ci: commit Cargo.lock so cargo audit can run (#167) (#168)

The Security audit workflow runs `cargo audit --file ./Cargo.lock`, but
Cargo.lock was gitignored, so the file was absent in CI and every run
failed with "Couldn't load ./Cargo.lock" — including the daily scheduled
run on main. No advisory scan was ever performed.

Commit the lockfile and drop it from .gitignore. shadow-rs ships binaries
(the setuid-root tools), and committing the lockfile is the convention for
binary crates: it gives reproducible builds and a stable input for the
audit. The fuzz crate's lockfile stays ignored as throwaway tooling.

Closes #167.
This commit is contained in:
Pierre Warnier
2026-06-08 12:59:48 +02:00
committed by GitHub
parent 21ac3d4437
commit 19af7be38d
2 changed files with 1243 additions and 1 deletions
+1 -1
View File
@@ -2,6 +2,6 @@
/fuzz/target
/fuzz/corpus
/fuzz/artifacts
Cargo.lock
/fuzz/Cargo.lock
CLAUDE.md
PLAN-shadow-rs.md
Generated
+1242
View File
File diff suppressed because it is too large Load Diff