Skip to content

Bump leynos/shared-actions from 988ff278fcab48e8a932e2af88ce1aaaa78386a0 to 6c69b7715a6420c409af6fd56f1d6e566da42a46 #384

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Bump leynos/shared-actions from 988ff278fcab48e8a932e2af88ce1aaaa78386a0 to 6c69b7715a6420c409af6fd56f1d6e566da42a46 #384

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 6, 2025

Bumps leynos/shared-actions from 988ff278fcab48e8a932e2af88ce1aaaa78386a0 to 6c69b7715a6420c409af6fd56f1d6e566da42a46.

Changelog

Sourced from leynos/shared-actions's changelog.

Design: A Modernized, Declarative Rust Build and Release Pipeline

1. System Goals

This document outlines a unified, modern design for a reusable Rust build and release pipeline, intended for implementation within the shared-actions repository and consumption by projects such as netsuke. The system's primary goal is to replace the previous architecture, which relied on imperative Python scripts, with a declarative, tool-centric workflow.

2. High-Level Architecture: Configuration as Code

The new architecture embraces the principle of "Configuration as Code". The responsibility for how to build and package software is delegated to specialized tools, while the developer's intent—what to build—is captured in declarative configuration files.

This pipeline is composed of three core, best-in-class tools:

  1. cross: A zero-setup cross-compilation tool for Rust. It transparently manages containerized build environments (via Docker or Podman) to provide the correct C toolchains, linkers, and system libraries for any given target triple.
  2. clap_mangen: A utility for generating UNIX manual pages directly from a clap-based CLI definition. It is integrated into the build process via a build.rs script to ensure documentation is always synchronized with the application's interface.
  3. GoReleaser: A powerful, multi-format release automation tool. It reads a single .goreleaser.yaml file to create archives (.tar.gz), Linux packages (.deb, .rpm), and other formats, as well as checksums and GitHub Releases.

Any necessary "glue" logic will be implemented in self-contained Python scripts that use uv and PEP 723 to manage their dependencies, removing the need for actions/setup-python in consuming workflows.

The workflow proceeds in two distinct stages:

  1. Build Stage: A parallelized matrix job that uses cross to compile the Rust binary and its associated man page for each target platform. The resulting artifacts are uploaded for the next stage.
  2. Release Stage: A single job that downloads all build artifacts, then orchestrates GoReleaser to package them into archives and distribution formats before creating a GitHub Release.

3. Detailed Component Design for Implementers

3.1 Build Stage: Cross-Compilation and Man Page Generation

The build stage is responsible for producing compiled binaries and

... (truncated)

Commits
  • 6c69b77 Ensure linux packages script_utils can load cmd utils under uv (#163)
  • aaa265b Fix Windows linker discovery command invocation (#161)
  • 9da83a4 Improve run_cmd docs and extend tests (#162)
  • c264160 Handle missing sandbox dependencies when validating Linux packages (#159)
  • 7f2d179 Switch run_completed_process to plumbum and update tests (#160)
  • ee99116 Align polythene usage with upstream package (#157)
  • 1d8fe35 Address review feedback for validate-linux-packages action (#155)
  • ae01f3d Add crate name output to ensure-cargo-version action (#154)
  • c0a9072 Add FreeBSD cross build support (#150)
  • 7cf5fdc Add validate-linux-packages composite action (#153)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump leynos/shared-actions
510d063 
Bumps [leynos/shared-actions](https://github.com/leynos/shared-actions) from 988ff278fcab48e8a932e2af88ce1aaaa78386a0 to 6c69b7715a6420c409af6fd56f1d6e566da42a46.
- [Release notes](https://github.com/leynos/shared-actions/releases)
- [Changelog](https://github.com/leynos/shared-actions/blob/main/docs/rust-build-release-pipeline.md)
- [Commits](leynos/shared-actions@988ff27...6c69b77)

---
updated-dependencies:
- dependency-name: leynos/shared-actions
  dependency-version: 6c69b7715a6420c409af6fd56f1d6e566da42a46
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Oct 6, 2025

Labels

The following labels could not be found: dependencies, github-actions. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@dependabot dependabot bot mentioned this pull request Oct 6, 2025
Closed
@coderabbitai coderabbitai
Copy link
Contributor

coderabbitai bot commented Oct 6, 2025

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Note

Free review on us!

CodeRabbit is offering free reviews until Wed Oct 08 2025 to showcase some of the refinements we've made.

Comment @coderabbitai help to get the list of available commands and usage tips.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@codescene-delta-analysis codescene-delta-analysis[bot] codescene-delta-analysis[bot] approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants