It seems cargo audit does not inherit the rest of the cargo command line arguments, which means having cargoExtraArgs defined for it results in errors like: error: unexpected argument '-F' found.
The change removes the cargoExtraArgs from cargoAudit.nix to avoid mistakes.
Checklist
Not sure how to best test it, feel free to point me in a direction and I'll implement something.
[ ] added tests to verify new behavior
[ ] added an example template or updated an existing one
[x] updated docs/API.md (or general documentation) with changes
[x] updated CHANGELOG.md
Details
cargo audit help
» cargo audit --version
cargo-audit-audit 0.20.0
» cargo audit help
Audit Cargo.lock files for vulnerable crates
Usage: cargo audit [OPTIONS] [COMMAND]
Commands:
bin scan compiled binaries
help Print this message or the help of the given subcommand(s)
Options:
-c, --color <COLOR> color configuration: always, never (default: auto)
-d, --db <DB> advisory database git repo path (default: ~/.cargo/advisory-db)
-D, --deny <DENY> exit with an error on: warnings (any), unmaintained, unsound, yanked
-f, --file <FILE> Cargo lockfile to inspect (or `-` for STDIN, default: Cargo.lock)
--ignore <ADVISORY_ID> Advisory id to ignore (can be specified multiple times)
--ignore-source Ignore sources of packages in Cargo.toml, matching advisories regardless of source
-n, --no-fetch do not perform a git fetch on the advisory DB
--stale allow stale database
--target-arch <TARGET_ARCH> filter vulnerabilities by CPU (default: no filter)
--target-os <TARGET_OS> filter vulnerabilities by OS (default: no filter)
-u, --url <URL> URL for advisory database git repo
-q, --quiet Avoid printing unnecessary information
--json Output report in JSON format
-h, --help Print help
-V, --version Print version
cargo doc help
» cargo doc --help
Build a package's documentation
Usage: cargo doc [OPTIONS]
Options:
--open Opens the docs in a browser after the operation
--no-deps Don't build documentation for dependencies
--document-private-items Document private items
--ignore-rust-version Ignore `rust-version` specification in packages
--message-format <FMT> Error format
-q, --quiet Do not print cargo log messages
-v, --verbose... Use verbose output (-vv very verbose/build.rs output)
--color <WHEN> Coloring: auto, always, never
--config <KEY=VALUE> Override a configuration value
-Z <FLAG> Unstable (nightly-only) flags to Cargo, see 'cargo -Z help' for details
-h, --help Print help
Package Selection:
-p, --package [<SPEC>] Package to document
--workspace Document all packages in the workspace
--exclude <SPEC> Exclude packages from the build
--all Alias for --workspace (deprecated)
Feature Selection:
-F, --features <FEATURES> Space or comma separated list of features to activate
--all-features Activate all available features
--no-default-features Do not activate the `default` feature
Target Selection:
--lib Document only this package's library
--bins Document all binaries
--bin [<NAME>] Document only the specified binary
--examples Document all examples
--example [<NAME>] Document only the specified example
Compilation Options:
-j, --jobs <N> Number of parallel jobs, defaults to # of CPUs.
--keep-going Do not abort the build as soon as there is an error
-r, --release Build artifacts in release mode, with optimizations
--profile <PROFILE-NAME> Build artifacts with the specified profile
--target [<TRIPLE>] Build for the target triple
--target-dir <DIRECTORY> Directory for all generated artifacts
--unit-graph Output build graph in JSON (unstable)
--timings[=<FMTS>] Timing output formats (unstable) (comma separated): html, json
Manifest Options:
--manifest-path <PATH> Path to Cargo.toml
--frozen Require Cargo.lock and cache are up to date
--locked Require Cargo.lock is up to date
--offline Run without accessing the network
Run `cargo help doc` for more detailed information.
Motivation
It seems
cargo auditdoes not inherit the rest of the cargo command line arguments, which means havingcargoExtraArgsdefined for it results in errors like:error: unexpected argument '-F' found.The change removes the
cargoExtraArgsfromcargoAudit.nixto avoid mistakes.Checklist
Not sure how to best test it, feel free to point me in a direction and I'll implement something.
docs/API.md(or general documentation) with changesCHANGELOG.mdDetails
cargo audit help
cargo doc help