Skip to content

Commit

Permalink
add cargo deny check to CI
Browse files Browse the repository at this point in the history
  • Loading branch information
TheButlah committed Oct 10, 2024
1 parent 5c161c9 commit 79c54d6
Show file tree
Hide file tree
Showing 6 changed files with 88 additions and 1 deletion.
26 changes: 26 additions & 0 deletions .github/workflows/rust-ci.yaml
Original file line number Diff line number Diff line change
@@ -0,0 +1,26 @@
name: Rust CI
on:
pull_request:
workflow_dispatch:
push:
branches:
- main
- prod
tags:
- '**'

jobs:
cargo-deny:
name: Licensing and Advisories
runs-on: ubuntu-24.04
steps:
- uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # [email protected]
- uses: EmbarkStudios/cargo-deny-action@8371184bd11e21dcf8ac82ebf8c9c9f74ebf7268 # [email protected]

fmt:
name: Formatting
runs-on: ubuntu-24.04
steps:
- uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # [email protected]
- name: Run cargo format
run: cargo fmt --all --check
4 changes: 3 additions & 1 deletion Cargo.toml
Original file line number Diff line number Diff line change
@@ -1,7 +1,9 @@
[package]
name = "hyrax"
version = "0.1.0"
version = "0.0.0"
repository = "https://github.com/worldcoin/remainder-hyrax-tfh"
edition = "2021"
publish = false

[dependencies]
itertools = "0.11.0"
Expand Down
1 change: 1 addition & 0 deletions LICENSE
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
TODO: Add a FOSS license
52 changes: 52 additions & 0 deletions deny.toml
Original file line number Diff line number Diff line change
@@ -0,0 +1,52 @@
[graph]
# Cargo deny will check dependencies via `--all-features`
all-features = true

[advisories]
version = 2
ignore = [
]

[sources]
unknown-registry = "deny"

[licenses]
version = 2
# We want really high confidence when inferring licenses from text
confidence-threshold = 1.0

# List of explicitly allowed licenses
# See https://spdx.org/licenses/ for list of possible licenses
allow = [
"0BSD",
"Apache-2.0 WITH LLVM-exception",
"Apache-2.0",
"BSD-2-Clause",
"BSD-2-Clause-Patent",
"BSD-3-Clause",
"BSL-1.0",
"CC0-1.0",
"ISC",
"LicenseRef-ring",
"LicenseRef-wc-proprietary",
"MIT",
"MPL-2.0", # Although this is copyleft, it is scoped to modifying the original files
"Unicode-DFS-2016",
"Unlicense",
"Zlib",
]

# See https://github.com/briansmith/ring/blob/95948b3977013aed16db92ae32e6b8384496a740/deny.toml#L12
[[licenses.clarify]]
name = "ring"
expression = "LicenseRef-ring"
license-files = [
{ path = "LICENSE", hash = 0xbd0eed23 },
]

[[licenses.clarify]]
name = "hyrax"
expression = "LicenseRef-wc-proprietary"
license-files = [
{ path = "LICENSE", hash = 0xeafa4d94 }
]
5 changes: 5 additions & 0 deletions rust-toolchain.toml
Original file line number Diff line number Diff line change
@@ -0,0 +1,5 @@
[toolchain]
channel = "1.81.0" # See Cargo.toml
targets = ["aarch64-unknown-linux-gnu", "x86_64-unknown-linux-gnu"]
profile = "minimal"
components = ["clippy", "llvm-tools-preview", "rustfmt", "rust-src", "rust-analyzer"]
1 change: 1 addition & 0 deletions rustfmt.toml
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
# Use default cargo settings

0 comments on commit 79c54d6

Please sign in to comment.