targets = [
    { triple = "x86_64-unknown-linux-gnu" },
    { triple = "arm64-unknown-linux-gnu" },
]

[bans]
deny = [
    { name = "openssl" },
    { name = "openssl-sys" },
    { name = "libssh2-sys" },
]

[licenses]
# See https://spdx.org/licenses/ for list of possible licenses
unlicensed = "deny"
allow = [
    "MIT",
    "Apache-2.0",
    "ISC",
    "BSD-3-Clause",
]
exceptions = [
    { allow = ["Unicode-DFS-2016"], name = "unicode-ident" },
    { allow = ["OpenSSL"], name = "ring" },
]
deny = [
    "GPL-2.0",
    "GPL-3.0",
    "AGPL-3.0",
    "MPL-2.0" # it is used by webpki-roots; we do not hardcode root certs in the binary
]
copyleft = "deny"
confidence-threshold = 0.93
private = { ignore = true }

[[licenses.clarify]]
name = "ring"
version = "*"
expression = "MIT AND ISC AND OpenSSL"
license-files = [
    # Each entry is a crate relative path, and the (opaque) hash of its contents
    { path = "LICENSE", hash = 0xbd0eed23 }
]