From d7ac6f694df60fb8ce48bab7b59ad5da1ac8d46e Mon Sep 17 00:00:00 2001 From: Mikhail Glushenkov Date: Thu, 12 Mar 2026 17:17:15 +0000 Subject: [PATCH 01/18] Typofix (#316) --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 96f486a..39a3569 100644 --- a/README.md +++ b/README.md @@ -32,7 +32,7 @@ sensible defaults. # default: "true" add-job-id-key: "" - # Weather the a hash of the rust environment should be included in the cache key. + # Whether the a hash of the rust environment should be included in the cache key. # This includes a hash of all Cargo.toml/Cargo.lock files, rust-toolchain files, # and .cargo/config.toml files (if present), as well as the specified 'env-vars'. # default: "true" From bc1860267c1b189716ecde249f61cf86e8408d91 Mon Sep 17 00:00:00 2001 From: eitsupi <50911393+eitsupi@users.noreply.github.com> Date: Sun, 15 Mar 2026 00:23:14 +0900 Subject: [PATCH 02/18] fix: include target names in build/ and .fingerprint/ cleanup (#317) --- dist/restore/index.js | 290 +++++++++++++++++++++--------------------- dist/save/index.js | 290 +++++++++++++++++++++--------------------- src/cleanup.ts | 2 +- 3 files changed, 291 insertions(+), 291 deletions(-) diff --git a/dist/restore/index.js b/dist/restore/index.js index aeb1b47..765e0fc 100644 --- a/dist/restore/index.js +++ b/dist/restore/index.js @@ -152103,24 +152103,6 @@ exports.StorageContextClient = StorageContextClient; /***/ }), -/***/ 83627: -/***/ ((__unused_webpack_module, exports) => { - -"use strict"; - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -Object.defineProperty(exports, "__esModule", ({ value: true })); -exports.KnownEncryptionAlgorithmType = void 0; -/** Known values of {@link EncryptionAlgorithmType} that the service accepts. */ -var KnownEncryptionAlgorithmType; -(function (KnownEncryptionAlgorithmType) { - KnownEncryptionAlgorithmType["AES256"] = "AES256"; -})(KnownEncryptionAlgorithmType || (exports.KnownEncryptionAlgorithmType = KnownEncryptionAlgorithmType = {})); -//# sourceMappingURL=generatedModels.js.map - -/***/ }), - /***/ 30247: /***/ ((__unused_webpack_module, exports, __nccwpck_require__) => { @@ -162447,132 +162429,6 @@ exports.listType = { /***/ }), -/***/ 56635: -/***/ ((__unused_webpack_module, exports) => { - -"use strict"; - -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ -Object.defineProperty(exports, "__esModule", ({ value: true })); -//# sourceMappingURL=appendBlob.js.map - -/***/ }), - -/***/ 68355: -/***/ ((__unused_webpack_module, exports) => { - -"use strict"; - -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ -Object.defineProperty(exports, "__esModule", ({ value: true })); -//# sourceMappingURL=blob.js.map - -/***/ }), - -/***/ 17188: -/***/ ((__unused_webpack_module, exports) => { - -"use strict"; - -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ -Object.defineProperty(exports, "__esModule", ({ value: true })); -//# sourceMappingURL=blockBlob.js.map - -/***/ }), - -/***/ 15337: -/***/ ((__unused_webpack_module, exports) => { - -"use strict"; - -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ -Object.defineProperty(exports, "__esModule", ({ value: true })); -//# sourceMappingURL=container.js.map - -/***/ }), - -/***/ 82354: -/***/ ((__unused_webpack_module, exports, __nccwpck_require__) => { - -"use strict"; - -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ -Object.defineProperty(exports, "__esModule", ({ value: true })); -const tslib_1 = __nccwpck_require__(61860); -tslib_1.__exportStar(__nccwpck_require__(26865), exports); -tslib_1.__exportStar(__nccwpck_require__(15337), exports); -tslib_1.__exportStar(__nccwpck_require__(68355), exports); -tslib_1.__exportStar(__nccwpck_require__(14400), exports); -tslib_1.__exportStar(__nccwpck_require__(56635), exports); -tslib_1.__exportStar(__nccwpck_require__(17188), exports); -//# sourceMappingURL=index.js.map - -/***/ }), - -/***/ 14400: -/***/ ((__unused_webpack_module, exports) => { - -"use strict"; - -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ -Object.defineProperty(exports, "__esModule", ({ value: true })); -//# sourceMappingURL=pageBlob.js.map - -/***/ }), - -/***/ 26865: -/***/ ((__unused_webpack_module, exports) => { - -"use strict"; - -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ -Object.defineProperty(exports, "__esModule", ({ value: true })); -//# sourceMappingURL=service.js.map - -/***/ }), - /***/ 40535: /***/ ((__unused_webpack_module, exports, __nccwpck_require__) => { @@ -165788,6 +165644,132 @@ const filterBlobsOperationSpec = { /***/ }), +/***/ 56635: +/***/ ((__unused_webpack_module, exports) => { + +"use strict"; + +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ +Object.defineProperty(exports, "__esModule", ({ value: true })); +//# sourceMappingURL=appendBlob.js.map + +/***/ }), + +/***/ 68355: +/***/ ((__unused_webpack_module, exports) => { + +"use strict"; + +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ +Object.defineProperty(exports, "__esModule", ({ value: true })); +//# sourceMappingURL=blob.js.map + +/***/ }), + +/***/ 17188: +/***/ ((__unused_webpack_module, exports) => { + +"use strict"; + +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ +Object.defineProperty(exports, "__esModule", ({ value: true })); +//# sourceMappingURL=blockBlob.js.map + +/***/ }), + +/***/ 15337: +/***/ ((__unused_webpack_module, exports) => { + +"use strict"; + +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ +Object.defineProperty(exports, "__esModule", ({ value: true })); +//# sourceMappingURL=container.js.map + +/***/ }), + +/***/ 82354: +/***/ ((__unused_webpack_module, exports, __nccwpck_require__) => { + +"use strict"; + +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ +Object.defineProperty(exports, "__esModule", ({ value: true })); +const tslib_1 = __nccwpck_require__(61860); +tslib_1.__exportStar(__nccwpck_require__(26865), exports); +tslib_1.__exportStar(__nccwpck_require__(15337), exports); +tslib_1.__exportStar(__nccwpck_require__(68355), exports); +tslib_1.__exportStar(__nccwpck_require__(14400), exports); +tslib_1.__exportStar(__nccwpck_require__(56635), exports); +tslib_1.__exportStar(__nccwpck_require__(17188), exports); +//# sourceMappingURL=index.js.map + +/***/ }), + +/***/ 14400: +/***/ ((__unused_webpack_module, exports) => { + +"use strict"; + +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ +Object.defineProperty(exports, "__esModule", ({ value: true })); +//# sourceMappingURL=pageBlob.js.map + +/***/ }), + +/***/ 26865: +/***/ ((__unused_webpack_module, exports) => { + +"use strict"; + +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ +Object.defineProperty(exports, "__esModule", ({ value: true })); +//# sourceMappingURL=service.js.map + +/***/ }), + /***/ 5313: /***/ ((__unused_webpack_module, exports, __nccwpck_require__) => { @@ -165861,6 +165843,24 @@ exports.StorageClient = StorageClient; /***/ }), +/***/ 83627: +/***/ ((__unused_webpack_module, exports) => { + +"use strict"; + +// Copyright (c) Microsoft Corporation. +// Licensed under the MIT License. +Object.defineProperty(exports, "__esModule", ({ value: true })); +exports.KnownEncryptionAlgorithmType = void 0; +/** Known values of {@link EncryptionAlgorithmType} that the service accepts. */ +var KnownEncryptionAlgorithmType; +(function (KnownEncryptionAlgorithmType) { + KnownEncryptionAlgorithmType["AES256"] = "AES256"; +})(KnownEncryptionAlgorithmType || (exports.KnownEncryptionAlgorithmType = KnownEncryptionAlgorithmType = {})); +//# sourceMappingURL=generatedModels.js.map + +/***/ }), + /***/ 49019: /***/ ((__unused_webpack_module, exports, __nccwpck_require__) => { @@ -250175,7 +250175,7 @@ async function cleanProfileTarget(profileDir, packages, checkTimestamp = false) } let keepProfile = new Set(["build", ".fingerprint", "deps"]); await rmExcept(profileDir, keepProfile); - const keepPkg = new Set(packages.map((p) => p.name)); + const keepPkg = new Set(packages.flatMap((p) => [p.name, ...p.targets.map((t) => t.replace(/-/g, "_"))])); await rmExcept(external_path_default().join(profileDir, "build"), keepPkg, checkTimestamp); await rmExcept(external_path_default().join(profileDir, ".fingerprint"), keepPkg, checkTimestamp); const keepDeps = new Set(packages.flatMap((p) => { diff --git a/dist/save/index.js b/dist/save/index.js index 086922b..9213b5f 100644 --- a/dist/save/index.js +++ b/dist/save/index.js @@ -152103,24 +152103,6 @@ exports.StorageContextClient = StorageContextClient; /***/ }), -/***/ 83627: -/***/ ((__unused_webpack_module, exports) => { - -"use strict"; - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -Object.defineProperty(exports, "__esModule", ({ value: true })); -exports.KnownEncryptionAlgorithmType = void 0; -/** Known values of {@link EncryptionAlgorithmType} that the service accepts. */ -var KnownEncryptionAlgorithmType; -(function (KnownEncryptionAlgorithmType) { - KnownEncryptionAlgorithmType["AES256"] = "AES256"; -})(KnownEncryptionAlgorithmType || (exports.KnownEncryptionAlgorithmType = KnownEncryptionAlgorithmType = {})); -//# sourceMappingURL=generatedModels.js.map - -/***/ }), - /***/ 30247: /***/ ((__unused_webpack_module, exports, __nccwpck_require__) => { @@ -162447,132 +162429,6 @@ exports.listType = { /***/ }), -/***/ 56635: -/***/ ((__unused_webpack_module, exports) => { - -"use strict"; - -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ -Object.defineProperty(exports, "__esModule", ({ value: true })); -//# sourceMappingURL=appendBlob.js.map - -/***/ }), - -/***/ 68355: -/***/ ((__unused_webpack_module, exports) => { - -"use strict"; - -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ -Object.defineProperty(exports, "__esModule", ({ value: true })); -//# sourceMappingURL=blob.js.map - -/***/ }), - -/***/ 17188: -/***/ ((__unused_webpack_module, exports) => { - -"use strict"; - -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ -Object.defineProperty(exports, "__esModule", ({ value: true })); -//# sourceMappingURL=blockBlob.js.map - -/***/ }), - -/***/ 15337: -/***/ ((__unused_webpack_module, exports) => { - -"use strict"; - -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ -Object.defineProperty(exports, "__esModule", ({ value: true })); -//# sourceMappingURL=container.js.map - -/***/ }), - -/***/ 82354: -/***/ ((__unused_webpack_module, exports, __nccwpck_require__) => { - -"use strict"; - -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ -Object.defineProperty(exports, "__esModule", ({ value: true })); -const tslib_1 = __nccwpck_require__(61860); -tslib_1.__exportStar(__nccwpck_require__(26865), exports); -tslib_1.__exportStar(__nccwpck_require__(15337), exports); -tslib_1.__exportStar(__nccwpck_require__(68355), exports); -tslib_1.__exportStar(__nccwpck_require__(14400), exports); -tslib_1.__exportStar(__nccwpck_require__(56635), exports); -tslib_1.__exportStar(__nccwpck_require__(17188), exports); -//# sourceMappingURL=index.js.map - -/***/ }), - -/***/ 14400: -/***/ ((__unused_webpack_module, exports) => { - -"use strict"; - -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ -Object.defineProperty(exports, "__esModule", ({ value: true })); -//# sourceMappingURL=pageBlob.js.map - -/***/ }), - -/***/ 26865: -/***/ ((__unused_webpack_module, exports) => { - -"use strict"; - -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ -Object.defineProperty(exports, "__esModule", ({ value: true })); -//# sourceMappingURL=service.js.map - -/***/ }), - /***/ 40535: /***/ ((__unused_webpack_module, exports, __nccwpck_require__) => { @@ -165788,6 +165644,132 @@ const filterBlobsOperationSpec = { /***/ }), +/***/ 56635: +/***/ ((__unused_webpack_module, exports) => { + +"use strict"; + +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ +Object.defineProperty(exports, "__esModule", ({ value: true })); +//# sourceMappingURL=appendBlob.js.map + +/***/ }), + +/***/ 68355: +/***/ ((__unused_webpack_module, exports) => { + +"use strict"; + +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ +Object.defineProperty(exports, "__esModule", ({ value: true })); +//# sourceMappingURL=blob.js.map + +/***/ }), + +/***/ 17188: +/***/ ((__unused_webpack_module, exports) => { + +"use strict"; + +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ +Object.defineProperty(exports, "__esModule", ({ value: true })); +//# sourceMappingURL=blockBlob.js.map + +/***/ }), + +/***/ 15337: +/***/ ((__unused_webpack_module, exports) => { + +"use strict"; + +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ +Object.defineProperty(exports, "__esModule", ({ value: true })); +//# sourceMappingURL=container.js.map + +/***/ }), + +/***/ 82354: +/***/ ((__unused_webpack_module, exports, __nccwpck_require__) => { + +"use strict"; + +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ +Object.defineProperty(exports, "__esModule", ({ value: true })); +const tslib_1 = __nccwpck_require__(61860); +tslib_1.__exportStar(__nccwpck_require__(26865), exports); +tslib_1.__exportStar(__nccwpck_require__(15337), exports); +tslib_1.__exportStar(__nccwpck_require__(68355), exports); +tslib_1.__exportStar(__nccwpck_require__(14400), exports); +tslib_1.__exportStar(__nccwpck_require__(56635), exports); +tslib_1.__exportStar(__nccwpck_require__(17188), exports); +//# sourceMappingURL=index.js.map + +/***/ }), + +/***/ 14400: +/***/ ((__unused_webpack_module, exports) => { + +"use strict"; + +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ +Object.defineProperty(exports, "__esModule", ({ value: true })); +//# sourceMappingURL=pageBlob.js.map + +/***/ }), + +/***/ 26865: +/***/ ((__unused_webpack_module, exports) => { + +"use strict"; + +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ +Object.defineProperty(exports, "__esModule", ({ value: true })); +//# sourceMappingURL=service.js.map + +/***/ }), + /***/ 5313: /***/ ((__unused_webpack_module, exports, __nccwpck_require__) => { @@ -165861,6 +165843,24 @@ exports.StorageClient = StorageClient; /***/ }), +/***/ 83627: +/***/ ((__unused_webpack_module, exports) => { + +"use strict"; + +// Copyright (c) Microsoft Corporation. +// Licensed under the MIT License. +Object.defineProperty(exports, "__esModule", ({ value: true })); +exports.KnownEncryptionAlgorithmType = void 0; +/** Known values of {@link EncryptionAlgorithmType} that the service accepts. */ +var KnownEncryptionAlgorithmType; +(function (KnownEncryptionAlgorithmType) { + KnownEncryptionAlgorithmType["AES256"] = "AES256"; +})(KnownEncryptionAlgorithmType || (exports.KnownEncryptionAlgorithmType = KnownEncryptionAlgorithmType = {})); +//# sourceMappingURL=generatedModels.js.map + +/***/ }), + /***/ 49019: /***/ ((__unused_webpack_module, exports, __nccwpck_require__) => { @@ -250175,7 +250175,7 @@ async function cleanProfileTarget(profileDir, packages, checkTimestamp = false) } let keepProfile = new Set(["build", ".fingerprint", "deps"]); await rmExcept(profileDir, keepProfile); - const keepPkg = new Set(packages.map((p) => p.name)); + const keepPkg = new Set(packages.flatMap((p) => [p.name, ...p.targets.map((t) => t.replace(/-/g, "_"))])); await rmExcept(external_path_default().join(profileDir, "build"), keepPkg, checkTimestamp); await rmExcept(external_path_default().join(profileDir, ".fingerprint"), keepPkg, checkTimestamp); const keepDeps = new Set(packages.flatMap((p) => { diff --git a/src/cleanup.ts b/src/cleanup.ts index d84a9d5..67eafeb 100644 --- a/src/cleanup.ts +++ b/src/cleanup.ts @@ -58,7 +58,7 @@ async function