Skip to content

Commit 1615f47

Browse files
authored
fix(vulnerabilities): update rust dependencies (#955)
## Overview Updates Rust dependencies ## Testing GH action
1 parent fdcb0ee commit 1615f47

4 files changed

Lines changed: 553 additions & 624 deletions

File tree

.github/workflows/rs_ci.yml

Lines changed: 12 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -167,3 +167,15 @@ jobs:
167167
- run: cargo install dd-rust-license-tool --locked
168168
- run: dd-rust-license-tool check
169169
working-directory: bottlecap
170+
171+
cargo-audit:
172+
name: Audit
173+
runs-on: ubuntu-22.04
174+
steps:
175+
- name: Checkout repository
176+
uses: actions/checkout@v6.0.0
177+
- name: Scan Rust dependencies with cargo-audit
178+
uses: rustsec/audit-check@69366f33c96575abad1ee0dba8212993eecbe998 # v2.0.0
179+
with:
180+
token: ${{ secrets.GITHUB_TOKEN }}
181+
working-directory: bottlecap

.github/workflows/vulnerability-scan.yml

Lines changed: 2 additions & 15 deletions
Original file line numberDiff line numberDiff line change
@@ -54,21 +54,8 @@ jobs:
5454
severity-cutoff: low
5555
output-format: table
5656

57-
rust-dependency-scan:
58-
name: Rust Dependencies Scan
59-
runs-on: ubuntu-22.04
60-
steps:
61-
- name: Checkout repository
62-
uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
63-
64-
- name: Scan Rust dependencies with cargo-audit
65-
uses: rustsec/audit-check@69366f33c96575abad1ee0dba8212993eecbe998 # v2.0.0
66-
with:
67-
token: ${{ secrets.GITHUB_TOKEN }}
68-
working-directory: bottlecap
69-
7057
retry:
71-
needs: [trivy-scans, grype-scans, rust-dependency-scan]
58+
needs: [trivy-scans, grype-scans]
7259
if: failure() && fromJSON(github.run_attempt) < 2
7360
runs-on: ubuntu-22.04
7461
permissions:
@@ -81,7 +68,7 @@ jobs:
8168
run: gh workflow run retry-workflow.yml -F run_id=${{ github.run_id }}
8269

8370
notify:
84-
needs: [trivy-scans, grype-scans, rust-dependency-scan]
71+
needs: [trivy-scans, grype-scans]
8572
if: failure() && fromJSON(github.run_attempt) >= 2
8673
runs-on: ubuntu-22.04
8774
steps:

0 commit comments

Comments
 (0)