From eba4761f914950c6562710f6e2daea0fbb069a1d Mon Sep 17 00:00:00 2001 From: Pietro Albini Date: Tue, 10 Jan 2023 13:07:15 +0100 Subject: bump Cargo submodule to fix CVE-2022-46176 --- src/tools/cargo | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'src/tools') diff --git a/src/tools/cargo b/src/tools/cargo index d65d197ad5c..ad779e08be8 160000 --- a/src/tools/cargo +++ b/src/tools/cargo @@ -1 +1 @@ -Subproject commit d65d197ad5c6c09234369f219f943e291d4f04b9 +Subproject commit ad779e08be893e57a9e17a810223a3e966f8c0d8 -- cgit 1.4.1-3-g733a5 From 66829d659742d90246b4c0dfa27e1b4427da6bbe Mon Sep 17 00:00:00 2001 From: Pietro Albini Date: Tue, 10 Jan 2023 17:57:02 +0100 Subject: add subtle dependency --- src/tools/tidy/src/deps.rs | 2 ++ 1 file changed, 2 insertions(+) (limited to 'src/tools') diff --git a/src/tools/tidy/src/deps.rs b/src/tools/tidy/src/deps.rs index 8a0239eceff..06c89cea1e2 100644 --- a/src/tools/tidy/src/deps.rs +++ b/src/tools/tidy/src/deps.rs @@ -47,6 +47,7 @@ const EXCEPTIONS: &[(&str, &str)] = &[ ("dunce", "CC0-1.0"), // cargo (dev dependency) ("similar", "Apache-2.0"), // cargo (dev dependency) ("normalize-line-endings", "Apache-2.0"), // cargo (dev dependency) + ("subtle", "BSD-3-Clause"), // cargo ]; const EXCEPTIONS_CRANELIFT: &[(&str, &str)] = &[ @@ -205,6 +206,7 @@ const PERMITTED_RUSTC_DEPENDENCIES: &[&str] = &[ "snap", "stable_deref_trait", "stacker", + "subtle", "syn", "synstructure", "tempfile", -- cgit 1.4.1-3-g733a5