forked from pool/cargo-audit
Compare commits
6 Commits
| Author | SHA256 | Date | |
|---|---|---|---|
|
e17ef5db96 | ||
|
b5db77aaa0 | ||
|
89ac5ad6be | ||
|
|
a81b9ad302 | ||
|
|
f2cf287978 | ||
|
|
fa917fb019 |
76
0001-Skip-warnings.patch
Normal file
76
0001-Skip-warnings.patch
Normal file
@ -0,0 +1,76 @@
|
||||
From 645cfd950abf7c2fff6fc12915e7562439007b57 Mon Sep 17 00:00:00 2001
|
||||
From: William Brown <william@blackhats.net.au>
|
||||
Date: Tue, 7 Jan 2025 10:08:13 +1000
|
||||
Subject: [PATCH] Skip warnings
|
||||
|
||||
---
|
||||
admin/src/bin/rustsec-admin/main.rs | 2 +-
|
||||
admin/src/lib.rs | 2 +-
|
||||
admin/tests/acceptance.rs | 2 +-
|
||||
cargo-audit/src/bin/cargo-audit/main.rs | 2 +-
|
||||
cargo-audit/tests/acceptance.rs | 2 +-
|
||||
5 files changed, 5 insertions(+), 5 deletions(-)
|
||||
|
||||
diff --git a/admin/src/bin/rustsec-admin/main.rs b/admin/src/bin/rustsec-admin/main.rs
|
||||
index 36d5912..eda0452 100644
|
||||
--- a/admin/src/bin/rustsec-admin/main.rs
|
||||
+++ b/admin/src/bin/rustsec-admin/main.rs
|
||||
@@ -1,6 +1,6 @@
|
||||
//! Main entry point for the `rustsec-admin` CLI application
|
||||
|
||||
-#![deny(warnings, missing_docs, trivial_casts, unused_qualifications)]
|
||||
+#![deny(missing_docs, trivial_casts, unused_qualifications)]
|
||||
#![forbid(unsafe_code)]
|
||||
|
||||
use rustsec_admin::application::APPLICATION;
|
||||
diff --git a/admin/src/lib.rs b/admin/src/lib.rs
|
||||
index 6f4b8ba..564de2e 100644
|
||||
--- a/admin/src/lib.rs
|
||||
+++ b/admin/src/lib.rs
|
||||
@@ -2,7 +2,7 @@
|
||||
//!
|
||||
//! Administrative tool for the RustSec Advisory Database
|
||||
|
||||
-#![deny(warnings, missing_docs, trivial_casts, unused_qualifications)]
|
||||
+#![deny(missing_docs, trivial_casts, unused_qualifications)]
|
||||
#![forbid(unsafe_code)]
|
||||
|
||||
pub mod application;
|
||||
diff --git a/admin/tests/acceptance.rs b/admin/tests/acceptance.rs
|
||||
index f559e4c..594dda8 100644
|
||||
--- a/admin/tests/acceptance.rs
|
||||
+++ b/admin/tests/acceptance.rs
|
||||
@@ -1,4 +1,4 @@
|
||||
-#![deny(warnings, missing_docs, trivial_casts, unused_qualifications)]
|
||||
+#![deny(missing_docs, trivial_casts, unused_qualifications)]
|
||||
#![forbid(unsafe_code)]
|
||||
|
||||
use abscissa_core::testing::prelude::*;
|
||||
diff --git a/cargo-audit/src/bin/cargo-audit/main.rs b/cargo-audit/src/bin/cargo-audit/main.rs
|
||||
index 7f0c3c0..78ce4f3 100644
|
||||
--- a/cargo-audit/src/bin/cargo-audit/main.rs
|
||||
+++ b/cargo-audit/src/bin/cargo-audit/main.rs
|
||||
@@ -1,6 +1,6 @@
|
||||
//! Main entry point for `cargo audit`
|
||||
|
||||
-#![deny(warnings, missing_docs, trivial_casts, unused_qualifications)]
|
||||
+#![deny(missing_docs, trivial_casts, unused_qualifications)]
|
||||
#![forbid(unsafe_code)]
|
||||
|
||||
use cargo_audit::application::APP;
