From 53fa3a7d6ec140b5b3b1971fa9df2ad4923a3a73 Mon Sep 17 00:00:00 2001 From: Dylan Knutson Date: Fri, 22 May 2026 13:12:18 -0700 Subject: [PATCH] chore: migrate embedded-services pins from v0.2.0 to main Update all platform Cargo.toml files to reference the main branch of embedded-services instead of v0.2.0. The APIs are identical since PR #852 was merged to both branches, so no code changes are needed. This ensures consistent trait resolution across all platforms and prepares for upcoming features that target the main branch. --- platform/dev-imxrt/Cargo.lock | 42 +- platform/dev-imxrt/Cargo.toml | 2 +- platform/dev-imxrt/supply-chain/config.toml | 24 - platform/dev-imxrt/supply-chain/imports.lock | 60 +- platform/dev-mcxa/Cargo.lock | 42 +- platform/dev-mcxa/Cargo.toml | 2 +- platform/dev-mcxa/supply-chain/config.toml | 140 ---- platform/dev-mcxa/supply-chain/imports.lock | 693 ++++++++++++++++++- platform/dev-npcx/Cargo.lock | 42 +- platform/dev-npcx/Cargo.toml | 2 +- platform/dev-npcx/supply-chain/config.toml | 40 -- platform/dev-npcx/supply-chain/imports.lock | 53 +- platform/dev-qemu/Cargo.lock | 46 +- platform/dev-qemu/Cargo.toml | 2 +- platform/dev-qemu/supply-chain/config.toml | 28 +- platform/dev-qemu/supply-chain/imports.lock | 45 +- platform/platform-common/Cargo.lock | 62 +- platform/platform-common/Cargo.toml | 22 +- 18 files changed, 851 insertions(+), 496 deletions(-) diff --git a/platform/dev-imxrt/Cargo.lock b/platform/dev-imxrt/Cargo.lock index 886ef38..862956c 100644 --- a/platform/dev-imxrt/Cargo.lock +++ b/platform/dev-imxrt/Cargo.lock @@ -35,7 +35,7 @@ dependencies = [ [[package]] name = "battery-service" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "battery-service-interface", "defmt 0.3.100", @@ -51,7 +51,7 @@ dependencies = [ [[package]] name = "battery-service-interface" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embedded-batteries-async", @@ -60,7 +60,7 @@ dependencies = [ [[package]] name = "battery-service-relay" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "battery-service-interface", "defmt 0.3.100", @@ -68,6 +68,14 @@ dependencies = [ "num_enum", ] +[[package]] +name = "bit-register" +version = "0.1.0" +source = "git+https://github.com/OpenDevicePartnership/odp-utilities?tag=v0.1.0#583015c08ad9855f310bdb25d5cf9abff77b5e08" +dependencies = [ + "num-traits", +] + [[package]] name = "bit-register" version = "0.1.0" @@ -658,7 +666,7 @@ dependencies = [ [[package]] name = "embedded-services" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "bitfield 0.17.0", "cortex-m", @@ -690,9 +698,9 @@ dependencies = [ [[package]] name = "espi-device" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/haf-ec-service#54439c76d567fe8c65337cc4461c93a8a4fd434c" +source = "git+https://github.com/OpenDevicePartnership/haf-ec-service#290aa80a4c281857f3bed94581200b330119286c" dependencies = [ - "bit-register", + "bit-register 0.1.0 (git+https://github.com/OpenDevicePartnership/odp-utilities?tag=v0.1.0)", "bitflags 2.11.1", "num-traits", "num_enum", @@ -851,9 +859,9 @@ dependencies = [ [[package]] name = "mctp-rs" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ - "bit-register", + "bit-register 0.1.0 (git+https://github.com/OpenDevicePartnership/odp-utilities)", "defmt 0.3.100", "embedded-batteries", "espi-device", @@ -960,7 +968,7 @@ dependencies = [ [[package]] name = "odp-service-common" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "embedded-services", "static_cell", @@ -1035,7 +1043,7 @@ checksum = "c33a9471896f1c69cecef8d20cbe2f7accd12527ce60845ff44c153bb2a21b49" [[package]] name = "power-policy-interface" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "bitfield 0.17.0", "defmt 0.3.100", @@ -1262,7 +1270,7 @@ dependencies = [ [[package]] name = "thermal-service" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embassy-futures", @@ -1279,7 +1287,7 @@ dependencies = [ [[package]] name = "thermal-service-interface" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embassy-time", @@ -1290,7 +1298,7 @@ dependencies = [ [[package]] name = "thermal-service-relay" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embedded-services", @@ -1331,7 +1339,7 @@ dependencies = [ [[package]] name = "time-alarm-service" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embassy-futures", @@ -1347,7 +1355,7 @@ dependencies = [ [[package]] name = "time-alarm-service-interface" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "bitfield 0.17.0", "defmt 0.3.100", @@ -1359,7 +1367,7 @@ dependencies = [ [[package]] name = "time-alarm-service-relay" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embedded-mcu-hal", @@ -1438,7 +1446,7 @@ checksum = "40ce102ab67701b8526c123c1bab5cbe42d7040ccfd0f64af1a385808d2f43de" [[package]] name = "uart-service" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embassy-sync", diff --git a/platform/dev-imxrt/Cargo.toml b/platform/dev-imxrt/Cargo.toml index d116bdd..f1755ec 100644 --- a/platform/dev-imxrt/Cargo.toml +++ b/platform/dev-imxrt/Cargo.toml @@ -55,7 +55,7 @@ embassy-imxrt = { git = "https://github.com/OpenDevicePartnership/embassy-imxrt" "time", "mimxrt685s", ] } -uart-service = { git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "v0.2.0", features = [ +uart-service = { git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "main", features = [ "defmt", ] } static_cell = "2.1.0" diff --git a/platform/dev-imxrt/supply-chain/config.toml b/platform/dev-imxrt/supply-chain/config.toml index 16960e5..562fc23 100644 --- a/platform/dev-imxrt/supply-chain/config.toml +++ b/platform/dev-imxrt/supply-chain/config.toml @@ -35,10 +35,6 @@ criteria = "safe-to-deploy" version = "1.25.0" criteria = "safe-to-deploy" -[[exemptions.cc]] -version = "1.2.59" -criteria = "safe-to-deploy" - [[exemptions.cc]] version = "1.2.62" criteria = "safe-to-deploy" @@ -71,14 +67,6 @@ criteria = "safe-to-deploy" version = "0.4.2" criteria = "safe-to-deploy" -[[exemptions.device-driver]] -version = "1.0.8" -criteria = "safe-to-deploy" - -[[exemptions.device-driver]] -version = "1.0.9" -criteria = "safe-to-deploy" - [[exemptions.document-features]] version = "0.2.12" criteria = "safe-to-deploy" @@ -135,10 +123,6 @@ criteria = "safe-to-deploy" version = "1.0.1" criteria = "safe-to-deploy" -[[exemptions.libc]] -version = "0.2.184" -criteria = "safe-to-deploy" - [[exemptions.libc]] version = "0.2.186" criteria = "safe-to-deploy" @@ -191,10 +175,6 @@ criteria = "safe-to-deploy" version = "1.2.1" criteria = "safe-to-deploy" -[[exemptions.subenum]] -version = "1.1.3" -criteria = "safe-to-deploy" - [[exemptions.subenum]] version = "1.2.0" criteria = "safe-to-deploy" @@ -227,10 +207,6 @@ criteria = "safe-to-deploy" version = "0.3.23" criteria = "safe-to-deploy" -[[exemptions.typenum]] -version = "1.19.0" -criteria = "safe-to-deploy" - [[exemptions.typenum]] version = "1.20.0" criteria = "safe-to-deploy" diff --git a/platform/dev-imxrt/supply-chain/imports.lock b/platform/dev-imxrt/supply-chain/imports.lock index 5e7543a..a273221 100644 --- a/platform/dev-imxrt/supply-chain/imports.lock +++ b/platform/dev-imxrt/supply-chain/imports.lock @@ -93,24 +93,18 @@ version = "0.3.100" notes = "Compatibility shim: no_std crate that re-exports defmt 1.x items for 0.3 API compatibility. No unsafe code, no build script, no powerful imports, no logic - pure pub-use re-exports. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/embedded-services/refs/heads/main/supply-chain/audits.toml" -[[audits.OpenDevicePartnership.audits.defmt]] -who = "Felipe Balbi " -criteria = "safe-to-deploy" -version = "1.0.1" -aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/mcxa-pac/refs/heads/main/supply-chain/audits.toml" - -[[audits.OpenDevicePartnership.audits.defmt-macros]] -who = "Felipe Balbi " -criteria = "safe-to-deploy" -version = "1.0.1" -aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/mcxa-pac/refs/heads/main/supply-chain/audits.toml" - [[audits.OpenDevicePartnership.audits.defmt-parser]] who = "Felipe Balbi " criteria = "safe-to-deploy" version = "1.0.0" aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/mcxa-pac/refs/heads/main/supply-chain/audits.toml" +[[audits.OpenDevicePartnership.audits.device-driver]] +who = "Felipe Balbi " +criteria = "safe-to-deploy" +version = "1.0.9" +aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/tps6699x/refs/heads/main/supply-chain/audits.toml" + [[audits.OpenDevicePartnership.audits.embassy-embedded-hal]] who = "Jerry Xie " criteria = "safe-to-deploy" @@ -315,20 +309,6 @@ version = "0.3.1" notes = "no_std 32-bit hashing (FNV, MurmurHash3). ~10 unsafe blocks in murmur3.rs for MaybeUninit buffer handling - all sound. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/embedded-services/refs/heads/main/supply-chain/audits.toml" -[[audits.OpenDevicePartnership.audits.heapless]] -who = "Jerry Xie " -criteria = "safe-to-deploy" -version = "0.8.0" -notes = "no_std fixed-capacity data structures. Extensive unsafe for MaybeUninit buffer management, lock-free queues (Vyukov MPMC, SPSC), and Treiber stack memory pools with ABA prevention. Patterns mirror std or published algorithms. Build script probes for atomic/LLSC support. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" -aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/embedded-services/refs/heads/main/supply-chain/audits.toml" - -[[audits.OpenDevicePartnership.audits.heapless]] -who = "Jerry Xie " -criteria = "safe-to-deploy" -version = "0.9.2" -notes = "no_std fixed-capacity data structures. Extensive unsafe for MaybeUninit buffers, lock-free queues (Vyukov MPMC, SPSC), Treiber stack pools with ABA prevention (CAS tagged pointers + ARM LLSC). All Send/Sync bounds verified correct. Build script probes for ARM LLSC. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" -aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/embedded-services/refs/heads/main/supply-chain/audits.toml" - [[audits.OpenDevicePartnership.audits.heck]] who = "Matteo Tullo " criteria = "safe-to-deploy" @@ -667,34 +647,6 @@ version = "1.5.0" notes = "Unsafe review in https://crrev.com/c/5838022" aggregated-from = "https://chromium.googlesource.com/chromium/src/+/main/third_party/rust/chromium_crates_io/supply-chain/audits.toml?format=TEXT" -[[audits.google.audits.either]] -who = "Manish Goregaokar " -criteria = "safe-to-deploy" -version = "1.13.0" -notes = "Unsafe code pertaining to wrapping Pin APIs. Mostly passes invariants down." -aggregated-from = "https://chromium.googlesource.com/chromium/src/+/main/third_party/rust/chromium_crates_io/supply-chain/audits.toml?format=TEXT" - -[[audits.google.audits.either]] -who = "Daniel Cheng " -criteria = "safe-to-deploy" -delta = "1.13.0 -> 1.14.0" -notes = """ -Inheriting ub-risk-1 from the baseline review of 1.13.0. While the delta has some diffs in unsafe code, they are either: -- migrating code to use helper macros -- migrating match patterns to take advantage of default bindings mode from RFC 2005 -Either way, the result is code that does exactly the same thing and does not change the risk of UB. - -See https://crrev.com/c/6323164 for more audit details. -""" -aggregated-from = "https://chromium.googlesource.com/chromium/src/+/main/third_party/rust/chromium_crates_io/supply-chain/audits.toml?format=TEXT" - -[[audits.google.audits.either]] -who = "Lukasz Anforowicz " -criteria = "safe-to-deploy" -delta = "1.14.0 -> 1.15.0" -notes = 'The delta in `lib.rs` only tweaks doc comments and `#[cfg(feature = "std")]`.' -aggregated-from = "https://chromium.googlesource.com/chromium/src/+/main/third_party/rust/chromium_crates_io/supply-chain/audits.toml?format=TEXT" - [[audits.google.audits.lazy_static]] who = "Lukasz Anforowicz " criteria = "safe-to-deploy" diff --git a/platform/dev-mcxa/Cargo.lock b/platform/dev-mcxa/Cargo.lock index b5fefc9..e907b05 100644 --- a/platform/dev-mcxa/Cargo.lock +++ b/platform/dev-mcxa/Cargo.lock @@ -29,7 +29,7 @@ dependencies = [ [[package]] name = "battery-service" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "battery-service-interface", "defmt 0.3.100", @@ -45,7 +45,7 @@ dependencies = [ [[package]] name = "battery-service-interface" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embedded-batteries-async", @@ -54,7 +54,7 @@ dependencies = [ [[package]] name = "battery-service-relay" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "battery-service-interface", "defmt 0.3.100", @@ -73,6 +73,14 @@ dependencies = [ "maitake-sync", ] +[[package]] +name = "bit-register" +version = "0.1.0" +source = "git+https://github.com/OpenDevicePartnership/odp-utilities?tag=v0.1.0#583015c08ad9855f310bdb25d5cf9abff77b5e08" +dependencies = [ + "num-traits", +] + [[package]] name = "bit-register" version = "0.1.0" @@ -641,7 +649,7 @@ dependencies = [ [[package]] name = "embedded-services" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "bitfield 0.17.0", "cortex-m", @@ -679,9 +687,9 @@ checksum = "877a4ace8713b0bcf2a4e7eec82529c029f1d0619886d18145fea96c3ffe5c0f" [[package]] name = "espi-device" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/haf-ec-service#54439c76d567fe8c65337cc4461c93a8a4fd434c" +source = "git+https://github.com/OpenDevicePartnership/haf-ec-service#290aa80a4c281857f3bed94581200b330119286c" dependencies = [ - "bit-register", + "bit-register 0.1.0 (git+https://github.com/OpenDevicePartnership/odp-utilities?tag=v0.1.0)", "bitflags 2.11.1", "num-traits", "num_enum", @@ -849,9 +857,9 @@ dependencies = [ [[package]] name = "mctp-rs" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ - "bit-register", + "bit-register 0.1.0 (git+https://github.com/OpenDevicePartnership/odp-utilities)", "defmt 0.3.100", "embedded-batteries", "espi-device", @@ -946,7 +954,7 @@ dependencies = [ [[package]] name = "odp-service-common" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "embedded-services", "static_cell", @@ -1044,7 +1052,7 @@ dependencies = [ [[package]] name = "power-policy-interface" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "bitfield 0.17.0", "defmt 0.3.100", @@ -1290,7 +1298,7 @@ dependencies = [ [[package]] name = "thermal-service" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embassy-futures", @@ -1307,7 +1315,7 @@ dependencies = [ [[package]] name = "thermal-service-interface" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embassy-time", @@ -1318,7 +1326,7 @@ dependencies = [ [[package]] name = "thermal-service-relay" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embedded-services", @@ -1359,7 +1367,7 @@ dependencies = [ [[package]] name = "time-alarm-service" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embassy-futures", @@ -1375,7 +1383,7 @@ dependencies = [ [[package]] name = "time-alarm-service-interface" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "bitfield 0.17.0", "defmt 0.3.100", @@ -1387,7 +1395,7 @@ dependencies = [ [[package]] name = "time-alarm-service-relay" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embedded-mcu-hal", @@ -1460,7 +1468,7 @@ dependencies = [ [[package]] name = "uart-service" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embassy-sync", diff --git a/platform/dev-mcxa/Cargo.toml b/platform/dev-mcxa/Cargo.toml index 32bcbbc..c8d8304 100644 --- a/platform/dev-mcxa/Cargo.toml +++ b/platform/dev-mcxa/Cargo.toml @@ -54,7 +54,7 @@ embassy-mcxa = { git = "https://github.com/embassy-rs/embassy", rev = "bef411873 "unstable-pac", "mcxa2xx", ] } -uart-service = { git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "v0.2.0", features = [ +uart-service = { git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "main", features = [ "defmt", ] } static_cell = "2.1.0" diff --git a/platform/dev-mcxa/supply-chain/config.toml b/platform/dev-mcxa/supply-chain/config.toml index d460c26..dc92635 100644 --- a/platform/dev-mcxa/supply-chain/config.toml +++ b/platform/dev-mcxa/supply-chain/config.toml @@ -69,18 +69,10 @@ criteria = "safe-to-deploy" version = "0.8.1" criteria = "safe-to-deploy" -[[exemptions.cc]] -version = "1.2.61" -criteria = "safe-to-deploy" - [[exemptions.cc]] version = "1.2.62" criteria = "safe-to-deploy" -[[exemptions.cfg-if]] -version = "1.0.4" -criteria = "safe-to-deploy" - [[exemptions.cfg_aliases]] version = "0.2.1" criteria = "safe-to-deploy" @@ -121,34 +113,18 @@ criteria = "safe-to-deploy" version = "1.0.1" criteria = "safe-to-deploy" -[[exemptions.defmt]] -version = "1.1.0" -criteria = "safe-to-deploy" - [[exemptions.defmt-macros]] version = "1.0.1" criteria = "safe-to-deploy" -[[exemptions.defmt-macros]] -version = "1.1.0" -criteria = "safe-to-deploy" - [[exemptions.defmt-parser]] version = "1.0.0" criteria = "safe-to-deploy" -[[exemptions.defmt-rtt]] -version = "1.1.0" -criteria = "safe-to-deploy" - [[exemptions.defmt-rtt]] version = "1.2.0" criteria = "safe-to-deploy" -[[exemptions.document-features]] -version = "0.2.12" -criteria = "safe-to-deploy" - [[exemptions.embassy-executor]] version = "0.10.0@git:7af7d3d270f019ff70f919c62c78d51f28f2d50a" criteria = "safe-to-deploy" @@ -177,58 +153,14 @@ criteria = "safe-to-deploy" version = "0.2.7" criteria = "safe-to-deploy" -[[exemptions.embedded-sensors-hal]] -version = "0.1.1" -criteria = "safe-to-deploy" - -[[exemptions.find-msvc-tools]] -version = "0.1.9" -criteria = "safe-to-deploy" - -[[exemptions.futures-core]] -version = "0.3.32" -criteria = "safe-to-deploy" - -[[exemptions.futures-sink]] -version = "0.3.32" -criteria = "safe-to-deploy" - -[[exemptions.generator]] -version = "0.8.8" -criteria = "safe-to-deploy" - [[exemptions.grounded]] version = "0.2.1" criteria = "safe-to-deploy" -[[exemptions.hashbrown]] -version = "0.17.0" -criteria = "safe-to-deploy" - -[[exemptions.hashbrown]] -version = "0.17.1" -criteria = "safe-to-deploy" - -[[exemptions.heapless]] -version = "0.9.3" -criteria = "safe-to-deploy" - -[[exemptions.ident_case]] -version = "1.0.1" -criteria = "safe-to-deploy" - -[[exemptions.indexmap]] -version = "2.14.0" -criteria = "safe-to-deploy" - [[exemptions.libc]] version = "0.2.186" criteria = "safe-to-deploy" -[[exemptions.litrs]] -version = "1.0.0" -criteria = "safe-to-deploy" - [[exemptions.loom]] version = "0.7.2" criteria = "safe-to-deploy" @@ -241,10 +173,6 @@ criteria = "safe-to-deploy" version = "2.8.0" criteria = "safe-to-deploy" -[[exemptions.once_cell]] -version = "1.21.4" -criteria = "safe-to-deploy" - [[exemptions.panic-probe]] version = "1.0.0" criteria = "safe-to-deploy" @@ -253,30 +181,6 @@ criteria = "safe-to-deploy" version = "1.0.15" criteria = "safe-to-deploy" -[[exemptions.pin-project]] -version = "1.1.12" -criteria = "safe-to-deploy" - -[[exemptions.pin-project]] -version = "1.1.13" -criteria = "safe-to-deploy" - -[[exemptions.pin-project-internal]] -version = "1.1.12" -criteria = "safe-to-deploy" - -[[exemptions.pin-project-internal]] -version = "1.1.13" -criteria = "safe-to-deploy" - -[[exemptions.pin-project-lite]] -version = "0.2.17" -criteria = "safe-to-deploy" - -[[exemptions.portable-atomic]] -version = "1.13.1" -criteria = "safe-to-deploy" - [[exemptions.rand_core]] version = "0.10.1" criteria = "safe-to-deploy" @@ -289,10 +193,6 @@ criteria = "safe-to-deploy" version = "0.4.14" criteria = "safe-to-deploy" -[[exemptions.regex-syntax]] -version = "0.8.10" -criteria = "safe-to-deploy" - [[exemptions.rustc_version]] version = "0.2.3" criteria = "safe-to-deploy" @@ -313,14 +213,6 @@ criteria = "safe-to-deploy" version = "0.7.0" criteria = "safe-to-deploy" -[[exemptions.stable_deref_trait]] -version = "1.2.1" -criteria = "safe-to-deploy" - -[[exemptions.subenum]] -version = "1.2.0" -criteria = "safe-to-deploy" - [[exemptions.syn]] version = "2.0.117" criteria = "safe-to-deploy" @@ -333,30 +225,6 @@ criteria = "safe-to-deploy" version = "2.0.18" criteria = "safe-to-deploy" -[[exemptions.tracing]] -version = "0.1.44" -criteria = "safe-to-deploy" - -[[exemptions.tracing-attributes]] -version = "0.1.31" -criteria = "safe-to-deploy" - -[[exemptions.tracing-core]] -version = "0.1.36" -criteria = "safe-to-deploy" - -[[exemptions.tracing-subscriber]] -version = "0.3.23" -criteria = "safe-to-deploy" - -[[exemptions.unicode-ident]] -version = "1.0.24" -criteria = "safe-to-deploy" - -[[exemptions.unicode-segmentation]] -version = "1.13.2" -criteria = "safe-to-deploy" - [[exemptions.vcell]] version = "0.1.3" criteria = "safe-to-deploy" @@ -376,11 +244,3 @@ criteria = "safe-to-deploy" [[exemptions.windows-sys]] version = "0.61.2" criteria = "safe-to-deploy" - -[[exemptions.zerocopy]] -version = "0.8.48" -criteria = "safe-to-deploy" - -[[exemptions.zerocopy-derive]] -version = "0.8.48" -criteria = "safe-to-deploy" diff --git a/platform/dev-mcxa/supply-chain/imports.lock b/platform/dev-mcxa/supply-chain/imports.lock index 5cbae2f..d17cd61 100644 --- a/platform/dev-mcxa/supply-chain/imports.lock +++ b/platform/dev-mcxa/supply-chain/imports.lock @@ -1,6 +1,13 @@ # cargo-vet imports lock +[[publisher.unicode-segmentation]] +version = "1.13.2" +when = "2026-03-26" +user-id = 1139 +user-login = "Manishearth" +user-name = "Manish Goregaokar" + [[audits.bytecode-alliance.audits.bitflags]] who = "Jamey Sharp " criteria = "safe-to-deploy" @@ -41,6 +48,12 @@ criteria = "safe-to-deploy" delta = "2.10.0 -> 2.11.1" notes = "Minor updates, nothing awry here." +[[audits.bytecode-alliance.audits.cfg-if]] +who = "Alex Crichton " +criteria = "safe-to-deploy" +version = "1.0.0" +notes = "I am the author of this crate." + [[audits.bytecode-alliance.audits.embedded-io]] who = "Alex Crichton " criteria = "safe-to-deploy" @@ -53,6 +66,44 @@ criteria = "safe-to-deploy" delta = "0.4.0 -> 0.6.1" notes = "Major updates, but almost all safe code. Lots of pruning/deletions, nothing out of the ordrinary." +[[audits.bytecode-alliance.audits.futures-core]] +who = "Pat Hickey " +criteria = "safe-to-deploy" +version = "0.3.27" +notes = "Unsafe used to implement a concurrency primitive AtomicWaker. Well-commented and not obviously incorrect. Like my other audits of these concurrency primitives inside the futures family, I couldn't certify that it is correct without formal methods, but that is out of scope for this vetting." + +[[audits.bytecode-alliance.audits.futures-core]] +who = "Pat Hickey " +criteria = "safe-to-deploy" +delta = "0.3.28 -> 0.3.31" + +[[audits.bytecode-alliance.audits.futures-sink]] +who = "Pat Hickey " +criteria = "safe-to-deploy" +version = "0.3.27" + +[[audits.bytecode-alliance.audits.futures-sink]] +who = "Pat Hickey " +criteria = "safe-to-deploy" +delta = "0.3.28 -> 0.3.31" + +[[audits.bytecode-alliance.audits.hashbrown]] +who = "Chris Fallin " +criteria = "safe-to-deploy" +delta = "0.12.3 -> 0.13.1" +notes = "The diff looks plausible. Much of it is low-level memory-layout code and I can't be 100% certain without a deeper dive into the implementation logic, but nothing looks actively malicious." + +[[audits.bytecode-alliance.audits.hashbrown]] +who = "Trevor Elliott " +criteria = "safe-to-deploy" +delta = "0.13.1 -> 0.13.2" +notes = "I read through the diff between v0.13.1 and v0.13.2, and verified that the changes made matched up with the changelog entries. There were very few changes between these two releases, and it was easy to verify what they did." + +[[audits.bytecode-alliance.audits.hashbrown]] +who = "Chris Fallin " +criteria = "safe-to-deploy" +delta = "0.14.5 -> 0.15.2" + [[audits.bytecode-alliance.audits.heck]] who = "Alex Crichton " criteria = "safe-to-deploy" @@ -94,6 +145,12 @@ criteria = "safe-to-deploy" version = "0.2.19" notes = "As advertised: a numeric library. The only `unsafe` is from some float-to-int conversions, which seems expected." +[[audits.bytecode-alliance.audits.pin-project-lite]] +who = "Alex Crichton " +criteria = "safe-to-deploy" +delta = "0.2.13 -> 0.2.14" +notes = "No substantive changes in this update" + [[audits.bytecode-alliance.audits.sharded-slab]] who = "Pat Hickey " criteria = "safe-to-deploy" @@ -124,6 +181,18 @@ criteria = "safe-to-deploy" version = "1.1.4" notes = "uses unsafe to implement thread local storage of objects" +[[audits.bytecode-alliance.audits.tracing-attributes]] +who = "Alex Crichton " +criteria = "safe-to-deploy" +delta = "0.1.28 -> 0.1.30" +notes = "Few code changes, a pretty minor update." + +[[audits.bytecode-alliance.audits.tracing-core]] +who = "Alex Crichton " +criteria = "safe-to-deploy" +delta = "0.1.33 -> 0.1.34" +notes = "Mostly just an update with Rust stylistic conventions changing. Nothing awry." + [[audits.bytecode-alliance.audits.tracing-log]] who = "Alex Crichton " criteria = "safe-to-deploy" @@ -139,6 +208,11 @@ criteria = "safe-to-deploy" delta = "0.1.3 -> 0.2.0" notes = "Nothing out of the ordinary, a typical major version update and nothing awry." +[[audits.bytecode-alliance.audits.tracing-subscriber]] +who = "Pat Hickey " +criteria = "safe-to-deploy" +version = "0.3.17" + [[audits.google.audits.autocfg]] who = "Manish Goregaokar " criteria = "safe-to-deploy" @@ -195,6 +269,31 @@ https://source.chromium.org/chromium/chromium/src/+/28841c33c77833cc30b286f9ae24 """ aggregated-from = "https://chromium.googlesource.com/chromium/src/+/main/third_party/rust/chromium_crates_io/supply-chain/audits.toml?format=TEXT" +[[audits.google.audits.indexmap]] +who = "Lukasz Anforowicz " +criteria = "safe-to-deploy" +version = "2.7.1" +notes = ''' +Grepped for `-i cipher`, `-i crypto`, `'\bfs\b'`, `'\bnet\b'` +and there were no hits. + +There is a little bit of `unsafe` Rust code - the audit can be found at +https://chromium-review.googlesource.com/c/chromium/src/+/6187726/2 +''' +aggregated-from = "https://chromium.googlesource.com/chromium/src/+/main/third_party/rust/chromium_crates_io/supply-chain/audits.toml?format=TEXT" + +[[audits.google.audits.indexmap]] +who = "Lukasz Anforowicz " +criteria = "safe-to-deploy" +delta = "2.7.1 -> 2.8.0" +notes = """ +No `unsafe` introduced or affected in: +* `indexmap_with_default!` and `indexset_with_default!