SHA256
1
0
forked from pool/cargo-audit
Commit Graph

37 Commits

Author SHA256 Message Date
Dominique Leuenberger
90f0956ec6 Accepting request 1136673 from devel:languages:rust
OBS-URL: https://build.opensuse.org/request/show/1136673
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/cargo-audit?expand=0&rev=17
2024-01-04 14:59:01 +00:00
William Brown
d6aeedc749 Accepting request 1136672 from home:firstyear:branches:devel:languages:rust
- bsc#1218227 - update vendored dependencies for ssh terrapin attack

OBS-URL: https://build.opensuse.org/request/show/1136672
OBS-URL: https://build.opensuse.org/package/show/devel:languages:rust/cargo-audit?expand=0&rev=33
2024-01-04 02:34:36 +00:00
Ana Guerrero
566029533c Accepting request 1120659 from devel:languages:rust
OBS-URL: https://build.opensuse.org/request/show/1120659
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/cargo-audit?expand=0&rev=16
2023-10-27 20:28:28 +00:00
William Brown
820694bb37 Accepting request 1120657 from home:firstyear:branches:devel:languages:rust
- Update to version 0.18.3~git0.3544515:
  * Bump version
  * Populate changelog
  * Update the `fix` subcommand to the new API
  * Fix deadlock on missing lockfile
  * build(deps): bump regex from 1.9.5 to 1.10.2
  * Update rustsec changelog
  * Configure `gix` with `max-performance-safe` feature
  * feat: let `Severity` implement `Hash`
  * Bump rustsec version to 0.28.3
  * Bump date
  * Changelog for 0.28.3
  * fix typo
  * fix typo
  * Update rustsec/src/repository/git/repository.rs
  * Expand documentation on locking
  * build(deps): bump webpki from 0.22.1 to 0.22.2
  * Correctly classify only lock timeout errors as LockTimeout, not all lock-related errors
  * cargo fmt
  * Use Result instead of an unwrap()
  * Fix DB directory locking
  * Regenerate Cargo.lock
  * Add comment
  * Migrade rustsec-admin to tame-index 0.7
  * bump gix version in admin too
  * cargo fmt
  * Switch from Git-compatible locks to OS locks in database checkout
  * Purge gix lock to rustsec error conversion; I am removing gix locks
  * Only create LockTimeout error variant from tame-index locks
  * cargo fmt

OBS-URL: https://build.opensuse.org/request/show/1120657
OBS-URL: https://build.opensuse.org/package/show/devel:languages:rust/cargo-audit?expand=0&rev=31
2023-10-27 04:46:40 +00:00
Dominique Leuenberger
c8ef736256 Accepting request 1074530 from devel:languages:rust
OBS-URL: https://build.opensuse.org/request/show/1074530
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/cargo-audit?expand=0&rev=15
2023-03-27 16:16:33 +00:00
William Brown
13b5370678 Accepting request 1074529 from home:firstyear:branches:devel:languages:rust
- Update to version 0.17.5~git0.dc8ec71:
  * Set the release date in changelog
  * Bump `cargo-audit` version
  * Bump `rustsec` crate requirement to 0.26.5, to mandate the version with the fixed libgit2
  * Fill in the CHANGELOG
  * Do not run all tests from the default feature set twice
  * cargo fmt
  * Fix version reporting
  * Update openssl in Cargo.lock files
  * More changelog entries
  * cargo fmt
  * Fix type inference error
  * Fill in changelog
  * Bump version to 0.26.5
  * build(deps): bump regex from 1.7.1 to 1.7.2
  * build(deps): bump rust-embed from 6.4.2 to 6.6.0
  * build(deps): bump chrono from 0.4.23 to 0.4.24
  * Bump crates-index to 0.19
  * rustsec: Fix git2 via cargo-edit-9 fork
  * fix(cargo-audit): set clap bin_name to cargo (#824)
  * fix(cargo-audit): Better the formatting of severity output
  * Add vulnerability severity to the cargo-audit report presenter
  * test(cargo-audit): Ensure informational warnings are shown by default
  * fix(cargo-audit): Add unsound and notice to default informational warnings
  * Resolves #622
  * fix(cargo-audit): Remove latest commit signature check
  * Re-enable MacOS CI with `--all-features`
  * Bump `platforms` version
  * Regenerate the `platforms` crate for rustc 1.69.0-nightly (8996ea93b 2023-02-09)
  * build(deps): bump toml from 0.7.1 to 0.7.2 (#811)

