Skip to content

Commit

Permalink
cargo-vet audit for allocator-api2 0.2.18 -> 0.2.20.
Browse files Browse the repository at this point in the history
  • Loading branch information
@cfallin
cfallin committed Nov 15, 2024
1 parent c823caa commit d60e04c
Show file tree
Hide file tree
Showing 2 changed files with 24 additions and 9 deletions.
13 changes: 11 additions & 2 deletions supply-chain/audits.toml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -171,15 +171,15 @@ notes = "The Bytecode Alliance is the author of this crate."
[[wildcard-audits.regalloc2]]
who = "Chris Fallin <chris@cfallin.org>"
criteria = "safe-to-deploy"
user-id = 3726
user-id = 3726 # Chris Fallin (cfallin)
start = "2021-12-03"
end = "2025-07-30"
notes = "We (Bytecode Alliance) are the primary authors of regalloc2 and co-develop it with Cranelift/Wasmtime, with the same code-review, testing/fuzzing, and security standards."

[[wildcard-audits.regalloc2]]
who = "Trevor Elliott <telliott@fastly.com>"
criteria = "safe-to-deploy"
user-id = 187138 # Trevor Elliott (elliottt)
user-id = 187138
start = "2022-11-29"
end = "2025-07-30"
notes = """
Expand Down Expand Up @@ -935,6 +935,15 @@ Shuffling of features in this update and while there are updates to `unsafe`
code it's no different than before and the usage remains the same.
"""

[[audits.allocator-api2]]
who = "Chris Fallin <chris@cfallin.org>"
criteria = "safe-to-deploy"
delta = "0.2.18 -> 0.2.20"
notes = """
The changes appear to be reasonable updates from Rust's stdlib imported into
`allocator-api2`'s copy of this code.
"""

[[audits.ambient-authority]]
who = "Dan Gohman <dev@sunfishcode.online>"
criteria = "safe-to-deploy"
Expand Down
20 changes: 13 additions & 7 deletions supply-chain/imports.lock
View file
Original file line number Diff line number Diff line change
Expand Up @@ -267,8 +267,8 @@ user-login = "BurntSushi"
user-name = "Andrew Gallant"

[[publisher.bumpalo]]
version = "3.14.0"
when = "2023-09-14"
version = "3.16.0"
when = "2024-04-08"
user-id = 696
user-login = "fitzgen"
user-name = "Nick Fitzgerald"
Expand Down Expand Up @@ -669,11 +669,11 @@ user-login = "dtolnay"
user-name = "David Tolnay"

[[publisher.regalloc2]]
version = "0.10.2"
when = "2024-09-11"
user-id = 187138
user-login = "elliottt"
user-name = "Trevor Elliott"
version = "0.11.0"
when = "2024-11-15"
user-id = 3726
user-login = "cfallin"
user-name = "Chris Fallin"

[[publisher.regex]]
version = "1.9.1"
Expand Down Expand Up @@ -1653,6 +1653,12 @@ end = "2024-05-03"
notes = "All code written or reviewed by Manish"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"

[[audits.mozilla.audits.allocator-api2]]
who = "Nicolas Silva <nical@fastmail.com>"
criteria = "safe-to-deploy"
version = "0.2.18"
aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml"

[[audits.mozilla.audits.android_system_properties]]
who = "Nicolas Silva <nical@fastmail.com>"
criteria = "safe-to-deploy"
Expand Down

0 comments on commit d60e04c

Please # to comment.