` macros +* New `PartialEq` implementations +* `fn slice_eq` in `util.rs` +""" +aggregated-from = "https://chromium.googlesource.com/chromium/src/+/main/third_party/rust/chromium_crates_io/supply-chain/audits.toml?format=TEXT" + [[audits.google.audits.lazy_static]] who = "Lukasz Anforowicz " criteria = "safe-to-deploy" @@ -260,6 +359,20 @@ criteria = "safe-to-deploy" delta = "1.0.0 -> 1.1.0" aggregated-from = "https://chromium.googlesource.com/chromiumos/third_party/rust_crates/+/refs/heads/main/cargo-vet/audits.toml?format=TEXT" +[[audits.google.audits.pin-project-lite]] +who = "David Koloski " +criteria = "safe-to-deploy" +version = "0.2.9" +notes = "Reviewed on https://fxrev.dev/824504" +aggregated-from = "https://fuchsia.googlesource.com/fuchsia/+/refs/heads/main/third_party/rust_crates/supply-chain/audits.toml?format=TEXT" + +[[audits.google.audits.pin-project-lite]] +who = "David Koloski " +criteria = "safe-to-deploy" +delta = "0.2.9 -> 0.2.13" +notes = "Audited at https://fxrev.dev/946396" +aggregated-from = "https://fuchsia.googlesource.com/fuchsia/+/refs/heads/main/third_party/rust_crates/supply-chain/audits.toml?format=TEXT" + [[audits.google.audits.proc-macro2]] who = "Lukasz Anforowicz " criteria = "safe-to-deploy" @@ -432,12 +545,26 @@ For more detailed unsafe review notes please see https://crrev.com/c/6362797 """ aggregated-from = "https://chromium.googlesource.com/chromium/src/+/main/third_party/rust/chromium_crates_io/supply-chain/audits.toml?format=TEXT" +[[audits.google.audits.regex-syntax]] +who = "Manish Goregaokar " +criteria = "safe-to-deploy" +version = "0.8.5" +notes = "Contains no unsafe" +aggregated-from = "https://chromium.googlesource.com/chromium/src/+/main/third_party/rust/chromium_crates_io/supply-chain/audits.toml?format=TEXT" + [[audits.google.audits.smallvec]] who = "Manish Goregaokar " criteria = "safe-to-deploy" version = "1.13.2" aggregated-from = "https://chromium.googlesource.com/chromium/src/+/main/third_party/rust/chromium_crates_io/supply-chain/audits.toml?format=TEXT" +[[audits.google.audits.stable_deref_trait]] +who = "Manish Goregaokar " +criteria = "safe-to-deploy" +version = "1.2.0" +notes = "Purely a trait, crates using this should be carefully vetted since self-referential stuff can be super tricky around various unsafe rust edges." +aggregated-from = "https://chromium.googlesource.com/chromium/src/+/main/third_party/rust/chromium_crates_io/supply-chain/audits.toml?format=TEXT" + [[audits.google.audits.strsim]] who = "danakj@chromium.org" criteria = "safe-to-deploy" @@ -449,6 +576,65 @@ Previously reviewed during security review and the audit is grandparented in. """ aggregated-from = "https://chromium.googlesource.com/chromium/src/+/main/third_party/rust/chromium_crates_io/supply-chain/audits.toml?format=TEXT" +[[audits.google.audits.unicode-ident]] +who = "Lukasz Anforowicz " +criteria = "safe-to-deploy" +version = "1.0.12" +notes = ''' +I grepped for \"crypt\", \"cipher\", \"fs\", \"net\" - there were no hits. + +All two functions from the public API of this crate use `unsafe` to avoid bound +checks for an array access. Cross-module analysis shows that the offsets can +be statically proven to be within array bounds. More details can be found in +the unsafe review CL at https://crrev.com/c/5350386. + +This crate has been added to Chromium in https://crrev.com/c/3891618. +''' +aggregated-from = "https://chromium.googlesource.com/chromium/src/+/main/third_party/rust/chromium_crates_io/supply-chain/audits.toml?format=TEXT" + +[[audits.google.audits.unicode-ident]] +who = "Dustin J. Mitchell " +criteria = "safe-to-deploy" +delta = "1.0.12 -> 1.0.13" +notes = "Lots of table updates, and tables are assumed correct with unsafe `.get_unchecked()`, so ub-risk-2 is appropriate" +aggregated-from = "https://chromium.googlesource.com/chromium/src/+/main/third_party/rust/chromium_crates_io/supply-chain/audits.toml?format=TEXT" + +[[audits.google.audits.unicode-ident]] +who = "Lukasz Anforowicz " +criteria = "safe-to-deploy" +delta = "1.0.13 -> 1.0.14" +notes = "Minimal delta in `.rs` files: new test assertions + doc changes." +aggregated-from = "https://chromium.googlesource.com/chromium/src/+/main/third_party/rust/chromium_crates_io/supply-chain/audits.toml?format=TEXT" + +[[audits.google.audits.unicode-ident]] +who = "Adrian Taylor " +criteria = "safe-to-deploy" +delta = "1.0.14 -> 1.0.15" +notes = "No changes relevant to any of these criteria." +aggregated-from = "https://chromium.googlesource.com/chromium/src/+/main/third_party/rust/chromium_crates_io/supply-chain/audits.toml?format=TEXT" + +[[audits.google.audits.unicode-ident]] +who = "Liza Burakova " +criteria = "safe-to-deploy" +delta = "1.0.15 -> 1.0.16" +aggregated-from = "https://chromium.googlesource.com/chromium/src/+/main/third_party/rust/chromium_crates_io/supply-chain/audits.toml?format=TEXT" + +[[audits.google.audits.unicode-ident]] +who = "Daniel Cheng " +criteria = "safe-to-deploy" +delta = "1.0.16 -> 1.0.18" +notes = "Only minor comment and documentation updates." +aggregated-from = "https://chromium.googlesource.com/chromium/src/+/main/third_party/rust/chromium_crates_io/supply-chain/audits.toml?format=TEXT" + +[[audits.mozilla.wildcard-audits.unicode-segmentation]] +who = "Manish Goregaokar " +criteria = "safe-to-deploy" +user-id = 1139 # Manish Goregaokar (Manishearth) +start = "2019-05-15" +end = "2027-04-23" +notes = "All code written or reviewed by Manish" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + [[audits.mozilla.audits.bitflags]] who = "Alex Franchuk " criteria = "safe-to-deploy" @@ -496,6 +682,30 @@ criteria = "safe-to-deploy" delta = "2.9.4 -> 2.10.0" aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" +[[audits.mozilla.audits.document-features]] +who = "Erich Gubler " +criteria = "safe-to-deploy" +version = "0.2.8" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + +[[audits.mozilla.audits.document-features]] +who = "Erich Gubler " +criteria = "safe-to-deploy" +delta = "0.2.8 -> 0.2.9" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + +[[audits.mozilla.audits.document-features]] +who = "Erich Gubler " +criteria = "safe-to-deploy" +delta = "0.2.9 -> 0.2.10" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + +[[audits.mozilla.audits.document-features]] +who = "Teodor Tanasoaia " +criteria = "safe-to-deploy" +delta = "0.2.10 -> 0.2.11" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + [[audits.mozilla.audits.fnv]] who = "Bobby Holley " criteria = "safe-to-deploy" @@ -503,12 +713,90 @@ version = "1.0.7" notes = "Simple hasher implementation with no unsafe code." aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" +[[audits.mozilla.audits.futures-core]] +who = "Mike Hommey " +criteria = "safe-to-deploy" +delta = "0.3.27 -> 0.3.28" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + +[[audits.mozilla.audits.futures-sink]] +who = "Mike Hommey " +criteria = "safe-to-deploy" +delta = "0.3.27 -> 0.3.28" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + +[[audits.mozilla.audits.hashbrown]] +who = "Mike Hommey " +criteria = "safe-to-deploy" +version = "0.12.3" +notes = "This version is used in rust's libstd, so effectively we're already trusting it" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + +[[audits.mozilla.audits.hashbrown]] +who = "Erich Gubler " +criteria = "safe-to-deploy" +delta = "0.15.2 -> 0.15.5" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + +[[audits.mozilla.audits.hashbrown]] +who = "Erich Gubler " +criteria = "safe-to-deploy" +delta = "0.15.5 -> 0.16.0" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + +[[audits.mozilla.audits.indexmap]] +who = "Erich Gubler " +criteria = "safe-to-deploy" +delta = "2.8.0 -> 2.11.4" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + +[[audits.mozilla.audits.litrs]] +who = "Erich Gubler " +criteria = "safe-to-deploy" +version = "0.4.1" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + [[audits.mozilla.audits.log]] who = "Erich Gubler " criteria = "safe-to-deploy" delta = "0.4.26 -> 0.4.29" aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" +[[audits.mozilla.audits.once_cell]] +who = "Erich Gubler " +criteria = "safe-to-deploy" +delta = "1.20.1 -> 1.20.2" +notes = "This update works around a Cargo bug that forces the addition of `portable-atomic` into a lockfile, which we have never needed to use." +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + +[[audits.mozilla.audits.once_cell]] +who = "Erich Gubler " +criteria = "safe-to-deploy" +delta = "1.20.2 -> 1.20.3" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + +[[audits.mozilla.audits.once_cell]] +who = "Erich Gubler " +criteria = "safe-to-deploy" +delta = "1.20.3 -> 1.21.1" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + +[[audits.mozilla.audits.once_cell]] +who = "Erich Gubler " +criteria = "safe-to-deploy" +delta = "1.21.1 -> 1.21.3" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + +[[audits.mozilla.audits.pin-project-lite]] +who = "Nika Layzell " +criteria = "safe-to-deploy" +delta = "0.2.14 -> 0.2.16" +notes = """ +Only functional change is to work around a bug in the negative_impls feature +(https://github.com/taiki-e/pin-project/issues/340#issuecomment-2432146009) +""" +aggregated-from = "https://raw.githubusercontent.com/mozilla/cargo-vet/main/supply-chain/audits.toml" + [[audits.mozilla.audits.proc-macro-error-attr2]] who = "Kagami Sascha Rosylight " criteria = "safe-to-deploy" @@ -571,6 +859,65 @@ criteria = "safe-to-deploy" delta = "0.10.0 -> 0.11.1" aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" +[[audits.mozilla.audits.tracing]] +who = "Alex Franchuk " +criteria = "safe-to-deploy" +version = "0.1.37" +notes = """ +There's only one unsafe impl, and its purpose is to ensure correct behavior by +creating a non-Send marker type (it has nothing to do with soundness). All +dependencies make sense, and no side-effectful std functions are used. +""" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + +[[audits.mozilla.audits.tracing]] +who = "Mark Hammond " +criteria = "safe-to-deploy" +delta = "0.1.37 -> 0.1.41" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + +[[audits.mozilla.audits.tracing-attributes]] +who = "Alex Franchuk " +criteria = "safe-to-deploy" +version = "0.1.24" +notes = "No unsafe code, macros extensively tested and produce reasonable code." +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + +[[audits.mozilla.audits.tracing-attributes]] +who = "Mark Hammond " +criteria = "safe-to-deploy" +delta = "0.1.24 -> 0.1.28" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + +[[audits.mozilla.audits.tracing-core]] +who = "Alex Franchuk " +criteria = "safe-to-deploy" +version = "0.1.30" +notes = """ +Most unsafe code is in implementing non-std sync primitives. Unsafe impls are +logically correct and justified in comments, and unsafe code is sound and +justified in comments. +""" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + +[[audits.mozilla.audits.tracing-core]] +who = "Mark Hammond " +criteria = "safe-to-deploy" +delta = "0.1.30 -> 0.1.33" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + +[[audits.mozilla.audits.tracing-subscriber]] +who = "Mark Hammond " +criteria = "safe-to-deploy" +delta = "0.3.17 -> 0.3.19" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + +[[audits.mozilla.audits.tracing-subscriber]] +who = "Mark Hammond " +criteria = "safe-to-deploy" +delta = "0.3.19 -> 0.3.20" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + [[audits.mozilla.audits.void]] who = "Bobby Holley " criteria = "safe-to-deploy" @@ -578,29 +925,71 @@ version = "1.0.2" notes = "Very small crate, just hosts the Void type for easier cross-crate interfacing." aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" +[[audits.mozilla.audits.zerocopy]] +who = "Alex Franchuk " +criteria = "safe-to-deploy" +version = "0.7.32" +notes = """ +This crate is `no_std` so doesn't use any side-effectful std functions. It +contains quite a lot of `unsafe` code, however. I verified portions of this. It +also has a large, thorough test suite. The project claims to run tests with +Miri to have stronger soundness checks, and also claims to use formal +verification tools to prove correctness. +""" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + +[[audits.mozilla.audits.zerocopy]] +who = "Alex Franchuk " +criteria = "safe-to-deploy" +delta = "0.7.32 -> 0.8.27" +notes = """ +These changes are enormous, however unsafe code is kept somewhat minimal in +comparison. The safety properties of unsafe code blocks, traits, and other +types are thoroughly documented. The new build script is safe. All code is very +thoroughly tested. I expect their test coverage is quite high. +""" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + +[[audits.mozilla.audits.zerocopy-derive]] +who = "Alex Franchuk " +criteria = "safe-to-deploy" +version = "0.7.32" +notes = "Clean, safe macros for zerocopy." +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + +[[audits.mozilla.audits.zerocopy-derive]] +who = "Alex Franchuk " +criteria = "safe-to-deploy" +delta = "0.7.32 -> 0.8.27" +notes = """ +There are a lot of changes here, however they look reasonable. Unsafe code is +heavily documented, and there are extensive tests for the changes. +""" +aggregated-from = "https://hg.mozilla.org/mozilla-central/raw-file/tip/supply-chain/audits.toml" + [[audits.open-device-partnership.audits.autocfg]] who = "Jerry Xie " criteria = "safe-to-deploy" delta = "1.4.0 -> 1.5.0" -notes = "No unsafe, no build.rs, no network access; delta adds edition-aware rustc probing and best-effort probe-file cleanup only. Assisted-by: copilot-cli:GPT-5.3-Codex cargo-vet" +notes = "No unsafe, no build.rs, no network access; delta adds edition-aware rustc probing and best-effort probe-file cleanup only. Assisted-by: copilot-cli:GPT-5.3-Codex" [[audits.open-device-partnership.audits.bitfield]] who = "Jerry Xie " criteria = "safe-to-deploy" delta = "0.13.2 -> 0.15.0" -notes = "Delta audit: BitRange/Bit traits split into read-only and mutable variants (BitRangeMut/BitMut); added mask constant generation; clippy fixes; MSRV bump. No unsafe, no build script, no proc macros, no powerful imports. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" +notes = "Delta audit: BitRange/Bit traits split into read-only and mutable variants (BitRangeMut/BitMut); added mask constant generation; clippy fixes; MSRV bump. No unsafe, no build script, no proc macros, no powerful imports. Assisted-by: copilot-cli:claude-opus-4.6" [[audits.open-device-partnership.audits.bitfield]] who = "Jerry Xie " criteria = "safe-to-deploy" delta = "0.15.0 -> 0.17.0" -notes = "Delta: adds bitwise op derives, constructor derives, arbitrary visibility. Pure declarative macros. No unsafe, no build script. