• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1{{!--
2Copyright 2024 The Chromium Authors
3Use of this source code is governed by a BSD-style license that can be
4found in the LICENSE file.
5
6TODO(lukasza: https://github.com/mozilla/cargo-vet/issues/589): Reintroduce
7Chromium-specific comments if/when `cargo vet ...  --locked` stops complaining
8about them with: "A file in the store is not correctly formatted".  These
9should include the copyright comment above, but maybe more importantly they
10should include:
11    # @generated by tools/crates/gnrt vendor. Do not edit.
12--}}
13
14# cargo-vet config file
15default-criteria = "safe-to-run"
16
17[cargo-vet]
18version = "0.9"
19
20[imports.chromeos]
21url = "https://chromium.googlesource.com/chromiumos/third_party/rust_crates/+/refs/heads/main/cargo-vet/audits.toml?format=TEXT"
22
23[imports.chromeos.criteria-map]
24crypto-safe = "crypto-safe"
25does-not-implement-crypto = "does-not-implement-crypto"
26ub-risk-0 = "ub-risk-0"
27ub-risk-1 = "ub-risk-1"
28ub-risk-2 = "ub-risk-2"
29ub-risk-3 = "ub-risk-3"
30ub-risk-4 = "ub-risk-4"
31
32[imports.fuchsia]
33url = "https://fuchsia.googlesource.com/fuchsia/+/refs/heads/main/third_party/rust_crates/supply-chain/audits.toml?format=TEXT"
34
35[imports.fuchsia.criteria-map]
36crypto-safe = "crypto-safe"
37does-not-implement-crypto = "does-not-implement-crypto"
38ub-risk-0 = "ub-risk-0"
39ub-risk-1 = "ub-risk-1"
40ub-risk-2 = "ub-risk-2"
41ub-risk-3 = "ub-risk-3"
42ub-risk-4 = "ub-risk-4"
43
44[imports.google]
45url = "https://raw.githubusercontent.com/google/rust-crate-audits/main/manual-sources/google3-audits.toml"
46
47[imports.google.criteria-map]
48crypto-safe = "crypto-safe"
49does-not-implement-crypto = "does-not-implement-crypto"
50ub-risk-0 = "ub-risk-0"
51ub-risk-1 = "ub-risk-1"
52ub-risk-2 = "ub-risk-2"
53ub-risk-3 = "ub-risk-3"
54ub-risk-4 = "ub-risk-4"
55{{#each this.policies}}
56
57[policy."{{crate_name}}"]
58criteria = [{{#each criteria}}{{#if @first}}{{else}}, {{/if}}"{{this}}"{{/each}}]
59{{/each}}
60
61[[exemptions.cxx]]
62version = "1.0.130"
63criteria = ["safe-to-deploy", "crypto-safe", "ub-risk-2"]
64notes = """
65Grandparented-in when setting up `cargo vet` in Jan 2024
66
67Delta audit of 1.0.110 -> 1.0.115 has been done in Jan 2024, but because of a
68lack of a fully-audited baseline nothing was recorded in audits.toml
69
70Exemption updated to 1.0.116 in Feb 2024.
71Exemption updated to 1.0.117 in Feb 2024.
72Exemption updated to 1.0.122 in May 2024.
73Exemption updated to 1.0.123 in June 2024.
74Exemption updated to 1.0.124 in June 2024.
75Exemption updated to 1.0.126 in August 2024.
76Exemption updated to 1.0.128 in September 2024.
77Exemption updated to 1.0.129 in October 2024.
78Exemption updated to 1.0.130 in November 2024.
79"""
80
81[[exemptions.cxxbridge-macro]]
82version = "1.0.130"
83criteria = ["safe-to-deploy", "crypto-safe", "ub-risk-2"]
84notes = """
85Grandparented-in when setting up `cargo vet` in Jan 2024
86
87Delta audit of 1.0.110 -> 1.0.115 has been done in Jan 2024, but because of a
88lack of a fully-audited baseline nothing was recorded in audits.toml
89
90Exemption updated to 1.0.116 in Feb 2024.
91Exemption updated to 1.0.117 in Feb 2024.
92Exemption updated to 1.0.122 in May 2024.
93Exemption updated to 1.0.123 in June 2024.
94Exemption updated to 1.0.124 in June 2024.
95Exemption updated to 1.0.126 in August 2024.
