-
Notifications
You must be signed in to change notification settings - Fork 13
142 lines (131 loc) · 3.65 KB
/
cargo.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
name: cargo
on: [ push, pull_request ]
env:
CARGO_TERM_COLOR: always
RUST_BACKTRACE: full
jobs:
# First stage: these are quick jobs that give immediate feedback on a PR.
check:
name: check-${{ matrix.os }}
runs-on: ${{ matrix.os }}
strategy:
matrix:
os: [ ubuntu-latest, macos-latest, windows-latest ]
steps:
- uses: actions/checkout@v3
- uses: dtolnay/rust-toolchain@stable
- uses: Swatinem/rust-cache@v2
with:
shared-key: check-${{ matrix.os }}
- name: cargo check
run: |
cargo check --all-targets
clippy:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- uses: dtolnay/rust-toolchain@stable
with:
components: clippy
- uses: Swatinem/rust-cache@v2
- uses: taiki-e/install-action@v2
with:
tool: clippy-sarif,sarif-fmt
- name: run clippy
run: |
cargo clippy --all-targets --all-features --message-format json \
| clippy-sarif \
| tee clippy.sarif \
| sarif-fmt
shell: bash
continue-on-error: true
- uses: actions/upload-artifact@v3
with:
name: clippy-sarif
path: clippy.sarif
clippy-upload:
runs-on: ubuntu-latest
needs: [ clippy ]
permissions:
security-events: write
steps:
- uses: actions/checkout@v3
- uses: actions/download-artifact@v3
with:
name: clippy-sarif
- uses: github/codeql-action/upload-sarif@v2
with:
sarif_file: clippy.sarif
audit:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- uses: Swatinem/rust-cache@v2
with:
shared-key: check-ubuntu-latest
save-if: false
- uses: taiki-e/install-action@v2
with:
tool: cargo-audit
- run: |
cargo audit
rustfmt:
name: rustfmt
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- uses: dtolnay/rust-toolchain@stable
- name: cargo fmt
shell: bash
run: |
cargo fmt --all -- --check
# Second group of checks: These are more expensive than the first set so we
# gate them on the check action succeeding.
build:
name: build-${{ matrix.os }}-${{ matrix.profile }}
runs-on: ${{ matrix.os }}
strategy:
matrix:
os: [ ubuntu-latest, macos-latest, windows-latest ]
profile: [ release, debug ]
steps:
- uses: actions/checkout@v3
- uses: dtolnay/rust-toolchain@stable
- uses: Swatinem/rust-cache@v2
with:
shared-key: build-${{ matrix.os }}-${{ matrix.profile }}
- name: Update cargo flags
if: ${{ matrix.profile == 'release' }}
run: echo 'FLAGS=--release' >> $GITHUB_ENV
shell: bash
- name: Update cargo flags
if: ${{ matrix.profile == 'debug' }}
run: echo 'FLAGS=' >> $GITHUB_ENV
shell: bash
- name: build
shell: bash
run: |
cargo build --workspace --all-features --all-targets ${{ env.FLAGS }}
- name: test
shell: bash
run: |
cargo test --workspace --all-features --tests --lib --bins --examples ${{ env.FLAGS }}
- name: doctests
if: ${{ matrix.profile == 'debug' }}
shell: bash
run: |
cargo test --workspace --all-features --doc -- --test-threads 16
check-success:
name: verify all tests pass
runs-on: ubuntu-latest
needs:
- build
- check
- rustfmt
- clippy
- clippy-upload
- audit
steps:
- name: no-op
run: |
echo "All checks passed!"