clone/codex
1
0
Fork 0
mirror of https://github.com/openai/codex.git synced 2026-04-24 06:35:50 +00:00
Code Issues Packages Projects Releases Wiki Activity

codex: remove tar advisory ignores from PR #15564

Browse Source 
Co-authored-by: Codex <noreply@openai.com>
This commit is contained in:
Ahmed Ibrahim
2026-03-24 03:16:47 +00:00
parent 552fbf8800
commit 2c565c1540
1 changed files with 0 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
codex-rs/deny.toml
View File

@@ -76,8 +76,6 @@ ignore = [
# TODO(fcoury): remove this exception when syntect drops yaml-rust and bincode, or updates to versions that have fixed the vulnerabilities.
{ id = "RUSTSEC-2024-0320", reason = "yaml-rust is unmaintained; pulled in via syntect v5.3.0 used by codex-tui for syntax highlighting; no fixed release yet" },
{ id = "RUSTSEC-2025-0141", reason = "bincode is unmaintained; pulled in via syntect v5.3.0 used by codex-tui for syntax highlighting; no fixed release yet" },
{ id = "RUSTSEC-2026-0067", reason = "workspace tar remains at 0.4.44 on main; this refactor stack does not touch archive extraction dependencies and needs a separate upgrade or remediation" },
{ id = "RUSTSEC-2026-0068", reason = "workspace tar remains at 0.4.44 on main; this refactor stack does not touch archive parsing dependencies and needs a separate upgrade or remediation" },
]
# If this is true, then cargo deny will use the git executable to fetch advisory database.
# If this is false, then it uses a built-in git library.