Skip to content

ci: run cargo deny advisories on PRs#309

Merged
EffortlessSteven merged 1 commit into
mainfrom
chore/ci-pr-advisory-check
Mar 27, 2026
Merged

ci: run cargo deny advisories on PRs#309
EffortlessSteven merged 1 commit into
mainfrom
chore/ci-pr-advisory-check

Conversation

@EffortlessSteven

Copy link
Copy Markdown
Member

Run cargo deny check advisories in the PR workflow so docs-only or dependency-only PRs don't bypass advisory checks while main still enforces full cargo xtask ci.

@gemini-code-assist

Copy link
Copy Markdown

Warning

You have reached your daily quota limit. Please wait up to 24 hours and I will start processing your requests again!

@coderabbitai

coderabbitai Bot commented Mar 27, 2026

Copy link
Copy Markdown

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info
⚙️ Run configuration

Configuration used: Organization UI

Review profile: ASSERTIVE

Plan: Pro

Run ID: 40da06d6-5d07-4a7e-a541-73a7fd375806

📥 Commits

Reviewing files that changed from the base of the PR and between f326c43 and bcc3c0f.

📒 Files selected for processing (1)
  • .github/workflows/ci.yml

Summary by CodeRabbit

  • Chores
    • Added an additional security advisory verification step to the pull request CI pipeline.

Walkthrough

A new CI verification step was added to the pr job in the GitHub Actions workflow that executes cargo deny check advisories to validate project dependencies for security advisories before proceeding with other PR checks.

Changes

Cohort / File(s) Summary
CI Workflow Configuration
.github/workflows/ci.yml
Added cargo deny check advisories step to the pr job, positioned after fetching the PR base branch and before executing cargo xtask pr.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~3 minutes

Poem

🐰 A step we've added, sniff and scan,
Deny the bad with cargo's plan,
Advisory checks now guard the way,
Before the tests can run and play! 🔍✨

🚥 Pre-merge checks | ✅ 3
✅ Passed checks (3 passed)
Check name Status Explanation
Title check ✅ Passed The title 'ci: run cargo deny advisories on PRs' directly and clearly describes the main change: adding cargo deny advisory checks to the PR CI workflow.
Description check ✅ Passed The description explains the purpose of the change: ensuring docs-only or dependency-only PRs don't bypass advisory checks while maintaining full CI on main.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

✏️ Tip: You can configure your own custom pre-merge checks in the settings.

✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch chore/ci-pr-advisory-check

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

@EffortlessSteven EffortlessSteven merged commit ca885d0 into main Mar 27, 2026
4 checks passed
@EffortlessSteven EffortlessSteven deleted the chore/ci-pr-advisory-check branch March 27, 2026 04:55
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant