Skip to content

Commit ef61422

Browse files
Document the RustSec audit exception
1 parent b8e6696 commit ef61422

1 file changed

Lines changed: 3 additions & 1 deletion

File tree

AGENTS.md

Lines changed: 3 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -68,7 +68,7 @@ Run the relevant subset and explain any skipped command:
6868
cargo fmt --manifest-path rust/iscy-backend/Cargo.toml -- --check
6969
cargo clippy --locked --manifest-path rust/iscy-backend/Cargo.toml --all-targets -- -D warnings
7070
cargo test --locked --manifest-path rust/iscy-backend/Cargo.toml
71-
cargo audit --file rust/iscy-backend/Cargo.lock
71+
cargo audit --file rust/iscy-backend/Cargo.lock --ignore RUSTSEC-2023-0071
7272
cargo deny --manifest-path rust/iscy-backend/Cargo.toml check advisories licenses sources
7373
make rust-smoke
7474
make rust-restore-smoke
@@ -78,6 +78,8 @@ docker compose --env-file .env -f docker-compose.yml -f docker-compose.prod.yml
7878
docker build --file rust/iscy-backend/Dockerfile rust/iscy-backend
7979
```
8080

81+
`RUSTSEC-2023-0071` is ignored only because `rsa` is present in the lockfile through the disabled optional `sqlx-mysql` dependency path and is not reachable from any ISCY target. Re-evaluate and remove the exception if dependency features change.
82+
8183
Changes to authorization, tenant scoping, evidence, webhooks, imports, backup/restore, or deployment defaults require focused negative tests in addition to the general suite.
8284

8385
## Pull-request expectations

0 commit comments

Comments
 (0)