Wasmtime GitHub notifications bot (Oct 18 2021 at 19:57): Wasmtime GitHub notifications bot (Oct 18 2021 at 19:57):alexcrichton opened PR #3461 from update-audits to main:
Before this commit we actually have two builders checking for security
advisories on CI, one iscargo auditand one iscargo deny. The
cargo denybuilder is slightly different in that it checks a few other
things about our dependency tree such as licenses, duplicates, etc. This
commit removes the advisory check fromcargo denyon CI and then moves
thecargo auditcheck to a separate workflow.The
cargo auditcheck will now run nightly and will open an issue on
the Wasmtime repository when an advisory is found. This should help make
it such that our CI is never broken by the publication of an advisory
but we're still promptly notified whenever an advisory is made. I've
updated the release process notes to indicate that the open issues
should be double-checked to ensure that there are no open advisories
that we need to take care of.<!--
Please ensure that the following steps are all taken care of before submitting
the PR.
[ ] This has been discussed in issue #..., or if not, please tell us why
here.[ ] A short description of what this does, why it is needed; if the
description becomes long, the matter should probably be discussed in an issue
first.[ ] This PR contains test cases, if meaningful.
- [ ] A reviewer from the core maintainer team has been assigned for this PR.
If you don't know who could review this, please indicate so. The list of
suggested reviewers on the right can help you.Please ensure all communication adheres to the code of conduct.
-->
Wasmtime GitHub notifications bot (Oct 18 2021 at 19:59):peterhuene submitted PR review.
Wasmtime GitHub notifications bot (Oct 19 2021 at 15:12):alexcrichton merged PR #3461.
Last updated: Nov 22 2024 at 16:03 UTC