rainy-sdk 0.6.13

Official Rust SDK for Rainy API by Enosis Labs v0.6.13 - Fix CI docs dead-link false positives for rustdoc dispatcher paths
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136

# GitHub Actions Workflows

This directory contains GitHub Actions workflows for the Rainy SDK project.

## Workflows Overview

### 🔄 CI (`ci.yml`)

**Triggers:** Push/PR to main/develop branches

- **Multi-platform testing:** Ubuntu, Windows, macOS
- **Multi-Rust version testing:** Stable, beta, nightly, MSRV (1.70.0)
- **Quality checks:** Format, clippy, documentation
- **Coverage:** Code coverage reporting with Codecov

### 📦 Release (`release.yml`)

**Triggers:** Git tag push (e.g., `v1.2.3`)

- **Automated publishing:** Publishes to crates.io
- **GitHub release:** Creates release with changelog
- **Build artifacts:** Includes release binaries

### 🔒 Security (`security.yml`)

**Triggers:** Daily at 2 AM UTC, manual trigger, Cargo.toml/lock changes

- **Vulnerability scanning:** Uses `cargo audit`
- **Automated issues:** Creates GitHub issues for vulnerabilities
- **Report generation:** Detailed security reports

### 📏 MSRV (`msrv.yml`)

**Triggers:** Push/PR to main, manual trigger

- **Version compatibility:** Tests against minimum supported Rust version
- **Automated updates:** Can update MSRV badges
- **Compatibility reports:** Detailed MSRV compatibility reports

### 📦 Dependencies (`dependencies.yml`)

**Triggers:** Weekly on Mondays, manual trigger

- **Automated updates:** Updates dependencies to latest compatible versions
- **PR creation:** Creates pull requests for dependency updates
- **Testing:** Runs full test suite on updated dependencies

### ✍️ Sign-off Verification (`verify-signoffs.yml`)

**Triggers:** Pull requests to main/develop

- **DCO compliance:** Verifies Developer Certificate of Origin sign-offs
- **PR comments:** Provides helpful guidance for missing sign-offs
- **Contributing alignment:** Enforces CONTRIBUTING.md requirements

## Required Secrets

For full functionality, configure these repository secrets:

- `CRATES_IO_TOKEN`: Token for publishing to crates.io
- `GITHUB_TOKEN`: Automatically provided by GitHub (requires repository permissions for releases)

### GitHub Token Permissions for Releases

The default `GITHUB_TOKEN` may not have sufficient permissions to create releases. If you encounter a "Resource not accessible by integration" error, you have two options:

#### Option 1: Use a Personal Access Token (PAT)
1. Create a [Personal Access Token](https://github.com/settings/tokens) with `repo` scope
2. Add it as `GH_PAT` secret in your repository
3. Update the release workflow to use `GH_PAT` instead of `GITHUB_TOKEN`

#### Option 2: Configure Repository Permissions (Recommended)
1. Go to repository Settings → Actions → General
2. Under "Workflow permissions", select "Read and write permissions"
3. Ensure "Allow GitHub Actions to create and approve pull requests" is checked

#### Option 3: Job-Level Permissions (Already Configured)
The release workflow now includes proper job-level permissions:
```yaml
permissions:
  contents: write  # Required for creating releases and uploading assets
```

**Current Configuration:** The workflow uses `GITHUB_TOKEN` with job-level `contents: write` permission. This should resolve most permission issues without requiring repository-level changes.

## Manual Triggers

Several workflows support manual triggering via GitHub Actions UI:

- **Security Audit:** Run on-demand vulnerability scanning
- **MSRV Check:** Test against specific Rust versions
- **Dependency Updates:** Force immediate dependency updates

## Workflow Status Badges

Add these badges to your README.md:

```markdown
[![CI](https://github.com/enosislabs/rainy-sdk/actions/workflows/ci.yml/badge.svg)](https://github.com/enosislabs/rainy-sdk/actions/workflows/ci.yml)
[![Security Audit](https://github.com/enosislabs/rainy-sdk/actions/workflows/security.yml/badge.svg)](https://github.com/enosislabs/rainy-sdk/actions/workflows/security.yml)
[![MSRV](https://github.com/enosislabs/rainy-sdk/actions/workflows/msrv.yml/badge.svg)](https://github.com/enosislabs/rainy-sdk/actions/workflows/msrv.yml)
```

## Troubleshooting

### Common Issues

1. **Crates.io Publishing Fails**
   - Check `CRATES_IO_TOKEN` secret is set
   - Verify token has publish permissions

2. **GitHub Release Creation Fails**
   - **403 Permission Error:** The workflow now uses job-level `contents: write` permission (see "GitHub Token Permissions for Releases" above)
   - **Missing Crate File:** The workflow now generates the crate file automatically in the release job
   - **Version Mismatch:** Ensure the tag version matches the Cargo.toml version

3. **Security Audit Issues**
   - Some vulnerabilities may be false positives
   - Check cargo-audit documentation for overrides

4. **MSRV Compatibility**
   - Update MSRV in workflow file if needed
   - Check dependency MSRV requirements

5. **Sign-off Verification**
   - Contributors must use `git commit -s`
   - Or check "Sign off" in GitHub web interface

## Contributing

When modifying workflows:

- Test changes on a branch first
- Update this documentation
- Ensure backward compatibility
- Follow GitHub Actions best practices