supply-chain/config.toml

   1
   2 # cargo-vet config file
   3
   4 [cargo-vet]
   5 version = "0.8"
   6
   7 [imports.bytecode-alliance]
   8 url = "https://raw.githubusercontent.com/bytecodealliance/wasmtime/main/supply-chain/audits.toml"
   9
  10 [imports.embark-studios]
  11 url = "https://raw.githubusercontent.com/EmbarkStudios/rust-ecosystem/main/audits.toml"
  12
  13 [imports.google]
  14 url = "https://raw.githubusercontent.com/google/supply-chain/main/audits.toml"
  15
  16 [imports.isrg]
  17 url = "https://raw.githubusercontent.com/divviup/libprio-rs/main/supply-chain/audits.toml"
  18
  19 [imports.mozilla]
  20 url = "https://raw.githubusercontent.com/mozilla/supply-chain/main/audits.toml"
  21
  22 [policy.autocfg]
  23 audit-as-crates-io = true
  24 notes = "This is the upstream code plus a few local fixes, see bug 1685697."
  25
  26 [policy.chardetng]
  27 audit-as-crates-io = true
  28 notes = "This is a crate Henri wrote which is also published. We should probably update Firefox to tip and certify that."
  29
  30 [policy.chardetng_c]
  31 audit-as-crates-io = true
  32 notes = "This is a crate Henri wrote which is also published. We should probably update Firefox to tip and certify that."
  33
  34 [policy.coremidi]
  35 audit-as-crates-io = true
  36 notes = "This is a pinned version of the upstream code, presumably to get a fix that hadn't been released yet. We should consider switching to the latest official release."
  37
  38 [policy.cose]
  39 audit-as-crates-io = true
  40 notes = "This is upstream plus a warning fix from bug 1823866."
  41
  42 [policy.firefox-on-glean]
  43 audit-as-crates-io = false
  44 notes = "The crates.io version of this is just a placeholder to allow public crates to depend on firefox-on-glean."
  45
  46 [policy.geckodriver]
  47 audit-as-crates-io = false
  48 criteria = "safe-to-run"
  49 notes = "This is a first-party crate which is also published to crates.io. We certify audits for this crate as part of the documented release process, but that step happens after the version bump lands on central so we don't enforce it here. It's also used only for automation, so its subtree can be safe-to-run."
  50
  51 [policy.gkrust-gtest]
  52 criteria = "safe-to-run"
  53 notes = "Used for testing."
  54
  55 [policy.gkrust-shared]
  56 dependency-criteria = { tokio-reactor = [], tokio-threadpool = [] }
  57 notes = "The dependencies on tokio-reactor and tokio-threadpools are just a hack to pin the version used by audioipc-{client,server}. Suppress vetting on those for the same reasons behind the policy entries."
  58
  59 [policy.gluesmith]
  60 criteria = "safe-to-run"
  61 notes = "Used for fuzzing."
  62
  63 [policy.http3server]
  64 criteria = "safe-to-run"
  65 notes = "Used for testing."
  66
  67 [policy.l10nregistry]
  68 dependency-criteria = { fluent-testing = "safe-to-run", tokio = "safe-to-run" }
  69 notes = "This crate has two testing-only dependencies which are specified as regular-but-optional rather than a dev-dependencies, because they need to be available to both benchmarks and integration tests."
  70
  71 [policy.libudev-sys]
  72 audit-as-crates-io = false
  73 notes = "This override is an api-compatible fork with an orthogonal implementation."
  74
  75 [policy.malloc_size_of_derive]
  76 audit-as-crates-io = false
  77 notes = "This was originally servo code which Bobby Holley put on crates.io some years ago and that was moved in-tree as first-party code later on."
  78
  79 [policy.marionette]
  80 audit-as-crates-io = false
  81 notes = "This is a first-party crate which is also published to crates.io. We certify audits for this crate as part of the documented release process, but that step happens after the version bump lands on central so we don't enforce it here."
  82
  83 [policy.metal]
  84 audit-as-crates-io = false
  85
  86 [policy.midir]
  87 audit-as-crates-io = true
  88 notes = "This is a pinned version of the upstream code, presumably to get a fix that hadn't been released yet. We should consider switching to the latest official release."
  89
  90 [policy."minidump-common:0.17.0@git:87a29fba5e19cfae5ebf73a57ba31504a3872545"]
  91 audit-as-crates-io = true
  92 notes = "Unreleased upstream."
