mirror of
https://github.com/mozilla/gecko-dev.git
synced 2024-11-25 05:41:12 +00:00
Bug 1814050 - [rust-mozbase] Move audits to wildcard audit entries. r=supply-chain-reviewers,bholley
Differential Revision: https://phabricator.services.mozilla.com/D174214
This commit is contained in:
Henrik Skupin
parent
172564d54a
commit
aac2556b23
@ -33,6 +33,38 @@ start = "2020-11-03"
|
||||
end = "2024-03-31"
|
||||
notes = "Maintained by the DevTools team at Mozilla and has no unsafe code."
|
||||
|
||||
[[wildcard-audits.mozdevice]]
|
||||
who = "Henrik Skupin <mail@hskupin.info>"
|
||||
criteria = "safe-to-run"
|
||||
user-id = 22262
|
||||
start = "2020-11-03"
|
||||
end = "2024-03-31"
|
||||
notes = "Maintained by the DevTools team at Mozilla and has no unsafe code."
|
||||
|
||||
[[wildcard-audits.mozprofile]]
|
||||
who = "Henrik Skupin <mail@hskupin.info>"
|
||||
criteria = "safe-to-deploy"
|
||||
user-id = 22262
|
||||
start = "2020-11-03"
|
||||
end = "2024-03-31"
|
||||
notes = "Maintained by the DevTools team at Mozilla and has no unsafe code."
|
||||
|
||||
[[wildcard-audits.mozrunner]]
|
||||
who = "Henrik Skupin <mail@hskupin.info>"
|
||||
criteria = "safe-to-deploy"
|
||||
user-id = 22262
|
||||
start = "2020-11-03"
|
||||
end = "2024-03-31"
|
||||
notes = "Maintained by the DevTools team at Mozilla and has no unsafe code."
|
||||
|
||||
[[wildcard-audits.mozversion]]
|
||||
who = "Henrik Skupin <mail@hskupin.info>"
|
||||
criteria = "safe-to-run"
|
||||
user-id = 22262
|
||||
start = "2020-11-03"
|
||||
end = "2024-03-31"
|
||||
notes = "Maintained by the DevTools team at Mozilla and has no unsafe code."
|
||||
|
||||
[[wildcard-audits.ohttp]]
|
||||
who = "Martin Thomson <mt@lowentropy.net>"
|
||||
criteria = "safe-to-deploy"
|
||||
@ -1381,45 +1413,6 @@ who = "Mike Hommey <mh+mozilla@glandium.org>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.5.3 -> 0.6.2"
|
||||
|
||||
[[audits.mozdevice]]
|
||||
who = "Henrik Skupin <mail@hskupin.info>"
|
||||
criteria = "safe-to-run"
|
||||
version = "0.5.1"
|
||||
notes = "Maintained by the DevTools team at Mozilla and has no unsafe code."
|
||||
|
||||
[[audits.mozprofile]]
|
||||
who = "Henrik Skupin <mail@hskupin.info>"
|
||||
criteria = "safe-to-deploy"
|
||||
version = "0.9.0"
|
||||
notes = "Maintained by the DevTools team at Mozilla and has no unsafe code."
|
||||
|
||||
[[audits.mozprofile]]
|
||||
who = "Henrik Skupin <mail@hskupin.info>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.9.0 -> 0.9.1"
|
||||
|
||||
[[audits.mozrunner]]
|
||||
who = "Henrik Skupin <mail@hskupin.info>"
|
||||
criteria = "safe-to-deploy"
|
||||
version = "0.15.0"
|
||||
notes = "Maintained by the DevTools team at Mozilla and has no unsafe code."
|
||||
|
||||
[[audits.mozrunner]]
|
||||
who = "Henrik Skupin <mail@hskupin.info>"
|
||||
criteria = "safe-to-deploy"
|
||||
delta = "0.15.0 -> 0.15.1"
|
||||
|
||||
[[audits.mozversion]]
|
||||
who = "Henrik Skupin <mail@hskupin.info>"
|
||||
criteria = "safe-to-run"
|
||||
version = "0.5.0"
|
||||
notes = "Maintained by the DevTools team at Mozilla and has no unsafe code."
|
||||
|
||||
[[audits.mozversion]]
|
||||
who = "Henrik Skupin <mail@hskupin.info>"
|
||||
criteria = "safe-to-run"
|
||||
delta = "0.5.0 -> 0.5.1"
|
||||
|
||||
[[audits.naga]]
|
||||
who = "Dzmitry Malyshau <kvark@fastmail.com>"
|
||||
criteria = "safe-to-deploy"
|
||||
|
||||
@ -100,24 +100,24 @@ audit-as-crates-io = false
|
||||
notes = "The crates.io version of this is just a placeholder to allow public crates to depend on mozbuild."
|
||||
|
||||
[policy.mozdevice]
|
||||
audit-as-crates-io = true
|
||||
notes = "This is a first-party crate which is also published to crates.io, but we should publish audits for it for the benefit of the ecosystem."
|
||||
audit-as-crates-io = false
|
||||
notes = "This is a first-party crate which is also published to crates.io. We certify audits for this crate as part of the documented release process, but that step happens after the version bump lands on central so we don't enforce it here."
|
||||
|
||||
[policy.mozglue-static]
|
||||
dependency-criteria = { rustc_version = "safe-to-run" }
|
||||
notes = "The rustc_version dependency is only used in the build script, and does not generate any runtime code"
|
||||
|
||||
[policy.mozprofile]
|
||||
audit-as-crates-io = true
|
||||
notes = "This is a first-party crate which is also published to crates.io, but we should publish audits for it for the benefit of the ecosystem."
|
||||
audit-as-crates-io = false
|
||||
notes = "This is a first-party crate which is also published to crates.io. We certify audits for this crate as part of the documented release process, but that step happens after the version bump lands on central so we don't enforce it here."
|
||||
|
||||
[policy.mozrunner]
|
||||
audit-as-crates-io = true
|
||||
notes = "This is a first-party crate which is also published to crates.io, but we should publish audits for it for the benefit of the ecosystem."
|
||||
audit-as-crates-io = false
|
||||
notes = "This is a first-party crate which is also published to crates.io. We certify audits for this crate as part of the documented release process, but that step happens after the version bump lands on central so we don't enforce it here."
|
||||
|
||||
[policy.mozversion]
|
||||
audit-as-crates-io = true
|
||||
notes = "This is a first-party crate which is also published to crates.io, but we should publish audits for it for the benefit of the ecosystem."
|
||||
audit-as-crates-io = false
|
||||
notes = "This is a first-party crate which is also published to crates.io. We certify audits for this crate as part of the documented release process, but that step happens after the version bump lands on central so we don't enforce it here."
|
||||
|
||||
[policy.naga]
|
||||
audit-as-crates-io = true
|
||||
|
||||
Loading…
Reference in New Issue
Block a user