cleanProfileTarget(profileDir: string, packages: Packages, checkT let keepProfile = new Set(["build", ".fingerprint", "deps"]); await rmExcept(profileDir, keepProfile); - const keepPkg = new Set(packages.map((p) => p.name)); + const keepPkg = new Set(packages.flatMap((p) => [p.name, ...p.targets.map((t) => t.replace(/-/g, "_"))])); await rmExcept(path.join(profileDir, "build"), keepPkg, checkTimestamp); await rmExcept(path.join(profileDir, ".fingerprint"), keepPkg, checkTimestamp); From 5084d130b2f0c7730398656da4e66ed249164742 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 16 Mar 2026 21:54:47 +0000 Subject: [PATCH 03/18] Bump taiki-e/install-action from 2.68.26 to 2.68.34 in the actions group Bumps the actions group with 1 update: [taiki-e/install-action](https://github.com/taiki-e/install-action). Updates `taiki-e/install-action` from 2.68.26 to 2.68.34 - [Release notes](https://github.com/taiki-e/install-action/releases) - [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/taiki-e/install-action/compare/64c5c20c872907b6f7cd50994ac189e7274160f2...de6bbd1333b8f331563d54a051e542c7dfef81c3) --- updated-dependencies: - dependency-name: taiki-e/install-action dependency-version: 2.68.34 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions ... Signed-off-by: dependabot[bot] --- .github/workflows/coverage.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/coverage.yml b/.github/workflows/coverage.yml index dfae6cc..99fd545 100644 --- a/.github/workflows/coverage.yml +++ b/.github/workflows/coverage.yml @@ -25,7 +25,7 @@ jobs: - run: rustup toolchain install stable --profile minimal --component llvm-tools-preview --no-self-update - - uses: taiki-e/install-action@64c5c20c872907b6f7cd50994ac189e7274160f2 # v2.68.26 + - uses: taiki-e/install-action@de6bbd1333b8f331563d54a051e542c7dfef81c3 # v2.68.34 with: tool: cargo-llvm-cov From f51f967e158417aafa338a1e46ab22095f07aa01 Mon Sep 17 00:00:00 2001 From: eitsupi <50911393+eitsupi@users.noreply.github.com> Date: Thu, 19 Mar 2026 16:14:45 +0900 Subject: [PATCH 04/18] fix: include cdylib/rlib/dylib/staticlib targets in build and fingerprint cleanup (#320) --- dist/restore/index.js | 2 +- dist/save/index.js | 2 +- src/workspace.ts | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/dist/restore/index.js b/dist/restore/index.js index 765e0fc..c4c1d86 100644 --- a/dist/restore/index.js +++ b/dist/restore/index.js @@ -249702,7 +249702,7 @@ async function utils_exists(path) { -const SAVE_TARGETS = new Set(["lib", "proc-macro"]); +const SAVE_TARGETS = new Set(["lib", "cdylib", "dylib", "rlib", "staticlib", "proc-macro"]); class Workspace { constructor(root, target) { this.root = root; diff --git a/dist/save/index.js b/dist/save/index.js index 9213b5f..90bd1e7 100644 --- a/dist/save/index.js +++ b/dist/save/index.js @@ -249702,7 +249702,7 @@ async function utils_exists(path) { -const SAVE_TARGETS = new Set(["lib", "proc-macro"]); +const SAVE_TARGETS = new Set(["lib", "cdylib", "dylib", "rlib", "staticlib", "proc-macro"]); class Workspace { constructor(root, target) { this.root = root; diff --git a/src/workspace.ts b/src/workspace.ts index d7734f5..2d9eca8 100644 --- a/src/workspace.ts +++ b/src/workspace.ts @@ -3,7 +3,7 @@ import path from "path"; import { getCmdOutput } from "./utils"; -const SAVE_TARGETS = new Set(["lib", "proc-macro"]); +const SAVE_TARGETS = new Set(["lib", "cdylib", "dylib", "rlib", "staticlib", "proc-macro"]); export class Workspace { constructor(public root: string, public target: string) {} From ed5e89b8ff3145597af131187c6118e451e2ed12 Mon Sep 17 00:00:00 2001 From: Charles Lechasseur Date: Sun, 12 Apr 2026 13:41:04 -0400 Subject: [PATCH 05/18] feat: cache more cargo binaries (#325) Instead of relying on `.crates2.json` to know which binaries are installed, scan the bin directory and save the result in the action's state. --- .github/workflows/binstall.yml | 34 ++++++++++++++++++++++++++++++++++ src/cleanup.ts | 20 ++++++++------------ 2 files changed, 42 insertions(+), 12 deletions(-) create mode 100644 .github/workflows/binstall.yml diff --git a/.github/workflows/binstall.yml b/.github/workflows/binstall.yml new file mode 100644 index 0000000..da83f82 --- /dev/null +++ b/.github/workflows/binstall.yml @@ -0,0 +1,34 @@ +name: binstall + +on: [push, pull_request] + +permissions: {} + +jobs: + binstall: + if: github.repository == 'Swatinem/rust-cache' + strategy: + fail-fast: false + matrix: + os: [ubuntu-latest, macos-latest, windows-latest] + + name: Test `cargo binstall` on ${{ matrix.os }} + runs-on: ${{ matrix.os }} + + env: + CARGO_TERM_COLOR: always + + steps: + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + with: + persist-credentials: false + + - run: rustup toolchain install stable --profile minimal --no-self-update + + - uses: cargo-bins/cargo-binstall@v1.17.9 + + - uses: ./ + + - run: cargo binstall -y cargo-deny + env: + GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} diff --git a/src/cleanup.ts b/src/cleanup.ts index 67eafeb..8fe53c4 100644 --- a/src/cleanup.ts +++ b/src/cleanup.ts @@ -77,16 +77,16 @@ async function cleanProfileTarget(profileDir: string, packages: Packages, checkT export async function getCargoBins(): Promise> { const bins = new Set(); + try { - const { installs }: { installs: { [key: string]: { bins: Array } } } = JSON.parse( - await fs.promises.readFile(path.join(CARGO_HOME, ".crates2.json"), "utf8"), - ); - for (const pkg of Object.values(installs)) { - for (const bin of pkg.bins) { - bins.add(bin); + const dir = await fs.promises.opendir(path.join(CARGO_HOME, "bin")); + for await (const dirent of dir) { + if (dirent.isFile()) { + bins.add(dirent.name); } } } catch {} + return bins; } @@ -97,15 +97,11 @@ export async function getCargoBins(): Promise> { * @param oldBins The binaries that existed when the action started. */ export async function cleanBin(oldBins: Array) { - const bins = await getCargoBins(); - - for (const bin of oldBins) { - bins.delete(bin); - } + const binsToRemove = new Set(oldBins); const dir = await fs.promises.opendir(path.join(CARGO_HOME, "bin")); for await (const dirent of dir) { - if (dirent.isFile() && !bins.has(dirent.name)) { + if (dirent.isFile() && binsToRemove.has(dirent.name)) { await rm(dir.path, dirent); } } From 22de9d98ab568ce76f057214c537f0df79713e53 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 14 Apr 2026 20:28:34 +0200 Subject: [PATCH 06/18] Bump smol-toml from 1.6.0 to 1.6.1 in the prd-patch group (#321) Bumps the prd-patch group with 1 update: [smol-toml](https://github.com/squirrelchat/smol-toml). Updates `smol-toml` from 1.6.0 to 1.6.1 - [Release notes](https://github.com/squirrelchat/smol-toml/releases) - [Commits](https://github.com/squirrelchat/smol-toml/compare/v1.6.0...v1.6.1) --- updated-dependencies: - dependency-name: smol-toml dependency-version: 1.6.