diff options
| author | Markus Pettersson <markus.pettersson@mullvad.net> | 2025-02-03 09:21:19 +0100 |
|---|---|---|
| committer | Markus Pettersson <markus.pettersson@mullvad.net> | 2025-02-03 17:01:47 +0100 |
| commit | 084de0a7dbcc305b97e79a3c82607a885466affe (patch) | |
| tree | 769f4a3fa6a69c8e4f88f404211ceeae9cf59d41 | |
| parent | 70dd2e359b0a40556bd570c9f32db0c8de22a1fb (diff) | |
| download | mullvadvpn-084de0a7dbcc305b97e79a3c82607a885466affe.tar.xz mullvadvpn-084de0a7dbcc305b97e79a3c82607a885466affe.zip | |
Enable warnings for `RUSTSEC-2024-0384` in osv-scanner & cargo-deny
| -rw-r--r-- | test/deny.toml | 4 | ||||
| -rw-r--r-- | test/osv-scanner.toml | 11 |
2 files changed, 0 insertions, 15 deletions
diff --git a/test/deny.toml b/test/deny.toml index 76a525021b..70584012e1 100644 --- a/test/deny.toml +++ b/test/deny.toml @@ -20,10 +20,6 @@ yanked = "deny" ignore = [ # Ignored audit issues. This list should be kept short, and effort should be # put into removing items from the list. - - # RUSTSEC-2024-0384 - `instant` is unmaintained. - # `ssh2 0.9.4` uses `instant`. - "RUSTSEC-2024-0384", ] diff --git a/test/osv-scanner.toml b/test/osv-scanner.toml index 7c5a285d80..9d95c0b636 100644 --- a/test/osv-scanner.toml +++ b/test/osv-scanner.toml @@ -1,14 +1,3 @@ # See repository root `osv-scanner.toml` for instructions and rules for this file. # # Keep this file in sync with test/deny.toml - -# `instant` is unmaintained. -[[IgnoredVulns]] -id = "RUSTSEC-2024-0384" -ignoreUntil = 2025-02-11 -reason = """ -There is no reported vulnerability in the `instant` crate, but it is unmaintained and the author suggest switching to -a fork instead of depending on `instant`. In our tree it is `ssh2` that currently depend on `instant` through an old -version of `parking_lot`, preventing us from upgrading to a fixed version. This ignore can be removed when -https://github.com/alexcrichton/ssh2-rs/issues/338 is resolved. -""" |