From 0eb99bab18f79bd4126b730af2985c24a9eda4d1 Mon Sep 17 00:00:00 2001
From: Sebastian Bernauer <sebastian.bernauer@stackable.tech>
Date: Mon, 13 Apr 2026 15:01:51 +0200
Subject: [PATCH] chore: Update message of rsa advisory allowlist

---
 template/deny.toml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/template/deny.toml b/template/deny.toml
index 8ec7e452..62679667 100644
--- a/template/deny.toml
+++ b/template/deny.toml
@@ -18,9 +18,9 @@ ignore = [
     # https://rustsec.org/advisories/RUSTSEC-2023-0071
     # "rsa" crate: Marvin Attack: potential key recovery through timing sidechannel
     #
-    # No patch is yet available, however work is underway to migrate to a fully constant-time implementation
-    # So we need to accept this, as of SDP 25.3 we are not using the rsa crate to create certificates used in production
-    # setups.
+    # No patch is yet available, however work is underway to migrate to a fully constant-time implementation.
+    # So we need to accept this, as of SDP 26.3 we are "only" using the crate to create private +
+    # public key pairs used by webhooks, such as conversion or mutating webhooks.
     #
     # https://github.com/RustCrypto/RSA/issues/19 is the tracking issue
     "RUSTSEC-2023-0071",