Merge pull request #472 from rinafcode/dependabot/github_actions/acti… #553
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: CI | |
| on: | |
| push: | |
| branches: [main] | |
| pull_request: | |
| jobs: | |
| quality: | |
| name: Code Quality & Format Checks | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v6 | |
| - name: Install Rust toolchain | |
| uses: dtolnay/rust-toolchain@stable | |
| with: | |
| components: rustfmt, clippy | |
| targets: wasm32-unknown-unknown | |
| - name: Cache cargo | |
| uses: Swatinem/rust-cache@v2 | |
| - name: Check code formatting | |
| run: cargo fmt --all -- --check | |
| - name: Run clippy linter | |
| run: cargo clippy --workspace --all-features -- -D warnings | |
| build-and-test: | |
| name: Build & Test | |
| needs: quality | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v6 | |
| - name: Install Rust toolchain | |
| uses: dtolnay/rust-toolchain@stable | |
| with: | |
| components: rustfmt, clippy | |
| targets: wasm32-unknown-unknown | |
| - name: Cache cargo | |
| uses: Swatinem/rust-cache@v2 | |
| - name: Build WASM (release) | |
| run: cargo build --target wasm32-unknown-unknown --release | |
| - name: Run unit tests | |
| run: cargo test --workspace --lib | |
| - name: Run integration tests | |
| run: cargo test --workspace --test cross_chain_integration | |
| security-audit: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v6 | |
| - name: Install Rust toolchain | |
| uses: dtolnay/rust-toolchain@stable | |
| - name: Cache cargo | |
| uses: Swatinem/rust-cache@v2 | |
| - name: Install cargo-audit | |
| run: cargo install cargo-audit --locked | |
| - name: Run dependency vulnerability audit | |
| run: cargo audit | |
| - name: Install cargo-deny | |
| run: cargo install cargo-deny --locked | |
| - name: Check dependency licenses and advisories | |
| run: cargo deny check |