96Exemption updated to 1.0.128 in September 2024.
97Exemption updated to 1.0.129 in October 2024.
98Exemption updated to 1.0.130 in October 2024.
99"""
100
101[[exemptions.memchr]]
102version = "2.7.4"
103criteria = ["safe-to-deploy", "ub-risk-2"]
104notes = """
105Grandparented-in when setting up `cargo vet` in Jan 2024
106
107Bumped up the exemption to 2.7.1 when updating the crates.  When removing
108the exemptions in the future we may want to look at the notes in cl/568617493
109but even with those notes a review of the whole crate (rather than just the
110delta) may be needed for `ub-risk-2`.
111
112Bumped up the exemption to 2.7.2 in April 2024.  The delta was relatively small
113and straightfoward (focusing on `target_feature = \"simd128\"`).  Note that an
114unfinished audit of 2.7.1 has been started at https://crrev.com/c/5367005 and
115I hear that Fuchsia has also been working on reviewing 2.7.1 (so we should check
116later if maybe we can just import their audit).
117
118Bumped up the exemption to 2.7.4 in June 2024, with a small and benign delta.
119"""
120
121[[exemptions.rand_core]]
122version = "0.6.4"
123criteria = "crypto-safe"
124notes = """
125Grandparented-in when setting up `cargo vet` in Jan 2024
126
127TODO(b/341950532): Remove this exemption.
128"""
129
130[[exemptions.ryu]]
131version = "1.0.18"
132criteria = ["safe-to-deploy", "crypto-safe", "ub-risk-2"]
133notes = """
134Grandparented-in when setting up `cargo vet` in Jan 2024.
135
136Delta audit of 1.0.15 -> 1.0.16 has been done in Jan 2024, but because of a
137lack of a fully-audited baseline nothing was recorded in audits.toml
138
139Exemption updated to 1.0.17 in Feb 2024.
140Exemption updated to 1.0.18 in May 2024.
141"""
142
143[[exemptions.syn]]
144version = "2.0.87"
145criteria = ["safe-to-deploy", "ub-risk-2"]
146notes = """
147Grandparented-in when setting up `cargo vet` in Jan 2024
148
149Delta audit of 2.0.39 -> syn-2.0.48 has been done in Jan 2024 (including an
150`unsafe` review done at https://crrev.com/c/5178771), but because of a lack of
151a fully-audited baseline nothing was recorded in audits.toml
152
153Exemption updated to 2.0.50 when updating the crate in Feb 2024.
154Exemption updated to 2.0.52 when updating the crate in Mar 2024.
155Exemption updated to 2.0.53 when updating the crate.
156Exemption updated to 2.0.55 when updating the crate, with notes:
157 - Mostly clippy, test changes - no changed unsafe.
158Exemption updated to 2.0.59 when updating the crate in Apr 2024.
159Exemption updated to 2.0.60 when updating the crate.
160Exemption updated to 2.0.63 when updating the crate in May 2024.
161Exemption updated to 2.0.65 when updating the crate in May 2024.
162Exemption updated to 2.0.66 when updating the crate in May 2024.
163Exemption updated to 2.0.68 when updating the crate in June 2024.
164Exemption updated to 2.0.69 when updating the crate in July 2024.
165Exemption updated to 2.0.71 when updating the crate in July 2024.
166Exemption updated to 2.0.72 when updating the crate in July 2024.
167Exemption updated to 2.0.74 when updating the crate in August 2024.
168Exemption updated to 2.0.76 when updating the crate in August 2024.
169Exemption updated to 2.0.77 when updating the crate in September 2024.
170Exemption updated to 2.0.79 when updating the crate in October 2024.
171Exemption updated to 2.0.85 when updating the crate in October 2024.
172Exemption updated to 2.0.87 when updating the crate in November 2024.
173"""
174
175[[exemptions.zerocopy]]
176version = "0.7.35"
177criteria = ["safe-to-deploy", "crypto-safe", "ub-risk-2"]
178notes = """
179Requires unsafe review audit. Authored in Google and audit should come from there as well.
180
181https://crbug.com/366411886
182"""
183
184[[exemptions.zerocopy-derive]]
185version = "0.7.35"
186criteria = ["safe-to-deploy", "crypto-safe", "ub-risk-2"]
187notes = """
188Requires unsafe review audit. Authored in Google and audit should come from there as well.
189"""
190