File tree Expand file tree Collapse file tree
Expand file tree Collapse file tree Original file line number Diff line number Diff line change 1+ # Temporary Cargo audit exceptions for upstream TurtleTerm/WezTerm dependency advisories.
2+ #
3+ # These exceptions are intentionally scoped to the advisories observed in
4+ # SourceOS-Linux/TurtleTerm#16. They should be removed when the dependency graph
5+ # is upgraded and `cargo audit` passes without ignores.
6+
7+ [advisories ]
8+ ignore = [
9+ " RUSTSEC-2026-0007" # bytes < 1.11.1: integer overflow in BytesMut::reserve
10+ " RUSTSEC-2026-0104" # rustls-webpki < 0.103.13: CRL parsing panic
11+ " RUSTSEC-2026-0049" # rustls-webpki < 0.103.10: CRL Distribution Point matching
12+ " RUSTSEC-2026-0098" # rustls-webpki < 0.103.12: URI name constraints issue
13+ " RUSTSEC-2026-0099" # rustls-webpki < 0.103.12: wildcard name constraints issue
14+ " RUSTSEC-2026-0068" # tar < 0.4.45: PAX size header handling
15+ " RUSTSEC-2026-0067" # tar < 0.4.45: unpack_in symlink chmod behavior
16+ " RUSTSEC-2026-0009" # time < 0.3.47: stack exhaustion DoS
17+ ]
You can’t perform that action at this time.
0 commit comments