🏡 index : ~doyle/gitlab-cargo-shim.git

author Jordan Doyle <jordan@doyle.la> 2022-03-13 23:36:05.0 +00:00:00
committer Jordan Doyle <jordan@doyle.la> 2022-03-13 23:37:11.0 +00:00:00
commit 
02871e3d4aa855aa09376f9bb27a411c35cc5331 [patch]
tree 
6c8234aee68ac73a9bdec5364152752bac5a336d
parent 
9f2975910ca904163831555aecd1c9189c17d3e8
download 
02871e3d4aa855aa09376f9bb27a411c35cc5331.tar.gz

Add CI steps, continuous audits & dependabot




Diff


 .github/dependabot.yml           | 12 ++++++++-
 .github/workflows/audit.yml      | 16 +++++++++++-
 .github/workflows/audit_cron.yml | 14 +++++++++-
 .github/workflows/ci.yml         | 62 +++++++++++++++++++++++++++++++++++++++++-
 4 files changed, 104 insertions(+)

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
new file mode 100644
index 0000000..0dad033
--- /dev/null
+++ b/.github/dependabot.yml
@@ -0,0 +1,12 @@
# To get started with Dependabot version updates, you'll need to specify which
# package ecosystems to update and where the package manifests are located.
# Please see the documentation for all configuration options:
# https://help.github.com/github/administering-a-repository/configuration-options-for-dependency-updates

version: 2

updates:
  - package-ecosystem: "cargo"
    directory: "/"
    schedule:
      interval: "monthly"
diff --git a/.github/workflows/audit.yml b/.github/workflows/audit.yml
new file mode 100644
index 0000000..f7302be
--- /dev/null
+++ b/.github/workflows/audit.yml
@@ -0,0 +1,16 @@
name: Security audit

on:
  push:
    paths:
      - '**/Cargo.toml'
      - '**/Cargo.lock'

jobs:
  security_audit:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v1
      - uses: actions-rs/audit-check@v1
        with:
          token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/audit_cron.yml b/.github/workflows/audit_cron.yml
new file mode 100644
index 0000000..56de683
--- /dev/null
+++ b/.github/workflows/audit_cron.yml
@@ -0,0 +1,14 @@
name: Security audit (cron)

on:
  schedule:
    - cron: '0 0 * * *'

jobs:
  audit:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v2
      - uses: actions-rs/audit-check@v1
        with:
          token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
new file mode 100644
index 0000000..ead4831
--- /dev/null
+++ b/.github/workflows/ci.yml
@@ -0,0 +1,62 @@
on: [push, pull_request]

name: CI

jobs:
  check:
    name: Check
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v2
      - uses: actions-rs/toolchain@v1
        with:
          profile: minimal
          toolchain: stable
          override: true
      - uses: actions-rs/cargo@v1
        with:
          command: check

  test:
    name: Test Suite
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v2
      - uses: actions-rs/toolchain@v1
        with:
          profile: minimal
          toolchain: stable
          override: true
      - uses: actions-rs/cargo@v1
        with:
          command: test

  fmt:
    name: Rustfmt
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v2
      - uses: actions-rs/toolchain@v1
        with:
          profile: minimal
          toolchain: stable
          override: true
      - run: rustup component add rustfmt
      - uses: actions-rs/cargo@v1
        with:
          command: fmt

  clippy:
    name: Clippy
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v2
      - uses: actions-rs/toolchain@v1
        with:
          profile: minimal
          toolchain: stable
          override: true
      - run: rustup component add clippy
      - uses: actions-rs/cargo@v1
        with:
          command: clippy