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: prd-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- package-lock.json | 8 ++++---- package.json | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/package-lock.json b/package-lock.json index bd6140d..f3eeb16 100644 --- a/package-lock.json +++ b/package-lock.json @@ -16,7 +16,7 @@ "@actions/glob": "^0.6.1", "@actions/io": "^3.0.2", "@actions/warpbuild-cache": "npm:github-actions.warp-cache@1.4.7", - "smol-toml": "^1.6.0" + "smol-toml": "^1.6.1" }, "devDependencies": { "@types/node": "^25.4.0", @@ -1772,9 +1772,9 @@ } }, "node_modules/smol-toml": { - "version": "1.6.0", - "resolved": "https://registry.npmjs.org/smol-toml/-/smol-toml-1.6.0.tgz", - "integrity": "sha512-4zemZi0HvTnYwLfrpk/CF9LOd9Lt87kAt50GnqhMpyF9U3poDAP2+iukq2bZsO/ufegbYehBkqINbsWxj4l4cw==", + "version": "1.6.1", + "resolved": "https://registry.npmjs.org/smol-toml/-/smol-toml-1.6.1.tgz", + "integrity": "sha512-dWUG8F5sIIARXih1DTaQAX4SsiTXhInKf1buxdY9DIg4ZYPZK5nGM1VRIYmEbDbsHt7USo99xSLFu5Q1IqTmsg==", "license": "BSD-3-Clause", "engines": { "node": ">= 18" diff --git a/package.json b/package.json index ce7cf20..3002db6 100644 --- a/package.json +++ b/package.json @@ -29,7 +29,7 @@ "@actions/exec": "^3.0.0", "@actions/glob": "^0.6.1", "@actions/io": "^3.0.2", - "smol-toml": "^1.6.0" + "smol-toml": "^1.6.1" }, "devDependencies": { "@types/node": "^25.4.0", From 3a556350bd44225bcbc7e5bca97fd5de00059fad Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 14 Apr 2026 20:29:03 +0200 Subject: [PATCH 07/18] Bump typescript from 5.9.3 to 6.0.2 in the dev-major group (#322) Bumps the dev-major group with 1 update: [typescript](https://github.com/microsoft/TypeScript). Updates `typescript` from 5.9.3 to 6.0.2 - [Release notes](https://github.com/microsoft/TypeScript/releases) - [Commits](https://github.com/microsoft/TypeScript/compare/v5.9.3...v6.0.2) --- updated-dependencies: - dependency-name: typescript dependency-version: 6.0.2 dependency-type: direct:development update-type: version-update:semver-major dependency-group: dev-major ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- package-lock.json | 8 ++++---- package.json | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/package-lock.json b/package-lock.json index f3eeb16..405354e 100644 --- a/package-lock.json +++ b/package-lock.json @@ -22,7 +22,7 @@ "@types/node": "^25.4.0", "@vercel/ncc": "^0.38.4", "linefix": "^0.1.1", - "typescript": "5.9.3" + "typescript": "6.0.2" }, "funding": { "url": "https://github.com/sponsors/Swatinem" @@ -1915,9 +1915,9 @@ } }, "node_modules/typescript": { - "version": "5.9.3", - "resolved": "https://registry.npmjs.org/typescript/-/typescript-5.9.3.tgz", - "integrity": "sha512-jl1vZzPDinLr9eUt3J/t7V6FgNEw9QjvBPdysz9KfQDD41fQrC2Y4vKQdiaUpFT4bXlb1RHhLpp8wtm6M5TgSw==", + "version": "6.0.2", + "resolved": "https://registry.npmjs.org/typescript/-/typescript-6.0.2.tgz", + "integrity": "sha512-bGdAIrZ0wiGDo5l8c++HWtbaNCWTS4UTv7RaTH/ThVIgjkveJt83m74bBHMJkuCbslY8ixgLBVZJIOiQlQTjfQ==", "dev": true, "license": "Apache-2.0", "bin": { diff --git a/package.json b/package.json index 3002db6..dde9e0e 100644 --- a/package.json +++ b/package.json @@ -35,7 +35,7 @@ "@types/node": "^25.4.0", "@vercel/ncc": "^0.38.4", "linefix": "^0.1.1", - "typescript": "5.9.3" + "typescript": "6.0.2" }, "scripts": { "prepare": "ncc build --target es2020 -o dist/restore src/restore.ts && ncc build --target es2020 -o dist/save src/save.ts && linefix dist" From 469cb0e24707e1f169c4501c23d77da83a83fce8 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 14 Apr 2026 20:30:15 +0200 Subject: [PATCH 08/18] Bump the actions group across 1 directory with 5 updates (#326) Bumps the actions group with 5 updates in the / directory: | Package | From | To | | --- | --- | --- | | [cargo-bins/cargo-binstall](https://github.com/cargo-bins/cargo-binstall) | `1.17.9` | `1.18.1` | | [actions/upload-artifact](https://github.com/actions/upload-artifact) | `7.0.0` | `7.0.1` | | [taiki-e/install-action](https://github.com/taiki-e/install-action) | `2.68.34` | `2.75.10` | | [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) | `2.5.0` | `3.0.0` | | [cachix/install-nix-action](https://github.com/cachix/install-nix-action) | `31.10.1` | `31.10.4` | Updates `cargo-bins/cargo-binstall` from 1.17.9 to 1.18.1 - [Release notes](https://github.com/cargo-bins/cargo-binstall/releases) - [Changelog](https://github.com/cargo-bins/cargo-binstall/blob/main/release-plz.toml) - [Commits](https://github.com/cargo-bins/cargo-binstall/compare/v1.17.9...v1.18.1) Updates `actions/upload-artifact` from 7.0.0 to 7.0.1 - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](https://github.com/actions/upload-artifact/compare/bbbca2ddaa5d8feaa63e36b76fdaad77386f024f...043fb46d1a93c77aae656e7c1c64a875d1fc6a0a) Updates `taiki-e/install-action` from 2.68.34 to 2.75.10 - [Release notes](https://github.com/taiki-e/install-action/releases) - [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/taiki-e/install-action/compare/de6bbd1333b8f331563d54a051e542c7dfef81c3...85b24a67ef0c632dfefad70b9d5ce8fddb040754) Updates `dependabot/fetch-metadata` from 2.5.0 to 3.0.0 - [Release notes](https://github.com/dependabot/fetch-metadata/releases) - [Commits](https://github.com/dependabot/fetch-metadata/compare/21025c705c08248db411dc16f3619e6b5f9ea21a...ffa630c65fa7e0ecfa0625b5ceda64399aea1b36) Updates `cachix/install-nix-action` from 31.10.1 to 31.10.4 - [Release notes](https://github.com/cachix/install-nix-action/releases) - [Changelog](https://github.com/cachix/install-nix-action/blob/master/RELEASE.md) - [Commits](https://github.com/cachix/install-nix-action/compare/1ca7d21a94afc7c957383a2d217460d980de4934...616559265b40713947b9c190a8ff4b507b5df49b) --- updated-dependencies: - dependency-name: cargo-bins/cargo-binstall dependency-version: 1.18.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions - dependency-name: actions/upload-artifact dependency-version: 7.0.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions - dependency-name: taiki-e/install-action dependency-version: 2.75.10 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions - dependency-name: dependabot/fetch-metadata dependency-version: 3.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: cachix/install-nix-action dependency-version: 31.10.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/binstall.yml | 2 +- .github/workflows/check-dist.yml | 2 +- .github/workflows/coverage.yml | 2 +- .github/workflows/dependabot.yml | 2 +- .github/workflows/nix.yml | 2 +- 5 files changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/workflows/binstall.yml b/.github/workflows/binstall.yml index da83f82..c076cf2 100644 --- a/.github/workflows/binstall.yml +++ b/.github/workflows/binstall.yml @@ -25,7 +25,7 @@ jobs: - run: rustup toolchain install stable --profile minimal --no-self-update - - uses: cargo-bins/cargo-binstall@v1.17.9 + - uses: cargo-bins/cargo-binstall@v1.18.1 - uses: ./ diff --git a/.github/workflows/check-dist.yml b/.github/workflows/check-dist.yml index b69def8..b74e314 100644 --- a/.github/workflows/check-dist.yml +++ b/.github/workflows/check-dist.yml @@ -43,7 +43,7 @@ jobs: fi id: diff - - uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 + - uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 if: ${{ failure() && steps.diff.conclusion == 'failure' }} with: name: dist diff --git a/.github/workflows/coverage.yml b/.github/workflows/coverage.yml index 99fd545..4622803 100644 --- a/.github/workflows/coverage.yml +++ b/.github/workflows/coverage.yml @@ -25,7 +25,7 @@ jobs: - run: rustup toolchain install stable --profile minimal --component llvm-tools-preview --no-self-update - - uses: taiki-e/install-action@de6bbd1333b8f331563d54a051e542c7dfef81c3 # v2.68.34 + - uses: taiki-e/install-action@85b24a67ef0c632dfefad70b9d5ce8fddb040754 # v2.75.10 with: tool: cargo-llvm-cov diff --git a/.github/workflows/dependabot.yml b/.github/workflows/dependabot.yml index 2d40521..92b83ed 100644 --- a/.github/workflows/dependabot.yml +++ b/.github/workflows/dependabot.yml @@ -15,7 +15,7 @@ jobs: steps: - name: Fetch metadata id: metadata - uses: dependabot/fetch-metadata@21025c705c08248db411dc16f3619e6b5f9ea21a # v2.5.0 + uses: dependabot/fetch-metadata@ffa630c65fa7e0ecfa0625b5ceda64399aea1b36 # v3.0.0 with: github-token: "${{ secrets.GITHUB_TOKEN }}" - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 diff --git a/.github/workflows/nix.yml b/.github/workflows/nix.yml index 00897ec..8461e8e 100644 --- a/.github/workflows/nix.yml +++ b/.github/workflows/nix.yml @@ -20,7 +20,7 @@ jobs: with: persist-credentials: false - - uses: cachix/install-nix-action@1ca7d21a94afc7c957383a2d217460d980de4934 # v31.10.1 + - uses: cachix/install-nix-action@616559265b40713947b9c190a8ff4b507b5df49b # v31.10.4 - uses: ./ with: From bd17f4a47edb1384d2c085ba6b4ea3f640e68235 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 21 Apr 2026 10:00:15 +0200 Subject: [PATCH 09/18] Bump the actions group with 4 updates (#329) Bumps the actions group with 4 updates: [actions/setup-node](https://github.com/actions/setup-node), [taiki-e/install-action](https://github.com/taiki-e/install-action), [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) and [zizmorcore/zizmor-action](https://github.com/zizmorcore/zizmor-action). Updates `actions/setup-node` from 6.3.0 to 6.4.0 - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/53b83947a5a98c8d113130e565377fae1a50d02f...48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e) Updates `taiki-e/install-action` from 2.75.10 to 2.75.18 - [Release notes](https://github.com/taiki-e/install-action/releases) - [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/taiki-e/install-action/compare/85b24a67ef0c632dfefad70b9d5ce8fddb040754...055f5df8c3f65ea01cd41e9dc855becd88953486) Updates `dependabot/fetch-metadata` from 3.0.0 to 3.1.0 - [Release notes](https://github.com/dependabot/fetch-metadata/releases) - [Commits](https://github.com/dependabot/fetch-metadata/compare/ffa630c65fa7e0ecfa0625b5ceda64399aea1b36...25dd0e34f4fe68f24cc83900b1fe3fe149efef98) Updates `zizmorcore/zizmor-action` from 0.5.2 to 0.5.3 - [Release notes](https://github.com/zizmorcore/zizmor-action/releases) - [Commits](https://github.com/zizmorcore/zizmor-action/compare/71321a20a9ded102f6e9ce5718a2fcec2c4f70d8...b1d7e1fb5de872772f31590499237e7cce841e8e) --- updated-dependencies: - dependency-name: actions/setup-node dependency-version: 6.4.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions - dependency-name: taiki-e/install-action dependency-version: 2.75.18 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions - dependency-name: dependabot/fetch-metadata dependency-version: 3.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions - dependency-name: zizmorcore/zizmor-action dependency-version: 0.5.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/check-dist.yml | 2 +- .github/workflows/coverage.yml | 2 +- .github/workflows/dependabot.yml | 4 ++-- .github/workflows/zizmor.yml | 2 +- 4 files changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/workflows/check-dist.yml b/.github/workflows/check-dist.yml index b74e314..6d17822 100644 --- a/.github/workflows/check-dist.yml +++ b/.github/workflows/check-dist.yml @@ -23,7 +23,7 @@ jobs: persist-credentials: false - name: Setup Node.js 24.x - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 + uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0 with: node-version: 24.x cache: npm diff --git a/.github/workflows/coverage.yml b/.github/workflows/coverage.yml index 4622803..a9c312d 100644 --- a/.github/workflows/coverage.yml +++ b/.github/workflows/coverage.yml @@ -25,7 +25,7 @@ jobs: - run: rustup toolchain install stable --profile minimal --component llvm-tools-preview --no-self-update - - uses: taiki-e/install-action@85b24a67ef0c632dfefad70b9d5ce8fddb040754 # v2.75.10 + - uses: taiki-e/install-action@055f5df8c3f65ea01cd41e9dc855becd88953486 # v2.75.18 with: tool: cargo-llvm-cov diff --git a/.github/workflows/dependabot.yml b/.github/workflows/dependabot.yml index 92b83ed..c8c2265 100644 --- a/.github/workflows/dependabot.yml +++ b/.github/workflows/dependabot.yml @@ -15,7 +15,7 @@ jobs: steps: - name: Fetch metadata id: metadata - uses: dependabot/fetch-metadata@ffa630c65fa7e0ecfa0625b5ceda64399aea1b36 # v3.0.0 + uses: dependabot/fetch-metadata@25dd0e34f4fe68f24cc83900b1fe3fe149efef98 # v3.1.0 with: github-token: "${{ secrets.GITHUB_TOKEN }}" - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 @@ -37,7 +37,7 @@ jobs: fi - name: Setup node if necessary if: steps.npm.outputs.changed != '' - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 + uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0 with: node-version: 24.x cache: npm diff --git a/.github/workflows/zizmor.yml b/.github/workflows/zizmor.yml index c4b2eea..0878854 100644 --- a/.github/workflows/zizmor.yml +++ b/.github/workflows/zizmor.yml @@ -21,4 +21,4 @@ jobs: persist-credentials: false - name: Run zizmor 🌈 - uses: zizmorcore/zizmor-action@71321a20a9ded102f6e9ce5718a2fcec2c4f70d8 # v0.5.2 + uses: zizmorcore/zizmor-action@b1d7e1fb5de872772f31590499237e7cce841e8e # v0.5.3 From 13b62626e82f5920601bca186090126e924e60e5 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 21 Apr 2026 10:00:46 +0200 Subject: [PATCH 10/18] Bump @types/node from 25.5.0 to 25.6.0 in the dev-minor group (#327) Bumps the dev-minor group with 1 update: [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node). Updates `@types/node` from 25.5.0 to 25.6.0 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node) --- updated-dependencies: - dependency-name: "@types/node" dependency-version: 25.6.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- package-lock.json | 16 ++++++++-------- package.json | 2 +- 2 files changed, 9 insertions(+), 9 deletions(-) diff --git a/package-lock.json b/package-lock.json index 405354e..ef1f316 100644 --- a/package-lock.json +++ b/package-lock.json @@ -19,7 +19,7 @@ "smol-toml": "^1.6.1" }, "devDependencies": { - "@types/node": "^25.4.0", + "@types/node": "^25.6.0", "@vercel/ncc": "^0.38.4", "linefix": "^0.1.1", "typescript": "6.0.2" @@ -865,12 +865,12 @@ "license": "MIT" }, "node_modules/@types/node": { - "version": "25.5.0", - "resolved": "https://registry.npmjs.org/@types/node/-/node-25.5.0.tgz", - "integrity": "sha512-jp2P3tQMSxWugkCUKLRPVUpGaL5MVFwF8RDuSRztfwgN1wmqJeMSbKlnEtQqU8UrhTmzEmZdu2I6v2dpp7XIxw==", + "version": "25.6.0", + "resolved": "https://registry.npmjs.org/@types/node/-/node-25.6.0.tgz", + "integrity": "sha512-+qIYRKdNYJwY3vRCZMdJbPLJAtGjQBudzZzdzwQYkEPQd+PJGixUL5QfvCLDaULoLv+RhT3LDkwEfKaAkgSmNQ==", "license": "MIT", "dependencies": { - "undici-types": "~7.18.0" + "undici-types": "~7.19.0" } }, "node_modules/@types/request": { @@ -1941,9 +1941,9 @@ } }, "node_modules/undici-types": { - "version": "7.18.2", - "resolved": "https://registry.npmjs.org/undici-types/-/undici-types-7.18.2.tgz", - "integrity": "sha512-AsuCzffGHJybSaRrmr5eHr81mwJU3kjw6M+uprWvCXiNeN9SOGwQ3Jn8jb8m3Z6izVgknn1R0FTCEAP2QrLY/w==", + "version": "7.19.2", + "resolved": "https://registry.npmjs.org/undici-types/-/undici-types-7.19.2.tgz", + "integrity": "sha512-qYVnV5OEm2AW8cJMCpdV20CDyaN3g0AjDlOGf1OW4iaDEx8MwdtChUp4zu4H0VP3nDRF/8RKWH+IPp9uW0YGZg==", "license": "MIT" }, "node_modules/universal-user-agent": { diff --git a/package.json b/package.json index dde9e0e..9ee1ce7 100644 --- a/package.json +++ b/package.json @@ -32,7 +32,7 @@ "smol-toml": "^1.6.1" }, "devDependencies": { - "@types/node": "^25.4.0", + "@types/node": "^25.6.0", "@vercel/ncc": "^0.38.4", "linefix": "^0.1.1", "typescript": "6.0.2" From 3d9a6aef83b697b1d758490972e37a033aee461f Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 21 Apr 2026 10:01:12 +0200 Subject: [PATCH 11/18] Bump typescript from 6.0.2 to 6.0.3 in the dev-patch group (#328) Bumps the dev-patch group with 1 update: [typescript](https://github.com/microsoft/TypeScript). Updates `typescript` from 6.0.2 to 6.0.3 - [Release notes](https://github.com/microsoft/TypeScript/releases) - [Commits](https://github.com/microsoft/TypeScript/compare/v6.0.2...v6.0.3) --- updated-dependencies: - dependency-name: typescript dependency-version: 6.0.3 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dev-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- package-lock.json | 8 ++++---- package.json | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/package-lock.json b/package-lock.json index ef1f316..7889cba 100644 --- a/package-lock.json +++ b/package-lock.json @@ -22,7 +22,7 @@ "@types/node": "^25.6.0", "@vercel/ncc": "^0.38.4", "linefix": "^0.1.1", - "typescript": "6.0.2" + "typescript": "6.0.3" }, "funding": { "url": "https://github.com/sponsors/Swatinem" @@ -1915,9 +1915,9 @@ } }, "node_modules/typescript": { - "version": "6.0.2", - "resolved": "https://registry.npmjs.org/typescript/-/typescript-6.0.2.tgz", - "integrity": "sha512-bGdAIrZ0wiGDo5l8c++HWtbaNCWTS4UTv7RaTH/ThVIgjkveJt83m74bBHMJkuCbslY8ixgLBVZJIOiQlQTjfQ==", + "version": "6.0.3", + "resolved": "https://registry.npmjs.org/typescript/-/typescript-6.0.3.tgz", + "integrity": "sha512-y2TvuxSZPDyQakkFRPZHKFm+KKVqIisdg9/CZwm9ftvKXLP8NRWj38/ODjNbr43SsoXqNuAisEf1GdCxqWcdBw==", "dev": true, "license": "Apache-2.0", "bin": { diff --git a/package.json b/package.json index 9ee1ce7..721240b 100644 --- a/package.json +++ b/package.json @@ -35,7 +35,7 @@ "@types/node": "^25.6.0", "@vercel/ncc": "^0.38.4", "linefix": "^0.1.1", - "typescript": "6.0.2" + "typescript": "6.0.3" }, "scripts": { "prepare": "ncc build --target es2020 -o dist/restore src/restore.ts && ncc build --target es2020 -o dist/save src/save.ts && linefix dist" From 91cad52c8740f1b03664246d569ebd28b55b3a2d Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 28 Apr 2026 00:48:24 +0000 Subject: [PATCH 12/18] Bump the actions group with 2 updates Bumps the actions group with 2 updates: [taiki-e/install-action](https://github.com/taiki-e/install-action) and [cachix/install-nix-action](https://github.com/cachix/install-nix-action). Updates `taiki-e/install-action` from 2.75.18 to 2.75.23 - [Release notes](https://github.com/taiki-e/install-action/releases) - [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/taiki-e/install-action/compare/055f5df8c3f65ea01cd41e9dc855becd88953486...481c34c1cf3a84c68b5e46f4eccfc82af798415a) Updates `cachix/install-nix-action` from 31.10.4 to 31.10.5 - [Release notes](https://github.com/cachix/install-nix-action/releases) - [Changelog](https://github.com/cachix/install-nix-action/blob/master/RELEASE.md) - [Commits](https://github.com/cachix/install-nix-action/compare/616559265b40713947b9c190a8ff4b507b5df49b...ab739621df7a23f52766f9ccc97f38da6b7af14f) --- updated-dependencies: - dependency-name: taiki-e/install-action dependency-version: 2.75.23 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions - dependency-name: cachix/install-nix-action dependency-version: 31.10.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions ... Signed-off-by: dependabot[bot] --- .github/workflows/coverage.yml | 2 +- .github/workflows/nix.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/coverage.yml b/.github/workflows/coverage.yml index a9c312d..9d6335f 100644 --- a/.github/workflows/coverage.yml +++ b/.github/workflows/coverage.yml @@ -25,7 +25,7 @@ jobs: - run: rustup toolchain install stable --profile minimal --component llvm-tools-preview --no-self-update - - uses: taiki-e/install-action@055f5df8c3f65ea01cd41e9dc855becd88953486 # v2.75.18 + - uses: taiki-e/install-action@481c34c1cf3a84c68b5e46f4eccfc82af798415a # v2.75.23 with: tool: cargo-llvm-cov diff --git a/.github/workflows/nix.yml b/.github/workflows/nix.yml index 8461e8e..0a4e216 100644 --- a/.github/workflows/nix.yml +++ b/.github/workflows/nix.yml @@ -20,7 +20,7 @@ jobs: with: persist-credentials: false - - uses: cachix/install-nix-action@616559265b40713947b9c190a8ff4b507b5df49b # v31.10.4 + - uses: cachix/install-nix-action@ab739621df7a23f52766f9ccc97f38da6b7af14f # v31.10.5 - uses: ./ with: From 455db766b883e4dcffc1c9b9f495acf416bee1da Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 1 May 2026 18:40:22 +0200 Subject: [PATCH 13/18] Bump @actions/glob from 0.6.1 to 0.7.0 in the prd-minor group (#332) Bumps the prd-minor group with 1 update: [@actions/glob](https://github.com/actions/toolkit/tree/HEAD/packages/glob). Updates `@actions/glob` from 0.6.1 to 0.7.0 - [Changelog](https://github.com/actions/toolkit/blob/main/packages/glob/RELEASES.md) - [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/glob) --- updated-dependencies: - dependency-name: "@actions/glob" dependency-version: 0.7.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: prd-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- package-lock.json | 56 ++++++++++++++++++++++++++++++++++++++++++----- package.json | 2 +- 2 files changed, 52 insertions(+), 6 deletions(-) diff --git a/package-lock.json b/package-lock.json index 7889cba..c006816 100644 --- a/package-lock.json +++ b/package-lock.json @@ -13,7 +13,7 @@ "@actions/cache": "^6.0.0", "@actions/core": "^3.0.0", "@actions/exec": "^3.0.0", - "@actions/glob": "^0.6.1", + "@actions/glob": "^0.7.0", "@actions/io": "^3.0.2", "@actions/warpbuild-cache": "npm:github-actions.warp-cache@1.4.7", "smol-toml": "^1.6.1" @@ -96,6 +96,16 @@ "semver": "^7.7.3" } }, + "node_modules/@actions/cache/node_modules/@actions/glob": { + "version": "0.6.1", + "resolved": "https://registry.npmjs.org/@actions/glob/-/glob-0.6.1.tgz", + "integrity": "sha512-K4+2Ac5ILcf2ySdJCha+Pop9NcKjxqCL4xL4zI50dgB2PbXgC0+AcP011xfH4Of6b4QEJJg8dyZYv7zl4byTsw==", + "license": "MIT", + "dependencies": { + "@actions/core": "^3.0.0", + "minimatch": "^3.0.4" + } + }, "node_modules/@actions/cache/node_modules/@actions/http-client": { "version": "4.0.0", "resolved": "https://registry.npmjs.org/@actions/http-client/-/http-client-4.0.0.tgz", @@ -181,13 +191,49 @@ } }, "node_modules/@actions/glob": { - "version": "0.6.1", - "resolved": "https://registry.npmjs.org/@actions/glob/-/glob-0.6.1.tgz", - "integrity": "sha512-K4+2Ac5ILcf2ySdJCha+Pop9NcKjxqCL4xL4zI50dgB2PbXgC0+AcP011xfH4Of6b4QEJJg8dyZYv7zl4byTsw==", + "version": "0.7.0", + "resolved": "https://registry.npmjs.org/@actions/glob/-/glob-0.7.0.tgz", + "integrity": "sha512-+7s3wM+cXapDLmLL1NVWHawqcJOZzXZy2df/VhNn8DnZtS/x83iTCKaUn9F0llur4h3CII0AilvKKH4CMPL8Gw==", "license": "MIT", "dependencies": { "@actions/core": "^3.0.0", - "minimatch": "^3.0.4" + "minimatch": "^10.2.5" + } + }, + "node_modules/@actions/glob/node_modules/balanced-match": { + "version": "4.0.4", + "resolved": "https://registry.npmjs.org/balanced-match/-/balanced-match-4.0.4.tgz", + "integrity": "sha512-BLrgEcRTwX2o6gGxGOCNyMvGSp35YofuYzw9h1IMTRmKqttAZZVU67bdb9Pr2vUHA8+j3i2tJfjO6C6+4myGTA==", + "license": "MIT", + "engines": { + "node": "18 || 20 || >=22" + } + }, + "node_modules/@actions/glob/node_modules/brace-expansion": { + "version": "5.0.5", + "resolved": "https://registry.npmjs.org/brace-expansion/-/brace-expansion-5.0.5.tgz", + "integrity": "sha512-VZznLgtwhn+Mact9tfiwx64fA9erHH/MCXEUfB/0bX/6Fz6ny5EGTXYltMocqg4xFAQZtnO3DHWWXi8RiuN7cQ==", + "license": "MIT", + "dependencies": { + "balanced-match": "^4.0.2" + }, + "engines": { + "node": "18 || 20 || >=22" + } + }, + "node_modules/@actions/glob/node_modules/minimatch": { + "version": "10.2.5", + "resolved": "https://registry.npmjs.org/minimatch/-/minimatch-10.2.5.tgz", + "integrity": "sha512-MULkVLfKGYDFYejP07QOurDLLQpcjk7Fw+7jXS2R2czRQzR56yHRveU5NDJEOviH+hETZKSkIk5c+T23GjFUMg==", + "license": "BlueOak-1.0.0", + "dependencies": { + "brace-expansion": "^5.0.5" + }, + "engines": { + "node": "18 || 20 || >=22" + }, + "funding": { + "url": "https://github.com/sponsors/isaacs" } }, "node_modules/@actions/http-client": { diff --git a/package.json b/package.json index 721240b..b4951a5 100644 --- a/package.json +++ b/package.json @@ -27,7 +27,7 @@ "@actions/cache": "^6.0.0", "@actions/core": "^3.0.0", "@actions/exec": "^3.0.0", - "@actions/glob": "^0.6.1", + "@actions/glob": "^0.7.0", "@actions/io": "^3.0.2", "smol-toml": "^1.6.1" }, From 919333daf4640a6fca9dd8b87468dc776e46b44b Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 1 May 2026 18:40:30 +0200 Subject: [PATCH 14/18] Bump @actions/core from 3.0.0 to 3.0.1 in the prd-patch group (#334) Bumps the prd-patch group with 1 update: [@actions/core](https://github.com/actions/toolkit/tree/HEAD/packages/core). Updates `@actions/core` from 3.0.0 to 3.0.1 - [Changelog](https://github.com/actions/toolkit/blob/main/packages/core/RELEASES.md) - [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/core) --- updated-dependencies: - dependency-name: "@actions/core" dependency-version: 3.0.