|
||||
diff --git a/cargo-audit/tests/acceptance.rs b/cargo-audit/tests/acceptance.rs
|
||||
index 96d5529..982f8f3 100644
|
||||
--- a/cargo-audit/tests/acceptance.rs
|
||||
+++ b/cargo-audit/tests/acceptance.rs
|
||||
@@ -4,7 +4,7 @@
|
||||
//! For more information, see:
|
||||
//! <https://docs.rs/abscissa_core/latest/abscissa_core/testing/index.html>
|
||||
|
||||
-#![deny(warnings, missing_docs, trivial_casts, unused_qualifications)]
|
||||
+#![deny(missing_docs, trivial_casts, unused_qualifications)]
|
||||
#![forbid(unsafe_code)]
|
||||
|
||||
use abscissa_core::testing::prelude::*;
|
||||
--
|
||||
2.39.5 (Apple Git-154)
|
||||
|
||||
6
_service
6
_service
@ -3,8 +3,8 @@
|
||||
<param name="url">https://github.com/RustSec/rustsec.git</param>
|
||||
<param name="versionformat">@PARENT_TAG@~git@TAG_OFFSET@.%h</param>
|
||||
<param name="scm">git</param>
|
||||
<!-- <param name="revision">cargo-audit/v0.20.0</param> -->
|
||||
<param name="revision">main</param>
|
||||
<param name="revision">cargo-audit/v0.21.0</param>
|
||||
<!-- <param name="revision">main</param> -->
|
||||
<param name="match-tag">cargo-audit/v*</param>
|
||||
<param name="versionrewrite-pattern">.*v(\d+\.\d+\.\d+)</param>
|
||||
<param name="versionrewrite-replacement">\1</param>
|
||||
@ -20,7 +20,7 @@
|
||||
<service name="cargo_vendor" mode="disabled">
|
||||
<param name="srcdir">rustsec</param>
|
||||
<param name="compression">zst</param>
|
||||
<param name="update">false</param>
|
||||
<param name="update">true</param>
|
||||
<param name="i-accept-the-risk">RUSTSEC-2024-0019</param>
|
||||
</service>
|
||||
<service name="cargo_audit" mode="disabled">
|
||||
|
||||
@ -1,4 +1,4 @@
|
||||
<servicedata>
|
||||
<service name="tar_scm">
|
||||
<param name="url">https://github.com/RustSec/rustsec.git</param>
|
||||
<param name="changesrevision">972ac9329076e2e6347a8324dc95ec4cc35561a1</param></service></servicedata>
|
||||
<param name="changesrevision">78f9859ef6a78bc4a7c7219dac1d0b250446c84c</param></service></servicedata>
|
||||
@ -1,3 +1,75 @@
|
||||
-------------------------------------------------------------------
|
||||
Tue Jan 7 00:30:30 UTC 2025 - William Brown <william.brown@suse.com>
|
||||
|
||||
- add 0001-Skip-warnings.patch to allow building on rust 1.83
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Oct 30 01:07:51 UTC 2024 - william.brown@suse.com
|
||||
|
||||
- Update to version 0.21.0~git0.78f9859:
|
||||
* cargo-audit v0.21.0 (#1277)
|
||||
* README.md(s): fix crate badges (#1276)
|
||||
* rustsec v0.30.0 (#1275)
|
||||
* Cargo.lock: bump dependencies (#1274)
|
||||
* Cargo.toml: bump `cargo-lock` to v10.0.1 (#1272)
|
||||
* cargo-lock v10.0.1 (#1271)
|
||||
* cargo-lock: fix issue with v4 lockfiles (#1270)
|
||||
* cargo-audit v0.21.0-rc.0 (#1267)
|
||||
* rustsec v0.30.0-rc.1 (#1266)
