mirror of
https://github.com/uutils/shadow.git
synced 2026-06-10 16:14:57 -07:00
The Security audit workflow runs `cargo audit --file ./Cargo.lock`, but Cargo.lock was gitignored, so the file was absent in CI and every run failed with "Couldn't load ./Cargo.lock" — including the daily scheduled run on main. No advisory scan was ever performed. Commit the lockfile and drop it from .gitignore. shadow-rs ships binaries (the setuid-root tools), and committing the lockfile is the convention for binary crates: it gives reproducible builds and a stable input for the audit. The fuzz crate's lockfile stays ignored as throwaway tooling. Closes #167.
This commit is contained in:
+1
-1
@@ -2,6 +2,6 @@
|
||||
/fuzz/target
|
||||
/fuzz/corpus
|
||||
/fuzz/artifacts
|
||||
Cargo.lock
|
||||
/fuzz/Cargo.lock
|
||||
CLAUDE.md
|
||||
PLAN-shadow-rs.md
|
||||
|
||||
Generated
+1242
File diff suppressed because it is too large
Load Diff
Reference in New Issue
Block a user