ci: change from circle to github actions #144
Conversation
Signed-off-by: Marko Baricevic <[email protected]>
Co-Authored-By: Tony Arcieri <[email protected]>
|
odd github actions are not firing |
They are now 👍 The error you are seeing is fixed here: #166 |
|
there are some todo's that can be done prioir to the merge or after:
|
|
why cargo-audit is not firing: |
Can we do sth to fix this here? Not sure I understand this correctly. Because the path comment sounds like an optimization only (and not like an explanation why audit isn't triggered). But maybe I'm missing sth here. |
|
Here's my recommendation for how to run https://github.com/iqlusioninc/tmkms/blob/develop/.github/workflows/security_audit.yml It's set to run on either a change to That recipe also caches the installed |
There was a problem hiding this comment.
Taking back the approval as @greg-szabo wants to have a look before we merge this.
|
@greg-szabo will look to merge this towards the end of the week, would be great to have your feedback before then 🙏 |
* Run cargo-audit daily and when dependencies have changed See informalsystems/tendermint-rs#144 (comment) * Change actions/checkout back to v2
| llvm: true | ||
| output-type: lcov | ||
| output-file: ./lcov.info | ||
| prefix-dir: /home/user/build/ |
There was a problem hiding this comment.
Is that a default path from github actions?
| @@ -0,0 +1,13 @@ | |||
| branch: true | |||
There was a problem hiding this comment.
As a general note on code coverage, it would be good to make sure we didn't substantially alter the config and will report very different cov numbers after merging. I doesn't seem so but I didn't look into the type-script code for this action.
There was a problem hiding this comment.
Just noticed this (too late!)
I'd love to give another shout out to Tarpaulin. It's pretty much the go-to coverage tool for the Rust community, IMO:
https://github.com/actions-rs/tarpaulin
I've personally experienced a lot of false negatives trying grcov in the past. I don't know if they've gotten any better, but if you see things you think should be covered under grcov which it reports aren't... maybe check out tarpaulin.
Here's one of my example configs, FWIW:
https://github.com/RustCrypto/AEADs/blob/master/.github/workflows/workspace.yml#L41
|
No objections from my side. I think this could be merged as is. Would be good if #144 (comment) were addressed sooner than later, too. |
|
This looks like a nice start for using GitHub Actions. It achieves the goal of moving away from CircleCI and implements the basic set of tests that we had in CircleCI with less scripting and more modular methods. Let's merge this as soon as possible, so I can put additional work on top of it. |
…ems#22) * Run cargo-audit daily and when dependencies have changed See informalsystems/tendermint-rs#144 (comment) * Change actions/checkout back to v2
* Run cargo-audit daily and when dependencies have changed See informalsystems/tendermint-rs#144 (comment) * Change actions/checkout back to v2
added github actions in place of circleci
A repo admin will need to provide codecov with the token via the repo settings