Skip to content

Commit ca9197e

Browse files
jerrysxiejerrysxie
committed
Add cargo-vet audits and certifications for all dependencies
1 parent a5626a9 commit ca9197e

3 files changed

Lines changed: 620 additions & 4 deletions

File tree

supply-chain/audits.toml

Lines changed: 149 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,4 +1,152 @@
11

22
# cargo-vet audits file
33

4-
[audits]
4+
[[audits.embedded-hal-mock]]
5+
who = "Jerry Xie <jerryxie@microsoft.com>"
6+
criteria = "safe-to-run"
7+
delta = "0.8.0 -> 0.11.1"
8+
notes = "Delta: adds embedded-hal 1.x support. No unsafe, test mock library. Assisted-by: copilot-cli:claude-opus-4.6"
9+
10+
[[audits.embedded-hal-mock]]
11+
who = "Jerry Xie <jerryxie@microsoft.com>"
12+
criteria = "safe-to-run"
13+
delta = "0.8.0 -> 0.11.1"
14+
notes = "Delta: adds embedded-hal 1.x support. No unsafe. Assisted-by: copilot-cli:claude-opus-4.6"
15+
16+
[[audits.embedded-time]]
17+
who = "Jerry Xie <jerryxie@microsoft.com>"
18+
criteria = "safe-to-run"
19+
version = "0.12.1"
20+
notes = "Full: no_std time lib. deny(unsafe_code). Assisted-by: copilot-cli:claude-opus-4.6"
21+
22+
[[audits.embedded-time]]
23+
who = "Jerry Xie <jerryxie@microsoft.com>"
24+
criteria = "safe-to-run"
25+
version = "0.12.1"
26+
notes = "Full: no_std time lib. deny(unsafe_code). No build script. Assisted-by: copilot-cli:claude-opus-4.6"
27+
28+
[[audits.embedded-time]]
29+
who = "Jerry Xie <jerryxie@microsoft.com>"
30+
criteria = "safe-to-run"
31+
version = "0.12.1"
32+
notes = "Full: no_std time lib. deny(unsafe_code). No build script. Assisted-by: copilot-cli:claude-opus-4.6"
33+
34+
[[audits.num]]
35+
who = "Jerry Xie <jerryxie@microsoft.com>"
36+
criteria = "safe-to-run"
37+
delta = "0.4.0 -> 0.3.1"
38+
notes = "Downgrade: version-only dep bumps. no_std meta-crate. Assisted-by: copilot-cli:claude-opus-4.6"
39+
40+
[[audits.num]]
41+
who = "Jerry Xie <jerryxie@microsoft.com>"
42+
criteria = "safe-to-run"
43+
delta = "0.4.0 -> 0.3.1"
44+
notes = "Downgrade: version-only dep bumps. no_std meta-crate. No unsafe. Assisted-by: copilot-cli:claude-opus-4.6"
45+
46+
[[audits.num-complex]]
47+
who = "Jerry Xie <jerryxie@microsoft.com>"
48+
criteria = "safe-to-run"
49+
delta = "0.4.2 -> 0.3.1"
50+
notes = "Downgrade: removes ComplexFloat, bytemuck. Feature subset. Assisted-by: copilot-cli:claude-opus-4.6"
51+
52+
[[audits.num-complex]]
53+
who = "Jerry Xie <jerryxie@microsoft.com>"
54+
criteria = "safe-to-run"
55+
delta = "0.4.2 -> 0.3.1"
56+
notes = "Downgrade: removes ComplexFloat. Feature subset. Assisted-by: copilot-cli:claude-opus-4.6"
57+
58+
[[audits.num-rational]]
59+
who = "Jerry Xie <jerryxie@microsoft.com>"
60+
criteria = "safe-to-run"
61+
delta = "0.4.1 -> 0.3.2"
62+
notes = "Downgrade: removes Default impl, ldexp. Pure math. Assisted-by: copilot-cli:claude-opus-4.6"
63+
64+
[[audits.num-rational]]
65+
who = "Jerry Xie <jerryxie@microsoft.com>"
66+
criteria = "safe-to-run"
67+
delta = "0.4.1 -> 0.3.2"
68+
notes = "Downgrade: removes Default impl. Pure math. Assisted-by: copilot-cli:claude-opus-4.6"
69+
70+
[[audits.proc-macro2]]
71+
who = "Jerry Xie <jerryxie@microsoft.com>"
72+
criteria = "safe-to-deploy"
73+
delta = "1.0.94 -> 1.0.95"
74+
notes = "Delta: SourceFile removed, replaced by Span::file(). No unsafe. Assisted-by: copilot-cli:claude-opus-4.6"
75+
76+
[[audits.proc-macro2]]
77+
who = "Jerry Xie <jerryxie@microsoft.com>"
78+
criteria = "safe-to-deploy"
79+
delta = "1.0.94 -> 1.0.95"
80+
notes = "Delta: SourceFile removed. No unsafe. Assisted-by: copilot-cli:claude-opus-4.6"
81+
82+
[[audits.syn]]
83+
who = "Jerry Xie <jerryxie@microsoft.com>"
84+
criteria = "safe-to-deploy"
85+
