Skip to content

ci: adjust release publishing #21

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
zouguangxian merged 1 commit into from
Jan 19, 2026
Merged

ci: adjust release publishing #21

zouguangxian merged 1 commit into from
Jan 19, 2026

Conversation

@zouguangxian
Copy link
Collaborator

@zouguangxian zouguangxian commented Jan 19, 2026

This PR adds the release workflow that runs release-plz on pushes to main and disables publishing for all crates except cargo-matrix in the release-plz configuration.

@zouguangxian zouguangxian changed the base branch from main to dev January 19, 2026 09:31
github-advanced-security[bot]
github-advanced-security bot found potential problems Jan 19, 2026
View reviewed changes
.github/workflows/release.yml Outdated
fetch-depth: 0

- name: Install Rust toolchain
uses: dtolnay/rust-toolchain@stable

Check warning

Code scanning / CodeQL

Unpinned tag for a non-immutable Action in workflow

Unpinned 3rd party Action 'Release' step [Uses Step](1) uses 'dtolnay/rust-toolchain' with ref 'stable', not a pinned commit hash
.github/workflows/release.yml Outdated
uses: dtolnay/rust-toolchain@stable

- name: Run release-plz
uses: MarcoIeni/release-plz-action@v0.5

Check warning

Code scanning / CodeQL

Unpinned tag for a non-immutable Action in workflow

Unpinned 3rd party Action 'Release' step [Uses Step](1) uses 'MarcoIeni/release-plz-action' with ref 'v0.5', not a pinned commit hash
@socket-security
Copy link

socket-security bot commented Jan 19, 2026
edited
Loading

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Addedgithub/​marcoieni/​release-plz-action@​5ab144c9d67d4346240190d0f95ed08668677928710090100100

View full report

@socket-security
Copy link

socket-security bot commented Jan 19, 2026
edited
Loading

All alerts resolved. Learn more about Socket for GitHub.

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

View full report

@zouguangxian zouguangxian merged commit 238926d into dev Jan 19, 2026
12 checks passed
@zouguangxian zouguangxian deleted the gx/publish-crates branch January 19, 2026 09:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@zouguangxian