OBS-URL: https://build.opensuse.org/request/show/1074529
OBS-URL: https://build.opensuse.org/package/show/devel:languages:rust/cargo-audit?expand=0&rev=29
2023-03-27 03:21:58 +00:00
Dominique Leuenberger
5766dd1287 Accepting request 1034648 from devel:languages:rust
OBS-URL: https://build.opensuse.org/request/show/1034648
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/cargo-audit?expand=0&rev=14
2022-11-10 13:19:05 +00:00
William Brown
05a60e342b Accepting request 1034646 from home:firstyear:branches:devel:languages:rust
- Update to version 0.17.4~git0.0b05e18:
  * Set 0.17.4 date in changelog
  * Bump `cargo-audit` to 0.17.4
  * Update documentation for 0.17.4; `cargo audit bin` is now officially enabled by default
  * Fix homepage style on mobile (#755)
  * Add comment
  * Only attempt to check for yanked crates for crates coming from crates.io
  * Remove an unused inport
  * placate Clippy
  * cargo fmt
  * Fix #747 in `cargo-audit instead, and don't silence errors that occur during checking for yanked crates`
  * Revert "Only check if a package is yanked if it comes from crates.io; fixes #747" This is a significant behavioral change that should only come with a semver bump
  * Add tests validating yank behavior so that #747 can't regress again
  * Only check if a package is yanked if it comes from crates.io; fixes #747
  * Add a test fixture depending on a yanked crate
  * Consolidate CODE_OF_CONDUCT.d files into one; switch to Rust code of conduct (#751)
  * Release rustsec-admit 0.8.3
  * fix links in admin/CHANGELOG.md
  * bump `platforms` to 3.0.2
  * regenerate `platforms` crate
  * Prepare rustsec-admin release

OBS-URL: https://build.opensuse.org/request/show/1034646
OBS-URL: https://build.opensuse.org/package/show/devel:languages:rust/cargo-audit?expand=0&rev=27
2022-11-09 01:05:46 +00:00
Dominique Leuenberger
6977063bf1 Accepting request 1032759 from devel:languages:rust
OBS-URL: https://build.opensuse.org/request/show/1032759
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/cargo-audit?expand=0&rev=13
2022-11-02 11:47:13 +00:00
William Brown
2d84f96d88 Accepting request 1032753 from home:firstyear:branches:devel:languages:rust
- Update to version 0.17.3~git0.fdb9752:
  * Set release date in CHANGELOG.md
  * Clarify changelog
  * Depend on rustsec 0.26.3 which added the CachedIndex used in `cargo audit bin`
  * bump cargo-audit to 0.17.3
  * bump rustsec to 0.26.3
  * More complete changelog for rustsec crate
  * Drop obsolete comment - html_root_url no longer exists
  * Add cargo-auditable to home page

OBS-URL: https://build.opensuse.org/request/show/1032753
OBS-URL: https://build.opensuse.org/package/show/devel:languages:rust/cargo-audit?expand=0&rev=25
2022-11-01 23:26:22 +00:00
Richard Brown
21bc9680af Accepting request 1009636 from devel:languages:rust
OBS-URL: https://build.opensuse.org/request/show/1009636
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/cargo-audit?expand=0&rev=12
2022-10-11 16:03:05 +00:00
William Brown
1ada19c6ff Accepting request 1008630 from home:firstyear:branches:devel:languages:rust
- Update to version 0.17.2~git0.bccf8a5:
  * Don't use --locked in release workflow to allow publishing again
  * cargo-audit: Update CHANGELOG
  * Fix `bin` screenshot URL in the README
  * Skip dotfiles in advisory-db checkout
  * Set the release date in CHANGELOG.md
  * Add the `cargo audit bin` screenshot to README
  * cargo fmt
  * Migrate to the released version of auditable-info

OBS-URL: https://build.opensuse.org/request/show/1008630
OBS-URL: https://build.opensuse.org/package/show/devel:languages:rust/cargo-audit?expand=0&rev=23
2022-10-11 00:32:51 +00:00
Richard Brown
71b638bf39 Accepting request 1007769 from devel:languages:rust
OBS-URL: https://build.opensuse.org/request/show/1007769
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/cargo-audit?expand=0&rev=11
2022-10-04 18:37:46 +00:00
William Brown
bc0316dafa Accepting request 1007768 from home:firstyear:branches:devel:languages:rust
- Add _constraints to prevent random failures due to OBS resource
  issues.

