exemptions.cap-std]]
|
[[exemptions.cap-std]]
|
||||||
version = "0.25.0"
|
version = "0.25.0"
|
||||||
criteria = "safe-to-deploy"
|
criteria = "safe-to-deploy"
|
||||||
@@ -118,10 +110,6 @@ criteria = "safe-to-deploy"
|
|||||||
version = "0.25.0"
|
version = "0.25.0"
|
||||||
criteria = "safe-to-run"
|
criteria = "safe-to-run"
|
||||||
|
|
||||||
[[exemptions.cap-time-ext]]
|
|
||||||
version = "0.25.0"
|
|
||||||
criteria = "safe-to-deploy"
|
|
||||||
|
|
||||||
[[exemptions.capstone]]
|
[[exemptions.capstone]]
|
||||||
version = "0.9.0"
|
version = "0.9.0"
|
||||||
criteria = "safe-to-deploy"
|
criteria = "safe-to-deploy"
|
||||||
@@ -326,10 +314,6 @@ criteria = "safe-to-deploy"
|
|||||||
version = "0.10.1"
|
version = "0.10.1"
|
||||||
criteria = "safe-to-deploy"
|
criteria = "safe-to-deploy"
|
||||||
|
|
||||||
[[exemptions.file-per-thread-logger]]
|
|
||||||
version = "0.1.5"
|
|
||||||
criteria = "safe-to-deploy"
|
|
||||||
|
|
||||||
[[exemptions.filecheck]]
|
[[exemptions.filecheck]]
|
||||||
version = "0.5.0"
|
version = "0.5.0"
|
||||||
criteria = "safe-to-deploy"
|
criteria = "safe-to-deploy"
|
||||||
@@ -382,10 +366,6 @@ criteria = "safe-to-run"
|
|||||||
version = "0.12.1"
|
version = "0.12.1"
|
||||||
criteria = "safe-to-deploy"
|
criteria = "safe-to-deploy"
|
||||||
|
|
||||||
[[exemptions.heck]]
|
|
||||||
version = "0.4.0"
|
|
||||||
criteria = "safe-to-deploy"
|
|
||||||
|
|
||||||
[[exemptions.hermit-abi]]
|
[[exemptions.hermit-abi]]
|
||||||
version = "0.1.19"
|
version = "0.1.19"
|
||||||
criteria = "safe-to-deploy"
|
criteria = "safe-to-deploy"
|
||||||
@@ -438,10 +418,6 @@ criteria = "safe-to-deploy"
|
|||||||
version = "2.5.0"
|
version = "2.5.0"
|
||||||
criteria = "safe-to-deploy"
|
criteria = "safe-to-deploy"
|
||||||
|
|
||||||
[[exemptions.is-terminal]]
|
|
||||||
version = "0.3.0"
|
|
||||||
criteria = "safe-to-deploy"
|
|
||||||
|
|
||||||
[[exemptions.is_ci]]
|
[[exemptions.is_ci]]
|
||||||
version = "1.1.1"
|
version = "1.1.1"
|
||||||
criteria = "safe-to-deploy"
|
criteria = "safe-to-deploy"
|
||||||
@@ -526,10 +502,6 @@ criteria = "safe-to-deploy"
|
|||||||
version = "2.5.0"
|
version = "2.5.0"
|
||||||
criteria = "safe-to-deploy"
|
criteria = "safe-to-deploy"
|
||||||
|
|
||||||
[[exemptions.memfd]]
|
|
||||||
version = "0.6.1"
|
|
||||||
criteria = "safe-to-deploy"
|
|
||||||
|
|
||||||
[[exemptions.memmap2]]
|
[[exemptions.memmap2]]
|
||||||
version = "0.2.3"
|
version = "0.2.3"
|
||||||
criteria = "safe-to-deploy"
|
criteria = "safe-to-deploy"
|
||||||
|
|||||||
Reference in New Issue
Block a user