Skip to content
Audit

Upgrade npm deps to latest, Rust to 1.84.0, emsdk to 3.1.68, artichoke to latest, and cargo deps to latest #2631

Sign in to view logs

Upgrade npm deps to latest, Rust to 1.84.0, emsdk to 3.1.68, artichoke to latest, and cargo deps to latest

Upgrade npm deps to latest, Rust to 1.84.0, emsdk to 3.1.68, artichoke to latest, and cargo deps to latest #2631

Workflow file for this run

.github/workflows/audit.yaml at f7bbf4d
---
name: Audit
"on":
push:
branches:
- trunk
pull_request:
branches:
- trunk
schedule:
- cron: "0 0 * * TUE"
jobs:
js:
name: Audit JS Dependencies
runs-on: ubuntu-latest
steps:
- name: Checkout repository
uses: actions/[email protected]
- name: Install Nodejs toolchain
run: npm ci
- name: npm audit
run: npm audit
ruby:
name: Audit Ruby Dependencies
runs-on: ubuntu-latest
steps:
- name: Checkout repository
uses: actions/[email protected]
- name: Install Ruby toolchain
uses: ruby/setup-ruby@4a9ddd6f338a97768b8006bf671dfbad383215f4 # v1.207.0
with:
ruby-version: ".ruby-version"
bundler-cache: true
- name: bundler-audit
run: bundle exec bundle-audit check --update
rust:
name: Audit Rust Dependencies
runs-on: ubuntu-latest
strategy:
matrix:
checks:
- advisories
- bans licenses sources
# Prevent sudden announcement of a new advisory from failing ci:
continue-on-error: ${{ matrix.checks == 'advisories' }}
steps:
- name: Checkout repository
uses: actions/[email protected]
- name: Install Rust toolchain
uses: artichoke/setup-rust/[email protected]
- name: Generate Cargo.lock
run: |
if [[ ! -f "Cargo.lock" ]]; then
cargo generate-lockfile --verbose
fi
- uses: EmbarkStudios/cargo-deny-action@e2f4ede4a4e60ea15ff31bc0647485d80c66cfba # v2.0.4
with:
arguments: --locked --all-features
command: check ${{ matrix.checks }}
command-arguments: --show-stats