diff --git a/supply-chain/audits.toml b/supply-chain/audits.toml index e29b1cfc4fd0..dd5075fae5d0 100644 --- a/supply-chain/audits.toml +++ b/supply-chain/audits.toml @@ -1829,6 +1829,16 @@ criteria = "safe-to-deploy" version = "0.2.5" notes = "I am the author of this crate." +[[audits.leb128-tokio]] +who = "Roman Volosatovs " +criteria = "safe-to-deploy" +version = "0.1.1" + +[[audits.leb128-tokio]] +who = "Roman Volosatovs " +criteria = "safe-to-deploy" +version = "0.1.1" + [[audits.libc]] who = "Dan Gohman " criteria = "safe-to-deploy" @@ -2173,6 +2183,11 @@ a few `unsafe` blocks related to utf-8 validation which are locally verifiable as correct and otherwise this crate is good to go. """ +[[audits.pin-project-lite]] +who = "Roman Volosatovs " +criteria = "safe-to-deploy" +delta = "0.2.13 -> 0.2.14" + [[audits.pin-utils]] who = "Pat Hickey " criteria = "safe-to-deploy" @@ -2557,6 +2572,11 @@ criteria = "safe-to-deploy" version = "0.7.4" notes = "Alex Crichton audited the safety of src/sync/reusable_box.rs, I audited the remainder of the crate." +[[audits.tokio-util]] +who = "Roman Volosatovs " +criteria = "safe-to-deploy" +delta = "0.7.4 -> 0.7.11" + [[audits.tracing]] who = "Alex Crichton " criteria = "safe-to-deploy" @@ -2666,6 +2686,11 @@ is similar to what it once was back then. Skimming over the crate there is nothing suspicious and it's everything you'd expect a Rust URL parser to be. """ +[[audits.utf8-tokio]] +who = "Roman Volosatovs " +criteria = "safe-to-deploy" +version = "0.1.1" + [[audits.vcpkg]] who = "Pat Hickey " criteria = "safe-to-deploy" @@ -2970,6 +2995,11 @@ criteria = "safe-to-run" version = "0.12.5" notes = "The Bytecode Alliance is the author of this crate." +[[audits.wasm-tokio]] +who = "Roman Volosatovs " +criteria = "safe-to-deploy" +version = "0.4.1" + [[audits.wasmi]] who = "Robin Freyler " criteria = "safe-to-run" @@ -3411,6 +3441,11 @@ criteria = "safe-to-deploy" version = "0.6.4" notes = "The Bytecode Alliance is the author of this crate." +[[audits.wrpc-transport]] +who = "Roman Volosatovs " +criteria = "safe-to-deploy" +version = "0.25.0" + [[audits.xattr]] who = "Andrew Brown " criteria = "safe-to-deploy" diff --git a/supply-chain/imports.lock b/supply-chain/imports.lock index ad0f41ae2103..c6b5ea796802 100644 --- a/supply-chain/imports.lock +++ b/supply-chain/imports.lock @@ -2883,6 +2883,13 @@ version = "0.2.9" notes = "Reviewed on https://fxrev.dev/824504" aggregated-from = "https://fuchsia.googlesource.com/fuchsia/+/refs/heads/main/third_party/rust_crates/supply-chain/audits.toml?format=TEXT" +[[audits.google.audits.pin-project-lite]] +who = "David Koloski " +criteria = "safe-to-deploy" +delta = "0.2.9 -> 0.2.13" +notes = "Audited at https://fxrev.dev/946396" +aggregated-from = "https://fuchsia.googlesource.com/fuchsia/+/refs/heads/main/third_party/rust_crates/supply-chain/audits.toml?format=TEXT" + [[audits.google.audits.threadpool]] who = "Dennis Kempin " criteria = "safe-to-run"