forked from EmbarkStudios/cargo-deny
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Cargo.toml
99 lines (94 loc) · 3.16 KB
/
Cargo.toml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
[package]
name = "cargo-deny"
description = "Cargo plugin to help you manage large dependency graphs"
repository = "https://github.com/EmbarkStudios/cargo-deny"
version = "0.11.0"
authors = [
"Embark <[email protected]>",
"Jake Shadle <[email protected]>",
]
edition = "2021"
license = "MIT OR Apache-2.0"
readme = "README.md"
documentation = "https://docs.rs/cargo-deny"
homepage = "https://github.com/EmbarkStudios/cargo-deny"
categories = ["development-tools::cargo-plugins"]
keywords = ["cargo", "license", "spdx", "ci", "advisories"]
exclude = ["examples/", ".github/"]
[badges]
maintenance = { status = "actively-developed" }
[[bin]]
name = "cargo-deny"
path = "src/cargo-deny/main.rs"
[features]
default = ["vendored-openssl"]
# Allows the use of a vendored version openssl when compiling libgit, which allows
# us to compile static executables (eg musl) and avoid system dependencies
vendored-openssl = ["rustsec/vendored-openssl", "git2/vendored-openssl"]
# Allows embedding cargo as a library so that we can run in minimal (eg container)
# environments that don't need to have cargo/rust installed on them for cargo-deny
# to still function
standalone = ["cargo"]
[dependencies]
# Output coloring
ansi_term = "0.12"
# Easy errors
anyhow = "1.0"
# Used for detecting the license type of a file
askalono = "0.4"
# Used to detect if an output stream is a TTY to control default coloring
atty = "0.2"
# Used to track various things during check runs
bitvec = { version = "0.22", features = ["alloc"] }
# Allows us to do eg cargo metadata operations without relying on an external cargo
cargo = { version = "0.58", optional = true }
# Timey wimey stuff
chrono = "0.4"
# Used for diagnostic reporting
codespan = "0.11"
codespan-reporting = "0.11"
# Brrrrr
crossbeam = "0.8"
# We use this for displaying diffs for dry runs of the `fix` subcommand, as
# as in tests for printing easy to read errors
similar = "2.1"
# Logging utilities
fern = "0.6"
# We directly interact with git when doing index operations eg during fix
git2 = "0.13"
# We need to figure out HOME/CARGO_HOME in some cases
home = "0.5"
# Provides graphs on top of cargo_metadata
krates = { version = "0.9", features = ["targets"] }
# Log macros
log = "0.4"
# Used when parsing binary files in registry index caches
memchr = "2.3"
# Moar brrrr
rayon = "1.4"
# Used for interacting with advisory databases
rustsec = "0.25"
# Parsing and checking of versions/version requirements
semver = "1.0"
# Gee what could it be
serde = { version = "1.0", features = ["derive"] }
serde_json = "1.0"
# Avoid some heap allocations when we likely won't need them
smallvec = "1.6"
# Used for parsing and checking SPDX license expressions
spdx = "0.7"
# Handles all of the argument parsing
structopt = "0.3"
# Deserialization of configuration files and crate manifests
toml = "0.5"
# Used by fix to modify crate manifests
toml_edit = "0.6"
# Small fast hash crate
twox-hash = { version = "1.5", default-features = false }
# Url parsing/manipulation
url = "2.1"
[dev-dependencies]
# Avoid loading license check many times
lazy_static = "1.4.0"
# We use this for creating fake crate directories for crawling license files on disk
tempfile = "3.1.0"