Skip to content

[cargo] Update shlex dependency because of CVE #30

[cargo] Update shlex dependency because of CVE

[cargo] Update shlex dependency because of CVE #30

Workflow file for this run

name: Rust Release
on:
push:
branches: [main]
defaults:
run:
shell: bash
working-directory: pickup-rust
jobs:
build:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: install libraries
run: sudo apt-get install libasound2-dev
- uses: actions/cache@v3
with:
path: |
~/.cargo/bin/
~/.cargo/registry/index/
~/.cargo/registry/cache/
~/.cargo/git/db/
pickup-rust/target/
key: ${{ runner.os }}-cargo-build-${{ hashFiles('**/Cargo.lock') }}
- name: Update rust toolchain
run: |
rustup update
rustup component add clippy
- name: 'Build release binary'
run: cargo build --release
- name: 'Upload Artifact'
uses: actions/upload-artifact@v4
with:
name: pickup (Rust, Linux, AMD64)
path: pickup-rust/target/release/pickup
# TODO cross-compiling https://github.com/marketplace/actions/rust-cargo#cross-compilation
# Might not be possible if we have platform-specific dependencies