Skip to content

chore(ci): upgrade GitHub Actions to latest versions#206

Merged
piorpua merged 6 commits into
mainfrom
chore/upgrade-actions-versions
May 9, 2026
Merged

chore(ci): upgrade GitHub Actions to latest versions#206
piorpua merged 6 commits into
mainfrom
chore/upgrade-actions-versions

Conversation

@piorpua

@piorpua piorpua commented May 9, 2026

Copy link
Copy Markdown
Contributor

Summary

  • actions/checkout: v4 → v6
  • actions/upload-artifact: v4 → v7
  • actions/download-artifact: v4 → v8
  • aionrs: v0.1.20 → v0.1.21

Aligns with aionrs workflow versions and picks up latest aionrs fixes.

Test plan

  • CI checks pass on this PR
  • Next release build uses updated artifact actions

zynx added 6 commits May 9, 2026 17:25
- actions/checkout: v4 → v6
- actions/upload-artifact: v4 → v7
- actions/download-artifact: v4 → v8

Aligns with aionrs workflow versions.
- Set default-features = false on aws-sdk-bedrock/bedrockruntime to
  remove the legacy rustls 0.21 compatibility path
- Pin rustls-webpki >= 0.103.13 to fix RUSTSEC-2026-{0098,0099,0104}

Same approach as aionrs PR #90.
- Add .cargo/audit.toml to ignore RUSTSEC-2023-0071 (rsa is never
  compiled, only in Cargo.lock via sqlx-mysql optional dep)
- Add CI step that fails if rsa ever enters the real dependency tree,
  ensuring the ignore is revoked if the situation changes
Keep audit reporting rsa vulnerability as-is. The continue-on-error
flag prevents merge blocking while the red status serves as a reminder
to act when upstream publishes a fix.
@piorpua piorpua merged commit 0bc4346 into main May 9, 2026
3 of 5 checks passed
@piorpua piorpua deleted the chore/upgrade-actions-versions branch May 9, 2026 10:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant