Skip to content

fix(release): pinned-toolchain targets + Windows npm spawn (bd-c6l13j79, dry-run iteration 1)#279

Merged
cscheid merged 1 commit into
mainfrom
feature/bd-c6l13j79-release-dryrun-fixes
Jun 12, 2026
Merged

fix(release): pinned-toolchain targets + Windows npm spawn (bd-c6l13j79, dry-run iteration 1)#279
cscheid merged 1 commit into
mainfrom
feature/bd-c6l13j79-release-dryrun-fixes

Conversation

@cscheid

@cscheid cscheid commented Jun 12, 2026

Copy link
Copy Markdown
Member

Two fixes from the v0.1.0 release dry-run (run 27448388974):

  1. linux_amd64 / linux_arm64 / darwin_amd64 failed with E0463: can't find crate for core — the dtolnay toolchain action adds the matrix target to the latest nightly, but cargo resolves the dated nightly pinned in rust-toolchain.toml (bd-at72), which auto-installs with only its own declared targets (that's also why web-payloads passed: wasm32 is in the pin). Fix: explicit rustup target add ${{ matrix.target }} step against the pinned toolchain.
  2. windows_amd64 failed with spawnSync npm ENOENT while stage-keyring.mjs fetched the non-host keyring-win32-arm64-msvc addon — npm is npm.cmd on Windows and execFileSync needs shell: true (Node ≥20.12 rejects .cmd without it). Arguments are fixed package specifiers, so no shell-quoting exposure.

Meanwhile darwin_arm64 passed end-to-end, validating everything downstream: per-target MCP bundle with both darwin keyring addons, bundled-defaults injection (verify gate saw default …: bundled ×3, no placeholders), tar.gz + sha256, minisign signing self-verified against the install.sh pinned key.

Keyring staging tests 10/10; real darwin-x64 npm pack fetch re-verified locally; actionlint clean. After merge: delete and re-push tag v0.1.0 for iteration 2 (remaining known risk: the musl legs haven't compiled aws-lc-sys/vendored-openssl yet).

🤖 Generated with Claude Code

v0.1.0 dry-run iteration 1 (run 27448388974) failures:

- linux_amd64/linux_arm64/darwin_amd64: E0463 'can't find crate for
  core' — the dtolnay toolchain action adds the matrix target to the
  latest nightly, but cargo resolves the dated nightly pinned in
  rust-toolchain.toml (bd-at72), which auto-installs with only its
  declared targets. Add an explicit 'rustup target add' step against
  the pinned toolchain.
- windows_amd64: spawnSync npm ENOENT in stage-keyring's npmPackFetcher
  (npm is npm.cmd on Windows; execFileSync needs shell:true, and Node
  >=20.12 rejects .cmd without it). Arguments are fixed package
  specifiers, so shell quoting is not a concern.

Keyring staging tests still 10/10; real darwin-x64 fetch re-verified
locally; actionlint clean.

Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
@cscheid
cscheid merged commit 8f44bcb into main Jun 12, 2026
5 checks passed
@cscheid
cscheid deleted the feature/bd-c6l13j79-release-dryrun-fixes branch June 12, 2026 23:42
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant