name: Full CI
on:
push:
branches: [ main ]
pull_request:
branches: [ main ]
env:
CARGO_TERM_COLOR: always
jobs:
quality:
name: Lint & Format
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: dtolnay/rust-toolchain@stable
with:
components: clippy
- name: Install nightly rustfmt
run: rustup toolchain install nightly --profile minimal --component rustfmt
- uses: swatinem/rust-cache@v2
- name: Check Formatting
run: cargo +nightly fmt --all -- --check
- name: Clippy Lints
run: cargo clippy --all-targets --all-features -- -D warnings
test:
name: Test (${{ matrix.os }})
needs: quality
runs-on: ${{ matrix.os }}
strategy:
matrix:
os: [ubuntu-latest, macos-latest, windows-latest] steps:
- uses: actions/checkout@v4
- uses: dtolnay/rust-toolchain@stable
- uses: swatinem/rust-cache@v2
- name: Check Compilation
run: cargo check --all-features
- name: Run Tests
run: cargo test --features std,softcrypto,extended
checks:
name: Checks
needs: test
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
with:
fetch-depth: 0
- name: SemVer Check (PR)
if: github.event_name == 'pull_request'
uses: obi1kenobi/cargo-semver-checks-action@v2
with:
baseline-rev: ${{ github.event.pull_request.base.sha }}
- name: SemVer Check (Push)
if: github.event_name == 'push'
uses: obi1kenobi/cargo-semver-checks-action@v2
with:
baseline-rev: ${{ github.event.before }}
- name: Security Audit
uses: rustsec/audit-check@v1
with:
token: ${{ secrets.GITHUB_TOKEN }}