diff options
author | Lars Wirzenius <liw@liw.fi> | 2021-11-16 13:24:18 +0200 |
---|---|---|
committer | Lars Wirzenius <liw@liw.fi> | 2021-11-16 14:14:04 +0200 |
commit | 9a8382cf570afbe7f9c4267f9a293ecc189f23aa (patch) | |
tree | ecdc07b866e97c86ff0539b5b50a7ae53854656d /deny.toml | |
parent | 986d6a416459276650a7d81b6204da5236c0b7b5 (diff) | |
download | subplot-9a8382cf570afbe7f9c4267f9a293ecc189f23aa.tar.gz |
chore: add config for `cargo deny`
This allows `cargo deny check` to finish cleanly. The configuration
NEEDS to be improved: currently it silently allows things like
vulnerable dependencies. However, let's introduce the configuration
this way and tighten it up later. This will us at least get started
with using `cargo deny` without landing a large amount of works in our
laps at once.
Sponsored-by: author
Diffstat (limited to 'deny.toml')
-rw-r--r-- | deny.toml | 31 |
1 files changed, 31 insertions, 0 deletions
diff --git a/deny.toml b/deny.toml new file mode 100644 index 0000000..060738d --- /dev/null +++ b/deny.toml @@ -0,0 +1,31 @@ +[advisories] +vulnerability = "allow" +unmaintained = "warn" +unsound = "warn" +yanked = "allow" +notice = "warn" +severity-threshold = "medium" + +[licenses] +unlicensed = "deny" +allow = [ + "Apache-2.0", + "BSD-3-Clause", + "MIT", + "MIT-0", +] +copyleft = "warn" +allow-osi-fsf-free = "neither" +default = "deny" +confidence-threshold = 0.8 +exceptions = [ + { allow = ["GPL-3.0"], name = "roadmap" }, +] + +[licenses.private] +ignore = false + +[bans] +multiple-versions = "allow" +wildcards = "allow" +highlight = "all" |