From acde0bab704022ad5406b62a37474e13b0188700 Mon Sep 17 00:00:00 2001
From: Guillaume Desmottes <guillaume.desmottes@collabora.com>
Date: Mon, 27 Apr 2020 14:21:22 +0200
Subject: [PATCH] ci: add 'cargo deny' in schedules jobs

Fix #20
---
 .gitlab-ci.yml |  8 ++++++++
 deny.toml      | 34 ++++++++++++++++++++++++++++++++++
 2 files changed, 42 insertions(+)
 create mode 100644 deny.toml

diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index 92d746653..8bbdc58bf 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -102,3 +102,11 @@ outdated:
     - schedules
   script:
     - cargo outdated --root-deps-only --exit-code 1 -v
+
+deny:
+  extends: .img-stable
+  stage: 'extras'
+  only:
+    - schedules
+  script:
+    - cargo deny check
diff --git a/deny.toml b/deny.toml
new file mode 100644
index 000000000..3f71adaf2
--- /dev/null
+++ b/deny.toml
@@ -0,0 +1,34 @@
+[advisories]
+db-path = "~/.cargo/advisory-db"
+db-url = "https://github.com/rustsec/advisory-db"
+vulnerability = "deny"
+unmaintained = "warn"
+notice = "warn"
+ignore = []
+
+[licenses]
+unlicensed = "deny"
+allow = [
+  "Apache-2.0",
+]
+deny = [
+  "GPL-1.0",
+  "GPL-2.0",
+  "GPL-3.0",
+  "AGPL-1.0",
+  "AGPL-3.0",
+]
+copyleft = "deny"
+allow-osi-fsf-free = "either"
+confidence-threshold = 0.8
+
+[bans]
+multiple-versions = "warn"
+highlight = "all"
+
+[sources]
+unknown-registry = "deny"
+unknown-git = "deny"
+allow-git = [
+  "https://github.com/gtk-rs/sys",
+]