Compare commits

..

No commits in common. "factory" and "factory" have entirely different histories.

7 changed files with 9 additions and 76 deletions

View File

@ -3,8 +3,8 @@
<param name="url">https://github.com/RustSec/rustsec.git</param>
<param name="versionformat">@PARENT_TAG@~git@TAG_OFFSET@.%h</param>
<param name="scm">git</param>
<param name="revision">cargo-audit/v0.21.0</param>
<!-- <param name="revision">main</param> -->
<!-- <param name="revision">cargo-audit/v0.20.0</param> -->
<param name="revision">main</param>
<param name="match-tag">cargo-audit/v*</param>
<param name="versionrewrite-pattern">.*v(\d+\.\d+\.\d+)</param>
<param name="versionrewrite-replacement">\1</param>

View File

@ -1,4 +1,4 @@
<servicedata>
<service name="tar_scm">
<param name="url">https://github.com/RustSec/rustsec.git</param>
<param name="changesrevision">78f9859ef6a78bc4a7c7219dac1d0b250446c84c</param></service></servicedata>
<param name="changesrevision">972ac9329076e2e6347a8324dc95ec4cc35561a1</param></service></servicedata>

View File

@ -1,70 +1,3 @@
-------------------------------------------------------------------
Wed Oct 30 01:07:51 UTC 2024 - william.brown@suse.com
- Update to version 0.21.0~git0.78f9859:
* cargo-audit v0.21.0 (#1277)
* README.md(s): fix crate badges (#1276)
* rustsec v0.30.0 (#1275)
* Cargo.lock: bump dependencies (#1274)
* Cargo.toml: bump `cargo-lock` to v10.0.1 (#1272)
* cargo-lock v10.0.1 (#1271)
* cargo-lock: fix issue with v4 lockfiles (#1270)
* cargo-audit v0.21.0-rc.0 (#1267)
* rustsec v0.30.0-rc.1 (#1266)
* Cargo.toml(s): fix `repository` links (#1265)
* cargo-lock v10.0.0 (#1264)
* cargo-lock: use `doc_auto_cfg` (#1263)
* cargo-audit: bump `abscissa` to v0.8 (#1262)
* Bump auditable-extract in Cargo.lock for the WASM bugfix
* build(deps): bump actions/cache from 4.1.0 to 4.1.1 (#1259)
* V4 is supported now (#1260)
* rustsec v0.30.0-rc.0 (#1258)
* cargo-lock v10.0.0-rc.0 (#1257)
* cargo-lock: add support for V4 lockfiles (#1206)
* Cargo.lock: bump dependencies (#1256)
* build(deps): bump actions/cache from 4.0.2 to 4.1.0 (#1252)
* bump gix to 0.66 and fwe others (#1251)
* .github: install target in release workflow
* build(deps): bump regex from 1.10.5 to 1.10.6 (#1234)
* build(deps): bump xml-rs from 0.8.20 to 0.8.21 (#1236)
* cargo-audit: make `cargo-lock` a hard dependency (#1239)
* build(deps): bump tame-index from 0.13.0 to 0.13.1
* cargo-audit v0.21.0-pre.0 (#1233)
* rustsec v0.30.0-pre.0 (#1232)
* Bump `gix` => v0.64; `tame-index` => v0.13 (#1230)
* rustsec: fix test name (#1231)
* Bump `auditable-info` => 0.8; `auditable-serde` => v0.7 (#1229)
* Use cargo-lock v10.0.0-pre.0 branch for `auditable-serde` (#1228)
* cargo-lock v10.0.0-pre.0 (#1227)
* cargo-lock: remove `toml` from the public API (#1226)
* Bump `toml` to v0.8 (#1225)
* Bump versions to prepare for breaking changes (#1224)
* CI: re-enable self-audit (#1223)
* Cargo.lock: bump dependencies (#1222)
* build(deps): bump actions/cache from 4.0.1 to 4.0.2 (#1154)
* build(deps): bump xml-rs from 0.8.19 to 0.8.20 (#1163)
* build(deps): bump rust-embed from 8.4.0 to 8.5.0 (#1210)
* build(deps): bump tame-index from 0.12.0 to 0.12.2 (#1215)
* rustsec: re-enable happy path test (#1221)
* build(deps): bump regex from 1.10.4 to 1.10.5 (#1199)
* build(deps): bump gix-attributes from 0.22.2 to 0.22.3 (#1220)
* build(deps): bump mio from 0.8.10 to 0.8.11 (#1219)
* rustsec: Rust 1.80 fixes (#1218)
* deps: bump libc from 0.2.153 to 0.2.155 (#1197)
* build(deps): bump url from 2.5.0 to 2.5.2 (#1201)
* build(deps): bump softprops/action-gh-release from 2.0.5 to 2.0.8 (#1214)
* chore: leverage workspace inheritance (#1209)
* chore: cargo fmt
* tweak help to still show default
* feat(cli): Honor CARGO_TERM_COLOR if found for cargo-audit
* chore: regenerate platform support and bump to platforms@3.4.1
-------------------------------------------------------------------
Tue Sep 24 00:54:04 UTC 2024 - Xiaoguang Wang <xiaoguang.wang@suse.com>
- Update vendor.tar.zst: gix-path improper path resolution
(bsc#1230688 CVE-2024-45405).
-------------------------------------------------------------------
Tue Sep 10 23:56:50 UTC 2024 - William Brown <william.brown@suse.com>

View File

@ -20,7 +20,7 @@
%global workspace_name rustsec
Name: cargo-audit
Version: 0.21.0~git0.78f9859
Version: 0.20.0~git66.972ac93
Release: 0
Summary: Audit rust sources for known security vulnerabilities
License: ( 0BSD OR MIT OR Apache-2.0 ) AND ( Apache-2.0 OR BSL-1.0 ) AND ( Apache-2.0 OR MIT ) AND ( MIT OR Zlib OR Apache-2.0 ) AND ( Unlicense OR MIT ) AND ( Zlib OR Apache-2.0 OR MIT ) AND Apache-2.0 AND BSD-2-Clause AND BSD-3-Clause AND CC0-1.0 AND MIT AND MPL-2.0 AND MPL-2.0+

View File

@ -0,0 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:b2aa891ed289a8b0ec3165b52722186d5898a5316e022a8da22476b0cf2d2c76
size 656733

View File

@ -1,3 +0,0 @@
version https://git-lfs.github.com/spec/v1
oid sha256:b6b63ddf92f0be13845b839ca3e2c697da9d1c05a9a1cd3869186269e67f93ab
size 701261

View File

@ -1,3 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:959c93c9f61cbace4d2a267819fdba74e162974c7c367e39b04425bce240cd38
size 30609982
oid sha256:f59ca58cb89d414d147ff2caba6b985b0f8edf8be874648dbd71ac64614e4965
size 31573688