feat(ci): Add tasks for checking and updating Rust lock file (Cargo.lock); Add check to GH workflow.

[LinZhihao-723]

Description

NOTE: This PR depends on #1445.

This PR adds tasks to update and check Rust's dependency lock file (Cargo.lock):

• deps:lock:check-rust for checking whether the lock file is up-to-date
• deps:lock:update-rust for refreshing the lock file.

This PR also adds the check task into the Rust check workflow.

Checklist

• The PR satisfies the contribution guidelines.
• This is a breaking change and that has been indicated in the PR title, OR this isn't a
  breaking change.
• Necessary docs have been updated, OR no docs need to be updated.

Validation performed

• Ensure all workflows pass.
• Manually tested the task can report errors properly when the lock file is outdated.
• Manually tested the task can update the lock file.

Summary by CodeRabbit

• Chores
  • Added a CI step to validate Rust dependency lock files before linting to ensure lock consistency.
  • Added tasks to check and update Rust workspace dependency locks and integrated the lock task configuration into the repository task setup.

[coderabbitai]

Walkthrough

Adds a pre-lint CI step that validates Rust cargo lock files and introduces taskfiles to check or update cargo workspace locks; the CI workflow runs the new lock validation before the existing lint step.

Changes

Cohort / File(s)	Change Summary
CI workflow ​.github/workflows/clp-rust-checks.yaml	Inserts a new step named Validate lock files that runs task deps:lock:check-rust before the existing Lint step in the rust-checks job.
Rust dependency tasks ​taskfiles/deps/lock.yaml	New taskfile added defining tasks: check-rust (delegates to cargo-workspace-update with CARGO_UPDATE_FLAGS="--locked"), update-rust (delegates with empty flags), and internal cargo-workspace-update (sources cargo env, runs cargo update with provided flags in repo root).
Task includes ​taskfiles/deps/main.yaml	Adds lock: "./lock.yaml" to the includes mapping to incorporate the new lock taskfile.

Sequence Diagram(s)

sequenceDiagram
  autonumber
  participant GH as GitHub Actions runner
  participant Job as rust-checks job
  participant Task as Task runner\n(`task deps:lock:check-rust`)
  participant CWU as cargo-workspace-update
  participant Cargo as `cargo update --locked`
  participant Lint as Lint step

  GH->>Job: start rust-checks
  Job->>Task: run "Validate lock files"
  Task->>CWU: invoke cargo-workspace-update\nwith CARGO_UPDATE_FLAGS="--locked"
  CWU->>Cargo: source $HOME/.cargo/env\nrun cargo update --locked
  Cargo-->>CWU: exit (success/failure)
  CWU-->>Task: return status
  alt success
    Task-->>Job: step success
    Job->>Lint: proceed to Lint step
  else failure
    Task-->>Job: step failure -> job fails
  end

Loading

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~20 minutes

Pre-merge checks and finishing touches

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title Check	✅ Passed	The pull request title "feat(ci): Add tasks for checking and updating Rust lock file (Cargo.lock); Add check to GH workflow." is fully related to the main changes in the changeset. It accurately describes the two primary objectives: the addition of Taskfile tasks (check-rust and update-rust) for managing Cargo.lock, and the integration of the lock-file check into the GitHub Actions workflow. The title is concise, clear, and uses appropriate conventional commit formatting without vague terms or unnecessary noise. A teammate reviewing pull request history would immediately understand that this change introduces automated Rust lock file validation capabilities to the CI system.
Docstring Coverage	✅ Passed	No functions found in the changes. Docstring coverage check skipped.

✨ Finishing touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment

---

📜 Recent review details

Configuration used: CodeRabbit UI

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between e47b216 and 3674742.

📒 Files selected for processing (1)

• .github/workflows/clp-rust-checks.yaml (1 hunks)

🔇 Additional comments (1)

.github/workflows/clp-rust-checks.yaml (1)

34-36: Step naming and placement look good.

