Skip to content
Audit

Upgrade npm deps to latest, Rust to 1.84.0, emsdk to 3.1.68, artichoke to latest, and cargo deps to latest #2633

Sign in to view logs

Upgrade npm deps to latest, Rust to 1.84.0, emsdk to 3.1.68, artichoke to latest, and cargo deps to latest

Upgrade npm deps to latest, Rust to 1.84.0, emsdk to 3.1.68, artichoke to latest, and cargo deps to latest #2633

Workflow file for this run

.github/workflows/audit.yaml at 7b6758c
---
name: Audit
"on":
push:
branches:
- trunk
pull_request:
branches:
- trunk
schedule:
- cron: "0 0 * * TUE"
jobs:
js:
name: Audit JS Dependencies
runs-on: ubuntu-latest
steps:
- name: Checkout repository
uses: actions/checkout@v4.2.2
- name: Install Nodejs toolchain
run: npm ci
- name: npm audit
run: npm audit
ruby:
name: Audit Ruby Dependencies
runs-on: ubuntu-latest
steps:
- name: Checkout repository
uses: actions/checkout@v4.2.2
- name: Install Ruby toolchain
uses: ruby/setup-ruby@4a9ddd6f338a97768b8006bf671dfbad383215f4 # v1.207.0
with:
ruby-version: ".ruby-version"
bundler-cache: true
- name: bundler-audit
run: bundle exec bundle-audit check --update
rust:
name: Audit Rust Dependencies
runs-on: ubuntu-latest
strategy:
matrix:
checks:
- advisories
- bans licenses sources
# Prevent sudden announcement of a new advisory from failing ci:
continue-on-error: ${{ matrix.checks == 'advisories' }}
steps:
- name: Checkout repository
uses: actions/checkout@v4.2.2
- name: Install Rust toolchain
uses: artichoke/setup-rust/audit@v1.12.1
- name: Generate Cargo.lock
run: |
if [[ ! -f "Cargo.lock" ]]; then
cargo generate-lockfile --verbose
fi
- uses: EmbarkStudios/cargo-deny-action@e2f4ede4a4e60ea15ff31bc0647485d80c66cfba # v2.0.4
with:
arguments: --locked --all-features
command: check ${{ matrix.checks }}
command-arguments: --show-stats