Cargo Deny Versions Save

Fixed

• PR#657 resolved #652 by fixing an issue where the exit code was incorrect if logging was disabled.

Added

• PR#659 adding publishing of aarch64-unknown-linux-musl binaries.

Changed

• PR#653 updated jobserver -> 0.1.30
• PR#656 updated gix -> 0.62.0, reqwest -> 0.12.4, tame-index -> 0.11.0

Fixed

• PR#643 resolved #629 by making the hosted git (github, gitlab, bitbucket) org/user name comparison case-insensitive. Thanks @pmnlla!
• PR#649 fixed an issue where depending on the same crate multiple times by using different cfg()/triple targets could cause features to be resolved incorrectly and thus crates to be not pulled into the graph used for checking.

Fixed

• PR#642 resolved #641 by pinning gix-transport (and its unique dependencies) to 0.41.2 as a workaround for cargo install not using the lockfile. See this issue for more information.

Changed

• PR#639 updated tame-index to avoid an error if you don't used --locked.

Fixed

• PR#638 resolved #636 by updating krates.

Changed

• PR#631 improved the diagnostic for when the yank check fails due to some issue with retrieving or reading the index information.
• PR#633 updated gix -> 0.60.

Fixed

• PR#626 resolved #625 by explicitly checking that a license identified as Pixar was actually (probably) the Pixar license, instead of a normal Apache-2.0 license.

Added

• PR#618 added metadata notes to diagnostics when a license is rejected, as well as removing span information for accepted licenses unless the log level is info or higher to make the diagnostic clearer by default.

Fixed

• PR#617 resolved #576 by updating the SPDX license list to 3.23.