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" +notes = "Delta: adds bitwise op derives, constructor derives, arbitrary visibility. Pure declarative macros. No unsafe, no build script. Assisted-by: copilot-cli:claude-opus-4.6" [[audits.open-device-partnership.audits.bitfield-struct]] who = "Jerry Xie " criteria = "safe-to-deploy" version = "0.10.1" -notes = "Proc-macro crate generating safe bitfield structs. No unsafe, no build script. Standard proc-macro deps only. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" +notes = "Proc-macro crate generating safe bitfield structs. No unsafe, no build script. Standard proc-macro deps only. Assisted-by: copilot-cli:claude-opus-4.6" [[audits.open-device-partnership.audits.bitfield-struct]] who = "matteotullo " @@ -608,6 +997,18 @@ criteria = "safe-to-deploy" delta = "0.10.1 -> 0.12.1" notes = "Adds hash and bitenum derives, mostly parsing and refactoring changes. No code execution nor writing to the filesystem." +[[audits.open-device-partnership.audits.cfg-if]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "1.0.0 -> 1.0.3" +notes = "Delta 1.0.0->1.0.3: formatting/readability refactor of macro identifiers, removed compiler_builtins dep, updated CI. No unsafe, no build script, no imports. Pure macro_rules crate. Assisted-by: copilot-cli:claude-opus-4.6" + +[[audits.open-device-partnership.audits.cfg-if]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "1.0.3 -> 1.0.4" +notes = "Delta 1.0.3->1.0.4: macro refactored from two top-level rules to one using optional else syntax, fragment specifiers changed from :meta to :tt to support cfg(true)/cfg(false), internal helper renamed from @__identity to @__temp_group with added comment. MSRV 1.32 declared. No unsafe, no build script, no proc macros, no imports. Pure no_std macro_rules crate. Assisted-by: copilot-cli:claude-opus-4.6" + [[audits.open-device-partnership.audits.const-init]] who = "Jerry Xie " criteria = "safe-to-deploy" @@ -617,19 +1018,31 @@ version = "1.0.0" who = "Jerry Xie " criteria = "safe-to-deploy" version = "0.3.4" -notes = "Intrusive data structures crate (no_std). ~115 unsafe blocks, all necessary for intrusive linked list/queue/stack ops. Correct patterns: addr_of_mut, proper atomic orderings, Vyukov MPSC algorithm. No build script, no proc macros, no powerful imports. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" +notes = "Intrusive data structures crate (no_std). ~115 unsafe blocks, all necessary for intrusive linked list/queue/stack ops. Correct patterns: addr_of_mut, proper atomic orderings, Vyukov MPSC algorithm. No build script, no proc macros, no powerful imports. Assisted-by: copilot-cli:claude-opus-4.6" [[audits.open-device-partnership.audits.defmt]] who = "Jerry Xie " criteria = "safe-to-deploy" version = "0.3.100" -notes = "Compatibility shim: no_std crate that re-exports defmt 1.x items for 0.3 API compatibility. No unsafe code, no build script, no powerful imports, no logic - pure pub-use re-exports. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" +notes = "Compatibility shim: no_std crate that re-exports defmt 1.x items for 0.3 API compatibility. No unsafe code, no build script, no powerful imports, no logic - pure pub-use re-exports. Assisted-by: copilot-cli:claude-opus-4.6" + +[[audits.open-device-partnership.audits.defmt]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "1.0.1 -> 1.1.0" +notes = "Delta audit: No new unsafe code. build.rs adds xtensa-esp32s2-none-elf to no_cas list. New Format impls for core::fmt::Error and Wrapping are safe. Assisted-by: GitHub Copilot:claude-opus-4.6" + +[[audits.open-device-partnership.audits.defmt-macros]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "1.0.1 -> 1.1.0" +notes = "Proc-macro crate for defmt logging. Delta adds #[defmt(transparent)] and #[defmt(bound(...))] derive attributes, fixes && to || bug in env filter parse, simplifies log expansion. No new unsafe code. Generated unsafe (acquire/release guards) unchanged from prior version. Build script only reads DEFMT_LOG env var. Assisted-by: copilot-cli:claude-opus-4.6" [[audits.open-device-partnership.audits.device-driver]] who = "Jerry Xie " criteria = "safe-to-deploy" version = "1.0.7" -notes = "no_std device driver toolkit. Unsafe limited to ops.rs bitfield load/store using get_unchecked with documented invariants; fuzz-tested against bitvec. No build script, no proc macros, no filesystem/network/process access. Assisted-by: copilot-chat:claude-opus-4.6 cargo-vet" +notes = "no_std device driver toolkit. Unsafe limited to ops.rs bitfield load/store using get_unchecked with documented invariants; fuzz-tested against bitvec. No build script, no proc macros, no filesystem/network/process access. Assisted-by: copilot-chat:claude-opus-4.6" [[audits.open-device-partnership.audits.device-driver]] who = "Adam Sasine " @@ -637,41 +1050,45 @@ criteria = "safe-to-deploy" delta = "1.0.7 -> 1.0.9" notes = "Fixes compilation bugs for large registers but does not change invariants or testing strategy." +[[audits.open-device-partnership.audits.document-features]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "0.2.11 -> 0.2.12" +notes = "Delta audit: litrs dep bump 0.4 to 1.0, MSRV bump, trivial code. No unsafe, no new imports. Assisted-by: GitHub Copilot:claude-opus-4.6" + [[audits.open-device-partnership.audits.embassy-embedded-hal]] who = "Jerry Xie " criteria = "safe-to-deploy" version = "0.5.0" -notes = "No unsafe, no build script, no proc macros. no_std shared bus/flash partition utilities for embedded-hal traits. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" +notes = "No unsafe, no build script, no proc macros. no_std shared bus/flash partition utilities for embedded-hal traits. Assisted-by: copilot-cli:claude-opus-4.6" [[audits.open-device-partnership.audits.embassy-embedded-hal]] -who = "Jerry Xie " +who = "Billy Price " criteria = "safe-to-deploy" delta = "0.5.0 -> 0.6.0" -notes = "No unsafe code, no build script, no powerful imports. Added Clone for I2C devices. Updated embassy dependencies (embassy-sync 0.7→0.8, embassy-hal-internal 0.3→0.4, embassy-time 0.5→0.5.1). All changes safe." [[audits.open-device-partnership.audits.embassy-futures]] who = "Jerry Xie " criteria = "safe-to-deploy" version = "0.1.2" -notes = "no_std future combinators. All unsafe is pin-projection and no-op RawWaker - reviewed and sound. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" +notes = "no_std future combinators. All unsafe is pin-projection and no-op RawWaker - reviewed and sound. Assisted-by: copilot-cli:claude-opus-4.6" [[audits.open-device-partnership.audits.embassy-sync]] who = "Jerry Xie " criteria = "safe-to-deploy" version = "0.8.0" -notes = "no_std async sync primitives. Substantial unsafe for UnsafeCell-based interiors and Send/Sync impls -- all reviewed and sound, guarded by RawMutex/critical_section. Build script only reads TARGET env var. No proc macros, no powerful imports. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" +notes = "no_std async sync primitives. Substantial unsafe for UnsafeCell-based interiors and Send/Sync impls -- all reviewed and sound, guarded by RawMutex/critical_section. Build script only reads TARGET env var. No proc macros, no powerful imports. Assisted-by: copilot-cli:claude-opus-4.6" [[audits.open-device-partnership.audits.embassy-time-driver]] who = "Jerry Xie " criteria = "safe-to-deploy" version = "0.2.1" -notes = "no_std driver trait for embassy-time. Minimal unsafe for extern Rust FFI calls (sound via links key). Empty build.rs. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" +notes = "no_std driver trait for embassy-time. Minimal unsafe for extern Rust FFI calls (sound via links key). Empty build.rs. Assisted-by: copilot-cli:claude-opus-4.6" [[audits.open-device-partnership.audits.embassy-time-driver]] -who = "Jerry Xie " +who = "Billy Price " criteria = "safe-to-deploy" delta = "0.2.1 -> 0.2.2" -notes = "Rust 2024 edition update with 375kHz tick rate feature. Empty build.rs, no unsafe code, no powerful imports." [[audits.open-device-partnership.audits.embedded-batteries]] who = "matteotullo " @@ -706,37 +1123,37 @@ notes = "ODP crates are always trusted." who = "Jerry Xie " criteria = "safe-to-deploy" delta = "0.2.7 -> 1.0.0" -notes = "Pure no_std trait crate. Complete API redesign for 1.0: removed nb-based traits, CAN module, all unsafe code. Only defines traits/enums/types for digital, I2C, SPI, PWM, delay. No build script, no proc macros, no powerful imports. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" +notes = "Pure no_std trait crate. Complete API redesign for 1.0: removed nb-based traits, CAN module, all unsafe code. Only defines traits/enums/types for digital, I2C, SPI, PWM, delay. No build script, no proc macros, no powerful imports. Assisted-by: copilot-cli:claude-opus-4.6" [[audits.open-device-partnership.audits.embedded-hal-async]] who = "Jerry Xie " criteria = "safe-to-deploy" version = "1.0.0" -notes = "no_std async HAL trait definitions. No unsafe in library. Build script only runs rustc --version. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" +notes = "no_std async HAL trait definitions. No unsafe in library. Build script only runs rustc --version. Assisted-by: copilot-cli:claude-opus-4.6" [[audits.open-device-partnership.audits.embedded-hal-nb]] who = "Jerry Xie " criteria = "safe-to-deploy" version = "1.0.0" -notes = "no_std trait-only crate. No unsafe, no build script, no proc macros, no powerful imports. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" +notes = "no_std trait-only crate. No unsafe, no build script, no proc macros, no powerful imports. Assisted-by: copilot-cli:claude-opus-4.6" [[audits.open-device-partnership.audits.embedded-io]] who = "Jerry Xie " criteria = "safe-to-deploy" delta = "0.6.1 -> 0.7.1" -notes = "No unsafe, no build script, no I/O. Trait evolution: Error requires core::error::Error (MSRV 1.81), BufRead: Read, Seek gains seek_relative, new VecDeque impls, defmt bumped to v1. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" +notes = "No unsafe, no build script, no I/O. Trait evolution: Error requires core::error::Error (MSRV 1.81), BufRead: Read, Seek gains seek_relative, new VecDeque impls, defmt bumped to v1. Assisted-by: copilot-cli:claude-opus-4.6" [[audits.open-device-partnership.audits.embedded-io-async]] who = "Jerry Xie " criteria = "safe-to-deploy" version = "0.6.1" -notes = "No unsafe. Build script only detects nightly via rustc --version. Pure async trait definitions for embedded I/O. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" +notes = "No unsafe. Build script only detects nightly via rustc --version. Pure async trait definitions for embedded I/O. Assisted-by: copilot-cli:claude-opus-4.6" [[audits.open-device-partnership.audits.embedded-io-async]] who = "Jerry Xie " criteria = "safe-to-deploy" delta = "0.6.1 -> 0.7.0" -notes = "Delta 0.6.1->0.7.0: No unsafe. Build script removed (AFIT now stable). flush() made required, BufRead requires Read, new VecDeque impls. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" +notes = "Delta 0.6.1->0.7.0: No unsafe. Build script removed (AFIT now stable). flush() made required, BufRead requires Read, new VecDeque impls. Assisted-by: copilot-cli:claude-opus-4.6" [[audits.open-device-partnership.audits.embedded-mcu-hal]] who = "Jerry Xie " @@ -744,6 +1161,18 @@ criteria = "safe-to-deploy" version = "0.2.0" notes = "Trait-based MCU HAL with zero unsafe code. No build script or powerful imports. Pure trait design with optional chrono/defmt features. Ideal for embedded controllers." +[[audits.open-device-partnership.audits.embedded-sensors-hal]] +who = "Kurtis Dinelle " +criteria = "safe-to-deploy" +version = "0.1.0" +notes = "ODP crates are always trusted." + +[[audits.open-device-partnership.audits.embedded-sensors-hal]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "0.1.0 -> 0.1.1" +notes = "Delta audit: #![forbid(unsafe_code)] and #![no_std] remain enforced. No build script (build=false). Changes: defmt dep bumped 0.3.7->1.0.0, added paste dep for identifier concatenation, added assert_approx_eq dev-dep. New decl_threshold_traits! declarative macro generates blocking ThresholdSet/Hysteresis traits (and async ThresholdWait variant). Temperature and humidity modules invoke the macro and add comprehensive tests. Doc example fixes (crate name, struct typo). Typo fixes in ErrorKind Display impl. No unsafe code, no proc macros, no filesystem/network/process access. Assisted-by: GitHub Copilot:claude-opus-4.6" + [[audits.open-device-partnership.audits.embedded-sensors-hal-async]] who = "Kurtis Dinelle " criteria = "safe-to-deploy" @@ -754,25 +1183,102 @@ notes = "ODP crates are always trusted." who = "Jerry Xie " criteria = "safe-to-deploy" version = "0.3.1" -notes = "Pure no_std storage abstraction traits. deny(unsafe_code), no build script, no dependencies, no powerful imports. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" +notes = "Pure no_std storage abstraction traits. deny(unsafe_code), no build script, no dependencies, no powerful imports. Assisted-by: copilot-cli:claude-opus-4.6" [[audits.open-device-partnership.audits.embedded-storage-async]] who = "Jerry Xie " criteria = "safe-to-deploy" version = "0.4.1" -notes = "Pure no_std async trait definitions for NOR flash storage. No unsafe code, no build script, no powerful imports. Only dependency is embedded-storage. