[advisories] db-path = "~/.cargo/advisory-db" db-urls = ["https://github.com/rustsec/advisory-db"] vulnerability = "deny" unmaintained = "deny" yanked = "deny" notice = "deny" ignore = [ "RUSTSEC-2020-0056", # from cpal v0.14.1 - unmaintained - https://github.com/koute/stdweb/issues/403 "RUSTSEC-2022-0048", # from xml-rs 0.8.4 - unmaintained - it's used in a build script of winit ] [licenses] unlicensed = "deny" copyleft = "deny" allow = [ "MIT", "MIT-0", "Apache-2.0", "BSD-3-Clause", "ISC", "Zlib", "0BSD", "BSD-2-Clause", "CC0-1.0", ] exceptions = [ { name = "unicode-ident", allow = ["Unicode-DFS-2016"] }, ] default = "deny" [bans] multiple-versions = "deny" wildcards = "deny" highlight = "all" # Certain crates/versions that will be skipped when doing duplicate detection. skip = [ { name = "ndk-sys", version = "0.3" }, # from rodio v0.16.0 { name = "ndk", version = "0.6" }, # from rodio v0.16.0 { name = "nix", version = "0.23" }, # from cpal v0.14.1 { name = "redox_syscall", version = "0.2" }, # from notify v5.1.0 { name = "rustc_version", version = "0.2" }, # from postcard v1.0.2 { name = "semver", version = "0.9" }, # from postcard v1.0.2 { name = "windows-sys", version = "0.42" }, # from notify v5.1.0 { name = "windows", version = "0.37" }, # from rodio v0.16.0 { name = "windows_aarch64_msvc", version = "0.37" }, # from rodio v0.16.0 { name = "windows_i686_gnu", version = "0.37" }, # from rodio v0.16.0 { name = "windows_i686_msvc", version = "0.37" }, # from rodio v0.16.0 { name = "windows_x86_64_gnu", version = "0.37" }, # from rodio v0.16.0 { name = "windows_x86_64_msvc", version = "0.37" }, # from rodio v0.16.0 ] [sources] unknown-registry = "deny" unknown-git = "deny" allow-registry = ["https://github.com/rust-lang/crates.io-index"] allow-git = []