Skip to content

Commit

Permalink
Update deny.toml to be compatible with version 2
Browse files Browse the repository at this point in the history
Since we decided to update the current `deny.toml` instead of using the
template, I looked up where the template originated to check what had
changed since the `deny.toml` was introduced.

The `deny.toml` was created by commit:
1aae75b
on:
Fri Dec 4 14:27:08 2020 +0100

When looking for the last change in the `deny.toml` template in the repo
(https://github.com/EmbarkStudios/cargo-deny)
({repo_url}/commits/main/deny.template.toml)

The last commit was:
98946c8732f09f4e1cce3eae766d248d3afa7ef4
on:
Nov 9, 2020

The following comment describes the new default behavior in detail:
EmbarkStudios/cargo-deny#611
> This is a follow-up to #606 that actually provides a way to remove the
deprecated fields and opt in to the new behavior until the fields are
removed and the new behavior becomes the only behavior.

New default behavior for removed fields:
- `unlicensed = "deny"`
  New default: `deny`
- `copyleft = "deny"`
  New default: `deny`
- `allow-osi-fsf-free = "either"`
  New default: `neither`
> It doesn't matter if the license is OSI and/or FSF free, only if it is
in the allow (or exception) list.

Signed-off-by: Nico Steinle <[email protected]>
  • Loading branch information
ammernico committed Aug 28, 2024
1 parent ee22485 commit 1a1399b
Showing 1 changed file with 14 additions and 24 deletions.
38 changes: 14 additions & 24 deletions deny.toml
Original file line number Diff line number Diff line change
@@ -1,27 +1,16 @@
[licenses]
# The lint level for crates which do not have a detectable license
unlicensed = "deny"

# List of explictly allowed licenses
# See https://spdx.org/licenses/ for list of possible licenses
# [possible values: any SPDX 3.7 short identifier (+ optional exception)].
allow = ["MPL-2.0"]

# List of explictly disallowed licenses
# See https://spdx.org/licenses/ for list of possible licenses
# [possible values: any SPDX 3.7 short identifier (+ optional exception)].
deny = []

# The lint level for licenses considered copyleft
copyleft = "deny"

# Blanket approval or denial for OSI-approved or FSF Free/Libre licenses
# * both - The license will only be approved if it is both OSI-approved *AND* FSF/Free
# * either - The license will be approved if it is either OSI-approved *OR* FSF/Free
# * osi-only - The license will be approved if is OSI-approved *AND NOT* FSF/Free
# * fsf-only - The license will be approved if is FSF/Free *AND NOT* OSI-approved
# * neither - The license will be denied if is FSF/Free *OR* OSI-approved
allow-osi-fsf-free = "either"
allow = [
"Apache-2.0",
"BSD-2-Clause",
"BSD-3-Clause",
"EPL-2.0",
"MIT",
"MPL-2.0",
"Unicode-DFS-2016"
]

# The confidence threshold for detecting a license from license text.
# The higher the value, the more closely the license text must be to the
Expand All @@ -48,16 +37,17 @@ allow = [
deny = [
# Each entry the name of a crate and a version range. If version is
# not specified, all versions will be matched.
{ name = "fuchsia-cprng" }
{ crate = "fuchsia-cprng" }
]

# Certain crates/versions that will be skipped when doing duplicate detection.
skip = [
]

# Similarly to `skip` allows you to skip certain crates during duplicate detection,
# unlike skip, it also includes the entire tree of transitive dependencies starting at
# the specified crate, up to a certain depth, which is by default infinite
# Similarly to `skip` allows you to skip certain crates during duplicate
# detection. Unlike skip, it also includes the entire tree of transitive
# dependencies starting at the specified crate, up to a certain depth, which is
# by default infinite.
skip-tree = [
]

Expand Down

0 comments on commit 1a1399b

Please sign in to comment.