Skip to content

Commit 9cebabd

Browse files
lauraltandreeaflorescu
authored andcommitted
ignore vulnerability for serde_cbor
serde_cbor is an unmaintained dependency used by criterion. Because criterion is only used in benchmarks, we can ignore for now this vulnerability. Signed-off-by: Laura Loghin <lauralg@amazon.com>
1 parent b60d35f commit 9cebabd

File tree

1 file changed

+6
-0
lines changed

1 file changed

+6
-0
lines changed

.cargo/audit.toml

Lines changed: 6 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,6 @@
1+
[advisories]
2+
# serde_cbor is an unmaintained dependency introduced by criterion.
3+
# We are using criterion only for benchmarks, so we can ignore
4+
# this vulnerability until criterion is fixing this.
5+
# See https://github.com/bheisler/criterion.rs/issues/534.
6+
ignore = [ "RUSTSEC-2021-0127" ]

0 commit comments

Comments
 (0)