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" +notes = "Pure no_std async trait definitions for NOR flash storage. No unsafe code, no build script, no powerful imports. Only dependency is embedded-storage. Assisted-by: copilot-cli:claude-opus-4.6" + +[[audits.open-device-partnership.audits.find-msvc-tools]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +version = "0.1.9" +notes = "Full audit of find-msvc-tools 0.1.9, extracted from cc-rs. Zero dependencies. Unsafe code is COM/FFI wrappers for Windows registry, VS Setup Configuration COM interfaces, and kernel32 dynamic loading - all sound with proper Drop impls and error checking. Compile-time type check guards transmute_copy for dynamic GetMachineTypeAttributes. No build script, no proc macros, no network access. Only accesses filesystem/registry/COM to locate MSVC tooling as advertised. Assisted-by: GitHub Copilot:claude-opus-4.6" + +[[audits.open-device-partnership.audits.futures-core]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "0.3.31 -> 0.3.32" +notes = "Delta audit: version bump, Cargo.toml cosmetic reorder, AtomicWaker correctness fix (fetch_and to swap for cleaner state transition), ready! macro doc update. No new unsafe code, no build script, no proc macros, no powerful imports. Assisted-by: GitHub Copilot:claude-opus-4.6" + +[[audits.open-device-partnership.audits.futures-sink]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "0.3.31 -> 0.3.32" +notes = "No source code changes, only Cargo.toml metadata reordering. Assisted-by: GitHub Copilot:claude-opus-4.6" + +[[audits.open-device-partnership.audits.generator]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +version = "0.8.7" +notes = "Full audit of stackful generator/coroutine library. Pervasively unsafe by nature: register context switching via inline assembly (x86_64, aarch64, arm, loongarch64, riscv64, ppc64), stack allocation via mmap/VirtualAlloc with guard pages, raw pointer-based stack management (StackBox, Context linked list). unsafe impl Send for Generator<'static, A, T> gated on A:Send+T:Send. transmute in scoped_init erases scope lifetime but constrained by 'a on GeneratorImpl. co_* methods bypass Any type-checking for performance. Signal/VEH handlers for stack overflow detection. Build script uses cc for ppc64 assembly and rustversion for nightly detection; no network/filesystem beyond standard. No proc macros. No filesystem, network, or process access in library code. Dependencies: cfg-if, log, libc (unix), windows (windows) — all appropriate. Assisted-by: GitHub Copilot:claude-opus-4.6" + +[[audits.open-device-partnership.audits.generator]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "0.8.7 -> 0.8.8" +notes = "Delta audit: replaces heavy windows crate with lighter windows-link/windows-result + auto-generated bindings (windows-bindgen 0.65.0). Fixes fn-ptr-to-int casts for strict provenance. Improves TLS optimization bug workaround on macOS/Windows (compiler_fence + black_box replacing double thread::current hack). No new unsafe patterns; all changes consistent with stackful coroutine purpose. Assisted-by: GitHub Copilot:claude-opus-4.6" [[audits.open-device-partnership.audits.hash32]] who = "Jerry Xie " criteria = "safe-to-deploy" version = "0.3.1" -notes = "no_std 32-bit hashing (FNV, MurmurHash3). ~10 unsafe blocks in murmur3.rs for MaybeUninit buffer handling - all sound. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" +notes = "no_std 32-bit hashing (FNV, MurmurHash3). ~10 unsafe blocks in murmur3.rs for MaybeUninit buffer handling - all sound. Assisted-by: copilot-cli:claude-opus-4.6" + +[[audits.open-device-partnership.audits.hashbrown]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "0.13.2 -> 0.14.5" +notes = "SwissTable hash map delta. Major changes: allocator refactored out of RawTableInner, new InsertSlot type, NEON SIMD for aarch64, allocator-api2 integration, new HashTable API, strict provenance. Extensive unsafe reviewed for soundness. No build script, no proc macros, no powerful imports. Assisted-by: copilot-cli:claude-opus-4.6" + +[[audits.open-device-partnership.audits.hashbrown]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "0.16.0 -> 0.17.0" +notes = "Delta 0.16.0->0.17.0. Edition 2024, MSRV 1.85. Alloc module extracted from raw/. InsertSlot replaced with usize. Renames: buckets->num_buckets, get_many_mut->get_disjoint_mut. Serde->serde_core. Unsafe wrapped in blocks for unsafe_op_in_unsafe_fn - mechanical only. Over-sized alloc utilization. Bug fix 710: rehash panic guard. Fix 692 fallible_with_capacity. New bucket-index APIs. TryReserveError: Error+Display. No build script, no proc macros, no new powerful imports. Assisted-by: copilot-cli:claude-opus-4.6" + +[[audits.open-device-partnership.audits.hashbrown]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "0.17.0 -> 0.17.1" +notes = "Patch release adding HashMap::rustc_try_insert (safe code using existing RawTable find/insert_entry). LSX SIMD optimization in control/group/lsx.rs replaces two intrinsics with immediate-operand equivalents (functionally equivalent, existing unsafe block). README formatting only. No build script, no proc macros, no new powerful imports. Assisted-by: copilot-cli:claude-opus-4.6" [[audits.open-device-partnership.audits.heapless]] who = "Jerry Xie " criteria = "safe-to-deploy" -version = "0.8.0" -notes = "no_std fixed-capacity data structures. Extensive unsafe for MaybeUninit buffer management, lock-free queues (Vyukov MPMC, SPSC), and Treiber stack memory pools with ABA prevention. Patterns mirror std or published algorithms. Build script probes for atomic/LLSC support. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" +version = "0.9.2" +notes = "no_std fixed-capacity data structures. Extensive unsafe for MaybeUninit buffers, lock-free queues (Vyukov MPMC, SPSC), Treiber stack pools with ABA prevention (CAS tagged pointers + ARM LLSC). All Send/Sync bounds verified correct. Build script probes for ARM LLSC. Assisted-by: copilot-cli:claude-opus-4.6" + +[[audits.open-device-partnership.audits.heapless]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "0.9.2 -> 0.9.3" +notes = "Delta 0.9.2->0.9.3: Fixes unsoundness in Deque/HistoryBuf/IndexMap::clear when Drop panics (Guard pattern). Adds CString conversions (into_string, into_bytes, from_bytes_truncating_at_nul), Deque::pop_front_if/pop_back_if, const Vec::from_array. New transmute_copy in as_len_type is sound (closed type enum). Pointer-cast cleanups. Assisted-by: copilot-cli:claude-opus-4.6" + +[[audits.open-device-partnership.audits.ident_case]] +who = "matteotullo " +criteria = "safe-to-deploy" +version = "1.0.1" + +[[audits.open-device-partnership.audits.indexmap]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "2.11.4 -> 2.14.0" +notes = "Delta 2.11.4->2.14.0: Large internal refactor - IndexMapCore renamed to Core and moved to inner module, RefMut indirection eliminated. Entry types restructured across inner/map modules. Edition 2024, MSRV 1.85, hashbrown bumped to 0.17. No new unsafe code; existing unsafe in extract.rs (#![allow(unsafe_code)] for vec drain) and slice.rs (DST casts with repr(transparent)) unchanged and sound. New MaybeUninit usage in IntoKeys/IntoValues Clone impls is safe (uninit values created but never read). No build script, no proc macros, no filesystem/network/process access. New APIs: pop_if, split_at_checked, split_at_mut_checked, Clone for IntoKeys/IntoValues. Many methods made const. Error types use core::error::Error. Uses hash_one() and get_disjoint_mut (std API renames). Assisted-by: copilot-cli:claude-opus-4.6" + +[[audits.open-device-partnership.audits.litrs]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "0.4.1 -> 0.4.2" +notes = "Delta 0.4.1->0.4.2: Bug fixes for non-ASCII byte string escapes, removes CR LF normalization to align with spec, fixes error span for out-of-range Unicode escapes. No unsafe code, no build script, no powerful imports. Assisted-by: copilot-cli:claude-opus-4.6" + +[[audits.open-device-partnership.audits.litrs]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "0.4.2 -> 1.0.0" +notes = "Delta 0.4.2->1.0.0: Adds C string literal support (CStringLit), marks Literal enum #[non_exhaustive], removes proc-macro2 from default features, bumps MSRV to 1.56, changes num_hashes from u32 to u8 with 256 max, changes Buffer::Cow/ByteCow for String to owned types (String/Vec) instead of Cow<'static,...>. Refactors escape internals: replaces Escapee trait with Unescape enum and EscapeContainer trait, moves span offset responsibility to callers. Adds nul byte checking for C strings. No unsafe code, no build script, no proc macros, no powerful imports. Pure parsing library. Assisted-by: GitHub Copilot:claude-opus-4.6" [[audits.open-device-partnership.audits.mutex-traits]] who = "Jerry Xie " @@ -783,7 +1289,7 @@ version = "1.0.1" who = "Jerry Xie " criteria = "safe-to-deploy" version = "0.1.5" -notes = "Pure safe no_std bitfield macro crate. No unsafe code, no build script, no proc macros, no dependencies, no powerful imports. Only core:: types used. Assisted-by: copilot-chat:claude-opus-4.6 cargo-vet" +notes = "Pure safe no_std bitfield macro crate. No unsafe code, no build script, no proc macros, no dependencies, no powerful imports. Only core:: types used. Assisted-by: copilot-chat:claude-opus-4.6" [[audits.open-device-partnership.audits.num_enum]] who = "Matteo Tullo " @@ -803,15 +1309,16 @@ delta = "0.7.5 -> 0.7.6" notes = "Version bump with test infrastructure updates. No unsafe code, no build script, no powerful imports. Purely additive test changes." [[audits.open-device-partnership.audits.num_enum_derive]] -who = "Matteo Tullo " +who = "Billy Price " criteria = "safe-to-deploy" version = "0.7.4" +notes = "Looks like mostly improvements to error messaging" [[audits.open-device-partnership.audits.num_enum_derive]] who = "Billy Price " criteria = "safe-to-deploy" delta = "0.7.4 -> 0.7.5" -notes = "Looks like mostly improvements to error messaging" +notes = "Looks like this is just uptaking a new version of num_enum_derive" [[audits.open-device-partnership.audits.num_enum_derive]] who = "Jerry Xie " @@ -819,11 +1326,70 @@ criteria = "safe-to-deploy" delta = "0.7.5 -> 0.7.6" notes = "Minor update adding byte literal support for enum discriminants. No unsafe code, no build script, no powerful imports." +[[audits.open-device-partnership.audits.once_cell]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +version = "1.20.1" +notes = "Single-assignment cells and lazy values. All unsafe reviewed: UnsafeCell access, Send/Sync impls, atomic waiter queue, strict provenance polyfill - all sound with correct bounds. No build script, no proc macros, no powerful imports beyond std::thread/atomic. Assisted-by: copilot-chat:claude-opus-4.6" + +[[audits.open-device-partnership.audits.once_cell]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "1.21.3 -> 1.21.4" +notes = "Delta: soundness fix for OnceCell::wait under parking_lot feature. The wait() in imp_pl.rs now wraps parking_lot_core::park in a while loop re-checking COMPLETE state, preventing uninitialized memory observation when concurrent get_or_try_init panics. Remaining changes: doc cfg guards, doc typo fix, new tests. No new unsafe, no build script, no proc macros, no new imports. Assisted-by: copilot-chat:claude-opus-4.6" + +[[audits.open-device-partnership.audits.pin-project]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +version = "1.1.10" +notes = "no_std pin-projection helper. Re-exports proc macros from pin-project-internal. Minimal unsafe in __private module (drop guards, UnsafeUnpin forwarding) -- all sound with SAFETY comments. No build script, no powerful imports. Assisted-by: copilot-cli:claude-opus-4.6" + +[[audits.open-device-partnership.audits.pin-project]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "1.1.10 -> 1.1.13" +notes = "Delta audit: changes are exclusively test UI .stderr expectation files updated for newer Rust compiler diagnostic formatting (line number alignment, error message wording changes). Removed obsolete overlapping_marker_traits test files for a feature removed from nightly. Zero source code changes - no changes to src/, build.rs, Cargo.toml, or proc macro logic. No new unsafe, no new imports, no behavioral changes. Assisted-by: GitHub Copilot:claude-opus-4.6" + +[[audits.open-device-partnership.audits.pin-project-internal]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +version = "1.1.10" +notes = "Proc-macro for pin projection. forbid(unsafe_code) in macro itself. Generated unsafe is sound pin projection (Pin::new_unchecked, get_unchecked_mut) with compile-time safety enforced via trait tricks. No build script, no I/O. Deps: proc-macro2, quote, syn only. Assisted-by: copilot-chat:claude-opus-4.6" + +[[audits.open-device-partnership.audits.pin-project-internal]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "1.1.10 -> 1.1.13" +notes = "Delta audit: proc macro crate with #![forbid(unsafe_code)]. Changes are idiomatic Rust refactoring (let-else, is_some_and), clippy lint config adjustments, doc comment fixes, and MSRV bump 1.56->1.71. No new unsafe code, no filesystem/network/process access, no behavioral changes. Generated code adds #[allow(clippy::missing_trait_methods)] to Drop impl. Assisted-by: GitHub