[devrunner] Add dr alias, fix lib crate, patch security vulns, auto-configure AI agents#10
Conversation
…pdate - Remove hickory-resolver 0.25 (RUSTSEC-2026-0118 unfixable, 0119 needs 0.26.1+) - Simplify http.rs to use plain reqwest::Client::builder() — Termux workaround was unnecessary complexity - cargo update fixes: quinn-proto 0.11.14, rustls-webpki 0.103.13, rustls 0.23.40 (RUSTSEC-2026-0037, 0099 resolved) Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
|
The latest updates on your projects. Learn more about Vercel for GitHub.
|
There was a problem hiding this comment.
Pull request overview
This PR aims to add a dr short-alias binary, fix the library crate name after the project rename, patch security advisories (RUSTSEC) by removing hickory-resolver 0.25 and refreshing the lockfile, and brand the install scripts. Only the install-script banner edits, the hickory-resolver removal in Cargo.toml, the deletion of the custom DNS resolver in src/http.rs, and a sweeping Cargo.lock regeneration are visible in the supplied diff hunks; the [lib] name = "run_cli", [[bin]] dr, install-script symlink/copy, and AI-agent config changes mentioned in the description live outside the diff hunks but exist in the working tree.
Changes:
- Strip the
HickoryDnsResolverTermux-DNS workaround and itshickory-resolverdep, reducinghttp::create_client_builder()to a trivial wrapper. - Refresh
Cargo.lockwith many minor/patch bumps plus larger jumps (anstream/anstyle-parse→ 1.0,clap_lex→ 1.1, newzmijdep underserde_json), addressingquinn-proto,rustls,rustls-webpkiadvisories. - Replace the plain ASCII title in
install.shandinstall.ps1with a colored block-letter "DEVRUNNER" banner.
Reviewed changes
Copilot reviewed 4 out of 5 changed files in this pull request and generated 2 comments.
Show a summary per file
| File | Description |
|---|---|
src/http.rs |
Removes HickoryDnsResolver and its tests; reduces create_client_builder to bare reqwest::Client::builder(); license header removed. |
Cargo.toml |
Drops the hickory-resolver = "0.25" dependency. |
Cargo.lock |
Large dependency refresh; notably swaps serde_json's transitive ryu for an unfamiliar zmij crate and removes hickory/moka/ipconfig/winreg trees. |
install.sh |
Adds colored ASCII-art banner and refreshes the success message styling. |
install.ps1 |
Adds equivalent colored ASCII-art banner for the PowerShell installer. |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
| /// | ||
| /// This ensures compatibility with environments like Termux where | ||
| /// system DNS resolution may be unreliable. | ||
| /// Create a reqwest ClientBuilder. |
| /// | ||
| /// This ensures compatibility with environments like Termux where | ||
| /// system DNS resolution may be unreliable. | ||
| /// Create a reqwest ClientBuilder. |
Summary
drshort alias: Bothdevrunneranddrare now real compiled binaries.dr --helpshows "dr",dr completions bashgenerates correct completions for thedrname. Binary name is detected at runtime from argv[0].[lib] name = "run_cli"to Cargo.toml — the project rename fromrun-cli→devrunner-clileft the library crate name wrong, breaking all local builds. CI was likely relying on cache.hickory-resolver 0.25(RUSTSEC-2026-0118 unfixable, 0119 needs 0.26+).cargo updatefixesquinn-proto,rustls-webpki,rustls. Audit now clean (exit 0).install.shcreatesdrsymlink;install.ps1copiesdr.exe. Both auto-configure Claude Code (~/.claude/CLAUDE.md), OpenCode, and Codex on install.devrunner:→run:keys in ci.yml (GitHub Actions syntax bug). Addeddrcompletions generation in release step.Test plan
cargo buildproduces bothdevrunneranddrbinaries./target/debug/dr --helpshows "dr" in usage line./target/debug/dr completions bashoutputs bash completions with "dr" as the command namecargo auditexits 0make precommitpasses (fmt, clippy, tests, audit)🤖 Generated with Claude Code