File: .github/workflows/ci.yml (cargo-audit --ignore list)
Severity: quality
Obvious? no
cargo audit against the current Cargo.lock returns 7 active advisories: RUSTSEC-2023-0089, RUSTSEC-2024-0370, RUSTSEC-2024-0436, RUSTSEC-2025-0141, RUSTSEC-2026-0097, RUSTSEC-2026-0119, RUSTSEC-2026-0120. The CI ignore list has these 7 plus three stale entries: RUSTSEC-2026-0098, RUSTSEC-2026-0099, RUSTSEC-2026-0104 — these no longer match any active advisory and can be pruned.
Pruning is cosmetic but accumulates over time; clean ignore lists are easier to audit.
Fix: drop RUSTSEC-2026-0098, RUSTSEC-2026-0099, RUSTSEC-2026-0104 from .github/workflows/ci.yml.
Filed by /general-audit @ 6404719 (2026-05-03). master: #567.
File:
.github/workflows/ci.yml(cargo-audit--ignorelist)Severity: quality
Obvious? no
cargo auditagainst the current Cargo.lock returns 7 active advisories: RUSTSEC-2023-0089, RUSTSEC-2024-0370, RUSTSEC-2024-0436, RUSTSEC-2025-0141, RUSTSEC-2026-0097, RUSTSEC-2026-0119, RUSTSEC-2026-0120. The CI ignore list has these 7 plus three stale entries: RUSTSEC-2026-0098, RUSTSEC-2026-0099, RUSTSEC-2026-0104 — these no longer match any active advisory and can be pruned.Pruning is cosmetic but accumulates over time; clean ignore lists are easier to audit.
Fix: drop RUSTSEC-2026-0098, RUSTSEC-2026-0099, RUSTSEC-2026-0104 from
.github/workflows/ci.yml.Filed by
/general-audit@6404719(2026-05-03). master: #567.