Copilot:claude-opus-4.6" + +[[audits.open-device-partnership.audits.pin-project-lite]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "0.2.16 -> 0.2.17" +notes = "Delta audit: no unsafe code, no build script, no proc macros, no powerful imports. Changes are cosmetic only: updated clippy lint suppressions, doc comment formatting, test stderr updates for newer compiler messages. No functional changes to macro logic. Assisted-by: GitHub Copilot:claude-opus-4.6" + +[[audits.open-device-partnership.audits.portable-atomic]] +who = "Robert Zieba " +criteria = "safe-to-deploy" +version = "1.11.1" + +[[audits.open-device-partnership.audits.portable-atomic]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "1.11.1 -> 1.13.1" +notes = "Delta audit: three minor releases (1.12.0, 1.13.0, 1.13.1). New unsafe-assume-privileged feature for multi-core interrupt-disable fallback. SeqCst sequential consistency fix in lock-based fallback. x86_64 VMOVDQA detection simplified to AVX check. Arm support expanded to all 32-bit targets. PowerPC64 asm stabilized. Major interrupt module refactoring to RAII guard pattern. All unsafe changes reviewed: sound. No new ambient capabilities. Assisted-by: copilot:claude-opus-4.6" + [[audits.open-device-partnership.audits.rand_core]] who = "Billy Price " criteria = "safe-to-deploy" delta = "0.6.4 -> 0.9.5" +[[audits.open-device-partnership.audits.regex-syntax]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "0.8.5 -> 0.8.10" +notes = "Delta audit: crate uses #![forbid(unsafe_code)], no build.rs, no proc macros, no powerful imports. Changes are cosmetic: inline format args migration, typo fixes in comments/docs, switched docsrs cfg to docsrs_regex, added Cargo include list, deleted shell test script, minor test additions for negated unicode property classes. No security-relevant changes. Assisted-by: GitHub Copilot:claude-opus-4.6" + [[audits.open-device-partnership.audits.serde]] who = "Robert Zieba " criteria = "safe-to-deploy" @@ -846,16 +1412,69 @@ who = "Matteo Tullo " criteria = "safe-to-deploy" version = "1.0.1" +[[audits.open-device-partnership.audits.stable_deref_trait]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "1.2.0 -> 1.2.1" +notes = """ +Delta audit: metadata-only Cargo.toml changes (license format, explicit lib section). +src/lib.rs adds new unsafe impl StableDeref for Cow types - all sound since Cow::deref() +returns a stable heap or borrowed address across moves. Arc import and impls now correctly +gated behind target_has_atomic=ptr. No build script, no proc macros, no powerful imports. +Assisted-by: copilot-chat:claude-opus-4.6 +""" + [[audits.open-device-partnership.audits.static_cell]] who = "Robert Zieba " criteria = "safe-to-deploy" version = "2.1.1" +[[audits.open-device-partnership.audits.subenum]] +who = "Matteo Tullo " +criteria = "safe-to-deploy" +version = "1.1.2" + +[[audits.open-device-partnership.audits.subenum]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "1.1.2 -> 1.2.0" +notes = "Delta audit 1.1.2->1.2.0. Proc-macro crate only. No unsafe code. syn 1->2 migration, replaced Extractor with syn Visit trait. Added const generics, associated type, parent-specific attr support. Generated code safe. No fs/net/process access. Assisted-by: GitHub Copilot:claude-opus-4.6" + [[audits.open-device-partnership.audits.thread_local]] who = "Jerry Xie " criteria = "safe-to-deploy" delta = "1.1.4 -> 1.1.9" -notes = "No build script, no FS/net/process capability expansion; unsafe refactor to lock-free insertion and nightly TLS path appears sound on review. Assisted-by: copilot-cli:GPT-5.3-Codex cargo-vet" +notes = "No build script, no FS/net/process capability expansion; unsafe refactor to lock-free insertion and nightly TLS path appears sound on review. Assisted-by: copilot-cli:GPT-5.3-Codex" + +[[audits.open-device-partnership.audits.tracing]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "0.1.41 -> 0.1.44" +notes = "Delta audit: one new unsafe (FieldName::as_str using str::from_utf8_unchecked) — sound because private field is only constructed from const fn new() which processes &str input by removing r#, preserving UTF-8 validity; compile-time assert guards N. No build script (build=false). No proc macros. No powerful imports (fs/net/process). Key changes: valueset! macro split into valueset!/valueset_all! to fix record_all panic (#3432); FieldName added for raw identifier support; stdlib.rs removed in favor of #![no_std] + extern crate std; lifetime elision cleanup; doc fixes; MSRV 1.63→1.65. Assisted-by: GitHub Copilot:claude-opus-4.6" + +[[audits.open-device-partnership.audits.tracing-attributes]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "0.1.30 -> 0.1.31" +notes = "Delta audit 0.1.30->0.1.31: Proc macro crate. Adds support for constant expression field names in #[instrument(fields(...))] via new FieldName::Expr variant. No unsafe code. No build script. No new dependencies. No filesystem/network/process access. Removes dead code (AsyncTraitBlockReplacer). Generated code is safe - wraps user expressions in braces for tracing span fields. Comprehensive tests added. Assisted-by: copilot:claude-opus-4.6" + +[[audits.open-device-partnership.audits.tracing-core]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "0.1.34 -> 0.1.36" +notes = "Delta audit: major refactor replacing crate::stdlib shim with direct alloc::/core::/std:: imports and unconditional #![no_std]. Removed stdlib.rs, added sync.rs (extracted Mutex wrapper). New Values::All enum variant for efficient ValueSet construction (value_set_all, #[doc(hidden)]). Two downcast_raw calls wrapped in unsafe blocks (sound - type ID checked first). No new unsafe patterns, no build script, no proc macros, no filesystem/network access. No new dependencies. Assisted-by: GitHub Copilot:claude-opus-4.6" + +[[audits.open-device-partnership.audits.tracing-subscriber]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "0.3.20 -> 0.3.23" +notes = "Delta audit of tracing-subscriber 0.3.20->0.3.23. Changes: (1) no_std support refactoring - imports moved from std to alloc/core, unconditional #![no_std] with extern crate std gated on feature; (2) ANSI sanitization made configurable via with_ansi_sanitization(bool), defaulting to true (secure default preserved); (3) Escape renamed to EscapeGuard with conditional sanitize flag; (4) downcast_raw calls wrapped in unsafe blocks to match trait signature change in tracing-core 0.1.35 - all call sites forward to existing safe implementations; (5) Registry enter/exit simplified - removes clone_span on enter and try_close on exit for performance; (6) Layered now propagates on_register_dispatch to inner+layer; (7) Doc fixes and test improvements. No new filesystem/network/process access. No build script. No proc macros. Unsafe changes are mechanical wrapping of existing downcast_raw calls. Assisted-by: GitHub Copilot:claude-opus-4.6" + +[[audits.open-device-partnership.audits.unicode-ident]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "1.0.18 -> 1.0.24" +notes = "Delta: Unicode 16->17 table data update only. No unsafe, no build.rs, no new deps. Assisted-by: GitHub Copilot:claude-opus-4.6" [[audits.open-device-partnership.audits.uuid]] who = "Jerry Xie " @@ -866,4 +1485,16 @@ version = "1.17.0" who = "Jerry Xie " criteria = "safe-to-deploy" version = "0.1.1" -notes = "No unsafe code; build.rs only sets target atomic cfg via env; no fs/net/process capability use observed; behavior matches value-inspection purpose. Assisted-by: copilot-cli:GPT-5.3-Codex cargo-vet" +notes = "No unsafe code; build.rs only sets target atomic cfg via env; no fs/net/process capability use observed; behavior matches value-inspection purpose. Assisted-by: copilot-cli:GPT-5.3-Codex" + +[[audits.open-device-partnership.audits.zerocopy]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "0.8.27 -> 0.8.48" +notes = "Delta audit 0.8.27->0.8.48. Large refactor (34K lines, 648 files) but bulk is benchmarks, agent docs, UI test stderr, and CI scripts. Core changes: (1) build.rs inverted cfg logic (emit cfg if version < threshold) with new cfgs for x86 AVX-512 and aarch64 big-endian SIMD - still only reads env vars and emits cargo:rustc-cfg, no I/O. (2) Pointer module refactored cast system from ad-hoc PtrInner::cast into trait-based Project/Cast/CastExact with thorough SAFETY comments. (3) impls.rs simplified atomic/Cell/UnsafeCell transmute patterns, added tuple trait impls up to 26 elements with HasField/ProjectField. (4) Error types gained Clone/PartialEq/Eq impls, field renames. (5) Macros updated for Sized->unsized transmute_ref!/transmute_mut! support. (6) New ReadOnly wrapper type. No new ambient capabilities, no proc macros in this crate. All unsafe code has SAFETY comments citing specific Rust documentation versions. No build script I/O beyond cargo:rustc-cfg. Assisted-by: GitHub Copilot:claude-opus-4.6" + +[[audits.open-device-partnership.audits.zerocopy-derive]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "0.8.27 -> 0.8.48" +notes = "Delta audit. Major refactor into derive/ modules and util.rs. No build.rs. No fs/net in proc-macro. All unsafe in generated code with SAFETY docs. Assisted-by: GitHub Copilot:claude-opus-4.6" diff --git a/platform/dev-npcx/Cargo.lock b/platform/dev-npcx/Cargo.lock index 327fac9..1924c21 100644 --- a/platform/dev-npcx/Cargo.lock +++ b/platform/dev-npcx/Cargo.lock @@ -29,7 +29,7 @@ dependencies = [ [[package]] name = "battery-service" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "battery-service-interface", "defmt 0.3.100", @@ -45,7 +45,7 @@ dependencies = [ [[package]] name = "battery-service-interface" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embedded-batteries-async", @@ -54,7 +54,7 @@ dependencies = [ [[package]] name = "battery-service-relay" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "battery-service-interface", "defmt 0.3.100", @@ -62,6 +62,14 @@ dependencies = [ "num_enum", ] +[[package]] +name = "bit-register" +version = "0.1.0" +source = "git+https://github.com/OpenDevicePartnership/odp-utilities?tag=v0.1.0#583015c08ad9855f310bdb25d5cf9abff77b5e08" +dependencies = [ + "num-traits", +] + [[package]] name = "bit-register" version = "0.1.0" @@ -597,7 +605,7 @@ dependencies = [ [[package]] name = "embedded-services" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "bitfield 0.17.0", "cortex-m", @@ -614,9 +622,9 @@ dependencies = [ [[package]] name = "espi-device" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/haf-ec-service#54439c76d567fe8c65337cc4461c93a8a4fd434c" +source = "git+https://github.com/OpenDevicePartnership/haf-ec-service#290aa80a4c281857f3bed94581200b330119286c" dependencies = [ - "bit-register", + "bit-register 0.1.0 (git+https://github.com/OpenDevicePartnership/odp-utilities?tag=v0.1.0)", "bitflags 2.11.1", "num-traits", "num_enum", @@ -769,9 +777,9 @@ dependencies = [ [[package]] name = "mctp-rs" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ - "bit-register", + "bit-register 0.1.0 (git+https://github.com/OpenDevicePartnership/odp-utilities)", "defmt 0.3.100", "embedded-batteries", "espi-device", @@ -866,7 +874,7 @@ dependencies = [ [[package]] name = "odp-service-common" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "embedded-services", "static_cell", @@ -964,7 +972,7 @@ dependencies = [ [[package]] name = "power-policy-interface" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "bitfield 0.17.0", "defmt 0.3.100", @@ -1180,7 +1188,7 @@ dependencies = [ [[package]] name = "thermal-service" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embassy-futures", @@ -1197,7 +1205,7 @@ dependencies = [ [[package]] name = "thermal-service-interface" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embassy-time", @@ -1208,7 +1216,7 @@ dependencies = [ [[package]] name = "thermal-service-relay" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embedded-services", @@ -1249,7 +1257,7 @@ dependencies = [ [[package]] name = "time-alarm-service" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embassy-futures", @@ -1265,7 +1273,7 @@ dependencies = [ [[package]] name = "time-alarm-service-interface" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "bitfield 0.17.0", "defmt 0.3.100", @@ -1277,7 +1285,7 @@ dependencies = [ [[package]] name = "time-alarm-service-relay" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embedded-mcu-hal", @@ -1350,7 +1358,7 @@ dependencies = [ [[package]] name = "uart-service" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embassy-sync 0.8.0 (registry+https://github.com/rust-lang/crates.io-index)", diff --git a/platform/dev-npcx/Cargo.toml b/platform/dev-npcx/Cargo.toml index 6f25ade..d59917d 100644 --- a/platform/dev-npcx/Cargo.toml +++ b/platform/dev-npcx/Cargo.toml @@ -59,7 +59,7 @@ embassy-executor = { version = "0.10.0", features = [ ] } panic-probe = { version = "1.0", features = ["print-defmt"] } static_cell = "2.1.0" -uart-service = { git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "v0.2.0", features = [ +uart-service = { git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "main", features = [ "defmt", ] } platform-common = { path = "../platform-common", features = ["mock"] } diff --git a/platform/dev-npcx/supply-chain/config.toml b/platform/dev-npcx/supply-chain/config.toml index 67ce5d4..d41f413 100644 --- a/platform/dev-npcx/supply-chain/config.toml +++ b/platform/dev-npcx/supply-chain/config.toml @@ -30,10 +30,6 @@ criteria = "safe-to-deploy" version = "0.8.1" criteria = "safe-to-deploy" -[[exemptions.cc]] -version = "1.2.59" -criteria = "safe-to-deploy" - [[exemptions.cc]] version = "1.2.62" criteria = "safe-to-deploy" @@ -62,22 +58,10 @@ criteria = "safe-to-deploy" version = "1.1.0" criteria = "safe-to-deploy" -[[exemptions.defmt-rtt]] -version = "1.1.0" -criteria = "safe-to-deploy" - [[exemptions.defmt-rtt]] version = "1.2.0" criteria = "safe-to-deploy" -[[exemptions.device-driver]] -version = "1.0.8" -criteria = "safe-to-deploy" - -[[exemptions.device-driver]] -version = "1.0.9" -criteria = "safe-to-deploy" - [[exemptions.document-features]] version = "0.2.12" criteria = "safe-to-deploy" @@ -98,14 +82,6 @@ criteria = "safe-to-deploy" version = "0.8.0@git:e9c32931b906649d65fc502fe8e8f2c70ef1e6ab" criteria = "safe-to-deploy" -[[exemptions.embassy-time]] -version = "0.5.1" -criteria = "safe-to-deploy" - -[[exemptions.embassy-time-driver]] -version = "0.2.2" -criteria = "safe-to-deploy" - [[exemptions.embedded-sensors-hal]] version = "0.1.1" criteria = "safe-to-deploy" @@ -134,10 +110,6 @@ criteria = "safe-to-deploy" version = "1.0.1" criteria = "safe-to-deploy" -[[exemptions.libc]] -version = "0.2.184" -criteria = "safe-to-deploy" - [[exemptions.libc]] version = "0.2.186" criteria = "safe-to-deploy" @@ -166,18 +138,10 @@ criteria = "safe-to-deploy" version = "1.0.15" criteria = "safe-to-deploy" -[[exemptions.pin-project]] -version = "1.1.11" -criteria = "safe-to-deploy" - [[exemptions.pin-project]] version = "1.1.13" criteria = "safe-to-deploy" -[[exemptions.pin-project-internal]] -version = "1.1.11" -criteria = "safe-to-deploy" - [[exemptions.pin-project-internal]] version = "1.1.13" criteria = "safe-to-deploy" @@ -206,10 +170,6 @@ criteria = "safe-to-deploy" version = "1.2.1" criteria = "safe-to-deploy" -[[exemptions.subenum]] -version = "1.1.3" -criteria = "safe-to-deploy" - [[exemptions.subenum]] version = "1.2.0" criteria = "safe-to-deploy" diff --git a/platform/dev-npcx/supply-chain/imports.lock b/platform/dev-npcx/supply-chain/imports.lock index ad129af..7c9e35b 100644 --- a/platform/dev-npcx/supply-chain/imports.lock +++ b/platform/dev-npcx/supply-chain/imports.lock @@ -86,24 +86,18 @@ version = "0.3.100" notes = "Compatibility shim: no_std crate that re-exports defmt 1.x items for 0.3 API compatibility. No unsafe code, no build script, no powerful imports, no logic - pure pub-use re-exports. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/embedded-services/refs/heads/main/supply-chain/audits.toml" -[[audits.OpenDevicePartnership.audits.defmt]] -who = "Felipe Balbi " -criteria = "safe-to-deploy" -version = "1.0.1" -aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/mcxa-pac/refs/heads/main/supply-chain/audits.toml" - -[[audits.OpenDevicePartnership.audits.defmt-macros]] -who = "Felipe Balbi " -criteria = "safe-to-deploy" -version = "1.0.1" -aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/mcxa-pac/refs/heads/main/supply-chain/audits.toml" - [[audits.OpenDevicePartnership.audits.defmt-parser]] who = "Felipe Balbi " criteria = "safe-to-deploy" version = "1.0.0" aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/mcxa-pac/refs/heads/main/supply-chain/audits.toml" +[[audits.OpenDevicePartnership.audits.device-driver]] +who = "Felipe Balbi " +criteria = "safe-to-deploy" +version = "1.0.9" +aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/tps6699x/refs/heads/main/supply-chain/audits.toml" + [[audits.OpenDevicePartnership.audits.embassy-executor-timer-queue]] who = "Felipe Balbi " criteria = "safe-to-deploy" @@ -117,20 +111,6 @@ version = "0.1.2" notes = "no_std future combinators. All unsafe is pin-projection and no-op RawWaker - reviewed and sound. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/embedded-services/refs/heads/main/supply-chain/audits.toml" -[[audits.OpenDevicePartnership.audits.embassy-hal-internal]] -who = "Jerry Xie " -criteria = "safe-to-deploy" -version = "0.3.0" -notes = "no_std HAL internals. Unsafe in atomic ring buffer (sound SPSC), peripheral singletons, cortex-m interrupt priority. Build script emits cfg flags only. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" -aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/embedded-services/refs/heads/main/supply-chain/audits.toml" - -[[audits.OpenDevicePartnership.audits.embassy-hal-internal]] -who = "Jerry Xie " -criteria = "safe-to-deploy" -delta = "0.3.0 -> 0.4.0" -notes = "Edition update to 2024. Added defmt/log features and RingBuffer helper methods (available, is_half_full). Safe additions only. Trusted publisher (lulf)." -aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/embassy-imxrt/refs/heads/main/supply-chain/audits.toml" - [[audits.OpenDevicePartnership.audits.embassy-sync]] who = "Jerry Xie " criteria = "safe-to-deploy" @@ -144,6 +124,13 @@ criteria = "safe-to-deploy" version = "0.5.0" aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/tps6699x/refs/heads/main/supply-chain/audits.toml" +[[audits.OpenDevicePartnership.audits.embassy-time]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "0.5.0 -> 0.5.1" +notes = "Edition 2024. Added nanosecond conversion methods, 375kHz tick rate. Dependency updates (embassy-executor 0.10.0, embassy-time-driver 0.2.2). Added log feature. Trusted publisher (lulf)." +aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/embassy-imxrt/refs/heads/main/supply-chain/audits.toml" + [[audits.OpenDevicePartnership.audits.embassy-time-driver]] who = "Jerry Xie " criteria = "safe-to-deploy" @@ -151,6 +138,13 @@ version = "0.2.1" notes = "no_std driver trait for embassy-time. Minimal unsafe for extern Rust FFI calls (sound via links key). Empty build.rs. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/embedded-services/refs/heads/main/supply-chain/audits.toml" +[[audits.OpenDevicePartnership.audits.embassy-time-driver]] +who = "Jerry Xie " +criteria = "safe-to-deploy" +delta = "0.2.1 -> 0.2.2" +notes = "Rust 2024 edition update with 375kHz tick rate feature. Empty build.rs, no unsafe code, no powerful imports." +aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/embedded-services/refs/heads/main/supply-chain/audits.toml" + [[audits.OpenDevicePartnership.audits.embassy-time-queue-utils]] who = "Felipe Balbi " criteria = "safe-to-deploy" @@ -260,13 +254,6 @@ version = "0.8.0" notes = "no_std fixed-capacity data structures. Extensive unsafe for MaybeUninit buffer management, lock-free queues (Vyukov MPMC, SPSC), and Treiber stack memory pools with ABA prevention. Patterns mirror std or published algorithms. Build script probes for atomic/LLSC support. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/embedded-services/refs/heads/main/supply-chain/audits.toml" -[[audits.OpenDevicePartnership.audits.heapless]] -who = "Jerry Xie " -criteria = "safe-to-deploy" -version = "0.9.2" -notes = "no_std fixed-capacity data structures. Extensive unsafe for MaybeUninit buffers, lock-free queues (Vyukov MPMC, SPSC), Treiber stack pools with ABA prevention (CAS tagged pointers + ARM LLSC). All Send/Sync bounds verified correct. Build script probes for ARM LLSC. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" -aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/embedded-services/refs/heads/main/supply-chain/audits.toml" - [[audits.OpenDevicePartnership.audits.heck]] who = "Matteo Tullo " criteria = "safe-to-deploy" diff --git a/platform/dev-qemu/Cargo.lock b/platform/dev-qemu/Cargo.lock index c48ae75..1fa86da 100644 --- a/platform/dev-qemu/Cargo.lock +++ b/platform/dev-qemu/Cargo.lock @@ -13,9 +13,9 @@ dependencies = [ [[package]] name = "autocfg" -version = "1.5.0" +version = "1.5.1" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "c08606f8c3cbf4ce6ec8e28fb0014a2c086708fe954eaa885384a6165172e7e8" +checksum = "f2032f911046de80f0a198e0901378627c33f59ea0ac00e363d481118bd70a53" [[package]] name = "bare-metal" @@ -29,7 +29,7 @@ dependencies = [ [[package]] name = "battery-service" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "battery-service-interface", "defmt 0.3.100", @@ -45,7 +45,7 @@ dependencies = [ [[package]] name = "battery-service-interface" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embedded-batteries-async", @@ -54,7 +54,7 @@ dependencies = [ [[package]] name = "battery-service-relay" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "battery-service-interface", "defmt 0.3.100", @@ -62,6 +62,14 @@ dependencies = [ "num_enum", ] +[[package]] +name = "bit-register" +version = "0.1.0" +source = "git+https://github.com/OpenDevicePartnership/odp-utilities?tag=v0.1.0#583015c08ad9855f310bdb25d5cf9abff77b5e08" +dependencies = [ + "num-traits", +] + [[package]] name = "bit-register" version = "0.1.0" @@ -587,7 +595,7 @@ dependencies = [ [[package]] name = "embedded-services" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "bitfield 0.17.0", "cortex-m", @@ -604,9 +612,9 @@ dependencies = [ [[package]] name = "espi-device" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/haf-ec-service#54439c76d567fe8c65337cc4461c93a8a4fd434c" +source = "git+https://github.com/OpenDevicePartnership/haf-ec-service#290aa80a4c281857f3bed94581200b330119286c" dependencies = [ - "bit-register", + "bit-register 0.1.0 (git+https://github.com/OpenDevicePartnership/odp-utilities?tag=v0.1.0)", "bitflags 2.11.1", "num-traits", "num_enum", @@ -743,9 +751,9 @@ dependencies = [ [[package]] name = "mctp-rs" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ - "bit-register", + "bit-register 0.1.0 (git+https://github.com/OpenDevicePartnership/odp-utilities)", "defmt 0.3.100", "embedded-batteries", "espi-device", @@ -817,7 +825,7 @@ dependencies = [ [[package]] name = "odp-service-common" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "embedded-services", "static_cell", @@ -882,7 +890,7 @@ checksum = "c33a9471896f1c69cecef8d20cbe2f7accd12527ce60845ff44c153bb2a21b49" [[package]] name = "power-policy-interface" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "bitfield 0.17.0", "defmt 0.3.100", @@ -1186,7 +1194,7 @@ dependencies = [ [[package]] name = "thermal-service" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embassy-futures", @@ -1203,7 +1211,7 @@ dependencies = [ [[package]] name = "thermal-service-interface" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embassy-time", @@ -1214,7 +1222,7 @@ dependencies = [ [[package]] name = "thermal-service-relay" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embedded-services", @@ -1255,7 +1263,7 @@ dependencies = [ [[package]] name = "time-alarm-service" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embassy-futures", @@ -1271,7 +1279,7 @@ dependencies = [ [[package]] name = "time-alarm-service-interface" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "bitfield 0.17.0", "defmt 0.3.100", @@ -1283,7 +1291,7 @@ dependencies = [ [[package]] name = "time-alarm-service-relay" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embedded-mcu-hal", @@ -1356,7 +1364,7 @@ dependencies = [ [[package]] name = "uart-service" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#f1f1e087563085f853215ae24e7bc1290aa07168" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embassy-sync 0.8.0", diff --git a/platform/dev-qemu/Cargo.toml b/platform/dev-qemu/Cargo.toml index a7aa782..a641ae2 100644 --- a/platform/dev-qemu/Cargo.toml +++ b/platform/dev-qemu/Cargo.toml @@ -53,7 +53,7 @@ embassy-executor = { version = "0.10.0", features = [ "defmt", ] } -uart-service = { git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "v0.2.0", features = [ +uart-service = { git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "main", features = [ "defmt", ] } platform-common = { path = "../platform-common", features = ["mock"] } diff --git a/platform/dev-qemu/supply-chain/config.toml b/platform/dev-qemu/supply-chain/config.toml index 08eafa3..645e891 100644 --- a/platform/dev-qemu/supply-chain/config.toml +++ b/platform/dev-qemu/supply-chain/config.toml @@ -20,12 +20,12 @@ url = "https://raw.githubusercontent.com/mozilla/supply-chain/main/audits.toml" version = "1.1.4" criteria = "safe-to-deploy" -[[exemptions.bq40z50-rx]] -version = "0.8.1" +[[exemptions.autocfg]] +version = "1.5.1" criteria = "safe-to-deploy" -[[exemptions.cc]] -version = "1.2.59" +[[exemptions.bq40z50-rx]] +version = "0.8.1" criteria = "safe-to-deploy" [[exemptions.cc]] @@ -60,14 +60,6 @@ criteria = "safe-to-deploy" version = "0.3.0" criteria = "safe-to-deploy" -[[exemptions.device-driver]] -version = "1.0.8" -criteria = "safe-to-deploy" - -[[exemptions.device-driver]] -version = "1.0.9" -criteria = "safe-to-deploy" - [[exemptions.document-features]] version = "0.2.12" criteria = "safe-to-deploy" @@ -84,10 +76,6 @@ criteria = "safe-to-deploy" version = "0.7.2" criteria = "safe-to-deploy" -[[exemptions.embassy-time-queue-utils]] -version = "0.3.2" -criteria = "safe-to-deploy" - [[exemptions.embedded-sensors-hal]] version = "0.1.1" criteria = "safe-to-deploy" @@ -116,10 +104,6 @@ criteria = "safe-to-deploy" version = "1.0.1" criteria = "safe-to-deploy" -[[exemptions.libc]] -version = "0.2.184" -criteria = "safe-to-deploy" - [[exemptions.libc]] version = "0.2.186" criteria = "safe-to-deploy" @@ -200,10 +184,6 @@ criteria = "safe-to-deploy" version = "1.2.1" criteria = "safe-to-deploy" -[[exemptions.subenum]] -version = "1.1.3" -criteria = "safe-to-deploy" - [[exemptions.subenum]] version = "1.2.0" criteria = "safe-to-deploy" diff --git a/platform/dev-qemu/supply-chain/imports.lock b/platform/dev-qemu/supply-chain/imports.lock index 6557285..8441147 100644 --- a/platform/dev-qemu/supply-chain/imports.lock +++ b/platform/dev-qemu/supply-chain/imports.lock @@ -1,13 +1,6 @@ # cargo-vet imports lock -[[audits.OpenDevicePartnership.audits.autocfg]] -who = "Jerry Xie " -criteria = "safe-to-deploy" -delta = "1.4.0 -> 1.5.0" -notes = "No unsafe, no build.rs, no network access; delta adds edition-aware rustc probing and best-effort probe-file cleanup only. Assisted-by: copilot-cli:GPT-5.3-Codex cargo-vet" -aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/embedded-services/refs/heads/main/supply-chain/audits.toml" - [[audits.OpenDevicePartnership.audits.bare-metal]] who = "Felipe Balbi " criteria = "safe-to-deploy" @@ -74,24 +67,18 @@ version = "0.3.100" notes = "Compatibility shim: no_std crate that re-exports defmt 1.x items for 0.3 API compatibility. No unsafe code, no build script, no powerful imports, no logic - pure pub-use re-exports. