Make caching GitHub actions use separate caches (#35)

A follow-up to #34
Once cache is formed, it's not updated anymore (see
actions/toolkit#505). As such, it doesn't make
sense having the cache shared between unrelated actions.
Made each action using a cache key tied to its tool.

Author: frozenspider

.github/workflows/coverage-pr.yml

@@ -97,8 +97,8 @@ jobs:
             ~/.cargo/registry/cache/
             ~/.cargo/git/db/
             target/
-          key: ${{ runner.os }}-cargo-${{ hashFiles('**/Cargo.lock') }}
-          restore-keys: ${{ runner.os }}-cargo-
+          key: ${{ runner.os }}-cargo-llvm-cov-${{ hashFiles('**/Cargo.lock') }}
+          restore-keys: ${{ runner.os }}-cargo-llvm-cov
 
       - name: Install cargo-llvm-cov (fallback path)
         if: ${{ steps.base_art.outputs.found == 'false' }}

.github/workflows/coverage.yml

@@ -28,8 +28,8 @@ jobs:
             ~/.cargo/registry/cache/
             ~/.cargo/git/db/
             target/
-          key: ${{ runner.os }}-cargo-${{ hashFiles('**/Cargo.lock') }}
-          restore-keys: ${{ runner.os }}-cargo-
+          key: ${{ runner.os }}-cargo-llvm-cov-${{ hashFiles('**/Cargo.lock') }}
+          restore-keys: ${{ runner.os }}-cargo-llvm-cov
 
       - run:  which cargo-llvm-cov || cargo install cargo-llvm-cov
       - run: rustup component add llvm-tools-preview

.github/workflows/dependency-audit.yml

@@ -32,8 +32,8 @@ jobs:
             ~/.cargo/registry/cache/
             ~/.cargo/git/db/
             target/
-          key: ${{ runner.os }}-cargo-${{ hashFiles('**/Cargo.lock') }}
-          restore-keys: ${{ runner.os }}-cargo-
+          key: ${{ runner.os }}-cargo-deny-${{ hashFiles('**/Cargo.lock') }}
+          restore-keys: ${{ runner.os }}-cargo-deny
 
       - name: Run audit-check action
         run: |

.github/workflows/semver-checks.yml

@@ -0,0 +1,82 @@
+name: Semver checks
+
+on:
+  pull_request:
+    branches: [ "main" ]
+    paths: ['**/Cargo.toml']  # Only run when Cargo.toml changes
+  push:
+    tags: ['v*']  # Run on version tags
+
+# Limit permissions to minimum required
+permissions:
+  contents: read
+
+env:
+  CARGO_TERM_COLOR: always
+  CARGO_INCREMENTAL: 0
+
+jobs:
+  semver:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+    steps:
+    - uses: actions/checkout@v4
+      with:
+        # cargo-semver-checks needs the full git history to compare versions
+        fetch-depth: 0
+    
+    - name: Cache cargo registry
+      uses: actions/cache@v4
+      with:
+        path: |
+          ~/.cargo/registry/index/
+          ~/.cargo/registry/cache/
+          ~/.cargo/git/db/
+        key: ${{ runner.os }}-cargo-semver-checks-${{ hashFiles('**/Cargo.lock') }}
+        restore-keys: |
+          ${{ runner.os }}-cargo-semver-checks
+    
+    - name: Get latest version tag
+      id: get-baseline
+      run: |
+        # Find the latest version tag (v0.1.0 or higher)
+        latest_tag=$(git describe --tags --abbrev=0 --match='v*' 2>/dev/null || echo "")
+        if [ -z "$latest_tag" ]; then
+          echo "No version tags found - skipping semver check"
+          echo "This is normal for new projects or templates"
+          echo "skip=true" >> $GITHUB_OUTPUT
+        else
+          # Extract version without 'v' prefix for comparison
+          version=${latest_tag#v}
+          
+          # Check if version is >= 0.1.0 (using semver comparison)
+          if printf '%s\n%s\n' "0.1.0" "$version" | sort -V | head -n1 | grep -q "^0\.1\.0$"; then
+            echo "Found suitable baseline tag: $latest_tag (>= v0.1.0)"
+            echo "baseline_rev=$latest_tag" >> $GITHUB_OUTPUT
+            echo "skip=false" >> $GITHUB_OUTPUT
+          else
+            echo "Found tag $latest_tag but it's < v0.1.0 - skipping semver check"
+            echo "Semver checking typically starts from v0.1.0 when APIs stabilize"
+            echo "skip=true" >> $GITHUB_OUTPUT
+          fi
+        fi
+    
+    - name: Check semver compatibility
+      if: steps.get-baseline.outputs.skip == 'false'
+      uses: obi1kenobi/cargo-semver-checks-action@v2
+      with:
+        baseline-rev: ${{ steps.get-baseline.outputs.baseline_rev }}
+        verbose: true
+    
+    - name: Semver check skipped
+      if: steps.get-baseline.outputs.skip == 'true'
+      run: |
+        echo "✅ Semver check skipped - no suitable version tags found"
+        echo "To enable semver checking:"
+        echo "1. Tag your first stable release: git tag v0.1.0"
+        echo "2. Push the tag: git push origin v0.1.0"
+        echo "3. Future changes will be checked against tagged versions"
+        echo ""
+        echo "Note: Semver checking starts from v0.1.0 as this indicates"
+        echo "the beginning of API stability commitments in Rust projects"