fix CI errors

Cargo.toml

@@ -32,7 +32,6 @@ tracing = "0.1"
 tracing-subscriber = { version = "0.3", features = ["json"] }
 metrics = "0.20"
 axum-prometheus = "0.3"
-prometheus = "0.13"
 
 # Serialisation
 serde = { version = "1.0", features = ["derive"] }

deny.toml

@@ -0,0 +1,27 @@
+[licenses]
+unused-allowed-license = "deny"
+copyleft = "deny"
+allow = [
+    "Apache-2.0",
+    "MIT",
+    "Unlicense",
+    "BSD-3-Clause",
+    "0BSD",
+    "ISC"
+]
+
+exceptions = [{ name = "unicode-ident", allow = ["Unicode-DFS-2016"] }]
+
+[licenses.private]
+ignore = true
+
+# TODO We should be able to remove `ignore-sources` once we add `publish = false` to all the crates sourced from here.
+ignore-sources = [
+    "https://github.com/WalletConnect/utils-rs.git",
+    "https://github.com/WalletConnect/WalletConnectRust.git",
+]
+
+[[licenses.clarify]]
+name = "ring"
+expression = "ISC"
+license-files = [{ path = "LICENSE", hash = 0xbd0eed23 }]

src/http_server/mod.rs

@@ -318,7 +318,7 @@ fn build_content_security_header(domains: Vec<Domain>) -> String {
 #[test]
 fn test_build_content_security_header() {
     fn case(domains: &[&str], expected: &str) {
-        let domains = domains.into_iter().map(|s| Domain::from(s.to_string()));
+        let domains = domains.iter().map(|s| Domain::from(s.to_string()));
         let got = build_content_security_header(domains.collect());
         assert_eq!(&got, expected);
     }
@@ -348,5 +348,5 @@ fn csrf_validation_checks_jwt_header_and_payload() {
     let valid_header_invalid_payload =
         "eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.<svg/onload=alert(document.domain)>";
 
-    assert!(!CsrfToken::validate_format(&valid_header_invalid_payload))
+    assert!(!CsrfToken::validate_format(valid_header_invalid_payload))
 }