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: prd-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- package-lock.json | 8 ++++---- package.json | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/package-lock.json b/package-lock.json index c006816..19e4248 100644 --- a/package-lock.json +++ b/package-lock.json @@ -11,7 +11,7 @@ "dependencies": { "@actions/buildjet-cache": "npm:github-actions.cache-buildjet@0.2.0", "@actions/cache": "^6.0.0", - "@actions/core": "^3.0.0", + "@actions/core": "^3.0.1", "@actions/exec": "^3.0.0", "@actions/glob": "^0.7.0", "@actions/io": "^3.0.2", @@ -138,9 +138,9 @@ } }, "node_modules/@actions/core": { - "version": "3.0.0", - "resolved": "https://registry.npmjs.org/@actions/core/-/core-3.0.0.tgz", - "integrity": "sha512-zYt6cz+ivnTmiT/ksRVriMBOiuoUpDCJJlZ5KPl2/FRdvwU3f7MPh9qftvbkXJThragzUZieit2nyHUyw53Seg==", + "version": "3.0.1", + "resolved": "https://registry.npmjs.org/@actions/core/-/core-3.0.1.tgz", + "integrity": "sha512-a6d/Nwahm9fliVGRhdhofo40HjHQasUPusmc7vBfyky+7Z+P2A1J68zyFVaNcEclc/Se+eO595oAr5nwEIoIUA==", "license": "MIT", "dependencies": { "@actions/exec": "^3.0.0", diff --git a/package.json b/package.json index b4951a5..fb058c3 100644 --- a/package.json +++ b/package.json @@ -25,7 +25,7 @@ "@actions/buildjet-cache": "npm:github-actions.cache-buildjet@0.2.0", "@actions/warpbuild-cache": "npm:github-actions.warp-cache@1.4.7", "@actions/cache": "^6.0.0", - "@actions/core": "^3.0.0", + "@actions/core": "^3.0.1", "@actions/exec": "^3.0.0", "@actions/glob": "^0.7.0", "@actions/io": "^3.0.2", From 77fc9855f4f7021bbc7f8154c6eb2e4fb1282988 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 11 May 2026 15:52:58 +0200 Subject: [PATCH 15/18] Bump the actions group with 3 updates (#335) Bumps the actions group with 3 updates: [cargo-bins/cargo-binstall](https://github.com/cargo-bins/cargo-binstall), [taiki-e/install-action](https://github.com/taiki-e/install-action) and [cachix/install-nix-action](https://github.com/cachix/install-nix-action). Updates `cargo-bins/cargo-binstall` from 1.18.1 to 1.19.0 - [Release notes](https://github.com/cargo-bins/cargo-binstall/releases) - [Changelog](https://github.com/cargo-bins/cargo-binstall/blob/main/release-plz.toml) - [Commits](https://github.com/cargo-bins/cargo-binstall/compare/v1.18.1...v1.19.0) Updates `taiki-e/install-action` from 2.75.23 to 2.77.0 - [Release notes](https://github.com/taiki-e/install-action/releases) - [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/taiki-e/install-action/compare/481c34c1cf3a84c68b5e46f4eccfc82af798415a...7ea35f098a7369cd23488403f58be9c491a6c55f) Updates `cachix/install-nix-action` from 31.10.5 to 31.10.6 - [Release notes](https://github.com/cachix/install-nix-action/releases) - [Changelog](https://github.com/cachix/install-nix-action/blob/master/RELEASE.md) - [Commits](https://github.com/cachix/install-nix-action/compare/ab739621df7a23f52766f9ccc97f38da6b7af14f...8aa03977d8d733052d78f4e008a241fd1dbf36b3) --- updated-dependencies: - dependency-name: cargo-bins/cargo-binstall dependency-version: 1.19.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions - dependency-name: taiki-e/install-action dependency-version: 2.77.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions - dependency-name: cachix/install-nix-action dependency-version: 31.10.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/binstall.yml | 2 +- .github/workflows/coverage.yml | 2 +- .github/workflows/nix.yml | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/binstall.yml b/.github/workflows/binstall.yml index c076cf2..9557376 100644 --- a/.github/workflows/binstall.yml +++ b/.github/workflows/binstall.yml @@ -25,7 +25,7 @@ jobs: - run: rustup toolchain install stable --profile minimal --no-self-update - - uses: cargo-bins/cargo-binstall@v1.18.1 + - uses: cargo-bins/cargo-binstall@v1.19.0 - uses: ./ diff --git a/.github/workflows/coverage.yml b/.github/workflows/coverage.yml index 9d6335f..bdaa2b4 100644 --- a/.github/workflows/coverage.yml +++ b/.github/workflows/coverage.yml @@ -25,7 +25,7 @@ jobs: - run: rustup toolchain install stable --profile minimal --component llvm-tools-preview --no-self-update - - uses: taiki-e/install-action@481c34c1cf3a84c68b5e46f4eccfc82af798415a # v2.75.23 + - uses: taiki-e/install-action@7ea35f098a7369cd23488403f58be9c491a6c55f # v2.77.0 with: tool: cargo-llvm-cov diff --git a/.github/workflows/nix.yml b/.github/workflows/nix.yml index 0a4e216..2b5062e 100644 --- a/.github/workflows/nix.yml +++ b/.github/workflows/nix.yml @@ -20,7 +20,7 @@ jobs: with: persist-credentials: false - - uses: cachix/install-nix-action@ab739621df7a23f52766f9ccc97f38da6b7af14f # v31.10.5 + - uses: cachix/install-nix-action@8aa03977d8d733052d78f4e008a241fd1dbf36b3 # v31.10.6 - uses: ./ with: From faada81aeb84e234aae3b5b822ad1b4eeafba922 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 12 May 2026 04:00:20 +0000 Subject: [PATCH 16/18] Bump the actions group with 2 updates Bumps the actions group with 2 updates: [cargo-bins/cargo-binstall](https://github.com/cargo-bins/cargo-binstall) and [taiki-e/install-action](https://github.com/taiki-e/install-action). Updates `cargo-bins/cargo-binstall` from 1.19.0 to 1.19.1 - [Release notes](https://github.com/cargo-bins/cargo-binstall/releases) - [Changelog](https://github.com/cargo-bins/cargo-binstall/blob/main/release-plz.toml) - [Commits](https://github.com/cargo-bins/cargo-binstall/compare/v1.19.0...v1.19.1) Updates `taiki-e/install-action` from 2.77.0 to 2.77.6 - [Release notes](https://github.com/taiki-e/install-action/releases) - [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/taiki-e/install-action/compare/7ea35f098a7369cd23488403f58be9c491a6c55f...c070f87102a1c75b3183910f391c1cb887fe13c8) --- updated-dependencies: - dependency-name: cargo-bins/cargo-binstall dependency-version: 1.19.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions - dependency-name: taiki-e/install-action dependency-version: 2.77.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions ... Signed-off-by: dependabot[bot] --- .github/workflows/binstall.yml | 2 +- .github/workflows/coverage.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/binstall.yml b/.github/workflows/binstall.yml index 9557376..e506cd8 100644 --- a/.github/workflows/binstall.yml +++ b/.github/workflows/binstall.yml @@ -25,7 +25,7 @@ jobs: - run: rustup toolchain install stable --profile minimal --no-self-update - - uses: cargo-bins/cargo-binstall@v1.19.0 + - uses: cargo-bins/cargo-binstall@v1.19.1 - uses: ./ diff --git a/.github/workflows/coverage.yml b/.github/workflows/coverage.yml index bdaa2b4..f1e75ae 100644 --- a/.github/workflows/coverage.yml +++ b/.github/workflows/coverage.yml @@ -25,7 +25,7 @@ jobs: - run: rustup toolchain install stable --profile minimal --component llvm-tools-preview --no-self-update - - uses: taiki-e/install-action@7ea35f098a7369cd23488403f58be9c491a6c55f # v2.77.0 + - uses: taiki-e/install-action@c070f87102a1c75b3183910f391c1cb887fe13c8 # v2.77.6 with: tool: cargo-llvm-cov From 8ba370a7908a18ecf2b2aa574dbfdf4e4e50514c Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Sondre=20Lilleb=C3=B8=20Gundersen?