chore: Fix SQLX vulnerability (#2736)

SQLX 0.8.0 had a vulnerability, which didn't affect us. At the time of
discovery, there was no fix. We silenced the warning to unlock
development.

This PR bumps SQLX to 0.8.1 which includes the vulnerability fix and
removes the cargo deny allowlist.

Co-authored-by: perekopskiy <[email protected]>

Cargo.toml

@@ -167,7 +167,7 @@ serde_with = "1"
 serde_yaml = "0.9"
 sha2 = "0.10.8"
 sha3 = "0.10.8"
-sqlx = "0.8.0"
+sqlx = "0.8.1"
 static_assertions = "1.1"
 structopt = "0.3.20"
 strum = "0.26"

deny.toml

@@ -6,9 +6,7 @@ vulnerability = "deny"
 unmaintained = "warn"
 yanked = "warn"
 notice = "warn"
-ignore = [
-    "RUSTSEC-2024-0363", # allows [email protected] until fix is released, more here -- https://github.com/launchbadge/sqlx/issues/3440
-]
+ignore = []
 
 [licenses]
 unlicensed = "deny"

docs/guides/setup-dev.md

@@ -43,7 +43,7 @@ yarn set version 1.22.19
 # For running unit tests
 cargo install cargo-nextest
 # SQL tools
-cargo install sqlx-cli --version 0.8.0
+cargo install sqlx-cli --version 0.8.1
 
 # Foundry
 curl -L https://foundry.paradigm.xyz | bash
@@ -217,7 +217,7 @@ SQLx is a Rust library we use to interact with Postgres, and its CLI is used to
 features of the library.
 
 ```bash
-cargo install --locked sqlx-cli --version 0.8.0
+cargo install --locked sqlx-cli --version 0.8.1
 ```
 
 ## Easier method using `nix`

prover/Cargo.toml

@@ -45,7 +45,7 @@ serde = "1.0"
 serde_derive = "1.0"
 serde_json = "1.0"
 sha3 = "0.10.8"
-sqlx = { version = "0.8.0", default-features = false }
+sqlx = { version = "0.8.1", default-features = false }
 structopt = "0.3.26"
 strum = { version = "0.26" }
 tempfile = "3"