OBS-URL: https://build.opensuse.org/request/show/1007768
OBS-URL: https://build.opensuse.org/package/show/devel:languages:rust/cargo-audit?expand=0&rev=21
2022-10-03 23:43:26 +00:00
Dominique Leuenberger
772a62b467 Accepting request 979093 from devel:languages:rust
OBS-URL: https://build.opensuse.org/request/show/979093
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/cargo-audit?expand=0&rev=10
2022-05-25 18:34:45 +00:00
William Brown
f02b06f6db Accepting request 979092 from home:firstyear:branches:devel:languages:rust
- Update to version 0.17.0~git0.5214457:
  * cargo-audit v0.17.0 (#576)
  * rustsec-admin v0.7.0 (#575)
  * rustsec v0.26.0 (#574)
  * rustsec: flatten `advisory::id` module; rename `IdKind` (#573)
  * rustsec: flatten `warnings` module; rename `WarningKind` (#572)
  * rustsec: add `doc_cfg` annotations when building on docs.rs (#571)
  * cargo-audit: terminal output fixups (#570)
  * cargo-lock v8.0.1 (#569)
  * cargo-lock: fix dependency source extraction for V2 lockfiles (#568)
  * build(deps): bump cargo-edit from 0.9.0 to 0.9.1 (#566)

- Automatic update of vendored dependencies

OBS-URL: https://build.opensuse.org/request/show/979092
OBS-URL: https://build.opensuse.org/package/show/devel:languages:rust/cargo-audit?expand=0&rev=19
2022-05-25 01:00:24 +00:00
Dominique Leuenberger
4514e15d0a Accepting request 970926 from devel:languages:rust
OBS-URL: https://build.opensuse.org/request/show/970926
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/cargo-audit?expand=0&rev=9
2022-04-20 14:57:00 +00:00
William Brown
84a1792b55 Accepting request 966921 from home:firstyear:branches:devel:languages:rust
- Automatic update of vendored dependencies

OBS-URL: https://build.opensuse.org/request/show/966921
OBS-URL: https://build.opensuse.org/package/show/devel:languages:rust/cargo-audit?expand=0&rev=17
2022-04-20 00:57:42 +00:00
Dominique Leuenberger
c54381d3a6 Accepting request 963116 from devel:languages:rust
OBS-URL: https://build.opensuse.org/request/show/963116
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/cargo-audit?expand=0&rev=8
2022-03-20 19:55:21 +00:00
William Brown
9f356717ae Accepting request 962570 from home:firstyear:branches:devel:languages:rust
- Update to use cargo-packaging

OBS-URL: https://build.opensuse.org/request/show/962570
OBS-URL: https://build.opensuse.org/package/show/devel:languages:rust/cargo-audit?expand=0&rev=15
2022-03-20 04:05:07 +00:00
Dominique Leuenberger
0062e5d91b Accepting request 961763 from devel:languages:rust
OBS-URL: https://build.opensuse.org/request/show/961763
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/cargo-audit?expand=0&rev=7
2022-03-15 18:04:39 +00:00
William Brown
b32c46759b Accepting request 961502 from home:firstyear:branches:devel:languages:rust
- Update to resolve bsc#1196972 CVE-2022-24713 - Regex DOS

OBS-URL: https://build.opensuse.org/request/show/961502
OBS-URL: https://build.opensuse.org/package/show/devel:languages:rust/cargo-audit?expand=0&rev=13
2022-03-14 22:45:32 +00:00
Dominique Leuenberger
e57a6c8307 Accepting request 958542 from devel:languages:rust
OBS-URL: https://build.opensuse.org/request/show/958542
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/cargo-audit?expand=0&rev=6
2022-03-03 23:17:14 +00:00
William Brown
782a9bedc5 Accepting request 958363 from home:firstyear:branches:devel:languages:rust
- Update to vendored libraries to resolve security issues