= Date: Fri, 29 May 2026 08:34:37 +0200 Subject: [PATCH 17/18] docs: Update checkout action version to latest (#345) --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 39a3569..a9ad928 100644 --- a/README.md +++ b/README.md @@ -6,7 +6,7 @@ sensible defaults. ## Example usage ```yaml -- uses: actions/checkout@v5 +- uses: actions/checkout@v6 # selecting a toolchain either by action or manual `rustup` calls should happen # before the plugin, as the cache uses the current rustc version as its cache key From 874b06e0d3f63371f9ddbee43d4c8ebc73021583 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 3 Jun 2026 13:20:57 +0200 Subject: [PATCH 18/18] Bump the actions group across 1 directory with 3 updates (#346) Bumps the actions group with 3 updates in the / directory: [actions/checkout](https://github.com/actions/checkout), [taiki-e/install-action](https://github.com/taiki-e/install-action) and [zizmorcore/zizmor-action](https://github.com/zizmorcore/zizmor-action). Updates `actions/checkout` from 6.0.2 to 6.0.3 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/de0fac2e4500dabe0009e67214ff5f5447ce83dd...df4cb1c069e1874edd31b4311f1884172cec0e10) Updates `taiki-e/install-action` from 2.77.6 to 2.81.3 - [Release notes](https://github.com/taiki-e/install-action/releases) - [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/taiki-e/install-action/compare/c070f87102a1c75b3183910f391c1cb887fe13c8...25435dc8dd3baed7417e0c96d3fe89013a5b2e09) Updates `zizmorcore/zizmor-action` from 0.5.3 to 0.5.6 - [Release notes](https://github.com/zizmorcore/zizmor-action/releases) - [Commits](https://github.com/zizmorcore/zizmor-action/compare/b1d7e1fb5de872772f31590499237e7cce841e8e...5f14fd08f7cf1cb1609c1e344975f152c7ee938d) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 6.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions - dependency-name: taiki-e/install-action dependency-version: 2.81.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions - dependency-name: zizmorcore/zizmor-action dependency-version: 0.5.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/binstall.yml | 2 +- .github/workflows/buildjet.yml | 2 +- .github/workflows/check-dist.yml | 2 +- .github/workflows/coverage.yml | 4 ++-- .github/workflows/dependabot.yml | 2 +- .github/workflows/git-registry.yml | 2 +- .github/workflows/install.yml | 2 +- .github/workflows/multi-job-cache.yml | 4 ++-- .github/workflows/nix.yml | 2 +- .github/workflows/simple.yml | 2 +- .github/workflows/target-dir.yml | 2 +- .github/workflows/workspaces.yml | 2 +- .github/workflows/zizmor.yml | 4 ++-- 13 files changed, 16 insertions(+), 16 deletions(-) diff --git a/.github/workflows/binstall.yml b/.github/workflows/binstall.yml index e506cd8..ceba95c 100644 --- a/.github/workflows/binstall.yml +++ b/.github/workflows/binstall.yml @@ -19,7 +19,7 @@ jobs: CARGO_TERM_COLOR: always steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: persist-credentials: false diff --git a/.github/workflows/buildjet.yml b/.github/workflows/buildjet.yml index 7ddf1bd..ad8bcc3 100644 --- a/.github/workflows/buildjet.yml +++ b/.github/workflows/buildjet.yml @@ -19,7 +19,7 @@ jobs: CARGO_TERM_COLOR: always steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: persist-credentials: false diff --git a/.github/workflows/check-dist.yml b/.github/workflows/check-dist.yml index 6d17822..4b0b850 100644 --- a/.github/workflows/check-dist.yml +++ b/.github/workflows/check-dist.yml @@ -18,7 +18,7 @@ jobs: if: github.repository == 'Swatinem/rust-cache' runs-on: ubuntu-latest steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: persist-credentials: false diff --git a/.github/workflows/coverage.yml b/.github/workflows/coverage.yml index f1e75ae..42e5c00 100644 --- a/.github/workflows/coverage.yml +++ b/.github/workflows/coverage.yml @@ -19,13 +19,13 @@ jobs: CARGO_TERM_COLOR: always steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: persist-credentials: false - run: rustup toolchain install stable --profile minimal --component llvm-tools-preview --no-self-update - - uses: taiki-e/install-action@c070f87102a1c75b3183910f391c1cb887fe13c8 # v2.77.6 + - uses: taiki-e/install-action@25435dc8dd3baed7417e0c96d3fe89013a5b2e09 # v2.81.3 with: tool: cargo-llvm-cov diff --git a/.github/workflows/dependabot.yml b/.github/workflows/dependabot.yml index c8c2265..56a4f19 100644 --- a/.github/workflows/dependabot.yml +++ b/.github/workflows/dependabot.yml @@ -18,7 +18,7 @@ jobs: uses: dependabot/fetch-metadata@25dd0e34f4fe68f24cc83900b1fe3fe149efef98 # v3.1.0 with: github-token: "${{ secrets.GITHUB_TOKEN }}" - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: fetch-depth: 2 persist-credentials: false diff --git a/.github/workflows/git-registry.yml b/.github/workflows/git-registry.yml index dd3ca9c..5085e89 100644 --- a/.github/workflows/git-registry.yml +++ b/.github/workflows/git-registry.yml @@ -20,7 +20,7 @@ jobs: CARGO_REGISTRIES_CRATES_IO_PROTOCOL: git steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: persist-credentials: false diff --git a/.github/workflows/install.yml b/.github/workflows/install.yml index 10c7e78..3c0991c 100644 --- a/.github/workflows/install.yml +++ b/.github/workflows/install.yml @@ -19,7 +19,7 @@ jobs: CARGO_TERM_COLOR: always steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: persist-credentials: false diff --git a/.github/workflows/multi-job-cache.yml b/.github/workflows/multi-job-cache.yml index 278e354..2e086ba 100644 --- a/.github/workflows/multi-job-cache.yml +++ b/.github/workflows/multi-job-cache.yml @@ -20,7 +20,7 @@ jobs: steps: - name: checkout - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: persist-credentials: false @@ -54,7 +54,7 @@ jobs: steps: - name: checkout - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: persist-credentials: false diff --git a/.github/workflows/nix.yml b/.github/workflows/nix.yml index 2b5062e..e13b7a4 100644 --- a/.github/workflows/nix.yml +++ b/.github/workflows/nix.yml @@ -16,7 +16,7 @@ jobs: runs-on: ${{ matrix.os }} steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: persist-credentials: false diff --git a/.github/workflows/simple.yml b/.github/workflows/simple.yml index 927be30..d968497 100644 --- a/.github/workflows/simple.yml +++ b/.github/workflows/simple.yml @@ -19,7 +19,7 @@ jobs: CARGO_TERM_COLOR: always steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: persist-credentials: false diff --git a/.github/workflows/target-dir.yml b/.github/workflows/target-dir.yml index 1252f02..69da9af 100644 --- a/.github/workflows/target-dir.yml +++ b/.github/workflows/target-dir.yml @@ -19,7 +19,7 @@ jobs: CARGO_TERM_COLOR: always steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: persist-credentials: false diff --git a/.github/workflows/workspaces.yml b/.github/workflows/workspaces.yml index e246c69..2b1b6aa 100644 --- a/.github/workflows/workspaces.yml +++ b/.github/workflows/workspaces.yml @@ -19,7 +19,7 @@ jobs: CARGO_TERM_COLOR: always steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: persist-credentials: false diff --git a/.github/workflows/zizmor.yml b/.github/workflows/zizmor.yml index 0878854..bbd4044 100644 --- a/.github/workflows/zizmor.yml +++ b/.github/workflows/zizmor.yml @@ -16,9 +16,9 @@ jobs: security-events: write # for uploading results to the Security tab steps: - name: Checkout repository - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: persist-credentials: false - name: Run zizmor 🌈 - uses: zizmorcore/zizmor-action@b1d7e1fb5de872772f31590499237e7cce841e8e # v0.5.3 + uses: zizmorcore/zizmor-action@5f14fd08f7cf1cb1609c1e344975f152c7ee938d # v0.5.6