You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Describe the bug
Running cargo deny in a crate that pulls in other unlicensed crates from a path errors, even though the pulled in dependencies are marked as not published.
To Reproduce
Steps to reproduce the behavior:
Set deny.toml to ignore unlicensed private crates:
Mark other crate as not published in its Cargo.toml
[package]
name = "other_crate"
...
publish = false
Running cargo deny check from parent crate returns an error even though it shouldn't error: other_crate 1.2.3 (path+file:///path/to/other/crate) is unlicensed
The text was updated successfully, but these errors were encountered:
FWIW, I'm also running into this. At work, I'm doing an experiment where I switch our Cargo workspace into two workspaces with a few shared crates outside the workspace. Those crates are used as path dependencies directly.
For reference, we work around the imperfect ignore-private behavior by setting the license in each crate's Cargo.toml to license = "LicenseRef-OURCOMPANYNAME-Proprietary" and then adding that to the allowed licenses.
Describe the bug
Running cargo deny in a crate that pulls in other unlicensed crates from a path errors, even though the pulled in dependencies are marked as not published.
To Reproduce
Steps to reproduce the behavior:
deny.toml
to ignore unlicensed private crates:Cargo.toml
Cargo.toml
cargo deny check
from parent crate returns an error even though it shouldn'terror: other_crate 1.2.3 (path+file:///path/to/other/crate) is unlicensed
The text was updated successfully, but these errors were encountered: