From 55598e780e2b4b1e00db30c0fd19b3f107cab809 Mon Sep 17 00:00:00 2001
From: yihau <yihau.chen@icloud.com>
Date: Wed, 2 Oct 2024 12:50:05 +0800
Subject: [PATCH 1/2] fix audit

---
 ci/do-audit.sh | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/ci/do-audit.sh b/ci/do-audit.sh
index df395e8a2bbc22..2786534e5f4b5f 100755
--- a/ci/do-audit.sh
+++ b/ci/do-audit.sh
@@ -33,6 +33,9 @@ cargo_audit_ignores=(
 
   # curve25519-dalek
   --ignore RUSTSEC-2024-0344
+
+  # tonic
+  --ignore RUSTSEC-2024-0376
 )
 scripts/cargo-for-all-lock-files.sh audit "${cargo_audit_ignores[@]}" | $dep_tree_filter
 # we want the `cargo audit` exit code, not `$dep_tree_filter`'s

From 349f83f2fe8759174b1fffbf4f3201f54d89075d Mon Sep 17 00:00:00 2001
From: yihau <yihau.chen@icloud.com>
Date: Wed, 2 Oct 2024 22:42:20 +0800
Subject: [PATCH 2/2] add more comment

---
 ci/do-audit.sh | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/ci/do-audit.sh b/ci/do-audit.sh
index 2786534e5f4b5f..aca50d122f3d1f 100755
--- a/ci/do-audit.sh
+++ b/ci/do-audit.sh
@@ -35,6 +35,9 @@ cargo_audit_ignores=(
   --ignore RUSTSEC-2024-0344
 
   # tonic
+  # When using tonic::transport::Server there is a remote DoS attack that can cause
+  # the server to exit cleanly on accepting a tcp/tls stream.
+  # Ignoring because we do not use this functionality.
   --ignore RUSTSEC-2024-0376
 )
 scripts/cargo-for-all-lock-files.sh audit "${cargo_audit_ignores[@]}" | $dep_tree_filter