add ignore item in deny.toml. - Githubissues

nervosnetwork / ckb

The Nervos CKB is a public permissionless blockchain, and the layer 1 of Nervos network.

https://www.nervos.org

MIT License

1.15k stars 228 forks source link

add ignore item in deny.toml. #4604

Closed EthanYuan closed 3 weeks ago

EthanYuan commented 3 weeks ago

What problem does this PR solve?

Problem Summary:

CI will fail due to a new security issue RUSTSEC-2024-0363 with sqlx.

What is changed and how it works?

What's Changed:

The security issue can be added to the ignore list after evaluation.

# https://rustsec.org/advisories/RUSTSEC-2024-0363
# https://github.com/launchbadge/sqlx/issues/3440
# The queries for the rich indexer receive input parameters via RPC, and the data size is far less than 4GB, so this issue can be temporarily ignored while waiting for sqlx to be fixed

Check List

Tests

Unit test
Integration test
No code ci-runs-only: [ quick_checks,linters ]

Release note

None: Exclude this PR from the release note.