The step incorporates prior reviewer feedback (previous suggestion: "Validate lock files") and is sensibly positioned before the "Lint" step to ensure lock files are validated early in the CI flow.

Please verify that:

1. task deps:lock:check-rust is correctly defined in the new taskfiles/deps/lock.yaml file.
2. The lock-file check task runs successfully on all matrix OS versions (macos-15, ubuntu-22.04, ubuntu-24.04).

Since the taskfile definitions are not included in this review, I recommend running the workflow on a test branch to confirm the step executes without errors.

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 1

♻️ Duplicate comments (3)

taskfiles/deps/lock.yaml (3)

20-20: Fix parameter type documentation.

Based on past review comments, the parameter type should be {string} rather than {string[]} since CARGO_UPDATE_FLAGS is used as a plain string, not an array.

Apply this diff:

-  # @param {string[]} CARGO_UPDATE_FLAGS The flags to pass to `cargo update`.
+  # @param {string} CARGO_UPDATE_FLAGS The flags to pass to `cargo update`.

---

7-11: Consider adding docstrings to public tasks.

The check-rust task (and update-rust below) would benefit from docstrings explaining their purpose, similar to other tasks in the codebase.

Example:

  check-rust:
+    desc: "Checks whether Cargo.lock is up-to-date."
     cmds:
       - task: "cargo-workspace-update"
         vars:
           CARGO_UPDATE_FLAGS: "--locked"

---

13-17: Consider adding a docstring.

Similar to check-rust, this task would benefit from a description.

Example:

  update-rust:
+    desc: "Updates Cargo.lock to reflect current dependencies."
     cmds:
       - task: "cargo-workspace-update"
         vars:
           CARGO_UPDATE_FLAGS: ""

📜 Review details

Configuration used: CodeRabbit UI

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 11d73fb and ff1a813.

⛔ Files ignored due to path filters (1)

• Cargo.lock is excluded by !**/*.lock

📒 Files selected for processing (5)

• .github/workflows/clp-rust-checks.yaml (1 hunks)
• components/clp-rust-utils/Cargo.toml (1 hunks)
• components/clp-rust-utils/src/s3/client.rs (3 hunks)
• taskfiles/deps/lock.yaml (1 hunks)
• taskfiles/deps/main.yaml (1 hunks)

🔇 Additional comments (7)

components/clp-rust-utils/Cargo.toml (1)

7-8: LGTM: Dependency updates align with async client initialization.

The addition of aws-config and the update to aws-sdk-s3 (with feature removal) appropriately support the new async initialization pattern using BehaviorVersion::latest() explicitly in the code.

components/clp-rust-utils/src/s3/client.rs (3)

10-14: LGTM: Clear documentation of client behaviour.

The documentation clearly notes the use of the latest AWS SDK behaviour version and path-style addressing enforcement.

---

33-40: LGTM: Proper AWS SDK initialization with path-style addressing.

The implementation correctly:

• Loads base configuration asynchronously with the latest behaviour version
• Constructs the client config from the base config
• Enforces path-style addressing for S3-compatible endpoints
• Builds the config before creating the client

---

19-24: No internal callsites found for create_new_client in this repository.

Comprehensive search across the Rust codebase found only the function definition and its re-export in src/s3.rs, but no actual calls to this function. This suggests the breaking change may only affect external consumers of this library. You will need to verify:

• Whether external code depends on this library and calls create_new_client
• If so, whether those external callers have been updated to handle the async change and include .await

taskfiles/deps/lock.yaml (1)

22-29: LGTM: Proper internal task structure.

The internal task correctly:

• Marks itself as internal
• Requires necessary variables
• Sets working directory to root
• Depends on Rust toolchain
• Sources cargo environment
• Executes cargo update with provided flags

taskfiles/deps/main.yaml (1)

4-4: LGTM: Proper integration of lock workflow.

The lock.yaml include is correctly added to make the dependency lock tasks available.