  93
  94 [policy.minidump-writer]
  95 audit-as-crates-io = true
  96 notes = "Unreleased upstream."
  97
  98 [policy."mio:0.6.23"]
  99 audit-as-crates-io = true
 100 notes = "Version 0.6.23 is a local fork of upstream which just twiddles some dependencies."
 101
 102 [policy.mozbuild]
 103 audit-as-crates-io = false
 104 notes = "The crates.io version of this is just a placeholder to allow public crates to depend on mozbuild."
 105
 106 [policy.mozdevice]
 107 audit-as-crates-io = false
 108 notes = "This is a first-party crate which is also published to crates.io. We certify audits for this crate as part of the documented release process, but that step happens after the version bump lands on central so we don't enforce it here."
 109
 110 [policy.mozglue-static]
 111 dependency-criteria = { rustc_version = "safe-to-run" }
 112 notes = "The rustc_version dependency is only used in the build script, and does not generate any runtime code"
 113
 114 [policy.mozilla-central-workspace-hack]
 115 audit-as-crates-io = false
 116 criteria = "safe-to-run"
 117 notes = "This is a first-party crate which is also published to crates.io as a convenience for other in-tree crates that depend on it and are published as well. The dependencies from this crate are dependencies of other crates that will get the right criteria through them, but using safe-to-deploy for this one would be too broad."
 118
 119 [policy.mozprofile]
 120 audit-as-crates-io = false
 121 notes = "This is a first-party crate which is also published to crates.io. We certify audits for this crate as part of the documented release process, but that step happens after the version bump lands on central so we don't enforce it here."
 122
 123 [policy.mozrunner]
 124 audit-as-crates-io = false
 125 notes = "This is a first-party crate which is also published to crates.io. We certify audits for this crate as part of the documented release process, but that step happens after the version bump lands on central so we don't enforce it here."
 126
 127 [policy.mozversion]
 128 audit-as-crates-io = false
 129 notes = "This is a first-party crate which is also published to crates.io. We certify audits for this crate as part of the documented release process, but that step happens after the version bump lands on central so we don't enforce it here."
 130
 131 [policy.mp4parse]
 132 audit-as-crates-io = false
 133
 134 [policy.mp4parse_capi]
 135 audit-as-crates-io = false
 136
 137 [policy.naga]
 138 audit-as-crates-io = true
 139 notes = "wgpu-core pins this crate."
 140
 141 [policy.packed_simd_2]
 142 audit-as-crates-io = true
 143 notes = "Based on upstream, see bug 1719674."
 144
 145 [policy.peek-poke]
 146 audit-as-crates-io = false
 147
 148 [policy.peek-poke-derive]
 149 audit-as-crates-io = false
 150
 151 [policy.prost-derive]
 152 audit-as-crates-io = true
 153 notes = "Fork of prost-derive with support for syn 2"
 154
 155 [policy.pulse]
 156 audit-as-crates-io = false
 157 notes = "This is a first-party crate which is entirely unrelated to the crates.io package of the same name."
 158
 159 [policy.qcms]
 160 audit-as-crates-io = true
 161 notes = "This is a first-party crate which is also published to crates.io, but we should publish audits for it for the benefit of the ecosystem."
 162
 163 [policy.rure]
 164 audit-as-crates-io = true
 165 notes = "Identical to upstream, but with cdylib and staticlib targets disabled to avoid unnecessary build artifacts and linker errors."
 166
 167 [policy.selectors]
 168 audit-as-crates-io = true
 169 notes = "This is a first-party crate which is also published to crates.io, but we should publish audits for it for the benefit of the ecosystem."
 170
 171 [policy.servo_arc]
 172 audit-as-crates-io = true
 173 notes = "This is a first-party crate which is also published to crates.io, but we should publish audits for it for the benefit of the ecosystem."
 174
 175 [policy.smoosh]
 176 criteria = "safe-to-run"
 177 notes = "We're not shipping this and have no plans to ship it."
 178
 179 [policy.storage]
 180 audit-as-crates-io = false
 181 notes = "This is a first-party crate which is entirely unrelated to the crates.io package of the same name."
 182
 183 [policy.tabs]
 184 audit-as-crates-io = false
 185 notes = "This is a first-party crate, maintained by the appservices team, which is entirely unrelated to the crates.io package of the same name."
