Purge Cargo.lock files from Mariner dependencies (#6906)

Cargo.lock files present in vendored dependencies will cause Component Governance to incorrectly scan those dependencies. Remove these files to prevent this.

edgelet/build/linux/package-mariner.sh

@@ -100,6 +100,9 @@ export CARGO_HOME=${BUILD_REPOSITORY_LOCALPATH}/cargo-home
 echo "Vendoring Rust dependencies"
 cargo vendor vendor
 
+# Purge Cargo.lock files from dependencies. These files are not necessary and will cause
+# Component Governance to incorrectly scan them for issues.
+find "$CARGO_HOME/registry/src/" -name "Cargo.lock" -exec echo "Deleting {}" \; -exec rm {} \;
 
 # Configure Cargo to use vendored the deps
 mkdir .cargo