Skip to content

Commit

Permalink
add cargo deny check to CI
Browse files Browse the repository at this point in the history
  • Loading branch information
TheButlah committed Oct 10, 2024
1 parent 5c161c9 commit 4dc1206
Show file tree
Hide file tree
Showing 3 changed files with 81 additions and 0 deletions.
28 changes: 28 additions & 0 deletions .github/workflows/rust-ci.yaml
Original file line number Diff line number Diff line change
@@ -0,0 +1,28 @@
name: Rust CI
on:
pull_request:
workflow_dispatch:
push:
branches:
- main
- prod
tags:
- '**'

jobs:
cargo-deny:
name: Licensing and Advisories
runs-on: ubuntu-24.04
steps:
- uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # [email protected]
- uses: EmbarkStudios/cargo-deny-action@8371184bd11e21dcf8ac82ebf8c9c9f74ebf7268 # [email protected]

fmt:
name: Formatting
runs-on: ubuntu-24.04
steps:
- uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # [email protected]
- name: Run cargo format
runs: cargo fmt --all --check


1 change: 1 addition & 0 deletions LICENSE
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
TODO: Add a FOSS license
52 changes: 52 additions & 0 deletions deny.toml
Original file line number Diff line number Diff line change
@@ -0,0 +1,52 @@
[graph]
# Cargo deny will check dependencies via `--all-features`
all-features = true

[advisories]
version = 2
ignore = [
]

[sources]
unknown-registry = "deny"

[licenses]
version = 2
# We want really high confidence when inferring licenses from text
confidence-threshold = 1.0

# List of explicitly allowed licenses
# See https://spdx.org/licenses/ for list of possible licenses
allow = [
"0BSD",
"Apache-2.0 WITH LLVM-exception",
"Apache-2.0",
"BSD-2-Clause",
"BSD-2-Clause-Patent",
"BSD-3-Clause",
"BSL-1.0",
"CC0-1.0",
"ISC",
"LicenseRef-ring",
"LicenseRef-wc-proprietary",
"MIT",
"MPL-2.0", # Although this is copyleft, it is scoped to modifying the original files
"Unicode-DFS-2016",
"Unlicense",
"Zlib",
]

# See https://github.com/briansmith/ring/blob/95948b3977013aed16db92ae32e6b8384496a740/deny.toml#L12
[[licenses.clarify]]
name = "ring"
expression = "LicenseRef-ring"
license-files = [
{ path = "LICENSE", hash = 0xbd0eed23 },
]

[[licenses.clarify]]
name = "hyrax"
expression = "LicenseRef-wc-proprietary"
license-files = [
{ path = "LICENSE", hash = 0xeafa4d94 }
]

0 comments on commit 4dc1206

Please sign in to comment.