ci: Reduce audit ignores (#3758)

joncinque · web-flow · commit 5f3cbc49ae01 · 2022-10-25T20:34:34.000-04:00
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/ci/do-audit.sh b/ci/do-audit.sh
@@ -5,32 +5,9 @@ cd "$(dirname "$0")/.."
 source ./ci/rust-version.sh stable
 
 cargo_audit_ignores=(
-  # failure is officially deprecated/unmaintained
-  #
-  # Blocked on multiple upstream crates removing their `failure` dependency.
-  --ignore RUSTSEC-2020-0036
-
   # Potential segfault in the time crate
   #
-  # Blocked on chrono and solana_rbpf updating `time` to >= 0.2.23
+  # Blocked on chrono updating `time` to >= 0.2.23
   --ignore RUSTSEC-2020-0071
-
-  # chrono: Potential segfault in `localtime_r` invocations
-  #
-  # Blocked due to no safe upgrade
-  # https://github.com/chronotope/chrono/issues/499
-  --ignore RUSTSEC-2020-0159
-
-  # memmap is officially deprecated/unmaintained, used by honggfuzz
-  #
-  # Blocked on honggfuzz, fixed in https://github.com/rust-fuzz/honggfuzz-rs/pull/55
-  # need to update honggfuzz dependency whenever the next version is released
-  --ignore RUSTSEC-2020-0077
-
-  # rocksdb: Out-of-bounds read when opening multiple column families with TTL
-  #
-  # Blocked on Solana 1.11, fixed in https://github.com/solana-labs/solana/pull/26949
-  # Once we update to 1.11, we can remove this
-  --ignore RUSTSEC-2022-0046
 )
 cargo +"$rust_stable" audit "${cargo_audit_ignores[@]}"
diff --git a/feature-proposal/cli/Cargo.toml b/feature-proposal/cli/Cargo.toml
@@ -8,7 +8,7 @@ license = "Apache-2.0"
 edition = "2018"
 
 [dependencies]
-chrono = "0.4.19"
+chrono = "0.4.22"
 clap = "2.33.3"
 solana-clap-utils = "1.14.4"
 solana-cli-config = "1.14.4"
