Add cargo-deny check to CI

This config protects from: * duplicate crates * copy-left licenses in the dependency tree * RUSTSEC advisories Note we need to check in Cargo.lock for this to work.
algesten · Sep 30, 2023 · f53bb2c · f53bb2c
1 parent 1251304
commit f53bb2c
Show file tree

Hide file tree

Showing 6 changed files with 1,531 additions and 2 deletions.
diff --git a/.github/workflows/cargo.yml b/.github/workflows/cargo.yml
@@ -64,3 +64,33 @@ jobs:
         run: cargo doc --no-deps
         env:
           RUSTDOCFLAGS: -Dwarnings
+
+  cargo-deny:
+    name: cargo-deny
+
+    # TODO: remove this matrix when https://github.com/EmbarkStudios/cargo-deny/issues/324 is resolved
+    strategy:
+      fail-fast: false
+      matrix:
+        platform:
+          - aarch64-apple-ios
+          - aarch64-linux-android
+          - i686-pc-windows-gnu
+          - i686-pc-windows-msvc
+          - i686-unknown-linux-gnu
+          - wasm32-unknown-unknown
+          - x86_64-apple-darwin
+          - x86_64-apple-ios
+          - x86_64-pc-windows-gnu
+          - x86_64-pc-windows-msvc
+          - x86_64-unknown-linux-gnu
+          - x86_64-unknown-redox
+
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@v3
+    - uses: EmbarkStudios/cargo-deny-action@v1
+      with:
+        command: check
+        log-level: error
+        arguments: --all-features --target ${{ matrix.platform }}
diff --git a/.gitignore b/.gitignore
@@ -2,7 +2,6 @@ target
 chrome-user-data-dir
 .DS_Store
 fuzz
-Cargo.lock
 tracing*
 *.svg
 xamples