From eae1b7916bf30046e11328e8f6d151eeec83d341 Mon Sep 17 00:00:00 2001 From: Takuma IMAMURA <209989118+hyperfinitism@users.noreply.github.com> Date: Tue, 31 Mar 2026 21:49:37 +0900 Subject: [PATCH 1/2] ci: change workflow names and trigger paths Signed-off-by: Takuma IMAMURA <209989118+hyperfinitism@users.noreply.github.com> --- .github/workflows/build.yml | 2 ++ .github/workflows/lint.yml | 4 +++- .github/workflows/test.yml | 8 +++++--- 3 files changed, 10 insertions(+), 4 deletions(-) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index f068cb0..5af22c8 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -6,12 +6,14 @@ on: - 'src/**' - 'Cargo.toml' - 'Cargo.lock' + - '.github/actions/install-tpm2-tss/**' - '.github/workflows/build.yml' push: paths: - 'src/**' - 'Cargo.toml' - 'Cargo.lock' + - '.github/actions/install-tpm2-tss/**' - '.github/workflows/build.yml' workflow_dispatch: diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index 83dffc0..a8adfa8 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -1,4 +1,4 @@ -name: Lint (Rust) +name: Lint on: pull_request: @@ -6,12 +6,14 @@ on: - 'src/**' - 'Cargo.toml' - 'Cargo.lock' + - '.github/actions/install-tpm2-tss/**' - '.github/workflows/lint.yml' push: paths: - 'src/**' - 'Cargo.toml' - 'Cargo.lock' + - '.github/actions/install-tpm2-tss/**' - '.github/workflows/lint.yml' workflow_dispatch: diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index 97995e6..969b6e9 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -1,4 +1,4 @@ -name: Integration Tests +name: Test on: push: @@ -7,6 +7,7 @@ on: - 'tests/**' - 'Cargo.toml' - 'Cargo.lock' + - '.github/actions/install-tpm2-tss/**' - '.github/workflows/test.yml' pull_request: paths: @@ -14,6 +15,7 @@ on: - 'tests/**' - 'Cargo.toml' - 'Cargo.lock' + - '.github/actions/install-tpm2-tss/**' - '.github/workflows/test.yml' workflow_dispatch: @@ -28,7 +30,7 @@ env: CARGO_TERM_COLOR: always jobs: - integration-test: + test: runs-on: ${{ matrix.runner }} strategy: fail-fast: false @@ -56,7 +58,7 @@ jobs: # - run: sudo apt-get update && sudo apt-get install -y libtss2-dev pkg-config - name: Install swtpm run: sudo apt-get install -y swtpm - - name: Run integration tests + - name: Run cargo test --all-targets env: TSS2_ESYS_STATIC: 1 TSS2_SYS_STATIC: 1 From e129627afd063e046193650fb3d84fc31d51aa9c Mon Sep 17 00:00:00 2001 From: Takuma IMAMURA <209989118+hyperfinitism@users.noreply.github.com> Date: Tue, 31 Mar 2026 21:54:51 +0900 Subject: [PATCH 2/2] ci: pin workflow actions to specific commit SHAs Signed-off-by: Takuma IMAMURA <209989118+hyperfinitism@users.noreply.github.com> --- .github/workflows/build.yml | 4 ++-- .github/workflows/lint.yml | 8 ++++---- .github/workflows/spdx.yml | 4 ++-- .github/workflows/test.yml | 4 ++-- 4 files changed, 10 insertions(+), 10 deletions(-) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 5af22c8..292773e 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -44,8 +44,8 @@ jobs: runner: ubuntu-24.04-arm target: aarch64-unknown-linux-gnu steps: - - uses: actions/checkout@v6 - - uses: actions-rust-lang/setup-rust-toolchain@v1 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions-rust-lang/setup-rust-toolchain@150fca883cd4034361b621bd4e6a9d34e5143606 # v1.15.4 with: toolchain: ${{ matrix.toolchain }} target: ${{ matrix.target }} diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index a8adfa8..02a51b4 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -28,8 +28,8 @@ jobs: rustfmt: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6 - - uses: actions-rust-lang/setup-rust-toolchain@v1 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions-rust-lang/setup-rust-toolchain@150fca883cd4034361b621bd4e6a9d34e5143606 # v1.15.4 with: toolchain: stable components: rustfmt @@ -38,8 +38,8 @@ jobs: clippy: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6 - - uses: actions-rust-lang/setup-rust-toolchain@v1 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions-rust-lang/setup-rust-toolchain@150fca883cd4034361b621bd4e6a9d34e5143606 # v1.15.4 with: toolchain: stable components: clippy diff --git a/.github/workflows/spdx.yml b/.github/workflows/spdx.yml index 3eae485..b60fdaa 100644 --- a/.github/workflows/spdx.yml +++ b/.github/workflows/spdx.yml @@ -24,7 +24,7 @@ jobs: spdx: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6 - - uses: enarx/spdx@d4020ee98e3101dd487c5184f27c6a6fb4f88709 # master + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: enarx/spdx@d4020ee98e3101dd487c5184f27c6a6fb4f88709 with: licenses: Apache-2.0 diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index 969b6e9..7db41c8 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -49,8 +49,8 @@ jobs: runner: ubuntu-24.04-arm target: aarch64-unknown-linux-gnu steps: - - uses: actions/checkout@v6 - - uses: actions-rust-lang/setup-rust-toolchain@v1 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions-rust-lang/setup-rust-toolchain@150fca883cd4034361b621bd4e6a9d34e5143606 # v1.15.4 with: toolchain: ${{ matrix.toolchain }} target: ${{ matrix.target }}