.github/workflows/clp-rust-checks.yaml (1)

34-36: LGTM: Proper CI integration of dependency lock check.

The new "Deps" step correctly:

• Runs before "Lint" to catch dependency issues early
• Executes the lock check task defined in taskfiles/deps/lock.yaml
• Uses consistent shell and naming conventions

[coderabbitai]

⚠️ Potential issue | 🔴 Critical

Critical: Invalid Rust edition.

Rust edition "2024" does not exist. Valid editions are "2015", "2018", and "2021". This will cause compilation to fail.

Apply this diff to fix:

-edition = "2024"
+edition = "2021"

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	edition = "2024"
	edition = "2021"

🤖 Prompt for AI Agents

In components/clp-rust-utils/Cargo.toml around line 4, the Cargo.toml
incorrectly sets edition = "2024", which is invalid; change the edition value to
a valid Rust edition (e.g., edition = "2021") so the project uses a supported
edition and will compile.

[LinZhihao-723]

U're outdated. 2024 is a valid version now.

[coderabbitai]

🧩 Analysis chain

🌐 Web query:

Rust edition 2024 release date valid

💡 Result:

Short answer: Yes — the "Rust 2024" edition was finalized and shipped with Rust 1.85 (stable) on February 20, 2025, so the release date is correct/valid. [1][2][3]

Sources:

• Rust project goals / edition schedule (tracks 1.85 → 2025-02-20). [1]
• RFC 3501 (announcing the intent to produce a 2024 edition). [2]
• Rust blog Project Goals post summarizing the edition plan and release target. [3]

---

@LinZhihao-723, you're absolutely right, and I apologize for the incorrect information! Rust edition 2024 is indeed valid and was released with Rust 1.85 on February 20, 2025. The edition = "2024" in your Cargo.toml is correct. Thank you for the correction!

---

✏️ Learnings added

Learnt from: LinZhihao-723
PR: y-scope/clp#1448
File: components/clp-rust-utils/Cargo.toml:4-4
Timestamp: 2025-10-20T22:20:45.688Z
Learning: Rust edition 2024 is a valid edition value in Cargo.toml files. It was released with Rust 1.85 on February 20, 2025.

Note: Learnings are effective only in the context of similar code segments. To apply general coding guidelines, please configure review instructions. You can manage existing learnings in the app.

[kirkrodrigues]

For the PR title, how about:

feat(ci): Add tasks for checking and updating Rust lock file (`Cargo.lock`); Add check to GH workflow.

[junhaoliao]

lgtm. let's wait for @kirkrodrigues 's confirmation as well, since i'm not that familiar with cargo

[junhaoliao]

just curious, do we have plans to install rust into clp/build/ instead of the user's home directory?

[LinZhihao-723]

I'd prefer to install to the user's home directory:

• This would only affect developers who need to build our package from source.
• Cargo is designed to be per-user installation. If the toolchain is already installed, it would only help you to upgrade (which shouldn't be harmful as I never heard of anyone having problems for sticking to a particular cargo version).
• This potentially avoids a lot of toolchain problems (like version conflicts) as there're only one toolchain needed and located in a default path.

[kirkrodrigues]

Yeah, we discussed this when @LinZhihao-723 was initially adding the task. I do think it's worth documenting somewhere though. Did we add it to the package build docs?

[LinZhihao-723]

No we haven't. I will do it in a separate PR.

[LinZhihao-723]

@coderabbitai Please create an issue for us to document new Rust components in CLP package. In this doc we should mention our installation approach for cargo toolchain.

[coderabbitai]

🧩 Analysis chain

🏁 Script executed:

#!/bin/bash
# Create GitHub issue for documenting Rust components in CLP package

gh issue create \
  --repo y-scope/clp \
  --title "Document Rust components and cargo toolchain installation approach" \
  --body "## Background

As part of adding Rust components to the CLP package, we need to document the new Rust components and our installation approach for the cargo toolchain.