|
||||
* Cargo.toml(s): fix `repository` links (#1265)
|
||||
* cargo-lock v10.0.0 (#1264)
|
||||
* cargo-lock: use `doc_auto_cfg` (#1263)
|
||||
* cargo-audit: bump `abscissa` to v0.8 (#1262)
|
||||
* Bump auditable-extract in Cargo.lock for the WASM bugfix
|
||||
* build(deps): bump actions/cache from 4.1.0 to 4.1.1 (#1259)
|
||||
* V4 is supported now (#1260)
|
||||
* rustsec v0.30.0-rc.0 (#1258)
|
||||
* cargo-lock v10.0.0-rc.0 (#1257)
|
||||
* cargo-lock: add support for V4 lockfiles (#1206)
|
||||
* Cargo.lock: bump dependencies (#1256)
|
||||
* build(deps): bump actions/cache from 4.0.2 to 4.1.0 (#1252)
|
||||
* bump gix to 0.66 and fwe others (#1251)
|
||||
* .github: install target in release workflow
|
||||
* build(deps): bump regex from 1.10.5 to 1.10.6 (#1234)
|
||||
* build(deps): bump xml-rs from 0.8.20 to 0.8.21 (#1236)
|
||||
* cargo-audit: make `cargo-lock` a hard dependency (#1239)
|
||||
* build(deps): bump tame-index from 0.13.0 to 0.13.1
|
||||
* cargo-audit v0.21.0-pre.0 (#1233)
|
||||
* rustsec v0.30.0-pre.0 (#1232)
|
||||
* Bump `gix` => v0.64; `tame-index` => v0.13 (#1230)
|
||||
* rustsec: fix test name (#1231)
|
||||
* Bump `auditable-info` => 0.8; `auditable-serde` => v0.7 (#1229)
|
||||
* Use cargo-lock v10.0.0-pre.0 branch for `auditable-serde` (#1228)
|
||||
* cargo-lock v10.0.0-pre.0 (#1227)
|
||||
* cargo-lock: remove `toml` from the public API (#1226)
|
||||
* Bump `toml` to v0.8 (#1225)
|
||||
* Bump versions to prepare for breaking changes (#1224)
|
||||
* CI: re-enable self-audit (#1223)
|
||||
* Cargo.lock: bump dependencies (#1222)
|
||||
* build(deps): bump actions/cache from 4.0.1 to 4.0.2 (#1154)
|
||||
* build(deps): bump xml-rs from 0.8.19 to 0.8.20 (#1163)
|
||||
* build(deps): bump rust-embed from 8.4.0 to 8.5.0 (#1210)
|
||||
* build(deps): bump tame-index from 0.12.0 to 0.12.2 (#1215)
|
||||
* rustsec: re-enable happy path test (#1221)
|
||||
* build(deps): bump regex from 1.10.4 to 1.10.5 (#1199)
|
||||
* build(deps): bump gix-attributes from 0.22.2 to 0.22.3 (#1220)
|
||||
* build(deps): bump mio from 0.8.10 to 0.8.11 (#1219)
|
||||
* rustsec: Rust 1.80 fixes (#1218)
|
||||
* deps: bump libc from 0.2.153 to 0.2.155 (#1197)
|
||||
* build(deps): bump url from 2.5.0 to 2.5.2 (#1201)
|
||||
* build(deps): bump softprops/action-gh-release from 2.0.5 to 2.0.8 (#1214)
|
||||
* chore: leverage workspace inheritance (#1209)
|
||||
* chore: cargo fmt
|
||||
* tweak help to still show default
|
||||
* feat(cli): Honor CARGO_TERM_COLOR if found for cargo-audit
|
||||
* chore: regenerate platform support and bump to platforms@3.4.1
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Sep 24 00:54:04 UTC 2024 - Xiaoguang Wang <xiaoguang.wang@suse.com>
|
||||
|
||||
- Update vendor.tar.zst: gix-path improper path resolution
|
||||
(bsc#1230688 CVE-2024-45405).
