From a281d227c92eecbb9d65a42db492f9358b60b9a6 Mon Sep 17 00:00:00 2001
From: "s0wlz (Matthias Puchstein)" <matthias@puchstein.lu>
Date: Sat, 2 May 2026 21:55:18 +0200
Subject: [PATCH] chore: move cargo audit ignore to explicit command-line flag

---
 .gitea/workflows/ci.yml      | 2 +-
 .gitea/workflows/release.yml | 2 +-
 backend/audit.toml           | 2 --
 deploy/values_override.yaml  | 2 +-
 4 files changed, 3 insertions(+), 5 deletions(-)
 delete mode 100644 backend/audit.toml

diff --git a/.gitea/workflows/ci.yml b/.gitea/workflows/ci.yml
index 2c837cb..0352c7d 100644
--- a/.gitea/workflows/ci.yml
+++ b/.gitea/workflows/ci.yml
@@ -71,7 +71,7 @@ jobs:
       - name: Security audit
         run: |
           cargo install cargo-audit --locked
-          cd backend && cargo audit
+          cd backend && cargo audit --ignore RUSTSEC-2023-0071
 
       - name: Build frontend
         run: pnpm --dir frontend build
diff --git a/.gitea/workflows/release.yml b/.gitea/workflows/release.yml
index 6d8afb7..b557dd7 100644
--- a/.gitea/workflows/release.yml
+++ b/.gitea/workflows/release.yml
@@ -70,7 +70,7 @@ jobs:
       - name: Security audit
         run: |
           cargo install cargo-audit --locked
-          cd backend && cargo audit
+          cd backend && cargo audit --ignore RUSTSEC-2023-0071
 
       - name: Build frontend
         run: pnpm --dir frontend build
diff --git a/backend/audit.toml b/backend/audit.toml
deleted file mode 100644
index 15298d4..0000000
--- a/backend/audit.toml
+++ /dev/null
@@ -1,2 +0,0 @@
-[advisories]
-ignore = ["RUSTSEC-2023-0071"] # Marvin Attack: potential key recovery through timing sidechannels in 'rsa' crate. No fixed upgrade available yet.
diff --git a/deploy/values_override.yaml b/deploy/values_override.yaml
index 7cc1bc9..f3587bf 100644
--- a/deploy/values_override.yaml
+++ b/deploy/values_override.yaml
@@ -3,7 +3,7 @@ httpRoute:
     - tutor.puchstein.dev
 
 image:
-  tag: v0.1.14
+  tag: v0.1.15
 
 env:
   extra: {}