From 593d55fa84ff2e19135a05ab7c98a2d7fe93317c Mon Sep 17 00:00:00 2001
From: Heiko Schaefer <heiko@schaefer.name>
Date: Tue, 22 Mar 2022 13:17:45 +0100
Subject: [PATCH] Run cargo deny in CI linting stage

---
 .gitlab-ci.yml |  8 ++++++++
 deny.toml      | 30 ++++++++++++++++++++++++++++++
 2 files changed, 38 insertions(+)
 create mode 100644 deny.toml

diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index ecbff35..553a5ef 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -37,6 +37,14 @@ cargo-fmt:
     - rustup component add rustfmt
     - cargo fmt -- --check
 
+cargo-deny:
+  stage: lint
+  image: rust:latest
+  before_script:
+    - cargo install --locked cargo-deny
+  script:
+    - cargo deny check
+
 cargo-clippy:
   stage: lint
   image: rust:latest
diff --git a/deny.toml b/deny.toml
new file mode 100644
index 0000000..4f38490
--- /dev/null
+++ b/deny.toml
@@ -0,0 +1,30 @@
+# SPDX-FileCopyrightText: 2022 Heiko Schaefer <heiko@schaefer.name>
+# SPDX-License-Identifier: MIT OR Apache-2.0
+
+[advisories]
+db-path = "~/.cargo/advisory-db"
+db-urls = ["https://github.com/rustsec/advisory-db"]
+vulnerability = "deny"
+unmaintained = "warn"
+yanked = "warn"
+notice = "warn"
+ignore = [
+    # Ignore time issue for now as there is no solution
+    "RUSTSEC-2020-0159",
+    "RUSTSEC-2020-0071",
+]
+[licenses]
+unlicensed = "deny"
+allow = [
+    "MIT",
+    "Apache-2.0",
+    "BSD-3-Clause",
+    "BSD-2-Clause",
+    "ISC",
+    "BSL-1.0",
+    "CC0-1.0",
+]
+deny = [
+    "Nokia",
+]
+copyleft = "allow"