diff options
| -rw-r--r-- | .github/workflows/verify-locked-down-signatures.yml | 1 | ||||
| -rw-r--r-- | deny.toml | 6 |
2 files changed, 5 insertions, 2 deletions
diff --git a/.github/workflows/verify-locked-down-signatures.yml b/.github/workflows/verify-locked-down-signatures.yml index 925e6e6c6f..37748b6f2c 100644 --- a/.github/workflows/verify-locked-down-signatures.yml +++ b/.github/workflows/verify-locked-down-signatures.yml @@ -5,6 +5,7 @@ on: paths: - .github/workflows/verify-locked-down-signatures.yml - Cargo.lock + - deny.toml - gui/package-lock.json - wireguard/libwg/go.sum - ci/keys/** @@ -103,8 +103,10 @@ skip-tree = [] unknown-registry = "deny" unknown-git = "deny" allow-registry = ["https://github.com/rust-lang/crates.io-index"] -# TODO: The PF socket type isn't released yet -allow-git = ["https://github.com/nix-rust/nix"] +# If we need to temporarily depend on a git repository in our Rust dependency tree, +# it has to be added here. We should try to keep this list minimal. Having git +# dependencies is not recommended. +allow-git = [] [sources.allow-org] # 1 or more github.com organizations to allow git sources for |