-
Notifications
You must be signed in to change notification settings - Fork 5
Closed
Labels
Stellar WaveIssues in the Stellar wave programIssues in the Stellar wave program
Description
Description:
Integrate Rust dependency vulnerability and license policy checks.
Tasks:
- Add cargo-audit step to CI to detect vulnerable deps
- Add cargo-deny config for license and bans policies
- Document how to update advisories / allow temporary exceptions
Acceptance Criteria:
- CI fails on known vulnerable crates
- License policy is enforced via cargo deny
- Docs tell contributors how to resolve failures
Reactions are currently unavailable
Metadata
Metadata
Assignees
Labels
Stellar WaveIssues in the Stellar wave programIssues in the Stellar wave program