[Bug 276557] security/cargo-audit: broken on Cirrus CI

Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Tue, 23 Jan 2024 15:36:26 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=276557

            Bug ID: 276557
           Summary: security/cargo-audit: broken on Cirrus CI
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Many People
          Priority: ---
         Component: Individual Port(s)
          Assignee: mikael@FreeBSD.org
          Reporter: asomers@FreeBSD.org
          Assignee: mikael@FreeBSD.org
             Flags: maintainer-feedback?(mikael@FreeBSD.org)

security/cargo-audit version 0.18.3 always fails in Cirrus CI, though version
0.17.6 does not.  The likely problem seems to be that GCP (which Cirrus uses)
has some kind of TLS proxy that does not work with the newer cargo-audit
version.  Since CI pipelines are a major use for this package, and since Cirrus
is the most popular CI provider for Rust projects, I suggest that the port be
rolled back to 0.17.6, if possible.

Upstream issue: https://github.com/rustsec/rustsec/issues/1058

Workaround: instead of using this port, build from source with "cargo install
--version=0.17.6 cargo-audit"

-- 
You are receiving this mail because:
You are the assignee for the bug.