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Sep 10 23:56:50 UTC 2024 - William Brown <william.brown@suse.com>
|
||||
|
||||
|
||||
@ -1,7 +1,7 @@
|
||||
#
|
||||
# spec file for package cargo-audit
|
||||
#
|
||||
# Copyright (c) 2024 SUSE LLC
|
||||
# Copyright (c) 2025 SUSE LLC
|
||||
#
|
||||
# All modifications and additions to the file contributed by third parties
|
||||
# remain the property of their copyright owners, unless otherwise agreed
|
||||
@ -20,7 +20,7 @@
|
||||
%global workspace_name rustsec
|
||||
|
||||
Name: cargo-audit
|
||||
Version: 0.20.0~git66.972ac93
|
||||
Version: 0.21.0~git0.78f9859
|
||||
Release: 0
|
||||
Summary: Audit rust sources for known security vulnerabilities
|
||||
License: ( 0BSD OR MIT OR Apache-2.0 ) AND ( Apache-2.0 OR BSL-1.0 ) AND ( Apache-2.0 OR MIT ) AND ( MIT OR Zlib OR Apache-2.0 ) AND ( Unlicense OR MIT ) AND ( Zlib OR Apache-2.0 OR MIT ) AND Apache-2.0 AND BSD-2-Clause AND BSD-3-Clause AND CC0-1.0 AND MIT AND MPL-2.0 AND MPL-2.0+
|
||||
@ -28,9 +28,8 @@ Group: Development/Languages/Rust
|
||||
URL: https://github.com/RustSec/cargo-audit
|
||||
Source0: %{workspace_name}-%{version}.tar.zst
|
||||
Source1: vendor.tar.zst
|
||||
Source2: cargo_config
|
||||
Patch0: 0001-Skip-warnings.patch
|
||||
|
||||
BuildRequires: cargo
|
||||
BuildRequires: cargo-packaging
|
||||
BuildRequires: pkgconfig(openssl)
|
||||
ExclusiveArch: %{rust_tier1_arches}
|
||||
@ -41,8 +40,7 @@ Audit Cargo.lock files for crates with security vulnerabilities reported to the
|
||||
%prep
|
||||
%setup -q -n %{workspace_name}-%{version}
|
||||
%setup -qa1 -n %{workspace_name}-%{version}
|
||||
mkdir -p .cargo
|
||||
cp %{SOURCE2} .cargo/config
|
||||
%autopatch -p 1
|
||||
|
||||
%build
|
||||
%{cargo_build}
|
||||
|
||||
@ -1,5 +0,0 @@
|
||||
[source.crates-io]
|
||||
replace-with = "vendored-sources"
|
||||
|
||||
[source.vendored-sources]
|
||||
directory = "vendor"
|
||||
@ -1,3 +0,0 @@
|
||||
version https://git-lfs.github.com/spec/v1
|
||||
oid sha256:b2aa891ed289a8b0ec3165b52722186d5898a5316e022a8da22476b0cf2d2c76
|
||||
size 656733
|
||||
3
rustsec-0.21.0~git0.78f9859.tar.zst
Normal file
3
rustsec-0.21.0~git0.78f9859.tar.zst
Normal file
@ -0,0 +1,3 @@
|
||||
version https://git-lfs.github.com/spec/v1
|
||||
oid sha256:b6b63ddf92f0be13845b839ca3e2c697da9d1c05a9a1cd3869186269e67f93ab
|
||||
size 701261
|
||||
@ -1,3 +1,3 @@
|
||||
version https://git-lfs.github.com/spec/v1
|
||||
oid sha256:f59ca58cb89d414d147ff2caba6b985b0f8edf8be874648dbd71ac64614e4965
|
||||
size 31573688
|
||||
oid sha256:430cb12fc7655fe88b8dc69ffcdc94563dd1fa94bce3343b2e2020c1c9a1e499
|
||||
size 31522507
|
||||
|
||||
Loading…
Reference in New Issue
Block a user