 186
 187 [policy.viaduct]
 188 audit-as-crates-io = false
 189 notes = "This is a first-party crate, maintained by the appservices team, which is entirely unrelated to the crates.io package of the same name."
 190
 191 [policy.warp]
 192 audit-as-crates-io = true
 193 notes = "This is a third-party crate, with an extra patch."
 194
 195 [policy.webdriver]
 196 audit-as-crates-io = false
 197 criteria = "safe-to-run"
 198 notes = "This is a first-party crate which is also published to crates.io. We certify audits for this crate as part of the documented release process, but that step happens after the version bump lands on central so we don't enforce it here. It's also used only for automation, so its subtree can be safe-to-run."
 199
 200 [policy.webrender]
 201 audit-as-crates-io = false
 202
 203 [policy.webrender_api]
 204 audit-as-crates-io = false
 205
 206 [policy.webrender_build]
 207 audit-as-crates-io = false
 208
 209 [policy.wgpu-core]
 210 audit-as-crates-io = true
 211 notes = "Upstream project which we pin."
 212
 213 [policy.wgpu-hal]
 214 audit-as-crates-io = true
 215 notes = "Upstream project which we pin."
 216
 217 [policy.wgpu-types]
 218 audit-as-crates-io = true
 219 notes = "Upstream project which we pin."
 220
 221 [policy.wr_malloc_size_of]
 222 audit-as-crates-io = false
 223
 224 [[exemptions.ahash]]
 225 version = "0.7.6"
 226 criteria = "safe-to-deploy"
 227
 228 [[exemptions.alsa]]
 229 version = "0.4.3"
 230 criteria = "safe-to-deploy"
 231
 232 [[exemptions.alsa-sys]]
 233 version = "0.3.1"
 234 criteria = "safe-to-deploy"
 235
 236 [[exemptions.android_log-sys]]
 237 version = "0.2.0"
 238 criteria = "safe-to-deploy"
 239
 240 [[exemptions.askama_derive]]
 241 version = "0.11.2"
 242 criteria = "safe-to-deploy"
 243
 244 [[exemptions.askama_escape]]
 245 version = "0.10.3"
 246 criteria = "safe-to-deploy"
 247
 248 [[exemptions.async-task]]
 249 version = "4.0.3"
 250 criteria = "safe-to-deploy"
 251
 252 [[exemptions.bincode]]
 253 version = "1.3.3"
 254 criteria = "safe-to-deploy"
 255
 256 [[exemptions.bitflags]]
 257 version = "1.3.2"
 258 criteria = "safe-to-deploy"
 259
 260 [[exemptions.bitreader]]
 261 version = "0.3.6"
 262 criteria = "safe-to-deploy"
 263
 264 [[exemptions.block]]
 265 version = "0.1.6"
 266 criteria = "safe-to-deploy"
 267
 268 [[exemptions.cache-padded]]
 269 version = "1.2.0"
 270 criteria = "safe-to-deploy"
 271
 272 [[exemptions.camino]]
 273 version = "1.0.9"
 274 criteria = "safe-to-deploy"
 275
 276 [[exemptions.chrono]]
 277 version = "0.4.19"
 278 criteria = "safe-to-deploy"
 279
 280 [[exemptions.chunky-vec]]
 281 version = "0.1.0"
 282 criteria = "safe-to-deploy"
 283
 284 [[exemptions.clang-sys]]
 285 version = "1.3.3"
 286 criteria = "safe-to-deploy"
 287
 288 [[exemptions.cookie]]
 289 version = "0.16.0"
 290 criteria = "safe-to-run"
 291
 292 [[exemptions.coreaudio-sys]]
 293 version = "0.2.10"
 294 criteria = "safe-to-deploy"
 295
 296 [[exemptions.coremidi]]
 297 version = "0.6.0@git:fc68464b5445caf111e41f643a2e69ccce0b4f83"
 298 criteria = "safe-to-deploy"
 299
 300 [[exemptions.coremidi-sys]]
 301 version = "3.1.0"
 302 criteria = "safe-to-deploy"
 303
 304 [[exemptions.cose]]
 305 version = "0.1.4"
