Skip to content

chore: update cargo audit #1748

chore: update cargo audit

chore: update cargo audit #1748

Workflow file for this run

on:
push:
branches:
- main
pull_request:
branches:
- main
name: book
env:
CDN: https://dnglbrstg7yg.cloudfront.net
# By default depandabot only receives read permissions. Explicitly give it write
# permissions which is needed by the ouzi-dev/commit-status-updater task.
#
# Updating status is relatively safe (doesnt modify source code) and caution
# should we taken before adding more permissions.
permissions:
contents: write
statuses: write
id-token: write # This is required for requesting the JWT/OIDC
jobs:
build-deploy:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v4
- uses: dtolnay/rust-toolchain@stable
- name: Set override
run: rustup override set stable
- uses: camshaft/install@v1
with:
crate: mdbook
- name: Build book
run: ./scripts/book
- name: Deploy
uses: JamesIves/github-pages-deploy-action@v4.6.3
if: github.event_name == 'push'
with:
folder: target/book
- uses: aws-actions/configure-aws-credentials@v4.0.2
if: github.event_name == 'push' || github.repository == github.event.pull_request.head.repo.full_name
with:
role-to-assume: arn:aws:iam::024603541914:role/GitHubOIDCRole
role-session-name: S2nQuicGHAS3Session
aws-region: us-west-2
- name: Upload to S3
if: github.event_name == 'push' || github.repository == github.event.pull_request.head.repo.full_name
id: s3
run: |
TARGET="${{ github.sha }}/book"
aws s3 sync target/book "s3://s2n-quic-ci-artifacts/$TARGET" --acl private --follow-symlinks
URL="$CDN/$TARGET/index.html"
echo "URL=$URL" >> $GITHUB_OUTPUT
- uses: ouzi-dev/commit-status-updater@v2.0.2
if: github.event_name == 'push' || github.repository == github.event.pull_request.head.repo.full_name
with:
name: "book / url"
status: "success"
url: "${{ steps.s3.outputs.URL }}"