diff options
| -rw-r--r-- | deny.toml | 3 | ||||
| -rw-r--r-- | osv-scanner.toml | 9 |
2 files changed, 12 insertions, 0 deletions
@@ -28,6 +28,9 @@ yanked = "deny" ignore = [ # Ignored audit issues. This list should be kept short, and effort should be # put into removing items from the list. + # + # RUSTSEC-2024-0436 - paste no longer maintained. There is currently no "fix" for this, and htmlize depend on it. + "RUSTSEC-2024-0436" ] diff --git a/osv-scanner.toml b/osv-scanner.toml index 7df9f816d2..0376f79abe 100644 --- a/osv-scanner.toml +++ b/osv-scanner.toml @@ -67,3 +67,12 @@ # effectiveUntil = 2024-11-02 # reason = "The XML payload is generated by Apple tooling which we trust" # ``` + +# The `paste` crate is no longer maintained +[[IgnoredVulns]] +id = "RUSTSEC-2024-0436" +ignoreUntil = 2025-06-11 +reason = """ +The `paste` crate is no longer maintained. `htmlize` depend on it, and there is currently no "fix" for this. +We have no reason to suspect that `paste` is vulnerable in any way. +""" |