 306 criteria = "safe-to-deploy"
 307
 308 [[exemptions.cose-c]]
 309 version = "0.1.5"
 310 criteria = "safe-to-deploy"
 311
 312 [[exemptions.cpufeatures]]
 313 version = "0.2.2"
 314 criteria = "safe-to-deploy"
 315
 316 [[exemptions.crc32fast]]
 317 version = "1.3.2"
 318 criteria = "safe-to-deploy"
 319
 320 [[exemptions.crossbeam-channel]]
 321 version = "0.5.4"
 322 criteria = "safe-to-deploy"
 323
 324 [[exemptions.crossbeam-deque]]
 325 version = "0.8.1"
 326 criteria = "safe-to-deploy"
 327
 328 [[exemptions.crossbeam-epoch]]
 329 version = "0.9.8"
 330 criteria = "safe-to-deploy"
 331
 332 [[exemptions.crossbeam-utils]]
 333 version = "0.8.8"
 334 criteria = "safe-to-deploy"
 335
 336 [[exemptions.d3d12]]
 337 version = "0.4.1"
 338 criteria = "safe-to-deploy"
 339
 340 [[exemptions.darling]]
 341 version = "0.13.4"
 342 criteria = "safe-to-deploy"
 343
 344 [[exemptions.darling_core]]
 345 version = "0.13.4"
 346 criteria = "safe-to-deploy"
 347
 348 [[exemptions.darling_macro]]
 349 version = "0.13.4"
 350 criteria = "safe-to-deploy"
 351
 352 [[exemptions.data-encoding]]
 353 version = "2.3.2"
 354 criteria = "safe-to-deploy"
 355
 356 [[exemptions.dbus]]
 357 version = "0.6.5"
 358 criteria = "safe-to-deploy"
 359
 360 [[exemptions.derive_more-impl]]
 361 version = "1.0.0-beta.2"
 362 criteria = "safe-to-deploy"
 363 notes = "The crate is new to version 1.0.x, and derived from older versions of derive_more. The differences against 0.99.17 have been audited, but cargo-vet cannot record this information."
 364
 365 [[exemptions.devd-rs]]
 366 version = "0.3.4"
 367 criteria = "safe-to-deploy"
 368
 369 [[exemptions.digest]]
 370 version = "0.10.3"
 371 criteria = "safe-to-deploy"
 372
 373 [[exemptions.dirs]]
 374 version = "4.0.0"
 375 criteria = "safe-to-deploy"
 376
 377 [[exemptions.dirs-sys]]
 378 version = "0.3.7"
 379 criteria = "safe-to-deploy"
 380
 381 [[exemptions.dns-parser]]
 382 version = "0.8.0"
 383 criteria = "safe-to-deploy"
 384
 385 [[exemptions.enumset]]
 386 version = "1.0.11"
 387 criteria = "safe-to-deploy"
 388
 389 [[exemptions.enumset_derive]]
 390 version = "0.6.0"
 391 criteria = "safe-to-deploy"
 392
 393 [[exemptions.env_logger]]
 394 version = "0.9.0"
 395 criteria = "safe-to-deploy"
 396
 397 [[exemptions.error-chain]]
 398 version = "0.12.4"
 399 criteria = "safe-to-deploy"
 400
 401 [[exemptions.fallible-iterator]]
 402 version = "0.2.0"
 403 criteria = "safe-to-deploy"
 404
 405 [[exemptions.fallible-streaming-iterator]]
 406 version = "0.1.9"
 407 criteria = "safe-to-deploy"
 408
 409 [[exemptions.fallible_collections]]
 410 version = "0.4.4"
 411 criteria = "safe-to-deploy"
 412
 413 [[exemptions.ffi-support]]
 414 version = "0.4.4"
 415 criteria = "safe-to-deploy"
 416
 417 [[exemptions.float-cmp]]
 418 version = "0.6.0"
 419 criteria = "safe-to-deploy"
 420
 421 [[exemptions.fs-err]]
 422 version = "2.7.0"
 423 criteria = "safe-to-deploy"
 424
 425 [[exemptions.fuchsia-zircon]]
 426 version = "0.3.3"
 427 criteria = "safe-to-run"
 428
 429 [[exemptions.fuchsia-zircon-sys]]
 430 version = "0.3.3"
 431 criteria = "safe-to-run"
 432
 433 [[exemptions.futures-macro]]
 434 version = "0.3.21"
 435 criteria = "safe-to-deploy"
 436
