fix(security): add missing advisory ignores for cargo-audit + cargo-deny

Re-add RUSTSEC-2023-0071 (rsa) and RUSTSEC-2025-0055 (tracing-subscriber) which were incorrectly removed — they are still in transitive deps. Add new advisories: - RUSTSEC-2026-0067 (tar symlink traversal) — no 0.4.x patch available - RUSTSEC-2026-0068 (tar link following) — no 0.4.x patch available
2026-03-28 15:47:09 +03:00
parent fd197ae78f
commit a0607b420c
2 changed files with 17 additions and 0 deletions
@@ -57,6 +57,10 @@ jobs:
            --ignore RUSTSEC-2026-0020 \
            --ignore RUSTSEC-2026-0021 \
            --ignore RUSTSEC-2026-0049 \
+            --ignore RUSTSEC-2023-0071 \
+            --ignore RUSTSEC-2025-0055 \
+            --ignore RUSTSEC-2026-0067 \
+            --ignore RUSTSEC-2026-0068 \
            2>&1 | tee audit-output.txt
          RESULT=${PIPESTATUS[0]}
          if [ $RESULT -ne 0 ]; then