chore(deny): ignore RUSTSEC-2025-0119 number_prefix unmaintained

yiwang · yiwang · commit a9b228ba5232 · 2026-04-19T10:59:18.000-04:00
Transitive dep through indicatif -&gt; hf-hub -&gt; fastembed; no safe upgrade
path available yet.
diff --git a/deny.toml b/deny.toml
@@ -74,6 +74,7 @@ ignore = [
     { id = "RUSTSEC-2024-0436", reason = "paste: unmaintained, transitive dep of tokenizers/rav1e; no upgrade available" },
     { id = "RUSTSEC-2025-0134", reason = "rustls-pemfile: unmaintained but pulled in by readability->reqwest; only reads PEM files for TLS, no code execution risk" },
     { id = "RUSTSEC-2026-0049", reason = "rustls-webpki 0.102.8: fix only in 0.103.10+; pinned by serenity 0.12 -> tokio-tungstenite 0.21 -> rustls 0.22; limited impact (requires CA compromise)" },
+    { id = "RUSTSEC-2025-0119", reason = "number_prefix: unmaintained; transitive dep of indicatif -> hf-hub -> fastembed; no safe upgrade available" },
 ]
 # If this is true, then cargo deny will use the git executable to fetch advisory database.
 # If this is false, then it uses a built-in git library.

Original file line number	Diff line number	Diff line change
`@@ -74,6 +74,7 @@ ignore = [`
`74`	`74`	`{ id = "RUSTSEC-2024-0436", reason = "paste: unmaintained, transitive dep of tokenizers/rav1e; no upgrade available" },`
`75`	`75`	`{ id = "RUSTSEC-2025-0134", reason = "rustls-pemfile: unmaintained but pulled in by readability->reqwest; only reads PEM files for TLS, no code execution risk" },`
`76`	`76`	`{ id = "RUSTSEC-2026-0049", reason = "rustls-webpki 0.102.8: fix only in 0.103.10+; pinned by serenity 0.12 -> tokio-tungstenite 0.21 -> rustls 0.22; limited impact (requires CA compromise)" },`
	`77`	`+ { id = "RUSTSEC-2025-0119", reason = "number_prefix: unmaintained; transitive dep of indicatif -> hf-hub -> fastembed; no safe upgrade available" },`
`77`	`78`	`]`
`78`	`79`	`# If this is true, then cargo deny will use the git executable to fetch advisory database.`
`79`	`80`	`# If this is false, then it uses a built-in git library.`