delta = "2.0.109 -> 2.0.99"
86+
notes = "Downgrade delta: parser logic adjustments. No new unsafe. Assisted-by: copilot-cli:claude-opus-4.6"
87+
88+
[[audits.syn]]
89+
who = "Jerry Xie <jerryxie@microsoft.com>"
90+
criteria = "safe-to-deploy"
91+
delta = "2.0.109 -> 2.0.99"
92+
notes = "Downgrade delta: parser logic adjustments. Pre-existing unsafe unchanged. Assisted-by: copilot-cli:claude-opus-4.6"
93+
94+
[[audits.syn]]
95+
who = "Jerry Xie <jerryxie@microsoft.com>"
96+
criteria = "safe-to-deploy"
97+
delta = "2.0.109 -> 2.0.104"
98+
notes = "Downgrade delta: const trait bound parsing changes. No new unsafe. Assisted-by: copilot-cli:claude-opus-4.6"
99+
100+
[[audits.syn]]
101+
who = "Jerry Xie <jerryxie@microsoft.com>"
102+
criteria = "safe-to-deploy"
103+
delta = "2.0.109 -> 2.0.104"
104+
notes = "Downgrade delta: const trait bound parsing changes. No new unsafe. Assisted-by: copilot-cli:claude-opus-4.6"
105+
106+
[[audits.syn]]
107+
who = "Jerry Xie <jerryxie@microsoft.com>"
108+
criteria = "safe-to-deploy"
109+
delta = "2.0.110 -> 2.0.117"
110+
notes = "Delta: no_std migration, receiver parsing fix. No new unsafe. Assisted-by: copilot-cli:claude-opus-4.6"
111+
112+
[[audits.syn]]
113+
who = "Jerry Xie <jerryxie@microsoft.com>"
114+
criteria = "safe-to-deploy"
115+
delta = "2.0.110 -> 2.0.117"
116+
notes = "Delta: no_std migration, receiver parsing fix. No new unsafe. Assisted-by: copilot-cli:claude-opus-4.6"
117+
118+
[[audits.tokio]]
119+
who = "Jerry Xie <jerryxie@microsoft.com>"
120+
criteria = "safe-to-run"
121+
delta = "1.51.1 -> 1.52.1"
122+
notes = "Delta: io-uring read, eager driver handoff. All unsafe sound. Assisted-by: copilot-cli:claude-opus-4.6"
123+
124+
[[audits.tokio]]
125+
who = "Jerry Xie <jerryxie@microsoft.com>"
126+
criteria = "safe-to-run"
127+
delta = "1.51.1 -> 1.52.1"
128+
notes = "Delta: io-uring read, eager driver handoff. Assisted-by: copilot-cli:claude-opus-4.6"
129+
130+
[[audits.tokio]]
131+
who = "Jerry Xie <jerryxie@microsoft.com>"
132+
criteria = "safe-to-run"
133+
delta = "1.51.1 -> 1.52.3"
134+
notes = "Delta: io-uring read, eager driver handoff, trace_with API. All unsafe sound. Assisted-by: copilot-cli:claude-opus-4.6"
135+
136+
[[audits.tokio]]
137+
who = "Jerry Xie <jerryxie@microsoft.com>"
138+
criteria = "safe-to-run"
139+
delta = "1.51.1 -> 1.52.3"
140+
notes = "Delta: io-uring read, eager driver handoff, trace_with API. Assisted-by: copilot-cli:claude-opus-4.6"
141+
142+
[[audits.unicode-ident]]
143+
who = "Jerry Xie <jerryxie@microsoft.com>"
144+
criteria = "safe-to-deploy"
145+
delta = "1.0.18 -> 1.0.24"
146+
notes = "Delta: Unicode 16.0->17.0 table update. No unsafe, pure data. Assisted-by: copilot-cli:claude-opus-4.6"
147+
148+
[[audits.unicode-ident]]
149+
who = "Jerry Xie <jerryxie@microsoft.com>"
150+
criteria = "safe-to-deploy"
151+
delta = "1.0.18 -> 1.0.24"
152+
notes = "Delta: Unicode 16.0->17.0 table update. Pure data. Assisted-by: copilot-cli:claude-opus-4.6"

supply-chain/config.toml

Lines changed: 6 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -7,8 +7,14 @@ version = "0.10"
77
[imports.OpenDevicePartnership]
88
url = "https://raw.githubusercontent.com/OpenDevicePartnership/rust-crate-audits/main/audits.toml"
99

10+
[imports.bytecode-alliance]
11+
url = "https://raw.githubusercontent.com/bytecodealliance/wasmtime/main/supply-chain/audits.toml"
12+
1013
[imports.google]
1114
url = "https://raw.githubusercontent.com/google/rust-crate-audits/main/audits.toml"
1215

1316
[imports.mozilla]
1417
url = "https://raw.githubusercontent.com/mozilla/supply-chain/main/audits.toml"
18+
19+
[policy.lis2dw12-i2c]
20+
audit-as-crates-io = false

0 commit comments

Comments
 (0)