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/embedded-services/refs/heads/main/supply-chain/audits.toml" -[[audits.OpenDevicePartnership.audits.defmt]] -who = "Felipe Balbi " -criteria = "safe-to-deploy" -version = "1.0.1" -aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/mcxa-pac/refs/heads/main/supply-chain/audits.toml" - -[[audits.OpenDevicePartnership.audits.defmt-macros]] -who = "Felipe Balbi " -criteria = "safe-to-deploy" -version = "1.0.1" -aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/mcxa-pac/refs/heads/main/supply-chain/audits.toml" - [[audits.OpenDevicePartnership.audits.defmt-parser]] who = "Felipe Balbi " criteria = "safe-to-deploy" version = "1.0.0" aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/mcxa-pac/refs/heads/main/supply-chain/audits.toml" +[[audits.OpenDevicePartnership.audits.device-driver]] +who = "Felipe Balbi " +criteria = "safe-to-deploy" +version = "1.0.9" +aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/tps6699x/refs/heads/main/supply-chain/audits.toml" + [[audits.OpenDevicePartnership.audits.embassy-executor-timer-queue]] who = "Felipe Balbi " criteria = "safe-to-deploy" @@ -159,6 +146,12 @@ criteria = "safe-to-deploy" version = "0.3.0" aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/embassy-imxrt/refs/heads/main/supply-chain/audits.toml" +[[audits.OpenDevicePartnership.audits.embassy-time-queue-utils]] +who = "Felipe Balbi " +criteria = "safe-to-deploy" +delta = "0.3.0 -> 0.3.2" +aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/embassy-imxrt/refs/heads/main/supply-chain/audits.toml" + [[audits.OpenDevicePartnership.audits.embedded-batteries]] who = "matteotullo " criteria = "safe-to-deploy" @@ -262,13 +255,6 @@ version = "0.8.0" notes = "no_std fixed-capacity data structures. Extensive unsafe for MaybeUninit buffer management, lock-free queues (Vyukov MPMC, SPSC), and Treiber stack memory pools with ABA prevention. Patterns mirror std or published algorithms. Build script probes for atomic/LLSC support. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/embedded-services/refs/heads/main/supply-chain/audits.toml" -[[audits.OpenDevicePartnership.audits.heapless]] -who = "Jerry Xie " -criteria = "safe-to-deploy" -version = "0.9.2" -notes = "no_std fixed-capacity data structures. Extensive unsafe for MaybeUninit buffers, lock-free queues (Vyukov MPMC, SPSC), Treiber stack pools with ABA prevention (CAS tagged pointers + ARM LLSC). All Send/Sync bounds verified correct. Build script probes for ARM LLSC. Assisted-by: copilot-cli:claude-opus-4.6 cargo-vet" -aggregated-from = "https://raw.githubusercontent.com/OpenDevicePartnership/embedded-services/refs/heads/main/supply-chain/audits.toml" - [[audits.OpenDevicePartnership.audits.heck]] who = "Matteo Tullo " criteria = "safe-to-deploy" @@ -539,13 +525,6 @@ This is a standard adapter between the `log` ecosystem and the `tracing` ecosystem. There's one `unsafe` block in this crate and it's well-scoped. """ -[[audits.google.audits.autocfg]] -who = "Manish Goregaokar " -criteria = "safe-to-deploy" -version = "1.4.0" -notes = "Contains no unsafe" -aggregated-from = "https://chromium.googlesource.com/chromium/src/+/main/third_party/rust/chromium_crates_io/supply-chain/audits.toml?format=TEXT" - [[audits.google.audits.bitflags]] who = "Lukasz Anforowicz " criteria = "safe-to-deploy" diff --git a/platform/platform-common/Cargo.lock b/platform/platform-common/Cargo.lock index 8dedc29..bea829f 100644 --- a/platform/platform-common/Cargo.lock +++ b/platform/platform-common/Cargo.lock @@ -90,7 +90,7 @@ dependencies = [ [[package]] name = "battery-service" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#bd46037d63c0b39ccd73a23fffeb328dea8fea00" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "battery-service-interface", "defmt 0.3.100", @@ -106,7 +106,7 @@ dependencies = [ [[package]] name = "battery-service-interface" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#bd46037d63c0b39ccd73a23fffeb328dea8fea00" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embedded-batteries-async", @@ -115,7 +115,7 @@ dependencies = [ [[package]] name = "battery-service-relay" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#bd46037d63c0b39ccd73a23fffeb328dea8fea00" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "battery-service-interface", "defmt 0.3.100", @@ -123,6 +123,14 @@ dependencies = [ "num_enum", ] +[[package]] +name = "bit-register" +version = "0.1.0" +source = "git+https://github.com/OpenDevicePartnership/odp-utilities?tag=v0.1.0#583015c08ad9855f310bdb25d5cf9abff77b5e08" +dependencies = [ + "num-traits", +] + [[package]] name = "bit-register" version = "0.1.0" @@ -439,14 +447,14 @@ dependencies = [ "embedded-io-async 0.7.0", "futures-core", "futures-sink", - "heapless 0.9.2", + "heapless", ] [[package]] name = "embassy-time" -version = "0.5.0" +version = "0.5.1" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "f4fa65b9284d974dad7a23bb72835c4ec85c0b540d86af7fc4098c88cff51d65" +checksum = "592b0c143ec626e821d4d90da51a2bd91d559d6c442b7c74a47d368c9e23d97a" dependencies = [ "cfg-if", "critical-section", @@ -461,9 +469,9 @@ dependencies = [ [[package]] name = "embassy-time-driver" -version = "0.2.1" +version = "0.2.2" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "a0a244c7dc22c8d0289379c8d8830cae06bb93d8f990194d0de5efb3b5ae7ba6" +checksum = "6ee71af1b3a0deaa53eaf2d39252f83504c853646e472400b763060389b9fcc9" dependencies = [ "document-features", ] @@ -607,7 +615,7 @@ dependencies = [ [[package]] name = "embedded-services" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#bd46037d63c0b39ccd73a23fffeb328dea8fea00" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "bitfield 0.17.0", "cortex-m", @@ -633,9 +641,9 @@ dependencies = [ [[package]] name = "espi-device" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/haf-ec-service#09eda26a729738adbd177231600acdb981690375" +source = "git+https://github.com/OpenDevicePartnership/haf-ec-service#290aa80a4c281857f3bed94581200b330119286c" dependencies = [ - "bit-register", + "bit-register 0.1.0 (git+https://github.com/OpenDevicePartnership/odp-utilities?tag=v0.1.0)", "bitflags 2.10.0", "num-traits", "num_enum", @@ -715,16 +723,6 @@ dependencies = [ "hashbrown", ] -[[package]] -name = "heapless" -version = "0.8.0" -source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "0bfb9eb618601c89945a70e254898da93b13be0388091d42117462b265bb3fad" -dependencies = [ - "hash32", - "stable_deref_trait", -] - [[package]] name = "heapless" version = "0.9.2" @@ -822,9 +820,9 @@ dependencies = [ [[package]] name = "mctp-rs" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#bd46037d63c0b39ccd73a23fffeb328dea8fea00" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ - "bit-register", + "bit-register 0.1.0 (git+https://github.com/OpenDevicePartnership/odp-utilities)", "defmt 0.3.100", "embedded-batteries", "espi-device", @@ -970,7 +968,7 @@ dependencies = [ [[package]] name = "odp-service-common" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#bd46037d63c0b39ccd73a23fffeb328dea8fea00" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "embedded-services", "static_cell", @@ -1041,7 +1039,7 @@ checksum = "c33a9471896f1c69cecef8d20cbe2f7accd12527ce60845ff44c153bb2a21b49" [[package]] name = "power-policy-interface" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#bd46037d63c0b39ccd73a23fffeb328dea8fea00" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "bitfield 0.17.0", "defmt 0.3.100", @@ -1288,7 +1286,7 @@ checksum = "55937e1799185b12863d447f42597ed69d9928686b8d88a1df17376a097d8369" [[package]] name = "thermal-service" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#bd46037d63c0b39ccd73a23fffeb328dea8fea00" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embassy-futures", @@ -1297,7 +1295,7 @@ dependencies = [ "embedded-fans-async", "embedded-sensors-hal-async", "embedded-services", - "heapless 0.8.0", + "heapless", "odp-service-common", "thermal-service-interface", ] @@ -1305,7 +1303,7 @@ dependencies = [ [[package]] name = "thermal-service-interface" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#bd46037d63c0b39ccd73a23fffeb328dea8fea00" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embassy-time", @@ -1316,7 +1314,7 @@ dependencies = [ [[package]] name = "thermal-service-relay" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#bd46037d63c0b39ccd73a23fffeb328dea8fea00" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embedded-services", @@ -1357,7 +1355,7 @@ dependencies = [ [[package]] name = "time-alarm-service" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#bd46037d63c0b39ccd73a23fffeb328dea8fea00" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embassy-futures", @@ -1373,7 +1371,7 @@ dependencies = [ [[package]] name = "time-alarm-service-interface" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#bd46037d63c0b39ccd73a23fffeb328dea8fea00" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "bitfield 0.17.0", "defmt 0.3.100", @@ -1385,7 +1383,7 @@ dependencies = [ [[package]] name = "time-alarm-service-relay" version = "0.1.0" -source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=v0.2.0#bd46037d63c0b39ccd73a23fffeb328dea8fea00" +source = "git+https://github.com/OpenDevicePartnership/embedded-services?branch=main#62d4ea9a87588c6096e1c2f149ac3263064cbde9" dependencies = [ "defmt 0.3.100", "embedded-mcu-hal", diff --git a/platform/platform-common/Cargo.toml b/platform/platform-common/Cargo.toml index 3627a99..2cc4ed6 100644 --- a/platform/platform-common/Cargo.toml +++ b/platform/platform-common/Cargo.toml @@ -15,37 +15,37 @@ suspicious = "deny" style = "deny" [dependencies] -embedded-services = { git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "v0.2.0" } -battery-service = { package = "battery-service", git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "v0.2.0", features = [ +embedded-services = { git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "main" } +battery-service = { package = "battery-service", git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "main", features = [ "defmt", ] } -battery-service-interface = { package = "battery-service-interface", git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "v0.2.0", features = [ +battery-service-interface = { package = "battery-service-interface", git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "main", features = [ "defmt", ] } -battery-service-relay = { package = "battery-service-relay", git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "v0.2.0", features = [ +battery-service-relay = { package = "battery-service-relay", git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "main", features = [ "defmt", ] } -thermal-service = { git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "v0.2.0", features = [ +thermal-service = { git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "main", features = [ "defmt", ] } -thermal-service-interface = { package = "thermal-service-interface", git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "v0.2.0", features = [ +thermal-service-interface = { package = "thermal-service-interface", git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "main", features = [ "defmt", ] } -thermal-service-relay = { package = "thermal-service-relay", git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "v0.2.0", features = [ +thermal-service-relay = { package = "thermal-service-relay", git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "main", features = [ "defmt", ] } -time-alarm-service = { git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "v0.2.0", features = [ +time-alarm-service = { git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "main", features = [ "defmt", ] } -time-alarm-service-interface = { package = "time-alarm-service-interface", git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "v0.2.0", features = [ +time-alarm-service-interface = { package = "time-alarm-service-interface", git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "main", features = [ "defmt", ] } -time-alarm-service-relay = { package = "time-alarm-service-relay", git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "v0.2.0", features = [ +time-alarm-service-relay = { package = "time-alarm-service-relay", git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "main", features = [ "defmt", ] } -odp-service-common = { git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "v0.2.0" } +odp-service-common = { git = "https://github.com/OpenDevicePartnership/embedded-services", branch = "main" } embedded-hal = "1.0.0" embedded-hal-async = "1.0.0"