diff --git a/.cargo/audit.toml b/.cargo/audit.toml deleted file mode 100644 index 87a50ef0f4..0000000000 --- a/.cargo/audit.toml +++ /dev/null @@ -1,5 +0,0 @@ -[advisories] -ignore = [ - "RUSTSEC-2024-0437", # protobuf, it is only used in the monorepo, which forbids using the affected type - "RUSTSEC-2026-0001", # rkyv - transitive via rust_decimal, rkyv feature not used -] diff --git a/.github/workflows/audit.yml b/.github/workflows/audit.yml deleted file mode 100644 index a222ee2271..0000000000 --- a/.github/workflows/audit.yml +++ /dev/null @@ -1,36 +0,0 @@ -name: Audit - -on: - push: - branches: - - master - pull_request: - schedule: - # * is a special character in YAML so you have to quote this string - - cron: "0 14 * * *" - -concurrency: - group: ${{ github.workflow }}-${{ github.ref }} - cancel-in-progress: true - -env: - # When getting Rust dependencies, retry on network error: - CARGO_NET_RETRY: 10 - # Use the local .curlrc - CURL_HOME: . - # Disable DFX telemetry - DFX_TELEMETRY: 'off' - # Use the stable toolchain for the audit - RUSTUP_TOOLCHAIN: stable - -jobs: - test: - name: audit:required - runs-on: ubuntu-latest - permissions: - contents: read - issues: write - - steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - - uses: actions-rust-lang/audit@72c09e02f132669d52284a3323acdb503cfc1a24 # v1.2.7