cargo: Avoid pulling time 0.1 via chrono

The time 0.1 crate has a CVE attached to it. The newly specified features will be the default for chrono 0.5. Part-of: <https://gitlab.gnome.org/GNOME/librsvg/-/merge_requests/802>
author: Sophie Herold <sophie@hemio.de> 2023-03-01 23:56:53 +0100
committer: Sophie Herold <sophie@hemio.de> 2023-03-02 01:20:48 +0100
commit: d3add1bbd54ddb29da104b800f8b2d877fd5bb93 (patch)
tree: c25ee8e7a801975efb49972959ab01af3019e277
parent: 1f11b3c236c374c58d929baafa0841fef59c4155 (diff)
download: librsvg-d3add1bbd54ddb29da104b800f8b2d877fd5bb93.tar.gz
3 files changed, 3 insertions, 24 deletions
diff --git a/Cargo.lock b/Cargo.lock
index 3d464264..b6c926cd 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -203,7 +203,6 @@ dependencies = [
  "js-sys",
  "num-integer",
  "num-traits",
- "time 0.1.45",
  "wasm-bindgen",
  "winapi",
 ]
@@ -1206,7 +1205,7 @@ dependencies = [
  "linked-hash-map",
  "log",
  "pom",
- "time 0.2.27",
+ "time",
  "weezl",
 ]
 
@@ -2377,17 +2376,6 @@ dependencies = [
 
 [[package]]
 name = "time"
-version = "0.1.45"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "1b797afad3f312d1c66a56d11d0316f916356d11bd158fbc6ca6389ff6bf805a"
-dependencies = [
- "libc",
- "wasi 0.10.0+wasi-snapshot-preview1",
- "winapi",
-]
-
-[[package]]
-name = "time"
 version = "0.2.27"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "4752a97f8eebd6854ff91f1c1824cd6160626ac4bd44287f7f4ea2035a02a242"
@@ -2571,12 +2559,6 @@ checksum = "cccddf32554fecc6acb585f82a32a72e28b48f8c4c1883ddfeeeaa96f7d8e519"
 
 [[package]]
 name = "wasi"
-version = "0.10.0+wasi-snapshot-preview1"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "1a143597ca7c7793eff794def352d41792a93c481eb1042423ff7ff72ba2c31f"
-
-[[package]]
-name = "wasi"
 version = "0.11.0+wasi-snapshot-preview1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "9c8d87e72b64a3b4db28d11ce29237c246188f4f51057d65a7eab63b7987e423"
diff --git a/Cargo.toml b/Cargo.toml
index 2f6f1650..e0be67e5 100644
--- a/Cargo.toml
+++ b/Cargo.toml
@@ -55,7 +55,7 @@ anyhow = "1.0"
 byteorder = "1.4"
 cairo-rs = { version = "0.17", features=["v1_16", "png", "pdf", "ps", "svg"] }
 cast = "0.3.0"
-chrono = "0.4.0" # rsvg-convert
+chrono = { version = "0.4.0", default-features = false, features = ["clock", "std", "wasmbind"] } # rsvg-convert
 clap = { version = "4.0.17", features = ["cargo", "derive"] } # rsvg-convert
 clap_complete = "4.0.5" # rsvg-convert
 cssparser = "0.29.0"
@@ -91,7 +91,7 @@ anyhow = "1.0"
 assert_cmd = "2.0.2"
 cairo-rs = { version = "0.17", features = ["png"] }
 cast = "0.3.0"
-chrono = "0.4.0"
+chrono = { version = "0.4.0", default-features = false, features = ["clock", "std", "wasmbind"] }
 criterion = "0.4"
 glib = "0.17"
 libc = "0.2"
diff --git a/deny.toml b/deny.toml
index e89fe465..15f4ab3d 100644
--- a/deny.toml
+++ b/deny.toml
@@ -5,9 +5,6 @@ vulnerability = "deny"
 unmaintained = "warn"
 yanked = "warn"
 notice = "warn"
-ignore = [
-    "RUSTSEC-2020-0071",
-]
 
 [licenses]
 unlicensed = "deny"
author	Sophie Herold <sophie@hemio.de>	2023-03-01 23:56:53 +0100
committer	Sophie Herold <sophie@hemio.de>	2023-03-02 01:20:48 +0100
commit	d3add1bbd54ddb29da104b800f8b2d877fd5bb93 (patch)
tree	c25ee8e7a801975efb49972959ab01af3019e277
parent	1f11b3c236c374c58d929baafa0841fef59c4155 (diff)
download	librsvg-d3add1bbd54ddb29da104b800f8b2d877fd5bb93.tar.gz