 437 [[exemptions.futures-task]]
 438 version = "0.3.21"
 439 criteria = "safe-to-deploy"
 440
 441 [[exemptions.futures-util]]
 442 version = "0.3.21"
 443 criteria = "safe-to-deploy"
 444
 445 [[exemptions.generic-array]]
 446 version = "0.14.5"
 447 criteria = "safe-to-deploy"
 448
 449 [[exemptions.getrandom]]
 450 version = "0.2.6"
 451 criteria = "safe-to-deploy"
 452
 453 [[exemptions.gl_generator]]
 454 version = "0.14.0"
 455 criteria = "safe-to-deploy"
 456
 457 [[exemptions.glsl]]
 458 version = "6.0.1"
 459 criteria = "safe-to-deploy"
 460
 461 [[exemptions.goblin]]
 462 version = "0.1.3"
 463 criteria = "safe-to-deploy"
 464
 465 [[exemptions.gpu-alloc]]
 466 version = "0.5.3"
 467 criteria = "safe-to-deploy"
 468
 469 [[exemptions.gpu-alloc-types]]
 470 version = "0.2.0"
 471 criteria = "safe-to-deploy"
 472
 473 [[exemptions.gpu-descriptor]]
 474 version = "0.2.2"
 475 criteria = "safe-to-deploy"
 476
 477 [[exemptions.gpu-descriptor-types]]
 478 version = "0.1.1"
 479 criteria = "safe-to-deploy"
 480
 481 [[exemptions.hashlink]]
 482 version = "0.7.0"
 483 criteria = "safe-to-deploy"
 484
 485 [[exemptions.hermit-abi]]
 486 version = "0.1.19"
 487 criteria = "safe-to-deploy"
 488
 489 [[exemptions.hexf-parse]]
 490 version = "0.2.1"
 491 criteria = "safe-to-deploy"
 492
 493 [[exemptions.instant]]
 494 version = "0.1.12"
 495 criteria = "safe-to-deploy"
 496
 497 [[exemptions.ioctl-sys]]
 498 version = "0.7.1"
 499 criteria = "safe-to-deploy"
 500
 501 [[exemptions.itertools]]
 502 version = "0.10.3"
 503 criteria = "safe-to-deploy"
 504
 505 [[exemptions.khronos-egl]]
 506 version = "4.1.0"
 507 criteria = "safe-to-deploy"
 508
 509 [[exemptions.khronos_api]]
 510 version = "3.1.0"
 511 criteria = "safe-to-deploy"
 512
 513 [[exemptions.lazycell]]
 514 version = "1.3.0"
 515 criteria = "safe-to-deploy"
 516
 517 [[exemptions.libdbus-sys]]
 518 version = "0.2.2"
 519 criteria = "safe-to-deploy"
 520
 521 [[exemptions.libloading]]
 522 version = "0.7.3"
 523 criteria = "safe-to-deploy"
 524
 525 [[exemptions.libsqlite3-sys]]
 526 version = "0.25.2"
 527 criteria = "safe-to-deploy"
 528 suggest = false
 529 notes = "The in-gecko feature that we enable makes only pre-built bindings used, and none of the embedded C code is built. The build script was audited and is not doing anything besides exposing those bindings"
 530
 531 [[exemptions.libudev]]
 532 version = "0.2.0"
 533 criteria = "safe-to-deploy"
 534
 535 [[exemptions.lmdb-rkv-sys]]
 536 version = "0.11.2"
 537 criteria = "safe-to-deploy"
 538 suggest = false
 539 notes = "This crate is forked from another crate and not developed in-house. Given that LMDB-backed RKV is going away, we will probably never bother auditing this"
 540
 541 [[exemptions.mach]]
 542 version = "0.3.2"
 543 criteria = "safe-to-deploy"
 544
 545 [[exemptions.memalloc]]
 546 version = "0.1.0"
 547 criteria = "safe-to-deploy"
 548
 549 [[exemptions.memmap2]]
 550 version = "0.5.4"
 551 criteria = "safe-to-deploy"
 552
 553 [[exemptions.memoffset]]
 554 version = "0.6.5"
 555 criteria = "safe-to-deploy"
 556
 557 [[exemptions.midir]]
 558 version = "0.7.0"
 559 criteria = "safe-to-deploy"
 560
 561 [[exemptions.mime_guess]]
 562 version = "2.0.4"
