chore(deps): bump rand from 0.9.1 to 0.9.2 #77
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: CI | |
| on: | |
| push: | |
| branches: [develop] | |
| pull_request: | |
| branches: [develop] | |
| env: | |
| CARGO_TERM_COLOR: always | |
| RUST_BACKTRACE: 1 | |
| # Override target-cpu=native from .cargo/config.toml (breaks CI runners) | |
| RUSTFLAGS: "" | |
| jobs: | |
| build: | |
| name: Build & Test | |
| runs-on: ${{ matrix.os }} | |
| strategy: | |
| fail-fast: false | |
| matrix: | |
| os: [ubuntu-latest, macos-latest, windows-latest] | |
| # MSRV 1.88 - AWS SDK requires Rust 1.88 | |
| rust: ["1.88"] | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Install Rust toolchain | |
| uses: dtolnay/rust-toolchain@master | |
| with: | |
| toolchain: ${{ matrix.rust }} | |
| components: clippy, rustfmt | |
| - name: Cache cargo registry | |
| uses: actions/cache@v4 | |
| with: | |
| path: | | |
| ~/.cargo/registry | |
| ~/.cargo/git | |
| target | |
| key: ${{ runner.os }}-cargo-${{ hashFiles('**/Cargo.lock') }} | |
| restore-keys: | | |
| ${{ runner.os }}-cargo- | |
| - name: Check formatting | |
| if: matrix.os == 'ubuntu-latest' | |
| run: cargo fmt --all -- --check | |
| - name: Build | |
| run: cargo build --verbose | |
| - name: Run tests | |
| run: cargo test --verbose | |
| - name: Clippy | |
| if: matrix.os == 'ubuntu-latest' | |
| # Focus on correctness lints, not style (too many legacy style warnings) | |
| # Allow structural lints that require significant refactoring | |
| run: | | |
| cargo clippy -- \ | |
| -D clippy::correctness -D clippy::suspicious -D clippy::complexity \ | |
| -A clippy::collapsible_if -A clippy::collapsible_else_if \ | |
| -A clippy::needless_borrows_for_generic_args -A clippy::single_match \ | |
| -A clippy::too_many_arguments -A clippy::type_complexity \ | |
| -A clippy::only_used_in_recursion -A clippy::manual_is_multiple_of \ | |
| -A clippy::derivable_impls -A clippy::wildcard_in_or_patterns \ | |
| -A clippy::manual_strip -A clippy::manual_div_ceil \ | |
| -A dead_code -A unused_assignments | |
| # Security audit | |
| security: | |
| name: Security Audit | |
| runs-on: ubuntu-latest | |
| permissions: | |
| checks: write | |
| contents: read | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - uses: rustsec/audit-check@v2 | |
| with: | |
| token: ${{ secrets.GITHUB_TOKEN }} | |
| # Ignore advisories in transitive dependencies we cannot control: | |
| # - gix-date (RUSTSEC-2025-0140): via rustsec crate, awaiting upstream fix | |
| # - bincode (RUSTSEC-2025-0141): via syntect, marked "complete" by maintainer | |
| # - Other transitive deps from rustsec, aws-sdk, kube, etc. | |
| ignore: RUSTSEC-2020-0163,RUSTSEC-2024-0320,RUSTSEC-2025-0057,RUSTSEC-2025-0074,RUSTSEC-2025-0075,RUSTSEC-2025-0080,RUSTSEC-2025-0081,RUSTSEC-2025-0098,RUSTSEC-2025-0104,RUSTSEC-2025-0134,RUSTSEC-2025-0140,RUSTSEC-2025-0141 |