forked from continuwuation/continuwuity
42 lines
1.5 KiB
TOML
42 lines
1.5 KiB
TOML
[advisories]
|
|
ignore = [
|
|
"RUSTSEC-2024-0436",
|
|
"RUSTSEC-2025-0014",
|
|
] # advisory IDs to ignore e.g. ["RUSTSEC-2019-0001", ...]
|
|
informational_warnings = [] # warn for categories of informational advisories
|
|
severity_threshold = "none" # CVSS severity ("none", "low", "medium", "high", "critical")
|
|
|
|
# Advisory Database Configuration
|
|
[database]
|
|
fetch = true # Perform a `git fetch` before auditing (default: true)
|
|
path = "~/.cargo/advisory-db" # Path where advisory git repo will be cloned
|
|
stale = false # Allow stale advisory DB (i.e. no commits for 90 days, default: false)
|
|
url = "https://github.com/RustSec/advisory-db.git" # URL to git repo
|
|
|
|
# Output Configuration
|
|
[output]
|
|
deny = [
|
|
"unmaintained",
|
|
"unsound",
|
|
"warnings",
|
|
"yanked",
|
|
] # exit on error if unmaintained dependencies are found
|
|
format = "terminal" # "terminal" (human readable report) or "json"
|
|
quiet = false # Only print information on error
|
|
show_tree = true # Show inverse dependency trees along with advisories (default: true)
|
|
|
|
# Target Configuration
|
|
[target]
|
|
arch = [
|
|
"aarch64",
|
|
"x86_64",
|
|
] # Ignore advisories for CPU architectures other than these
|
|
os = [
|
|
"linux",
|
|
"macos",
|
|
"windows",
|
|
] # Ignore advisories for operating systems other than these
|
|
|
|
[yanked]
|
|
enabled = true # Warn for yanked crates in Cargo.lock (default: true)
|
|
update_index = true # Auto-update the crates.io index (default: true)
|