 563 criteria = "safe-to-deploy"
 564
 565 [[exemptions.minimal-lexical]]
 566 version = "0.2.1"
 567 criteria = "safe-to-deploy"
 568
 569 [[exemptions.miniz_oxide]]
 570 version = "0.5.3"
 571 criteria = "safe-to-deploy"
 572
 573 [[exemptions.mio]]
 574 version = "0.8.0"
 575 criteria = "safe-to-deploy"
 576
 577 [[exemptions.mio-extras]]
 578 version = "2.0.6"
 579 criteria = "safe-to-run"
 580
 581 [[exemptions.miow]]
 582 version = "0.3.7"
 583 criteria = "safe-to-deploy"
 584
 585 [[exemptions.murmurhash3]]
 586 version = "0.0.5"
 587 criteria = "safe-to-deploy"
 588
 589 [[exemptions.net2]]
 590 version = "0.2.37"
 591 criteria = "safe-to-run"
 592
 593 [[exemptions.nix]]
 594 version = "0.15.0"
 595 criteria = "safe-to-deploy"
 596
 597 [[exemptions.nom]]
 598 version = "7.1.1"
 599 criteria = "safe-to-deploy"
 600
 601 [[exemptions.ntapi]]
 602 version = "0.3.7"
 603 criteria = "safe-to-deploy"
 604
 605 [[exemptions.objc]]
 606 version = "0.2.7"
 607 criteria = "safe-to-deploy"
 608
 609 [[exemptions.objc_exception]]
 610 version = "0.1.2"
 611 criteria = "safe-to-deploy"
 612
 613 [[exemptions.object]]
 614 version = "0.28.4"
 615 criteria = "safe-to-deploy"
 616
 617 [[exemptions.once_cell]]
 618 version = "1.12.0"
 619 criteria = "safe-to-deploy"
 620
 621 [[exemptions.owning_ref]]
 622 version = "0.4.1"
 623 criteria = "safe-to-deploy"
 624
 625 [[exemptions.packed_simd_2]]
 626 version = "0.3.7"
 627 criteria = "safe-to-deploy"
 628
 629 [[exemptions.phf]]
 630 version = "0.10.1"
 631 criteria = "safe-to-deploy"
 632
 633 [[exemptions.phf_codegen]]
 634 version = "0.10.0"
 635 criteria = "safe-to-deploy"
 636
 637 [[exemptions.phf_generator]]
 638 version = "0.10.0"
 639 criteria = "safe-to-deploy"
 640
 641 [[exemptions.phf_macros]]
 642 version = "0.10.0"
 643 criteria = "safe-to-deploy"
 644
 645 [[exemptions.phf_shared]]
 646 version = "0.10.0"
 647 criteria = "safe-to-deploy"
 648
 649 [[exemptions.plain]]
 650 version = "0.2.3"
 651 criteria = "safe-to-deploy"
 652
 653 [[exemptions.plist]]
 654 version = "1.3.1"
 655 criteria = "safe-to-run"
 656
 657 [[exemptions.ppv-lite86]]
 658 version = "0.2.16"
 659 criteria = "safe-to-deploy"
 660
 661 [[exemptions.profiling]]
 662 version = "1.0.6"
 663 criteria = "safe-to-deploy"
 664
 665 [[exemptions.prost]]
 666 version = "0.8.0"
 667 criteria = "safe-to-deploy"
 668
 669 [[exemptions.prost-derive]]
 670 version = "0.8.0"
 671 criteria = "safe-to-deploy"
 672
 673 [[exemptions.qlog]]
 674 version = "0.4.0"
 675 criteria = "safe-to-deploy"
 676
 677 [[exemptions.quick-error]]
 678 version = "1.2.3"
 679 criteria = "safe-to-deploy"
 680
 681 [[exemptions.rand]]
 682 version = "0.8.5"
 683 criteria = "safe-to-deploy"
 684
 685 [[exemptions.rand_chacha]]
 686 version = "0.3.1"
 687 criteria = "safe-to-deploy"
 688
 689 [[exemptions.rand_core]]
 690 version = "0.6.3"
 691 criteria = "safe-to-deploy"
 692
 693 [[exemptions.remove_dir_all]]
 694 version = "0.5.3"
 695 criteria = "safe-to-deploy"
 696
 697 [[exemptions.replace_with]]
 698 version = "0.1.7"
 699 criteria = "safe-to-deploy"
 700
 701 [[exemptions.ringbuf]]
 702 version = "0.2.8"
 703 criteria = "safe-to-deploy"
 704
 705 [[exemptions.ron]]