OBS-URL: https://build.opensuse.org/request/show/958363
OBS-URL: https://build.opensuse.org/package/show/devel:languages:rust/cargo-audit?expand=0&rev=11
2022-03-03 00:25:43 +00:00
Dominique Leuenberger
4f606957d6 Accepting request 935313 from devel:languages:rust
OBS-URL: https://build.opensuse.org/request/show/935313
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/cargo-audit?expand=0&rev=5
2021-12-03 19:35:32 +00:00
William Brown
6d41c666e8 Accepting request 935312 from home:firstyear:branches:devel:languages:rust
- Fix incorrect license string

OBS-URL: https://build.opensuse.org/request/show/935312
OBS-URL: https://build.opensuse.org/package/show/devel:languages:rust/cargo-audit?expand=0&rev=10
2021-12-03 01:45:09 +00:00
William Brown
6d31414887 Accepting request 931638 from home:firstyear:branches:devel:languages:rust
- Update to version 0.16.0~git0.625c965:
  * cargo-audit v0.16.0 (#487)
  * rustsec v0.25.1 (#486)
  * platforms v2.0.0 (#485)
  * platforms: make `Platform::ALL` an inherent constant (#484)
  * platforms: make tier modules non-`pub` (#483)
  * rustsec-admin v0.6.0 (#482)
  * Update atom_syndication to 0.11 (#481)
  * rustsec v0.25.0 (#480)
  * Cargo.lock: bump dependencies (#479)
  * rustsec: flatten API (#478)

OBS-URL: https://build.opensuse.org/request/show/931638
OBS-URL: https://build.opensuse.org/package/show/devel:languages:rust/cargo-audit?expand=0&rev=9
2021-11-26 20:41:40 +00:00
Dominique Leuenberger
f8357fbe8d Accepting request 923371 from devel:languages:rust
OBS-URL: https://build.opensuse.org/request/show/923371
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/cargo-audit?expand=0&rev=4
2021-10-06 17:49:52 +00:00
William Brown
1820197345 Accepting request 923370 from home:firstyear:branches:devel:languages:rust
- Update to version 0.15.2~git0.fe0b327:
  * cargo-audit v0.15.2 (#435)
  * rustsec v0.24.3 (#433)
  * Don't label OSV feature as unstable, since OSV 1.0 has shipped
  * cargo-audit+rustsec: add `vendored-libgit2` feature (#432)
  * cargo-audit v0.15.1 (#430)
  * Bump comrak from 0.12.0 to 0.12.1 (#428)
  * Bump git2 from 0.13.21 to 0.13.22 (#427)
  * Bump comrak from 0.11.0 to 0.12.0 (#426)
  * silence Clippy - I want to be explicit here

OBS-URL: https://build.opensuse.org/request/show/923370
OBS-URL: https://build.opensuse.org/package/show/devel:languages:rust/cargo-audit?expand=0&rev=8
2021-10-06 01:32:47 +00:00
Dominique Leuenberger
c265908151 Accepting request 904295 from devel:languages:rust
OBS-URL: https://build.opensuse.org/request/show/904295
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/cargo-audit?expand=0&rev=3
2021-07-07 16:30:19 +00:00
William Brown
f3277e159e Accepting request 904294 from home:firstyear:branches:devel:languages:rust
Resolve incorrect file

