99# The values provided in this template are the default values that will be used
1010# when any section or field is not specified in your own configuration
1111
12+ [graph ]
1213# If 1 or more target triples (and optionally, target_features) are specified,
1314# only the specified targets will be checked when running `cargo deny check`.
1415# This means, if a particular package is only ever used as a target specific
@@ -27,16 +28,10 @@ targets = []
2728db-path = " ~/.cargo/advisory-db"
2829# The url(s) of the advisory databases to use
2930db-urls = [" https://github.com/rustsec/advisory-db" ]
30- # The lint level for security vulnerabilities
31- vulnerability = " deny"
32- # The lint level for unmaintained crates
33- unmaintained = " warn"
31+ # Whether unmaintained advisories should fail the check
32+ unmaintained = " none"
3433# The lint level for crates that have been yanked from their source registry
3534yanked = " warn"
36- # The lint level for crates with security notices. Note that as of
37- # 2019-12-17 there are no security notice advisories in
38- # https://github.com/rustsec/advisory-db
39- notice = " warn"
4035# A list of advisory IDs to ignore. Note that ignored advisories will still
4136# output a note when they are encountered.
4237ignore = [
@@ -58,8 +53,6 @@ ignore = [
5853# More documentation for the licenses section can be found here:
5954# https://embarkstudios.github.io/cargo-deny/checks/licenses/cfg.html
6055[licenses ]
61- # The lint level for crates which do not have a detectable license
62- unlicensed = " deny"
6356# List of explictly allowed licenses
6457# See https://spdx.org/licenses/ for list of possible licenses
6558# [possible values: any SPDX 3.11 short identifier (+ optional exception)].
@@ -75,24 +68,6 @@ allow = [
7568 " Unicode-DFS-2016" ,
7669 " Unicode-3.0" ,
7770]
78- # List of explictly disallowed licenses
79- # See https://spdx.org/licenses/ for list of possible licenses
80- # [possible values: any SPDX 3.11 short identifier (+ optional exception)].
81- deny = []
82- # Lint level for licenses considered copyleft
83- copyleft = " deny"
84- # Blanket approval or denial for OSI-approved or FSF Free/Libre licenses
85- # * both - The license will be approved if it is both OSI-approved *AND* FSF
86- # * either - The license will be approved if it is either OSI-approved *OR* FSF
87- # * osi-only - The license will be approved if is OSI-approved *AND NOT* FSF
88- # * fsf-only - The license will be approved if is FSF *AND NOT* OSI-approved
89- # * neither - This predicate is ignored and the default lint level is used
90- allow-osi-fsf-free = " neither"
91- # Lint level used when no other predicates are matched
92- # 1. License isn't in the allow or deny lists
93- # 2. License isn't copyleft
94- # 3. License isn't OSI/FSF, or allow-osi-fsf-free = "neither"
95- default = " deny"
9671# The confidence threshold for detecting a license from license text.
9772# The higher the value, the more closely the license text must be to the
9873# canonical license text of a valid SPDX license file.
0 commit comments