 706 version = "0.7.0"
 707 criteria = "safe-to-deploy"
 708
 709 [[exemptions.runloop]]
 710 version = "0.1.0"
 711 criteria = "safe-to-deploy"
 712
 713 [[exemptions.rusqlite]]
 714 version = "0.27.0"
 715 criteria = "safe-to-deploy"
 716
 717 [[exemptions.rust-ini]]
 718 version = "0.10.3"
 719 criteria = "safe-to-deploy"
 720
 721 [[exemptions.rust_decimal]]
 722 version = "1.24.0"
 723 criteria = "safe-to-deploy"
 724
 725 [[exemptions.scroll]]
 726 version = "0.10.2"
 727 criteria = "safe-to-deploy"
 728
 729 [[exemptions.scroll_derive]]
 730 version = "0.10.5"
 731 criteria = "safe-to-deploy"
 732
 733 [[exemptions.self_cell]]
 734 version = "0.10.2"
 735 criteria = "safe-to-deploy"
 736
 737 [[exemptions.serde_with]]
 738 version = "1.14.0"
 739 criteria = "safe-to-deploy"
 740
 741 [[exemptions.serde_with_macros]]
 742 version = "1.5.2"
 743 criteria = "safe-to-deploy"
 744
 745 [[exemptions.sfv]]
 746 version = "0.9.2"
 747 criteria = "safe-to-deploy"
 748
 749 [[exemptions.sha2]]
 750 version = "0.10.2"
 751 criteria = "safe-to-deploy"
 752
 753 [[exemptions.shlex]]
 754 version = "1.1.0"
 755 criteria = "safe-to-deploy"
 756
 757 [[exemptions.siphasher]]
 758 version = "0.3.10"
 759 criteria = "safe-to-deploy"
 760
 761 [[exemptions.socket2]]
 762 version = "0.4.4"
 763 criteria = "safe-to-deploy"
 764
 765 [[exemptions.spirv]]
 766 version = "0.2.0+1.5.4"
 767 criteria = "safe-to-deploy"
 768
 769 [[exemptions.stable_deref_trait]]
 770 version = "1.2.0"
 771 criteria = "safe-to-deploy"
 772
 773 [[exemptions.static_assertions]]
 774 version = "1.1.0"
 775 criteria = "safe-to-deploy"
 776
 777 [[exemptions.strsim]]
 778 version = "0.10.0"
 779 criteria = "safe-to-deploy"
 780
 781 [[exemptions.tempfile]]
 782 version = "3.3.0"
 783 criteria = "safe-to-deploy"
 784
 785 [[exemptions.time]]
 786 version = "0.1.44"
 787 criteria = "safe-to-deploy"
 788
 789 [[exemptions.tokio]]
 790 version = "1.17.0"
 791 criteria = "safe-to-run"
 792
 793 [[exemptions.triple_buffer]]
 794 version = "5.0.6"
 795 criteria = "safe-to-deploy"
 796
 797 [[exemptions.type-map]]
 798 version = "0.4.0"
 799 criteria = "safe-to-deploy"
 800
 801 [[exemptions.typenum]]
 802 version = "1.15.0"
 803 criteria = "safe-to-deploy"
 804
 805 [[exemptions.unix_path]]
 806 version = "1.0.1"
 807 criteria = "safe-to-run"
 808
 809 [[exemptions.unix_str]]
 810 version = "1.0.0"
 811 criteria = "safe-to-run"
 812
 813 [[exemptions.url]]
 814 version = "2.1.0"
 815 criteria = "safe-to-deploy"
 816
 817 [[exemptions.uuid]]
 818 version = "0.8.2"
 819 criteria = "safe-to-deploy"
 820
 821 [[exemptions.webrtc-sdp]]
 822 version = "0.3.9"
 823 criteria = "safe-to-deploy"
 824
 825 [[exemptions.winapi]]
 826 version = "0.3.9"
 827 criteria = "safe-to-deploy"
 828
 829 [[exemptions.winapi-i686-pc-windows-gnu]]
 830 version = "0.4.0"
 831 criteria = "safe-to-deploy"
 832
 833 [[exemptions.winapi-x86_64-pc-windows-gnu]]
 834 version = "0.4.0"
 835 criteria = "safe-to-deploy"
 836
 837 [[exemptions.wio]]
 838 version = "0.2.2"
 839 criteria = "safe-to-deploy"
 840
 841 [[exemptions.xml-rs]]
 842 version = "0.8.4"
 843 criteria = "safe-to-deploy"
 844
 845 [[exemptions.zip]]
 846 version = "0.6.2"
 847 criteria = "safe-to-run"