OBS-URL: https://build.opensuse.org/request/show/904294
OBS-URL: https://build.opensuse.org/package/show/devel:languages:rust/cargo-audit?expand=0&rev=7
2021-07-06 02:00:37 +00:00
William Brown
f2881816eb Accepting request 904008 from home:firstyear:branches:devel:languages:rust
- Update to version 0.15.0~git0.16c8aa4:
  * cargo-audit v0.15.0 (#392)
  * rustsec-admin v0.5.0 (#389)
  * README.md: 🦀🛡️📦
  * rustsec v0.24.0 (#388)
  * OSV export (#366)
  * Bump semver from 1.0.1 to 1.0.3
  * Bump semver from 1.0.0 to 1.0.1 (#381)
  * Bump git2 from 0.13.19 to 0.13.20 (#375)
  * Bump crates-index from 0.16.6 to 0.16.7 (#380)
  * cargo-lock v7.0.0 (#379)
  * Bump to semver 1.0.0 (#378)
  * rustsec-admin v0.4.3 (#374)
  * list-affected-versions: Also print the crate in question
  * Bump crates-index from 0.16.5 to 0.16.6
  * Fix doc comments
  * Added docs
  * Clean up the code and commit stuff I forgot to add to git
  * Implement list-affected-versions subcommand, works fine with current DB
  * Add list-affected-versions subcommand stub
  * Clarify error message
  * Update the crates.io index if not up to date
  * Drop ureq dependency
  * cargo fmt
  * Better error reporting
  * Initial untested attempt to get rid of crates.io API querying completely
  * Comment, thanks Alex
  * cargo fmt
  * Fix crates.io API interaction
  * Ditched crates_io_api crate, did the same thing with ureq. Gets rid of tokio and a whole lot of other deps. Fixes breakage due to the recent crates.io API breakage, and prevents similar breakage in the future

OBS-URL: https://build.opensuse.org/request/show/904008
OBS-URL: https://build.opensuse.org/package/show/devel:languages:rust/cargo-audit?expand=0&rev=6
2021-07-06 01:54:35 +00:00
Dominique Leuenberger
836d449007 Accepting request 897045 from devel:languages:rust
OBS-URL: https://build.opensuse.org/request/show/897045
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/cargo-audit?expand=0&rev=2
2021-06-03 22:33:34 +00:00
William Brown
56fb21b7e3 Accepting request 896823 from home:firstyear:branches:devel:languages:rust
- Update _service to use upstream monorepo and cargo-audit
- Update to version 0.14.1~git0.e46dce8:
  * v0.14.1 (#342)
  * Cargo.lock: update several dependencies (#341)
  * Generate release builds with github actions (#337)
  * Cargo.lock: bump various dependencies (#335)
  * Bump rustsec from 0.23.2 to 0.23.3 (#333)
  * v0.14.0 (#330)
  * Cargo.lock: bump `rustsec` to v0.23.2 (#329)
  * README.md: fix "Report Vulnerability" button (#328)
  * Rename 'master' branch to 'main'
  * Bump `rustsec` dependency to v0.23; MSRV 1.46+ (#327)

OBS-URL: https://build.opensuse.org/request/show/896823
OBS-URL: https://build.opensuse.org/package/show/devel:languages:rust/cargo-audit?expand=0&rev=4
2021-06-03 03:36:01 +00:00
Richard Brown
b993b12847 Accepting request 879549 from devel:languages:rust
New package cargo_audit

OBS-URL: https://build.opensuse.org/request/show/879549
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/cargo-audit?expand=0&rev=1
2021-03-30 19:17:11 +00:00
William Brown
05575ba12f Accepting request 879533 from home:firstyear:branches:devel:languages:rust
- Update to version 0.14.0~git0.08c9f3e:
  * v0.14.0 (#330)
  * Cargo.lock: bump `rustsec` to v0.23.2 (#329)
  * README.md: fix "Report Vulnerability" button (#328)
  * Rename 'master' branch to 'main'
  * Bump `rustsec` dependency to v0.23; MSRV 1.46+ (#327)
  * Enable informational warnings with deny (#320)
  * When running in no-fetch mode, allow accessing a non-git repo. (#315)
  * Update README.md (#298)
  * Cargo.lock: bump deps (#283)
  * Bump once_cell from 1.4.1 to 1.5.0 (#282)

OBS-URL: https://build.opensuse.org/request/show/879533
OBS-URL: https://build.opensuse.org/package/show/devel:languages:rust/cargo-audit?expand=0&rev=2
2021-03-17 01:21:39 +00:00
Luke Jones
bde8166c4e Accepting request 877853 from home:firstyear
Add cargo-audit to devel:languages:rust. This allows scanning of
packaged rust projects for security issues.

OBS-URL: https://build.opensuse.org/request/show/877853
OBS-URL: https://build.opensuse.org/package/show/devel:languages:rust/cargo-audit?expand=0&rev=1
2021-03-11 22:17:05 +00:00