forked from ruma/ruma
-
Notifications
You must be signed in to change notification settings - Fork 0
/
.deny.toml
54 lines (47 loc) · 1.01 KB
/
.deny.toml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
# https://embarkstudios.github.io/cargo-deny/checks/cfg.html
all-features = true
exclude = [
# dev only dependency
"criterion"
]
[advisories]
vulnerability = "deny"
unmaintained = "deny"
[licenses]
default = "deny"
unlicensed = "deny"
allow = [
"Apache-2.0",
"BSD-3-Clause",
"ISC",
"MIT",
"OpenSSL",
"Unicode-DFS-2016",
"Zlib",
]
# MPL-2.0 is copyleft but not "infectuous" like GPL
copyleft = "allow"
private = { ignore = true }
[[licenses.clarify]]
name = "ring"
version = "*"
expression = "MIT AND ISC AND OpenSSL"
license-files = [
{ path = "LICENSE", hash = 0xbd0eed23 },
]
[bans]
multiple-versions = "warn"
wildcards = "deny"
[[bans.features]]
name = "serde_json"
# These features all don't make sense to activate from a library as they apply
# globally to all users of serde_json. Make sure we don't enable them somehow.
deny = [
"arbitrary_precision",
"float_roundtrip",
"preserve_order",
"unbounded_depth",
]
[sources]
unknown-registry = "deny"
unknown-git = "deny"