axum/deny.toml

[advisories]
vulnerability = "deny"
unmaintained = "warn"
notice = "warn"
ignore = []

[licenses]
unlicensed = "warn"
allow = []
deny = []
copyleft = "warn"
allow-osi-fsf-free = "either"
confidence-threshold = 0.8
exceptions = [
    # ring uses code from multiple libraries but all with permissive licenses
    # https://tldrlegal.com/license/openssl-license-(openssl)
    { allow = ["ISC", "MIT", "OpenSSL"], name = "ring" },

]

[[licenses.clarify]]
name = "ring"
# SPDX considers OpenSSL to encompass both the OpenSSL and SSLeay licenses
# https://spdx.org/licenses/OpenSSL.html
# ISC - Both BoringSSL and ring use this for their new files
# MIT - "Files in third_party/ have their own licenses, as described therein. The MIT
# license, for third_party/fiat, which, unlike other third_party directories, is
# compiled into non-test libraries, is included below."
# OpenSSL - Obviously
expression = "ISC AND MIT AND OpenSSL"
license-files = [
    { path = "LICENSE", hash = 0xbd0eed23 },
]

[bans]
multiple-versions = "deny"
highlight = "all"
skip-tree = [
    # these crates are only used in examples
    { name = "sqlx" },
    { name = "async-graphql" },
    { name = "axum-server" },
    # remove when tungstenite has had a new release
    # https://github.com/snapview/tungstenite-rs/issues/262
    { name = "tungstenite" },
]
skip = [
    { name = "spin", version = "=0.5.2" },
    # old version pulled in by reqwest which is only a dev dependency
    { name = "tokio-util", version = "=0.6.10" },
]

[sources]
unknown-registry = "warn"
unknown-git = "warn"
allow-git = []
Misc repo setup (#7) 2021-06-12 20:18:21 +02:00			`[advisories]`
			`vulnerability = "deny"`
			`unmaintained = "warn"`
			`notice = "warn"`
			`ignore = []`

			`[licenses]`
Clean up deny.toml (#597) 2021-12-08 18:37:02 +01:00			`unlicensed = "warn"`
Misc repo setup (#7) 2021-06-12 20:18:21 +02:00			`allow = []`
			`deny = []`
			`copyleft = "warn"`
			`allow-osi-fsf-free = "either"`
			`confidence-threshold = 0.8`
Add TLS example (with rustls) (#57) 2021-08-01 08:32:47 +02:00			`exceptions = [`
			`# ring uses code from multiple libraries but all with permissive licenses`
			`# https://tldrlegal.com/license/openssl-license-(openssl)`
			`{ allow = ["ISC", "MIT", "OpenSSL"], name = "ring" },`

			`]`

			`[[licenses.clarify]]`
			`name = "ring"`
			`# SPDX considers OpenSSL to encompass both the OpenSSL and SSLeay licenses`
			`# https://spdx.org/licenses/OpenSSL.html`
			`# ISC - Both BoringSSL and ring use this for their new files`
			`# MIT - "Files in third_party/ have their own licenses, as described therein. The MIT`
			`# license, for third_party/fiat, which, unlike other third_party directories, is`
			`# compiled into non-test libraries, is included below."`
			`# OpenSSL - Obviously`
			`expression = "ISC AND MIT AND OpenSSL"`
			`license-files = [`
			`{ path = "LICENSE", hash = 0xbd0eed23 },`
			`]`
Misc repo setup (#7) 2021-06-12 20:18:21 +02:00
			`[bans]`
			`multiple-versions = "deny"`
			`highlight = "all"`
Update dependencies (#753) 2022-02-12 18:16:14 +01:00			`skip-tree = [`
			`# these crates are only used in examples`
			`{ name = "sqlx" },`
			`{ name = "async-graphql" },`
			`{ name = "axum-server" },`
			`# remove when tungstenite has had a new release`
			`# https://github.com/snapview/tungstenite-rs/issues/262`
			`{ name = "tungstenite" },`
			`]`
Generic request body (#22) Fixes #21 2021-06-19 12:50:33 +02:00			`skip = [`
Add TLS example (with rustls) (#57) 2021-08-01 08:32:47 +02:00			`{ name = "spin", version = "=0.5.2" },`
Add `axum_extra::extract::Form` (#1031) * Add `axum_extra::extra::Form` * update tokio-util ban 2022-05-15 17:17:45 +02:00			`# old version pulled in by reqwest which is only a dev dependency`
			`{ name = "tokio-util", version = "=0.6.10" },`
Generic request body (#22) Fixes #21 2021-06-19 12:50:33 +02:00			`]`
Misc repo setup (#7) 2021-06-12 20:18:21 +02:00
			`[sources]`
			`unknown-registry = "warn"`
			`unknown-git = "warn"`
			`allow-git = []`