fix: add clippy-sarif sarif-fmt cargo-audit cargo-audit-sarif #18
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Rust Tests & Linting | |
| on: | |
| push: | |
| jobs: | |
| build_and_test: | |
| runs-on: ubuntu-latest | |
| permissions: | |
| contents: read | |
| security-events: write | |
| steps: | |
| - name: Checkout code | |
| uses: actions/checkout@v4 | |
| - name: Install Rust | |
| uses: actions-rs/toolchain@v1 | |
| with: | |
| profile: minimal | |
| toolchain: stable | |
| components: clippy | |
| override: true | |
| - name: Install required cargo | |
| run: cargo install clippy-sarif sarif-fmt cargo-audit cargo-audit-sarif | |
| - name: Build | |
| run: cargo test --no-run --workspace --all-features | |
| - name: Default features | |
| run: cargo test --workspace | |
| - name: All features | |
| run: cargo test --workspace --all-features | |
| - name: No-default features | |
| run: cargo test --workspace --no-default-features | |
| - name: Run Clippy | |
| run: | | |
| cargo clippy --all-features --message-format=json | clippy-sarif | tee results_clippy.sarif | sarif-fmt | |
| continue-on-error: true | |
| - name: Upload clippy results to GitHub | |
| uses: github/codeql-action/upload-sarif@v3 | |
| with: | |
| sarif_file: results_clippy.sarif | |
| wait-for-processing: true | |
| - name: Run Cargo audit | |
| run: | | |
| cargo audit --json | cargo-audit-sarif | tee results_cargo-audit.sarif | |
| - name: Upload Cargo audit results to GitHub | |
| uses: github/codeql-action/upload-sarif@v3 | |
| with: | |
| sarif_file: results_cargo-audit.sarif | |
| wait-for-processing: true |