Skip to content

Update GitHub Actions #101

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
oschwald merged 4 commits into from
Nov 28, 2025
Merged

Update GitHub Actions #101

oschwald merged 4 commits into from
Nov 28, 2025

Conversation

@oschwald
Copy link
Owner

@oschwald oschwald commented Nov 28, 2025
edited
Loading

No description provided.

@oschwald @claude
Add security scanning and modernize GitHub Actions
da0ecf6 
- Add CodeQL workflow for Rust security vulnerability scanning
- Add cargo-audit workflow for dependency CVE checking
- Replace deprecated actions-rs/toolchain with dtolnay/rust-toolchain
- Replace actions-rs/cargo with direct cargo commands

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
@oschwald oschwald force-pushed the greg/gh-actions-updates branch from b5faf2e to da0ecf6 Compare November 28, 2025 18:30
@github-advanced-security
Copy link

github-advanced-security bot commented Nov 28, 2025

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

oschwald and others added 3 commits November 28, 2025 10:31
@oschwald @claude
Add Trusted Publishing workflow for crates.io
5867bc7 
Uses OIDC token exchange via rust-lang/crates-io-auth-action to
publish to crates.io without long-lived API tokens. Triggers on
version tags (v*) and requires the "release" environment.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
@oschwald @claude
Add release script and trigger publish on GitHub releases
8e9cbae 
- Add dev-bin/release.sh to automate the release process:
  - Validates branch and sync with origin/main
  - Parses version/date from CHANGELOG.md
  - Updates Cargo.toml version
  - Runs tests, commits, and creates GitHub release via gh CLI
- Change publish workflow trigger from tag push to release published
  event to work with Trusted Publishing

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
@oschwald @claude
Fix cargo audit workflow
c7052ea 
- Switch from rustsec/audit-check@v2 to actions-rust-lang/audit@v1
  to fix "Unexpected end of JSON input" error
- Add explicit permissions block

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
@oschwald oschwald merged commit df13038 into main Nov 28, 2025
41 checks passed
@oschwald oschwald deleted the greg/gh-actions-updates branch November 28, 2025 18:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@oschwald