From b982a74c82ce54e994ca19c39e22d10563192f1f Mon Sep 17 00:00:00 2001 From: Nathan Fox Date: Tue, 22 Aug 2023 16:04:04 -0400 Subject: [PATCH] chore: update `rustls-webpki` due to security advisory (#18344) * update rustls-webpki due to security advisory * patch webpki with rustls-webpki * add advisory to the ignore list temporarily * Update deny.toml Co-authored-by: Jesse Szwedko --------- Co-authored-by: Jesse Szwedko --- Cargo.lock | 4 ++-- Cargo.toml | 1 + deny.toml | 2 ++ 3 files changed, 5 insertions(+), 2 deletions(-) diff --git a/Cargo.lock b/Cargo.lock index 3b60529e4be98..4d97a3da1eb9a 100644 --- a/Cargo.lock +++ b/Cargo.lock @@ -7364,9 +7364,9 @@ dependencies = [ [[package]] name = "rustls-webpki" -version = "0.101.2" +version = "0.101.4" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "513722fd73ad80a71f72b61009ea1b584bcfa1483ca93949c8f290298837fa59" +checksum = "7d93931baf2d282fff8d3a532bbfd7653f734643161b87e3e01e59a04439bf0d" dependencies = [ "ring", "untrusted", diff --git a/Cargo.toml b/Cargo.toml index 17a62c31a20d4..40ccbd5693789 100644 --- a/Cargo.toml +++ b/Cargo.toml @@ -394,6 +394,7 @@ ntapi = { git = "https://github.com/MSxDOS/ntapi.git", rev = "24fc1e47677fc9f6e3 openssl-sys = { git = "https://github.com/vectordotdev/rust-openssl", tag = "openssl-sys-v0.9.91_3.0.0" } openssl-src = { git = "https://github.com/vectordotdev/openssl-src-rs", tag = "release-300-force-engine_3.1.2" } + [features] # Default features for *-unknown-linux-gnu and *-apple-darwin default = ["api", "api-client", "enrichment-tables", "sinks", "sources", "sources-dnstap", "transforms", "unix", "rdkafka?/gssapi-vendored", "enterprise", "component-validation-runner"] diff --git a/deny.toml b/deny.toml index f9453e19a109c..2b3d8991358a8 100644 --- a/deny.toml +++ b/deny.toml @@ -38,4 +38,6 @@ license-files = [ [advisories] ignore = [ + # requires our dependencies to migrate to `rustls-webpki` + "RUSTSEC-2023-0052" ]