summaryrefslogtreecommitdiffhomepage
diff options
context:
space:
mode:
-rw-r--r--deny.toml3
-rw-r--r--osv-scanner.toml9
2 files changed, 12 insertions, 0 deletions
diff --git a/deny.toml b/deny.toml
index d08fbc068b..bc79b78054 100644
--- a/deny.toml
+++ b/deny.toml
@@ -28,6 +28,9 @@ yanked = "deny"
ignore = [
# Ignored audit issues. This list should be kept short, and effort should be
# put into removing items from the list.
+ #
+ # RUSTSEC-2024-0436 - paste no longer maintained. There is currently no "fix" for this, and htmlize depend on it.
+ "RUSTSEC-2024-0436"
]
diff --git a/osv-scanner.toml b/osv-scanner.toml
index 7df9f816d2..0376f79abe 100644
--- a/osv-scanner.toml
+++ b/osv-scanner.toml
@@ -67,3 +67,12 @@
# effectiveUntil = 2024-11-02
# reason = "The XML payload is generated by Apple tooling which we trust"
# ```
+
+# The `paste` crate is no longer maintained
+[[IgnoredVulns]]
+id = "RUSTSEC-2024-0436"
+ignoreUntil = 2025-06-11
+reason = """
+The `paste` crate is no longer maintained. `htmlize` depend on it, and there is currently no "fix" for this.
+We have no reason to suspect that `paste` is vulnerable in any way.
+"""