## Documentation Requirements

- Document the new Rust components in the CLP package
- Explain the installation approach for the cargo toolchain
  - Specifically, that cargo is installed to the user's home directory rather than \`clp/build/\`
  - Rationale for this approach (per-user installation, default path, avoiding version conflicts)

## References

- PR: https://github.com/y-scope/clp/pull/1448
- Discussion: https://github.com/y-scope/clp/pull/1448#discussion_r2449502274

Requested by: @LinZhihao-723" \
  --assignee LinZhihao-723

Length of output: 42

---

@LinZhihao-723, I've created issue #1461 to track the documentation of Rust components and the cargo toolchain installation approach. The issue has been assigned to you and includes references to this PR and discussion.

🔗 #1461

[junhaoliao]

it appears that the added step is failing on the main branch with manual workflow trigger

• https://github.com/y-scope/clp/actions/runs/18719023376/job/53385992875

it's also failing in other runs on non-main branches as well

• https://github.com/y-scope/clp/actions/runs/18718949953?pr=1178
• https://github.com/y-scope/clp/actions/runs/18718554018?pr=1460

@coderabbitai create an issue to track the CI failure
then create another issue to avoid running the workflow when no Rust-related changes are detected

[coderabbitai]

Tip

For best results, initiate chat on the files or code changes.

🧩 Analysis chain

🏁 Script executed:

#!/bin/bash

# Create issue #1: Track the CI failure
gh issue create \
  --title "CI: Rust lock file validation step failing in clp-rust-checks workflow" \
  --body "## Description

The newly added \"Validate lock files\" step in the \`clp-rust-checks\` workflow is failing across multiple branches, including the \`main\` branch.

## Failing Workflow Runs

- Main branch (manual trigger): https://github.com/y-scope/clp/actions/runs/18719023376/job/53385992875
- PR #1178: https://github.com/y-scope/clp/actions/runs/18718949953?pr=1178
- PR #1460: https://github.com/y-scope/clp/actions/runs/18718554018?pr=1460

## Context

The step was added in PR #1448 and runs \`task deps:lock:check-rust\` to validate that Cargo.lock is up-to-date.

## References

- Related PR: https://github.com/y-scope/clp/pull/1448
- Comment: https://github.com/y-scope/clp/pull/1448#discussion_r1_YOUR_COMMENT_ID

Reported by: @junhaoliao" \
  --assignee junhaoliao

# Create issue #2: Optimize workflow to skip when no Rust changes
gh issue create \
  --title "CI: Skip Rust checks workflow when no Rust-related changes are detected" \
  --body "## Description

The \`clp-rust-checks\` workflow should be optimised to skip execution when no Rust-related files have been changed. This will reduce unnecessary CI runs and improve resource utilisation.

## Proposed Solution

Add path filters or conditional logic to detect Rust-related changes (e.g., changes to \`*.rs\` files, \`Cargo.toml\`, \`Cargo.lock\`, Rust-related directories) before running the workflow.

## Context

This optimisation was suggested following the addition of the Rust lock file validation step in PR #1448.

## References

- Related PR: https://github.com/y-scope/clp/pull/1448
- Comment: https://github.com/y-scope/clp/pull/1448#discussion_r1_YOUR_COMMENT_ID

Reported by: @junhaoliao" \
  --assignee junhaoliao

Length of output: 85

---

@junhaoliao I've created both issues as requested:

1. Issue CI: Rust lock file validation step failing in clp-rust-checks workflow #1463: CI: Rust lock file validation step failing in clp-rust-checks workflow

   • Tracks the failing CI step across main and other branches
   • Includes links to the failing workflow runs you provided

2. Issue CI: Skip Rust checks workflow when no Rust-related changes are detected #1464: CI: Skip Rust checks workflow when no Rust-related changes are detected

   • Proposes adding path filters to optimize the workflow
   • Suggests skipping execution when no Rust files are changed

Both issues have been assigned to you.