chore(deps): bump aquasecurity/trivy-action (#129) #168
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| name: CI | |
| "on": | |
| push: | |
| branches: [main, master] | |
| pull_request: | |
| branches: [main, master] | |
| workflow_dispatch: | |
| concurrency: | |
| group: ${{ github.workflow }}-${{ github.ref }} | |
| cancel-in-progress: true | |
| permissions: | |
| contents: read | |
| env: | |
| CARGO_TERM_COLOR: always | |
| CARGO_INCREMENTAL: 0 | |
| RUSTFLAGS: "-D warnings" | |
| jobs: | |
| fmt: | |
| name: Format | |
| runs-on: ubuntu-latest | |
| timeout-minutes: 10 | |
| steps: | |
| - name: Checkout repository | |
| # yamllint disable-line rule:line-length | |
| uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 | |
| - name: Setup Rust with caching | |
| uses: ./.github/actions/setup-rust-cached | |
| with: | |
| toolchain: stable | |
| components: rustfmt | |
| cache-key: fmt | |
| - name: Check formatting | |
| run: cargo fmt --all -- --check | |
| clippy: | |
| name: Clippy | |
| runs-on: ubuntu-latest | |
| timeout-minutes: 20 | |
| steps: | |
| - name: Checkout repository | |
| # yamllint disable-line rule:line-length | |
| uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 | |
| - name: Setup Rust with caching | |
| uses: ./.github/actions/setup-rust-cached | |
| with: | |
| toolchain: stable | |
| components: clippy | |
| cache-key: clippy | |
| - name: Run clippy | |
| run: >- | |
| cargo clippy --all-targets --all-features | |
| -- -D warnings | |
| test: | |
| name: Test (${{ matrix.os }}) | |
| runs-on: ${{ matrix.os }} | |
| timeout-minutes: 30 | |
| strategy: | |
| fail-fast: false | |
| matrix: | |
| os: [ubuntu-latest, macos-latest, windows-latest] | |
| steps: | |
| - name: Checkout repository | |
| # yamllint disable-line rule:line-length | |
| uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 | |
| - name: Setup Rust with caching | |
| uses: ./.github/actions/setup-rust-cached | |
| with: | |
| toolchain: stable | |
| cache-key: test | |
| - name: Run tests | |
| run: cargo test --all-features --verbose | |
| doc: | |
| name: Documentation | |
| runs-on: ubuntu-latest | |
| timeout-minutes: 15 | |
| env: | |
| RUSTDOCFLAGS: "-D warnings" | |
| steps: | |
| - name: Checkout repository | |
| # yamllint disable-line rule:line-length | |
| uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 | |
| - name: Setup Rust with caching | |
| uses: ./.github/actions/setup-rust-cached | |
| with: | |
| toolchain: stable | |
| cache-key: doc | |
| - name: Check documentation | |
| run: cargo doc --no-deps --all-features | |
| deny: | |
| name: Cargo Deny | |
| runs-on: ubuntu-latest | |
| timeout-minutes: 10 | |
| steps: | |
| - name: Checkout repository | |
| # yamllint disable-line rule:line-length | |
| uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 | |
| - name: Install cargo-deny | |
| # yamllint disable-line rule:line-length | |
| uses: ./.github/actions/install-cargo-tool | |
| with: | |
| tool: cargo-deny | |
| - name: Run cargo-deny | |
| run: cargo deny check | |
| msrv: | |
| name: MSRV Check | |
| runs-on: ubuntu-latest | |
| timeout-minutes: 20 | |
| steps: | |
| - name: Checkout repository | |
| # yamllint disable-line rule:line-length | |
| uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 | |
| - name: Setup Rust with caching | |
| uses: ./.github/actions/setup-rust-cached | |
| with: | |
| toolchain: "1.92" | |
| cache-key: msrv | |
| - name: Check MSRV | |
| run: cargo check --all-features | |
| coverage: | |
| name: Coverage | |
| runs-on: ubuntu-latest | |
| timeout-minutes: 30 | |
| environment: copilot | |
| steps: | |
| - name: Checkout repository | |
| # yamllint disable-line rule:line-length | |
| uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 | |
| - name: Setup Rust with caching | |
| uses: ./.github/actions/setup-rust-cached | |
| with: | |
| toolchain: stable | |
| components: llvm-tools-preview | |
| cache-key: cov | |
| - name: Install cargo-llvm-cov | |
| # yamllint disable-line rule:line-length | |
| uses: ./.github/actions/install-cargo-tool | |
| with: | |
| tool: cargo-llvm-cov | |
| - name: Generate coverage report | |
| run: >- | |
| cargo llvm-cov --all-features | |
| --lcov --output-path lcov.info | |
| - name: Enforce 90% line coverage | |
| run: >- | |
| cargo llvm-cov --all-features | |
| --fail-under-lines 90 | |
| - name: Upload coverage to Codecov | |
| # yamllint disable-line rule:line-length | |
| uses: codecov/codecov-action@671740ac38dd9b0130fbe1cec585b89eea48d3de # v5.5.2 | |
| with: | |
| files: lcov.info | |
| fail_ci_if_error: false | |
| verbose: true | |
| env: | |
| CODECOV_TOKEN: ${{ secrets.CODECOV_TOKEN }} | |
| all-checks-pass: | |
| name: All Checks Pass | |
| if: always() | |
| needs: [fmt, clippy, test, doc, deny, msrv, coverage] | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Check all jobs passed | |
| env: | |
| FMT_RESULT: ${{ needs.fmt.result }} | |
| CLIPPY_RESULT: ${{ needs.clippy.result }} | |
| TEST_RESULT: ${{ needs.test.result }} | |
| DOC_RESULT: ${{ needs.doc.result }} | |
| DENY_RESULT: ${{ needs.deny.result }} | |
| MSRV_RESULT: ${{ needs.msrv.result }} | |
| COVERAGE_RESULT: ${{ needs.coverage.result }} | |
| run: | | |
| if [[ "$FMT_RESULT" != "success" ]] || \ | |
| [[ "$CLIPPY_RESULT" != "success" ]] || \ | |
| [[ "$TEST_RESULT" != "success" ]] || \ | |
| [[ "$DOC_RESULT" != "success" ]] || \ | |
| [[ "$DENY_RESULT" != "success" ]] || \ | |
| [[ "$MSRV_RESULT" != "success" ]] || \ | |
| [[ "$COVERAGE_RESULT" != "success" ]]; then | |
| echo "One or more jobs failed" | |
| exit 1 | |
| fi | |
| echo "All checks passed!" |