Audit finding: https://rustsec.org/advisories/RUSTSEC-2021-0146
Closed this issue · 15 comments
Greetings human!
Bad news. Audit failed on nightly/v1.50.2 due to https://rustsec.org/advisories/RUSTSEC-2021-0146.
Audit failed on release/v1.48.154 due to https://rustsec.org/advisories/RUSTSEC-2021-0146.
Audit failed on beta/v1.49.83 due to https://rustsec.org/advisories/RUSTSEC-2021-0146.
Audit failed on nightly/v1.50.3 due to https://rustsec.org/advisories/RUSTSEC-2021-0146.
Audit failed on beta/v1.49.84 due to https://rustsec.org/advisories/RUSTSEC-2021-0146.
Audit failed on nightly/v1.50.29 due to https://rustsec.org/advisories/RUSTSEC-2021-0146.
Audit failed on dev/v1.49.93 due to https://rustsec.org/advisories/RUSTSEC-2021-0146.
Audit failed on beta/v1.49.94 due to https://rustsec.org/advisories/RUSTSEC-2021-0146.
Audit failed on release/v1.48.162 due to https://rustsec.org/advisories/RUSTSEC-2021-0146.
Audit failed on nightly/v1.50.30 due to https://rustsec.org/advisories/RUSTSEC-2021-0146.
Audit failed on beta/v1.49.95 due to https://rustsec.org/advisories/RUSTSEC-2021-0146.
Audit failed on nightly/v1.50.31 due to https://rustsec.org/advisories/RUSTSEC-2021-0146.
Suggest we ignore this for 1.48/49 via brave/audit-config#15
Closing, since this was ignored in brave/audit-config#15
@wknapik the ignore in audit-config can be removed once brave/brave-core#17368 is merged, as it removes the twoway dependency
I think that since the ignore list doesn't have separate branches for different brave-core versions, we have to wait for the fix to migrate to release before we can remove the ignore.